1TPM2-ABRMD(8) TPM2 Software Stack TPM2-ABRMD(8)
2
6 tpm2-abrmd - TPM2 access broker and resource management daemon
7
9 tpm2-abrmd [-m][-e][-i][-o][-l logger-name][-r][-s][-g /dev/uran‐
10 dom][-t conf]
11
13 tpm2-abrmd is a daemon that implements the TPM access broker and re‐
14 source manager as described by the Trusted Computing Group (TGC) in the
15 “TSS System Level API and TPM Command Transmission Interface Specifica‐
16 tion”. This daemon uses the DBus system bus and some pipes to communi‐
17 cate with clients.
18
20 -t, --tcti
21 Provide the daemon with a string that describes the TCTI and how
22 to configure it for communication with the next component down
23 the TSS2 stack. This string is formatted as "tcti-name:tcti-
24 conf" where:
25 'tcti-name'
27 The name of the TCTI library shared object file. Li‐
28 braries are found using the same algorithm as dlopen (3).
29 If the TCTI library file name follows the naming conven‐
30 tion: libtss2-tcti-<name>.so.0 where <name> is the name
31 for the TCTI, the value of <name> may be supplied in
32 place of the full library file name. See 'EXAMPLES' be‐
33 low.
34 'tcti-conf'
36 The configuration string passed to the TCTI library upon
37 initialization.
38 If this option is omitted (or a NULL string provided) then a de‐
40 fault TCTI is used in it's default configuration. If the string
41 does not contain a colon then it will be interpreted as only the
42 'tcti-name'. To provide only the configuration string (using the
43 default TCTI) then the first character in the string passed to
44 this option must be a colon followed by the configuration
45 string. See examples below.
46 -o, --allow-root
48 Allow daemon to run as root. If this option is not provided the
49 daemon will refused to run as the root user. Use of this option
50 is not recommended.
51 -m, --max-connections
53 Set an upper bound on the number of concurrent client connec‐
54 tions allowed. Once this number of client connections is
55 reached new connections will be rejected with an error.
56 -f, --flush-all
58 Flush all objects and sessions when daemon is started.
59 -l, --logger
61 Direct logging output to named logging target. Supported targets
62 are stdout and syslog. If the logger option is not specified the
63 default is stdout.
64 -e, --max-sessions
66 Set and upper bound on the number of sessions that each client
67 connection is allowed to create (loaded or active) at any one
68 time.
69 -r, --max-transients
71 Set an upper bound on the number of transient objects that each
72 client connection allowed to load. Once this number of objects
73 is reached attempts to load new transient objects will produce
74 an error.
75 -n, --dbus-name
77 Claim the given name on dbus. This option overrides the default
78 of com.intel.tss2.Tabrmd.
79 -g, --prng-seed-file
81 Read seed for pseudo-random number generator from the provided
82 file.
83 -s, --session
85 Connect daemon to the session dbus. This option overrides the
86 default behavior.
87 -v, --version
89 Display version string.
90
92 Execute daemon with default TCTI and options:
93 tpm2-abrmd
94 Execute daemon with default TCTI and provided config string:
96 tpm2-abrmd --tcti=":/dev/tpm0"
97 This is equivalent to:
99 tpm2-abrmd --tcti="device:/dev/tpm0"
100 tpm2-abrmd --tcti="libtss2-tcti-device.so.0:/dev/tpm0"
101 Have daemon use swtpm TPM2 Simulator tcti library
103 This connects to a TPM2 simulator via a TCP swtpm.
104 tpm2-abrmd --tcti="swtpm"
105 tpm2-abrmd --tcti="libtss2-tcti-swtpm.so.0"
106 Have daemon use tcti library 'libtss2-tcti-swtpm.so.0' and config
108 string
109 tpm2-abrmd --tcti=swtpm:host=127.0.0.1,port=5555"
110 tpm2-abrmd --tcti="libtss2-tcti-swtpm.so.0:host=127.0.0.1,port=5555"
111
113 Philip Tricca <philip.b.tricca@intel.com>
114
116 tcsd(8)
117
119 This page is part of the 2.4.0 release of Intel's TPM2 Access Broker &
120 Resource Management Daemon. A description of the project, information
121 about reporting bugs, and the latest version of this page can be found
122 at https://github.com/01org/tpm2-abrmd/.
123Intel March 2018 TPM2-ABRMD(8)