Blame view
Documentation/ABI/stable/sysfs-class-tpm
6.75 KB
313d21eea tpm: device class... |
1 |
What: /sys/class/tpm/tpmX/device/ |
feab398e5 tpm: add document... |
2 3 4 5 6 |
Date: April 2005 KernelVersion: 2.6.12 Contact: tpmdd-devel@lists.sf.net Description: The device/ directory under a specific TPM instance exposes the properties of that TPM chip |
313d21eea tpm: device class... |
7 |
What: /sys/class/tpm/tpmX/device/active |
feab398e5 tpm: add document... |
8 9 10 11 12 13 14 15 16 17 |
Date: April 2006 KernelVersion: 2.6.17 Contact: tpmdd-devel@lists.sf.net Description: The "active" property prints a '1' if the TPM chip is accepting commands. An inactive TPM chip still contains all the state of an active chip (Storage Root Key, NVRAM, etc), and can be visible to the OS, but will only accept a restricted set of commands. See the TPM Main Specification part 2, Structures, section 17 for more information on which commands are available. |
313d21eea tpm: device class... |
18 |
What: /sys/class/tpm/tpmX/device/cancel |
feab398e5 tpm: add document... |
19 20 21 22 23 24 |
Date: June 2005 KernelVersion: 2.6.13 Contact: tpmdd-devel@lists.sf.net Description: The "cancel" property allows you to cancel the currently pending TPM command. Writing any value to cancel will call the TPM vendor specific cancel operation. |
313d21eea tpm: device class... |
25 |
What: /sys/class/tpm/tpmX/device/caps |
feab398e5 tpm: add document... |
26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 |
Date: April 2005 KernelVersion: 2.6.12 Contact: tpmdd-devel@lists.sf.net Description: The "caps" property contains TPM manufacturer and version info. Example output: Manufacturer: 0x53544d20 TCG version: 1.2 Firmware version: 8.16 Manufacturer is a hex dump of the 4 byte manufacturer info space in a TPM. TCG version shows the TCG TPM spec level that the chip supports. Firmware version is that of the chip and is manufacturer specific. |
313d21eea tpm: device class... |
41 |
What: /sys/class/tpm/tpmX/device/durations |
feab398e5 tpm: add document... |
42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 |
Date: March 2011 KernelVersion: 3.1 Contact: tpmdd-devel@lists.sf.net Description: The "durations" property shows the 3 vendor-specific values used to wait for a short, medium and long TPM command. All TPM commands are categorized as short, medium or long in execution time, so that the driver doesn't have to wait any longer than necessary before starting to poll for a result. Example output: 3015000 4508000 180995000 [original] Here the short, medium and long durations are displayed in usecs. "[original]" indicates that the values are displayed unmodified from when they were queried from the chip. Durations can be modified in the case where a buggy chip reports them in msec instead of usec and they need to be scaled to be displayed in usecs. In this case "[adjusted]" will be displayed in place of "[original]". |
313d21eea tpm: device class... |
63 |
What: /sys/class/tpm/tpmX/device/enabled |
feab398e5 tpm: add document... |
64 65 66 67 68 69 70 |
Date: April 2006 KernelVersion: 2.6.17 Contact: tpmdd-devel@lists.sf.net Description: The "enabled" property prints a '1' if the TPM chip is enabled, meaning that it should be visible to the OS. This property may be visible but produce a '0' after some operation that disables the TPM. |
313d21eea tpm: device class... |
71 |
What: /sys/class/tpm/tpmX/device/owned |
feab398e5 tpm: add document... |
72 73 74 75 76 77 |
Date: April 2006 KernelVersion: 2.6.17 Contact: tpmdd-devel@lists.sf.net Description: The "owned" property produces a '1' if the TPM_TakeOwnership ordinal has been executed successfully in the chip. A '0' indicates that ownership hasn't been taken. |
