Menu
▾
▴
trustedjava-support — Trusted Java General Support
You can subscribe to this list here.
| 2006 |
Jan
|
Feb
|
Mar
|
Apr
|
May
(3) |
Jun
(4) |
Jul
(10) |
Aug
(6) |
Sep
(6) |
Oct
(5) |
Nov
(1) |
Dec
|
|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 2007 |
Jan
|
Feb
(14) |
Mar
(25) |
Apr
(9) |
May
(10) |
Jun
(9) |
Jul
(33) |
Aug
(52) |
Sep
(15) |
Oct
(6) |
Nov
(4) |
Dec
(6) |
| 2008 |
Jan
(27) |
Feb
(3) |
Mar
(6) |
Apr
(7) |
May
(8) |
Jun
(4) |
Jul
(21) |
Aug
(8) |
Sep
(9) |
Oct
(6) |
Nov
(1) |
Dec
(1) |
| 2009 |
Jan
(1) |
Feb
(1) |
Mar
(10) |
Apr
(7) |
May
(8) |
Jun
(10) |
Jul
(11) |
Aug
(17) |
Sep
(13) |
Oct
(13) |
Nov
(1) |
Dec
(5) |
| 2010 |
Jan
(5) |
Feb
(9) |
Mar
(12) |
Apr
(4) |
May
(5) |
Jun
(3) |
Jul
(7) |
Aug
(7) |
Sep
(3) |
Oct
(12) |
Nov
(5) |
Dec
(2) |
| 2011 |
Jan
(9) |
Feb
(3) |
Mar
(24) |
Apr
(3) |
May
(1) |
Jun
|
Jul
(3) |
Aug
(8) |
Sep
(2) |
Oct
|
Nov
|
Dec
|
| 2012 |
Jan
(4) |
Feb
|
Mar
|
Apr
(3) |
May
(12) |
Jun
(7) |
Jul
(9) |
Aug
|
Sep
(14) |
Oct
(19) |
Nov
(4) |
Dec
|
| 2013 |
Jan
(1) |
Feb
(3) |
Mar
(1) |
Apr
(5) |
May
(3) |
Jun
(7) |
Jul
(6) |
Aug
(4) |
Sep
(1) |
Oct
|
Nov
|
Dec
(2) |
| 2014 |
Jan
|
Feb
(2) |
Mar
(3) |
Apr
(1) |
May
(1) |
Jun
(6) |
Jul
(14) |
Aug
(5) |
Sep
(7) |
Oct
(3) |
Nov
|
Dec
(1) |
| 2015 |
Jan
(3) |
Feb
|
Mar
(4) |
Apr
|
May
(1) |
Jun
(9) |
Jul
|
Aug
(1) |
Sep
|
Oct
(1) |
Nov
(4) |
Dec
(4) |
| 2016 |
Jan
|
Feb
(1) |
Mar
|
Apr
(1) |
May
(2) |
Jun
|
Jul
|
Aug
|
Sep
|
Oct
(2) |
Nov
(1) |
Dec
|
| 2017 |
Jan
|
Feb
|
Mar
(2) |
Apr
(1) |
May
|
Jun
(1) |
Jul
(1) |
Aug
(1) |
Sep
(1) |
Oct
(1) |
Nov
(1) |
Dec
(1) |
| 2018 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
(1) |
Dec
|
| 2020 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
(4) |
Nov
|
Dec
|
| 2021 |
Jan
|
Feb
|
Mar
(11) |
Apr
(2) |
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
| 2022 |
Jan
|
Feb
|
Mar
|
Apr
(2) |
May
(1) |
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
| 2023 |
Jan
|
Feb
|
Mar
|
Apr
(1) |
May
(2) |
Jun
(1) |
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
(1) |
| 2024 |
Jan
(1) |
Feb
|
Mar
|
Apr
(1) |
May
|
Jun
|
Jul
|
Aug
(1) |
Sep
|
Oct
|
Nov
|
Dec
|
| 2025 |
Jan
|
Feb
|
Mar
|
Apr
|
May
(1) |
Jun
(1) |
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
|
From: Nektarios I. <ine...@gm...> - 2007-04-22 20:34:43
|
Hello Thomas,
Thank you for your help. Yes the "magic" was the key type indeed ! :-)
However, now I would like to do something "useful" with an AIK instead of a
"storage" or "legacy" type key. That is, be able to either "bind" or "seal"
some data (e.g. some textfile) using an AIK I have created previously.
When I tried to do that I before:
Input:
seal -i PCR_values -k nectarios -o PCR_values_SEALED_2 -p 1 -u
1.2.3.4.5.d5daefea84e1
where,
"1.2.3.4.5.d5daefea84e1" is my AIK's UUID
"nectarios" is the password of the above AIK
"PCR_values" is the file to be sealed
"PCR_values_SEALED_2" is the file to be created after the sealing operation.
and the above data is to be sealed in PCR #1
I got something like:
Ignoring unexpected element:
20:07:24:986 [INFO] Seal::execute (205): sealing to pcr: 1
TSPI call error:
error code : 0x01
error message: TPM layer: Authentication failed
Any ideas?
P.S I do not understand why i get the "Ignoring unexpected element" warning
at the beginning either.
Many thanks,
Nektarios
On 13/03/07, Thomas Winkler <tho...@ia...> wrote:
>
> Hello,
>
> > error code: 0x24
> > error message: TPM layer: Invalid key usage
>
> For sealing you have to use a key of type TPM_KEY_STORAGE (.
>
> Have a look at the command "./jtt.sh create_key". It says:
>
> "[...]
