-
Bug
-
Resolution: Unresolved
-
Normal
-
None
-
rhel-9.6
-
None
-
No
-
None
-
rhel-virt-hwe
-
ssg_virtualization
-
None
-
False
-
False
-
-
None
-
None
-
None
-
None
-
Unspecified
-
Unspecified
-
Unspecified
-
-
x86_64
-
None
What were you trying to do that didn't work?
trustee-attester can get the resource successfully on aws m6a.4xlarge instance with sev-snp and tpm enabled.
But it throws server errors during the process.
No such error when use kbs-client.
# trustee-attester --url https://trusteeserver:8080 --cert-file /home/ec2-user/trustee_keys/srv_host.crt get-resource --path default/test/model_encrypt_key WARNING:esys:src/tss2-esys/api/Esys_NV_ReadPublic.c:309:Esys_NV_ReadPublic_Finish() Received TPM Error ERROR:esys:src/tss2-esys/esys_tr.c:243:Esys_TR_FromTPMPublic_Finish() Error NV_ReadPublic ErrorCode (0x0000018b) ERROR:esys:src/tss2-esys/esys_tr.c:402:Esys_TR_FromTPMPublic() Error TR FromTPMPublic ErrorCode (0x0000018b) [2025-02-17T14:28:48Z ERROR tss_esapi::context::general_esys_tr] Error when getting ESYS handle from TPM handle: the handle is not correct for the use (associated with handle number 1) [2025-02-17T14:28:48Z INFO tss_esapi::context] Closing context. [2025-02-17T14:28:48Z INFO tss_esapi::context] Context closed. WARNING:esys:src/tss2-esys/api/Esys_NV_ReadPublic.c:309:Esys_NV_ReadPublic_Finish() Received TPM Error ERROR:esys:src/tss2-esys/esys_tr.c:243:Esys_TR_FromTPMPublic_Finish() Error NV_ReadPublic ErrorCode (0x0000018b) ERROR:esys:src/tss2-esys/esys_tr.c:402:Esys_TR_FromTPMPublic() Error TR FromTPMPublic ErrorCode (0x0000018b) [2025-02-17T14:28:48Z ERROR tss_esapi::context::general_esys_tr] Error when getting ESYS handle from TPM handle: the handle is not correct for the use (associated with handle number 1) [2025-02-17T14:28:48Z INFO tss_esapi::context] Closing context. [2025-02-17T14:28:48Z INFO tss_esapi::context] Context closed. [2025-02-17T14:28:48Z WARN kbs_protocol::client::rcar_client] Authenticating with KBS failed. Perform a new RCAR handshake: ErrorInformation { error_type: "https://github.com/confidential-containers/kbs/errors/TokenNotFound", detail: "Attestation Token not found", } WARNING:esys:src/tss2-esys/api/Esys_NV_ReadPublic.c:309:Esys_NV_ReadPublic_Finish() Received TPM Error ERROR:esys:src/tss2-esys/esys_tr.c:243:Esys_TR_FromTPMPublic_Finish() Error NV_ReadPublic ErrorCode (0x0000018b) ERROR:esys:src/tss2-esys/esys_tr.c:402:Esys_TR_FromTPMPublic() Error TR FromTPMPublic ErrorCode (0x0000018b) [2025-02-17T14:28:48Z ERROR tss_esapi::context::general_esys_tr] Error when getting ESYS handle from TPM handle: the handle is not correct for the use (associated with handle number 1) [2025-02-17T14:28:48Z INFO tss_esapi::context] Closing context. [2025-02-17T14:28:48Z INFO tss_esapi::context] Context closed. WARNING:esys:src/tss2-esys/api/Esys_NV_ReadPublic.c:309:Esys_NV_ReadPublic_Finish() Received TPM Error ERROR:esys:src/tss2-esys/esys_tr.c:243:Esys_TR_FromTPMPublic_Finish() Error NV_ReadPublic ErrorCode (0x0000018b) ERROR:esys:src/tss2-esys/esys_tr.c:402:Esys_TR_FromTPMPublic() Error TR FromTPMPublic ErrorCode (0x0000018b) [2025-02-17T14:28:48Z ERROR tss_esapi::context::general_esys_tr] Error when getting ESYS handle from TPM handle: the handle is not correct for the use (associated with handle number 1) [2025-02-17T14:28:48Z INFO tss_esapi::context] Closing context. [2025-02-17T14:28:48Z INFO tss_esapi::context] Context closed.
Please provide the package NVR for which bug is seen:
trustee-guest-components-0.10.0^124.git0061d03-3.el9.x86_64
How reproducible:
Steps to reproduce
trustee-attester --url https://trusteeserver:8080 --cert-file /home/ec2-user/trustee_keys/srv_host.crt get-resource --path default/test/model_encrypt_key
Expected results
No error reported if get resource successfully
Actual results
There are errors when get resource successfully
