| 12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152 |
- # SPDX-License-Identifier: BSD-3-Clause
- source helpers.sh
- cleanup() {
- rm -f primary.ctx decrypt.ctx key.pub key.priv key.name decrypt.out \
- encrypt.out secret.dat key.dat evict.log primary.ctx key.ctx
- if [ "$1" != "no-shut-down" ]; then
- shut_down
- fi
- }
- trap cleanup EXIT
- start_up
- cleanup "no-shut-down"
- tpm2 clear -Q
- tpm2 createprimary -Q -C e -g sha256 -G rsa -c primary.ctx
- tpm2 create -Q -g sha256 -G aes -u key.pub -r key.priv -C primary.ctx
- tpm2 load -Q -C primary.ctx -u key.pub -r key.priv -n key.name -c key.dat
- # Load the context into a specific handle, delete it
- tpm2 evictcontrol -Q -c key.dat 0x81010003
- tpm2 evictcontrol -Q -c 0x81010003 0x81010003
- # Load the context into a specific handle, delete it without an explicit -p
- tpm2 evictcontrol -Q -C o -c key.dat 0x81010003
- tpm2 evictcontrol -Q -C o -c 0x81010003
- # Load the context into an available handle, delete it
- tpm2 evictcontrol -C o -c key.dat > evict.log
- phandle=$(yaml_get_kv evict.log "persistent-handle")
- tpm2 evictcontrol -Q -C o -c $phandle
- yaml_verify evict.log
- # verify that platform hierarchy auto selection for persistent handle works
- tpm2 createprimary -C p -c primary.ctx
- tpm2 create -C primary.ctx -c key.ctx
- tpm2 evictcontrol -C p -c key.ctx > evict.log
- phandle=$(yaml_get_kv evict.log persistent-handle)
- tpm2 evictcontrol -C p -c $phandle
- exit 0
|
