powerdefy · June 11, 2021 04:19
diff --git a/install-soft-hsm-mac.sh b/install-soft-hsm-mac.sh
 set -e
 brew install softhsm opensc # install softhsm2

 # clear all tokens
 rm -rf /usr/local/var/lib/softhsm/tokens/*

 cat > private.pem <<EOL
 Bag Attributes
    localKeyID: A0 14 BC 15 70 06 95 7D CD A0 48 F8 3B EC CC D3 C6 42 DE FC
 Key Attributes: <No Attributes>
 -----BEGIN PRIVATE KEY-----
 MIIEvwIBADANBgkqhkiG9w0BAQEFAASCBKkwggSlAgEAAoIBAQDr8pmLKHU6dU5H
 j1HdPRaaZ1G2DmYOhIt6MfBInha8ltIHnlb+3AEo3eEyekk2+QBEbrCR1DRmNiZy
 eemzMZi3GNBVG++/Uch4Njt1fq7BPaJSPqSw2l4Mmbvck31Yi0EAClfRLSsFVhWF
 Ns+I5JWhxCiIqmGLAISaGzfYX/4a4pyv8TT4fWirC0/kTGqOsTKp6wuRgJbkI00K
 j5hWkC4BWAwffAx/igB+r5rCXsAltVVsc94siB3drNwhf6YCyuHtjHKZMgxZ1INp
 qfihPD0VNJoH1nvP++Yyws66DkcOLzt3E5cMm4SoXvQLfF3oRQklpF1VlXL6l8aj
 WZEfd/zVAgMBAAECggEBAMrZz9gr+F1B7QLo3ODwXDZzDXUP+/4PRjrQJFzKTZHl
 uLyEDRcf3n9cAvh62edBPFGZOISnhEU72OIiniFJSppf4vzI/93kWg2/0m65c1T/
 wEYlRUIm+ySqJzEEPIebcU6vlcBorMvxrp7Q+KwgmeRx2MdmdGYlE9vJ+sE0Birl
 ciqYADwpcdvEmCh13mr74zxmf5oDPLzjDnlPzJ7QA0dUVynQh6t3wr335fiuy6WU
 d0+uo7jt9G3uKQA2J+1M88z/a4fmFR4TMt5XsMqS7SWuooy6FIDcTAjrO53o6ocq
 1BmKaYX7HyJtNhl3ZG8xoBuQn3H4uH9xwF7Jz1XObwECgYEA/i2zKLcnI9yi9+0D
 uiaQ4yaJrRcFiHVSOu/5Gr8/R9YUC9DeJRgfVwFKOfJI/qmtgFlGYi/EfJ1J7Y9n
 odf/JTEphb5fKeUfrMOsn534DYviczN7/724rb71Vhrv3gL5AAr4jiCJe7gKseR6
 62cOGsrdjrzpAz2nO2RFiFZD450CgYEA7aN0aW7WVREKcEKImB9PdlTrZrDYOOxd
 NsJg9YvYZT6//dgDorliYgDa8k/Tulci/56noo4A9hIH4nlhgvhb2kcvdC6ZUpt9
 Ci7deWzN8kl586whoWyC6qTEU8JkajTg+xpBn2bVWLvuhH5l4wI5FCtgEs9gdSc2
 HXj4kEsohJkCgYEAojXIAFPiRqCn4FEB7+pszInrkur+PPeiYrqC3u7uE4orgN7q
 5gFe/sdz90cIDn16nE5c/Iw/eMdoRpMeL8sIqVOWjCPR14rBjB/UKolFpF+BRMO2
 fp81HKyhJTJLogODpONbfFiHZM0vBhgp2dEKz05n1o/4pHjUILL9LOTgroECgYAV
 Z4ahxID7sog9KlEBWriekPGPE1i2b9vJheKT21/HZsqGQ8G4E3igGTGfZ79LZnPZ
 kGHLC31crK0XIhW9ZT9ovsawcU4QGb8+fpAmUr2OGD4qy5NP5eU421Rvsu+2fULS
 ez/z6qBG2M6YEoZ81wNrJKkHqLQoeTqvlujUnmBs6QKBgQDwsMM9y/EbsEZDrbfd
 SF2hQtHMhX+ZIuT/GhjED9tHuqapxVhNRmWrPoVL8xQRjrTobr8r0iYAQ6I3ZEQX
 Fw7VR7Zk1U7yZOcmrjeuvAAziRe9dDY9+R3ysieQUjZqrR/ayJQBkL388zHG0a5P
 Mq0zMXqlp6U+6IMOoURlBbUxeg==
 -----END PRIVATE KEY-----
 EOL

 cat > cert.pem <<EOL
 -----BEGIN CERTIFICATE-----
 MIIDazCCAlOgAwIBAgIUByOT8kJDWxhIXlASuxQIm+2udn0wDQYJKoZIhvcNAQEL
 BQAwRTELMAkGA1UEBhMCVEgxEzARBgNVBAgMClNvbWUtU3RhdGUxITAfBgNVBAoM
 GEludGVybmV0IFdpZGdpdHMgUHR5IEx0ZDAeFw0yMTA2MTAxMTEyNTZaFw0zMTA2
 MDgxMTEyNTZaMEUxCzAJBgNVBAYTAlRIMRMwEQYDVQQIDApTb21lLVN0YXRlMSEw
 HwYDVQQKDBhJbnRlcm5ldCBXaWRnaXRzIFB0eSBMdGQwggEiMA0GCSqGSIb3DQEB
 AQUAA4IBDwAwggEKAoIBAQDr8pmLKHU6dU5Hj1HdPRaaZ1G2DmYOhIt6MfBInha8
 ltIHnlb+3AEo3eEyekk2+QBEbrCR1DRmNiZyeemzMZi3GNBVG++/Uch4Njt1fq7B
 PaJSPqSw2l4Mmbvck31Yi0EAClfRLSsFVhWFNs+I5JWhxCiIqmGLAISaGzfYX/4a
 4pyv8TT4fWirC0/kTGqOsTKp6wuRgJbkI00Kj5hWkC4BWAwffAx/igB+r5rCXsAl
 tVVsc94siB3drNwhf6YCyuHtjHKZMgxZ1INpqfihPD0VNJoH1nvP++Yyws66DkcO
 Lzt3E5cMm4SoXvQLfF3oRQklpF1VlXL6l8ajWZEfd/zVAgMBAAGjUzBRMB0GA1Ud
 DgQWBBQl0tpQjDuJoMLVQwp6BHMNbqM5yTAfBgNVHSMEGDAWgBQl0tpQjDuJoMLV
 Qwp6BHMNbqM5yTAPBgNVHRMBAf8EBTADAQH/MA0GCSqGSIb3DQEBCwUAA4IBAQDE
 q+RfOoDn8mvhFEojCtqJ0B97eHYafPQruP61byxoUGdqPTV1/gqzlFdYAYmbSIfz
 WOa66zrkB6MXkYrBivstXBbVv3AvnegP0d0iY6RBcvRLw9vUhzycKozt6tr7NR8a
 3ZG8y23n+v33GFzO/c//bgC5c67e+G40RePJT+7rtP290RtjjwFb9Vn6FbmMElev
 LOTD04R10kY7OqiR26HFk77A978bm1K0u3Qt3ERROBkDfMqxK4R9UEh+ABdzc+D9
 OOcNcsH/8zldLeBCeVwqp7HnGZZVdIRnkTsMwAL0AHd8aWCsTudTSHbaXA/N5N7q
 dj6F1lLRdl6lntVHsHCD
 -----END CERTIFICATE-----
 EOL

 KEY_ALIAS=BEEF
 # init new token
 SLOT_ID=$(softhsm2-util --init-token --slot 0 --label "Token 0" --pin 1234 --so-pin 0000 | grep -Eo '[0-9]{1,30}')
 # add private key 
 softhsm2-util --import private.pem --slot $SLOT_ID --label key --id $KEY_ALIAS --pin 1234