313d21eea tpm: device class... |
78 |
What: /sys/class/tpm/tpmX/device/pcrs |
feab398e5 tpm: add document... |
79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 |
Date: April 2005 KernelVersion: 2.6.12 Contact: tpmdd-devel@lists.sf.net Description: The "pcrs" property will dump the current value of all Platform Configuration Registers in the TPM. Note that since these values may be constantly changing, the output is only valid for a snapshot in time. Example output: PCR-00: 3A 3F 78 0F 11 A4 B4 99 69 FC AA 80 CD 6E 39 57 C3 3B 22 75 PCR-01: 3A 3F 78 0F 11 A4 B4 99 69 FC AA 80 CD 6E 39 57 C3 3B 22 75 PCR-02: 3A 3F 78 0F 11 A4 B4 99 69 FC AA 80 CD 6E 39 57 C3 3B 22 75 PCR-03: 3A 3F 78 0F 11 A4 B4 99 69 FC AA 80 CD 6E 39 57 C3 3B 22 75 PCR-04: 3A 3F 78 0F 11 A4 B4 99 69 FC AA 80 CD 6E 39 57 C3 3B 22 75 ... The number of PCRs and hex bytes needed to represent a PCR value will vary depending on TPM chip version. For TPM 1.1 and 1.2 chips, PCRs represent SHA-1 hashes, which are 20 bytes long. Use the "caps" property to determine TPM version. |
313d21eea tpm: device class... |
100 |
What: /sys/class/tpm/tpmX/device/pubek |
feab398e5 tpm: add document... |
101 102 103 104 105 106 107 108 109 |
Date: April 2005 KernelVersion: 2.6.12 Contact: tpmdd-devel@lists.sf.net Description: The "pubek" property will return the TPM's public endorsement key if possible. If the TPM has had ownership established and is version 1.2, the pubek will not be available without the owner's authorization. Since the TPM driver doesn't store any secrets, it can't authorize its own request for the pubek, making it unaccessible. The public endorsement key is gener- |
83432ef3b Doc: ABI/stable: ... |
110 |
ated at TPM manufacture time and exists for the life of the |
feab398e5 tpm: add document... |
111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 |
chip. Example output: Algorithm: 00 00 00 01 Encscheme: 00 03 Sigscheme: 00 01 Parameters: 00 00 08 00 00 00 00 02 00 00 00 00 Modulus length: 256 Modulus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ossible values: Algorithm: TPM_ALG_RSA (1) Encscheme: TPM_ES_RSAESPKCSv15 (2) TPM_ES_RSAESOAEP_SHA1_MGF1 (3) Sigscheme: TPM_SS_NONE (1) Parameters, a byte string of 3 u32 values: Key Length (bits): 00 00 08 00 (2048) Num primes: 00 00 00 02 (2) Exponent Size: 00 00 00 00 (0 means the default exp) Modulus Length: 256 (bytes) Modulus: The 256 byte Endorsement Key modulus |
313d21eea tpm: device class... |
151 |
What: /sys/class/tpm/tpmX/device/temp_deactivated |
feab398e5 tpm: add document... |
152 153 154 155 |
Date: April 2006 KernelVersion: 2.6.17 Contact: tpmdd-devel@lists.sf.net Description: The "temp_deactivated" property returns a '1' if the chip has |
83432ef3b Doc: ABI/stable: ... |
156 |
been temporarily deactivated, usually until the next power |
feab398e5 tpm: add document... |
157 158 |
cycle. Whether a warm boot (reboot) will clear a TPM chip from a temp_deactivated state is platform specific. |
313d21eea tpm: device class... |
159 |
What: /sys/class/tpm/tpmX/device/timeouts |
feab398e5 tpm: add document... |
160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 |
Date: March 2011 KernelVersion: 3.1 Contact: tpmdd-devel@lists.sf.net Description: The "timeouts" property shows the 4 vendor-specific values for the TPM's interface spec timeouts. The use of these timeouts is defined by the TPM interface spec that the chip conforms to. Example output: 750000 750000 750000 750000 [original] The four timeout values are shown in usecs, with a trailing "[original]" or "[adjusted]" depending on whether the values were scaled by the driver to be reported in usec from msecs. |