Skip to content

Xfers/cloudhsm-service-go

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

31 Commits
src
src
 
 
.gitignore
.gitignore
 
 
Dockerfile
Dockerfile
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

CloudHSM Service in Go

How to generate test rsa key pairs

# Pair 1
openssl genrsa -out testrsaprivkey.pem 2048
openssl rsa -in testrsaprivkey.pem -outform PEM -pubout -out testpublic.pem

# Pair 2
openssl genrsa -out testrsaprivkey2.pem 2048
openssl rsa -in testrsaprivkey2.pem -outform PEM -pubout -out testpublic2.pem

How To Build the Executable

# build the executable
go build -o hsm-service .

How to run the server

# run the server the signer services 
./hsm-service serve --k1 testrsaprivkey.pem --k2 testrsaprivkey1.pem

# or like this (signer is the default mode, so that is why it was omitted above ):
./hsm-service serve --mode signer --k1 testrsaprivkey.pem --k2 testrsaprivkey2.pem

# or shorter flag (-m):
./hsm-service serve -m signer --k1 testrsaprivkey.pem --k2 testrsaprivkey1.pem

# run the server with the verifier services
./hsm-service serve --mode verifier --k1 testpublic.pem --k2 testpublic1.pem

# if you want to run the server in the background and log to dev/null add this
> /dev/null 2>&1 &

How to run the commands

# run the sign command

# Sign from string:
./hsm-service sign -k $YOUR_KEY_FILE -s "hello"

# Sign from file:
./hsm-service sign -k $YOUR_KEY_FILE -f $YOUR_FILE

# Sign from stdin:
cat $YOUR_FILE | ./hsm-service sign -k $YOUR_KEY_FILE
# or
echo -n "hello" | ./hsm-service sign -k $YOUR_KEY_FILE
# run the pure-sign command

# Sign from string(digested "hello"):
./hsm-service pure-sign -k $YOUR_KEY_FILE -s "LPJNul+wow4m6DsqxbninhsWHlwfp0JecwQzYpOLmCQ="

# Sign from file (that holds the digest):
./hsm-service pure-sign -k $YOUR_KEY_FILE -f $YOUR_DIGEST_FILE

# Sign from stdin:
echo -n "hello" | openssl dgst -sha256 -binary - | base64 -w 0 | ./hsm-service pure-sign -k $YOUR_KEY_FILE

How to build the swagger docs

# build the swagger docs (swaggo is required: go install github.com/swaggo/swag/cmd/swag@latest )
swag init -g main.go --output docs

Swagger docs are available at:

 {HOST}:{PORT}/swagger/index.html

Run server in container

# build the image
docker image build -t hsm-service .

# run the container
docker container run -it --rm -p 8000:8000 hsm-service --k1 testrsaprivkey.pem --k2 testrsaprivkey1.pem

# bypass the entrypoint and shell into the container directly so you can run commands
docker container run -it --rm --entrypoint=/bin/bash ddjura/hsm-service

About

Standalone cloudhsm-service in Go

Resources

Readme

License

GPL-3.0 license
Activity
Custom properties

Stars

0 stars

Watchers

7 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages