When I invoke Tspi_Context_LoadKeyByUUID with an AIK (rather than the SRK), the command fails with a TCPA_E_BADTAG error.
The problem appears to be due to the fact that TQD eventually prompts the TCSD to send a LoadKey command (which is actually deprecated in favor of LoadKey2) with a tag set for no authentication. However, the LoadKey command requires an Auth1 tag (and presumably the accompanying auth info too).
A work around is to replace:
result = Tspi_Context_LoadKeyByUUID(hContext,
result = Tspi_Context_GetKeyByUUID(hContext,
result = Tspi_Key_LoadKey(hIdentKey, hSRK);
However, presumably LoadKeyByUUID should perform the same steps as the two functions above, so this seems like a bug with LoadKeyByUUID.
Log in to post a comment.