azure

package

v1.7.1 Latest Latest Go to latest Published: May 1, 2024 License: MPL-2.0 Imports: 20 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Package azure implements SecureBoot/PCR signers via Azure Key Vault.

This section is empty.

This section is empty.

This section is empty.

type KeySigner struct {
	// contains filtered or unexported fields
}

KeySigner implements measure.RSAKey interface.

KeySigner wraps Azure APIs to provide public key and crypto.Signer interface out of Azure Key Vault RSA key.

func NewPCRSigner(ctx context.Context, vaultURL, keyID, keyVersion string) (*KeySigner, error)

NewPCRSigner creates a new PCR signer from Azure settings.

func (s *KeySigner) Public() crypto.PublicKey

Public returns the public key.

func (s *KeySigner) PublicRSAKey() *rsa.PublicKey

PublicRSAKey returns the public key.

func (s *KeySigner) Sign(_ io.Reader, digest []byte, opts crypto.SignerOpts) (signature []byte, err error)

Sign implements the crypto.Signer interface.

type SecureBootSigner struct {
	// contains filtered or unexported fields
}

SecureBootSigner implements pesign.CertificateSigner interface.

func NewSecureBootSigner(ctx context.Context, vaultURL, certificateID, certificateVersion string) (*SecureBootSigner, error)

NewSecureBootSigner creates a new SecureBootSigner.

func (s *SecureBootSigner) Certificate() *x509.Certificate

Certificate returns the certificate.

func (s *SecureBootSigner) Signer() crypto.Signer

Signer returns the signer.