signer

package

v3.3.0 Latest Latest Go to latest Published: Jul 18, 2024 License: MIT Imports: 27 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/Jarnpher553/nuclei

Links

Open Source Insights

Documentation ¶

Index ¶

Constants
Variables
func AddSignerToDefault(s *TemplateSigner) error
func GetSignatureFromData(data []byte) []byte
func RemoveSignatureFromData(data []byte) []byte
type KeyHandler
type SignableTemplate
type TemplateSigner

Constants ¶

View Source

const (
	CertType           = "PD NUCLEI USER CERTIFICATE"
	PrivateKeyType     = "PD NUCLEI USER PRIVATE KEY"
	CertFilename       = "nuclei-user.crt"
	PrivateKeyFilename = "nuclei-user-private-key.pem"
	CertEnvVarName     = "NUCLEI_USER_CERTIFICATE"
	PrivateKeyEnvName  = "NUCLEI_USER_PRIVATE_KEY"
)

Variables ¶

View Source

var (
	ErrNoCertificate   = fmt.Errorf("nuclei user certificate not found")
	ErrNoPrivateKey    = fmt.Errorf("nuclei user private key not found")
	SkipGeneratingKeys = false
)

View Source

var (
	ReDigest            = regexp.MustCompile(`(?m)^#\sdigest:\s.+$`)
	ErrUnknownAlgorithm = errors.New("unknown algorithm")
	SignaturePattern    = "# digest: "
	SignatureFmt        = SignaturePattern + "%x" + ":%v" // `#digest: <signature>:<fragment>`
)

View Source

var DefaultTemplateVerifiers []*TemplateSigner

DefaultTemplateVerifiers contains the default template verifiers

Functions ¶

func AddSignerToDefault ¶

func AddSignerToDefault(s *TemplateSigner) error

AddSignerToDefault adds a signer to the default list of signers

func GetSignatureFromData ¶

func GetSignatureFromData(data []byte) []byte

func RemoveSignatureFromData ¶

func RemoveSignatureFromData(data []byte) []byte

Types ¶

type KeyHandler ¶

type KeyHandler struct {
	UserCert   []byte
	PrivateKey []byte
	// contains filtered or unexported fields
}

KeyHandler handles the key generation and management of signer public and private keys

func (*KeyHandler) GenerateKeyPair ¶

func (k *KeyHandler) GenerateKeyPair()

GenerateKeyPair generates a new key-pair for signing code templates

func (*KeyHandler) ParsePrivateKey ¶

func (k *KeyHandler) ParsePrivateKey() error

ParsePrivateKey parses the private key and returns the private key

func (*KeyHandler) ParseUserCert ¶

func (k *KeyHandler) ParseUserCert() error

ParseUserCert parses the user certificate and returns the public key

func (*KeyHandler) ReadCert ¶

func (k *KeyHandler) ReadCert(envName, dir string) error

ReadUserCert reads the user certificate from environment variable or given directory

func (*KeyHandler) ReadPrivateKey ¶

func (k *KeyHandler) ReadPrivateKey(envName, dir string) error

ReadPrivateKey reads the private key from environment variable or given directory

func (*KeyHandler) SaveToDisk ¶

func (k *KeyHandler) SaveToDisk(dir string) error

SaveToDisk saves the generated key-pair to the given directory

type SignableTemplate ¶

type SignableTemplate interface {
	// GetFileImports returns a list of files that are imported by the template
	GetFileImports() []string
	// HasCodeProtocol returns true if the template has a code protocol section
	HasCodeProtocol() bool
}

SignableTemplate is a template that can be signed

type TemplateSigner ¶

type TemplateSigner struct {
	sync.Once
	// contains filtered or unexported fields
}

func NewTemplateSigVerifier ¶

func NewTemplateSigVerifier(cert []byte) (*TemplateSigner, error)

NewTemplateSigVerifier creates a new signer for verifying templates

func NewTemplateSigner ¶

func NewTemplateSigner(cert, privateKey []byte) (*TemplateSigner, error)

NewTemplateSigner creates a new signer for signing templates

func NewTemplateSignerFromFiles ¶

func NewTemplateSignerFromFiles(cert, privKey string) (*TemplateSigner, error)

NewTemplateSignerFromFiles creates a new signer for signing templates

func (*TemplateSigner) GetUserFragment ¶

func (t *TemplateSigner) GetUserFragment() string

fragment is optional part of signature that is used to identify the user who signed the template via md5 hash of public key

func (*TemplateSigner) Identifier ¶

func (t *TemplateSigner) Identifier() string

Identifier returns the identifier for the template signer

func (*TemplateSigner) Sign ¶

func (t *TemplateSigner) Sign(data []byte, tmpl SignableTemplate) (string, error)

Sign signs the given template with the template signer and returns the signature

func (*TemplateSigner) Verify ¶

func (t *TemplateSigner) Verify(data []byte, tmpl SignableTemplate) (bool, error)

Verify verifies the given template with the template signer

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL