NAME¶

stpm-verify - Verify data using the TPM chip

SYNOPSIS¶

stpm-verify [ -hq ] -f data -s sig file -k <key file>

DESCRIPTION¶

stpm-verify verifies data signed by stpm-sign.

This program is mostly made for debugging, to make sure that the TPM is set up correctly and a valid key was generated.

OPTIONS¶

-h: Show usage info.
-f data file: File containing data to be verified.
-s sig file: File containing signature from stpm-sign.
-k key file: File containing the encrypted key blob.

EXAMPLES¶

dd if=/dev/urandom of=to-sign bs=1 count=35
stpm-sign -k ~/.simple-tpm-pk11/my.key -f to-sign -r > to-sign.sig
stpm-verify -f to-sign -k ~/.simple-tpm-pk11/my.key -s to-sign.sig

DIAGNOSTICS¶

Most errors will probably be related to interacting with the TPM chip. Resetting the TPM chip and taking ownership should take care of most of them. See the TPM-TROUBLESHOOTING section of simple-tpm-pk11(7).

AUTHOR¶

Simple-TPM-PK11 was written By Thomas Habets <habets@google.com> / <thomas@habets.se>.

git clone https://github.com/ThomasHabets/simple-tpm-pk11.git

1th December, 2013

simple-tpm-pk11

Source file:	stpm-verify.1.en.gz (from simple-tpm-pk11 0.06-5)
Source last updated:	2023-08-17T22:01:48Z
Converted to HTML:	2024-03-11T16:09:00Z