Documentation ¶
Overview ¶
Package keystore implements the ACI keystore.
Index ¶
- func CheckSignature(prefix string, signed, signature io.Reader) (*openpgp.Entity, error)
- type Config
- type Keystore
- func (ks *Keystore) CheckSignature(prefix string, signed, signature io.Reader) (*openpgp.Entity, error)
- func (ks *Keystore) DeleteTrustedKeyPrefix(prefix, fingerprint string) error
- func (ks *Keystore) DeleteTrustedKeyRoot(fingerprint string) error
- func (ks *Keystore) MaskTrustedKeySystemPrefix(prefix, fingerprint string) (string, error)
- func (ks *Keystore) MaskTrustedKeySystemRoot(fingerprint string) (string, error)
- func (ks *Keystore) StoreTrustedKeyPrefix(prefix string, r io.Reader) (string, error)
- func (ks *Keystore) StoreTrustedKeyRoot(r io.Reader) (string, error)
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
Types ¶
type Config ¶
type Config struct { RootPath string PrefixPath string SystemRootPath string SystemPrefixPath string }
A Config structure is used to configure a Keystore.
type Keystore ¶
type Keystore struct {
*Config
}
A Keystore represents a repository of trusted keys which can be used to verify ACI images.
func NewTestKeystore ¶
NewTestKeystore creates a new KeyStore backed by a temp directory. NewTestKeystore returns a KeyStore, the path to the temp directory, and an error if any.
func (*Keystore) CheckSignature ¶
func (ks *Keystore) CheckSignature(prefix string, signed, signature io.Reader) (*openpgp.Entity, error)
CheckSignature takes a signed file and a detached signature and returns the signer if the signature is signed by a trusted signer. If the signer is unknown or not trusted, opengpg.ErrUnknownIssuer is returned.
func (*Keystore) DeleteTrustedKeyPrefix ¶
DeleteTrustedKeyPrefix deletes the prefix trusted key identified by fingerprint.
func (*Keystore) DeleteTrustedKeyRoot ¶
DeleteTrustedKeyRoot deletes the root trusted key identified by fingerprint.
func (*Keystore) MaskTrustedKeySystemPrefix ¶
MaskTrustedKeySystemPrefix masks the system prefix trusted key identified by fingerprint.
func (*Keystore) MaskTrustedKeySystemRoot ¶
MaskTrustedKeySystemRoot masks the system root trusted key identified by fingerprint.
func (*Keystore) StoreTrustedKeyPrefix ¶
StoreTrustedKeyPrefix stores the contents of public key r as a prefix trusted key.
Directories ¶
Path | Synopsis |
---|---|
Package keystoretest provides utilities for ACI keystore testing.
|
Package keystoretest provides utilities for ACI keystore testing. |