On Wed, 2016-01-13 at 13:36 +0000, David Howells wrote: > David Woodhouse <dwmw2@xxxxxxxxxxxxx> wrote: > > > David, is there a way to do that test purely in software without > > needing hardware support? We know that the data might not actually be > > present in all cases... is there an easy test for that case? > > I have written a user TPM driver that talks to a userspace TPM implementation > out of the backend. It's been pushed to the TPM driver guy but I'm not sure > what became of it. I'll chase it up. I was thinking of something a lot simpler — like a test hack with a key type that just puts a *pointer* to the key data in the 'payload', to ensure that nobody is violating the rules about directly touching the payload (which should be private to the implementation). -- dwmw2
Attachment:
smime.p7s
Description: S/MIME cryptographic signature
