DescriptionExplicitly logging out the token to avoid leaving it in a non-stable state.
Just calling session.close() will, sometimes, leave the TPM in an inconsistent state which will cause it to generate a bad RSA key, despite reporting key generation successful. Further use of the key will generate incorrect signatures.
Problem does not reproduce all the time, and the likelihood of happening appears to vary depending on the hardware used (Cr-48 > AGZ > L13). Calling session.logout() before session.close() fixes the issue.
Change-Id: Ib601818e180243ecf1f59e40f46d141e1d826286
BUG=chromium-os:10536
TEST=enroll a certificate and successfully connect to Google-A on Cr-48 device.
Committed: http://chrome-svn/viewvc/chromeos?view=rev&revision=6a86083
Patch Set 1 #Patch Set 2 : Adding helper method 'logoutAndClose'. #
Total comments: 4
Patch Set 3 : Returning early on logout failure. #Patch Set 4 : Returning early on logout failure. #
Messages
Total messages: 11 (0 generated)
|