issues
search
wolfSSL
/
wolfBoot
wolfBoot is a portable, OS-agnostic, secure bootloader for microcontrollers, supporting firmware authentication and firmware update mechanisms.
https://www.wolfssl.com
GNU General Public License v3.0
331
stars
95
forks
source link
TPM sealing cleanups
#375
Closed
dgarske
closed
9 months ago
dgarske
commented
9 months ago
If using simulator don't extend the unseal PCR to prevent further access. Added
WOLFBOOT_NO_UNSEAL_PCR_EXTEND
option to prevent locking of PCR by random extend.
Improvements to the
policy_sign
tool (example usage, ecc384 support).
WOLFBOOT_NO_UNSEAL_PCR_EXTEND
option to prevent locking of PCR by random extend.policy_sign
tool (example usage, ecc384 support).