Skip to content

QOSGroup/kepler

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

182 Commits
cert
cert
 
 
cmd
cmd
 
 
docs
docs
 
 
openssl
openssl
 
 
server
server
 
 
testcase
testcase
 
 
.gitignore
.gitignore
 
 
.travis.yml
.travis.yml
 
 
DOC.md
DOC.md
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
main.go
main.go
 
 
test.sh
test.sh
 
 

Repository files navigation

kepler

version Build Status codecov Go version license

Another certificate format BCM, similar to PEM OR DER

OpenSSL

  • PEM–Format

    DER is a binary format for data structures described by ASN.1.

  • DER–Format

    Privacy Enhanced Mail (PEM) is a format with goal to embed binary content into a content typed 7bits ASCII format.

The file suffix

  • root.pri: Private Key
  • root.pub: Public Key
  • root.csr: Certificate Signing Request
  • root.crt: Certificate File
  • trust.crts: Trusted Root Certificate List

Usage

First you need to create the root certificate, then the union chain certificate, and finally optionally the banker and relay

ROOT

kepler genkey --out-private-key root.pri --out-public-key root.pub
kepler trust --in-public-key root.pub --out-trust-crts trust.crts
kepler req --in-public-key root.pub --is-ca true
kepler sign --in-key-pri root.pri --in-key-pub root.pub

kepler verify
kepler show

QSC

kepler genkey --out-private-key qsc.pri --out-public-key qsc.pub
kepler genkey --out-private-key banker.pri --out-public-key banker.pub
kepler req-qsc --in-public-key qsc.pub --chain-id qos-test --name qstars-test --banker banker.pub --out-sign-req qsc.csr
kepler sign  --in-key-pri root.pri --in-key-pub root.pub --in-sign-req qsc.csr --out-signed-ca qsc.crt

kepler verify --in-signed-ca qsc.crt
kepler show --in-csr-file qsc.csr --in-crt-file qsc.crt

QCP

kepler genkey --out-private-key qcp.pri --out-public-key qcp.pub
kepler req-qcp --in-public-key qcp.pub --chain-id qos-test --qcp-chain qstars-test --out-sign-req qcp.csr
kepler sign  --in-key-pri root.pri --in-key-pub root.pub --in-sign-req qcp.csr --out-signed-ca qcp.crt

kepler verify --in-signed-ca qcp.crt
kepler show --in-csr-file qcp.csr --in-crt-file qcp.crt

RELAY

kepler genkey --out-private-key relay.pri --out-public-key relay.pub
kepler req --in-public-key relay.pub --cn QSC_RELAY --out-sign-req relay.csr
kepler sign  --in-key-pri root.pri --in-key-pub root.pub --in-sign-req relay.csr --out-signed-ca relay.crt

kepler verify --in-signed-ca relay.crt
kepler show --in-csr-file relay.csr --in-crt-file relay.crt

TODO

  • Two-factor
  • Add test case
  • Test illegal certificates
  • Conversion tools, pem and der to bcm
  • Http RPC
  • Cobra do not use global var

Acknowledgements

Disclaimer

This is work in progress. Mechanisms and values are susceptible to change.

About

🔐 another certificate format

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

3 stars

Watchers

6 watching

Forks

4 forks
Report repository

Releases 4

v0.4.0 Latest
Nov 1, 2018
+ 3 releases

Packages

No packages published

Contributors 5

Languages