Documentation
¶
Overview ¶
Package seedengine provides deterministic key derivation of ECDSA and symmetric keys from a secret seed.
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type SeedEngine ¶
type SeedEngine struct {
// contains filtered or unexported fields
}
SeedEngine provides deterministic key derivation of ECDSA and symmetric keys from a secret seed.
func New ¶
func New(secretSeed []byte, salt []byte) (*SeedEngine, error)
New creates a new SeedEngine from a secret seed and a salt.
func (*SeedEngine) DeriveMeshCAKey ¶
func (s *SeedEngine) DeriveMeshCAKey(transactionHash [hashSize]byte) (*ecdsa.PrivateKey, error)
DeriveMeshCAKey derives a secret for a mesh CA from the transaction hash and the secret seed.
func (*SeedEngine) DerivePodSecret ¶
func (s *SeedEngine) DerivePodSecret(policyHash [hashSize]byte) ([]byte, error)
DerivePodSecret derives a secret for a pod from the policy hash and the secret seed.
func (*SeedEngine) RootCAKey ¶
func (s *SeedEngine) RootCAKey() *ecdsa.PrivateKey
RootCAKey returns the root CA key which is derived from the secret seed.
func (*SeedEngine) TransactionSigningKey ¶
func (s *SeedEngine) TransactionSigningKey() *ecdsa.PrivateKey
TransactionSigningKey returns the transaction signing key which is derived from the secret seed.
Source Files
Click to show internal directories.
Click to hide internal directories.