Piotr Łobacz
Piotr Łobacz
3.1.0 and it would be rather difficult to get strace dump 'cause the app is written in dotnet and uses Pkcs11Interop assembly. Hmmm i see that strace is also working...
Ok i have finally made the strace log and found out that for some reason the resource is unavailable: ```bash futex(0xb6ab62ec, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable)...
@williamcroberts btw. is this log sufficient for you?
If you will need some more informations please keep me posted.
Hi @hosseinsh Ok so if i create a CSR - certificate signing request and pass it via mqtt, https - whatever protocol it doesn't matter what - lemur service will...
@hosseinsh that is what i wanted to know, because from what i have read in [here](https://netflixtechblog.com/introducing-lemur-ceae8830f621) i did understand, that lemur creates private key inside it's storage and than send...
Ok I have also used tpm2_createek binary with commands like: ```bash tpm2_createek --ek-context rsa_ek.ctx --key-algorithm rsa --public rsa_ek.pub base64 -w0 rsa_ek.pub >rsa_ek.pub.base64 ``` to see if it differs and it...
OK, I have managed to provision with the EK generated by python code and also with tpm tools like tpm2_createek. I was missing EK being persistent on the TPM and...
Hi guys, I have gotten yesterday an idea to verify if NV certificate written by the producer of TPM has exactly the same public key value (in this case modulus,...
> @Dvergatal , we no longer recommend using the DPS-TPM protocol. Instead, we recommend using DPS-X509 mutual-authentication. The dTPM can be used in conjunction with the [OpenSSL TPM engine](https://github.com/tpm2-software/tpm2-tss-engine) to...