On Sat, 2018-03-10 at 10:29 -0800, James Bottomley wrote: > OK, you might want to wait for v3 then. I've got it working with > sealed (trusted) keys, well except for a problem with the trusted keys > API that means we can't protect the password for policy based keys. I > think the API is finally complete, so I'll send v3 as a PATCH not an > RFC. > > The point of the last patch is to show the test rig for this I'm > running in a VM using an instrumented tpm2 emulator to prove we're > getting all the correct data in and out (and that the encryption and > hmac are working); more physical TPM testing would be useful .. Sorry, I did not notice this email in my inbox before I responded to you v3 cover letter :-) Thank you. /Jarkko
