Compare commits
No commits in common. "c92b0455db62dc08c94372e7542ead3160544f00" and "7b6fdbb18aea161c1d3de41e7be783b34df5d5ef" have entirely different histories.
c92b0455db
...
7b6fdbb18a
2 changed files with 7 additions and 36 deletions
|
@ -1,9 +1,11 @@
|
|||
# This is an example .goreleaser.yml file with some sensible defaults.
|
||||
# Make sure to check the documentation at https://goreleaser.com
|
||||
project_name: cacert-gosigner
|
||||
env:
|
||||
- CGO_ENABLED=1
|
||||
before:
|
||||
hooks:
|
||||
# You may remove this if you don't use go modules.
|
||||
- go mod tidy
|
||||
builds:
|
||||
- id: linux-amd64
|
||||
|
|
41
README.md
41
README.md
|
@ -1,37 +1,6 @@
|
|||
# CAcert signer
|
||||
# Running with softhsm2
|
||||
|
||||
This is the CAcert signer reimplementation in Go that implements a more robust wire protocol and has configurable
|
||||
support for hardware security modules (HSMs) for online and offline key pairs.
|
||||
|
||||
See [the design document](docs/design.md) for design considerations and architecture diagrams.
|
||||
|
||||
## Development preconditions
|
||||
|
||||
You will need GNU make to build the application. On Debian systems you can install GNU make and crossbuild tools
|
||||
for ARM binary builds using:
|
||||
|
||||
```shell
|
||||
sudo apt install make crossbuild-essential-arm64 crossbuild-essential-armhf
|
||||
```
|
||||
|
||||
Install [go](https://go.dev/) >= 1.17, [golangci-lint](https://golangci-lint.run/usage/install/) >= 1.50.0 and
|
||||
[goreleaser](https://goreleaser.com/install/), as these are used for building and linting the application.
|
||||
|
||||
Read the documentation of these tools, to find out how to use them.
|
||||
|
||||
## Building the binaries
|
||||
|
||||
There is a `Makefile` to automate builds of the signer and clientsim binaries. Run
|
||||
|
||||
```shell
|
||||
make
|
||||
```
|
||||
|
||||
to run linting, tests and binary builds.
|
||||
|
||||
## Running with softhsm2
|
||||
|
||||
### Setup HSM keys and certificates
|
||||
## Setup HSM keys and certificates
|
||||
|
||||
```shell
|
||||
sudo apt install softhsm2
|
||||
|
@ -46,14 +15,14 @@ export PKCS11_PIN_LOCALHSM=123456
|
|||
go run ./cmd/signer -setup
|
||||
```
|
||||
|
||||
### Run the signer
|
||||
## Run the signer
|
||||
|
||||
```shell
|
||||
export PKCS11_PIN_LOCALHSM=123456
|
||||
go run ./cmd/signer
|
||||
```
|
||||
|
||||
### Run the client simulator with socat
|
||||
## Run the client simulator with socat
|
||||
|
||||
You may run the client simulator that sends commands via `stdout` and reads responses on `stdin` via `socat` to
|
||||
simulate traffic on an emulated serial device:
|
||||
|
@ -63,7 +32,7 @@ sudo apt install socat
|
|||
```
|
||||
|
||||
```shell
|
||||
make clientsim
|
||||
go build ./cmd/clientsim
|
||||
socat -d -d -v pty,rawer,link=$(pwd)/testPty EXEC:./clientsim,pty,rawer
|
||||
```
|
||||
|
||||
|
|
Loading…
Reference in a new issue