>
> -t type ... type of key (use 'legacy' for binding and 'storage' for
> sealing operations) (legal values: storage, legacy) (default: legacy)
>
> [...]"
>
> So - the "magic" is the "-t storage" option:
>
>
>
> ./jtt.sh create_key -t storage -k test
>
> -----------------------------------
> IAIK/OpenTC Java TPM Tools
> - - - - - - - - - -
> based on IAIK/OpenTC jTSS Wrapper
> -----------------------------------
>
>
> 07:30:11:734 [INFO] CreateKey::execute (136): parent key is SRK, key
> length is 2048 bits
> 07:30:11:758 [INFO] CreateKey::execute (137): key type is storage
> 07:30:11:759 [INFO] CreateKey::execute (138): key registered in
> persistent system storage with UUID: 1.2.3.4.5.8dd8f68218c1
> 07:30:11:759 [INFO] CreateKey::execute (139): CreateKey succeeded
>
>
>
> With that key, the sealing should work:
>
>
>
> ./jtt.sh seal -i somefile.txt -k test -o ./sealed.data -p 10 -u
> 1.2.3.4.5.8dd8f68218c1
>
> -----------------------------------
> IAIK/OpenTC Java TPM Tools
> - - - - - - - - - -
> based on IAIK/OpenTC jTSS Wrapper
> -----------------------------------
>
>
> 07:30:44:585 [INFO] Seal::execute (205): sealing to pcr: 10
> 07:30:44:764 [INFO] Seal::execute (295): Sealing succeeded
>
>
>
> hth,
> Thomas Winkler
>
>
|
|
From: Saurabh A. <tan...@gm...> - 2007-04-20 04:35:13
|
Hi I am using TrustedJava suite to generate TPM Quote and send across to verifying party which is a non-TPM, non-Trousers, non-TrustedJava, C# web service. Now I want to vaildate/verify the quote and I am worried whether I can really do that without Trousers/JTSS support ?? more specific details : I used the testsuite example of generating the quote, which outputs "quoteBlob" of TcTssValidation type. Now will I be able to read this quoteBlob on non-Trousers, non-Trusted java library service, using say "native c#/java libraries" ?? regards Saurabh |
|
From: Martin P. <Mar...@ia...> - 2007-04-03 15:09:30
|
Bryan Smith wrote: > Thank you for your response. My code now compiles, but it is unable > to create client or server side certificates. I called createAIK with > an owner password and a aik password. Here is log information. > > [INFO] CACertificate::<init> (49): generating RSA Key Pair for CA certificate... > [INFO] CACertificate::<init> (74): root CA cert ---> issuerDN = subjectDN > iaik.utils.InternalErrorException > at iaik.pkcs.pkcs8.EncryptedPrivateKeyInfo.encrypt(Unknown Source) > at iaik.pkcs.pkcs8.EncryptedPrivateKeyInfo.encrypt(Unknown Source) > at iaik.pkcs.pkcs8.EncryptedPrivateKeyInfo.encrypt(Unknown Source) > at iaik.tc.common.Common.writePrivateKeyToFile(Common.java:289) > at iaik.tc.apps.jtt.createaik.PrivacyCa.createCaKeypairs (PrivacyCa.java:182) > at iaik.tc.apps.jtt.createaik.CreateAik.execute() > [WARN] CreateAik: Unable to create client or server side certificate! Common.writePrivateKeyToFile is just a convience function for test code for exporting a PrivateKey to a PKCS8 file. A guess: As you can see in the first line of execute() in CreateAik.java there is the need to register IAIK JCE once in the system with IAIK.addAsProvider(); before using functions of it. Does your modified version of CreateAik still do that, too? HTH, Martin Pirker IAIK, TU Graz |
|
From: Bryan S. <bj...@cs...> - 2007-04-03 14:28:30
|
Thank you for your response. My code now compiles, but it is unable to create client or server side certificates. I called createAIK with an owner password and a aik password. Here is log information. [INFO] CACertificate::<init> (49): generating RSA Key Pair for CA certificate... [INFO] CACertificate::<init> (74): root CA cert ---> issuerDN = subjectDN iaik.utils.InternalErrorException at iaik.pkcs.pkcs8.EncryptedPrivateKeyInfo.encrypt(Unknown Source) at iaik.pkcs.pkcs8.EncryptedPrivateKeyInfo.encrypt(Unknown Source) at iaik.pkcs.pkcs8.EncryptedPrivateKeyInfo.encrypt(Unknown Source) at iaik.tc.common.Common.writePrivateKeyToFile(Common.java:289) at iaik.tc.apps.jtt.createaik.PrivacyCa.createCaKeypairs (PrivacyCa.java:182) at iaik.tc.apps.jtt.createaik.CreateAik.execute() [WARN] CreateAik: Unable to create client or server side certificate! I am able to create an AIK using the terminal and ./jtt.sh, but I need to be able to perform a platform configuration attestation within my Java code. Thanks in advance. Bryan |
|
From: Thomas W. <tho...@ia...> - 2007-04-02 06:27:27
|
Hello, > My code compiled, but when I tried to run it I got an "native code library (tspiwrapper) failed to load." error. This library is in libtspiwrapper.so, and I can't seem to add this to my project libraries in NetBeans. Any suggestion? Thanks. What you basically have to do is to ensure that the shared library can be found by your linker. On the command line, one way to do that is to set the LD_LIBRARY_PATH accordingly. Another option is to specify the "java.library.path" property (using the "java -D" option). In an IDE like NetBeans or Eclipse you basically have to do the same thing: Set the library path to point to the location of the shared library. Since I have no experience with NetBeans, unfortunately I'm unable to provide you with a howto. I however recommend to look for some possibility to set the the library path as described above. Regards, Thomas Winkler |
|
From: Bryan S. <bj...@cs...> - 2007-03-30 15:25:14
|
I want to use Trusted Java to perform a platform configuration attestation, so I started with your createAIK class and added a couple steps. My code compiled, but when I tried to run it I got an "native code library (tspiwrapper) failed to load." error. This library is in libtspiwrapper.so, and I can't seem to add this to my project libraries in NetBeans. Any suggestion? Thanks. Bryan |
|
From: Thomas W. <tho...@ia...> - 2007-03-13 06:47:30
|
Hello, > Thank you. I guess I will stick to the Pre-Built version for now since I > am running out of time for the project. I may try to built the "source > only" version some other time and we can look into it in more depth then. There seem to be problems with newer versions of SWIG. The one I'm currently using is 1.3.28. We'll try to track down the problems with newer SWIG versions. For the time being, we strongly suggest to use the pre-built version of the jTSS Wrapper. You do not lose anything since also the pre-built version comes with the entire source code. The only difference is that for the pre-built version you do not need SWIG (it comes already with the C source files) and the jar files are already compiled. Regards, Thomas Winkler |
|
From: Thomas W. <tho...@ia...> - 2007-03-13 06:43:01
|
Hello,
> error code: 0x24
> error message: TPM layer: Invalid key usage
For sealing you have to use a key of type TPM_KEY_STORAGE (.
