The highest tagged major version is v2.

crypt

package

v1.0.0 Latest Latest Go to latest Published: Nov 7, 2020 License: AGPL-3.0 Imports: 31 Imported by: 5

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/omecodes/libome

Documentation ¶

Index ¶

Constants
func AESGCMDecrypt(key, data []byte) ([]byte, error)
func AESGCMDecryptWithNonce(key, nonce, data []byte) ([]byte, error)
func AESGCMEncrypt(key, data []byte) ([]byte, error)
func AESGCMEncryptWithSalt(key, salt, data []byte) ([]byte, error)
func GenerateCACertificate(t *CertificateTemplate) (*x509.Certificate, error)
func GenerateServiceCertificate(t *CertificateTemplate) (*x509.Certificate, error)
func GenerateVerificationCode(max int) (string, error)
func LoadCertificate(file string) (*x509.Certificate, error)
func LoadPrivateKey(password []byte, file string) (crypto.PrivateKey, error)
func NewPassword(length int) string
func PEMDecodeCertificate(pemBytes []byte) (*x509.Certificate, error)
func PEMDecodePublicKey(pemBytes []byte) (interface{}, string, error)
func PEMEncodeCertificate(cert *x509.Certificate) ([]byte, error)
func PEMEncodeKey(key crypto.PrivateKey) ([]byte, error)
func PEMEncodePublicKey(k crypto.PublicKey) ([]byte, error)
func RandomCode(max int) (string, error)
func Reveal(phrase string, info *Info) ([]byte, error)
func StoreCertificate(cert *x509.Certificate, file string, perm os.FileMode) error
func StorePrivateKey(key crypto.PrivateKey, password []byte, file string) error
type AESGCMDecryptWrapper
- func NewDecryptWrapper(key []byte, opts ...ReadOption) *AESGCMDecryptWrapper
- func (d *AESGCMDecryptWrapper) Wrap(reader io.Reader) io.Reader
type AESGCMEncryptWrapper
- func NewEncryptWrapper(key []byte, opts ...ReadOption) *AESGCMEncryptWrapper
- func (d *AESGCMEncryptWrapper) WithOutputSize(inputSize int64) int64
- func (d *AESGCMEncryptWrapper) Wrap(reader io.Reader) io.Reader
type CertificateTemplate
type Info
- func Generate(phrase string, length int) ([]byte, *Info, error)
type ReadOption
- func WithBlockSize(size int64) ReadOption
- func WithLimit(limit int64) ReadOption
- func WithOffset(offset int64) ReadOption
type ReaderWrapper
type WriterWrapper

Constants ¶

View Source

const (
	AESGCMNonceSize = 12
)

View Source

const (
	// PBKDF2Iterations set to 10 000 which is the acceptable number of pbkdf2 iterations for year 2020
	PBKDF2Iterations = 10000
)

Variables ¶

This section is empty.

Functions ¶

func AESGCMDecrypt ¶

func AESGCMDecrypt(key, data []byte) ([]byte, error)

func AESGCMDecryptWithNonce ¶

func AESGCMDecryptWithNonce(key, nonce, data []byte) ([]byte, error)

func AESGCMEncrypt ¶

func AESGCMEncrypt(key, data []byte) ([]byte, error)

func AESGCMEncryptWithSalt ¶

func AESGCMEncryptWithSalt(key, salt, data []byte) ([]byte, error)

func GenerateCACertificate ¶

func GenerateCACertificate(t *CertificateTemplate) (*x509.Certificate, error)

GenerateCACertificate generates a certificate for a CA

func GenerateServiceCertificate ¶

func GenerateServiceCertificate(t *CertificateTemplate) (*x509.Certificate, error)

GenerateServiceCertificate generates a certificate for a service

func GenerateVerificationCode ¶

func GenerateVerificationCode(max int) (string, error)

func LoadCertificate ¶

func LoadCertificate(file string) (*x509.Certificate, error)

