fix(tee-key-preexec): export the key in PEM

makes it easier to import Signed-off-by: Harald Hoyer <harald@matterlabs.dev>
2025-07-22 07:24:48 +02:00 · 2024-06-13 13:59:55 +02:00 · 2024-06-13 13:59:55 +02:00 · d77243b8fd
commit d77243b8fd
parent 60b75938ff
1 changed files with 3 additions and 2 deletions
--- a/bin/tee-key-preexec/src/main.rs
+++ b/bin/tee-key-preexec/src/main.rs
@ -7,8 +7,9 @@
 #![deny(clippy::all)]
 use anyhow::{Context, Result};
 use hex::ToHex;
 use k256::ecdsa::SigningKey;
 use k256::pkcs8::{EncodePrivateKey, LineEnding};
 use std::env;
 use std::os::unix::process::CommandExt;
 use std::process::Command;
@ -39,7 +40,7 @@ fn main_with_error() -> Result<()> {
    let mut rng = rand::thread_rng();
    let signing_key = SigningKey::random(&mut rng);
    let verifying_key_bytes = signing_key.verifying_key().to_sec1_bytes();
-    let signing_key_string = signing_key.to_bytes().encode_hex::<String>();
+    let signing_key_string = signing_key.to_pkcs8_pem(LineEnding::LF)?;
    let tee_type = match get_quote(&verifying_key_bytes) {
        Ok(quote) => {
            // save quote to file