Skip to content

Commit

Permalink
tests: verify device CA chain on rendezvous server
Browse files Browse the repository at this point in the history 
Use device CA cert instead of manufacturer's public key
to verify the device CA chain.

Signed-off-by: Miguel Martín <[email protected]>
  • Loading branch information
@mmartinv
mmartinv committed Apr 2, 2024
1 parent 8e6c6a2 commit a7c4c1b
Show file tree
Hide file tree
Showing 2 changed files with 2 additions and 2 deletions.
2 changes: 1 addition & 1 deletion test/fdo/rendezvous-server.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,6 +5,6 @@ storage_driver:
session_store_driver:
Directory:
path: /etc/fdo/stores/rendezvous_sessions
trusted_manufacturer_keys_path: /etc/fdo/keys/manufacturer_cert.pem
trusted_manufacturer_keys_path: /etc/fdo/keys/device_ca_cert.pem
max_wait_seconds: ~
bind: "0.0.0.0:8082"
2 changes: 1 addition & 1 deletion test/fmf/tests/onboarding/run-onboarding.sh
View file
Original file line number Diff line number Diff line change
Expand Up @@ -157,7 +157,7 @@ storage_driver:
session_store_driver:
Directory:
path: ${STORES_DIR}/rendezvous_sessions
trusted_manufacturer_keys_path: ${KEYS_DIR}/manufacturer_cert.pem
trusted_manufacturer_keys_path: ${KEYS_DIR}/device_ca_cert.pem
max_wait_seconds: ~
bind: "0.0.0.0:8082"
EOF
Expand Down

0 comments on commit a7c4c1b

Please sign in to comment.