Persistent keys support

tpm2-software / tpm2-tss-engine

OpenSSL Engine for TPM2 devices

https://tpm2-software.github.io

BSD 3-Clause "New" or "Revised" License

151 stars 100 forks source link

Persistent keys support #164

Closed rlillback closed 4 years ago

rlillback commented 4 years ago

What is the current state of support for utilizing persistent keys inside of the TPM? My application is to: 1.) Create a persistent private key on the TPM in NVRAM (public on file system) 2.) Use that persistent private key to create a CSR

Is this possible? Issue/bug #24 states that persistent key support is a WIP for PR #14. PR #14 references PR #33. However, I can't find any usage documentation around this support?

Thanks!

AndreasFuchsTPM commented 4 years ago

Yes, it is possible. see https://github.com/tpm2-software/tpm2-tss-engine/blob/master/test/rsasign_persistent.sh

P.S. If you'd like, I'd appreciate any addition to the README here...