Why Go
- Case Studies
  
  Common problems companies solve with Go
- Use Cases
  
  Stories about how and why companies use Go
- Security
  
  How Go can help keep you secure by default
Learn
Docs
- Effective Go
  
  Tips for writing clear, performant, and idiomatic Go code
- Go User Manual
  
  A complete introduction to building software with Go
- Standard library
  
  Reference documentation for Go's standard library
- Release Notes
  
  Learn what's new in each Go release
Packages
Community
- Recorded Talks
  
  Videos from prior events
- Meetups
  
  Meet other local Go developers
- Conferences
  
  Learn and network with Go developers from around the world
- Go blog
  
  The Go project's official blog.
- Go project
  
  Get help and stay informed from Go
- Get connected

crypto

package

v0.9.0-rc2 Latest Latest Go to latest Published: Aug 10, 2025 License: Apache-2.0 Imports: 16 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/flightctl/flightctl

Links

Open Source Insights

Documentation ¶

Index ¶

func DecryptKeyBytes(pemKeyEncrypted []byte, pw []byte) ([]byte, error)
func EnsureKey(keyFile string) (crypto.PublicKey, crypto.PrivateKey, bool, error)
func GetExtensionValue(cert *x509.Certificate, oid asn1.ObjectIdentifier) (string, error)
func GetPEMBlock(pemKey []byte) (*pem.Block, error)
func HashPublicKey(key crypto.PublicKey) ([]byte, error)
func IsEncryptedPEMKey(pemKey []byte) (bool, error)
func LoadKey(keyFile string) (crypto.PrivateKey, error)
func MakeCSR(privateKey crypto.Signer, subjectName string) ([]byte, error)
func NewKeyPair() (crypto.PublicKey, crypto.PrivateKey, error)
func NewKeyPairWithHash() (crypto.PublicKey, crypto.PrivateKey, []byte, error)
func PEMEncodeKey(key crypto.PrivateKey) ([]byte, error)
func ParseCSR(csrPEM []byte) (*x509.CertificateRequest, error)
func ParseKeyPEM(pemKey []byte) (crypto.PrivateKey, error)
func WriteKey(keyPath string, key crypto.PrivateKey) error
func WritePasswordEncryptedKey(keyPath string, key crypto.PrivateKey, password []byte) error

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func DecryptKeyBytes ¶

func DecryptKeyBytes(pemKeyEncrypted []byte, pw []byte) ([]byte, error)

func EnsureKey ¶

func EnsureKey(keyFile string) (crypto.PublicKey, crypto.PrivateKey, bool, error)

func GetExtensionValue ¶

func GetExtensionValue(cert *x509.Certificate, oid asn1.ObjectIdentifier) (string, error)

func GetPEMBlock ¶

func GetPEMBlock(pemKey []byte) (*pem.Block, error)

func HashPublicKey ¶

func HashPublicKey(key crypto.PublicKey) ([]byte, error)

func IsEncryptedPEMKey ¶

func IsEncryptedPEMKey(pemKey []byte) (bool, error)

func LoadKey ¶

func LoadKey(keyFile string) (crypto.PrivateKey, error)

func MakeCSR ¶

func MakeCSR(privateKey crypto.Signer, subjectName string) ([]byte, error)

func NewKeyPair ¶

func NewKeyPair() (crypto.PublicKey, crypto.PrivateKey, error)

func NewKeyPairWithHash ¶

func NewKeyPairWithHash() (crypto.PublicKey, crypto.PrivateKey, []byte, error)

func PEMEncodeKey ¶

func PEMEncodeKey(key crypto.PrivateKey) ([]byte, error)

func ParseCSR ¶

func ParseCSR(csrPEM []byte) (*x509.CertificateRequest, error)

func ParseKeyPEM ¶

func ParseKeyPEM(pemKey []byte) (crypto.PrivateKey, error)

func WriteKey ¶

func WriteKey(keyPath string, key crypto.PrivateKey) error

func WritePasswordEncryptedKey ¶

func WritePasswordEncryptedKey(keyPath string, key crypto.PrivateKey, password []byte) error

this copies functionality from sigstore's cosign to encrypt the private key using functionality from secure systems lab, which relies on golang crypto's secretbox and scrypt. see: https://github.com/sigstore/cosign/blob/77f71e0d7470e31ed4ed5653fe5a7c8e3b283606/pkg/cosign/keys.go#L158 https://github.com/secure-systems-lab/go-securesystemslib/blob/7dd9eabdaf9ea98ba33653cdfbdec7057bd662fd/encrypted/encrypted.go#L158

Types ¶

This section is empty.

Source Files ¶

View all Source files