crypto/tls: needs a convenience function for reading encrypted keys

Question

crypto/tls: needs a convenience function for reading encrypted keys

gopherbot opened this issue 11 years ago · comments

by jeff.allen:

crypto/tls.X509KeyPair can't deal with encrypted key files. This wouldn't be much of a
big deal except that the quantity of code needed to work around it is really big and
repeats lots of code from the std library.

See this message: https://groups.google.com/d/msg/golang-nuts/ht_gQ2ET0c0/efaGZdIxCmAJ

It would be nicer to have crypto/tls.X509EncryptedKeyPair(certPEMBlock, keyPEMBlock,
password []byte) (cert Certificate, err error) that would use password to decrypt
keyPEMBlock.

Emmanuel T Odeke commented 8 years ago

/cc @agl

Russ Cox · Answer 1 · Thu Nov 28 2013 02:44:27 GMT+0800 (China Standard Time)

Comment 1:

Labels changed: added go1.3maybe.

David Symonds · Answer 2 · Mon Dec 02 2013 12:10:31 GMT+0800 (China Standard Time)

Comment 2:

Labels changed: added priority-later, packagechange, removed priority-triage.

Russ Cox · Answer 3 · Wed Dec 04 2013 09:31:04 GMT+0800 (China Standard Time)

Comment 3:

Labels changed: added release-none, removed go1.3maybe.

Russ Cox · Answer 4 · Wed Dec 04 2013 09:43:14 GMT+0800 (China Standard Time)

Comment 4:

Labels changed: added repo-main.

Serhat Şevki Dinçer · Answer 5 · Fri Mar 13 2015 21:03:46 GMT+0800 (China Standard Time)

Hi,
is there any plan on implementing this?
there is a working sample code here: http://play.golang.org/p/8OYTuZtZIQ

Emmanuel T Odeke · Answer 6 · Sat Feb 18 2017 15:21:20 GMT+0800 (China Standard Time)

Hello there @jfcg, might you still be interested in working on this issue?
Perhaps putting it in a CL would re-ignite the conversation and make it reviewable
thus implementing the feature.
Thank you!