mirror of
https://github.com/nsacyber/HIRS.git
synced 2025-01-25 21:59:22 +00:00
8a3478c19e
* Added Rim test workflow * bug fixes * added rim tool setup * Update rim_tests.yml * Update rim_tests.yml * Update rim_tests.yml * Update rim_tests.yml * Update rim_tests.yml * Update rim_tests.yml * Update rim_tests.yml * Update rim_tests.yml * Update rim_tests.yml * Update rim_tests.yml * updates to rim_tests.yml * updates to rim_tests.yml * updates to rim_tests.yml * Update rim_tests.yml * Update rim_tests.yml * Update rim_tests.yml * Update rim_tests.yml * Update rim_tests.yml * Update rim_tests.yml * added run all script * added run all script * updates to rim_tests.yml * Updates to paths in composite_rim_create_pass.sh * Added all passing rim tests * updates to rim_tests.yml * switched to gradle-build-action@v3 * switched to setup-gradle@v3 * switched to setup-java@v4 * updates to rim_tests.yml * testing failed script * fixed failed test * testing artifacts * updates to rim_tests.yml * Update rim_tests.yml * updates to rim_tests.yml * changes to rim_tests.yml * testing log file * testing log file * testing log files * testing log files * testing log file * testing log file * testing log file * testing log file * testing log file * Update rim_tests.yml * verbose run * updated paths and references * updates to README.md * deleted rim docker testing directory
41 lines
1.7 KiB
Bash
Executable File
41 lines
1.7 KiB
Bash
Executable File
#!/bin/bash
|
|
# Composite rim create pass test
|
|
# Capture location of this script to allow from invocation from any location
|
|
scriptDir=$(dirname -- "$(readlink -f -- "${BASH_SOURCE[0]}")")
|
|
# go to the script directory so everything runs smoothly ...
|
|
pushd $scriptDir > /dev/null
|
|
|
|
. ./rim_functions.sh
|
|
#clearing and creating a new tmp folder
|
|
rm -rf tmp
|
|
mkdir -p tmp
|
|
|
|
failCount=0
|
|
# primary rim create
|
|
rim -c base -a ../configs/Primary_Rim_Config.json -l ../eventlogs/TpmLog.bin -k ../keys/PC_OEM1_rim_signer_rsa_3k_sha384.key -p ../certs/PC_OEM1_rim_signer_rsa_3k_sha384.pem -o tmp/primaryRimFile.swidtag
|
|
rim_create_status $?
|
|
|
|
# verify primary rim
|
|
rim -v tmp/primaryRimFile.swidtag -l ../eventlogs/TpmLog.bin -t ../certs/PC_OEM1_Cert_Chain.pem -p ../certs/PC_OEM1_rim_signer_rsa_3k_sha384.pem
|
|
rim_verify_status $?
|
|
|
|
# comp rim create
|
|
rim -c base -a ../configs/Component1_Rim_Config.json -l ../eventlogs/TpmLog2.bin -k ../keys/COMP_OEM1_rim_signer_rsa_3k_sha384.key -p ../certs/COMP_OEM1_rim_signer_rsa_3k_sha384.pem -o tmp/compRimFile.swidtag
|
|
rim_create_status $?
|
|
|
|
# verify comp rim
|
|
rim -v tmp/compRimFile.swidtag -l ../eventlogs/TpmLog2.bin -t ../certs/COMP_OEM1_Cert_Chain.pem -p ../certs/COMP_OEM1_rim_signer_rsa_3k_sha384.pem
|
|
rim_verify_status $?
|
|
|
|
#Return to where ever you came from
|
|
popd > /dev/null
|
|
|
|
if [ $failCount -eq 0 ]; then
|
|
echo "Expected Result (PASS) Result: PASS, primaryRimFile.swidtag has a new base rim file signed by PC_OEM1_rim_signer_rsa_3k_sha384.key"
|
|
echo "Expected Result (PASS) Result: PASS, compRimFile.swidtag has a new base rim file signed by COMP_OEM1_rim_signer_rsa_3k_sha384.key"
|
|
else
|
|
echo "Expected Result (PASS) Result: FAILED, exit status $failCount"
|
|
fi
|
|
exit $failCount
|
|
|