From mboxrd@z Thu Jan 1 00:00:00 1970 Content-Type: multipart/mixed; boundary="===============7929619420846720408==" MIME-Version: 1.0 From: =?utf-8?q?Iratxe_Gonz=C3=A1lez_Garrido_=3Ciratxe=2Eggarrido_at_gmail=2Eco?= =?utf-8?q?m=3E?= Subject: Re: [tpm2] Generating a symmetric key Date: Mon, 26 Aug 2019 19:32:49 +0200 Message-ID: In-Reply-To: 476DC76E7D1DF2438D32BFADF679FC5649DEE501@ORSMSX101.amr.corp.intel.com List-ID: To: tpm2@lists.01.org --===============7929619420846720408== Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable Hi: My TPM does have support for AES keys. I downloaded version 4 and everything works. Thanks El vie., 23 ago. 2019 a las 19:30, Roberts, William C (< william.c.roberts(a)intel.com>) escribi=C3=B3: > > > > -----Original Message----- > > From: tpm2 [mailto:tpm2-bounces(a)lists.01.org] On Behalf Of Iratxe > Gonz=C3=A1lez > > Garrido > > Sent: Tuesday, August 13, 2019 4:40 AM > > To: tpm2(a)lists.01.org > > Subject: [tpm2] Generating a symmetric key > > > > Hello, > > > > I am trying to encrypt a file with a key generated by the TPM. I got > everything > > working and can generate rsa keys with no problem. But when I try to run > the > > following command > > > > $ tpm2_create -C key2.ctx -Gaes -u key3.pub -r key3.priv I get an error: > > ARNING:esys:src/tss2-esys/api/Esys_Create.c:366:Esys_Create_Finish() > Received > > TPM Error > > ERROR:esys:src/tss2-esys/api/Esys_Create.c:116:Esys_Create() Esys Finish > > ErrorCode (0x0000012f) > > ERROR: Esys_Create(0x12F) - tpm:error(2.0): authValue or authPolicy is > not > > available for selected entity > > ERROR: Unable to run tpm2_create > > That's error TPM2_RC_AUTH_MISSING which is weird. I'm assuming that the > parent > Key doesn't need a password? > > Is there any reason you can't use master? The 3.X tools have a lot of > issues. Master is > Currently pointing at or close to what is going to be 4.0-RC0. > > > key2 is loaded, so I don't know what the error is. I am using version > 3.0.2 from the > > GitHub repository and running everything in a Raspberry Pi 3. I have > been reading > > the manual and the option for generating an AES key is -Gaes, so I don't > > understand why it is not working. > > Maybe the TPM is returning the wrong error code, does your tpm have > support for > AES keys? > > If you're on master the command to check is: > $ ./tools/tpm2_getcap commands | grep -i encrypt > encryptdecrypt: <-- required > encryptdecrypt2: <-- optional > > I *think* off the top of my head you just need to add a -c for 3.X.... > However, note the string > Names on master are about to change for RC1: > https://github.com/tpm2-software/tpm2-tools/pull/1692 > > > > > Thanks in advance for your help. > > > > Iratxe > > --===============7929619420846720408== Content-Type: text/html MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="attachment.html" PGRpdiBkaXI9Imx0ciI+PGRpdj5IaTo8YnI+PC9kaXY+PGRpdj5NeSBUUE0gZG9lcyBoYXZlIHN1 cHBvcnQgZm9yIEFFUyBrZXlzLiBJIGRvd25sb2FkZWQgdmVyc2lvbiA0IGFuZCBldmVyeXRoaW5n IHdvcmtzLjwvZGl2PjxkaXY+VGhhbmtzPC9kaXY+PGRpdj48YnI+PC9kaXY+PC9kaXY+PGJyPjxk aXYgY2xhc3M9ImdtYWlsX3F1b3RlIj48ZGl2IGRpcj0ibHRyIiBjbGFzcz0iZ21haWxfYXR0ciI+ RWwgdmllLiwgMjMgYWdvLiAyMDE5IGEgbGFzIDE5OjMwLCBSb2JlcnRzLCBXaWxsaWFtIEMgKCZs dDs8YSBocmVmPSJtYWlsdG86d2lsbGlhbS5jLnJvYmVydHNAaW50ZWwuY29tIj53aWxsaWFtLmMu cm9iZXJ0c0BpbnRlbC5jb208L2E+Jmd0OykgZXNjcmliacOzOjxicj48L2Rpdj48YmxvY2txdW90 ZSBjbGFzcz0iZ21haWxfcXVvdGUiIHN0eWxlPSJtYXJnaW46MHB4IDBweCAwcHggMC44ZXg7Ym9y ZGVyLWxlZnQ6MXB4IHNvbGlkIHJnYigyMDQsMjA0LDIwNCk7cGFkZGluZy1sZWZ0OjFleCI+PGJy Pgo8YnI+CiZndDsgLS0tLS1PcmlnaW5hbCBNZXNzYWdlLS0tLS08YnI+CiZndDsgRnJvbTogdHBt MiBbbWFpbHRvOjxhIGhyZWY9Im1haWx0bzp0cG0yLWJvdW5jZXNAbGlzdHMuMDEub3JnIiB0YXJn ZXQ9Il9ibGFuayI+dHBtMi1ib3VuY2VzQGxpc3RzLjAxLm9yZzwvYT5dIE9uIEJlaGFsZiBPZiBJ cmF0eGUgR29uesOhbGV6PGJyPgomZ3Q7IEdhcnJpZG88YnI+CiZndDsgU2VudDogVHVlc2RheSwg QXVndXN0IDEzLCAyMDE5IDQ6NDAgQU08YnI+CiZndDsgVG86IDxhIGhyZWY9Im1haWx0bzp0cG0y QGxpc3RzLjAxLm9yZyIgdGFyZ2V0PSJfYmxhbmsiPnRwbTJAbGlzdHMuMDEub3JnPC9hPjxicj4K Jmd0OyBTdWJqZWN0OiBbdHBtMl0gR2VuZXJhdGluZyBhIHN5bW1ldHJpYyBrZXk8YnI+CiZndDsg PGJyPgomZ3Q7IEhlbGxvLDxicj4KJmd0OyA8YnI+CiZndDsgSSBhbSB0cnlpbmcgdG8gZW5jcnlw dCBhIGZpbGUgd2l0aCBhIGtleSBnZW5lcmF0ZWQgYnkgdGhlIFRQTS4gSSBnb3QgZXZlcnl0aGlu Zzxicj4KJmd0OyB3b3JraW5nIGFuZCBjYW4gZ2VuZXJhdGUgcnNhIGtleXMgd2l0aCBubyBwcm9i bGVtLiBCdXQgd2hlbiBJIHRyeSB0byBydW4gdGhlPGJyPgomZ3Q7IGZvbGxvd2luZyBjb21tYW5k PGJyPgomZ3Q7IDxicj4KJmd0OyAkIHRwbTJfY3JlYXRlIC1DIGtleTIuY3R4IC1HYWVzIC11IGtl eTMucHViIC1yIGtleTMucHJpdiBJIGdldCBhbiBlcnJvcjo8YnI+CiZndDsgQVJOSU5HOmVzeXM6 