ca

package

v0.0.0-...-242d746 Latest Latest Go to latest Published: Dec 18, 2024 License: MPL-2.0 Imports: 43 Imported by: 57

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/letsencrypt/boulder

Documentation ¶

Index ¶

func NewCAMetrics(stats prometheus.Registerer) *caMetrics
func NewCRLImpl(issuers []*issuance.Issuer, profileConfig issuance.CRLProfileConfig, ...) (*crlImpl, error)
func NewCertificateAuthorityImpl(sa sapb.StorageAuthorityCertificateClient, pa core.PolicyAuthority, ...) (*certificateAuthorityImpl, error)
func NewOCSPImpl(issuers []*issuance.Issuer, ocspLifetime time.Duration, ocspLogMaxLength int, ...) (*ocspImpl, error)
type OCSPGenerator

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func NewCAMetrics ¶

func NewCAMetrics(stats prometheus.Registerer) *caMetrics

func NewCRLImpl ¶

func NewCRLImpl(
	issuers []*issuance.Issuer,
	profileConfig issuance.CRLProfileConfig,
	maxLogLen int,
	logger blog.Logger,
	metrics *caMetrics,
) (*crlImpl, error)

NewCRLImpl returns a new object which fulfils the ca.proto CRLGenerator interface. It uses the list of issuers to determine what issuers it can issue CRLs from. lifetime sets the validity period (inclusive) of the resulting CRLs.

func NewCertificateAuthorityImpl ¶

func NewCertificateAuthorityImpl(
	sa sapb.StorageAuthorityCertificateClient,
	pa core.PolicyAuthority,
	boulderIssuers []*issuance.Issuer,
	defaultCertProfileName string,
	certificateProfiles map[string]*issuance.ProfileConfig,
	serialPrefix byte,
	maxNames int,
	keyPolicy goodkey.KeyPolicy,
	logger blog.Logger,
	metrics *caMetrics,
	clk clock.Clock,
) (*certificateAuthorityImpl, error)

NewCertificateAuthorityImpl creates a CA instance that can sign certificates from any number of issuance.Issuers according to their profiles, and can sign OCSP (via delegation to an ocspImpl and its issuers).

func NewOCSPImpl ¶

func NewOCSPImpl(
	issuers []*issuance.Issuer,
	ocspLifetime time.Duration,
	ocspLogMaxLength int,
	ocspLogPeriod time.Duration,
	logger blog.Logger,
	stats prometheus.Registerer,
	metrics *caMetrics,
	clk clock.Clock,
) (*ocspImpl, error)

Types ¶

type OCSPGenerator ¶

type OCSPGenerator interface {
	capb.OCSPGeneratorServer
	LogOCSPLoop()
	Stop()
}

OCSPGenerator is an interface which exposes both the auto-generated gRPC methods and our special-purpose log queue start and stop methods, so that they can be called from main without exporting the ocspImpl type.

Source Files ¶

View all Source files

Directories ¶

Path	Synopsis
proto

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL