> I'm using TPM emulator with tcsd-0.3.7 for testing and I'm getting > some weird behavior. I can easily create a legacy or binding key > under SRK but creating of a storage key fails. tpmd debug screen > shows this: > > ... > tpm_storage.c:636: Info: TPM_CreateWrapKey() > tpm_handles.c:57: Debug: SRK valid? 1 > tpm_authorization.c:526: Info: tpm_verify_auth() > tpm_authorization.c:527: Debug: handle = 02000000 > tpm_authorization.c:539: Debug: [TPM_ST_OSAP] > tpm_cmd_handler.c:4077: Info: TPM command failed: (0x28) The key > properties in TPM_KEY_PARMs are not supported by this TPM. > ... > > So is it shortcoming of tpm emulator, or is it something in tcsd > causing this error? The parameters of the key are the same as in the > case with legacy or binding keys only key type is different. Here > are exact key flags: > > TSS_FLAG storage_key_flags = > TSS_KEY_TYPE_STORAGE | > TSS_KEY_STRUCT_KEY12 | > TSS_KEY_SIZE_2048 | > TSS_KEY_VOLATILE | > TSS_KEY_AUTHORIZATION; > > TSS_FLAG binding_key_flags = > TSS_KEY_TYPE_BIND | > TSS_KEY_STRUCT_KEY12 | > TSS_KEY_SIZE_2048 | > TSS_KEY_VOLATILE | > TSS_KEY_AUTHORIZATION; > > I do not have access to a real TPM at the moment and I can not verify > the code with the real thing. But I thought I ask first before > building the test machine.
I checked with real TPM (Infenon) and it fails to create storage key too, so it must be something inside of tcsd woks differently for storage keys vs. other key types. Have anyone experienced anything like this? ------------------------------------------------------------------------------ Learn Graph Databases - Download FREE O'Reilly Book "Graph Databases" is the definitive new guide to graph databases and their applications. Written by three acclaimed leaders in the field, this first edition is now available. Download your free book today! http://p.sf.net/sfu/13534_NeoTech _______________________________________________ TrouSerS-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/trousers-users
