keylime-agent.conf: only mention ecdsa and rsassa for signing

THS-on · ansasaki · commit 47a80bf044e8 · 2025-03-11T18:30:54.000+01:00
The other algorithms, while supported by the TPM, are not supported on the
Keylime verifier side.

Signed-off-by: Thore Sommer &lt;mail@thson.de&gt;
diff --git a/keylime-agent.conf b/keylime-agent.conf
@@ -218,7 +218,7 @@ allow_payload_revocation_actions = true
 # Currently accepted values include:
 # - hashing:    sha512, sha384, sha256 or sha1
 # - encryption: ecc or rsa
-# - signing:    rsassa, rsapss, ecdsa, ecdaa or ecschnorr
+# - signing:    rsassa or ecdsa
 #
 # To override tpm_hash_alg, set KEYLIME_AGENT_TPM_HASH_ALG environment variable.
 # To override tpm_encryption_alg, set KEYLIME_AGENT_TPM_ENCRYPTION_ALG

Original file line number	Diff line number	Diff line change
`@@ -218,7 +218,7 @@ allow_payload_revocation_actions = true`
`218`	`218`	`# Currently accepted values include:`
`219`	`219`	`# - hashing: sha512, sha384, sha256 or sha1`
`220`	`220`	`# - encryption: ecc or rsa`
`221`		`-# - signing: rsassa, rsapss, ecdsa, ecdaa or ecschnorr`
	`221`	`+# - signing: rsassa or ecdsa`
`222`	`222`	`#`
`223`	`223`	`# To override tpm_hash_alg, set KEYLIME_AGENT_TPM_HASH_ALG environment variable.`
`224`	`224`	`# To override tpm_encryption_alg, set KEYLIME_AGENT_TPM_ENCRYPTION_ALG`