Package tpm2-tools

A TPM2.0 testing tool build upon TPM2.0-TSS

tpm2-tools is a batch of tools for tpm2.0. It is based on tpm2-tss.

General Commands
Command Description
tpm2_activatecredential Enables access to the credential qualifier to recover the credential secret.
tpm2_certify Prove that an object is loaded in the TPM.
tpm2_changeauth Changes authorization values for TPM objects.
tpm2_checkquote Validates a quote provided by a TPM.
tpm2_clear Clears lockout, endorsement and owner hierarchy authorization values.
tpm2_clearcontrol Set/ Clear TPMA_PERMANENT.disableClear attribute to effectively block/ unblock...
tpm2_create Create a child object.
tpm2_createak Generate attestation key with given algorithm under the endorsement hierarchy.
tpm2_createek Generate TCG profile compliant endorsement key.
tpm2_createpolicy Creates simple assertion authorization policies based on multiple PCR indices...
tpm2_createprimary Create a primary key.
tpm2_dictionarylockout Setup or clear dictionary-attack-lockout parameters.
tpm2_duplicate Duplicates a loaded object so that it may be used in a different hierarchy.
tpm2_encryptdecrypt Performs symmetric encryption or decryption.
tpm2_evictcontrol Make a transient object persistent or evict a persistent object.
tpm2_flushcontext Remove a specified handle, or all contexts associated with a transient object...
tpm2_getcap Display TPM capabilities in a human readable form.
tpm2_getekcertificate Retrieve the Endorsement key Certificate for the TPM endorsement key from the...
tpm2_getrandom Retrieves random bytes from the TPM.
tpm2_gettestresult Get the result of tests performed by the TPM
tpm2_hash Performs a hash operation with the TPM.
tpm2_hierarchycontrol Enable and disable use of a hierarchy and its associated NV storage.
tpm2_hmac Performs an HMAC operation with the TPM.
tpm2_import Imports an external key into the tpm as a TPM managed key object.
tpm2_incrementalselftest Request testing of specified algorithm list
tpm2_load Load an object into the TPM.
tpm2_loadexternal Load an external object into the TPM.
tpm2_makecredential Load an object that is not a Protected Object into the TPM.
tpm2_nvdefine Define a TPM Non-Volatile (NV) index.
tpm2_nvincrement Increment counter in a Non-Volatile (NV) index.
tpm2_nvread Read the data stored in a Non-Volatile (NV)s index.
tpm2_nvreadlock Lock the Non-Volatile (NV) index for further reads.
tpm2_nvreadpublic Display all defined Non-Volatile (NV)s indices.
tpm2_nvundefine Undefine a Non-Volatile (NV) index.
tpm2_nvwrite Write data to a Non-Volatile (NV) index.
tpm2_pcrallocate Configure PCRs and bank algorithms.
tpm2_pcrevent Hashes a file and optionally extends a pcr.
tpm2_pcrextend Extends a PCR.
tpm2_pcrread List PCR values.
tpm2_pcrreset Reset one or more PCR banks
tpm2_policyauthorize Allows for mutable policies by tethering to a signing authority.
tpm2_policycommandcode Restrict TPM object authorization to specific TPM commands.
tpm2_policyduplicationselect Restricts duplication to a specific new parent.
tpm2_policylocality Restrict TPM object authorization to specific localities.
tpm2_policyor logically OR's two policies together.
tpm2_policypassword Enables binding a policy to the authorization value of the authorized TPM...
tpm2_policypcr Create a policy that includes specific PCR values.
tpm2_policyrestart Restart an existing session with the TPM.
tpm2_policysecret Couples the authorization of an object to that of an existing object.
tpm2_print Prints TPM data structures
tpm2_quote Provide a quote and signature from the TPM.
tpm2_rc_decode Decode TPM2 error codes to a human readable format.
tpm2_readpublic Read the public area of a loaded object.
tpm2_rsadecrypt Performs an RSA decryption operation using the TPM.
tpm2_rsaencrypt Performs an RSA encryption operation using the TPM.
tpm2_selftest Run TPM's self-test internal routines
tpm2_send Send a raw command buffer to the TPM.
tpm2_sign Sign a hash using the TPM.
tpm2_startauthsession Start a session with the TPM.
tpm2_startup Send a startup command to the TPM.
tpm2_stirrandom Add "additional information" into TPM RNG state.
tpm2_testparms Verify that specified algorithm suite is supported by TPM
tpm2_unseal Returns a data blob in a loaded TPM object. The data blob is returned in clear.
tpm2_verifysignature Validates a signature using the TPM.