* [tpm2] Re: Some Errors
@ 2020-01-13 15:37 Roberts, William C
0 siblings, 0 replies; 5+ messages in thread
From: Roberts, William C @ 2020-01-13 15:37 UTC (permalink / raw)
To: tpm2
[-- Attachment #1: Type: text/plain, Size: 702 bytes --]
> -----Original Message-----
> From: Oliver, Dario N [mailto:dario.n.oliver(a)intel.com]
> Sent: Friday, January 10, 2020 10:36 AM
> To: tpm2(a)lists.01.org
> Subject: [tpm2] Re: Some Errors
>
> The man page of tpm2_createak is wrong.
>
> It should be:
>
>
>
> tpm2_createek -c ek.handle -G rsa -u ek.pub
>
> tpm2_createak -C ek.handle -c ak.ctx -u ak.pub -n ak.name
>
> tpm2_evictcontrol -C o -c ak.ctx 0x81010002
>
>
>
> I was having the same problem, and that worked for me!
FYI this is fixed and will be on the 4.1.1 RC1 tag. The commit can be found here:
https://github.com/tpm2-software/tpm2-tools/commit/a83e8fd70b02c36b2a47012423991a70df62d4f7
Thanks,
Bill
^ permalink raw reply [flat|nested] 5+ messages in thread
* [tpm2] Re: Some Errors
@ 2020-01-10 16:36 Oliver, Dario N
0 siblings, 0 replies; 5+ messages in thread
From: Oliver, Dario N @ 2020-01-10 16:36 UTC (permalink / raw)
To: tpm2
[-- Attachment #1: Type: text/plain, Size: 265 bytes --]
The man page of tpm2_createak is wrong.
It should be:
tpm2_createek -c ek.handle -G rsa -u ek.pub
tpm2_createak -C ek.handle -c ak.ctx -u ak.pub -n ak.name
tpm2_evictcontrol -C o -c ak.ctx 0x81010002
I was having the same problem, and that worked for me!
[-- Attachment #2: attachment.htm --]
[-- Type: text/html, Size: 2086 bytes --]
^ permalink raw reply [flat|nested] 5+ messages in thread
* [tpm2] Re: Some Errors
@ 2020-01-10 14:16 Fuchs, Andreas
0 siblings, 0 replies; 5+ messages in thread
From: Fuchs, Andreas @ 2020-01-10 14:16 UTC (permalink / raw)
To: tpm2
[-- Attachment #1: Type: text/plain, Size: 3217 bytes --]
This is now a different error code.
It's an authorization error.
Did you set the owner authorization (aka storage hierarchy) ?
That needs to be passed using -P
________________________________
From: Alexander Lieb [alexander.lieb(a)online.de]
Sent: Friday, January 10, 2020 14:28
To: Fuchs, Andreas
Cc: tpm2(a)lists.01.org
Subject: Aw: RE: [tpm2] Some Errors
Still not working :(
# tpm2_evictcontrol -c ak.ctx 0x81010002
WARNING:esys:src/tss2-esys/api/Esys_EvictControl.c:326:Esys_EvictControl_Finish() Received TPM Error
ERROR:esys:src/tss2-esys/api/Esys_EvictControl.c:114:Esys_EvictControl() Esys Finish ErrorCode (0x000009a2)
ERROR: Esys_EvictControl(0x9A2) - tpm:session(1):authorization failure without DA implications
ERROR:esys:src/tss2-esys/esys_tr.c:357:Esys_TR_Close() Error: Esys handle does not exist (70018).
ERROR: Esys_TR_Close(0x70018) - esapi:0x18
ERROR: Unable to run tpm2_evictcontrol
# tpm2_evictcontrol -C o -c ak.ctx 0x81010002
WARNING:esys:src/tss2-esys/api/Esys_EvictControl.c:326:Esys_EvictControl_Finish() Received TPM Error
ERROR:esys:src/tss2-esys/api/Esys_EvictControl.c:114:Esys_EvictControl() Esys Finish ErrorCode (0x000009a2)
ERROR: Esys_EvictControl(0x9A2) - tpm:session(1):authorization failure without DA implications
ERROR:esys:src/tss2-esys/esys_tr.c:357:Esys_TR_Close() Error: Esys handle does not exist (70018).
ERROR: Esys_TR_Close(0x70018) - esapi:0x18
ERROR: Unable to run tpm2_evictcontrol
#
Gesendet: Freitag, 10. Januar 2020 um 13:47 Uhr
Von: "Fuchs, Andreas" <andreas.fuchs(a)sit.fraunhofer.de>
An: "Alexander Lieb" <alexander.lieb(a)online.de>, "tpm2(a)lists.01.org" <tpm2(a)lists.01.org>
Betreff: RE: [tpm2] Some Errors
That seems to not have been updated correctly.
Should probably be:
tpm2_evictcontrol -c ak.ctx 0x81010002
or
tpm2_evictcontrol -C o -c ak.ctx 0x81010002
Maybe you could try this and if it works, make a PR with the update to the tools project.
