local

package

v0.0.0-...-a0081c5 Latest Latest Go to latest Published: Oct 21, 2020 License: Apache-2.0 Imports: 30 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/VoneChain-CS/fabric-ca-gm

Links

Open Source Insights

Documentation ¶

Overview ¶

Package local implements certificate signature functionality for CFSSL.

Index ¶

func OverrideHosts(template *sm2.Certificate, hosts []string)
func PopulateSubjectFromCSR(s *signer.Subject, req pkix.Name) pkix.Name
type Signer
- func NewSigner(priv crypto.Signer, cert *x509.Certificate, sigAlgo x509.SignatureAlgorithm, ...) (*Signer, error)
- func NewSignerFromFile(caFile, caKeyFile string, policy *config.Signing) (*Signer, error)

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func OverrideHosts ¶

func OverrideHosts(template *sm2.Certificate, hosts []string)

OverrideHosts fills template's IPAddresses, EmailAddresses, and DNSNames with the content of hosts, if it is not nil.

func PopulateSubjectFromCSR ¶

func PopulateSubjectFromCSR(s *signer.Subject, req pkix.Name) pkix.Name

PopulateSubjectFromCSR has functionality similar to Name, except it fills the fields of the resulting pkix.Name with req's if the subject's corresponding fields are empty

Types ¶

type Signer ¶

type Signer struct {
	// contains filtered or unexported fields
}

Signer contains a signer that uses the standard library to support both ECDSA and RSA CA keys.

func NewSigner ¶

func NewSigner(priv crypto.Signer, cert *x509.Certificate, sigAlgo x509.SignatureAlgorithm, policy *config.Signing) (*Signer, error)

NewSigner creates a new Signer directly from a private key and certificate, with optional policy.

func NewSignerFromFile ¶

func NewSignerFromFile(caFile, caKeyFile string, policy *config.Signing) (*Signer, error)

NewSignerFromFile generates a new local signer from a caFile and a caKey file, both PEM encoded.

func (*Signer) Certificate ¶

func (s *Signer) Certificate(label, profile string) (*sm2.Certificate, error)

Certificate returns the signer's certificate.

func (*Signer) GetDBAccessor ¶

func (s *Signer) GetDBAccessor() certdb.Accessor

GetDBAccessor returns the signers' cert db accessor

func (*Signer) Info ¶

func (s *Signer) Info(req info.Req) (resp *info.Resp, err error)

Info return a populated info.Resp struct or an error.

func (*Signer) Policy ¶

func (s *Signer) Policy() *config.Signing

Policy returns the signer's policy.

func (*Signer) SetDBAccessor ¶

func (s *Signer) SetDBAccessor(dba certdb.Accessor)

SetDBAccessor sets the signers' cert db accessor

func (*Signer) SetPolicy ¶

func (s *Signer) SetPolicy(policy *config.Signing)

SetPolicy sets the signer's signature policy.

func (*Signer) SetReqModifier ¶

func (s *Signer) SetReqModifier(func(*http.Request, []byte))

SetReqModifier does nothing for local

func (*Signer) SigAlgo ¶

func (s *Signer) SigAlgo() sm2.SignatureAlgorithm

SigAlgo returns the RSA signer's signature algorithm.

func (*Signer) Sign ¶

func (s *Signer) Sign(req signer.SignRequest) (cert []byte, err error)

Sign signs a new certificate based on the PEM-encoded client certificate or certificate request with the signing profile, specified by profileName.

Source Files ¶

View all Source files

local.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL