Proxmox-Port/swtpm
1
0
Fork 0
mirror of https://github.com/stefanberger/swtpm.git synced 2026-02-01 09:18:07 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

man: Extend man pages with --flags support for CUSE TPM

Browse Source 
Also fix an error in the man page on the way. 'startup-deactivated'
can only be used with a TPM 1.2, not a TPM 2.

Signed-off-by: Stefan Berger <stefanb@linux.ibm.com>
This commit is contained in:
Stefan Berger 2020-10-12 18:05:30 -04:00 committed by Stefan Berger
parent 6559a90269
commit ab40d27ab1
2 changed files with 25 additions and 14 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

28
man/man8/swtpm.pod
View File

@ -141,20 +141,6 @@ This operation requires root privileges.
The control channel enables out-of-band control of the TPM, such as resetting the TPM.
=item B<--flags [not-need-init] [,startup-clear|startup-state|startup-deactivated|startup-none]>
The I<not-need-init> flag enables the TPM to accept TPM commands right after
start without requiring a INIT to be sent to it through the command channel
(see the '-i' option of swtpm_ioctl).
The I<startup> options cause a TPM_Startup or TPM2_Startup command to
automatically be sent. The I<startup-deactivated> option is only valid for
a TPM 2.0. These options imply I<not-need-init>, except for the
I<startup-none> option, which results in no command being sent.
If I<--vtpm-proxy> is used, I<startup-clear> is automatically chosen but
this can be changed with this option.
=back
@ -282,6 +268,20 @@ The I<log> action is only available if libseccomp supports logging.
This option is only available on Linux and only if swtpm was compiled with
libseccomp support.
=item B<--flags [not-need-init] [,startup-clear|startup-state|startup-deactivated|startup-none]>
The I<not-need-init> flag enables the TPM to accept TPM commands right after
start without requiring an INIT to be sent to it through the command channel
(see the '-i' option of swtpm_ioctl).
The I<startup> options cause a TPM_Startup or TPM2_Startup command to
automatically be sent. The I<startup-deactivated> option is only valid for
a TPM 1.2. These options imply I<not-need-init>, except for the
I<startup-none> option, which results in no command being sent.
If I<--vtpm-proxy> is used, I<startup-clear> is automatically chosen but
this can be changed with this option.
=item B<--print-capabilities> (since v0.2)
Print capabilities that were added to swtpm after version 0.1. The output

11
man/man8/swtpm_cuse.pod
View File

@ -154,6 +154,17 @@ The I<log> action is only available if libseccomp supports logging.
This option is only available on Linux and only if swtpm was compiled with
libseccomp support.
=item B<--flags [not-need-init] [,startup-clear|startup-state|startup-deactivated|startup-none]>
The I<not-need-init> flag enables the TPM to accept TPM commands right after
start without requiring an INIT to be sent to it through the command channel
(see the '-i' option of swtpm_ioctl).
The I<startup> options cause a TPM_Startup or TPM2_Startup command to
automatically be sent. The I<startup-deactivated> option is only valid for
a TPM 1.2. These options imply I<not-need-init>, except for the
I<startup-none> option, which results in no command being sent.
=item B<--print-capabilities> (since v0.2)
Print capabilities that were added to swtpm after version 0.1. The output