Hi Dmitri, I appreciate the time you have taken here, I just haven't had the time to produce a test case. We simply unloaded the key from the first process and then proceeded to use it in the second process as a workaround, as we didn't need them to be both loaded at the same time.
Regards, Ceri -----Original Message----- From: Dmitri Toubelis [mailto:[email protected]] Sent: 01 May 2014 19:43 To: Ken Goldman Cc: [email protected] Subject: Re: [TrouSerS-users] Multiple context across multiple applications issue I wrote a test case that exactly reproduces Ceri's problem. Please see attached. ----- Original Message ----- > From: "Ken Goldman" <[email protected]> > To: [email protected] > Sent: Thursday, May 1, 2014 10:30:09 AM > Subject: Re: [TrouSerS-users] Multiple context across multiple applications > issue > > Ceri is claiming that he's having problems loading a key. > > Your problem is quite different - Error 24. From the trace: > > TPM_Process_UnBind: Error, invalid keyUsage 0011 > TPM_Process_UnBind: Ordinal returnCode 00000024 36 > > You can't unbind with a storage key. You need a bind key. > > ~~ > > The code flow that I see is > > Load Key - fails, bad auth > Load Key - loads a storage key under the SRK Create Key - creates a > bind key under that storage key Load Key - loads the bind key Unbind - > uses the bind key, success Load Key - fails, bad auth Load Key - loads > a storage key under the SRK Unbind - uses the storage key, fails > > ~~ > > It's easy to see that, the second time, you load the storage key but > you never load the bind key under it. They you try to unbind with the > storage key and it fails. > > I don't think this is a TPM or TSS bug. You have to load the bind key > the second time. > > On 4/30/2014 10:19 PM, Dmitri Toubelis wrote: > > I think I'm hitting the same or a very similar issue as Ceri. I > > create context -> create a new key -> encrypt something with the key > > -> decrypt it -> close context. Everything works fine. Then I > > create > > a new context -> load the same key by UUID -> try to decrypt the > > same blob -> get error 0x24. I'm attaching tpm log for this. I'm > > using trousers from git master. > > > > ----- Original Message ----- > >> From: "Ken Goldman" <[email protected]> To: > >> [email protected] Sent: Wednesday, April 30, > >> 2014 1:13:04 PM Subject: Re: [TrouSerS-users] Multiple context > >> across multiple applications issue > >> > >> On 4/30/2014 10:41 AM, Ceri Coburn wrote: > >>> In my case I have one process that had loaded a key that was > >>> stored as a UUID in system.data and then the second process fails > >>> to load the same key, looking at the emulator output, the error is > >>> indeed thrown from inside the TPM (emulated), but I also see the > >>> same behaviour on an Intel NUC with a real TPM. > >> > > > > > ---------------------------------------------------------------------- > -------- "Accelerate Dev Cycles with Automated Cross-Browser Testing - > For FREE Instantly run your Selenium tests across 300+ browser/OS > combos. Get unparalleled scalability from the best Selenium testing > platform available. > Simple to use. Nothing to install. Get started now for free." > http://p.sf.net/sfu/SauceLabs > _______________________________________________ > TrouSerS-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/trousers-users > ______________________________________________________________________ This email has been scanned by the Symantec Email Security.cloud service. For more information please visit http://www.symanteccloud.com ______________________________________________________________________ ------------------------------------------------------------------------------ "Accelerate Dev Cycles with Automated Cross-Browser Testing - For FREE Instantly run your Selenium tests across 300+ browser/OS combos. Get unparalleled scalability from the best Selenium testing platform available. Simple to use. Nothing to install. Get started now for free." http://p.sf.net/sfu/SauceLabs _______________________________________________ TrouSerS-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/trousers-users
