Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add compile-time option WOLFSSL_PKCS11_RW_TOKENS #6778

Merged
merged 1 commit into from
Sep 15, 2023
Merged

Add compile-time option WOLFSSL_PKCS11_RW_TOKENS #6778

merged 1 commit into from
Sep 15, 2023

Conversation

danielinux
Copy link
Member

@danielinux danielinux commented Sep 15, 2023
edited
Loading

Description

By default, wolfcrypt PKCS11 interface accesses tokens in read-only mode. In some cases, we might want to build the client with write permissions, i.e. when initializing tokens via C_InitToken().

The WOLFSSL_PKCS11_RW_TOKENS option, if present, allows write access to PKCS11 tokens.

Testing

Tested via TrustZone-M + wolfBoot + wolfPKCS11 in wolfBoot PR 275

@danielinux
Add compile-time option WOLFSSL_PKCS11_RW_TOKENS
ca56b79 
By default, wolfcrypt PKCS11 interface accesses tokens in read-only
mode. In some cases, we might want to build the client with write
permissions, i.e. when initializing tokens via C_InitToken().

The WOLFSSL_PKCS11_RW_TOKENS option, if present, allows write access to
PKCS11 tokens.
@dgarske
Copy link
Contributor

dgarske commented Sep 15, 2023

retest this please

danielinux added a commit to danielinux/wolfBoot that referenced this pull request Sep 15, 2023
@danielinux
Added flag WOLFSSL_PKCS11_RW_TOKENS
e798f7e 
Writable token support in PR wolfSSL/wolfssl#6778
@JacobBarthelmeh JacobBarthelmeh merged commit 1f2ddb7 into wolfSSL:master Sep 15, 2023
78 checks passed
danielinux added a commit to danielinux/wolfBoot that referenced this pull request Sep 18, 2023
@danielinux
Updated wolfSSL to include wolfSSL/wolfssl#6778
4189d98
danielinux added a commit to danielinux/wolfBoot that referenced this pull request Sep 21, 2023
@danielinux
Added flag WOLFSSL_PKCS11_RW_TOKENS
b29290b 
Writable token support in PR wolfSSL/wolfssl#6778
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@JacobBarthelmeh JacobBarthelmeh JacobBarthelmeh approved these changes

@dgarske dgarske dgarske approved these changes

@SparkiDev SparkiDev Awaiting requested review from SparkiDev

Assignees

@wolfSSL-Bot wolfSSL-Bot

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@danielinux @dgarske @JacobBarthelmeh @wolfSSL-Bot