% tpm2_commit(1) tpm2-tools | General Commands Manual

NAME

tpm2_commit(1) - Performs the first part of an ECC anonymous signing operation.

SYNOPSIS

tpm2_commit [OPTIONS]

DESCRIPTION

tpm2_commit(1) - Performs the first part of an ECC anonymous signing operation. The TPM will perform the point multiplications on the provided points and return intermediate signing values. The signing key is an ECC key. The key cannot be a sign+decrypt key and must have an anonymous signing scheme. TPM_ALG_ECDAA is the only supported anonymous scheme.

OPTIONS

  • ARGUMENT=FILE:

    Specify the input data used to derive the x coordinate of the basepoint.

  • --basepoint-y=FILE:

    Specify the y coordinate of the basepoint.

  • --eccpoint-P=FILE:

    Specify a point on the curve used by sign handle.

  • --eccpoint-K=FILE:

    Output ECC point K ≔ [ds](x2, y2).

  • --eccpoint-L=FILE:

    Output ECC point L ≔ [r](x2, y2).

  • -u, --public=FILE:

    Output ECC point E ≔ [r]P1.

  • -t, --counter=FILE

    Specify file path to save the least-significant 16 bits of commit count.

  • -p, --auth=AUTH:

    The authorization value for the created object.

  • -c, --context=FILE:

    Context object pointing to the the key used for signing. Either a file or a handle number. See section "Context Object Format".

References

algorithm specifiers details the options for specifying cryptographic algorithms ALGORITHM.

common options collection of common options that provide information many users may expect.

common tcti options collection of options used to configure the various known TCTI modules.

EXAMPLES

tpm2_createprimary -C o -c prim.ctx -Q

tpm2_create -C prim.ctx -c key.ctx -u key.pub -r key.priv -G ecc256:ecdaa

tpm2_commit -c key.ctx -t count.er \
--eccpoint-K K.bin --eccpoint-L L.bin -u E.bin

returns

footer