]> git.ipfire.org Git - thirdparty/systemd.git/commit
projects / thirdparty / systemd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9316e02) | patch
tpm2: allow use of recoverable sealing keys
authorsafforddr <david.safford@gmail.com>
Tue, 13 Jan 2026 18:27:20 +0000 (13:27 -0500)
committerLennart Poettering <lennart@poettering.net>
Mon, 19 Jan 2026 21:00:45 +0000 (22:00 +0100)
commit331fef07d8b2909a84a88cc3d18911853b413f8f
tree1764c9411e3067aa9581448939152275e5006cd2tree | snapshot
parent9316e02c9d72a09c9ff7ac0ec4dc92d94440b60fcommit | diff
tpm2: allow use of recoverable sealing keys

In some use cases it is desirable to use a recoverable (ie duplicatable)
sealing key. Currently objects have the attribute TPMA_OBJECT_FIXEDTPM
and TPMA_OBJECT_FIXEDPARENT hard coded, which will not work with a
recoverable sealing key. This patch sets the object's attributes from
the sealing key's attributes, so that both types of sealing keys will work.
src/shared/tpm2-util.c diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.