From d41a1c5428db4aaa312c69e0d42147e40b313094 Mon Sep 17 00:00:00 2001
From: Thore Sommer <mail@thson.de>
Date: Tue, 4 Mar 2025 13:54:46 +0100
Subject: [PATCH] keylime-agent.conf: only mention ecdsa and rsassa for signing

The other algorithms, while supported by the TPM, are not supported on the
Keylime verifier side.

Signed-off-by: Thore Sommer <mail@thson.de>
---
 keylime-agent.conf | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/keylime-agent.conf b/keylime-agent.conf
index 71f6096a..28b2c266 100644
--- a/keylime-agent.conf
+++ b/keylime-agent.conf
@@ -218,7 +218,7 @@ allow_payload_revocation_actions = true
 # Currently accepted values include:
 # - hashing:    sha512, sha384, sha256 or sha1
 # - encryption: ecc or rsa
-# - signing:    rsassa, rsapss, ecdsa, ecdaa or ecschnorr
+# - signing:    rsassa or ecdsa
 #
 # To override tpm_hash_alg, set KEYLIME_AGENT_TPM_HASH_ALG environment variable.
 # To override tpm_encryption_alg, set KEYLIME_AGENT_TPM_ENCRYPTION_ALG