TrouSerS / Bugs / #146 Support TPM_KEY.keyFlags.pcrIgnoredOnRead

#146 Support TPM_KEY.keyFlags.pcrIgnoredOnRead

Milestone: Bug

Status: closed-accepted

Owner: Rajiv Andrade

Labels: TSP Interface Library (74)

Priority: 5

Updated: 2011-12-06

Created: 2011-08-31

Creator: Kent Yoder

Private: No

This flag controls whether the TPM should check use of the public key portion of the key in APIs like TPM_CertifyKey TPM_CertifyKey2 and TPM_GetPubKey. By default the flag should be 1, since users will not be expecting for instance that their PCR composite is checked on a key being certified.

Right now trousers leaves this bit as 0 in the keyFlags and therefore these checks are enabled.

Discussion

Rajiv Andrade - 2011-12-06

status: open --> closed-accepted
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Rajiv Andrade - 2011-12-06

Fixed and posted at:

https://github.com/srajiv/trousers/commit/fada4664eb0e1241d8ddfa0cea67e7dfd1a94ef7

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Support TPM_KEY.keyFlags.pcrIgnoredOnRead

Group

Searches

Help

#146 Support TPM_KEY.keyFlags.pcrIgnoredOnRead

Discussion