% tss2_pcrread(1) tpm2-tools | General Commands Manual % % APRIL 2019
tss2_pcrread(1) -
tss2_pcrread [OPTIONS]
tss2_pcrread(1) - This command provides a PCRs value and corresponding event log. The PCR bank to be used per PCR is defined in the cryptographic profile (cf., fapi-profile(5)).
These are the available options:
-
-o, --pcrValue=FILENAME or - (for stdout):
Returns PCR digest. Optional parameter.
-
-x, --pcrIndex=INTEGER:
Identifies the PCR to read.
-
-f, --force:
Force overwriting the output files.
-
-l, --pcrLog=FILENAME or - (for stdout):
Returns the PCR log for that PCR. Optional parameter.
PCR event logs are a list (arbitrary length JSON array) of log entries with the following content.
- recnum: Unique record number - pcr: PCR index - digest: The digests - type: The type of event. At the moment the only possible value is: "LINUX_IMA" (legacy IMA) - eventDigest: Digest of the event; e.g. the digest of the measured file - eventName: Name of the event; e.g. the name of the measured file.
tss2_pcrread --pcrIndex=16 --pcrValue=pcrValue.file --pcrLog=pcrLog.file0 on success or 1 on failure.