table of contents
| UNSEAL_TPM2_DATA(1) | User Commands | UNSEAL_TPM2_DATA(1) |
NAME¶
unseal_tpm2_data - unseal a blob of data using a TPM
SYNOPSIS¶
unseal_tpm2_data [options] <filename>
DESCRIPTION¶
Once a sealed data blob has been created, it may only be unsealed by the TPM for which it was created. This command attempts that unseal operation
OPTIONS¶
- -b, --auth-parent <pwd>
- Specify the parent key password (default EmptyAuth)
- -h, --help
- print this help message
- -v, --version
- print package version
- -k, --password <pwd>
- use this password instead of prompting
EXAMPLES¶
Create a sealed data blob to the storage parent (owner hierarchy)
echo "somedatatoseal" seal_tpm2_key -a -k passw0rd -p owner
seal.tpm
Unseal the data
unseal_tpm2_key -k passw0rd seal.tpm
AUTHOR¶
Written by James Bottomley <James.Bottomley@HansenPartnership.com>
REPORTING BUGS¶
Report bugs to <openssl-tpm2-engine@groups.io>
COPYRIGHT¶
Copyright 2017 by James Bottomley License LGPL-2.1-only
| April 2024 | unseal_tpm2_data 4.1.2 |