Why Go
- Case Studies
  
  Common problems companies solve with Go
- Use Cases
  
  Stories about how and why companies use Go
- Security
  
  How Go can help keep you secure by default
Learn
Docs
- Effective Go
  
  Tips for writing clear, performant, and idiomatic Go code
- Go User Manual
  
  A complete introduction to building software with Go
- Standard library
  
  Reference documentation for Go's standard library
- Release Notes
  
  Learn what's new in each Go release
Packages
Community
- Recorded Talks
  
  Videos from prior events
- Meetups
  
  Meet other local Go developers
- Conferences
  
  Learn and network with Go developers from around the world
- Go blog
  
  The Go project's official blog.
- Go project
  
  Get help and stay informed from Go
- Get connected

crypto

package

Go to main page

Versions in this module

v1

v1.5.1

Apr 28, 2017

Changes in this version

+ const DefaultCACertificateLifetimeInDays

+ const DefaultCertificateLifetimeInDays

+ func CertsFromPEM(pemCerts []byte) ([]*x509.Certificate, error)

+ func CipherSuite(cipherName string) (uint16, error)

+ func CipherSuitesOrDie(cipherNames []string) []uint16

+ func DefaultCiphers() []uint16

+ func DefaultTLSVersion() uint16

+ func IPAddressesDNSNames(hosts []string) ([]net.IP, []string)

+ func NewKeyPair() (crypto.PublicKey, crypto.PrivateKey, error)

+ func SecureTLSConfig(config *tls.Config) *tls.Config

+ func TLSVersion(versionName string) (uint16, error)

+ func TLSVersionOrDie(versionName string) uint16

+ func ValidCipherSuites() []string

+ func ValidTLSVersions() []string

+ type CA struct

+ Config *TLSCertificateConfig

+ SerialGenerator SerialGenerator

+ func EnsureCA(certFile, keyFile, serialFile, name string, expireDays int) (*CA, bool, error)

+ func GetCA(certFile, keyFile, serialFile string) (*CA, error)

+ func MakeCA(certFile, keyFile, serialFile, name string, expireDays int) (*CA, error)

+ func (ca *CA) EnsureClientCertificate(certFile, keyFile string, u user.Info, expireDays int) (*TLSCertificateConfig, bool, error)

+ func (ca *CA) EnsureServerCert(certFile, keyFile string, hostnames sets.String, expireDays int) (*TLSCertificateConfig, bool, error)

+ func (ca *CA) MakeAndWriteServerCert(certFile, keyFile string, hostnames sets.String, expireDays int) (*TLSCertificateConfig, error)

+ func (ca *CA) MakeClientCertificate(certFile, keyFile string, u user.Info, expireDays int) (*TLSCertificateConfig, error)

+ func (ca *CA) MakeServerCert(hostnames sets.String, expireDays int, fns ...CertificateExtensionFunc) (*TLSCertificateConfig, error)

+ type CertificateExtensionFunc func(*x509.Certificate) error

+ type RandomSerialGenerator struct

+ func (s *RandomSerialGenerator) Next(template *x509.Certificate) (int64, error)

+ type SerialFileGenerator struct

+ Serial int64

+ SerialFile string

+ func NewSerialFileGenerator(serialFile string, createIfNeeded bool) (*SerialFileGenerator, error)

+ func (s *SerialFileGenerator) Next(template *x509.Certificate) (int64, error)

+ type SerialGenerator interface

+ Next func(template *x509.Certificate) (int64, error)

+ type TLSCARoots struct

+ Roots []*x509.Certificate

+ func GetTLSCARoots(caFile string) (*TLSCARoots, error)

+ type TLSCertificateConfig struct

+ Certs []*x509.Certificate

+ Key crypto.PrivateKey

+ func GetServerCert(certFile, keyFile string, hostnames sets.String) (*TLSCertificateConfig, error)

+ func GetTLSCertificateConfig(certFile, keyFile string) (*TLSCertificateConfig, error)

+ func (c *TLSCertificateConfig) GetPEMBytes() ([]byte, []byte, error)

v1.5.0-alpha.1

Dec 29, 2016

Incompatible versions in this module

v3.7.0-alpha.0+incompatible

Aug 1, 2017