sshagentkms

package

v0.15.12-rc5 Latest Latest Go to latest Published: Apr 13, 2021 License: Apache-2.0 Imports: 14 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

This section is empty.

This section is empty.

func NewWrappedSignerFromSSHSigner(signer ssh.Signer) crypto.Signer

NewWrappedSignerFromSSHSigner returns a new crypto signer wrapping the given one.

type SSHAgentKMS struct {
	// contains filtered or unexported fields
}

SSHAgentKMS is a key manager that uses keys provided by ssh-agent

func New(ctx context.Context, opts apiv1.Options) (*SSHAgentKMS, error)

New returns a new SSHAgentKMS.

func NewFromAgent(ctx context.Context, opts apiv1.Options, agentClient agent.Agent) (*SSHAgentKMS, error)

NewFromAgent initializes an SSHAgentKMS from a given agent, this method is used for testing purposes.

func (k *SSHAgentKMS) Close() error

Close closes the agent. This is a noop for the SSHAgentKMS.

func (k *SSHAgentKMS) CreateKey(req *apiv1.CreateKeyRequest) (*apiv1.CreateKeyResponse, error)

CreateKey generates a new key and returns both public and private key.

func (k *SSHAgentKMS) CreateSigner(req *apiv1.CreateSignerRequest) (crypto.Signer, error)

CreateSigner returns a new signer configured with the given signing key.

func (k *SSHAgentKMS) GetPublicKey(req *apiv1.GetPublicKeyRequest) (crypto.PublicKey, error)

GetPublicKey returns the public key from the file passed in the request name.

type WrappedSSHSigner struct {
	Sshsigner ssh.Signer
}

WrappedSSHSigner is a utility type to wrap a ssh.Signer as a crypto.Signer

func (s *WrappedSSHSigner) Public() crypto.PublicKey

Public returns the agent public key. The type of this public key is *agent.Key.

func (s *WrappedSSHSigner) Sign(rand io.Reader, digest []byte, opts crypto.SignerOpts) (signature []byte, err error)

Sign signs the given digest using the ssh agent and returns the signature.