tss2_delete(1) — This command deletes the given key, policy or NV from the FAPI keystore and the TPM. Depending on the entity type, one of the following actions are taken:
- Non-persistent key: Flush from TPM (if loaded) and delete public and private blobs from keystore. - Persistent keys: Evict from TPM and delete public and private blobs from keystore - Primary keys: Flush from TPM and delete public blob from keystore - NV index: Undefine NV index from TPM and delete public blob from metadata store - Policies: Delete entry from policy store - Hierarchy, PCR: These are not deletable - Special keys ek, srk: These are not deletable
These are the available options:
-p, --path STRING:
The path to the entity to delete.
This collection of options are common to all tss2 programs and provide information that many users may expect.
-h, --help [man|no-man]: Display the tools manpage. By default, it attempts to invoke the manpager for the tool, however, on failure will output a short tool summary. This is the same behavior if the “man” option argument is specified, however if explicit “man” is requested, the tool will provide errors from man on stderr. If the “no-man” option if specified, or the manpager fails, the short options will be output to stdout.
To successfully use the manpages feature requires the manpages to be installed or on MANPATH, See man(1) for more details.
- -v, --version: Display version information for this tool, supported tctis and exit.
Deletes storage hierarchy (HS) and everything below it
tss2_delete --path /HS
0 on success or 1 on failure.
Github Issues (https://github.com/tpm2-software/tpm2-tools/issues)
See the Mailing List (https://lists.01.org/mailman/listinfo/tpm2)