Joe Richey
Joe Richey
I confirmed that using the exact same setting but going from Debian 10 to Debian 11, the issue is fixed. So I'm guessing this is a bug in Debian 10's...
We either need to get that patch series backported to Debian 10 (which sounds annoying), or just tell users of this library "Don't use Debian 10, it's insecure w.r.t. the...
@alexmwu or @jkl73 can we just add a note about Debian 10 (perhaps in the `VerifyAttestation`/`VerifyOps` docs where we already mention it). Then we should close this issue.
Discussed offline with Alex, for command tests we should probably switch to doing something like: ```go // in cmd/open.go var openTPM func() (io.ReadWriteCloser, error) = openImpl // in cmd/seal.go tpm,...
We should also make the GetEventLog interface definition private
Short-Term: `go-tpm` should define a `TPM` interface that's basically: ```go interface TPM { io.ReadWriteCloser EventLog() ([]byte, error) } ``` And `tpm2.OpenTPM` should return a `TPM` (instead of an `io.ReadWriteCloser`. This...
No particular reason. We would ideally support ECC, but it would require adding code in `createPublicPrivateSign` and I just didn't get around to it in #70 I don't think it...
@Lupus it seems roughly reasonable. I would need to double check the spec, but if it's working it's either exactly or almost exactly correct. Care to open a PR so...
Ahhhh, that makes sense. I can see if someone on our team has time to get a PR in soonish.