jandd
/
cacert-gosigner
1
0
Fork 0
Code Issues Pull Requests Projects Releases Activity
19 Commits
1 Branch
0 Tags
332 KiB
main
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'c538be4385'
${ noResults }
Commit Graph

19 Commits (c538be438596bc9907d477e5c5946c08db4622bb)
 

Author SHA1 Message Date
Jan Dittberner c538be4385 Fix error message spelling 2 years ago
Jan Dittberner baf6d0f037 Configure and apply golangci-lint 2 years ago
Jan Dittberner 63c3716b5b Move x509 and openpgp into pkg 
small refactoring to unify package structure. Use crypto.rand for serial
number generation in tests.
 2 years ago
Jan Dittberner 20580cda52 Use standard library types for certificates and revocations 2 years ago
Jan Dittberner 42c7dc7170 Improve config handling and test coverage 2 years ago
Jan Dittberner 7d415ff181 Increase coverage for pkg/config 2 years ago
Jan Dittberner 3a6127a939 Finish openssl repository implementation and tests 2 years ago
Jan Dittberner b9e8862f3e Update README to reflect setup 
Key setup can now be done by the signer, p11tool is no longer needed for
key generation.
 2 years ago
Jan Dittberner 9fd40af603 Add -verbose flag, implement config options 2 years ago
Jan Dittberner 2e343498af Fix failing test 2 years ago
Jan Dittberner 47d5b2afff Improve configuration, implement setup mode 
- implement a dedicated setup mode for creating CA certificates that is
  triggered by the '-setup' command line flag
- switch to YAML configuration for comment support and more human
  readable syntax. Format documentation is in docs/config.sample.yaml
- move HSM related code to pkg/hsm
- improve consistency checks in pkg/config
 2 years ago
Jan Dittberner 24f9ef297c Extract variable for policy OID 2 years ago
Jan Dittberner de997913cf Implement configuration and CA hierarchy setup 
This commit implements a mechanism to load CA configuration dynamically from
JSON files. Missing keys and certificates can be generated in a PKCS#11 HSM
or Smartcard. Certificates are stored as PEM encoded .crt files in the
filesystem.

The default PKCS#11 module (softhsm2) is now loaded from a platform specific
path using go:build comments.
 2 years ago
Jan Dittberner 9befa5bea6 Add goreleaser configuration 2 years ago
Jan Dittberner 1d43b4d1b0 Update to go 1.18 2 years ago
Jan Dittberner 7c0ccca665 Update dependencies 2 years ago
Jan Dittberner 0a8b4896ba Add PKCS#11 test to generate root certificate 
- add documentation how to initialize SoftHSM for testing
- add cmd/signer package to hold future signer command
- add test to use a private key from softhsm to create a root
  certificate
 2 years ago
Jan Dittberner 64e02b6903 Implement signing test and domain logic 3 years ago
Jan Dittberner 3affc704d8 First DDD based signer implementation parts 3 years ago