Have a look at the command "./jtt.sh create_key". It says:
"[...]
-t type ... type of key (use 'legacy' for binding and 'storage' for
sealing operations) (legal values: storage, legacy) (default: legacy)
[...]"
So - the "magic" is the "-t storage" option:
./jtt.sh create_key -t storage -k test
-----------------------------------
IAIK/OpenTC Java TPM Tools
- - - - - - - - - -
based on IAIK/OpenTC jTSS Wrapper
-----------------------------------
07:30:11:734 [INFO] CreateKey::execute (136): parent key is SRK, key
length is 2048 bits
07:30:11:758 [INFO] CreateKey::execute (137): key type is storage
07:30:11:759 [INFO] CreateKey::execute (138): key registered in
persistent system storage with UUID: 1.2.3.4.5.8dd8f68218c1
07:30:11:759 [INFO] CreateKey::execute (139): CreateKey succeeded
With that key, the sealing should work:
./jtt.sh seal -i somefile.txt -k test -o ./sealed.data -p 10 -u
1.2.3.4.5.8dd8f68218c1
-----------------------------------
IAIK/OpenTC Java TPM Tools
- - - - - - - - - -
based on IAIK/OpenTC jTSS Wrapper
-----------------------------------
07:30:44:585 [INFO] Seal::execute (205): sealing to pcr: 10
07:30:44:764 [INFO] Seal::execute (295): Sealing succeeded
hth,
Thomas Winkler
|
|
From: Nektarios I. <ine...@gm...> - 2007-03-12 16:44:33
|
Hello everyone,
I have been having problems in creating a "sealed" package using the "seal
subcommand of jTPMTools
"somefile.txt" is a plaintext file that I created myself with some simple
text in it. This is the file to be "sealed".
"somefile_sealed.txt" is the (sealed version) file that will be created by
the "seal" subcommand.
"newpass" is the password of the sealing key to be used (
1.2.3.4.5.3589e17f4313). The sealing key was created as follows:
create_key -k newpass [SUCCESSFULL]
So when I run the command with the following:
[root@localhost jTpmTools_0.2]# sh jtt.sh seal -i somefile.txt -k newpass -o
somefile_sealed.txt -p 0 -u 1.2.3.4.5.3589e17f4313
The following error occurs:
-----------------------------------
IAIK/OpenTC Java TPM Tools
- - - - - - - - - -
based on IAIK/OpenTC jTSS Wrapper
-----------------------------------
/home/inectarios/Trusted_Computing/jTpmTools_0.2/ext_libs
16:13:31:967 [INFO] Seal::execute (205): sealing to pcr: 0
TSPI call error:
error code: 0x24
error message: TPM layer: Invalid key usage
at iaik.tss.impl.jni.TcBaseObject.handleRetCode(TcBaseObject.java
:102)
at iaik.tss.impl.jni.TcEncData.seal(TcEncData.java:129)
at iaik.tc.apps.jtt.data.Seal.execute(Seal.java:271)
at iaik.tc.utils.cmdline.SubCommand.run(SubCommand.java :80)
at iaik.tc.utils.cmdline.SubCommandParser.parse(
SubCommandParser.java:52)
at iaik.tc.apps.jtt.common.JTpmTools.main(JTpmTools.java:67)
I am 99% sure it has to do something with the key (-k parameter) used in the
"seal" subcommand.
Note: I believe, theoretically the seal key should be the one of the
"sealling key" but just for testing I tried to use some other random key
with the same command:
seal -i somefile.txt -k pass -o somefile_sealed.txt -p 0 -u
1.2.3.4.5.3589e17f4313
As expected I get the following error:
TSPI call error:
error code: 0x01
error message: TPM layer: Authentication failed
at iaik.tss.impl.jni.TcBaseObject.handleRetCode(TcBaseObject.java
:102)
at iaik.tss.impl.jni.TcEncData.seal(TcEncData.java:129)
at iaik.tc.apps.jtt.data.Seal.execute(Seal.java:271)
at iaik.tc.utils.cmdline.SubCommand.run(SubCommand.java:80)
at iaik.tc.utils.cmdline.SubCommandParser.parse(
SubCommandParser.java:52)
at iaik.tc.apps.jtt.common.JTpmTools.main(JTpmTools.java:67)
at com.test.Test.main(Test.java:25)
This is why I believe there must be something wrong with the (checking of)
the key.
