Home Explore Help
Sign In
SoftwareDesign
/
csu3_am335x
8
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
csu3_am335x
/
EVSE
/
GPL
/
tpm2-tools-5.1
/
man
/
man1
/
tpm2_certifyX509certutil.1

tpm2_certifyX509certutil.1 4.0 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136 
  1. .\" Automatically generated by Pandoc 1.19.2.4
    2. 

  2. .\"
    3. 

  3. .TH "tpm2_certifyX509certutil" "1" "" "tpm2\-tools" "General Commands Manual"
    4. 

  4. .hy
    5. 

  5. .SH NAME
    6. 

  6. .PP
    7. 

  7. \f[B]tpm2_certifyX509certutil\f[](1) \- Generate partial X509
    8. 

  8. certificate.
    9. 

  9. .SH SYNOPSIS
    10. 

  10. .PP
    11. 

  11. \f[B]tpm2_certifyX509certutil\f[] [\f[I]OPTIONS\f[]]
    12. 

  12. .SH DESCRIPTION
    13. 

  13. .PP
    14. 

  14. \f[B]tpm2_certifyX509certutil\f[](1) \- Generates a partial certificate
    15. 

  15. that is suitable as the third input parameter for TPM2_certifyX509
    16. 

  16. command.
    17. 

  17. The certificate data is written into a file in DER format and can be
    18. 

  18. examined using openssl asn1parse tool as follows:
    19. 

  19. .IP
    20. 

  20. .nf
    21. 

  21. \f[C]
    22. 

  22. openssl\ asn1parse\ \-in\ partial_cert.der\ \-inform\ DER
    23. 

  23. \f[]
    24. 

  24. .fi
    25. 

  25. .SH OPTIONS
    26. 

  26. .PP
    27. 

  27. These are the available options:
    28. 

  28. .IP \[bu] 2
    29. 

  29. \f[B]\-o\f[], \f[B]\-\-outcert\f[]=\f[I]STRING\f[]: The output file
    30. 

  30. where the certificate will be written to.
    31. 

  31. The default is partial_cert.der Optional parameter.
    32. 

  32. .IP \[bu] 2
    33. 

  33. \f[B]\-d\f[], \f[B]\-\-days\f[]=\f[I]NUMBER\f[]: The number of days the
    34. 

  34. certificate will be valid starting from today.
    35. 

  35. The default is 3560 (10 years) Optional parameter.
    36. 

  36. .IP \[bu] 2
    37. 

  37. \f[B]\-i\f[], \f[B]\-\-issuer\f[]=\f[I]STRING\f[]: The ISSUER entry for
    38. 

  38. the cert in the following format: \-\-issuer="C=US;O=org;OU=Org
    39. 

  39. unit;CN=cname" Supported fields are:
    40. 

  40. .RS 2
    41. 

  41. .IP \[bu] 2
    42. 

  42. C \- "Country", max size = 2
    43. 

  43. .IP \[bu] 2
    44. 

  44. O \- "Org", max size = 8
    45. 

  45. .IP \[bu] 2
    46. 

  46. OU \- "Org Unit", max size = 8
    47. 

  47. .IP \[bu] 2
    48. 

  48. CN \- "Common Name", max size = 8 The files need to be separated with
    49. 

  49. semicolon.
    50. 

  50. At list one supported field is required for the option to be valid.
    51. 

  51. Optional parameter.
    52. 

  52. .RE
    53. 

  53. .IP \[bu] 2
    54. 

  54. \f[B]\-s\f[], \f[B]\-\-subject\f[]=\f[I]STRING\f[]: The SUBJECT for the
    55. 

  55. cert in the following format: \-\-subject="C=US;O=org;OU=Org
    56. 

  56. unit;CN=cname" Supported fields are:
    57. 

  57. .RS 2
    58. 

  58. .IP \[bu] 2
    59. 

  59. C \- "Country", max size = 2
    60. 

  60. .IP \[bu] 2
    61. 

  61. O \- "Org", max size = 8
    62. 

  62. .IP \[bu] 2
    63. 

  63. OU \- "Org Unit", max size = 8
    64. 

  64. .IP \[bu] 2
    65. 