 # add certificate
 pkcs11-tool --module /usr/local/lib/softhsm/libsofthsm2.so -l --id $KEY_ALIAS --label mycert1 -y cert -w cert.pem --pin 1234

 echo Your slot id $SLOT_ID

 rm private.pem cert.pem
	set -e
	brew install softhsm opensc # install softhsm2

	# clear all tokens
	rm -rf /usr/local/var/lib/softhsm/tokens/*

	cat > private.pem <<EOL
	Bag Attributes
	localKeyID: A0 14 BC 15 70 06 95 7D CD A0 48 F8 3B EC CC D3 C6 42 DE FC
	Key Attributes: <No Attributes>
	-----BEGIN PRIVATE KEY-----
	MIIEvwIBADANBgkqhkiG9w0BAQEFAASCBKkwggSlAgEAAoIBAQDr8pmLKHU6dU5H
	j1HdPRaaZ1G2DmYOhIt6MfBInha8ltIHnlb+3AEo3eEyekk2+QBEbrCR1DRmNiZy
	eemzMZi3GNBVG++/Uch4Njt1fq7BPaJSPqSw2l4Mmbvck31Yi0EAClfRLSsFVhWF
	Ns+I5JWhxCiIqmGLAISaGzfYX/4a4pyv8TT4fWirC0/kTGqOsTKp6wuRgJbkI00K
	j5hWkC4BWAwffAx/igB+r5rCXsAltVVsc94siB3drNwhf6YCyuHtjHKZMgxZ1INp
	qfihPD0VNJoH1nvP++Yyws66DkcOLzt3E5cMm4SoXvQLfF3oRQklpF1VlXL6l8aj
	WZEfd/zVAgMBAAECggEBAMrZz9gr+F1B7QLo3ODwXDZzDXUP+/4PRjrQJFzKTZHl
	uLyEDRcf3n9cAvh62edBPFGZOISnhEU72OIiniFJSppf4vzI/93kWg2/0m65c1T/
	wEYlRUIm+ySqJzEEPIebcU6vlcBorMvxrp7Q+KwgmeRx2MdmdGYlE9vJ+sE0Birl
	ciqYADwpcdvEmCh13mr74zxmf5oDPLzjDnlPzJ7QA0dUVynQh6t3wr335fiuy6WU
	d0+uo7jt9G3uKQA2J+1M88z/a4fmFR4TMt5XsMqS7SWuooy6FIDcTAjrO53o6ocq
	1BmKaYX7HyJtNhl3ZG8xoBuQn3H4uH9xwF7Jz1XObwECgYEA/i2zKLcnI9yi9+0D
	uiaQ4yaJrRcFiHVSOu/5Gr8/R9YUC9DeJRgfVwFKOfJI/qmtgFlGYi/EfJ1J7Y9n
	odf/JTEphb5fKeUfrMOsn534DYviczN7/724rb71Vhrv3gL5AAr4jiCJe7gKseR6
	62cOGsrdjrzpAz2nO2RFiFZD450CgYEA7aN0aW7WVREKcEKImB9PdlTrZrDYOOxd
	NsJg9YvYZT6//dgDorliYgDa8k/Tulci/56noo4A9hIH4nlhgvhb2kcvdC6ZUpt9
	Ci7deWzN8kl586whoWyC6qTEU8JkajTg+xpBn2bVWLvuhH5l4wI5FCtgEs9gdSc2
	HXj4kEsohJkCgYEAojXIAFPiRqCn4FEB7+pszInrkur+PPeiYrqC3u7uE4orgN7q
	5gFe/sdz90cIDn16nE5c/Iw/eMdoRpMeL8sIqVOWjCPR14rBjB/UKolFpF+BRMO2
	fp81HKyhJTJLogODpONbfFiHZM0vBhgp2dEKz05n1o/4pHjUILL9LOTgroECgYAV
	Z4ahxID7sog9KlEBWriekPGPE1i2b9vJheKT21/HZsqGQ8G4E3igGTGfZ79LZnPZ
	kGHLC31crK0XIhW9ZT9ovsawcU4QGb8+fpAmUr2OGD4qy5NP5eU421Rvsu+2fULS
	ez/z6qBG2M6YEoZ81wNrJKkHqLQoeTqvlujUnmBs6QKBgQDwsMM9y/EbsEZDrbfd
	SF2hQtHMhX+ZIuT/GhjED9tHuqapxVhNRmWrPoVL8xQRjrTobr8r0iYAQ6I3ZEQX
	Fw7VR7Zk1U7yZOcmrjeuvAAziRe9dDY9+R3ysieQUjZqrR/ayJQBkL388zHG0a5P
	Mq0zMXqlp6U+6IMOoURlBbUxeg==
	-----END PRIVATE KEY-----
	EOL

