Skip to content

Latest commit

 

History

History
25 lines (16 loc) · 910 Bytes

TPM2_Duplicate.md

File metadata and controls

25 lines (16 loc) · 910 Bytes

TPM2_Duplicate()

TPM2_Duplicate() wraps a key, typically encrypting it to a public key for a key on a remote TPM.

I.e., this is used to export a wrapped key for some target, typically a remote TPM.

Inputs

  • TPMI_DH_OBJECT objectHandle (handle for key to encrypt with)
  • TPMI_DH_OBJECT newParentHandle (optional; handle for key to wrap to -- "Only the public area of newParentHandle is required to be loaded")
  • TPM2B_DATA encryptionKeyIn (optional; symmetric key to encrypt with)
  • TPMT_SYM_DEF_OBJECT+ symmetricAlg ("definition for the symmetric algorithm to be used for the inner wrapper")

Outputs (success case)

  • TPM2B_DATA encryptionKeyOut
  • TPM2B_PRIVATE duplicate
  • TPM2B_ENCRYPTED_SECRET outSymSeed

References