Menu
▾
▴
Re: [Trustedjava-support] Problems with AIK create cycle (both local and XMKS types) [2]
|
From: Martin P. <Mar...@ia...> - 2007-08-23 12:36:59
|
Nektarios Ioannides wrote:
> None of the AIK creation sub-commands work neither with jTSS nor TrouSerS.
> Any comments?
We still cannot reproduce this, so we cannot debug it. :-/
For reference, commands as I run them:
(with TPM Emu 0.5)
root@...:/home/mpirker # tcsd -f
TCSD trousers 0.2.9.1 (with TPM 1.2 DUAL patch by IAIK <tho...@ia...>): TCSD up and running.
[...]
/testjtt/jTpmTools_0.3$ ./jtt.sh version
-----------------------------------
IAIK/OpenTC Java TPM Tools
- - - - - - - - - -
using IAIK Trusted Computing libs
jTSS, TCcert and XKMS
-----------------------------------
14:26:09:640 [INFO] CommonSettings::getTssFactory (37): TrouSerS TSS found. Using JNI bindings...
JTpmTools: 0.3 20070425 11:38:53
JTSS_TSP: 0.1 20070425 10:54:03
JTSS_JNI: 0.3 20070425 11:44:45
XKMS: 0.2-20070208
TCcert: 0.2.2-20070423-111432
/testjtt/jTpmTools_0.3$ md5sum ext_libs/*
0fa07ab364b2c696fdea40ba0a42ec90 ext_libs/iaik_jce.jar
321c846448df1eeead65f7007ea0cb76 ext_libs/iaik_jtss_tcs.jar
699a1d5653d3bb6d4291c260e0d33c6d ext_libs/iaik_jtss_tsp.jar
444a998ec535a37d6dd335254b897fbe ext_libs/iaik_jtss_wrapper.jar
4f933fd2bebbb3bcef2974b722337574 ext_libs/iaik_jtss_wrapper_swig.jar
4fc96bac6143ccac3be5850ea8653d8d ext_libs/iaik_tccert.jar
f1d00a83d6be8b8974678fb071d938d0 ext_libs/iaik_xkms.jar
f789ce61c05a8efd6c4c829f0cc607fd ext_libs/iaik_xsect.jar
/testjtt/jTpmTools_0.3$ ./jtt.sh aik_create -a whatever -l mycertlabel -o opentc --aikfile aik.file --noek
-----------------------------------
IAIK/OpenTC Java TPM Tools
- - - - - - - - - -
using IAIK Trusted Computing libs
jTSS, TCcert and XKMS
-----------------------------------
14:29:41:177 [INFO] CommonSettings::getTssFactory (37): TrouSerS TSS found. Using JNI bindings...
*** ***
*** Welcome to the IAIK JCE Library ***
*** ***
*** This version of IAIK JCE is licensed for educational and research use ***
*** and evaluation only. Commercial use of this software is prohibited. ***
*** For details please see http://jce.iaik.tugraz.at/sales/licences/. ***
*** This message does not appear in the registered commercial version. ***
*** ***
14:29:43:769 [INFO] PrivacyCa::decryptIdentityReqBlob (276): processed request from TrouSerS
14:29:43:851 [INFO] PrivacyCa::processRequest (180): included EK certificate size: 1389 bytes
14:29:43:881 [INFO] PrivacyCa::processRequest (181): SubjAltName: id:4941494B,unknownTPM,id:0100
14:29:43:890 [INFO] PrivacyCa::processRequest (188): PE: not included
14:29:43:897 [INFO] PrivacyCa::processRequest (196): CC: not included
14:29:50:635 [INFO] AikUtil::createPECertificate (176): created PE certificate on-the-fly
14:29:50:659 [INFO] AikUtil::createAIKCertificate (213): created AIK certificate on-the-fly
14:29:50:666 [INFO] PrivacyCa::processRequest (212): AIK blob size: 1448
14:29:51:059 [INFO] AikCreate::execute (330): AIK ActivateIdentity succeeded!
