git.openwrt.org Git - openwrt/staging/blogic.git/commit

author	Denis Kenzior <denkenz@gmail.com>
	Tue, 9 Oct 2018 16:48:17 +0000 (17:48 +0100)
committer	James Morris <james.morris@microsoft.com>
	Fri, 26 Oct 2018 08:30:46 +0000 (09:30 +0100)
commit	d5e72745ca121459f68c598dac7b374a76322b94
tree	fbe5574be8ae84efcdf4a19f5c634b819b8e66ad	tree \| snapshot
parent	f8c54e1ac4b82933dfcf88c37892da8ae35ccbe4	commit \| diff

KEYS: Add parser for TPM-based keys [ver #2]

For TPM based keys, the only standard seems to be described here:
http://david.woodhou.se/draft-woodhouse-cert-best-practice.html#rfc.section.4.4

Quote from the relevant section:
"Rather, a common form of storage for "wrapped" keys is to encode the
binary TCPA_KEY structure in a single ASN.1 OCTET-STRING, and store the
result in PEM format with the tag "-----BEGIN TSS KEY BLOB-----". "

This patch implements the above behavior. It is assumed that the PEM
encoding is stripped out by userspace and only the raw DER/BER format is
provided. This is similar to how PKCS7, PKCS8 and X.509 keys are
handled.

Signed-off-by: Denis Kenzior <denkenz@gmail.com>
Signed-off-by: David Howells <dhowells@redhat.com>
Tested-by: Marcel Holtmann <marcel@holtmann.org>
Reviewed-by: Marcel Holtmann <marcel@holtmann.org>
Signed-off-by: James Morris <james.morris@microsoft.com>

crypto/asymmetric_keys/Kconfig		diff \| blob \| history
crypto/asymmetric_keys/Makefile		diff \| blob \| history
crypto/asymmetric_keys/tpm.asn1	[new file with mode: 0644]	blob
crypto/asymmetric_keys/tpm_parser.c	[new file with mode: 0644]	blob