Visible to Intel only — GUID: rhv1569374983916
Ixiasoft
3.1. Installing PACSign
3.2. PACSign Tool
3.3. Creating Unsigned Images
3.4. Using an HSM Manager
3.5. Creating Keys
3.6. Root Entry Hash Bitstream Creation
3.7. Signing Images
3.8. Creating a CSK ID Cancellation Bitstream
3.9. PACSign PKCS11 Manager *.json Reference
3.10. Creating a Custom HSM Manager
3.11. PACSign Man Page
Visible to Intel only — GUID: rhv1569374983916
Ixiasoft
3.10.1. HSM_MANAGER.get_public_key(public_key)
This method returns an instance of a public key that is described by ‘public_key’, which was provided via a command-line option (--root_key or --code_signing_key). The HSM manager must know how to properly identify the key on the HSM given this string.
The public key instance is required to supply the public methods described in the sections that follow. The PKCS #11 implementation of this function, get_public_key, is below:
def get_public_key(self, public_key):
try:
key_, local_key = self.get_key(public_key, ObjectClass.PUBLIC_KEY)
key_ = key_[Attribute.EC_POINT]
except pkcs11.NoSuchKey:
pass # No key found
except pkcs11.MultipleObjectsReturned:
pass # Multiple keys found
return _PUBLIC_KEY(key_[3:], local_key)