Hi all,

I want to verify the signature of creationHash produced by TPM2_CertifyCreation command.

When I run the TPM2_VerifySignature on the same creationHash I get rc = 0x000002db (i.e. tpm:parameter(2):the signature is not valid).

Something goes wrong and I cannot understand what.

Should I do sign of HMAC( proof( TK | obj->name | creationHash) ) and then verify the signature on it?