	cat > cert.pem <<EOL
	-----BEGIN CERTIFICATE-----
	MIIDazCCAlOgAwIBAgIUByOT8kJDWxhIXlASuxQIm+2udn0wDQYJKoZIhvcNAQEL
	BQAwRTELMAkGA1UEBhMCVEgxEzARBgNVBAgMClNvbWUtU3RhdGUxITAfBgNVBAoM
	GEludGVybmV0IFdpZGdpdHMgUHR5IEx0ZDAeFw0yMTA2MTAxMTEyNTZaFw0zMTA2
	MDgxMTEyNTZaMEUxCzAJBgNVBAYTAlRIMRMwEQYDVQQIDApTb21lLVN0YXRlMSEw
	HwYDVQQKDBhJbnRlcm5ldCBXaWRnaXRzIFB0eSBMdGQwggEiMA0GCSqGSIb3DQEB
	AQUAA4IBDwAwggEKAoIBAQDr8pmLKHU6dU5Hj1HdPRaaZ1G2DmYOhIt6MfBInha8
	ltIHnlb+3AEo3eEyekk2+QBEbrCR1DRmNiZyeemzMZi3GNBVG++/Uch4Njt1fq7B
	PaJSPqSw2l4Mmbvck31Yi0EAClfRLSsFVhWFNs+I5JWhxCiIqmGLAISaGzfYX/4a
	4pyv8TT4fWirC0/kTGqOsTKp6wuRgJbkI00Kj5hWkC4BWAwffAx/igB+r5rCXsAl
	tVVsc94siB3drNwhf6YCyuHtjHKZMgxZ1INpqfihPD0VNJoH1nvP++Yyws66DkcO
	Lzt3E5cMm4SoXvQLfF3oRQklpF1VlXL6l8ajWZEfd/zVAgMBAAGjUzBRMB0GA1Ud
	DgQWBBQl0tpQjDuJoMLVQwp6BHMNbqM5yTAfBgNVHSMEGDAWgBQl0tpQjDuJoMLV
	Qwp6BHMNbqM5yTAPBgNVHRMBAf8EBTADAQH/MA0GCSqGSIb3DQEBCwUAA4IBAQDE
	q+RfOoDn8mvhFEojCtqJ0B97eHYafPQruP61byxoUGdqPTV1/gqzlFdYAYmbSIfz
	WOa66zrkB6MXkYrBivstXBbVv3AvnegP0d0iY6RBcvRLw9vUhzycKozt6tr7NR8a
	3ZG8y23n+v33GFzO/c//bgC5c67e+G40RePJT+7rtP290RtjjwFb9Vn6FbmMElev
	LOTD04R10kY7OqiR26HFk77A978bm1K0u3Qt3ERROBkDfMqxK4R9UEh+ABdzc+D9
	OOcNcsH/8zldLeBCeVwqp7HnGZZVdIRnkTsMwAL0AHd8aWCsTudTSHbaXA/N5N7q
	dj6F1lLRdl6lntVHsHCD
	-----END CERTIFICATE-----
	EOL

	KEY_ALIAS=BEEF
	# init new token
	SLOT_ID=$(softhsm2-util --init-token --slot 0 --label "Token 0" --pin 1234 --so-pin 0000 \| grep -Eo '[0-9]{1,30}')
	# add private key
	softhsm2-util --import private.pem --slot $SLOT_ID --label key --id $KEY_ALIAS --pin 1234

	# add certificate
	pkcs11-tool --module /usr/local/lib/softhsm/libsofthsm2.so -l --id $KEY_ALIAS --label mycert1 -y cert -w cert.pem --pin 1234

	echo Your slot id $SLOT_ID

	rm private.pem cert.pem