Training courses

Kernel and Embedded Linux

Bootlin training courses

Embedded Linux, kernel,
Yocto Project, Buildroot, real-time,
graphics, boot time, debugging...

Bootlin logo

Elixir Cross Referencer

Open Menu /crypto/external/cpl/tpm-tools/dist/man/man8/tpm_restrictpubek.8 
 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
.\" Copyright (C) 2005 International Business Machines Corporation
.\"
.de Sh \" Subsection
.br
.if t .Sp
.ne 5
.PP
\fB\\$1\fR
.PP
..
.de Sp \" Vertical space (when we can't use .PP)
.if t .sp .5v
.if n .sp
..
.de Ip \" List item
.br
.ie \\n(.$>=3 .ne \\$3
.el .ne 3
.IP "\\$1" \\$2
..
.TH "tpm_restrictpubek" 8 "2005-05-05"  "TPM Management"
.ce 1
TPM Management - tpm_restrictpubek 
.SH NAME
tpm_restrictpubek \- restrict the ability to display the public portion of the Endorsement Key to the owner
.SH "SYNOPSIS"
.ad l
.hy 0
.B tpm_restrictpubek
.RB [ OPTION ]

.SH "DESCRIPTION"
.PP
\fBtpm_restrictpubek\fR reports the status of who can display the public portion of the Endorsement Key.  This is the default behavior and also available with the \fB\-\-status\fR option.  This operation will be in effect until the owner is cleared and prompts for the owner passord. With the \fB\-\-restrict\fR option, the ability to display the public portion of the Endorsement Key is resticted to the owner 
(via the TPM_DisablePubekRead API).  The command prompts for the owner password to complete the operation.   The \fB\-\-status\fR and \fB\-\-restrict\fR options are mutually exclusive and the last one on the command line will be carried out.

.TP
\fB\-h\fR, \fB\-\-help\fR
Display command usage info.
.TP
\fB-v\fR, \fB\-\-version\fR
Display command version info.
.TP
\fB-l\fR, \fB\-\-log\fR [none|error|info|debug]
Set logging level.
.TP
\fB-u\fR, \fB\-\-unicode\fR
Use TSS UNICODE encoding for passwords to comply with applications using TSS popup boxes
.TP
\fB-s\fR, \fB\-\-status\fR
Display the status of who can see the public portion of the Endorsement Key
.TP
\fB-r\fR, \fB\-\-restrict\fR
Restrict seeing the public portion of the Endorsement Key to the owner
.TP
\fB-z\fR, \fB\-\-well-known\fR
Authenticate using 20 bytes of zeros as owner password (the default TSS Well Known Secret), instead of prompting for an owner password.

.SH "SEE ALSO"
.PP
\fBtpm_version\fR(1), \fBtpm_takeownership\fR(8), \fBtpm_getpubek\fR(8), \fBtcsd\fR(8)

.SH "REPORTING BUGS"
Report bugs to <trousers-users@lists.sourceforge.net>