Hi Hardeep,
This I replied to a similar question some while back:
You are right, you need to complete the .ini files before you can use jTSS.
Select the components of your choice for log file and persistent storage
and create the folders in the file system (with proper access rights for
the user/root) you intend to use and fill in the paths in the ini files.
For TSP-TCS communications you can either choose local bindings (i.e.
direct method calls) or SOAP bindings. For the later you need to install
the system daemon before using it.
For local bindings (recommended for testing) you either need root
privileges to access the TPM, or to allow access to /dev/tpm.
Please, also note that the test-suite uses the hardcoded owner password
"opentc", encoded as UTF-16LE without terminating zero. Other tools
than jTpmtools might fail to use the correct encoding.
Now, on your specific questions:
For the user persistent storage it is a good idea to use some path in
your home directory. i.e. /home/rtoegl/.jtss/storage/user
For the system persistent storage
you could use
/home/rtoegl/.jtss/storage/system with local bindings (i.e. for
testing/experiments) or
some path in some /var/lib/jtss/storage/system (depending on your
distribution) if you use SOAP. The database varint is a bit more stable
than the file storage. BTW, SOAP provides inter-process communication
between TSP and TCS.
If you need a log file of your extend events, you should use the file
variant, else it does not matter and you can just use the in-memory
logger for testing.
Finally, we offer a rather untested tool to import keys you created in
trousers to the jTSS persistent storage. If you don't create and store
keys with TrouSerS for using them in Java, you will not need to do this.
:-)
hth,
Ronald
Hardeep Uppal wrote:
> Hi,
>
> I am trying to setup IAIK jTSS stack to use jTPMTools. I am new to all
> this and I am not sure how to configure jtss_tcs.ini and jtss_tsp.ini.
> I currently have TrustedGrub running on my Dell Latitude e5400 with a
> Broadcom TPM 1.2. I am using trousers and tpm-tools to do admin stuff
> for the tpm. I am trying to use jTPMTools to create aik and sign pcr
> values.
>
> What should the file path for persistent storage be when not using a
> database? Does it matter if I use text files or in-memory for the
> event manager? Do I need SOAP and what is it trying to do? Do I need
> to store trousers persistent storage to jTSS?
>
> Thanks
> --Hardeep
--
Dipl.-Ing. Ronald Tögl phone +43 316/873-5502
Trusted Computing Labs fax +43 316/873-5520
IAIK ron...@ia...
Graz University of Technology http://www.iaik.tugraz.at
|
