Hi List, I have been trying for quite a while to get my tpm chip to work with opencryptoki on ubuntu 12.04 x64. All packages have been install from the official ubuntu repository (trousers, tpm-tools, opencryptoki).
Trousers seem to be working fine: tpm_version TPM 1.2 Version Info: Chip Version: 1.2.8.32 Spec Level: 2 Errata Revision: 3 TPM Vendor ID: STM TPM Version: 01010000 Manufacturer Info: 53544d20 I took ownership of the chip and it worked fine. The PIN for the SRK is set to null by just pressing enter after running: tpm_changeownerauth -s -z -l debug Tspi_Context_Create success Tspi_Context_Connect success Tspi_Context_GetTpmObject success Tspi_GetPolicyObject success Tspi_Policy_SetSecret success Changing password for: SRK. Enter new SRK password: <enter> Confirm password: <enter> Tspi_Context_CreateObject success Tspi_Policy_SetSecret success Tspi_Context_LoadKeyByUUID success Tspi_ChangeAuth success Change of SRK password successful. Tspi_Context_FreeMemory success Tspi_Context_Close success However tpmtoken_init just fails: tpmtoken_init -l debug C_GetFunctionList success C_Initialize success C_GetSlotList success Slots present: 2 C_GetSlotList success Retrieving slot information for SlotID 0 C_GetSlotInfo success Slot description: Linux 3.2.0-33-generic Linux (TPM) Slot manufacturer: Linux 3.2.0-33-generic Token is present Retrieving token information for SlotID 0 C_GetTokenInfo success Token Label: IBM PKCS#11 TPM Token Token manufacturer: IBM Corp. Token model: TPM v1.1 Token Token is not initialized C_InitToken success C_OpenSession success C_Login success A new TPM security officer password is needed. The password must be between 4 and 8 characters in length. Enter new password: Confirm password: C_SetPIN success C_CloseSession success C_OpenSession success C_Login failed: 0x00000102 (258) C_CloseSession success C_Finalize success tpmtoken_init failed I never managed to set the user password (I man not even prompted for one). The necessary files under /var/lib/opencryptoki/tpm/<user>/TOK_OBJ/ are not created (this directory is empty). I am running out of ideas, any help much appreciated! /JM ------------------------------------------------------------------------------ Keep yourself connected to Go Parallel: INSIGHTS What's next for parallel hardware, programming and related areas? Interviews and blogs by thought leaders keep you ahead of the curve. http://goparallel.sourceforge.net _______________________________________________ TrouSerS-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/trousers-users
