pki/certificate.go

package pki

import (
  "crypto/rand"
  "crypto/x509"
  "crypto/x509/pkix"
  "encoding/pem"
  "net"
)

const PemLabelCertificateRequest = "CERTIFICATE REQUEST"

type (
  CertificateData struct {
    Subject  pkix.Name

    DnsNames       []string
    EmailAddresses []string
    IpAddresses    []net.IP
  }

  Certificate x509.Certificate
  CertificateRequest x509.CertificateRequest
)

// Create a certificate sign request from the input data and the private key of
// the request creator.
func (c *CertificateData) ToCertificateRequest(private_key PrivateKey) (*CertificateRequest, error) {
  csr := &x509.CertificateRequest{}

  csr.Subject        = c.Subject
  csr.DNSNames       = c.DnsNames
  csr.IPAddresses    = c.IpAddresses
  csr.EmailAddresses = c.EmailAddresses

  csr_asn1, err := x509.CreateCertificateRequest(rand.Reader, csr, private_key.PrivateKey())
  if err != nil { return nil, err }
  return LoadCertificateSignRequest(csr_asn1)
}

// Load a certificate sign request from its asn1 representation.
func LoadCertificateSignRequest(raw []byte) (*CertificateRequest, error) {
  csr, err = x509.ParseCertificateRequest(csr_asn1)
  if err != nil { return nil, err }
  return (*CertificateRequest)(csr), nil
}

// Return the certificate sign request as a pem block.
func (c *CertificateRequest) MarshalPem() (marshalledPemBlock, error) {
  block := pem.Block{Type: PemLabelCertificateRequest, Bytes: c.Raw}
  return pem.EncodeToMemory(block), nil
}

func (c *CertificateRequest) ToCertificate() {
}
first draft of a certificate system 2015-03-15 20:06:47 +01:00			`package pki`

			`import (`
refine certificate sign request workings 2015-03-15 20:45:35 +01:00			`"crypto/rand"`
			`"crypto/x509"`
			`"crypto/x509/pkix"`
			`"encoding/pem"`
first draft of a certificate system 2015-03-15 20:06:47 +01:00			`"net"`
			`)`

refine certificate sign request workings 2015-03-15 20:45:35 +01:00			`const PemLabelCertificateRequest = "CERTIFICATE REQUEST"`
first draft of a certificate system 2015-03-15 20:06:47 +01:00
			`type (`
			`CertificateData struct {`
refine certificate sign request workings 2015-03-15 20:45:35 +01:00			`Subject pkix.Name`
first draft of a certificate system 2015-03-15 20:06:47 +01:00
refine certificate sign request workings 2015-03-15 20:45:35 +01:00			`DnsNames []string`
first draft of a certificate system 2015-03-15 20:06:47 +01:00			`EmailAddresses []string`
refine certificate sign request workings 2015-03-15 20:45:35 +01:00			`IpAddresses []net.IP`
first draft of a certificate system 2015-03-15 20:06:47 +01:00			`}`
refine certificate sign request workings 2015-03-15 20:45:35 +01:00
			`Certificate x509.Certificate`
			`CertificateRequest x509.CertificateRequest`
first draft of a certificate system 2015-03-15 20:06:47 +01:00			`)`

refine certificate sign request workings 2015-03-15 20:45:35 +01:00			`// Create a certificate sign request from the input data and the private key of`
			`// the request creator.`
			`func (c CertificateData) ToCertificateRequest(private_key PrivateKey) (CertificateRequest, error) {`
			`csr := &x509.CertificateRequest{}`

			`csr.Subject = c.Subject`
			`csr.DNSNames = c.DnsNames`
			`csr.IPAddresses = c.IpAddresses`
			`csr.EmailAddresses = c.EmailAddresses`

			`csr_asn1, err := x509.CreateCertificateRequest(rand.Reader, csr, private_key.PrivateKey())`
			`if err != nil { return nil, err }`
			`return LoadCertificateSignRequest(csr_asn1)`
			`}`

			`// Load a certificate sign request from its asn1 representation.`
			`func LoadCertificateSignRequest(raw []byte) (*CertificateRequest, error) {`
			`csr, err = x509.ParseCertificateRequest(csr_asn1)`
			`if err != nil { return nil, err }`
			`return (*CertificateRequest)(csr), nil`
			`}`

			`// Return the certificate sign request as a pem block.`
			`func (c *CertificateRequest) MarshalPem() (marshalledPemBlock, error) {`
			`block := pem.Block{Type: PemLabelCertificateRequest, Bytes: c.Raw}`
			`return pem.EncodeToMemory(block), nil`
			`}`

			`func (c *CertificateRequest) ToCertificate() {`
			`}`