Gitiles
Code Review Sign In
gerrit.openbmc.org / mdmillerii / openbmc / 9d3cc05f311fde3211b6bc0a9be221d6e889a70e^! / . / meta-security / meta-tpm / recipes-tpm2 / tpm2-pkcs11 / tpm2-pkcs11_1.5.0.bb
commit9d3cc05f311fde3211b6bc0a9be221d6e889a70e[log] [tgz]
authorAndrew Geissler <geissonator@yahoo.com>Wed Mar 31 13:36:22 2021 -0500
committerBrad Bishop <bradleyb@fuzziesquirrel.com>Tue Apr 06 13:22:18 2021 +0000
treecd4a28c9a69d3983c4ec1ab2dd7f025385b3cbb7
parentbd39bf61761e73b494e69f07ae975547e8ac771e [diff] [blame]
meta-security: subtree update:9504d02694..775870980b

Armin Kuster (13):
      libtpm: update to 0.8.2
      ibmtpm2tss: update to 1.6.0
      tpm2-abrmd: update to 2.4.0
      tpm2-tools: update to 5.0
      tpm2-tss: update to 3.0.3
      tpm2-pkcs11: update to 1.5.0
      tpm2-topt: update 0.3.0
      trousers: update to 0.3.15
      tpm-tools: update to 1.3.9.1
      python3-fail2ban: fix building with ptest enabled
      layer.conf: Add hardknott to LAYERSERIES_COMPAT
      tpm2-tss-engine: update 1.1.0
      swtpm: update to 0.5.2

Kai Kang (1):
      samhain: fix compile error on powerpc

Ming Liu (1):
      ima-evm-keys: add file-checksums to IMA_EVM_X509

lukasz plachno (1):
      fscryptctl: Fix installation path

Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
Change-Id: Id7215a394e0c10c60e0e2e4a43d4ce4fb622fa97

diff --git a/meta-security/meta-tpm/recipes-tpm2/tpm2-pkcs11/tpm2-pkcs11_1.5.0.bb b/meta-security/meta-tpm/recipes-tpm2/tpm2-pkcs11/tpm2-pkcs11_1.5.0.bb
new file mode 100644
index 0000000..d53d4fa
--- /dev/null
+++ b/meta-security/meta-tpm/recipes-tpm2/tpm2-pkcs11/tpm2-pkcs11_1.5.0.bb

@@ -0,0 +1,44 @@
+SUMMARY = "A PKCS#11 interface for TPM2 hardware"
+DESCRIPTION = "PKCS #11 is a Public-Key Cryptography Standard that defines a standard method to access cryptographic services from tokens/ devices such as hardware security modules (HSM), smart cards, etc. In this project we intend to use a TPM2 device as the cryptographic token."
+SECTION = "security/tpm"
+LICENSE = "BSD-2-Clause"
+LIC_FILES_CHKSUM = "file://LICENSE;md5=0fc19f620a102768d6dbd1e7166e78ab"
+
+DEPENDS = "autoconf-archive pkgconfig dstat sqlite3 openssl libtss2-dev tpm2-tools libyaml python3-setuptools-native"
+
+SRC_URI = "git://github.com/tpm2-software/tpm2-pkcs11.git;branch=1.X \
+           file://bootstrap_fixup.patch \
+           file://0001-remove-local-binary-checkes.patch"
+
+SRCREV = "5d583351028eebd470f50ec35db5dcf00533df31"
+
+S = "${WORKDIR}/git"
+
+inherit autotools-brokensep pkgconfig python3native
+
+do_configure_prepend () {
+    ${S}/bootstrap
+}
+
+do_compile_append() {
+    cd ${S}/tools
+    python3 setup.py build
+}
+
+do_install_append() {
+    cd ${S}/tools
+    export PYTHONPATH="${D}${PYTHON_SITEPACKAGES_DIR}"
+    ${PYTHON_PN} setup.py install --root="${D}" --prefix="${prefix}" --install-lib="${PYTHON_SITEPACKAGES_DIR}" --optimize=1 --skip-build
+
+    sed -i -e "s:${PYTHON}:${USRBINPATH}/env ${PYTHON_PN}:g" "${D}${bindir}"/tpm2_ptool
+}
+
+RDEPNDS_${PN} = "tpm2-tools"
+
+PACKAGES =+ "${PN}-tools"
+RDEPENDS_${PN}-tools += "${PYTHON_PN}-setuptools ${PYTHON_PN}-pyyaml ${PYTHON_PN}-cryptography ${PYTHON_PN}-pyasn1-modules"
+
+FILES_${PN}-tools = "\
+    ${bindir}/tpm2_ptool \
+    ${libdir}/${PYTHON_DIR}/* \
+"