For the tpm2_loadexternal, and tpm2_import tests, the failure seems from RSA private key 1024 bit no support for this platform. So TPM returned ErrorCode (0x000002c4), "value is out of range or is not correct for the context"
+ openssl genrsa -aes128 -passout pass:mypassword -out private.pem 1024
Generating RSA private key, 1024 bit long modulus (2 primes)
.........................+++++
...+++++
e is 65537 (0x010001)
+ '[' pass:mypassword '!=' stdin ']'
+ cmd='tpm2_loadexternal -Q -G rsa -r private.pem -c key.ctx --passin pass:mypassword'
+ eval tpm2_loadexternal -Q -G rsa -r private.pem -c key.ctx --passin pass:mypassword
++ tpm2_loadexternal -Q -G rsa -r private.pem -c key.ctx --passin pass:mypassword
WARNING:esys:src/tss2-esys/api/Esys_LoadExternal.c:304:Esys_LoadExternal_Finish() Received TPM Error
ERROR:esys:src/tss2-esys/api/Esys_LoadExternal.c:108:Esys_LoadExternal() Esys Finish ErrorCode (0x000002c4)
ERROR: Esys_LoadExternal(0x2C4) - tpm:parameter(2):value is out of range or is not correct for the context
ERROR: Unable to run tpm2_loadexternal
From the PTP spec"TCG PC Client Platform TPM Profile Specification for TPM 2.0",
Table2. PC Client TPM Algorithms
It described,
TPM_ALG_RSA M Support for 2048-bit keys is required; the TPM SHOULD NOT support 1024-bit keys.
So I think this could be safely ignored, if 1024 key is not supported.
For the tpm2_loadexternal, and tpm2_import tests, the failure seems from RSA private key 1024 bit no support for this platform. So TPM returned ErrorCode (0x000002c4), "value is out of range or is not correct for the context"
+ openssl genrsa -aes128 -passout pass:mypassword -out private.pem 1024 ....... ....... ....+++ ++ loadexternal -Q -G rsa -r private.pem -c key.ctx --passin pass:mypassword' esys:src/ tss2-esys/ api/Esys_ LoadExternal. c:304:Esys_ LoadExternal_ Finish( ) Received TPM Error src/tss2- esys/api/ Esys_LoadExtern al.c:108: Esys_LoadExtern al() Esys Finish ErrorCode (0x000002c4) al(0x2C4) - tpm:parameter( 2):value is out of range or is not correct for the context
Generating RSA private key, 1024 bit long modulus (2 primes)
.......
...+++++
e is 65537 (0x010001)
+ '[' pass:mypassword '!=' stdin ']'
+ cmd='tpm2_
+ eval tpm2_loadexternal -Q -G rsa -r private.pem -c key.ctx --passin pass:mypassword
++ tpm2_loadexternal -Q -G rsa -r private.pem -c key.ctx --passin pass:mypassword
WARNING:
ERROR:esys:
ERROR: Esys_LoadExtern
ERROR: Unable to run tpm2_loadexternal
From the PTP spec"TCG PC Client Platform TPM Profile Specification for TPM 2.0",
Table2. PC Client TPM Algorithms
It described,
TPM_ALG_RSA M Support for 2048-bit keys is required; the TPM SHOULD NOT support 1024-bit keys.
So I think this could be safely ignored, if 1024 key is not supported.