14:29:51:069 [INFO] AikCreate::verifyAndPrintAikLabel (171): received AIK certificate with IdLabel: 'mycertlabel'
14:29:51:070 [INFO] AikCreate::execute (339): AIK certificate written into file: aik.file
14:29:51:070 [INFO] AikCreate::execute (358): AIK TPM key structure written into file: aik.tpmkey
/testjtt/jTpmTools_0.3$ ./jtt.sh xkms_aik_create -a whatever -l mycertlabel -o opentc --aikfile aik.file --noek
-----------------------------------
IAIK/OpenTC Java TPM Tools
- - - - - - - - - -
using IAIK Trusted Computing libs
jTSS, TCcert and XKMS
-----------------------------------
14:30:35:355 [INFO] CommonSettings::getTssFactory (37): TrouSerS TSS found. Using JNI bindings...
*** ***
*** Welcome to the IAIK JCE Library ***
*** ***
*** This version of IAIK JCE is licensed for educational and research use ***
*** and evaluation only. Commercial use of this software is prohibited. ***
*** For details please see http://jce.iaik.tugraz.at/sales/licences/. ***
*** This message does not appear in the registered commercial version. ***
*** ***
*** ***
*** Welcome to the IAIK XKMS Library ***
*** ***
*** This version of XKMS is licensed for educational, research use ***
*** and evaluation only. Commercial use of this software is prohibited. ***
*** ***
*** ***
*** Welcome to the IAIK XML Security Toolkit (XSECT) ***
*** ***
*** This version of XSECT is licensed for educational and research use ***
*** and evaluation only. Commercial use of this software is prohibited. ***
*** For more details please see http://jce.iaik.at/products/. ***
*** This message does not appear in the registered commercial version. ***
*** ***
sending RegisterRequest...
...result received
Validating XKMS message signature using certificate:
CN=IAIK OpenTC XKMS Test Responder,OU=IAIK trusted computing labs,O=Graz University of Technology,C=AT
WARNING: No Version of Xerces found, please check your classpath, defaulting to DOM LEVEL 3
XKMS Result message signature is VALID.
14:30:40:635 [INFO] AikCreate::execute (330): AIK ActivateIdentity succeeded!
14:30:40:646 [INFO] AikCreate::verifyAndPrintAikLabel (171): received AIK certificate with IdLabel: 'mycertlabel'
14:30:40:647 [INFO] AikCreate::execute (339): AIK certificate written into file: aik.file
14:30:40:647 [INFO] AikCreate::execute (358): AIK TPM key structure written into file: aik.tpmkey
/testjtt/jTpmTools_0.3$ sudo killall tcsd
/testjtt/jTpmTools_0.3$ ./jtt.sh aik_create -a whatever -l mycertlabel -o opentc --aikfile aik.file --ekfile ek.cert
-----------------------------------
IAIK/OpenTC Java TPM Tools
- - - - - - - - - -
using IAIK Trusted Computing libs
jTSS, TCcert and XKMS
-----------------------------------
14:31:35:638 [INFO] CommonSettings::getTssFactory (39): TrouSerS and/or jTSS Wrapper not found. Trying IAIK jTSS.
14:31:35:759 [INFO] TcTcsi::<clinit> (-1): Unable to open TCS configuration file for system persistent storage information. Disabling system persistent
storage.
14:31:35:789 [INFO] CommonSettings::getTssFactory (47): IAIK jTSS found. Using local bindings...
