pkiutil

package

v0.0.0-...-6c4e8d0 Latest Latest Go to latest Published: Jan 23, 2024 License: Apache-2.0 Imports: 19 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

jihulab.com/nieyinliang/cloudpods-operator

Links

Open Source Insights

Documentation ¶

Index ¶

Constants
func EncodeCertPEM(cert *x509.Certificate) []byte
func GetServiceAltNames(oc *v1alpha1.OnecloudCluster, serviceName string, certName string) (*certutil.AltNames, error)
func NewCertAndKey(caCert *x509.Certificate, caKey crypto.Signer, config *certutil.Config) (*x509.Certificate, crypto.Signer, error)
func NewCertificateAuthority(config *certutil.Config) (*x509.Certificate, crypto.Signer, error)
func NewPrivateKey() (crypto.Signer, error)
func NewSignedCert(cfg *certutil.Config, key crypto.Signer, caCert *x509.Certificate, ...) (*x509.Certificate, error)
func TryLoadCertFromDisk(pkiPath, name string) (*x509.Certificate, error)
func TryLoadKeyFromDisk(pkiPath, name string) (crypto.Signer, error)

Constants ¶

View Source

const (
	// PrivateKeyBlockType is a possible value for pem.Block.Type.
	PrivateKeyBlockType = "PRIVATE KEY"
	// PublicKeyBlockType is a possible value for pem.Block.Type.
	PublicKeyBlockType = "PUBLIC KEY"
	// CertificateBlockType is a possible value for pem.Block.Type.
	CertificateBlockType = "CERTIFICATE"
	// RSAPrivateKeyBlockType is a possible value for pem.Block.Type.
	RSAPrivateKeyBlockType = "RSA PRIVATE KEY"
)

Variables ¶

This section is empty.

Functions ¶

func EncodeCertPEM ¶

func EncodeCertPEM(cert *x509.Certificate) []byte

EncodeCertPEM returns PEM-endcoded certificate data

func GetServiceAltNames ¶

func GetServiceAltNames(oc *v1alpha1.OnecloudCluster, serviceName string, certName string) (*certutil.AltNames, error)

GetServiceAltNames builds an AltNames object to be used when generating service certificate

func NewCertAndKey ¶

func NewCertAndKey(caCert *x509.Certificate, caKey crypto.Signer, config *certutil.Config) (*x509.Certificate, crypto.Signer, error)

NewCertAndKey creates new certificate and key by passing the certificate authority certificate and key

func NewCertificateAuthority ¶

func NewCertificateAuthority(config *certutil.Config) (*x509.Certificate, crypto.Signer, error)

NewCertificateAuthority creates new certificate and private key for the certificate authority

func NewPrivateKey ¶

func NewPrivateKey() (crypto.Signer, error)

NewPrivateKey creates an RSA private key

func NewSignedCert ¶

func NewSignedCert(cfg *certutil.Config, key crypto.Signer, caCert *x509.Certificate, caKey crypto.Signer) (*x509.Certificate, error)

NewSignedCert creates a signed certificate using the given CA certificate and key

func TryLoadCertFromDisk ¶

func TryLoadCertFromDisk(pkiPath, name string) (*x509.Certificate, error)

TryLoadCertFromDisk tries to load the cert from the disk and validates that it is valid

func TryLoadKeyFromDisk ¶

func TryLoadKeyFromDisk(pkiPath, name string) (crypto.Signer, error)

TryLoadKeyFromDisk tries to load the key from the disk and validates that it is valid

Types ¶

This section is empty.

Source Files ¶

View all Source files

pki_helpers.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL