fmaury/tpm.dev.tutorials
1
0
Fork 0
mirror of https://github.com/tpm2dev/tpm.dev.tutorials.git synced 2024-09-19 20:32:11 +00:00
Code Issues Projects Releases Packages Wiki Activity
tpm.dev.tutorials/TPM-Commands/TPM2_Duplicate.md
Nicolas Williams 3b4191c0ae Expand on restricted keys; describe more TPM commands
2021-05-19 16:15:27 -05:00

910 B
Raw Blame History

TPM2_Duplicate()

TPM2_Duplicate() wraps a key, typically encrypting it to a public key for a key on a remote TPM.

I.e., this is used to export a wrapped key for some target, typically a remote TPM.

Inputs

  • TPMI_DH_OBJECT objectHandle (handle for key to encrypt with)
  • TPMI_DH_OBJECT newParentHandle (optional; handle for key to wrap to -- "Only the public area of newParentHandle is required to be loaded")
  • TPM2B_DATA encryptionKeyIn (optional; symmetric key to encrypt with)
  • TPMT_SYM_DEF_OBJECT+ symmetricAlg ("definition for the symmetric algorithm to be used for the inner wrapper")

Outputs (success case)

  • TPM2B_DATA encryptionKeyOut
  • TPM2B_PRIVATE duplicate
  • TPM2B_ENCRYPTED_SECRET outSymSeed

References