LoadCertificate load file and decode it into a x509.Certificate

func LoadPrivateKey ¶

func LoadPrivateKey(password []byte, file string) (crypto.PrivateKey, error)

LoadPrivateKey load encrypted private key from "file" and decrypts it

func NewPassword ¶

func NewPassword(length int) string

func PEMDecodeCertificate ¶

func PEMDecodeCertificate(pemBytes []byte) (*x509.Certificate, error)

PEMDecodeCertificate creates certificate from pem bytes

func PEMDecodePublicKey ¶

func PEMDecodePublicKey(pemBytes []byte) (interface{}, string, error)

func PEMEncodeCertificate ¶

func PEMEncodeCertificate(cert *x509.Certificate) ([]byte, error)

PEMEncodeCertificate encodes certificate chain into pem file

func PEMEncodeKey ¶

func PEMEncodeKey(key crypto.PrivateKey) ([]byte, error)

func PEMEncodePublicKey ¶

func PEMEncodePublicKey(k crypto.PublicKey) ([]byte, error)

func RandomCode ¶

func RandomCode(max int) (string, error)

func Reveal ¶

func Reveal(phrase string, info *Info) ([]byte, error)

Reveal decrypts info.Encrypted with a key built from phrase and info content.

func StoreCertificate ¶

func StoreCertificate(cert *x509.Certificate, file string, perm os.FileMode) error

StoreCertificate encode certificate and store the result in "file"

func StorePrivateKey ¶

func StorePrivateKey(key crypto.PrivateKey, password []byte, file string) error

StorePrivateKey encrypts the private key and save it in "file"

Types ¶

type AESGCMDecryptWrapper ¶

type AESGCMDecryptWrapper struct {
	// contains filtered or unexported fields
}

func NewDecryptWrapper ¶

func NewDecryptWrapper(key []byte, opts ...ReadOption) *AESGCMDecryptWrapper

func (*AESGCMDecryptWrapper) Wrap ¶

func (d *AESGCMDecryptWrapper) Wrap(reader io.Reader) io.Reader

type AESGCMEncryptWrapper ¶

type AESGCMEncryptWrapper struct {
	// contains filtered or unexported fields
}

func NewEncryptWrapper ¶

func NewEncryptWrapper(key []byte, opts ...ReadOption) *AESGCMEncryptWrapper

func (*AESGCMEncryptWrapper) WithOutputSize ¶

func (d *AESGCMEncryptWrapper) WithOutputSize(inputSize int64) int64

func (*AESGCMEncryptWrapper) Wrap ¶

func (d *AESGCMEncryptWrapper) Wrap(reader io.Reader) io.Reader

type CertificateTemplate ¶

type CertificateTemplate struct {
	Organization      string
	Name              string
	Domains           []string
	IPs               []net.IP
	Expiry            time.Duration
	PublicKey         crypto.PublicKey
	SignerPrivateKey  crypto.PrivateKey
	SignerCertificate *x509.Certificate
}

CertificateTemplate specs for generating a certificate

type Info ¶

type Info struct {
	Iterations   int    `json:"iterations"`
	Salt         string `json:"salt"`
	Length       int    `json:"length"`
	Hash         string `json:"hash"`
	Alg          string `json:"alg"`
	EncryptedKey string `json:"encrypted_key"`
}

Info about encrypted key parameter

func Generate ¶

func Generate(phrase string, length int) ([]byte, *Info, error)

Generate generates random password of size length. Then encrypted with a key derived from password using pbkdf2. The derivation parameters are put in an Info object

type ReadOption ¶

type ReadOption func(*readOptions)

func WithBlockSize ¶

func WithBlockSize(size int64) ReadOption

func WithLimit ¶

func WithLimit(limit int64) ReadOption

func WithOffset ¶

func WithOffset(offset int64) ReadOption

type ReaderWrapper ¶

type ReaderWrapper interface {
	Wrap(reader io.Reader) io.Reader
}

type WriterWrapper ¶

type WriterWrapper interface {
	Wrap(writer io.Writer) io.Writer
}

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL