lcp_writepol man page

lcp_writepol — write LCP policy into a TPM NV index

Synopsis

lcp_writepol -i index-value [-f policy-file-e] [-p passwd] [-h]

Description

lcp_writepol is used to write LCP policy into a (previously-defined) TPM NV index. It also  supports writing arbitrary data into a specified index.

Options

-i index-value

Designate the index for writing. Index can be UINT32 or string. 3 strings are supported for the reserved LCP indices. Strings and default index  values for each string are:

default

0x50000001(INDEX_LCP_DEF)

owner

0x40000001(INDEX_LCP_OWN)

aux

0x50000002(INDEX_LCP_AUX)

-f policy-file

File name where the policy data is stored.

-e

Write 0 length data to the index. This is useful for special indices, such as those permission is WRITEDFINE.

-p password

The TPM owner password

-h

Print out the help message

Examples

lcp_writepol -i default -f policy-file

lcp_writepol -i 0x00011101 -e

lcp_writepol -i 0x00011101 -f policy-file -p 123456

See Also

lcp_readpol(8), lcp_crtpol(8).

Referenced By

lcp_crtpconf(8), lcp_crtpol(8), lcp_mlehash(8), lcp_readpol(8).

2011-12-31 tboot User Manuals