Best regards,
Nektarios Ioannides
|
|
From: Nektarios I. <ine...@gm...> - 2007-03-12 16:20:18
|
Hello everyone,
I am trying to create a "sealed" package using the "seal" subcommand of
jTPMTools. I couldn't find anyone having a similar problem on the mailing
list so I am posting my case here.
"somefile.txt" is a plaintext file I created with a few words in it.
"newpass" is the sealing key's password. The key has been created using the
"create_key" subcommand as follows:
create_key -k newpass [SUCCESSFULL]
---> This gave key: 1.2.3.4.5.3589e17f4313
"somefile_sealed.txt" is the file to be created by the (successful)
[root@localhost jTpmTools_0.2]# sh jtt.sh seal -i somefile.txt -k newpass -o
somefile_sealed.txt -p 0 -u 1.2.3.4.5.3589e17f4313
Here is the output,
-----------------------------------
IAIK/OpenTC Java TPM Tools
- - - - - - - - - -
based on IAIK/OpenTC jTSS Wrapper
-----------------------------------
/home/inectarios/Trusted_Computing/jTpmTools_0.2/ext_libs
16:13:31:967 [INFO] Seal::execute (205): sealing to pcr: 0
TSPI call error:
error code: 0x24
error message: TPM layer: Invalid key usage
at iaik.tss.impl.jni.TcBaseObject.handleRetCode(TcBaseObject.java
:102)
at iaik.tss.impl.jni.TcEncData.seal(TcEncData.java:129)
at iaik.tc.apps.jtt.data.Seal.execute(Seal.java:271)
at iaik.tc.utils.cmdline.SubCommand.run(SubCommand.java:80)
at iaik.tc.utils.cmdline.SubCommandParser.parse(
SubCommandParser.java:52)
at iaik.tc.apps.jtt.common.JTpmTools.main(JTpmTools.java:67)
|
|
From: Nektarios I. <ine...@gm...> - 2007-03-10 12:57:26
|
Hello Thomas, Thank you. I guess I will stick to the Pre-Built version for now since I am running out of time for the project. I may try to built the "source only" version some other time and we can look into it in more depth then. Best Regards, Nektarios On 05/03/07, Thomas Winkler <tho...@ia...> wrote: > > Hello, > > > I am getting the following when I try to "make" the 'Source only' > > version of jTssWrapper 0.2.5 > > From the error messages you provided it is hard to find out what is > going wrong. Looks like swig is unhappy with something. What version of > swig are you using? > Maybe there is alsos something going wrong at an earlier stage. Can you > provide the .i files from output/interfaces? > > Generally you could also try to use the partially prebuilt version of > the wrapper. With this version you do not have to rely in swig to > generate the framework from the interface files since this stuff is > already included in the tar file. You do not loose anything by using the > prebuilt version since it also includes all source code. > > Regards, > Thomas Winkler > > |
|
From: Thomas W. <tho...@ia...> - 2007-03-09 06:14:23
|
Hello, > can you help me with the openssl patch which can enable me to check > the EK- AIK certs with Subject Directory Attribute fields and > RSAES-OAEP public key and Platform cert with Attribute Certificate > support. I'm afraid I can not help. First of all I'm not sure about which OpenSSL patch you are talking. Neither me nor one of my colleagues working on "Trusted Java" have done a patch for OpenSSL. Please understand that I can only support stuff that comes from us. Regards, Thomas Winkler |
|
From: Saurabh A. <tan...@gm...> - 2007-03-09 03:41:58
|
Hi can you help me with the openssl patch which can enable me to check the EK- AIK certs with Subject Directory Attribute fields and RSAES-OAEP public key and Platform cert with Attribute Certificate support. thanks Saurabh |
|
From: Thomas W. <tho...@ia...> - 2007-03-07 06:51:50
|
Hello, > ok i found out the "Insufficient TPM resources" problem. > TPM has the functionality to resist dictionary attacks, which causes > to block requests to tpm causing this error. Although it is happening > very often, which is causing very frequent resets. if sumone has a > work around this .. please do enlighten. I do not think that your problem is related to the TPM being in some lock mode. When preventing against dictionary attacks the TPM should return TPM_E_DEFEND_LOCK_RUNNING instead of TPM_E_RESOURCES. My feeling is that there is somthing wrong the resource management (key slots, auth sessions, ...) in the TSS. Keep in mind that TrouSerS currently is not so well tested on 1.2 TPMs. > > but the main problem still remains. > I am still not able to use read_pubek option in jTPMtools. It gives me > the following error : [...] > error message: TPM layer: Authentication failed > at iaik.tss.impl.jni.TcBaseObject.handleRetCode(TcBaseObject.java:102) > at iaik.tss.impl.jni.TcTpm.getPubEndorsementKey(TcTpm.java:99) For reading the owner secret of an owned (1.2) TPM you have to supply the password you set at TakeOwnership. If the TPM complains about a failed authentication, this most likely results from an invalid password. Regards, Thomas Winkler |
|
From: Saurabh A. <tan...@gm...> - 2007-03-07 05:59:00
|
Hi again
ok i found out the "Insufficient TPM resources" problem.
TPM has the functionality to resist dictionary attacks, which causes
to block requests to tpm causing this error. Although it is happening
very often, which is causing very frequent resets. if sumone has a
work around this .. please do enlighten.
but the main problem still remains.
