summaryrefslogblamecommitdiffstats
path: root/server/ipxe/bash_scripts/tpm.sh
blob: faba4b391b363d613da79f88a84aa0f5e027a8e6 (plain) (tree)
1
2
3
4
5
6
7
8
9
10
11
12
           

            
                                 
                           






                                                                                                        
                                                                                                                                                       
  
#!/bin/bash
set -x
exec &> /log
# Check if the pc has tpm enabled
if [ -c "/dev/tpm0" ]; then
  export TPM_INTERFACE_TYPE=dev
  export TPM_DEVICE=/dev/tpm0
  mkdir /run/tpm/
  openssl genrsa -out /run/tpm/$UUID-ssl-private.pem 2048
  openssl rsa -in /run/tpm/$UUID-ssl-private.pem -out /run/tpm/$UUID-ssl-public.pem -outform PEM -pubout
  create_tpm2_key -w /run/tpm/$UUID-ssl-private.pem -p 81000001 /run/tpm/$UUID-tpm-private.key

  curl -X PUT -F "tpm=@/run/tpm/$UUID-tpm-private.key" -F "openssl=@/run/tpm/$UUID-ssl-public.pem" --insecure https://$BAS/api/registration/$UUID/files
fi