tpm2sh 0.11 - Jarkko Sakkinen

linux-integrity.vger.kernel.org archive mirror
 help / color / mirror / Atom feed

From: Jarkko Sakkinen <jarkko@kernel.org>
To: tpm2@lists.linux.dev, linux-integrity@vger.kernel.org
Subject: tpm2sh 0.11
Date: Tue, 14 Oct 2025 19:42:23 +0300	[thread overview]
Message-ID: <aO59byuIXG7fvnyf@kernel.org> (raw)

Hi

Kernel testing focused and somewhat opionated TPM2 tool tpm2sh has
now first usable release:

https://crates.io/crates/tpm2sh/0.11.0

❯ tpm2sh help
Usage: tpm2sh [-d <device>] [--log-format <log-format>] [-P] <command> [<args>]

TPM 2.0 shell

Options:
  -d, --device      device path
  --log-format      log format: 'plain' or 'pretty'
  -P, --plain       print tables without headers and with space-separated
                    columns
  --help, help      display usage information

Commands:
  algorithm         Lists available algorithms supported by the chip.
  certificate       Exports an endorsement key certificate.
  convert           Converts external key files to TPMKey files.
  create            Creates secondary keys.
  create-primary    Creates a new primary key in a specified hierarchy.
  delete            Deletes TPM objects, and cached keys and sessions.
  key               Lists cached keys.
  load              Loads a key under a parent and caches its context.
  memory            Lists objects inside TPM memory.
  pcr-event         Extends a PCR with an event.
  policy            Builds an authorization policy.
  return-code       Prints a TPM return code in human-readable format.
  reset-lock        Resets the dictionary attack lockout counter.
  save              Stores a cached key to non-volatile memory.
  seal              Creates a sealed data object.
  session           Lists cached authorization sessions.
  start-session     Starts a new authorization session.
  unseal            Retrieves data from a sealed data object.

It can convert and load PKCS#1, SEC1 and PKCS#8 keys into TPMKey files,
which makes it practical with kernel interfaces.

BR, Jarkko

                 reply	other threads:[~2025-10-14 16:42 UTC|newest]

Thread overview: [no followups] expand[flat|nested]  mbox.gz  Atom feed

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=aO59byuIXG7fvnyf@kernel.org \
    --to=jarkko@kernel.org \
    --cc=linux-integrity@vger.kernel.org \
    --cc=tpm2@lists.linux.dev \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).