Merge pull request #4 from jumpstarter-dev/tpm-testingn-and-scheduling

Add TPM testing steps to fedora, and scheduling.
jumpstarter-dev · Jan 30, 2024 · e12a599 · e12a599
2 parents 446fec2 + dc555ba
commit e12a599
Show file tree

Hide file tree

Showing 2 changed files with 24 additions and 0 deletions.
diff --git a/...hub/workflows/jumpstarter-gh-actions.yaml → ...ws/jumpstarter-pr-push-and-scheduled.yaml b/...hub/workflows/jumpstarter-gh-actions.yaml → ...ws/jumpstarter-pr-push-and-scheduled.yaml
@@ -4,6 +4,8 @@ on:
   push:
     branches:
       - main
+  schedule:
+    - cron: "30 8 * * *"
   pull_request:
 
 permissions:

diff --git a/fedora-rawhide/test-tpm-on-latest-raw.yaml b/fedora-rawhide/test-tpm-on-latest-raw.yaml
@@ -61,6 +61,28 @@ steps:
       this: "Complete!"
       timeout: 500
 
+  - comment: "Verifying TPM interactions via tpm2 tools"
+  - send:
+      this:
+        - "tpm2_createprimary -C e -c primary.ctx\n"
+        - "tpm2_create -G rsa -u key.pub -r key.priv -C primary.ctx\n"
+        - "tpm2_load -C primary.ctx -u key.pub -r key.priv -c key.ctx\n"
+        - "echo my message > message.dat\n"
+        - "tpm2_sign -c key.ctx -g sha256 -o sig.rssa message.dat\n"
+        - "tpm2_verifysignature -c key.ctx -g sha256 -s sig.rssa -m message.dat\n"
+        - "echo result: $?\n"
+
+  - expect:
+      this: "value: fixedtpm|fixedparent|sensitivedataorigin|userwithauth|restricted|decrypt"
+  - expect:
+      this: "fixedtpm|fixedparent|sensitivedataorigin|userwithauth|decrypt|sign"
+  - expect:
+      this: "name: "
+  - expect:
+      this: "result: 0"
+  - expect:
+      this: "# "
+
 cleanup:
   - send:
       this: