crypto: make certificate key an openssl one and split out crypto processing

The certificate key is really only used for an attestation and doesn't
necessarily need TPM protection, so make it an openssl key for now
(potentially later adding the engine).

Signed-off-by: James Bottomley <James.Bottomley@HansenPartnership.com>
7 files changed