From 2329d725e8ba8a0d8b757dce63535cf4b966cf34 Mon Sep 17 00:00:00 2001 From: busaboy1340 <43374066+busaboy1340@users.noreply.github.com> Date: Tue, 18 Jun 2019 13:00:49 -0400 Subject: [PATCH] Use DER format when creating platform credential. (#161) --- .ci/setup/setup-tpm2provisioner.sh | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.ci/setup/setup-tpm2provisioner.sh b/.ci/setup/setup-tpm2provisioner.sh index c4e25ee7..72032459 100755 --- a/.ci/setup/setup-tpm2provisioner.sh +++ b/.ci/setup/setup-tpm2provisioner.sh @@ -53,7 +53,7 @@ function InitTpm2Emulator { # EK and PC Certificate ek_cert_der="/HIRS/.ci/setup/certs/ek_cert.der" - platform_cert="platformAttributeCertificate.pem" + platform_cert="platformAttributeCertificate.der" echo "Creating Platform Cert for Container." PC_DIR=/var/hirs/pc_generation @@ -62,7 +62,7 @@ function InitTpm2Emulator { /opt/paccor/scripts/referenceoptions.sh > $PC_DIR/optionsFile /opt/paccor/scripts/otherextensions.sh > $PC_DIR/extensionsFile /opt/paccor/bin/observer -c $PC_DIR/componentsFile -p $PC_DIR/optionsFile -e $ek_cert_der -f $PC_DIR/observerFile - /opt/paccor/bin/signer -o $PC_DIR/observerFile -x $PC_DIR/extensionsFile -b 20180101 -a 20280101 -N $RANDOM -k /HIRS/.ci/setup/certs/ca.key -P /HIRS/.ci/setup/certs/ca.crt --pem -f $PC_DIR/$platform_cert + /opt/paccor/bin/signer -o $PC_DIR/observerFile -x $PC_DIR/extensionsFile -b 20180101 -a 20280101 -N $RANDOM -k /HIRS/.ci/setup/certs/ca.key -P /HIRS/.ci/setup/certs/ca.crt -f $PC_DIR/$platform_cert if tpm2_nvlist | grep -q 0x1c00002; then echo "Released NVRAM for EK."