Jürgen Repp

The continue session flag can be set with `Esys_TRSess_SetAttributes` (flag `TPMA_SESSION_CONTINUESESSION`). The default for this flag is clear. So if a command with a session is executed successfully the session...

The problem (breaking chant) described by @dvzrv in https://github.com/tpm2-software/tpm2-pkcs11/issues/840 should be solved.

> @JuergenReppSIT we might want to consider compiling with [include-what-you-use](https://github.com/include-what-you-use/include-what-you-use) in our ci to ensure include correctness. I might have a look at this once I'm available again. Yes that's...

@Akuli No FAPI should not work out of the box without poll. Also some tctis should not compile in the case : ``` #else typedef void TSS2_TCTI_POLL_HANDLE; #ifndef TSS2_TCTI_SUPPRESS_POLL_WARNINGS #pragma...

> I would actually prefer to add proper use of the `Tss2_MU_XYZ_Marshal/Unmarshal()` functions instead of having a packed struct. I do not think that there is actually a need for...

I also could reproduce the error. I checked the encryption in the simulator and saw that the session key was the the same in the simulator and in the tool...

If you want to see how to convert a tpm2 public key to an openssl public key in C you could check the following programs from the tpm tools: https://github.com/tpm2-software/tpm2-tools/blob/8cbc4bbaebc4fa135e35dabd6d9ab36ac05eb72b/lib/tpm2_convert.c#L95...

From man page RSA_public_decrypt: RSA_PKCS1_PADDING PKCS 1 v1.5 padding. This function does not handle the algorithmIdentifier specified in PKCS 1. When generating or verifying PKCS 1 signatures, [RSA_sign(3)](https://www.openssl.org/docs/man3.1/man3/RSA_sign.html) and [RSA_verify(3)](https://www.openssl.org/docs/man3.1/man3/RSA_verify.html)...

You chan see howto verify a signature with an evp public key in C at: https://github.com/tpm2-software/tpm2-tss/blob/6bff243f98d554040facfef54508472d7ff46e9a/src/tss2-fapi/fapi_crypto.c#L862

The first two bytes of the name are the nameAlg (0x000b) in your case.