c3JjL3RzczItZXN5cy9hcGkvRXN5c19DcmVhdGUuYzozNjY6RXN5c19DcmVhdGVfRmluaXNoKCkg UmVjZWl2ZWQ8YnI+CiZndDsgVFBNIEVycm9yPGJyPgomZ3Q7IEVSUk9SOmVzeXM6c3JjL3RzczIt ZXN5cy9hcGkvRXN5c19DcmVhdGUuYzoxMTY6RXN5c19DcmVhdGUoKSBFc3lzIEZpbmlzaDxicj4K Jmd0OyBFcnJvckNvZGUgKDB4MDAwMDAxMmYpPGJyPgomZ3Q7IEVSUk9SOiBFc3lzX0NyZWF0ZSgw eDEyRikgLSB0cG06ZXJyb3IoMi4wKTogYXV0aFZhbHVlIG9yIGF1dGhQb2xpY3kgaXMgbm90PGJy PgomZ3Q7IGF2YWlsYWJsZSBmb3Igc2VsZWN0ZWQgZW50aXR5PGJyPgomZ3Q7IEVSUk9SOiBVbmFi bGUgdG8gcnVuIHRwbTJfY3JlYXRlPGJyPgo8YnI+ClRoYXQmIzM5O3MgZXJyb3IgVFBNMl9SQ19B VVRIX01JU1NJTkcgd2hpY2ggaXMgd2VpcmQuIEkmIzM5O20gYXNzdW1pbmcgdGhhdCB0aGUgcGFy ZW50PGJyPgpLZXkgZG9lc24mIzM5O3QgbmVlZCBhIHBhc3N3b3JkPzxicj4KPGJyPgpJcyB0aGVy ZSBhbnkgcmVhc29uIHlvdSBjYW4mIzM5O3QgdXNlIG1hc3Rlcj8gVGhlIDMuWCB0b29scyBoYXZl IGEgbG90IG9mIGlzc3Vlcy4gTWFzdGVyIGlzPGJyPgpDdXJyZW50bHkgcG9pbnRpbmcgYXQgb3Ig Y2xvc2UgdG8gd2hhdCBpcyBnb2luZyB0byBiZSA0LjAtUkMwLjxicj4KPGJyPgomZ3Q7IGtleTIg aXMgbG9hZGVkLCBzbyBJIGRvbiYjMzk7dCBrbm93IHdoYXQgdGhlIGVycm9yIGlzLiBJIGFtIHVz aW5nIHZlcnNpb24gMy4wLjIgZnJvbSB0aGU8YnI+CiZndDsgR2l0SHViIHJlcG9zaXRvcnkgYW5k IHJ1bm5pbmcgZXZlcnl0aGluZyBpbiBhIFJhc3BiZXJyeSBQaSAzLiBJIGhhdmUgYmVlbiByZWFk aW5nPGJyPgomZ3Q7IHRoZSBtYW51YWwgYW5kIHRoZSBvcHRpb24gZm9yIGdlbmVyYXRpbmcgYW4g QUVTIGtleSBpcyAtR2Flcywgc28gSSBkb24mIzM5O3Q8YnI+CiZndDsgdW5kZXJzdGFuZCB3aHkg aXQgaXMgbm90IHdvcmtpbmcuPGJyPgo8YnI+Ck1heWJlIHRoZSBUUE0gaXMgcmV0dXJuaW5nIHRo ZSB3cm9uZyBlcnJvciBjb2RlLCBkb2VzIHlvdXIgdHBtIGhhdmUgc3VwcG9ydCBmb3I8YnI+CkFF UyBrZXlzPzxicj4KPGJyPgpJZiB5b3UmIzM5O3JlIG9uIG1hc3RlciB0aGUgY29tbWFuZCB0byBj aGVjayBpczo8YnI+CiQgLi90b29scy90cG0yX2dldGNhcCBjb21tYW5kcyB8IGdyZXAgLWkgZW5j cnlwdDxicj4KZW5jcnlwdGRlY3J5cHQ6ICZsdDstLSByZXF1aXJlZDxicj4KZW5jcnlwdGRlY3J5 cHQyOiAmbHQ7LS0gb3B0aW9uYWw8YnI+Cjxicj4KSSAqdGhpbmsqIG9mZiB0aGUgdG9wIG9mIG15 IGhlYWQgeW91IGp1c3QgbmVlZCB0byBhZGQgYSAtYyBmb3IgMy5YLi4uLiBIb3dldmVyLCBub3Rl IHRoZSBzdHJpbmc8YnI+Ck5hbWVzIG9uIG1hc3RlciBhcmUgYWJvdXQgdG8gY2hhbmdlIGZvciBS QzE6PGJyPgo8YSBocmVmPSJodHRwczovL2dpdGh1Yi5jb20vdHBtMi1zb2Z0d2FyZS90cG0yLXRv b2xzL3B1bGwvMTY5MiIgcmVsPSJub3JlZmVycmVyIiB0YXJnZXQ9Il9ibGFuayI+aHR0cHM6Ly9n aXRodWIuY29tL3RwbTItc29mdHdhcmUvdHBtMi10b29scy9wdWxsLzE2OTI8L2E+PGJyPgo8YnI+ CiZndDsgPGJyPgomZ3Q7IFRoYW5rcyBpbiBhZHZhbmNlIGZvciB5b3VyIGhlbHAuPGJyPgomZ3Q7 IDxicj4KJmd0OyBJcmF0eGU8YnI+Cjxicj4KPC9ibG9ja3F1b3RlPjwvZGl2Pgo= --===============7929619420846720408==--