LCP_CRTPCONF(8) User Manuals LCP_CRTPCONF(8)NAME
lcp_crtpconf - create a platform configuration measurement for v1 policies
SYNOPSIS
lcp_crtpconf -p PCR-index1,PCR-index2,...,PCR-indexN [-f file-name] [-h]
DESCRIPTION
lcp_crtpconf is used to create a platform configuration measurement. The produced platform configuration measurement will be appended to
the input file in binary mode.
OPTIONS -p PCR-index1,PCR-index2,...,PCR-indexN
Index values can be 0-23.
-f file-name
File name to which the measurement is appended.
-h Print out the help message
EXAMPLES
lcp_crtpconf -p 0,1,2,3 -f pconf-file
SEE ALSO lcp_writepol(8), lcp_crtpol(8).
tboot 2011-12-31 LCP_CRTPCONF(8)
Check Out this Related Man Page
TB_POLGEN(8) User Manuals TB_POLGEN(8)NAME
tb_polgen - manage tboot verified launch policy
SYNOPSIS
tb_polgen COMMAND [OPTION]
DESCRIPTION
tb_polgen is used to manage tboot verified launch policy.
COMMANDS --create
Create an empty tboot verified launch policy file.
--type nonfatal | continue | halt
Nonfatal means ignoring all non-fatal errors and continuing. Continue means ignoring verification errors and halting other-
wise. Halt means halting on any errors.
[--ctrl policy-control-value]
The default value 1 is to extend policy into PCR 17.
policy-file
--add Add a module hash entry into a policy file.
--num module-number | any
The module-number is the 0-based module number corresponding to modules loaded by the bootloader.
--pcr TPM-PCR-number | none
The TPM-PCR-number is the PCR to extend the module's measurement into.
--hash any | image
[--cmdline command-line]
The command line is from grub.conf, and it should not include the module name (e.g. "/xen.gz").
[--image image-file-name]
policy-file
--del Delete a module hash entry from a policy file.
--num module-number | any
The module-number is the 0-based module number corresponding to modules loaded by the bootloader.
[--pos hash-number]
The hash-number is the 0-based index of the hash, within the list of hashes for the specified module.
policy-file
--unwrap
Extract the tboot verified launch policy from a TXT LCP element file.
--elt elt-file
policy-file
--show policy-file
Show the policy information in a policy file.
--help Print out the help message.
--verbose
Enable verbose output; can be specified with any command.
EXAMPLES
tb_polgen --create --type nonfatal vl.pol
tb_polgen --add --num 0 --pcr none --hash image --cmdline "cmdline" --image /boot/xen.gz vl.pol
tb_polgen --add --num 1 --pcr 19 --hash image --cmdline "cmdline" --image /boot/vmlinuz-2.6.18.8-xen vl.pol
tb_polgen --add --num 2 --pcr 19 --hash image --cmdline "" --image /boot/initrd-2.6.18.8-xen.img vl.pol
tb_polgen --del --num 1 vl.pol
tb_polgen --show --verbose vl.pol
Note1:
It is not necessary to specify a PCR for module 0, since this module's measurement will always be extended to PCR 18. If a PCR is speci-
fied, then the measurement will be extended to that PCR in addition to PCR 18.
Note2:
--unwrap is not implemented correctly. There should be a defined UUID for this and that should be checked before copying the data. There
should be a wrap or similar command to generates an element file for a policy.
SEE ALSO lcp_crtpol(8), lcp_crtpol2(8), lcp_crtpolelt(8).
tboot 2011-12-31 TB_POLGEN(8)
Hi everyone,
I know the following questions are noobish questions but I am asking them because I am confused about the basics of history behind UNIX and LINUX.
Ok onto business, my questions are-:
Was/Is UNIX ever an open source operating system ?
If UNIX was... (21 Replies)
Hello and thanks in advance for any help anyone can offer me
I'm trying to learn the find command and thought I was understanding it... Apparently I was wrong. I was doing compound searches and I started getting weird results with the -size test. I was trying to do a search on a 1G file owned by... (14 Replies)
hi all,
i have installed quota on my centos 7 machine and its what im after (setting size limit on users, so they cant fill the hard drive)
i want to now make this part of my create user script for my sftp server so i want to do a echo and a read command so i capture the limit they enter... (0 Replies)
Hi everybody,
Which Unix base OS have best performance for HOST virtualization?
I tested SmartOS but it needs another OS to connect remotely!
Thanks in advance. (11 Replies)
Hi All,
I need to write a shell script which opens a file and increments the version(text) within the file every time the script runs. For example:
$ cat docker_file.yml
version: '3.1'
services:
ui:
image: repo-srv.dev.io:5000/facebook/ui:0.0.2-QA1
$
So, I would like... (6 Replies)
Dear Team
We use DB2 v10.5 and using DBArtisan tool
Can someone please guide how to convert digits to binary numbers using db2 feature.
Ex> for number 9 , binary should be 1001 ( 8+1)
Any help appreciated. Thanks (2 Replies)
hi folks,
how to using tar with exclude directory and compress it using tar.Z
i only know how to exclude dir only with this command below:
tar -cvf /varios/restore/test.tar -X excludefile.txt /jfma/test1/
how to compress it using 1 command?
Thanx
Please use CODE tags as... (6 Replies)
Quite an obscure question I think.
We have a rebuild process for remote sites that allows us to PXE rebuild a till (actually a PC with a touch screen and various fancy bits) running CentOS. The current CentOS5 tills work just fine with a tar image restore and some personalisation. Sadly,... (4 Replies)
Hello All,
I had recently learnt a bit of Docker(which provides containerization process).
Here are some of my learning points from it.
Let us start first with very basic question:
What is Docker:
Docker is a platform for sysadmins and developers to DEPLOY, DEVELOP and RUN applications ... (7 Replies)
What is the point of this? Whenever I close my shell it appends to the history file without adding this. I have never seen it overwrite my history file.
# When the shell exits, append to the history file instead of overwriting it
shopt -s histappend (3 Replies)
Hello... And thanks in advance for any help anyone can offer me
I was trying to work out the differences between displaying modify, access, and change times with the 'ls' command. Everything seems in order when I look at files, but the access time on a directory doesn't seem to change when I... (4 Replies)
Hello everyone,
I am having an issue here with CentOS release 6.6 (Final) that shows all of the space used up, but I can't tell where the space went.
Seemingly I am using up 100%, according to
df -h
Filesystem Size Used Avail Use% Mounted on... (27 Replies)
I'm trying to use a bash script for a psych experiment that involves listening to sound files and responding. If I have something like the code below, how can I make sure that a key press is assigned to RESPONSE only after the second echo statement?
for i in 1 2 3; do
echo "Ready?"
sleep 2
... (10 Replies)
After the success of the jq - tool for parsing and manipulating JSON-Data someone wrote a tool called yq, which aims to be the same for YAML, what jq is for JSON. Seems to work fine. I'll definitely give it a chance in future.
Example YAML-File:
--- !ruby/object:Puppet::Node::Facts
... (1 Reply)
Dear All,
I am very pleased to announce that Dave Munro (gull04) is joining the Moderation Team, after being a very valuable member of UNIX.com for 15+ years.
Dave is an IT Consultant with 30 years of experience this year, has worked in many of the industry vertical market segments and has... (6 Replies)