On 2/24/2020 10:02 AM, Sam Jenkins via TrouSerS-users wrote:
Ok, I understand that unseal requires authorisation, what Im unsure of is how to supply the authorisation. I have all they keys setup, and I am the owner, so the authorization Im missing is the authorization of the object, trying to set a policy on the object just leads to unseal telling me that "No secret information for addressed policy object". Basically I know I'm missing something, but not sure what. Both "A Practical Guide to Secure Computing" and the TCG introduction to using the TSS that I was able to find don't show a step of a policy to the HENCDATA, and doing myself hasn't worked, so how am I meant to be supplying authorisation data to the object before calling unseal?
"am the owner" or having the owner authorization should not matter for seal or unseal. At this point, you need a trousers person to help. I know the TPM side well, but not the trousers TSS. _______________________________________________ TrouSerS-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/trousers-users
