On 9/5/2012 12:30 AM, Segall, Ariel E wrote: > At first glance, it sure looks like your TPM is out of key slots. The > TSS is supposed to handle swapping keys in and out for you, so > getting that from a TSS seems very odd. I'll also be honest and admit > that I *thought* the TPM handled that for you (by simply dumping some > loaded key for the new one) but it looks like LoadKey does, in fact, > give back no space errors if there isn't room in memory for the key. > At a glance, it looks like FlushSpecific is the command to use to > explicitly force a key out. Presumably, your TSS isn't doing > something right in its key management behind the scenes, although > debugging that is going to be a pain in the neck, I'm afraid.
Correct. The TPM depends upon the host to manage resources. It would be annoying if the TPM implicitly dumped a loaded key that could not be reloaded if e.g., the PCRs were in a bad state. So the TPM returns an error and lets the host decide what to do. ------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ _______________________________________________ TrouSerS-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/trousers-users
