Hi Garey, On Fri, Jun 1, 2012 at 11:41 AM, Garey Mills <[email protected]> wrote: > Kent - > > If I were to use the TrouSerS test suite to create an application, what > kind of interface would it need? Would it just need to return one random > number per invocation, or what?
It looks like the ability to feed in random data from the TPM is already in the upstream rng-tools package [1] thanks to Kees Cook. You may need to install the upstream rng-tools package if your distro is too old. Kent [1] http://www.outflux.net/blog/archives/2009/10/22/tpm-as-rng/ > > Garey > > On 5/31/2012 3:21 PM, Kent Yoder wrote: >> >> Hi Garey, >> >> On Thu, May 31, 2012 at 3:37 PM, Garey Mills >> <[email protected]> wrote: >>> >>> Hello - >>> >>> I am trying to use TPM for random number generation to supply >>> /dev/random. I have owned the TPM, shut off tcsd, and I try to run >>> >>> /sbin/rngd -r /dev/tpm0 -o /dev/random -t 1 >>> >>> I get 'read error' two times and rngd exits. >>> >>> Am I doing something wrong? >> >> /dev/tpm0 is the interface that the tcsd opens in order to send >> specially crafted requests to the TPM for specific TPM actions. >> Generating random numbers is just one of those actions. To achieve >> what you're trying to do, you need an application that talks either >> directly to /dev/tpm0 (such as those included in the ibm software tpm >> utils, from [1]), or an application that uses the TSS [2], to read >> random numbers from the tpm and send them to stdout. Then you'd point >> rngd to one of those apps. >> >> Kent >> >> [1] https://sourceforge.net/projects/ibmswtpm/ >> [2] >> http://trousers.git.sourceforge.net/git/gitweb.cgi?p=trousers/testsuite;a=blob;f=tcg/tpm/Tspi_TPM_GetRandom01.c >> >>> -- >>> Garey Mills >>> Library Systems Office >>> UC Berkeley >>> >>> >>> >>> ------------------------------------------------------------------------------ >>> Live Security Virtual Conference >>> Exclusive live event will cover all the ways today's security and >>> threat landscape has changed and how IT managers can respond. Discussions >>> will include endpoint security, mobile security and the latest in malware >>> threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ >>> _______________________________________________ >>> TrouSerS-tech mailing list >>> [email protected] >>> https://lists.sourceforge.net/lists/listinfo/trousers-tech >> >> >> > > -- > Garey Mills > Library Systems Office > UC Berkeley > -- IBM LTC Security ------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ _______________________________________________ TrouSerS-tech mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/trousers-tech
