Home Explore Help
Sign In
Delease
/
Blocktree
2
0
Fork 0
Files Issues 7 Pull Requests 0 Wiki
Tree: c05ad2ed5d
Branches Tags
Blocktree
/
crates
/
btlib
/
scripts
/
swtpm.sh

swtpm.sh 2.0 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293 
  1. #!/bin/sh
    2. 

  2. # Script for provisioning and running the swtpm emulator. This script can only be run by a user with
    3. 

  3. # sudo privileges.
    4. 

  4. set -e
    5. 

  5. 

  6. # The name of the virtual TPM device. This will determine the name of the device under /dev.
    7. 

  7. TPM_NAME=vtpm0
    8. 

  8. # The path to the directory where the TPM's state will be stored.
    9. 

  9. TPM_PATH=/tmp/$TPM_NAME
    10. 

  10. # The file where swtpm's pid will be stored.
    11. 

  11. TPM_PID=$TPM_PATH/swtpm.pid
    12. 

  12. # The file where tpm2-abrmd's pid will be stored.
    13. 

  13. TPM_ABRMD_PID=$TPM_PATH/tpm2-abrmd.pid
    14. 

  14. TPM_ADDR=127.0.0.1
    15. 

  15. TPM_PORT=2321
    16. 

  16. 

  17. setup() {
    18. 

  18.     mkdir -p $TPM_PATH
    19. 

  19.     swtpm_setup --config swtpm_setup.conf --tpm-state dir://$TPM_PATH \
    20. 

  20.         --tpm2 --ecc --createek --display
    21. 

  21. }
    22. 

  22. 

  23. start() {
    24. 

  24.     if [ ! -d $TPM_PATH ]; then
    25. 

  25.         setup
    26. 

  26.     fi
    27. 

  27.     if [ -f $TPM_PID ]; then
    28. 

  28.         echo "swtpm is already running with PID $(cat $TPM_PID)."
    29. 

  29.         exit 1
    30. 

  30.     fi
    31. 

  31.     swtpm socket --server type=tcp,port=$TPM_PORT,bindaddr=$TPM_ADDR \
    32. 

  32.         --ctrl type=tcp,port=$(($TPM_PORT + 1)),bindaddr=$TPM_ADDR \
    33. 

  33.         --tpm2 --log file=$TPM_PATH/log.txt,level=5 \
    34. 

  34.         --flags not-need-init,startup-clear --pid file=$TPM_PID \
    35. 

  35.         --tpmstate dir=$TPM_PATH --daemon
    36. 

  36.     if [ "$UID" = 0 ]; then
    37. 

  37.         # If this script was run as root, then connect to the system bus.
    38. 

  38.         tpm2-abrmd --tcti="swtpm:host=$TPM_ADDR" --allow-root &
    39. 

  39.     else
    40. 

  40.         tpm2-abrmd --tcti="swtpm:host=$TPM_ADDR" --session &
    41. 

  41.     fi
    42. 

  42.     echo -n $! > $TPM_ABRMD_PID
    43. 

  43. }
    44. 

  44. 

  45. kill_from_file() {
    46. 

  46.     pid=$(cat $1)
    47. 

  47.     kill -s TERM $pid
    48. 

  48. }
    49. 

  49. 

  50. stop() {
    51. 

  51.     if [ ! -f $TPM_PID ]; then
    52. 

  52.         echo "swtpm is not running."
    53. 

  53.         exit 1
    54. 

  54.     fi
    55. 

  55.     kill_from_file $TPM_ABRMD_PID
    56. 

  56.     rm $TPM_ABRMD_PID
    57. 

  57.     kill_from_file $TPM_PID
    58. 

  58. }
    59. 

  59. 

  60. restart() {
    61. 

  61.     stop
    62. 

  62.     sleep 0.2
    63. 

  63.     start
    64. 

  64. }
    65. 

  65. 

  66. purge() {
    67. 

  67.     if [ -f $TPM_PID ]; then
    68. 

  68.         stop
    69. 

  69.     fi
    70. 

  70.     rm -rf $TPM_PATH
    71. 

  71. }
    72. 

  72. 

  73. usage() {
    74. 

  74.     echo "${0} <start|stop|restart>"
    75. 

  75. }
    76. 

  76. 

  77. case "${1}" in
    78. 

  78.     start)
    79. 

  79.         start
    80. 

  80.         ;;
    81. 

  81.     stop) 
    82. 

  82.         stop
    83. 

  83.         ;;
    84. 

  84.     restart)
    85. 

  85.         restart
    86. 

  86.         ;;
    87. 

  87.     purge)
    88. 

  88.         purge
    89. 

  89.         ;;
    90. 

  90.     *)
    91. 

  91.         usage
    92. 

  92.         ;;
    93. 

  93. esac
    94.