Add PKCS11 Support #1

jyao1 · 2021-05-10T14:43:38Z

PKCS11 is an industry-standard and generic cryptography interface. Instead of libSPDM supporting multiple bindings to cryptography libraries it could have a single PKCS11 layer that then binds to the underlying cryptography libraries.

e.g. opensource implementation: https://github.com/tpm2-software/tpm2-pkcs11

One possible way is to plug-in pkcs11 instead of replacing crytolib directly.
We can let libspdm->cryptlib->pkcs11. e.g. create cryptlib_pkcs11
If anyone implements a pkcs11 lib, then this pkcs11 lib can be plug in.
People still prefers to keep cryptlib interface here, because it is simpler than pkcs11.

jyao1 · 2021-11-02T08:04:07Z

Standard reference:

The header file can be found at: Appendix B. Manifest constants.

We can create a cryptolib_pkcs11.

jyao1 assigned steven-bellock May 10, 2021

steven-bellock mentioned this issue Jul 21, 2021

Array compared to null #51

Closed

jyao1 mentioned this issue Aug 30, 2021

Fix incorrect return value check on spdm_create_measurement_signature. #106

Closed

jyao1 mentioned this issue Nov 2, 2021

null cryptlib #247

Closed

Xiaohanjlll mentioned this issue Aug 16, 2022

test_spdm_responder_csr occur detected memory leaks with the LibFuzzer generated specific mutation seed #1138

Closed

Xiaohanjlll mentioned this issue Sep 19, 2022

test_spdm_responder_csr occur heap-buffer-overflow with the LibFuzzer generated specific mutation seed #1214

Closed

PrakashK94 mentioned this issue Jul 24, 2023

LIBSPDM build issue in windows #2267

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add PKCS11 Support #1

Add PKCS11 Support #1

jyao1 commented May 10, 2021

jyao1 commented Nov 2, 2021 •

edited

Loading

Add PKCS11 Support #1

Add PKCS11 Support #1

Comments

jyao1 commented May 10, 2021

jyao1 commented Nov 2, 2021 • edited Loading

jyao1 commented Nov 2, 2021 •

edited

Loading