boulder

History

Roland Bracewell Shoemaker 81bb4047d5 Ceremony monolith (#4678 ) Merges gen-ca and gen-key into a single tool that can be used to complete a key/certificate generation ceremony. The driving idea here is that instead of having to write out multiple long commands in a specific order in order to complete a ceremony a configuration file is fed to a single binary. This config file contains all of the information needed to complete the ceremony, and can be easily tested outside of the secure environment before hand without fear of later typing a command/flag incorrectly etc. The tooling works against the test hardware I have (there are minimal changes to the actual PKCS#11 code behind the scenes). Specific attention should be given to the documentation, and the general UX of the tool. Fixes #4639 and fixes #4667.	2020-03-27 13:54:56 -07:00
..
helpers.go	Ceremony monolith (#4678 )	2020-03-27 13:54:56 -07:00
helpers_test.go	Ceremony monolith (#4678 )	2020-03-27 13:54:56 -07:00

Roland Bracewell Shoemaker 81bb4047d5

Merges gen-ca and gen-key into a single tool that can be used to complete a key/certificate generation ceremony. The driving idea here is that instead of having to write out multiple long commands in a specific order in order to complete a ceremony a configuration file is fed to a single binary. This config file contains all of the information needed to complete the ceremony, and can be easily tested outside of the secure environment before hand without fear of later typing a command/flag incorrectly etc.

The tooling works against the test hardware I have (there are minimal changes to the actual PKCS#11 code behind the scenes). Specific attention should be given to the documentation, and the general UX of the tool.

Fixes #4639 and fixes #4667.

2020-03-27 13:54:56 -07:00

helpers.go

Ceremony monolith (#4678 )

2020-03-27 13:54:56 -07:00

helpers_test.go

Ceremony monolith (#4678 )

2020-03-27 13:54:56 -07:00