Karel Srot

Update: The issue below is not tpm2-tools one, most likely the root cause is in shim package. I am observing similar issue ``` # tpm2_eventlog --eventlog-version=2 /sys/kernel/security/tpm0/binary_bios_measurements - EventNum: 29...

> * `registrar_my_cert`: could be `registrar_access_cert` or something similar. The confusing part is to understand why we have registrar options in `cloud_verifier` section. I would simply use something like `verifier_server_cert`...

Just to clarify, I wasn't suggesting using one certificate for all services. Just using that simple option name within a particular section.

I see. I didn't check it in detail, it was just the plain `.get` that caught my attention. Now I can see that I could get similar traceback by passing...

Hi @galmasi I am trying to write a test implementing the proposed setup but I am not able to reproduce the reported issue. https://github.com/RedHat-SP-Security/keylime-tests/pull/175/files In the test I am generating...

Finally I am able to reproduce it. The error above is caused by https://github.com/keylime/keylime/issues/1080.

I have consulted it with our tmp2-tools developer and according to him `tpm2_getekcertificate` currently only supports the NIST P-256 index. Seems like it is something that should be updated in...

@ansasaki Hi, I tried to migrate existing tests to new config format but there are some tests failing. It is possible that I have overlooked something while changing options but...

I think the problem is that config files under `/etc/keylime/` won't appear on a test system with keylime installation. I can see you have a migration script but how is...

So I have split `/etc/keylime.conf` into multiple files under `/etc/keylime` using the provided script but.. where is the code that actually instructs keylime processes to use these new locations? I...