1tss2_exportkey(1)           General Commands Manual          tss2_exportkey(1)
2
3
4

NAME

6       tss2_exportkey(1) -
7

SYNOPSIS

9       tss2_exportkey [OPTIONS]
10

SEE ALSO

12       fapi-config(5)  to  adjust  Fapi parameters like the used cryptographic
13       profile and TCTI or directories for the Fapi metadata storages.
14
15       fapi-profile(5) to determine the cryptographic algorithms  and  parame‐
16       ters for all keys and operations of a specific TPM interaction like the
17       name hash algorithm, the asymmetric signature algorithm, scheme and pa‐
18       rameters and PCR bank selection.
19

DESCRIPTION

21       tss2_exportkey(1)  -  This  command will duplicate a key and encrypt it
22       using the public key of a new parent.  The exported data  will  contain
23       the  re-wrapped key pointed to by the pathOfKeyToDuplicate and then the
24       JSON encoded policy.  Encryption is done according  to  TPM  encryption
25       schemes specified in the cryptographic profile (cf., fapi-profile(5)).
26

OPTIONS

28       These are the available options:
29
30-e --pathToPublicKeyOfNewParent=STRING:
31
32         The path to the public key of the new parent.  This key MAY be in the
33         public key hierarchy /ext.  Optional parameter.  If omitted only  the
34         public key will exported.
35
36-f, --force:
37
38         Force overwriting the output file.
39
40-o, --exportedData=FILENAME or - (for stdout):
41
42         Returns the exported subtree.
43
44-p, --pathOfKeyToDuplicate=STRING:
45
46         The path to the root of the subtree to export.
47

COMMON OPTIONS

49       This  collection of options are common to all tss2 programs and provide
50       information that many users may expect.
51
52-h, --help [man|no-man]: Display the tools manpage.  By  default,  it
53         attempts  to  invoke  the  manpager for the tool, however, on failure
54         will output a short tool summary.  This is the same behavior  if  the
55         “man”  option argument is specified, however if explicit “man” is re‐
56         quested, the tool will provide errors from man  on  stderr.   If  the
57         “no-man”  option  if  specified, or the manpager fails, the short op‐
58         tions will be output to stdout.
59
60         To successfully use the manpages feature requires the manpages to  be
61         installed or on MANPATH, See man(1) for more details.
62
63-v,  --version:  Display version information for this tool, supported
64         tctis and exit.
65

EXAMPLE

67              tss2_exportkey --pathOfKeyToDuplicate=HS/SRK/myRSADecrypt --exportedData=exportedData.file
68

RETURNS

70       0 on success or 1 on failure.
71

BUGS

73       Github Issues (https://github.com/tpm2-software/tpm2-tools/issues)
74

HELP

76       See the Mailing List (https://lists.linuxfoundation.org/mailman/listin
77       fo/tpm2)
78
79
80
81tpm2-tools                        APRIL 2019                 tss2_exportkey(1)
Impressum