Jan Dittberner
0a8b4896ba
- add documentation how to initialize SoftHSM for testing - add cmd/signer package to hold future signer command - add test to use a private key from softhsm to create a root certificate
13 lines
550 B
Markdown
13 lines
550 B
Markdown
# Testing with softhsm2
|
|
|
|
```
|
|
sudo apt install softhsm2 gnutls-bin
|
|
umask 077
|
|
mkdir -p ~/.config/softhsm2/tokens
|
|
echo "directories.tokendir = $HOME/.config/softhsm2/tokens/" > ~/.config/softhsm2/softhsm2.conf
|
|
softhsm2-util --init-token --free --label localhsm --so-pin 47110815 --pin 123456
|
|
export TOKEN_URL=$(p11tool --list-token-urls | grep localhsm | head -1)
|
|
p11tool --login --outfile=rootkey2022.pub --label=rootkey2022 --generate-privkey=ECDSA --curve=secp521r1 $TOKEN_URL
|
|
go test -v ./cmd/signer/
|
|
openssl x509 -in /tmp/test.pem -noout -text
|
|
```
|