projects / buildroot.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 71a46eb)
package/pkcs11-helper: new package
authorAdam Duskett <Aduskett@gmail.com>
Wed, 30 Oct 2019 00:56:03 +0000 (17:56 -0700)
committerThomas Petazzoni <thomas.petazzoni@bootlin.com>
Sun, 12 Apr 2020 21:35:09 +0000 (23:35 +0200)
pkcs11-helper is a library that simplifies the interaction with
PKCS#11 providers for end-user applications. Pkcs11-helper allows
using multiple PKCS#11 providers at the same time, enumerating
available token certificates, or selecting a certificate directly by
serialized id, handling card removal and card insert events, handling
card re-insert to a different slot, supporting session expiration and
much more all using a simple API.

Signed-off-by: Adam Duskett <Aduskett@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
DEVELOPERS patch | blob | history
package/Config.in patch | blob | history
package/pkcs11-helper/Config.in [new file with mode: 0644] patch | blob
package/pkcs11-helper/pkcs11-helper.hash [new file with mode: 0644] patch | blob
package/pkcs11-helper/pkcs11-helper.mk [new file with mode: 0644] patch | blob

diff --git a/DEVELOPERS b/DEVELOPERS
index f974f4c3e0566084af9ef92b6f22651f78189bb5..ac3d89dd0a77cf8b80ed9541a651a1aee9f8dc08 100644 (file)
--- a/DEVELOPERS
+++ b/DEVELOPERS
@@ -54,6 +54,7 @@ F:    package/nginx-naxsi/
 F:     package/openjdk/
 F:     package/openjdk-bin/
 F:     package/php/
+F:     package/pkcs11-helper/
 F:     package/policycoreutils/
 F:     package/prelink-cross/
 F:     package/polkit/
diff --git a/package/Config.in b/package/Config.in
index d2b0a9c357fb24ad58d7e8fe44580d42a7978aca..b5bf4e32d3fa4d6e31226ec8375973887c610e32 100644 (file)
--- a/package/Config.in
+++ b/package/Config.in
@@ -1324,6 +1324,7 @@ menu "Crypto"
        source "package/mbedtls/Config.in"
        source "package/nettle/Config.in"
        source "package/openssl/Config.in"
+       source "package/pkcs11-helper/Config.in"
        source "package/rhash/Config.in"
        source "package/tinydtls/Config.in"
        source "package/tpm2-tss/Config.in"
diff --git a/package/pkcs11-helper/Config.in b/package/pkcs11-helper/Config.in
new file mode 100644 (file)
index 0000000..da000b7
--- /dev/null
+++ b/package/pkcs11-helper/Config.in
@@ -0,0 +1,19 @@
+config BR2_PACKAGE_PKCS11_HELPER
+       bool "pkcs11-helper"
+       help
+         pkcs11-helper is a library that simplifies the interaction
+         with PKCS#11 providers for end-user applications.
+
+         pkcs11-helper allows using multiple PKCS#11 providers at the
+         same time, enumerating available token certificates, or
+         selecting a certificate directly by serialized id, handling
+         card removal and card insert events, handling card re-insert
+         to a different slot, supporting session expiration and much
+         more all using a simple API.
+
+         pkcs11-helper is not designed to manage card content, since
+         object attributes are usually vendor specific, and 99% of
+         application need to access existing objects in order to
+         perform signature and decryption.
+
+         https://github.com/OpenSC/pkcs11-helper
diff --git a/package/pkcs11-helper/pkcs11-helper.hash b/package/pkcs11-helper/pkcs11-helper.hash
new file mode 100644 (file)
index 0000000..c0411a2
--- /dev/null
+++ b/package/pkcs11-helper/pkcs11-helper.hash
@@ -0,0 +1,5 @@
+# Locally computed
+sha256  fbcec9dd15a71d6ef22b09f63934c66d7d0292fefbaf3a60703ee4a9a73bf6a5  pkcs11-helper-1.25.1.tar.gz
+sha256  808705ac1daafe07a76431929575c5712a8693977a39ec9102aed25f030754d9  COPYING
+sha256  865496cf23a6c792739ff2f9ea11e95ac99db89cfe3780a295b4e1495a9c19fe  COPYING.BSD
+sha256  cd2e7d63a11058f19c58b06fb8c759140ce70788369dce6e6e9db40d3475021e  COPYING.GPL
diff --git a/package/pkcs11-helper/pkcs11-helper.mk b/package/pkcs11-helper/pkcs11-helper.mk
new file mode 100644 (file)
index 0000000..a86cabd
--- /dev/null
+++ b/package/pkcs11-helper/pkcs11-helper.mk
@@ -0,0 +1,50 @@
+################################################################################
+#
+# pkcs11-helper
+#
+################################################################################
+
+PKCS11_HELPER_VERSION = 1.25.1
+PKCS11_HELPER_SITE = $(call github,OpenSC,pkcs11-helper,pkcs11-helper-$(PKCS11_HELPER_VERSION))
+PKCS11_HELPER_LICENSE = GPL-2.0 or BSD-3-Clause
+PKCS11_HELPER_LICENSE_FILES = COPYING COPYING.BSD COPYING.GPL
+PKCS11_HELPER_AUTORECONF = YES
+PKCS11_HELPER_INSTALL_STAGING = YES
+
+PKCS11_HELPER_CONF_OPTS = \
+       --disable-crypto-engine-polarssl \
+       --disable-crypto-engine-cryptoapi
+
+ifeq ($(BR2_PACKAGE_GNUTLS),y)
+PKCS11_HELPER_DEPENDENCIES += gnutls
+PKCS11_HELPER_CONF_OPTS += --enable-crypto-engine-gnutls
+else
+PKCS11_HELPER_CONF_OPTS += --disable-crypto-engine-gnutls
+endif
+
+ifeq ($(BR2_PACKAGE_LIBNSS),y)
+PKCS11_HELPER_DEPENDENCIES += libnss
+PKCS11_HELPER_CONF_OPTS += --enable-crypto-engine-nss
+else
+PKCS11_HELPER_CONF_OPTS += --disable-crypto-engine-nss
+endif
+
+ifeq ($(BR2_PACKAGE_MBEDTLS),y)
+PKCS11_HELPER_DEPENDENCIES += mbedtls
+PKCS11_HELPER_CONF_OPTS += --enable-crypto-engine-mbedtls
+else
+PKCS11_HELPER_CONF_OPTS += --disable-crypto-engine-mbedtls
+endif
+
+ifeq ($(BR2_PACKAGE_OPENSSL),y)
+PKCS11_HELPER_DEPENDENCIES += openssl
+PKCS11_HELPER_CONF_OPTS += \
+       --enable-openssl \
+       --enable-crypto-engine-openssl
+else
+PKCS11_HELPER_CONF_OPTS += \
+       --disable-openssl \
+       --disable-crypto-engine-openssl
+endif
+
+$(eval $(autotools-package))