Jürgen Repp
Jürgen Repp
@AndreasFuchsSIT Currently Fapi_ExportKey returns the public key in PEM format if new parent is NULL and the command Fapi_Export does not exist?
The error occurs when the DER intermediate certificate (retrieved with URL from EK cert) is converted to X509. As a workaround to skip the certificate check you could add: `"ek_cert_less":...
Thank you for uploading the certificates. I did also test it with an Infineon TPM and provisioning worked for me. The only difference was the Link for retrieving the intermediate...
The command Esys_PCR_SetAuthValue works similar to the ChangeAuth commands. So the auth value should not be stored in the esys context when Esys_PCR_SetAuthValue is executed.
@Chanz6666 What happens if you execute: `make check LDFLAGS+='-ldl'`
> i'd like to see fuzz tests to catch issues with malicious log data as inputs. @williamcroberts The afl fuzzer revealed some bugs in the IMA part. I will test...
> @williamcroberts @JuergenReppSIT Let's have the discussion here: Should we roll a new major release (4.0) because we change the CEL format or do we consider the old format was...
@williamcroberts @AndreasFuchsTPM AFL fuzzing has now been running for more than 5 days on 20 CPUs without finding more errors. So could the PR now be merged for 3.3? @williamcroberts...
OpenSSL does support the SM algorithms. But it seems to be difficult to test the implementation with a simulator supporting these algorithms. I think the announced switching to the EVP...
@williamcroberts I tried to compile libtpms (./configure --with-openssl) with SM3 and SM4 activated but got errors. For "#if SM4_128" there are even syntax errors in the source code.