I am still not able to use read_pubek option in jTPMtools. It gives me
the following error :
----------------
./jtt.sh read_pubek -o ownerpassword
-----------------------------------
IAIK/OpenTC Java TPM Tools
- - - - - - - - - -
based on IAIK/OpenTC jTSS Wrapper
-----------------------------------
LOG_DEBUG TSPI ../tcsd_api/clntside.c:102 Sending TSP packet to host localhost.
LOG_DEBUG TSPI ../tcsd_api/clntside.c:118 Connecting to 127.0.0.1
LOG_DEBUG TSPI ../tcsd_api/tcstp.c:291 TCS_OpenContext_RPC_TP:
Received TCS Context: 0xa0668103
LOG_DEBUG TSPI ../tcsd_api/tcstp.c:2366 TCSP_GetCapability_TP: TCS
Context: 0xa0668103
LOG_DEBUG TSPI ../tcsd_api/tcstp.c:1224 TCSP_OIAP_TP: TCS Context: 0xa0668103
LOG_DEBUG TSPI obj_policy.c:218 Got a secret:
81 1C C0 07 59 75 67 89 46 F4 79 0E DB AD 37 2E
75 ED B8 A7
LOG_DEBUG TSPI ../tcsd_api/tcstp.c:2642 TCSP_OwnerReadPubek_TP: TCS
Context: 0xa0668103
TSPI call error:
error code: 0x01
error message: TPM layer: Authentication failed
at iaik.tss.impl.jni.TcBaseObject.handleRetCode(TcBaseObject.java:102)
at iaik.tss.impl.jni.TcTpm.getPubEndorsementKey(TcTpm.java:99)
at iaik.tc.apps.jtt.tpm.ReadPublicEk.execute(ReadPublicEk.java:73)
at iaik.tc.utils.cmdline.SubCommand.run(SubCommand.java:80)
at iaik.tc.utils.cmdline.SubCommandParser.parse(SubCommandParser.java:52)
at iaik.tc.apps.jtt.common.JTpmTools.main(JTpmTools.java:67)
--------------------
On 3/7/07, Saurabh Arora <tan...@gm...> wrote:
> Hi
>
> I am a student and am using HP dc7600 with infineon TPM 1.2 - gentoo
> 2.6.19- trousers 2.9 (with IFX dual patch) - jTSS 0.2.5
>
> when i run junit tests i get 21 fails of 54 tests. below i have pasted
> few important test fails and a TSPI call error.
>
> Also after installing jTPMTools 0.2 , i am not able to use the
> (read_pubek) command, which generates the following output :
>
> -------------------
>
> $ ./jtt.sh read_pubek -o password
>
>
> IAIK/OpenTC Java TPM Tools
> - - - - - - - - - -
> based on IAIK/OpenTC jTSS Wrapper
>
>
>
> LOG_DEBUG TSPI ../tcsd_api/clntside.c:102 Sending TSP packet to host localhost.
> LOG_DEBUG TSPI ../tcsd_api/clntside.c:118 Connecting to 127.0.0.1
> LOG_DEBUG TSPI ../tcsd_api/tcstp.c:291 TCS_OpenContext_RPC_TP:
> Received TCS Context: 0xa019693a
> LOG_DEBUG TSPI ../tcsd_api/tcstp.c:2366 TCSP_GetCapability_TP: TCS
> Context: 0xa019693a
> LOG_DEBUG TSPI ../tcsd_api/tcstp.c:1224 TCSP_OIAP_TP: TCS Context: 0xa019693a
> LOG_DEBUG TSPI ../tcsd_api/tcstp.c:1224 TCSP_OIAP_TP: TCS Context: 0xa019693a
> LOG_DEBUG TSPI ../tcsd_api/tcstp.c:1224 TCSP_OIAP_TP: TCS Context: 0xa019693a
> LOG_DEBUG TSPI ../tcsd_api/tcstp.c:1224 TCSP_OIAP_TP: TCS Context: 0xa019693a
> LOG_DEBUG TSPI ../tcsd_api/tcstp.c:1224 TCSP_OIAP_TP: TCS Context: 0xa019693a
> LOG_DEBUG TSPI ../tcsd_api/tcstp.c:1224 TCSP_OIAP_TP: TCS Context: 0xa019693a
> TSPI call error:
> error code: 0x15
> error message: TPM layer: Insufficient TPM resources
> at iaik.tss.impl.jni.TcBaseObject.handleRetCode(TcBaseObject.java:102)
> at iaik.tss.impl.jni.TcTpm.getPubEndorsementKey(TcTpm.java:99)
> at iaik.tc.apps.jtt.tpm.ReadPublicEk.execute(ReadPublicEk.java:73)
> at iaik.tc.utils.cmdline.SubCommand.run(SubCommand.java:80)
> at iaik.tc.utils.cmdline.SubCommandParser.parse(SubCommandParser.java:52)
> at iaik.tc.apps.jtt.common.JTpmTools.main(JTpmTools.java:67)
>
> ----------------------------
>
> can you guide me the way out ??
