Chromium OS has some support for an alternate PCA. However, this support is:
1. Partial. There are obvious places where things would break if one wanted to use an alternate PCA.
2. Untested. No alternate PCA has been developed and tested. (See 1.)
3. Maybe most importantly, entirely unsupported for TPM 2.0 in attestationd
Trying to maintain the illusion that we could have an alternate PCA while at the same time devoting no effort to actually do so is counterproductive. Cryptohomed contains (and gains!) dead code because of this, slowing down development.
I propose (and volunteer) to remove support for the alternate PCA in Chromium OS.
Comment 1 by bugdroid1@chromium.org
, Nov 3 2017