Manualshelf

HP-UX Trusted Computing Services A.01.00 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX Trusted Computing Services (TCS) Software
21222324252627282930
3 HP-UX TCS Driver and Management Utilities
This chapter provides an overview of the HP-UX TPM driver and the HP-UX APIs that provide
a management interface to the TPM and the TSS stack.
This chapter addresses the following topics:
“TPM Driver (page 21)
“HP-UX TCS Management Commands” (page 21)
TPM Driver
The TPM driver does not require a reboot after installation, because it is a dynamically loadable
kernel module (DLKM). However, after the first load of the TPM driver, the TPM device appears
as unclaimed until a new ioscan command is issued.
To verify that the TPM device is claimed, enter the following command:
# ioscan -f | grep -i trust
tpm 0 250/2 tpm CLAIMED INTERFACE Trusted Platform Module
If the installation requires a reboot, a separate ioscan is not needed because the device is claimed
by the DLKM driver at boot time. Since the TPM driver must claim the TPM chip, it is loaded
before device discovery (ioscan) is initiated at boot time. The TPM driver uses the /dev/tpm
character device and the Low Pin Count (LPC) I/O protocol to communicate with the TPM chip.
NOTE: The TPM driver cannot be unloaded if any application has opened the /dev/tpm
character device. The unload operation fails with a "Device Busy" error.
HP-UX TCS Management Commands
This section provides a brief description of the HP-UX TCS management commands. Examples
of common usage for these commands are provided in Chapters 4, 5, 6, and 7 of this Adminisrator's
Guide. See the manpages for detailed information on each of these commands.
tcsd
tcsd.conf
tpmadm
tpmlist
tpmencrypt
tpmdecrypt
The tcsd Daemon
The tcsd daemon manages Trusted Computing resources.
This user space daemon is the primary portal to the TPM device driver. tcsd is started at boot
time. It opens the TPM device driver and from that point onward, all requests to the TPM go
through the TSS stack. The tcsd daemon manages TPM resources and handles requests from
local and remote TSPs.
The tcsd.conf File
The tcsd.conf file is the configuration file for tcsd. The tcsd daemon reads the tcsd.conf
file to make the following configuration settings:
port
The port that tcsd listens on for connections from local and remote
applications.
num_threads
The maximum number of threads that tcsd spawns simultaneously
to service applications.
TPM Driver 21