Why Go
- Case Studies
  
  Common problems companies solve with Go
- Use Cases
  
  Stories about how and why companies use Go
- Security
  
  How Go can help keep you secure by default
Learn
Docs
- Effective Go
  
  Tips for writing clear, performant, and idiomatic Go code
- Go User Manual
  
  A complete introduction to building software with Go
- Standard library
  
  Reference documentation for Go's standard library
- Release Notes
  
  Learn what's new in each Go release
Packages
Community
- Recorded Talks
  
  Videos from prior events
- Meetups
  
  Meet other local Go developers
- Conferences
  
  Learn and network with Go developers from around the world
- Go blog
  
  The Go project's official blog.
- Go project
  
  Get help and stay informed from Go
- Get connected

crypto

package

Go to main page

Versions in this module

v0

v0.5.0

Jul 17, 2025

Changes in this version

+ const KeyStoreDirName

+ const PrivSKFileName

+ const ProtobufProtocolVersionV1

+ const SignCertsDirName

+ func DeserializeVerifier(id driver.Identity) (driver.Verifier, error)

+ func GetBCCSPFromConf(conf *BCCSP, keyStore bccsp.KeyStore) (bccsp.BCCSP, error)

+ func GetDefaultBCCSP(keyStore bccsp.KeyStore) (bccsp.BCCSP, error)

+ func GetEnrollmentID(id []byte) (string, error)

+ func GetPKCS11BCCSP(conf *BCCSP, keyStore bccsp.KeyStore) (bccsp.BCCSP, error)

+ func GetRevocationHandle(id []byte) ([]byte, error)

+ func GetSigningIdentity(conf *Config, bccspConfig *BCCSP, keyStore bccsp.KeyStore) (driver.FullIdentity, error)

+ func Info(raw []byte) (string, error)

+ func IsLowS(k *ecdsa.PublicKey, s *big.Int) (bool, error)

+ func MarshalConfig(config *Config) ([]byte, error)

+ func NewECDSAVerifier(pk *ecdsa.PublicKey) *ecdsaVerifier

+ func NewSKIBasedSigner(csp bccsp.BCCSP, ski []byte, pk crypto.PublicKey) (crypto.Signer, error)

+ func PemDecodeCert(pemBytes []byte) (*x509.Certificate, error)

+ func PemDecodeKey(keyBytes []byte) (interface{}, error)

+ func SerializeIdentity(conf *Config) ([]byte, error)

+ func ToPKCS11OptsOpts(o *PKCS11) *pkcs11.PKCS11Opts

+ type BCCSP struct

+ Default string

+ PKCS11 *PKCS11

+ SW *SoftwareProvider

+ func BCCSPOpts(defaultProvider string) (*BCCSP, error)

+ func ToBCCSPOpts(boxed interface{}) (*BCCSP, error)

+ type Config = config.Config

+ func LoadConfig(dir string, keyStoreDirName string) (*Config, error)

+ func LoadConfigWithIdentityInfo(signingIdentityInfo *SigningIdentityInfo) (*Config, error)

+ func RemovePrivateSigner(c *Config) (*Config, error)

+ func UnmarshalConfig(data []byte) (*Config, error)

+ type CryptoConfig = config.CryptoConfig

+ type ECDSASignature struct

+ R *big.Int

+ S *big.Int

+ type IdentityFactory struct

+ SignatureHashFamily string

+ func NewIdentityFactory(bccsp bccsp.BCCSP, signatureHashFamily string) *IdentityFactory

+ func (f *IdentityFactory) GetFullIdentity(sidInfo *SigningIdentityInfo) (*fullIdentity, error)

+ func (f *IdentityFactory) GetIdentity(sidInfo *SigningIdentityInfo) (*verifyingIdentity, error)

+ type KeyIDMapping struct

+ ID string

+ SKI string

+ type KeyInfo = config.KeyInfo

+ type KeyStore = bccsp.KeyStore

+ type Opts struct

+ BCCSP *BCCSP

+ type PKCS11 struct

+ AltID string

+ Hash string

+ Immutable bool

+ KeyIDs []KeyIDMapping

+ Label string

+ Library string

+ Pin string

+ Security int

+ SoftwareVerify bool

+ type SKIBasedSigner struct

+ SKI []byte

+ func (s *SKIBasedSigner) Public() crypto.PublicKey

+ func (s *SKIBasedSigner) Sign(rand io.Reader, digest []byte, opts crypto.SignerOpts) ([]byte, error)

+ type SigningIdentityInfo = config.SigningIdentityInfo

+ type SoftwareProvider struct

+ Hash string

+ Security int