Skip to content

Comments

Certify multiple algorithms#614

Draft
mcr wants to merge 10 commits intoparallaxsecond:mainfrom
mcr:certify-multiple
Draft

Certify multiple algorithms#614
mcr wants to merge 10 commits intoparallaxsecond:mainfrom
mcr:certify-multiple

Conversation

@mcr
Copy link

@mcr mcr commented Dec 29, 2025

With some questionable changes to ek.rs, it is now possible to run the certify example with RSA-2048 and
ECDSA P384 algorithms, but the P256 ones still do not work.
Deep reading of TPM Family 2.0; Level 0 Version 2.6 December 4, 2024, has not yet revealed what is going on.
Using AUTHPOLICY_A_SHA256 works by using PolicyA as the "OR" part for PolicyB, but that ought to work for P256 as well.
Unless some of the template is wrong.

The "certify" example now takes an argument:
0 - RSAS-2048
1 - ECDSA P384
2 - ECDSA P256

@mcr mcr force-pushed the certify-multiple branch from 0202201 to 5cea35b Compare December 29, 2025 07:52
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant