ca

package

v1.1.4 Latest Latest Go to latest Published: Dec 8, 2025 License: Apache-2.0 Imports: 39 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/sigstore/sigstore-go

Links

Open Source Insights

Documentation ¶

Index ¶

func GenerateFulcioIntermediate(rootTemplate *x509.Certificate, rootPriv crypto.Signer) (*x509.Certificate, *ecdsa.PrivateKey, error)
func GenerateLeafCert(subject string, oidcIssuer string, expiration time.Time, ...) (*x509.Certificate, error)
func GenerateRootCa() (*x509.Certificate, *ecdsa.PrivateKey, error)
func GenerateTSAIntermediate(rootTemplate *x509.Certificate, rootPriv crypto.Signer) (*x509.Certificate, *ecdsa.PrivateKey, error)
func GenerateTSALeafCert(expiration time.Time, priv *ecdsa.PrivateKey, parentTemplate *x509.Certificate, ...) (*x509.Certificate, error)
type TestEntity
type VirtualSigstore

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func GenerateFulcioIntermediate ¶

func GenerateFulcioIntermediate(rootTemplate *x509.Certificate, rootPriv crypto.Signer) (*x509.Certificate, *ecdsa.PrivateKey, error)

func GenerateLeafCert ¶

func GenerateLeafCert(subject string, oidcIssuer string, expiration time.Time, priv crypto.PrivateKey,
	parentTemplate *x509.Certificate, parentPriv crypto.Signer) (*x509.Certificate, error)

func GenerateRootCa ¶

func GenerateRootCa() (*x509.Certificate, *ecdsa.PrivateKey, error)

func GenerateTSAIntermediate ¶

func GenerateTSAIntermediate(rootTemplate *x509.Certificate, rootPriv crypto.Signer) (*x509.Certificate, *ecdsa.PrivateKey, error)

func GenerateTSALeafCert ¶

func GenerateTSALeafCert(expiration time.Time, priv *ecdsa.PrivateKey, parentTemplate *x509.Certificate, parentPriv crypto.Signer) (*x509.Certificate, error)

Types ¶

type TestEntity ¶

type TestEntity struct {
	// contains filtered or unexported fields
}

func (*TestEntity) HasInclusionPromise ¶

func (e *TestEntity) HasInclusionPromise() bool

func (*TestEntity) HasInclusionProof ¶

func (e *TestEntity) HasInclusionProof() bool

func (*TestEntity) SignatureContent ¶

func (e *TestEntity) SignatureContent() (verify.SignatureContent, error)

func (*TestEntity) Timestamps ¶

func (e *TestEntity) Timestamps() ([][]byte, error)

func (*TestEntity) TlogEntries ¶

func (e *TestEntity) TlogEntries() ([]*tlog.Entry, error)

func (*TestEntity) VerificationContent ¶

func (e *TestEntity) VerificationContent() (verify.VerificationContent, error)

func (*TestEntity) Version ¶ added in v0.7.3

func (e *TestEntity) Version() (string, error)

type VirtualSigstore ¶

type VirtualSigstore struct {
	// contains filtered or unexported fields
}

func NewVirtualSigstore ¶

func NewVirtualSigstore() (*VirtualSigstore, error)

func NewVirtualSigstoreWithExistingRekorEntry ¶ added in v1.1.0

func NewVirtualSigstoreWithExistingRekorEntry() (*VirtualSigstore, error)

func NewVirtualSigstoreWithSigningAlg ¶ added in v0.7.3

func NewVirtualSigstoreWithSigningAlg(signingKeyDetails v1.PublicKeyDetails) (*VirtualSigstore, error)

func (*VirtualSigstore) Attest ¶

func (ca *VirtualSigstore) Attest(identity, issuer string, envelopeBody []byte) (*TestEntity, error)

func (*VirtualSigstore) AttestAtTime ¶

func (ca *VirtualSigstore) AttestAtTime(identity, issuer string, envelopeBody []byte, integratedTime time.Time, generateInclusionProof bool) (*TestEntity, error)

func (*VirtualSigstore) CTLogs ¶ added in v0.3.0

func (ca *VirtualSigstore) CTLogs() map[string]*root.TransparencyLog

func (*VirtualSigstore) FulcioCertificateAuthorities ¶

func (ca *VirtualSigstore) FulcioCertificateAuthorities() []root.CertificateAuthority

func (*VirtualSigstore) GenerateLeafCert ¶

func (ca *VirtualSigstore) GenerateLeafCert(identity, issuer string) (*x509.Certificate, crypto.PrivateKey, error)

func (*VirtualSigstore) GenerateTlogEntry ¶ added in v0.4.0

func (ca *VirtualSigstore) GenerateTlogEntry(leafCert *x509.Certificate, envelope *dsse.Envelope, sig []byte, integratedTime int64, generateInclusionProof bool) (*tlog.Entry, error)

func (*VirtualSigstore) GetInclusionProof ¶ added in v0.7.0

func (ca *VirtualSigstore) GetInclusionProof(rekorBodyRaw []byte) (*models.InclusionProof, error)

func (*VirtualSigstore) PublicKeyVerifier ¶

func (ca *VirtualSigstore) PublicKeyVerifier(keyID string) (root.TimeConstrainedVerifier, error)

func (*VirtualSigstore) RekorLogID ¶ added in v0.7.0

func (ca *VirtualSigstore) RekorLogID() (string, error)

func (*VirtualSigstore) RekorLogs ¶ added in v0.3.0

func (ca *VirtualSigstore) RekorLogs() map[string]*root.TransparencyLog

func (*VirtualSigstore) RekorSignPayload ¶ added in v0.7.0

func (ca *VirtualSigstore) RekorSignPayload(payload tlog.RekorPayload) ([]byte, error)

func (*VirtualSigstore) Sign ¶

func (ca *VirtualSigstore) Sign(identity, issuer string, artifact []byte) (*TestEntity, error)

func (*VirtualSigstore) SignAtTime ¶

func (ca *VirtualSigstore) SignAtTime(identity, issuer string, artifact []byte, integratedTime time.Time) (*TestEntity, error)

func (*VirtualSigstore) SignAtTimeWithVersion ¶ added in v0.7.3

func (ca *VirtualSigstore) SignAtTimeWithVersion(identity, issuer string, artifact []byte, integratedTime time.Time, version string) (*TestEntity, error)

func (*VirtualSigstore) SignWithVersion ¶ added in v0.7.3

func (ca *VirtualSigstore) SignWithVersion(identity, issuer string, artifact []byte, version string) (*TestEntity, error)

func (*VirtualSigstore) TimestampResponse ¶ added in v0.4.0

func (ca *VirtualSigstore) TimestampResponse(sig []byte) ([]byte, error)

func (*VirtualSigstore) TimestampingAuthorities ¶ added in v0.3.0

func (ca *VirtualSigstore) TimestampingAuthorities() []root.TimestampingAuthority

Source Files ¶

View all Source files

ca.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL