From: Petko Manolov <sti at nucleusys.com>
To: tpm2@lists.01.org
Subject: Re: [tpm2] seal and unseal data based on a PCR value
Date: Thu, 21 Jun 2018 10:38:41 -0700 [thread overview]
Message-ID: <20180621173840.GA5970@carbon> (raw)
In-Reply-To: 476DC76E7D1DF2438D32BFADF679FC5649BD9E1E@ORSMSX101.amr.corp.intel.com
[-- Attachment #1: Type: text/plain, Size: 1575 bytes --]
On 18-06-20 23:11:05, Roberts, William C wrote:
> I just uploaded a wiki that has the bits on seal/unseal
> https://github.com/tpm2-software/tpm2-tools/wiki/Creating-Objects
Thanks for this pointer. It's very usefull.
> You need PCR policy support on top of what that wiki discusses, which we have
> a script test for here: test/integration/tests/unseal.sh
Yeah, i finally managed to get it to work with the latest stable tpm2-tools.
> If you need to implement natively, the tools will serve as reference code on
> how to piece it all together.
So far i only need to use the tools. Using the API is not on the roadmap yet.
cheers,
Petko
> > -----Original Message-----
> > From: tpm2 [mailto:tpm2-bounces(a)lists.01.org] On Behalf Of Petko Manolov
> > Sent: Wednesday, June 20, 2018 1:42 PM
> > To: tpm2(a)lists.01.org
> > Subject: [tpm2] seal and unseal data based on a PCR value
> >
> > Hello guys,
> >
> > I know this one has been asked many times, but i could not find a definitive
> > howto, exact steps, etc.
> >
> > This project requires that a piece of data is being sealed to a TPM2 based on a
> > PCR value and then unsealed from TBoot. I've harvested some bits an pieces
> > from various discussions and still can't build a coherent picture in my mind.
> >
> > What would be the best place to start reading up on this?
> >
> >
> > cheers,
> > Petko
> > _______________________________________________
> > tpm2 mailing list
> > tpm2(a)lists.01.org
> > https://lists.01.org/mailman/listinfo/tpm2
>
next reply other threads:[~2018-06-21 17:38 UTC|newest]
Thread overview: 4+ messages / expand[flat|nested] mbox.gz Atom feed top
2018-06-21 17:38 Petko Manolov [this message]
-- strict thread matches above, loose matches on Subject: below --
2018-06-20 23:22 [tpm2] seal and unseal data based on a PCR value Tadeusz Struk
2018-06-20 23:11 Roberts, William C
2018-06-20 20:42 Petko Manolov
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20180621173840.GA5970@carbon \
--to=tpm2@lists.01.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.