Re: [TrouSerS-users] Problem when using Tspi_TPM_Quote

Tue, 17 Dec 2013 01:59:10 -0800 

Do you have a more complete code sample?  For example I cannot tell if you
are loading the AIK key into context before calling Tspi_TPM_Quote.  

 

TSS_KEY_TYPE_IDENTITY does indeed instruct the TSS layer to create an AIK
RSA key pair, and you are limited to what operations you can do with an AIK,
although quoting should be fine along with certifying another key.

 

Regards,

Ceri

 

From: wuyanjun [mailto:[email protected]] 
Sent: 17 December 2013 07:50
To: trousers-users
Subject: [TrouSerS-users] Problem when using Tspi_TPM_Quote

 


Hi, 

I have occurred an error with Tspi_TPM_Quote, it shows that:

  Tspi_TPM_Quote...
  LOG_DEBUG TSPI rpc/tcstp/rpc_quote.c:46 RPC_Quote_TP: TCS Context:
0xa0c10e26
   0 FAIL  :  Tspi_TPM_Quote  returned (0x24) TPM_E_INVALID_KEYUSAGE

I use tpm_emulator and trousers, and run the code in domu of Xen.   
    result = Tspi_TPM_Quote(hTPM, hIdentKey, hPcrComposite,
&validationData);

the hIdentKey is like this, which is in the Tspi_TPM_CreateIdentity.c ,
    UINT32        initFlags    = TSS_KEY_TYPE_IDENTITY | TSS_KEY_SIZE_2048
|
                    TSS_KEY_VOLATILE | TSS_KEY_NOT_MIGRATABLE;
    result = Tspi_Context_CreateObject(hContext,
                       TSS_OBJECT_TYPE_RSAKEY,
                       initFlags, &hIdentKey);
In another code, I find that if the initFlags don't include
TSS_KEY_TYPE_IDENTITY, the Tspi_TPM_Quote can work well (also in domu). But
TSS_KEY_TYPE_IDENTITY must be used if I want to generate an AIK, isn't it? 

I really don't konw what is wrong, so hoping to receive some advice. Thank
you in advance.




 

 



______________________________________________________________________
This email has been scanned by the Symantec Email Security.cloud service.
For more information please visit http://www.symanteccloud.com
______________________________________________________________________


------------------------------------------------------------------------------
Rapidly troubleshoot problems before they affect your business. Most IT 
organizations don't have a clear picture of how application performance 
affects their revenue. With AppDynamics, you get 100% visibility into your 
Java,.NET, & PHP application. Start your 15-day FREE TRIAL of AppDynamics Pro!
http://pubads.g.doubleclick.net/gampad/clk?id=84349831&iu=/4140/ostg.clktrk
_______________________________________________
TrouSerS-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/trousers-users

Reply via email to