Hi,
I'm trying to import a certificate signed using the tpm engine
(openssl-tpm-engine) into Firefox on Ubuntu 12.04.
I'm using Infineon TPM and I have already configured the tpm token with
'tpmtoken_init'. The PKCS#11 module (opencryptoki/PKCS11_API.so) was
successfully loaded on Firefox. But when I try to import a certificate I
get the following alert:
"Failed to decode the file. Either it is not in PKCS #12 format, has been
corrupted, or the password you entered was incorrect."
Here is the command that I am using to generate the certificate:
"openssl req -keyform engine -engine
/usr/local/lib/openssl/engines/libtpm.so -key Authroity.key -x509 -out
Authority.crt"
I tried to create another certificate using:
"openssl req -keyform engine -engine
/usr/local/lib/openssl/engines/libtpm.so -key Client.key -new -out
Client.csr"
and:
"openssl x509 -req -in Client.csr -CA Authority.crt -CAkey Authority.key
-CAkeyform engine -engine /usr/local/lib/openssl/engines/libtpm.so
-CAcreateserial -out Client.crt"
The keys "Authority.key" and "Client.key" were generated using
"create_tpm_key".
But I get the alert when I try to import any of them.
Am I doing something wrong?
------------------------------------------------------------------------------
Get 100% visibility into Java/.NET code with AppDynamics Lite!
It's a free troubleshooting tool designed for production.
Get down to code-level detail for bottlenecks, with <2% overhead.
Download for free and get started troubleshooting in minutes.
http://pubads.g.doubleclick.net/gampad/clk?id=48897031&iu=/4140/ostg.clktrk
_______________________________________________
TrouSerS-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/trousers-users
