1TSSCREATELOADED(1)               User Commands              TSSCREATELOADED(1)
2
3
4

NAME

6       tsscreateloaded - Runs TPM2 createloaded
7

DESCRIPTION

9       createloaded
10
11       Runs TPM2_CreateLoaded
12
13       -hp parent handle (can be hierarchy)
14
15              40000001 Owner 4000000c Platform 4000000b Endorsement
16
17              [Asymmetric Key Algorithm]
18
19       -rsa [keybits] (default)
20
21              (2048 default)
22
23       -ecc curve
24
25              bnp256 nistp256 nistp384
26
27              Key attributes
28
29       -bl    data blob for unseal (create only) requires -if
30
31       -den   decryption, (unrestricted, RSA and EC NULL scheme)
32
33       -deo   decryption, (unrestricted, RSA OAEP, EC NULL scheme)
34
35       -dee   decryption, (unrestricted, RSA ES, EC NULL scheme)
36
37       -des   encryption/decryption,  AES symmetric [-116 for TPM rev 116 com‐
38              patibility]
39
40       -st    storage (restricted) [default for primary keys]
41
42       -si    unrestricted signing (RSA and EC NULL scheme)
43
44       -sir   restricted signing (RSA RSASSA, EC ECDSA scheme)
45
46       -dau   unrestricted ECDAA signing key pair
47
48       -dar   restricted ECDAA signing key pair
49
50       -kh    keyed hash (unrestricted, hmac)
51
52       -khr   keyed hash (restricted, hmac)
53
54       -dp    derivation parent
55
56       -gp    general purpose, not storage
57
58       [-kt   (can be specified more than once)] f       fixedTPM (default for
59              primary  keys  and  derivation parents) p       fixedParent (de‐
60              fault for  primary  keys  and  derivation  parents)  nf       no
61              fixedTPM  (default  for non-primary keys) np      no fixedParent
62              (default for non-primary  keys)  ed       encrypted  duplication
63              (default not set)
64
65       [-da   object subject to DA protection (default no)]
66
67       [-pol  policy file (default empty)]
68
69       [-uwa  userWithAuth attribute clear (default set)]
70
71       [-if   data (inSensitive) file name]
72
73       [-nalg name  hash  algorithm  (sha1,  sha256,  sha384, sha512) (default
74              sha256)]
75
76       [-halg scheme hash algorithm (sha1, sha256,  sha384,  sha512)  (default
77              sha256)]
78
79       [-der  object's parent is a derivation parent]
80
81       [-pwdk password for key (default empty)]
82
83       [-pwdp password for parent key (default empty)]
84
85       [-opu  public key file name (default do not save)]
86
87       [-opr  private key file name (default do not save)]
88
89       [-opem public key PEM format file name (default do not save)]
90
91       -se[0-2] session handle / attributes (default PWAP)
92
93       01     continue
94
95       20     command decrypt
96
97       40     response encrypt
98
99
100
101tsscreateloaded 1.6              November 2020              TSSCREATELOADED(1)
Impressum