Improve get_ek_certs to handle indices

[dgarske]

No description provided.

[Copilot]

Pull request overview

This pull request enhances the get_ek_certs example to better handle various types of TPM NV indices beyond just EK certificate indices. The PR expands the validation range for NV indices to cover the entire TCG NV space (0x01C00000 - 0x01C07FFF) and adds new EK Policy index definitions for PolicyAuthorizeNV operations.

Changes:

• Added EK Policy index definitions for SHA256, SHA384, SHA512, and SM3_256 hash algorithms (0x7F01-0x7F04)
• Expanded NV index validation in wolfTPM2_GetKeyTemplate_EKIndex to accept the full TCG NV space range instead of just the EK certificate range
• Enhanced error handling in get_ek_certs to identify and display information about non-certificate NV indices, including their type, size, attributes, and content

Reviewed changes

Copilot reviewed 3 out of 3 changed files in this pull request and generated no comments.

File	Description
wolftpm/tpm2.h	Added four new EK Policy index constants for different hash algorithms (SHA256, SHA384, SHA512, SM3_256) in the TCG NV space
src/tpm2_wrap.c	Expanded the validation range in wolfTPM2_GetKeyTemplate_EKIndex from 0x1FF to 0x7FFF to accept all TCG NV space indices, with updated comment explaining the full range
examples/endorsement/get_ek_certs.c	Added comprehensive error handling and diagnostic output when encountering non-EK certificate indices, including a debug-mode function to display NV attributes and logic to read and display NV index contents

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.