-
Notifications
You must be signed in to change notification settings - Fork 36
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
During SSL handshake, error coming as "tpm2::cannot sign: 722 tpm:parameter(2):unsupported or incompatible scheme" #55
Comments
when ever the error comes, i see this error on tpm-abrmd and here is the bt of it |
I would be interested to know what digest is being requested. Please build the tpm2 provider with Also, as described in https://github.com/tpm2-software/tpm2-openssl/blob/master/docs/certificates.md#tls-handshake you may need to use |
Thanks for early reply, here the logs :cert path: handle:0x1000002 |
Even after setting this , it is still same error. Also tried SSL_CTX_set1_client_sigalgs_list. |
Hi again, I made some updates. If the problem persists, could you try building the latest master, configured without op-cipher and op-digest disabled? You may get better results. |
I am using
openssl 3.0.2
TPM2-OPENSSL
ibmtpm -1682
tpm2-abrmd
i have also posted same question in tpm2-tss, as i don't know where to put it exactly, as error belongs to tpm2-tss.
i am trying integrate tpm2 with librdkafka, trying to use tpm2 generated private keys and certificate for mTLS of kafka on the client side.
steps i followed :
brief code of SSLHandShake.cpp
While running the above compiled code, gets the error "tpm2::cannot sign: 722 tpm:parameter(2):unsupported or incompatible scheme"
Am i following correct steps? is anything wrong? please help me to overcome this error.
The text was updated successfully, but these errors were encountered: