Skip to main content
Common Reference

tpm cert diff

The tpm cert diff can be used to compare the generated versus running files for [typeSpec]

Usage
tpm cert diff [typeSpecLeft] [typeSpecRight]
  • Add -n to just see the files that will be compared
  • Add -r (or --running) to use the file in the "security directory" $CONTINUENT_ROOT/share/ for the [typeSpec] instead of from "certsdir" $CONTINUENT_ROOT/generated/

In addition to the standard [typeSpec] (Execute tpm cert help typespec for a full list) the following [typeSpec]s are also available:

  • batch|b (runs typeSpec defined in BATCH envvar, comma-separated)

Examples:

shell> tpm cert clean base
shell> tpm cert diff keystore -n
shell> tpm cert diff keystore
shell> tpm cert diff JK jk -n
shell> tpm cert diff JK jk
shell> tpm cert diff JK jk -r -n
shell> tpm cert diff JK jk -r