Petr Gotthard

Also the `ietf-keystore` is outdated, which is causing us some troubles. Just reporting-- I understand that you want to switch once the RFC is ready.

Fixed via #146

Yeah, the OAEP support is not implemented, see https://github.com/tpm2-software/tpm2-openssl/issues/89.

I just added support for the OAEP padding, so if you build the latest tpm2-openssl (master branch), your script may work.

Just for the record, I did test it using the following `sysrepo-python` code: ```python #!/bin/python3 import sysrepo import signal def module_change_cb(event, req_id, changes, private_data): print("Module changed event: %s (request ID...

Thank you. Just to confirm: the empty non-presence containers are then hidden when exporting data, just like default values are not shown. Right?

Well, the `sbsign` may be missing some OpenSSL 3.x support. This is not necessarily our fault.

Hmmm. There may be something wrong in the public key or the certificate. Would you please be able to compare the certificate used when it works vs when it doesn't...

Hello. Please provide enough information so I can reproduce this issue.

Well, everything can be improved. The `object` scheme was just easier to implement.