>
>
> -------JUNIT OUTPUT-----------------------
> TSPI call error:
> error code: 0x15
> error message: TPM layer: Insufficient TPM resources
> ------------------------------
>
> ------------------------------
> There were 21 failures:
> 1) testGetKeyByPublicInfo(iaik.tss.test.junit.TestContext)junit.framework.AssertionFailedError:
> getting key by public info failed
> at iaik.tss.test.junit.TestContext.testGetKeyByPublicInfo(TestContext.java:546)
> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
> at iaik.tss.test.junit.TestMain.allTests(TestMain.java:64)
> at iaik.tss.test.junit.TestMain.main(TestMain.java:91)
>
>
>
> 8) testGetPubKey(iaik.tss.test.junit.TestKeys)junit.framework.AssertionFailedError:
> creating rsa key failed
> at iaik.tss.test.junit.TestKeys.testCreateKey(TestKeys.java:82)
> at iaik.tss.test.junit.TestKeys.testGetPubKey(TestKeys.java:144)
> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
> at iaik.tss.test.junit.TestMain.allTests(TestMain.java:64)
> at iaik.tss.test.junit.TestMain.main(TestMain.java:91)
>
>
> 21) testCreateIdentity(iaik.tss.test.junit.TestIdentityCreation)junit.framework.AssertionFailedError:
> client: CollateIdentityRequest failed
> at iaik.tss.test.junit.TestIdentityCreation.testCreateIdentity(TestIdentityCreation.java:181)
> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
> at iaik.tss.test.junit.TestMain.allTests(TestMain.java:64)
> at iaik.tss.test.junit.TestMain.main(TestMain.java:91)
>
>
>
> FAILURES!!!
> Tests run: 54, Failures: 21, Errors: 1
> ----------------JUNIT OUTPUT END--------------
>
|
|
From: Saurabh A. <tan...@gm...> - 2007-03-07 04:40:18
|
Hi
I am a student and am using HP dc7600 with infineon TPM 1.2 - gentoo
2.6.19- trousers 2.9 (with IFX dual patch) - jTSS 0.2.5
when i run junit tests i get 21 fails of 54 tests. below i have pasted
few important test fails and a TSPI call error.
Also after installing jTPMTools 0.2 , i am not able to use the
(read_pubek) command, which generates the following output :
-------------------
$ ./jtt.sh read_pubek -o password
IAIK/OpenTC Java TPM Tools
- - - - - - - - - -
based on IAIK/OpenTC jTSS Wrapper
LOG_DEBUG TSPI ../tcsd_api/clntside.c:102 Sending TSP packet to host localhost.
LOG_DEBUG TSPI ../tcsd_api/clntside.c:118 Connecting to 127.0.0.1
LOG_DEBUG TSPI ../tcsd_api/tcstp.c:291 TCS_OpenContext_RPC_TP:
Received TCS Context: 0xa019693a
LOG_DEBUG TSPI ../tcsd_api/tcstp.c:2366 TCSP_GetCapability_TP: TCS
Context: 0xa019693a
LOG_DEBUG TSPI ../tcsd_api/tcstp.c:1224 TCSP_OIAP_TP: TCS Context: 0xa019693a
LOG_DEBUG TSPI ../tcsd_api/tcstp.c:1224 TCSP_OIAP_TP: TCS Context: 0xa019693a
LOG_DEBUG TSPI ../tcsd_api/tcstp.c:1224 TCSP_OIAP_TP: TCS Context: 0xa019693a
LOG_DEBUG TSPI ../tcsd_api/tcstp.c:1224 TCSP_OIAP_TP: TCS Context: 0xa019693a
LOG_DEBUG TSPI ../tcsd_api/tcstp.c:1224 TCSP_OIAP_TP: TCS Context: 0xa019693a
LOG_DEBUG TSPI ../tcsd_api/tcstp.c:1224 TCSP_OIAP_TP: TCS Context: 0xa019693a
TSPI call error:
error code: 0x15
error message: TPM layer: Insufficient TPM resources
at iaik.tss.impl.jni.TcBaseObject.handleRetCode(TcBaseObject.java:102)
at iaik.tss.impl.jni.TcTpm.getPubEndorsementKey(TcTpm.java:99)
at iaik.tc.apps.jtt.tpm.ReadPublicEk.execute(ReadPublicEk.java:73)
at iaik.tc.utils.cmdline.SubCommand.run(SubCommand.java:80)
at iaik.tc.utils.cmdline.SubCommandParser.parse(SubCommandParser.java:52)
at iaik.tc.apps.jtt.common.JTpmTools.main(JTpmTools.java:67)
----------------------------
can you guide me the way out ??
-------JUNIT OUTPUT-----------------------
TSPI call error:
error code: 0x15
error message: TPM layer: Insufficient TPM resources
------------------------------
------------------------------
There were 21 failures:
1) testGetKeyByPublicInfo(iaik.tss.test.junit.TestContext)junit.framework.AssertionFailedError:
getting key by public info failed
at iaik.tss.test.junit.TestContext.testGetKeyByPublicInfo(TestContext.java:546)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at iaik.tss.test.junit.TestMain.allTests(TestMain.java:64)
at iaik.tss.test.junit.TestMain.main(TestMain.java:91)
8) testGetPubKey(iaik.tss.test.junit.TestKeys)junit.framework.AssertionFailedError:
creating rsa key failed
at iaik.tss.test.junit.TestKeys.testCreateKey(TestKeys.java:82)
at iaik.tss.test.junit.TestKeys.testGetPubKey(TestKeys.java:144)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at iaik.tss.test.junit.TestMain.allTests(TestMain.java:64)
at iaik.tss.test.junit.TestMain.main(TestMain.java:91)
21) testCreateIdentity(iaik.tss.test.junit.TestIdentityCreation)junit.framework.AssertionFailedError:
client: CollateIdentityRequest failed
at iaik.tss.test.junit.TestIdentityCreation.testCreateIdentity(TestIdentityCreation.java:181)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at iaik.tss.test.junit.TestMain.allTests(TestMain.java:64)
at iaik.tss.test.junit.TestMain.main(TestMain.java:91)
FAILURES!!!
