thank you hal for your explanation.. turns out that during a seal operation, there are these bits in the TPM_LOCALITY_SELECTION fields (localityAtRelease) in the TPM_PCR_INFO_LONG struct where TrouSerS will set them to 0x00. With this value, an unseal that depends on PCR17 cannot be carried out at locality 3. setting that field to 0x08 allows the unseal to take place if i want to unseal at locality 3.
thank you!
------------------------------------------------------------------------------ Return on Information: Google Enterprise Search pays you back Get the facts. http://p.sf.net/sfu/google-dev2dev
_______________________________________________ TrouSerS-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/trousers-users
