Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Sealing keys with PCRs #21

Open
stv0g opened this issue Oct 12, 2023 · 1 comment
Open

Sealing keys with PCRs #21

stv0g opened this issue Oct 12, 2023 · 1 comment

Comments

@stv0g
Copy link

stv0g commented Oct 12, 2023

It would be nice if we could also seal the keys given a set of PCR values.

Even nicer would be support for FAPI policies which could be provided in a JSON file. But I currently see no FAPI support in go-tpm. So its probably quite difficult to implement this without tpm2-tss's Fapi_Import()?
@Foxboron
Copy link
Owner

Yes, but for that I'd like a Reseal API to function. So I need to learn how this works in Go, along with probably implementing missing apis in go-tpm.

See Foxboron/ssh-tpm-agent#15

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@stv0g @Foxboron