tpm2 命令

tpm2 is a single busybox-style executable that combines all of the individual tpm2-tools utilities into one binary. Each historical tool, such as tpm2_getrandom or tpm2_pcrread, is available as a subcommand of tpm2 (invoke tpm2 getrandom) as well as through a symlink of the original name. The dispatcher exists primarily to shrink the footprint of tpm2-tools on size-constrained systems (initramfs images, embedded devices, recovery environments) where shipping dozens of separate binaries is wasteful. Because each _tpm2_<tool>_ symlink points back to the same binary, behaviour is identical between the two invocation styles. Tools cover the full TPM 2.0 command surface: key creation and loading, NV storage, PCR operations, session and policy management, attestation, and auditing.

Run `tpm2 --help` in a terminal, then adjust file names, paths, flags, or remote targets for your system.

This page includes 8 examples for tpm2, plus related commands for nearby Linux tasks.