Tests run: 54, Failures: 21, Errors: 1
----------------JUNIT OUTPUT END--------------
|
|
From: Masoom A. <dou...@ya...> - 2007-03-06 08:23:02
|
Hi, Just to mention one thing that, i have downloaded the testsuite form the TrouSerS site, and 153 tests went successfully, where as 105 were failed. I am running the tpmd daemon with -f option, so some commands gives the message failed (i think so because these commands are still not supported by the TPM emulator). It seems to me that there is some configuration problem of the jTss on my machine, as TrouSerS is running (i judged from the test suites). Best, MA --- Thomas Winkler <tho...@ia...> wrote: > Hello, > > > 19:14:50:535 [INFO] TestMain::allTests (59): > 1.4.2 > > .Native code library (tspiwrapper) failed to load. > > > > The current library path is: > > /usr/lib/gcj-4.1.1:output/lib > > > > Detailed error message: libtspiwrapper: > libtspi.so.1: > > cannot open shared object file: No such file or > > directory > > make: *** [run_tests] Error 1 > > This is the same error message as in your last mail. > Please refer to the > provided description there to solve your linker > problems. > > Something else: jTSS and friends have been developed > and tested using > SUN Java. You are using gij/gcj. This might work > equally well but has > not been tested. > > Regards, > Thomas Winkler > > ------------------------------------------------------------------------- > Take Surveys. Earn Cash. Influence the Future of IT > Join SourceForge.net's Techsay panel and you'll get > the chance to share your > opinions on IT & business topics through brief > surveys-and earn cash > http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV> _______________________________________________ > Trustedjava-support mailing list > Tru...@li... > https://lists.sourceforge.net/lists/listinfo/trustedjava-support > Masoom Alam Security Engineering Universität Innsbruck Institut für Informatik Technikerstraße 13 A - 6020 Innsbruck Tel.: ++43 - 512 - 507 6462 http://qe-informatik.uibk.ac.at/ ___________________________________________________________ What kind of emailer are you? Find out today - get a free analysis of your email personality. Take the quiz at the Yahoo! Mail Championship. http://uk.rd.yahoo.com/evt=44106/*http://mail.yahoo.net/uk |
|
From: Masoom A. <dou...@ya...> - 2007-03-06 07:20:08
|
Hi, I have augmented the LD_LIBRARY_PATH=/usr/local/lib, in my path, but still, i am getting the same error message again. One more thing is that when i downloaded the Junit, the original file name was JUNIT1.4.jar, which i changed to Junit.jar, as required by the jTss. Further, Could you kindly give some details on the other possiblity you highighted: "jTSS and friends have been developed and tested using SUN Java. You are using gij/gcj". How can i fix this, i have installed JDK 1.5 and JRE 1.3 from SUN site. Thanks. MA --- Thomas Winkler <tho...@ia...> wrote: > Hello, > > > I am having problems in resetting the software TPM > > ownership. > > This is described in the jTSS documentation (did you > read it?): > > "The non-volatile memory of the TPM emulator holding > permanent state > information is located in: > > /var/tpm/" > > What you have to do is to remove the TPM emu storage > file in /var/tpm > and start the emu with the "clear" option. > > > > Detailed error message: libtspiwrapper: > libtspi.so.1: > > cannot open shared object file: No such file or > > directory > > > > Dont know, where is the error. > > > The error message actually is very verbose. The > libtspi.so.1 library can > not be found by the linker. Check where TrouSerS > installed this library > (likely /usr/local/lib) and add this path to you > linker search path > (e.g. by modifying your /etc/ld.so.conf or by adding > it to your > LD_LIBRARY_PATH). > > > > Q2: Secondly, i have set the password for TPM > emulator > > using the IBM examples script ./takeown but, now > dont > > know how to reset > > Reset the emulator as described above. Question > about the IBM tools > should be asked on IBM mailing lists. > > Regards, > Thomas Winkler > ___________________________________________________________ New Yahoo! Mail is the ultimate force in competitive emailing. Find out more at the Yahoo! Mail Championships. Plus: play games and win prizes. http://uk.rd.yahoo.com/evt=44106/*http://mail.yahoo.net/uk |
|
From: Thomas W. <tho...@ia...> - 2007-03-06 06:45:42
|
Hello, > 19:14:50:535 [INFO] TestMain::allTests (59): 1.4.2 > .Native code library (tspiwrapper) failed to load. > > The current library path is: > /usr/lib/gcj-4.1.1:output/lib > > Detailed error message: libtspiwrapper: libtspi.so.1: > cannot open shared object file: No such file or > directory > make: *** [run_tests] Error 1 This is the same error message as in your last mail. Please refer to the provided description there to solve your linker problems. Something else: jTSS and friends have been developed and tested using SUN Java. You are using gij/gcj. This might work equally well but has not been tested. Regards, Thomas Winkler |
|
From: Thomas W. <tho...@ia...> - 2007-03-06 06:40:05
|
Hello, > I am having problems in resetting the software TPM > ownership. This is described in the jTSS documentation (did you read it?): "The non-volatile memory of the TPM emulator holding permanent state information is located in: /var/tpm/" What you have to do is to remove the TPM emu storage file in /var/tpm and start the emu with the "clear" option. > Detailed error message: libtspiwrapper: libtspi.so.1: > cannot open shared object file: No such file or > directory > > Dont know, where is the error. The error message actually is very verbose. The libtspi.so.1 library can not be found by the linker. Check where TrouSerS installed this library (likely /usr/local/lib) and add this path to you linker search path (e.g. by modifying your /etc/ld.so.conf or by adding it to your LD_LIBRARY_PATH). > Q2: Secondly, i have set the password for TPM emulator > using the IBM examples script ./takeown but, now dont > know how to reset Reset the emulator as described above. Question about the IBM tools should be asked on IBM mailing lists. Regards, Thomas Winkler |
|
From: Masoom A. <dou...@ya...> - 2007-03-05 18:17:08
|
Hi All,
After the installation of the prebuilt version, when i
run the JUNIT test cases, i get the following error
message:
[root@localhost jTssWrapperPBuilt_0.2.5]# make
run_tests
LD_LIBRARY_PATH=output/lib
CLASSPATH=output/jars/internal_jtss_wrapper.jar:output/jars/iaik_jtss_wrapper.jar:output/jars/iaik_jtss_wrapper_test.jar:/root/Desktop/Junit/junit.jar
\
java iaik.tss.test.junit.TestMain
19:14:50:534 [INFO] TestMain::allTests (58):
Omitting TestIdentityCreation test case (requires Java
1.5 or higher).
