Hi,
* Is there any plan to support other evm_hmac algorithms (like we done
on ima file data hash algorithm), the sha2 or other recent algorithms are more
hardened than sha1 after all.
* We have supported arbitrary hash algorithms for ima file data
measurement since commit e7a2ad7eb6f48ad80c70a22dd8167fb34b409466, but the ima
template hash algorithm is still sha1 due to
the tpm1.2 pcr limitation.
But as we all know ,the tpm2 has supported sha2/sm3 and other algorithms , is
there any approach to use TPM2.0 better ? For example , could we use sha2 as
default digest algorithm, and when we meet tpm1.2, we truncate the digest from
32 to 20 bytes ?
Best Regards,
Li Kun
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, SlashDot.org! http://sdm.link/slashdot
_______________________________________________
tpmdd-devel mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/tpmdd-devel
