|
|
# KSI Parent Image
|
|
|
|
|
|
This project contains KSI parent image built on official Ubuntu base image,
|
|
|
that has preinstalled KSI tool and certificate for publications file
|
|
|
verification.
|
|
|
|
|
|
During the build of the image, KSI tool is built from scratch and installed
|
|
|
with package manager. After the build has completed build system is
|
|
|
uninstalled. Note that libksi is not installed and is statically linked with
|
|
|
KSI tool.
|
|
|
|
|
|
Installed versions:
|
|
|
```
|
|
|
KSI tool: v2.9.1374
|
|
|
libksi: v3.20.3025
|
|
|
```
|
|
|
|
|
|
## How to build.
|
|
|
Move to root folder of the project.
|
|
|
### Parent image
|
|
|
Build:
|
|
|
```sh
|
|
|
docker build -t gt/ksi-base parent-image
|
|
|
```
|
|
|
### Sample image
|
|
|
To build and test a sample image that is based on KSI parent image:
|
|
|
```
|
|
|
docker build -t gt/ksi-sample sample-image
|
|
|
```
|
|
|
|
|
|
Create a KSI Conf file `ksi.conf`:
|
|
|
```sh
|
|
|
# KSI SERVICE CONFIGURATIONS FILE
|
|
|
-S http://tryout.guardtime.net:8080/gt-signingservice
|
|
|
--aggr-user test.user
|
|
|
--aggr-key test.password
|
|
|
|
|
|
# KSI publications file:
|
|
|
-P http://verify.guardtime.com/ksi-publications.bin
|
|
|
--cnstr "email=publications@guardtime.com"
|
|
|
```
|
|
|
|
|
|
To launch sample container, mount `ksi.conf` and specify its location with
|
|
|
environment variable `ksi.conf`. If successful container should sign a
|
|
|
document, verify the signature and dump its content.
|
|
|
```
|
|
|
docker run --mount type=bind,src=/tmp/ksi.conf,dst=/ksi.conf \
|
|
|
-e=KSI_CONF='/ksi.conf' \
|
|
|
--name ksi-tester \
|
|
|
-it gt/ksi-sample
|
|
|
``` |
|
|
\ No newline at end of file |