Jürgen Repp

esys_GetResourceObject is not part of the ESAPI API. Objects are created by ESAPI functions (e.g. Esys_Create, Esys_TR_FromTPMPublic, ...) and can be used via the returned ESAPI handle.

yes actually the call of esys_GetResourceObject should not be part of an integration test. The handle is returned by Esys_CreatePrimary (ESYS_TR *objectHandle). And you can youse Esys_ReadPublic to get the...

Esys_NV_ReadPublic is the wrong function. You should use Esys_ReadPublic. Esys_NV_ReadPublic reads the public area and Name of an NV Index.

@SAO-kirito-asuna You get the results described in the Spec: Trusted Platform Module Library Part 3: Commands for the command TPM2_ReadPublic. So additionally to the public data you already got from...

@SAO-kirito-asuna Could you please attach the esapi calls of your example and describe the device of your test (Physical TPM or Simulator).

@SAO-kirito-asuna you could e.g. print the name as follows: ``` for (int i = 0; i < nvName->size; i++) { fprintf(stderr,"%02x", nvName->name[i]); } ```

@SAO-kirito-asuna You will get the needed handle by calling `Esys_Load`. You can find examples in the integration tests (e.g. test/integration/ esys-create-session-auth.int.c).

Ff the tpm tools are installed you can get the certificate as described on: https://github.com/tpm2-software/tpm2-tools/blob/master/man/tpm2_getekcertificate.1.md If you use FAPI you can get it as follows: ``` tss2_provision tss2_getcertificate -p /HE/EK...

You could run a second provisioning with a rsa config file where the P_RSA2048SHA256 profile is used (The persistent handle in the P_RSA2048SHA256.json has to be adapted if there is...

@fansari Could you please attach your script ./provision-fapi-rsa.sh and /etc/tpm2-tss/fapi-profiles/P_RSA2048SHA256.json.