aboutsummaryrefslogtreecommitdiffstats
path: root/tpm-tools/INSTALL
diff options
context:
space:
mode:
authorPramod <pramod.raghavendra.jayathirth@intel.com>2018-03-29 10:22:33 -0700
committerPramod <pramod.raghavendra.jayathirth@intel.com>2018-03-30 05:13:09 -0700
commit76f424e841653b899504d8064f1055f8c114985d (patch)
treeff41308d64f33605891f31cdfca0e04df130529d /tpm-tools/INSTALL
parent8a5b33a9ba846d785d244e29bc29a46f7be34928 (diff)
tpm tools for the below functionalities
1.INIT(Script) - Establish connection with the Actual TPM Hardware and loads the primary key into the TPM hardware 2. Sign and verify(Script) - Loads the key and does the sign and verify operation Issue-ID: AAF-207 Change-Id: I015eb5fbc6f0e6f09ca454ed1bb55c5f5aadebae Signed-off-by: Pramod <pramod.raghavendra.jayathirth@intel.com>
Diffstat (limited to 'tpm-tools/INSTALL')
-rw-r--r--tpm-tools/INSTALL53
1 files changed, 53 insertions, 0 deletions
diff --git a/tpm-tools/INSTALL b/tpm-tools/INSTALL
new file mode 100644
index 0000000..a33bc6b
--- /dev/null
+++ b/tpm-tools/INSTALL
@@ -0,0 +1,53 @@
+1. Download TPM emulator - ibmtpm974.tar.gz
+ a. cd src/
+ b. make
+ c. Run tpm_server binary - ./tpm_server –rm
+
+2. Download TSS version 1.2.0
+ a. Run following commands
+ i. ./bootstrap
+ ii. ./configure
+ iii. If you face any error for pkg-config,
+ 1. export PKG_CONFIG_PATH=/usr/local/lib/pkgconfig
+ iv. make && make install
+
+3. Download tpm2-abrmd version 1.1.1
+ a. Run following commands
+ i. sudo useradd --system --user-group tss
+ ii. cd tpm2-abrmd
+ iii. ./bootstrap
+ iv. ./configure
+ v. If you face any error for pkg-config,
+ 1. export PKG_CONFIG_PATH=/usr/local/lib/pkgconfig
+ vi. make && make install
+ vii. sudo udevadm control --reload-rules && sudo udevadm trigger
+ viii. sudo pkill -HUP dbus-daemon
+ ix. systemctl daemon-reload
+ b. Run tpm2-abrmd as follows - ./tpm2-abrmd -t socket
+ c. Check in tpm_server whether following debug prints are resulted in console, after resource manager startup
+ Client accepted
+ Client accepted
+
+4. Download tpm2-tools version 2.1.0
+ a. Run the following commands
+ i. ./bootstrap
+ ii. ./configure
+ iii. make && make install
+
+5. Now configure Initialize TPM, configure with Primary key and then save it in TPM’s NV ram
+ a. Initialize TPM
+ i. tpm2_startup -clear -T tabrmd –V
+ b. Take ownership
+ i. tpm2_takeownership -o new -e new -l new -T tabrmd –V
+ c. Create Primary Key
+ i. tpm2_createprimary -P new -A o -g 0x000B -G 0x0001 -T tabrmd -V -C PrimaryKeyBlob
+ d. Save primary Key in NV ram
+ i. tpm2_evictcontrol -A o -c ./PrimaryKeyBlob -S 0x81000011 -T tabrmd -V -P new
+ e. Check Primary Keys public portion
+ i. tpm2_readpublic -H 0x81000011 --opu out_primary_public -T tabrmd –V
+ f. If all the above commands are successful then TPM emulator, TPM resource manager and TPM tools are working fine
+
+6. Now compile the TPM duplication tool with "make" command and run it as per instructions. use "./ossl_tpm_util --help" for usage.
+
+7. Note: If you restart tpm_server, then you have to restart TPM resource manager too. And the repeat from step 5.
+