diff options
author | Fredrik Ternerot <fredrik.ternerot@axis.com> | 2018-11-09 13:07:43 +0100 |
---|---|---|
committer | James Bottomley <James.Bottomley@HansenPartnership.com> | 2018-11-12 07:57:59 -0800 |
commit | 24ef282ee4d94cac5adbbfd2e825e4996afb1762 (patch) | |
tree | aded87c8ee90ec0e96f746d55e48c9e192f1de9e | |
parent | f1f2f3eac25b2982f7f96caf4827628b520fa461 (diff) | |
download | openssl_tpm2_engine-24ef282ee4d94cac5adbbfd2e825e4996afb1762.tar.gz |
Enable TPM parameter encryption for RSA encrypt/decrypt
Enable TPM parameter encryption for RSA private encrypt/decrypt to
protect sensitive data sent to and received from the TPM.
Signed-off-by: Fredrik Ternerot <fredrikt@axis.com>
Signed-off-by: James Bottomley <James.Bottomley@HansenPartnership.com>
-rw-r--r-- | e_tpm2-rsa.c | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/e_tpm2-rsa.c b/e_tpm2-rsa.c index 50c2cac..35b865b 100644 --- a/e_tpm2-rsa.c +++ b/e_tpm2-rsa.c @@ -203,7 +203,7 @@ static int tpm2_rsa_priv_dec(int flen, (COMMAND_PARAMETERS *)&in, NULL, TPM_CC_RSA_Decrypt, - authHandle, auth, 0, + authHandle, auth, TPMA_SESSION_ENCRYPT, TPM_RH_NULL, NULL, 0); if (rc) { tpm2_error(rc, "TPM2_RSA_Decrypt"); @@ -282,7 +282,7 @@ static int tpm2_rsa_priv_enc(int flen, (COMMAND_PARAMETERS *)&in, NULL, TPM_CC_RSA_Decrypt, - authHandle, auth, 0, + authHandle, auth, TPMA_SESSION_DECRYPT, TPM_RH_NULL, NULL, 0); if (rc) { |