tpm2_ptool:如何删除 primary
要删除 TPM primary 对象,首先使用 tpm2_ptool listprimaries 命令显示所有 primary。这将输出可用 primary 的列表及其 ID。
tpm2_ptool_listprimaries_output.txt
$ tpm2_ptool listprimaries
- config:
esys-tr: 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
transient: false
id: 1相关信息是输出末尾的 id: 1。
如果你打算删除 ID 为 1 的 primary,请仔细确认你的决定。此过程无法撤销,将永久删除所有相关对象和数据。
destroy_primary.sh
tpm2_ptool destroy --pid 1这会要求你确认删除。你需要输入 y 来继续删除。
destroy_confirmation.txt
$ tpm2_ptool destroy --pid 1
This will delete the primary object of id "1" and all associated data from db under "/home/user/.tpm2_pkcs11" [y/N]命令完成后,你可以再次运行 tpm2_ptool listprimaries 来确认删除。
tpm2_listprimaries_after.sh
$ tpm2_ptool listprimaries如果没有列出任何内容,则表示没有剩余的 primary。
Check out similar posts by category:
Cryptography
If this post helped you, please consider buying me a coffee or donating via PayPal to support research & publishing of new posts on TechOverflow