108d1c64b3
Some checks failed
Docs CI / lint-and-preview (push) Has been cancelled
Findings Ledger CI / build-test (push) Has been cancelled
Findings Ledger CI / migration-validation (push) Has been cancelled
Scanner Analyzers / Discover Analyzers (push) Has been cancelled
Signals Reachability Scoring & Events / reachability-smoke (push) Has been cancelled
AOC Guard CI / aoc-guard (push) Has been cancelled
Concelier Attestation Tests / attestation-tests (push) Has been cancelled
cryptopro-linux-csp / build-and-test (push) Has been cancelled
Scanner Analyzers / Validate Test Fixtures (push) Has been cancelled
Signals CI & Image / signals-ci (push) Has been cancelled
sm-remote-ci / build-and-test (push) Has been cancelled
Findings Ledger CI / generate-manifest (push) Has been cancelled
AOC Guard CI / aoc-verify (push) Has been cancelled
Scanner Analyzers / Build Analyzers (push) Has been cancelled
Scanner Analyzers / Test Language Analyzers (push) Has been cancelled
Scanner Analyzers / Verify Deterministic Output (push) Has been cancelled
Signals Reachability Scoring & Events / sign-and-upload (push) Has been cancelled
34 lines
1.3 KiB
Markdown
34 lines
1.3 KiB
Markdown
# CryptoPro Linux CSP Service (.NET minimal API)
|
|
|
|
Minimal HTTP wrapper around the Linux CryptoPro CSP binaries to prove installation and hash operations.
|
|
|
|
## Build
|
|
|
|
```bash
|
|
docker build -t cryptopro-linux-csp -f ops/cryptopro/linux-csp-service/Dockerfile .
|
|
```
|
|
|
|
`CRYPTOPRO_ACCEPT_EULA` defaults to `0` (build will fail); set to `1` only if you hold a valid CryptoPro license and accept the vendor EULA:
|
|
|
|
```bash
|
|
docker build -t cryptopro-linux-csp \
|
|
--build-arg CRYPTOPRO_ACCEPT_EULA=1 \
|
|
-f ops/cryptopro/linux-csp-service/Dockerfile .
|
|
```
|
|
|
|
## Run
|
|
|
|
```bash
|
|
docker run --rm -p 18080:8080 --name cryptopro-linux-csp-test cryptopro-linux-csp
|
|
```
|
|
|
|
Endpoints:
|
|
- `GET /health` — checks `csptest` presence.
|
|
- `GET /license` — runs `csptest -keyset -info` (reports errors if no keyset/token present).
|
|
- `POST /hash` with `{"data_b64":"<base64>"}` — hashes using `csptest -hash -alg GOST12_256`.
|
|
- `POST /keyset/init` with optional `{"name":"<container>"}` — creates an empty keyset (`-keytype none`) to silence missing-container warnings.
|
|
|
|
Notes:
|
|
- Uses the provided CryptoPro `.tgz` bundles under `opt/cryptopro/downloads`. Do not set `CRYPTOPRO_ACCEPT_EULA=1` unless you are licensed to use these binaries.
|
|
- Minimal, headless install; browser/plugin packages are not included.
|