-
Notifications
You must be signed in to change notification settings - Fork 92
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
tpm2: Use OpenSSL functions for encrypting and signing using RSA keys
Use the CRT (Chinese Remainder Theorem) method for doing the RSA operations. Unfortunately it is not sufficient to just pass the precalculated dP, dQ, and qInv parameters to OpenSSL private key crypto functions but it also needs D, which is a bit more involved to calculate. We are not caching D (private exponent) as part of the OBJECT since the OBJECT lives in size-limited NVRAM and we would need to add 'D' to the privateExponent_t, which would make it bigger and which would allow less keys to fit into memory, which in turn could be- come an issue if we wanted to resume a TPM that filled up the NVRAM with keys and now less keys would fit into the NVRAM. Signed-off-by: Stefan Berger <stefanb@linux.ibm.com>
- Loading branch information
1 parent
a572dbc
commit 05dc373
Showing
1 changed file
with
213 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters