csr

package

v0.0.0-...-b20fc4b Latest Latest Go to latest Published: Jun 2, 2015 License: MPL-2.0 Imports: 10 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/rolandshoemaker/boulder

Links

Open Source Insights

Documentation ¶

Overview ¶

Package csr implements certificate requests for CF-SSL.

Index ¶

Variables
func ParseRequest(req *CertificateRequest) (csr, key []byte, err error)
type CAConfig
type CertificateRequest
- func (cr *CertificateRequest) Name() pkix.Name
type Generator
- func (g *Generator) ProcessRequest(req *CertificateRequest) (csr, key []byte, err error)
type KeyRequest
- func (kr *KeyRequest) Generate() (interface{}, error)
- func (kr *KeyRequest) SigAlgo() x509.SignatureAlgorithm
type Name

Constants ¶

This section is empty.

Variables ¶

View Source

var DefaultKeyRequest = KeyRequest{
	Algo: "ecdsa",
	Size: curveP256,
}

The DefaultKeyRequest is used when no key request data is provided in the request. This should be a safe default.

Functions ¶

func ParseRequest ¶

func ParseRequest(req *CertificateRequest) (csr, key []byte, err error)

ParseRequest takes a certificate request and generates a key and CSR from it. It does no validation -- caveat emptor. It will, however, fail if the key request is not valid (i.e., an unsupported curve or RSA key size). The lack of validation was specifically chosen to allow the end user to define a policy and validate the request appropriately before calling this function.

Types ¶

type CAConfig ¶

type CAConfig struct {
	PathLength int    `json:"pathlen"`
	Expiry     string `json:"expiry"`
}

CAConfig is a section used in the requests initialising a new CA.

type CertificateRequest ¶

type CertificateRequest struct {
	CN         string
	Names      []Name      `json:"names"`
	Hosts      []string    `json:"hosts"`
	KeyRequest *KeyRequest `json:"key,omitempty"`
	CA         *CAConfig   `json:"ca,omitempty"`
}

A CertificateRequest encapsulates the API interface to the certificate request functionality.

func (*CertificateRequest) Name ¶

func (cr *CertificateRequest) Name() pkix.Name

Name returns the PKIX name for the request.

type Generator ¶

type Generator struct {
	Validator func(*CertificateRequest) error
}

A Generator is responsible for validating certificate requests.

func (*Generator) ProcessRequest ¶

func (g *Generator) ProcessRequest(req *CertificateRequest) (csr, key []byte, err error)

ProcessRequest validates and processes the incoming request. It is a wrapper around a validator and the ParseRequest function.

type KeyRequest ¶

type KeyRequest struct {
	Algo string `json:"algo"`
	Size int    `json:"size"`
}

A KeyRequest contains the algorithm and key size for a new private key.

func (*KeyRequest) Generate ¶

func (kr *KeyRequest) Generate() (interface{}, error)

Generate generates a key as specified in the request. Currently, only ECDSA and RSA are supported.

func (*KeyRequest) SigAlgo ¶

func (kr *KeyRequest) SigAlgo() x509.SignatureAlgorithm

SigAlgo returns an appropriate X.509 signature algorithm given the key request's type and size.

type Name ¶

type Name struct {
	C  string // Country
	ST string // State
	L  string // Locality
	O  string // OrganisationName
	OU string // OrganisationalUnitName
}

A Name contains the SubjectInfo fields.

Source Files ¶

View all Source files

csr.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL