Morten Linderud
Morten Linderud
LGTM. Thanks for working on this :)
This lacks a test. You should be able to recreate the flow as you describe through the TPM simulator.
This is probably not going to work out in it's current form. We need to extend the SRK to the key format and I'm changing this to the ASN.1 key...
@novag Yo, thanks for working on this. I've been tidying up `go-tpm-keyfiles` with the intention of moving most of the keyfile handling and TPM stuff around these to this library....
Yo, I'm sorry for making this PR difficult to merge for you. I've added a `--parent-handle` flag to `ssh-tpm-keygen` which *might* do what you want to do as it just...
Closing this as there hasn't been any activity for a while. If this does not work on the current release please poke me and I'll implement the missing pieces :)
Not supported by the TPM spec.
I agree, but the main "issue" I have is that I'd like to figure out how we should re-seal the key. If we lock the key to a state, we...
> OK, that is a good point. I just thought about the PCR 0+7 use case when I wrote this (tying the key to secure boot and thus to some...
> I am much more lost than you when it comes to a vision how re-sealing might work, I simply did not think about it at all sweat_smile. But should...