New signer implementation in Go
Find a file
2022-04-23 19:37:42 +02:00
cmd/signer Add -verbose flag, implement config options 2022-04-20 09:03:26 +02:00
docs Improve configuration, implement setup mode 2022-04-19 16:48:32 +02:00
openpgp/signing First DDD based signer implementation parts 2021-08-23 20:53:43 +02:00
pkg Improve config handling and test coverage 2022-04-23 18:34:51 +02:00
x509 Use standard library types for certificates and revocations 2022-04-23 19:37:42 +02:00
.gitattributes First DDD based signer implementation parts 2021-08-23 20:53:43 +02:00
.gitignore Improve configuration, implement setup mode 2022-04-19 16:48:32 +02:00
.goreleaser.yaml Add goreleaser configuration 2022-04-16 14:43:05 +02:00
go.mod Finish openssl repository implementation and tests 2022-04-21 20:01:35 +02:00
go.sum Implement configuration and CA hierarchy setup 2022-04-16 22:24:32 +02:00
README.md Update README to reflect setup 2022-04-20 09:06:22 +02:00

Running with softhsm2

Setup HSM keys and certificates

sudo apt install softhsm2
umask 077
mkdir -p ~/.config/softhsm2/tokens
echo "directories.tokendir = $HOME/.config/softhsm2/tokens/" > ~/.config/softhsm2/softhsm2.conf
cp docs/config.sample.yaml config.yaml
# modify config.yaml to fit your needs
softhsm2-util --init-token --free --label localhsm --so-pin 47110815 --pin 123456
# initialize the keys
export PKCS11_PIN_LOCALHSM=123456
go run ./cmd/signer -setup

Run the signer

export PKCS11_PIN_LOCALHSM=123456
go run ./cmd/signer