tpm2-pkcs11
tpm2-pkcs11 copied to clipboard
A PKCS#11 interface for TPM2 hardware
The OpenSC Project has a pkcs11 specific testsuite which can run against all kind of pkcs11 providers. See https://github.com/OpenSC/OpenSC/tree/master/src/tests/p11test for Details. Integration should be quite easy ``` git clone https://github.com/OpenSC/OpenSC.git...
The code hardcodes mechanisms, so it doesn't check if SHA384 is enabled, and then conditionally add that algorithm, like CKM_SHA384_RSA_PKCS_PSS.
tests, like the nss test, get skipped when ASAN is enabled. I wonder if it's possible to suppress ASAN issues unless they are in the library, so we can get...
Probably look at moving things like: ```C rv = check_common_attrs( private_key_template, private_key_attribute_count); if (rv != CKR_OK) { LOGE("Failed checking private attrs"); goto out; } rv = check_common_attrs( public_key_template, public_key_attribute_count); if...
Currently, every test executable, rightfully, gets it's own initialized store: this is very, very slow. We could make the integration tests run in one executable and save and restore the...
Once tpm2-tss has python bindings, re-write tpm2-ptool in python without the tpm2-tools dependencies.
When trying to create a new token using tpm-pkcs11 after an upgrade, I get the following error: ```console [root@ci-vm-10-0-139-220 ~]# tpm2_ptool addtoken --pid=1 --sopin=sopin --userpin=userpin --label=label Traceback (most recent call...
I have set-up according to this article: https://blog.ledger.com/ssh-with-tpm/ When using the key with SSH, an error is printed: ``` ~ ❯ ssh -T [email protected] WARNING: Getting tokens from fapi backend...
I am using an IOT hardware device and I installed tpm2, tss, abrmd and PKCS-11 tools following the official guides. After successful installation, I was able to create and initialize...