fix(sztp): use correct nvidia-serial-number

Fixes #19

before this change when trying to use something
other then `my-serial-number` resulted in error
`type=protocol, tag=access-denied`

found the serial is extracted from certificate.

Next patch will generate cert per device not just nvda

Signed-off-by: Boris Glimcher <Boris.Glimcher@emc.com>

sztp.md

@@ -74,5 +74,9 @@ docker run --rm -it --network=host \
   --mount type=bind,source=/etc/os-release,target=/etc/os-release \
   --mount type=bind,source=${DHCLIENT_LEASE_FILE},target=/var/lib/dhclient/dhclient.leases \
   ghcr.io/opiproject/opi-sztp-client:main \
-  /opi-sztp-agent daemon --bootstrap-trust-anchor-cert /mnt/opi.pem --device-end-entity-cert /mnt/opi_cert.pem --device-private-key /mnt/opi_private_key.pem
+  /opi-sztp-agent daemon \
+  --bootstrap-trust-anchor-cert /mnt/opi.pem \
+  --device-end-entity-cert /mnt/opi_cert.pem \
+  --device-private-key /mnt/opi_private_key.pem \
+  --serial-number nvidia-serial-number
 ```

sztp/key.sh

@@ -10,6 +10,7 @@ pushd ${MYTMPDIR}/sztpd-simulator/pki
 echo "DNS.2 = bootstrap" >> sztpd1/sbi/end-entity/openssl.cnf
 echo "DNS.3 = web" >> sztpd1/sbi/end-entity/openssl.cnf
 echo "DNS.4 = redirecter" >> sztpd1/sbi/end-entity/openssl.cnf
+sed -i 's/my-serial-number/nvidia-serial-number/g' client/end-entity/openssl.cnf
 make pki
 # SBI Port certificates
 cat sztpd1/sbi/end-entity/my_cert.pem sztpd1/sbi/intermediate2/my_cert.pem > ${MYTMPDIR}/sztpd-simulator/cert_chain.pem

sztp/template.json

@@ -107,7 +107,7 @@
   "wn-sztpd-1:devices": {
     "device": [
       {
-        "serial-number": "my-serial-number",
+        "serial-number": "nvidia-serial-number",
         "device-type": "my-device-type",
         "activation-code": "$0$my-secret",
         "response-manager": {