tpm2_getpubak − program to do get Public AK key
tpm2_getpubak [{−e | −−endorsePasswd} password] [{−P | −−akPasswd} password] [{−o | −−ownerPasswd} password] [{−E | −−ekHandle} hexHandle] [{−k | −−akHandle} hexHandle] [{−g | −−alg} hexAlg] [{−D | −−digestAlg} hexAlg] [{−s | −−signAlg} hexAlg] [{−f | −−file} outputFile] [{−n | −−akName} akNameFile] |
|
tpm2_getpubak [{−e | −−endorsePasswd} password] [{−P | −−akPasswd} password] [{−o | −−ownerPasswd} password] [{−E | −−ekHandle} hexHandle] [{−k | −−akHandle} hexHandle] [{−g | −−alg} hexAlg] [{−D | −−digestAlg} hexAlg] [{−s | −−signAlg} hexAlg] [{−f | −−file} outputFile] [{−n | −−akName} akNameFile] [{−X | −−passwdInHex}] [{−p | −−port} port] [{−d | −−dbg} dbgLevel] |
|
tpm2_getpubak [{−h | −−help} | {−v | −−version}] |
This manual page documents briefly the tpm2_getpubak command.
This manual page was written for the Debian distribution because the original program does not have a manual page.
tpm2_getpubak is a program to get public AK key
The program follows the usual GNU command line syntax, with long options starting with two dashes (‘−'). A summary of options is included below.
−e password, −−endorsePasswd=password
specifies current endorsement password (string, optional, default:NULL).
−P password, −−akPasswd=password
specifies the AK password when created (string, optional, default:NULL).
−o password, −−ownerPasswd=password
specifies current owner password (string, optional, default:NULL).
−e hexHandle, −−ekHandle=hexHandle
specifies the handle of EK (hex).
−k hexHandle, −−akHandle=hexHandle
specifies the handle used to make AK persistent (hex).
−g hexAlg, −−alg=hexAlg
specifies the algorithm type of AK (default:0x01/TPM_ALG_RSA):
• 0x0001 − TPM_ALG_RSA
• 0x0008 − TPM_ALG_KEYEDHASH
• 0x0023 − TPM_ALG_ECC
−D hexAlg, −−digestAlg=hexAlg
specifies the algorithm of digest.
• 0x0004 − TPM_ALG_SHA1
• 0x000B − TPM_ALG_SHA256
• 0x000C − TPM_ALG_SHA384
• 0x000D − TPM_ALG_SHA512
• 0x0012 − TPM_ALG_SM3_256
−s hexAlg, −−signAlg=hexAlg
specifies the algorithm of digest.
• 0x0005 − TPM_ALG_HMAC
• 0x0014 − TPM_ALG_RSASSA
• 0x0016 − TPM_ALG_RSAPSS
• 0x0018 − TPM_ALG_ECDSA
• 0x001A − TPM_ALG_ECDAA
• 0x001B − TPM_ALG_SM2
• 0x001C − TPM_ALG_EC2SCHNORR
−f outputFile, −−file=outputFile
specifies the file used to save the public portion of AK.
−n aknameFile, −−akName=aknameFile
specifies the file used to save the ak name.
−X, −−passwdInHex
passwords given by any options are hex format.
−p port, −−port=port
specifies the port number (default:2323).
−d dbgLevel, −−dbg=dbgLevel
specifies level of debug messages (optional, default:0):
• 0 − (high level test results)
• 1 − (test app send/receive byte streams)
• 2 − (resource manager send/receive byte streams)
• 3 − (resource manager tables)
−h, −−help
Show summary of options.
−v, −−version
Show version of program.
tpm2_getpubak provides some return codes, that can be used in scripts:
The upstreams BTS can be found at https://github.com/01org/tpm2.0-tools/issues.
tpm2_activatecredential(8), tpm2_akparse(8), tpm2_certify(8), tpm2_create(8), tpm2_createprimary(8), tpm2_encryptdecrypt(8), tpm2_evictcontrol(8), tpm2_getmanufec(8), tpm2_getpubek(8), tpm2_getrandom(8), tpm2_hash(8), tpm2_hmac(8), tpm2_listpcrs(8), tpm2_listpersistent(8), tpm2_load(8), tpm2_loadexternal(8), tpm2_makecredential(8), tpm2_nvdefine(8), tpm2_nvlist(8), tpm2_nvread(8), tpm2_nvreadlock(8), tpm2_nvrelease(8), tpm2_nvwrite(8), tpm2_quote(8), tpm2_rc_decode(8), tpm2_readpublic(8), tpm2_rsadecrypt(8), tpm2_rsaencrypt(8), tpm2_sign(8), tpm2_takeownership(8), tpm2_unseal(8), tpm2_verifysignature(8)
Ying−Chun Liu <paulliu@debian.org>
Wrote this manpage for the Debian system.
Copyright © 2017 Ying-Chun Liu (PaulLiu)
This manual page was written for the Debian system (and may be used by others).
Permission is granted to copy, distribute and/or modify this document under the terms of the GNU General Public License, Version 3 or (at your option) any later version published by the Free Software Foundation.
On Debian systems, the complete text of the GNU General Public License can be found in /usr/share/common−licenses/GPL−3.