1ptsc.conf(5)                  File Formats Manual                 ptsc.conf(5)
2
3
4
5                      Open Platform Trust Services(PTS)
6

NAME

8       tcsd.conf - configuration file for the PTS collector.
9

DESCRIPTION

11       This  file, by default /etc/ptsc.conf is read by the ptsc command, (see
12       ptsc(8)).  The ptsc.conf file that is installed by openpts contains all
13       the default options, commented out.
14
15

OPTIONS(Generic)

17       config.dir   The   directory  to  store  the  platform/collector  data.
18       /var/lib/openpts
19
20       ir.dir The directory to store the integrity report. /tmp/.ptsc
21
22       uuid.file   The   file   store   the    UUID    of    the    collector.
23       /var/lib/openpts/uuid
24
25       newrm.uuid.file   The   file  store  the  UUID  of  the  new  manifest.
26       /var/lib/openpts/newrm_uuid
27
28       ifm.timeout The timeout value [sec].
29
30       srk.password.mode The SRK authentication type.
31       null    tpm_takeownership with null password (just enter)
32       known   tpm_takeownership with -z option
33
34       tpm.resetdalock Force reset the TPM LOCK FLAG if your TPM returns 0x803
35       error. "on" or "off"(default)
36
37       tpm.quote.type  Select  TPM_Quote  or  TPM_Quote2  for  an attestation.
38       OpenSSL before version 1.0 can't validate TPM_Quote2 signature.  If the
39       platform  uses  DRTM,  use  quote2  to cover PCR16-23 quote  TPM v1.1b.
40       PCR[0:15]
41       quote2 TPMv1.2 PCR[0:23]
42
43
44       iml.mode Select the IML access types.
45       tss        via TSS
46       securityfs direct access to the IML files
47
48       bios.iml.file        For        iml.mode=tss.         /sys/kernel/secu‐
49       rity/tpm0/binary_bios_measurements
50
51       runtime.iml.file       For       iml.mode=tss.        /sys/kernel/secu‐
52       rity/ima/binary_runtime_measurements
53
54       pcrs.file For iml.mode=tss.  /sys/class/misc/tpm0/device/pcrs
55
56       runtime.iml.type Select binary format of Linux-IMA
57       IMAORIG kernel 2.6.XX - 2.6.29
58       IMA31   kernel 2.6.30 - 2.6.31
59       IMA32   kernel 2.6.32 -
60
61       aik.storage.type Select storage location of AIK. For Infineon v1.2  TPM
62       use "blob".
63       tss  TSS PS storage
64       blob file
65
66
67       # BI. aik.storage.filename The filename of key blob file. ./key.blob
68
69       BI.  aik.auth.type The authentication type of AIK.  null    null common
70       Common secret
71
72
73

OPTIONS(Validation Models)

75       model.dir The location of model files. /usr/share/openpts/models
76
77       rm.basedir The directory to store the manifests. /var/lib/openpts/
78
79       The number/level of manifest.
80
81       rm.model.NUM1.pcr.NUM2 The validatiom model for  each  level(NUM1)  and
82       pcr index(NUM2).
83
84

OPTIONS (Debug)

86       logging.file The location of logging file.
87
88       logging.location The logging loation: syslog, console
89
90       debug.mode The debbug mode. Set 0x01 for debug.
91
92
93

EXAMPLE (PC PLATFORM)

95              model.dir=/usr/share/openpts/models
96              rm.basedir=/var/lib/openpts/
97              rm.num=1
98              rm.model.0.pcr.0=bios_pcr0.uml
99              rm.model.0.pcr.1=bios_pcr1.uml
100              rm.model.0.pcr.2=bios_pcr2.uml
101              rm.model.0.pcr.3=bios_pcr3.uml
102              rm.model.0.pcr.4=bios_pcr4.uml
103              rm.model.0.pcr.5=bios_pcr5.uml
104              rm.model.0.pcr.6=bios_pcr6.uml
105              rm.model.0.pcr.7=bios_pcr7.uml
106

SEE ALSO

108       ptsc(8)
109

AUTHOR

111       Seiji Munetoh
112

REPORTING BUGS

114       Report bugs to <openpts-users@lists.sourceforge.jp>
115
116
117
118
119
120OpenPTS                           2012-01-04                      ptsc.conf(5)
Impressum