Skip to content

keyfactor-iot/Keyfactor-CAgent

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

131 Commits
docs
docs
 
 
lib
lib
 
 
openssl_wrapper
openssl_wrapper
 
 
wolfssl_wrapper
wolfssl_wrapper
 
 
.gitignore
.gitignore
 
 
README-LICENSE.txt
README-LICENSE.txt
 
 
README.md
README.md
 
 
agent.c
agent.c
 
 
agent.h
agent.h
 
 
config.c
config.c
 
 
config.h
config.h
 
 
constants.h
constants.h
 
 
csr.c
csr.c
 
 
csr.h
csr.h
 
 
dto.c
dto.c
 
 
dto.h
dto.h
 
 
enrollment.c
enrollment.c
 
 
enrollment.h
enrollment.h
 
 
global.h
global.h
 
 
httpclient.c
httpclient.c
 
 
httpclient.h
httpclient.h
 
 
inventory.c
inventory.c
 
 
inventory.h
inventory.h
 
 
logging.c
logging.c
 
 
logging.h
logging.h
 
 
makefile
makefile
 
 
management.c
management.c
 
 
management.h
management.h
 
 
openssl_compat.h
openssl_compat.h
 
 
params.json
params.json
 
 
schedule.c
schedule.c
 
 
schedule.h
schedule.h
 
 
session.c
session.c
 
 
session.h
session.h
 
 
utils.c
utils.c
 
 
utils.h
utils.h
 
 

Repository files navigation

Keyfactor C-Agent

License

A reference implementation of a Keyfactor Command remote agent written in C, aimed at IoT and embedded Linux deployments. The agent registers a session with the Keyfactor Command platform, runs any PEM inventory, management, or reenrollment jobs the platform assigns, and exits.

Current version: 3.0.0.0 (see agent.h). Supported crypto backends:

  • OpenSSL
  • wolfSSL
  • OpenSSL + tpm2tss engine (TPM-backed private keys)

Quick start

# 1. Install host dependencies (Debian/Ubuntu example).
sudo apt update
sudo apt install -y build-essential git curl libcurl4-gnutls-dev libssl-dev

# 2. Clone and build against OpenSSL (64-bit host).
git clone https://github.com/keyfactor-iot/Keyfactor-CAgent ~/Keyfactor-CAgent
cd ~/Keyfactor-CAgent
make clean
make CRYPTO=openssl OUT=exec -j$(nproc)

# 3. Set up trust store and config.
sudo mkdir -p /home/keyfactor/Keyfactor-CAgent/certs
sudo chown $(whoami):$(whoami) /home/keyfactor/Keyfactor-CAgent/certs
$EDITOR /home/keyfactor/Keyfactor-CAgent/certs/trust.store   # paste PEM CA bundle
cp config.json.example config.json                           # or create from the template in docs/configuration.md
$EDITOR config.json                                          # set Hostname, AgentName, credentials, cert paths

# 4. Run.
./agent -l i

For wolfSSL, 32-bit targets, shared-library packaging, and TPM builds, see docs/build.md.

Documentation

The docs/ directory contains the full, code-derived documentation:

Document Purpose
docs/overview.md What the agent is, supported capabilities, session lifecycle at a glance, non-goals.
docs/installation.md Host prerequisites (Debian/Ubuntu, RHEL family) and how to clone the repo.
docs/build.md Every makefile target (OpenSSL, wolfSSL, shared library, TPM), 32-bit vs 64-bit, build flags.
docs/configuration.md Full config.json reference aligned to the in-code ConfigData_t, trust store setup, ClientParameterPath / params.json explained.
docs/cli.md Command-line switches (-a, -c, -e, -h, -l, -v, -?) with examples.
docs/architecture.md Module-by-module map, session lifecycle, job dispatch, chained jobs, crypto abstraction, DTO layer.
docs/logging.md Log levels, the 5 MB rolling log file, and the self-healing .index sidecar.
docs/enrollment-and-certificates.md Managed vs bootstrap cert flows, CSR generation, two-step first registration, cert renewal.
docs/development.md Code style, compiler flags, versioning, memory hygiene, contributing.

License

Apache-2.0. Full license text in README-LICENSE.txt.

Contributing

Issues and pull requests: https://github.com/keyfactor-iot/Keyfactor-CAgent. See docs/development.md before opening a PR.

About

Keyfactor Agent Reference in the C Language

www.keyfactor.com/

Topics

reference-architecture keyfactor-command command-integration

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases 4

v3.0.0 Latest
Apr 23, 2026
+ 3 releases

Packages

 
 
 

Contributors

Languages