[WIP]: TPM Support

Author: itsManjeet

.github/workflows/build.yml renamed to .github/workflows/build.yml.disabled

@@ -0,0 +1,22 @@
+/**
+ *  Copyright Notice:
+ *  Copyright 2021-2025 DMTF. All rights reserved.
+ *  License: BSD 3-Clause License. For full text see link: https://github.com/DMTF/libspdm/blob/main/LICENSE.md
+ **/
+
+#ifndef __CRYPTLIB_TPM_H__
+#define __CRYPTLIB_TPM_H__
+
+#include <stdbool.h>
+
+bool libspdm_tpm_device_init();
+
+bool libspdm_tpm_get_private_key(void *handle, void **context);
+
+bool libspdm_tpm_get_public_key(void *handle, void **context);
+
+bool libspdm_tpm_get_certificate(void *handle, void **context);
+
+bool libspdm_tpm_dump_certificate(void *context, void **buffer, size_t *size);
+
+#endif

.github/workflows/cifuzz.yml renamed to .github/workflows/cifuzz.yml.disabled

@@ -48,6 +48,7 @@ target_sources(cryptlib_openssl
         pk/x509_pqc.c
         rand/rand.c
         sys_call/crt_wrapper_host.c
+        tpm/tpm.c
 )
 
 target_compile_options(cryptlib_openssl PRIVATE ${OPENSSL_FLAGS})

.github/workflows/code_coverage.yml renamed to .github/workflows/code_coverage.yml.disabled

@@ -205,7 +205,7 @@ bool libspdm_ec_set_pub_key(void *ec_context, const uint8_t *public_key,
         goto cleanup_ctx;
     }
 
-    if (evp_pkey_copy_downgraded(&evp_pkey, new_evp_pkey) == 1) {
+    if (EVP_PKEY_set1_EC_KEY(evp_pkey, EVP_PKEY_get1_EC_KEY(new_evp_pkey)) == 1) {
         result = true;
     }
     EVP_PKEY_free(new_evp_pkey);

.github/workflows/codeql-analysis.yml renamed to .github/workflows/codeql-analysis.yml.disabled

@@ -2104,6 +2104,26 @@ bool libspdm_x509_verify_cert_chain(const uint8_t *root_cert, size_t root_cert_l
     return verify_flag;
 }
 
+static void dump_hex(const unsigned char *buf, long buflen)
+{
+    char buffer[4096];
+    const unsigned char *p = buf;
+    X509 *cert = d2i_X509(NULL, &p, buflen);
+    if (!cert) {
+        printf("Not an X.509 cert inside this ASN.1 object.\n");
+        return;
+    }
+
+    /* Print certificate */
+    BIO *bio = BIO_new(BIO_s_mem());
+    X509_print(bio, cert);
+    int s = BIO_read(bio, (void*) buffer, sizeof(buffer));
+    buffer[s] = '\0';
+    printf("ROOT CERT: %s\n", buffer);
+    X509_free(cert);
+}
+
+
 /**
  * Get one X509 certificate from cert_chain.
  *
@@ -2172,6 +2192,7 @@ bool libspdm_x509_get_cert_from_cert_chain(const uint8_t *cert_chain,
         if (current_index == cert_index) {
             *cert = current_cert;
             *cert_length = current_cert_len;
+            dump_hex((const unsigned char*) *cert, (long) *cert_length);
             return true;
         }