From 2ac563372735668ac9687c57e35e39c3e4553ff0 Mon Sep 17 00:00:00 2001 From: Arun kumar Sekar Date: Fri, 30 Mar 2018 11:20:30 -0700 Subject: Utility to Import external RSA pem key into TPM Duplicate tool - Takes RSA private key in pem format as input and generates TPM structured buffers as expected by tpm Import Import tool - Takes input buffers from Duplicate tool and results in pub/priv blobs which can be used to load the key in tpm storage heirarchy's as child to primary key Change-Id: I0af6676895ce0cc22c70e5546908e905b78bb71e Issue-ID: AAF-207 Signed-off-by: Arun kumar Sekar --- tpm-util/INSTALL | 8 ++++++-- 1 file changed, 6 insertions(+), 2 deletions(-) (limited to 'tpm-util/INSTALL') diff --git a/tpm-util/INSTALL b/tpm-util/INSTALL index a33bc6b..09cb5d4 100644 --- a/tpm-util/INSTALL +++ b/tpm-util/INSTALL @@ -1,4 +1,5 @@ -1. Download TPM emulator - ibmtpm974.tar.gz +1. Download TPM emulator - ibmtpm974.tar.gz +(Note: Optional. No need to execute this step if the system has real TPM device on it) a. cd src/ b. make c. Run tpm_server binary - ./tpm_server –rm @@ -35,6 +36,7 @@ iii. make && make install 5. Now configure Initialize TPM, configure with Primary key and then save it in TPM’s NV ram +(Equivalent of script - initandverify/Init_and_create_tpm_primary.sh, you can run that script) a. Initialize TPM i. tpm2_startup -clear -T tabrmd –V b. Take ownership @@ -47,7 +49,9 @@ i. tpm2_readpublic -H 0x81000011 --opu out_primary_public -T tabrmd –V f. If all the above commands are successful then TPM emulator, TPM resource manager and TPM tools are working fine -6. Now compile the TPM duplication tool with "make" command and run it as per instructions. use "./ossl_tpm_util --help" for usage. +6. Now compile the TPM duplication and import tools with "make" command (after creation of Makefile) and run it as per instructions. + use "./ossl_tpm_duplicate --help" for usage. + use "./ossl_tpm_import --help" for usage. 7. Note: If you restart tpm_server, then you have to restart TPM resource manager too. And the repeat from step 5. -- cgit 1.2.3-korg