Documentation ¶
Overview ¶
Package credactivation implements generation of data blobs to be used when invoking the ActivateCredential command, on a TPM.
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func Generate ¶
func Generate(aik *tpm2.HashValue, pub crypto.PublicKey, symBlockSize int, secret []byte) ([]byte, []byte, error)
Generate returns a TPM2B_ID_OBJECT & TPM2B_ENCRYPTED_SECRET for use in credential activation. This has been tested on EKs compliant with TCG 2.0 EK Credential Profile specification, revision 14. The pub parameter must be a pointer to rsa.PublicKey. The secret parameter must not be longer than the longest digest size implemented by the TPM. A 32 byte secret is a safe, recommended default.
This function implements Credential Protection as defined in section 24 of the TPM specification revision 2 part 1, with the additional caveat of not supporting ECC EKs. See: https://trustedcomputinggroup.org/resource/tpm-library-specification/
Types ¶
This section is empty.