19:14:50:535 [INFO] TestMain::allTests (59): 1.4.2
.Native code library (tspiwrapper) failed to load.
The current library path is:
/usr/lib/gcj-4.1.1:output/lib
Detailed error message: libtspiwrapper: libtspi.so.1:
cannot open shared object file: No such file or
directory
make: *** [run_tests] Error 1
If some body can help me.
Thanks,
Best,
MA
___________________________________________________________
Now you can scan emails quickly with a reading pane. Get the new Yahoo! Mail. http://uk.docs.yahoo.com/nowyoucan.html
|
|
From: Masoom A. <dou...@ya...> - 2007-03-05 17:54:11
|
Hi All, I am having problems in resetting the software TPM ownership. I used the following command: [root@localhost jTpmTools_0.2]# ./jtt.sh clear_owner -o alijan1 ----------------------------------- IAIK/OpenTC Java TPM Tools - - - - - - - - - - based on IAIK/OpenTC jTSS Wrapper ----------------------------------- Native code library (tspiwrapper) failed to load. The current library path is: /root/Desktop/TrustedJAVA/jTpmTools_0.2/ext_libs Detailed error message: libtspiwrapper: libtspi.so.1: cannot open shared object file: No such file or directory Dont know, where is the error. Kindly guide me. Q2: Secondly, i have set the password for TPM emulator using the IBM examples script ./takeown but, now dont know how to reset Thanking you in advance. Best, MA Masoom Alam Security Engineering Universität Innsbruck Institut für Informatik Technikerstraße 13 A - 6020 Innsbruck Tel.: ++43 - 512 - 507 6462 http://qe-informatik.uibk.ac.at/ ___________________________________________________________ The all-new Yahoo! Mail goes wherever you go - free your email address from your Internet provider. http://uk.docs.yahoo.com/nowyoucan.html |
|
From: Thomas W. <tho...@ia...> - 2007-03-05 14:08:52
|
Hello, > 1. First of all, my machine is not equipped with the > TPM, instead, i am using an emulator based TPM from > ETH Zurich. Does TrustedJava will still work. As TPM > emulator is functioning perfectly at the moment. Yes - jTSS Wrapper is known to work on top of TrouSerS (0.2.9) and TPM emulator (0.5). This information can also be found in the readme of jTSS Wrapper. > 2. Why this project is called TrustedJava, any > relation with Java. Well - its written in Java. So I'd guess there is some relationship to Java. If you mean "is there any relationship to SUN Microsystems" then the answer is no. > 3. How TrustedJava complements the TrouSerS. Again - this is described in detail in the jTSS Wrapper documentation. jTSS Wrapper runs on top of TrouSerS (essentially wrapping the TSP layer of TrouSerS). > 4. Does TrustedJava helps to develop java applications > using Java? An alternative would be to call TrouSerS directly via JNI. So in essence: Yes jTSS Wrapper will help you to develop Java applications for Trusted Computing. hth, Thomas Winkler |
|
From: Masoom A. <dou...@ya...> - 2007-03-05 10:42:43
|
Hi All, I am a new bie and have installed TSS (TrouSerS). I have to ask certain basic questions. 1. First of all, my machine is not equipped with the TPM, instead, i am using an emulator based TPM from ETH Zurich. Does TrustedJava will still work. As TPM emulator is functioning perfectly at the moment. 2. Why this project is called TrustedJava, any relation with Java. 3. How TrustedJava complements the TrouSerS. 4. Does TrustedJava helps to develop java applications using Java? Thanking you in advance. Best, MA ___________________________________________________________ All New Yahoo! Mail Tired of unwanted email come-ons? Let our SpamGuard protect you. http://uk.docs.yahoo.com/nowyoucan.html |
|
From: Thomas W. <tho...@ia...> - 2007-03-05 06:36:18
|
Hello, > I am getting the following when I try to "make" the 'Source only' > version of jTssWrapper 0.2.5 From the error messages you provided it is hard to find out what is going wrong. Looks like swig is unhappy with something. What version of swig are you using? Maybe there is alsos something going wrong at an earlier stage. Can you provide the .i files from output/interfaces? Generally you could also try to use the partially prebuilt version of the wrapper. With this version you do not have to rely in swig to generate the framework from the interface files since this stuff is already included in the tar file. You do not loose anything by using the prebuilt version since it also includes all source code. Regards, Thomas Winkler |
87 messages has been excluded from this view by a project administrator.
