-
Notifications
You must be signed in to change notification settings - Fork 37
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Cannot export externally created private key and then import it again #101
Comments
Hello. Please provide enough information so I can reproduce this issue. |
@gotthardp I'm typing.. :D I accidentally posted too early |
@gotthardp Now I added the description. Sorry for that. |
Tyrrx
changed the title
Cannot export load exported tss3private
Cannot export externally created private key
Dec 19, 2023
Tyrrx
changed the title
Cannot export externally created private key
Cannot export externally created private key and then import it again
Dec 19, 2023
Hello. @Tyrrx did you find any solution? Having the same issue with an Apache server here. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Hi, I am trying to import the externally create private key of a certificate into the TPM, then export it as TSS2 and re import it again but this does not work.
What I did first, was importing the external key using the tpm-tools:
I was able to use the private key to e.g. create a mTLS session using the uri
object:tpm/idevid.hdl
with the OSSL provider API.Then I tried to export the private key via an encoder which gave me a TSS2 private key file that looked fine at the first view.
But when I tried to load the private key from the previously exported TSS2, I got the following error:
After that I tried not to persist the imported key by using:
And then use the TSS2 file create by the tpm-tools but then I get the error:
Also running:
Gave me the error:
So my question: What am I doing wrong here or is this even possible?
Another thing that confuses me: When I created a new key using the TPM provider everything just worked. I was able to export it as TSS2 and import it again without any issues.
The text was updated successfully, but these errors were encountered: