| Manjunath Ranganathaiah | 4c48eea | 2018-07-27 15:10:11 -0700 | [diff] [blame^] | 1 | Create folder under /tmp/volume/host_<host name> for each host (example |
| 2 | host_sample where sample is the name of the tpm capable host). |
| 3 | This folder will be mounted into the container as shared volume for now. |
| 4 | |
| 5 | Expects the input SRK pulic key "out_parent_public" for each host under |
| 6 | the corresponding host directory and file "passphrase" under /tmp/volume/ |
| 7 | containing the passphrase to encrypt the key. |
| 8 | |
| 9 | example |
| 10 | |
| 11 | /tmp/volume/host_sample/out_parent_public |
| 12 | /tmp/volume/passphrase |
| 13 | |
| 14 | Build the container using |
| 15 | |
| 16 | docker build --no-cache -t dist-center . |
| 17 | |
| 18 | Run it mounting the volume |
| 19 | |
| 20 | docker run -v /tmp/volume:/volume dist-center |
| 21 | |
| 22 | This will output the following files in /tmp/volume/host_<host name> |
| 23 | |
| 24 | ca.cert |
| 25 | dupEncKey |
| 26 | dupPriv |
| 27 | dupPub |
| 28 | dupSymseed |
| 29 | |
| 30 | Encrypted private key and certificate under /tmp/volume |
| 31 | |
| 32 | ca.cert |
| 33 | privkey.pem.gpg |