6 Commits (9fd40af603cec07264b02aeb4d43660486fa7e5e)

Author SHA1 Message Date
Jan Dittberner 47d5b2afff Improve configuration, implement setup mode
- implement a dedicated setup mode for creating CA certificates that is
  triggered by the '-setup' command line flag
- switch to YAML configuration for comment support and more human
  readable syntax. Format documentation is in docs/config.sample.yaml
- move HSM related code to pkg/hsm
- improve consistency checks in pkg/config
2 years ago
Jan Dittberner de997913cf Implement configuration and CA hierarchy setup
This commit implements a mechanism to load CA configuration dynamically from
JSON files. Missing keys and certificates can be generated in a PKCS#11 HSM
or Smartcard. Certificates are stored as PEM encoded .crt files in the

The default PKCS#11 module (softhsm2) is now loaded from a platform specific
path using go:build comments.
2 years ago
Jan Dittberner 1d43b4d1b0 Update to go 1.18 2 years ago
Jan Dittberner 7c0ccca665 Update dependencies 2 years ago
Jan Dittberner 0a8b4896ba Add PKCS#11 test to generate root certificate
- add documentation how to initialize SoftHSM for testing
- add cmd/signer package to hold future signer command
- add test to use a private key from softhsm to create a root
2 years ago
Jan Dittberner 3affc704d8 First DDD based signer implementation parts 3 years ago