tpm2sh 0.11 - Jarkko Sakkinen

All of lore.kernel.org
 help / color / mirror / Atom feed

From: Jarkko Sakkinen <jarkko@kernel.org>
To: tpm2@lists.linux.dev, linux-integrity@vger.kernel.org
Subject: tpm2sh 0.11
Date: Tue, 14 Oct 2025 19:42:23 +0300	[thread overview]
Message-ID: <aO59byuIXG7fvnyf@kernel.org> (raw)

Hi

Kernel testing focused and somewhat opionated TPM2 tool tpm2sh has
now first usable release:

https://crates.io/crates/tpm2sh/0.11.0

❯ tpm2sh help
Usage: tpm2sh [-d <device>] [--log-format <log-format>] [-P] <command> [<args>]

TPM 2.0 shell

Options:
  -d, --device      device path
  --log-format      log format: 'plain' or 'pretty'
  -P, --plain       print tables without headers and with space-separated
                    columns
  --help, help      display usage information

Commands:
  algorithm         Lists available algorithms supported by the chip.
  certificate       Exports an endorsement key certificate.
  convert           Converts external key files to TPMKey files.
  create            Creates secondary keys.
  create-primary    Creates a new primary key in a specified hierarchy.
  delete            Deletes TPM objects, and cached keys and sessions.
  key               Lists cached keys.
  load              Loads a key under a parent and caches its context.
  memory            Lists objects inside TPM memory.
  pcr-event         Extends a PCR with an event.
  policy            Builds an authorization policy.
  return-code       Prints a TPM return code in human-readable format.
  reset-lock        Resets the dictionary attack lockout counter.
  save              Stores a cached key to non-volatile memory.
  seal              Creates a sealed data object.
  session           Lists cached authorization sessions.
  start-session     Starts a new authorization session.
  unseal            Retrieves data from a sealed data object.

It can convert and load PKCS#1, SEC1 and PKCS#8 keys into TPMKey files,
which makes it practical with kernel interfaces.

BR, Jarkko

                 reply	other threads:[~2025-10-14 16:42 UTC|newest]

Thread overview: [no followups] expand[flat|nested]  mbox.gz  Atom feed

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=aO59byuIXG7fvnyf@kernel.org \
    --to=jarkko@kernel.org \
    --cc=linux-integrity@vger.kernel.org \
    --cc=tpm2@lists.linux.dev \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.