*** ***
*** Welcome to the IAIK JCE Library ***
*** ***
*** This version of IAIK JCE is licensed for educational and research use ***
*** and evaluation only. Commercial use of this software is prohibited. ***
*** For details please see http://jce.iaik.tugraz.at/sales/licences/. ***
*** This message does not appear in the registered commercial version. ***
*** ***
14:31:36:596 [INFO] Client::overrideCertificates (113): overriding default EK certificate used by TSS
14:31:39:072 [INFO] PrivacyCa::processRequest (180): included EK certificate size: 1390 bytes
14:31:39:101 [INFO] PrivacyCa::processRequest (181): SubjAltName: id:4941494B,unknownTPM,id:0100
14:31:39:102 [INFO] PrivacyCa::processRequest (188): PE: not included
14:31:39:102 [INFO] PrivacyCa::processRequest (196): CC: not included
14:31:39:468 [INFO] AikUtil::createPECertificate (176): created PE certificate on-the-fly
14:31:39:492 [INFO] AikUtil::createAIKCertificate (213): created AIK certificate on-the-fly
14:31:39:501 [INFO] PrivacyCa::processRequest (212): AIK blob size: 1448
14:31:39:922 [INFO] AikCreate::execute (330): AIK ActivateIdentity succeeded!
14:31:39:927 [INFO] AikCreate::verifyAndPrintAikLabel (171): received AIK certificate with IdLabel: 'mycertlabel'
14:31:39:927 [INFO] AikCreate::execute (339): AIK certificate written into file: aik.file
14:31:39:927 [INFO] AikCreate::execute (358): AIK TPM key structure written into file: aik.tpmkey
/testjtt/jTpmTools_0.3$ ./jtt.sh xkms_aik_create -a whatever -l mycertlabel -o opentc --aikfile aik.file --ekfile ek.cert
-----------------------------------
IAIK/OpenTC Java TPM Tools
- - - - - - - - - -
using IAIK Trusted Computing libs
jTSS, TCcert and XKMS
-----------------------------------
14:31:58:190 [INFO] CommonSettings::getTssFactory (39): TrouSerS and/or jTSS Wrapper not found. Trying IAIK jTSS.
14:31:58:311 [INFO] TcTcsi::<clinit> (-1): Unable to open TCS configuration file for system persistent storage information. Disabling system persistent
storage.
14:31:58:341 [INFO] CommonSettings::getTssFactory (47): IAIK jTSS found. Using local bindings...
*** ***
*** Welcome to the IAIK JCE Library ***
*** ***
*** This version of IAIK JCE is licensed for educational and research use ***
*** and evaluation only. Commercial use of this software is prohibited. ***
*** For details please see http://jce.iaik.tugraz.at/sales/licences/. ***
*** This message does not appear in the registered commercial version. ***
*** ***
*** ***
*** Welcome to the IAIK XKMS Library ***
*** ***
*** This version of XKMS is licensed for educational, research use ***
*** and evaluation only. Commercial use of this software is prohibited. ***
*** ***
*** ***
*** Welcome to the IAIK XML Security Toolkit (XSECT) ***
*** ***
*** This version of XSECT is licensed for educational and research use ***
*** and evaluation only. Commercial use of this software is prohibited. ***
*** For more details please see http://jce.iaik.at/products/. ***
*** This message does not appear in the registered commercial version. ***
*** ***
14:32:00:733 [INFO] Client::overrideCertificates (113): overriding default EK certificate used by TSS
sending RegisterRequest...
...result received
Validating XKMS message signature using certificate:
CN=IAIK OpenTC XKMS Test Responder,OU=IAIK trusted computing labs,O=Graz University of Technology,C=AT
WARNING: No Version of Xerces found, please check your classpath, defaulting to DOM LEVEL 3
XKMS Result message signature is VALID.
14:32:03:115 [INFO] AikCreate::execute (330): AIK ActivateIdentity succeeded!
14:32:03:136 [INFO] AikCreate::verifyAndPrintAikLabel (171): received AIK certificate with IdLabel: 'mycertlabel'
14:32:03:136 [INFO] AikCreate::execute (339): AIK certificate written into file: aik.file
14:32:03:137 [INFO] AikCreate::execute (358): AIK TPM key structure written into file: aik.tpmkey
|
