A simple hook to libcrypto to produce pkcs7 signatures for golang
Name : GoCertSigner LibraryAuthor : Noah Shibley, http://socialhardware.netDate : July 8th 2014Version : 0.1Notes : A cgo layer that uses openssl to produce pkcs7 signatures for golangDependencies: openssl or libressl: libcrypto
//signs a document using a p12 cert producing a pkcs7 signatureSignWithP12(doc []byte, pkcs12 []byte, pkcsPass string, caCert []byte) (signature []byte, err error)//signs a document using a x509 der cert with a pem Key producing a pkcs7 signatureSignWithX509PEM(doc []byte, x509Cert []byte, pemKey []byte, keyPass string, caCert []byte) (signature []byte, err error)
package mainimport (s "github.com/nullboundary/gocertsigner""io/ioutil""log")func main() {//get doc to signdoc, err := ioutil.ReadFile("myfile.txt")if err != nil {log.Printf("error: %s", err)}//your pkcs12 certificatep12, err := ioutil.ReadFile("testCert.p12")if err != nil {log.Printf("error: %s", err)}//your certificate authority certcaCert, err := ioutil.ReadFile("ca.cer")if err != nil {log.Printf("error: %s", err)}//your cert password. Store somewhere safe, not in code.p12pass := "yourCertPassword"//create the signaturesignature, err := s.SignWithP12(doc, p12, p12pass, caCert)if err != nil {log.Printf("error: %s", err)}//write out to diskioutil.WriteFile("Signature", signature, 0644)if err != nil {log.Printf("error: %s", err)}}