| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566 |
- package goStrongswanVici
- import (
- "crypto/ecdsa"
- "crypto/rsa"
- "crypto/x509"
- "encoding/pem"
- "fmt"
- )
- type keyPayload struct {
- Typ string `json:"type"`
- Data string `json:"data"`
- }
- // LoadECDSAPrivateKey encodes a *ecdsa.PrivateKey as a PEM block before sending
- // it to the Vici interface
- func (c *ClientConn) LoadECDSAPrivateKey(key *ecdsa.PrivateKey) error {
- mk, err := x509.MarshalECPrivateKey(key)
- if err != nil {
- return err
- }
- var pemData = pem.EncodeToMemory(&pem.Block{
- Type: "ECDSA PRIVATE KEY",
- Bytes: mk,
- })
- return c.loadPrivateKey("ECDSA", string(pemData))
- }
- // LoadRSAPrivateKey encodes a *rsa.PrivateKey as a PEM block before sending
- // it to the Vici interface
- func (c *ClientConn) LoadRSAPrivateKey(key *rsa.PrivateKey) error {
- var mk = x509.MarshalPKCS1PrivateKey(key)
- var pemData = pem.EncodeToMemory(&pem.Block{
- Type: "RSA PRIVATE KEY",
- Bytes: mk,
- })
- return c.loadPrivateKey("RSA", string(pemData))
- }
- // loadPrivateKey expects typ to be (RSA|ECDSA) and a PEM encoded data as a
- // string
- func (c *ClientConn) loadPrivateKey(typ, data string) (err error) {
- requestMap := &map[string]interface{}{}
- var k = keyPayload{
- Typ: typ,
- Data: data,
- }
- if err = ConvertToGeneral(k, requestMap); err != nil {
- return fmt.Errorf("error creating request: %v", err)
- }
- msg, err := c.Request("load-key", *requestMap)
- if msg["success"] != "yes" {
- return fmt.Errorf("unsuccessful loadPrivateKey: %v", msg["success"])
- }
- return nil
- }
|
