[gnutls-devel] GnuTLS | Port openconnect TPM2 code (!1460)

Read-only notification of GnuTLS library development activities gnutls-devel at lists.gnutls.org
Mon Sep 27 10:18:16 CEST 2021




David Woodhouse commented on a discussion: https://gitlab.com/gnutls/gnutls/-/merge_requests/1460#note_687452816

Ah, what the tpm2-tss-engine does in https://github.com/tpm2-software/tpm2-tss-engine/commit/4ba57cb1 is subtly different. It falls back to an ephemeral RSA parent if the TPM hardware doesn't support ECC at all.

Not just if the child key being handled right now *happens* to be RSA, which is very wrong.

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/merge_requests/1460#note_687452816
You're receiving this email because of your account on gitlab.com.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20210927/e0a96c27/attachment.html>


More information about the Gnutls-devel mailing list