  65. CN \- "Common Name", max size = 8 The files need to be separated with
    66. 

  66. semicolon.
    67. 

  67. At list one supported field is required for the option to be valid.
    68. 

  68. Optional parameter.
    69. 

  69. .RE
    70. 

  70. .IP \[bu] 2
    71. 

  71. \f[B]ARGUMENT\f[] No arguments required.
    72. 

  72. .SS References
    73. 

  73. .SH COMMON OPTIONS
    74. 

  74. .PP
    75. 

  75. This collection of options are common to many programs and provide
    76. 

  76. information that many users may expect.
    77. 

  77. .IP \[bu] 2
    78. 

  78. \f[B]\-h\f[], \f[B]\-\-help=[man|no\-man]\f[]: Display the tools
    79. 

  79. manpage.
    80. 

  80. By default, it attempts to invoke the manpager for the tool, however, on
    81. 

  81. failure will output a short tool summary.
    82. 

  82. This is the same behavior if the "man" option argument is specified,
    83. 

  83. however if explicit "man" is requested, the tool will provide errors
    84. 

  84. from man on stderr.
    85. 

  85. If the "no\-man" option if specified, or the manpager fails, the short
    86. 

  86. options will be output to stdout.
    87. 

  87. .RS 2
    88. 

  88. .PP
    89. 

  89. To successfully use the manpages feature requires the manpages to be
    90. 

  90. installed or on \f[I]MANPATH\f[], See man(1) for more details.
    91. 

  91. .RE
    92. 

  92. .IP \[bu] 2
    93. 

  93. \f[B]\-v\f[], \f[B]\-\-version\f[]: Display version information for this
    94. 

  94. tool, supported tctis and exit.
    95. 

  95. .IP \[bu] 2
    96. 

  96. \f[B]\-V\f[], \f[B]\-\-verbose\f[]: Increase the information that the
    97. 

  97. tool prints to the console during its execution.
    98. 

  98. When using this option the file and line number are printed.
    99. 

  99. .IP \[bu] 2
    100. 

  100. \f[B]\-Q\f[], \f[B]\-\-quiet\f[]: Silence normal tool output to stdout.
    101. 

  101. .IP \[bu] 2
    102. 

  102. \f[B]\-Z\f[], \f[B]\-\-enable\-errata\f[]: Enable the application of
    103. 

  103. errata fixups.
    104. 

  104. Useful if an errata fixup needs to be applied to commands sent to the
    105. 

  105. TPM.
    106. 

  106. Defining the environment TPM2TOOLS_ENABLE_ERRATA is equivalent.
    107. 

  107. information many users may expect.
    108. 

  108. .SH EXAMPLES
    109. 

  109. .IP
    110. 

  110. .nf
    111. 

  111. \f[C]
    112. 

  112. tpm2\ certifyX509certutil\ \-o\ partial_cert.der\ \-d\ 356
    113. 

  113. \f[]
    114. 

  114. .fi
    115. 

  115. .SH Returns
    116. 

  116. .PP
    117. 

  117. Tools can return any of the following codes:
    118. 

  118. .IP \[bu] 2
    119. 

  119. 0 \- Success.
    120. 

  120. .IP \[bu] 2
    121. 

  121. 1 \- General non\-specific error.
    122. 

  122. .IP \[bu] 2
    123. 

  123. 2 \- Options handling error.
    124. 

  124. .IP \[bu] 2
    125. 

  125. 3 \- Authentication error.
    126. 

  126. .IP \[bu] 2
    127. 

  127. 4 \- TCTI related error.
    128. 

  128. .IP \[bu] 2
    129. 

  129. 5 \- Non supported scheme.
    130. 

  130. Applicable to tpm2_testparams.
    131. 

  131. .SH BUGS
    132. 

  132. .PP
    133. 

  133. Github Issues (https://github.com/tpm2-software/tpm2-tools/issues)
    134. 

  134. .SH HELP
    135. 

  135. .PP
    136. 

  136. See the Mailing List (https://lists.01.org/mailman/listinfo/tpm2)
    137.