Documentation ¶
Overview ¶
Package local implements certificate signature functionality for CF-SSL.
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func OverrideHosts ¶
func OverrideHosts(template *x509.Certificate, hosts []string)
OverrideHosts fills template's IPAddresses and DNSNames with the content of hosts, if it is not nil.
Types ¶
type Signer ¶
type Signer struct {
// contains filtered or unexported fields
}
Signer contains a signer that uses the standard library to support both ECDSA and RSA CA keys.
func NewSigner ¶
func NewSigner(priv crypto.Signer, cert *x509.Certificate, sigAlgo x509.SignatureAlgorithm, policy *config.Signing) (*Signer, error)
NewSigner creates a new Signer directly from a private key and certificate, with optional policy.
func NewSignerFromFile ¶
NewSignerFromFile generates a new local signer from a caFile and a caKey file, both PEM encoded.
func (*Signer) Certificate ¶
func (s *Signer) Certificate(label, profile string) (*x509.Certificate, error)
Certificate returns the signer's certificate.
func (*Signer) SigAlgo ¶
func (s *Signer) SigAlgo() x509.SignatureAlgorithm
SigAlgo returns the RSA signer's signature algorithm.
Click to show internal directories.
Click to hide internal directories.