Directories ¶
Path | Synopsis |
---|---|
Package api implements an HTTP-based API and server for CFSSL.
|
Package api implements an HTTP-based API and server for CFSSL. |
bundle
Package bundle implements the HTTP handler for the bundle command.
|
Package bundle implements the HTTP handler for the bundle command. |
certinfo
Package certinfo implements the HTTP handler for the certinfo command.
|
Package certinfo implements the HTTP handler for the certinfo command. |
client
Package client implements the a Go client for CFSSL API commands.
|
Package client implements the a Go client for CFSSL API commands. |
generator
Package generator implements the HTTP handlers for certificate generation.
|
Package generator implements the HTTP handlers for certificate generation. |
info
Package info implements the HTTP handler for the info command.
|
Package info implements the HTTP handler for the info command. |
initca
Package initca implements the HTTP handler for the CA initialization command
|
Package initca implements the HTTP handler for the CA initialization command |
ocsp
Package ocsp implements the HTTP handler for the ocsp commands.
|
Package ocsp implements the HTTP handler for the ocsp commands. |
sign
Package sign implements the HTTP handler for the certificate signing command.
|
Package sign implements the HTTP handler for the certificate signing command. |
Package auth implements an interface for providing CFSSL authentication.
|
Package auth implements an interface for providing CFSSL authentication. |
Package bundler implements certificate bundling functionality for CFSSL.
|
Package bundler implements certificate bundling functionality for CFSSL. |
Package cli provides the template for adding new cfssl commands
|
Package cli provides the template for adding new cfssl commands |
bundle
Package bundle implements the bundle command.
|
Package bundle implements the bundle command. |
certinfo
Package certinfo implements the certinfo command
|
Package certinfo implements the certinfo command |
gencert
Package gencert implements the gencert command.
|
Package gencert implements the gencert command. |
genkey
Package genkey implements the genkey command.
|
Package genkey implements the genkey command. |
info
Package info implements the info command.
|
Package info implements the info command. |
ocspserve
Package ocspserve implements the ocspserve function.
|
Package ocspserve implements the ocspserve function. |
ocspsign
Package ocspsign implements the ocspsign command.
|
Package ocspsign implements the ocspsign command. |
selfsign
Package selfsign implements the selfsign command.
|
Package selfsign implements the selfsign command. |
serve
Package serve implements the serve command for CFSSL's API.
|
Package serve implements the serve command for CFSSL's API. |
sign
Package sign implements the sign command.
|
Package sign implements the sign command. |
version
Package version implements the version command.
|
Package version implements the version command. |
cmd
|
|
cfssl
cfssl is the command line tool to issue/sign/bundle client certificate.
|
cfssl is the command line tool to issue/sign/bundle client certificate. |
cfssljson
cfssljson splits out JSON with cert, csr, and key fields to separate files.
|
cfssljson splits out JSON with cert, csr, and key fields to separate files. |
mkbundle
mkbundle is a commandline tool for building certificate pool bundles.
|
mkbundle is a commandline tool for building certificate pool bundles. |
Package config contains the configuration logic for CFSSL.
|
Package config contains the configuration logic for CFSSL. |
Package crypto contains implementations of crypto.Signer.
|
Package crypto contains implementations of crypto.Signer. |
pkcs11key
Package pkcs11key implements crypto.Signer for PKCS #11 private keys.
|
Package pkcs11key implements crypto.Signer for PKCS #11 private keys. |
pkcs7
Package pkcs7 implements the subset of the CMS PKCS #7 datatype that is typically used to package certificates and CRLs.
|
Package pkcs7 implements the subset of the CMS PKCS #7 datatype that is typically used to package certificates and CRLs. |
Package csr implements certificate requests for CFSSL.
|
Package csr implements certificate requests for CFSSL. |
Package errors provides error types returned in CF SSL.
|
Package errors provides error types returned in CF SSL. |
Package helpers implements utility functionality common to many CFSSL packages.
|
Package helpers implements utility functionality common to many CFSSL packages. |
derhelpers
Package derhelpers implements common functionality on DER encoded data
|
Package derhelpers implements common functionality on DER encoded data |
pkcs11uri
Package pkcs11uri provides helpers for parsing PKCS #11 URIs.
|
Package pkcs11uri provides helpers for parsing PKCS #11 URIs. |
Package info contains the definitions for the info endpoint
|
Package info contains the definitions for the info endpoint |
Package initca contains code to initialise a certificate authority, generating a new root key and certificate.
|
Package initca contains code to initialise a certificate authority, generating a new root key and certificate. |
Package log implements a wrapper around the Go standard library's logging package.
|
Package log implements a wrapper around the Go standard library's logging package. |
multiroot
|
|
config
Package config contains the multi-root configuration file parser.
|
Package config contains the multi-root configuration file parser. |
Package ocsp exposes OCSP signing functionality, much like the signer package does for certificate signing.
|
Package ocsp exposes OCSP signing functionality, much like the signer package does for certificate signing. |
config
Package config in the ocsp directory provides configuration data for an OCSP signer.
|
Package config in the ocsp directory provides configuration data for an OCSP signer. |
pkcs11
Package pkcs11 in the ocsp directory provides a way to construct a PKCS#11-based OCSP signer.
|
Package pkcs11 in the ocsp directory provides a way to construct a PKCS#11-based OCSP signer. |
Package revoke provides functionality for checking the validity of a cert.
|
Package revoke provides functionality for checking the validity of a cert. |
Package selfsign implements certificate selfsigning.
|
Package selfsign implements certificate selfsigning. |
Package signer implements certificate signature functionality for CFSSL.
|
Package signer implements certificate signature functionality for CFSSL. |
local
Package local implements certificate signature functionality for CFSSL.
|
Package local implements certificate signature functionality for CFSSL. |
pkcs11
Package pkcs11 implements support for PKCS #11 signers.
|
Package pkcs11 implements support for PKCS #11 signers. |
universal
Package universal implements a signer that can do remote or local
|
Package universal implements a signer that can do remote or local |
Package transport implements functions for facilitating proper TLS-secured communications for clients and servers.
|
Package transport implements functions for facilitating proper TLS-secured communications for clients and servers. |
ca
Package ca provides the CertificateAuthority interface for the transport package, which provides an interface to get a CSR signed by some certificate authority.
|
Package ca provides the CertificateAuthority interface for the transport package, which provides an interface to get a CSR signed by some certificate authority. |
core
Package core contains core definitions for the transport package, the most salient of which is likely the Identity type.
|
Package core contains core definitions for the transport package, the most salient of which is likely the Identity type. |
example/exlib
Package exlib contains common library code for the examples.
|
Package exlib contains common library code for the examples. |
kp
Package kp describes transport key providers and provides a reference implementation.
|
Package kp describes transport key providers and provides a reference implementation. |
roots
Package roots includes support for loading trusted roots from various sources.
|
Package roots includes support for loading trusted roots from various sources. |
Package ubiquity contains the ubiquity scoring logic for CFSSL bundling.
|
Package ubiquity contains the ubiquity scoring logic for CFSSL bundling. |
Package whitelist implements IP whitelisting for various types of connections.
|
Package whitelist implements IP whitelisting for various types of connections. |
Click to show internal directories.
Click to hide internal directories.