Thanks,
Andreas
________________________________
From: Alexander Lieb [alexander.lieb(a)online.de]
Sent: Friday, January 10, 2020 13:36
To: tpm2(a)lists.01.org
Subject: [tpm2] Some Errors
Hi,
I tried to make my ak persistent, usign the following readme:
https://github.com/tpm2-software/tpm2-tools/blob/master/man/tpm2_createak.1.md
The first two commands work fine, the last one results into:
tpm2_evictcontrol -c 0x81010002 -o ak.ctx
WARNING:esys:src/tss2-esys/api/Esys_ReadPublic.c:320:Esys_ReadPublic_Finish() Received TPM Error
ERROR:esys:src/tss2-esys/esys_tr.c:231:Esys_TR_FromTPMPublic_Finish() Error ReadPublic ErrorCode (0x0000018b)
ERROR:esys:src/tss2-esys/esys_tr.c:321:Esys_TR_FromTPMPublic() Error TR FromTPMPublic ErrorCode (0x0000018b)
ERROR: Esys_TR_FromTPMPublic(0x18B) - tpm:handle(1):the handle is not correct for the use
ERROR:esys:src/tss2-esys/esys_tr.c:357:Esys_TR_Close() Error: Esys handle does not exist (70018).
ERROR: Esys_TR_Close(0x70018) - esapi:0x18
ERROR: Unable to run tpm2_evictcontrol
I am not sure, whether I need to run any cmd to allocate the handle, or if it is necessary to be in a special mode or sth. Can you help me with this issue? Thanks a lot.
Best regards
[-- Attachment #2: attachment.htm --]
[-- Type: text/html, Size: 5270 bytes --]
^ permalink raw reply [flat|nested] 5+ messages in thread
* [tpm2] Re: Some Errors
@ 2020-01-10 13:28 Alexander Lieb
0 siblings, 0 replies; 5+ messages in thread
From: Alexander Lieb @ 2020-01-10 13:28 UTC (permalink / raw)
To: tpm2
[-- Attachment #1: Type: text/plain, Size: 0 bytes --]
[-- Attachment #2: attachment.htm --]
[-- Type: text/html, Size: 4454 bytes --]
^ permalink raw reply [flat|nested] 5+ messages in thread
* [tpm2] Re: Some Errors
@ 2020-01-10 12:47 Fuchs, Andreas
0 siblings, 0 replies; 5+ messages in thread
From: Fuchs, Andreas @ 2020-01-10 12:47 UTC (permalink / raw)
To: tpm2
[-- Attachment #1: Type: text/plain, Size: 1503 bytes --]
That seems to not have been updated correctly.
Should probably be:
tpm2_evictcontrol -c ak.ctx 0x81010002
or
tpm2_evictcontrol -C o -c ak.ctx 0x81010002
Maybe you could try this and if it works, make a PR with the update to the tools project.
Thanks,
Andreas
________________________________
From: Alexander Lieb [alexander.lieb(a)online.de]
Sent: Friday, January 10, 2020 13:36
To: tpm2(a)lists.01.org
Subject: [tpm2] Some Errors
Hi,
I tried to make my ak persistent, usign the following readme:
https://github.com/tpm2-software/tpm2-tools/blob/master/man/tpm2_createak.1.md
The first two commands work fine, the last one results into:
tpm2_evictcontrol -c 0x81010002 -o ak.ctx
WARNING:esys:src/tss2-esys/api/Esys_ReadPublic.c:320:Esys_ReadPublic_Finish() Received TPM Error
ERROR:esys:src/tss2-esys/esys_tr.c:231:Esys_TR_FromTPMPublic_Finish() Error ReadPublic ErrorCode (0x0000018b)
ERROR:esys:src/tss2-esys/esys_tr.c:321:Esys_TR_FromTPMPublic() Error TR FromTPMPublic ErrorCode (0x0000018b)
ERROR: Esys_TR_FromTPMPublic(0x18B) - tpm:handle(1):the handle is not correct for the use
ERROR:esys:src/tss2-esys/esys_tr.c:357:Esys_TR_Close() Error: Esys handle does not exist (70018).
ERROR: Esys_TR_Close(0x70018) - esapi:0x18
ERROR: Unable to run tpm2_evictcontrol
I am not sure, whether I need to run any cmd to allocate the handle, or if it is necessary to be in a special mode or sth. Can you help me with this issue? Thanks a lot.
Best regards
[-- Attachment #2: attachment.htm --]
[-- Type: text/html, Size: 2653 bytes --]
^ permalink raw reply [flat|nested] 5+ messages in thread
end of thread, other threads:[~2020-01-13 15:37 UTC | newest]
Thread overview: 5+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2020-01-13 15:37 [tpm2] Re: Some Errors Roberts, William C
-- strict thread matches above, loose matches on Subject: below --
2020-01-10 16:36 Oliver, Dario N
2020-01-10 14:16 Fuchs, Andreas
2020-01-10 13:28 Alexander Lieb
2020-01-10 12:47 Fuchs, Andreas
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.