DOKK / manpages / debian 11 / tboot / lcp_readpol.8.en
LCP_READPOL(8) User Manuals LCP_READPOL(8)

lcp_readpol - read the contents of an LCP policy index

lcp_readpol -i index-value [-f policy-file] [-s size] [-p passwd] [-h]

lcp_readpol is used to read the contents of an LCP policy index. Any index can be specified but the output will be parsed as if it contained a policy.

Designate the index for reading. Index can be UINT32 or string. 3 strings are supported for the reserved LCP indices. Strings and default index values for each string are:
0x50000001(INDEX_LCP_DEF)
0x40000001(INDEX_LCP_OWN)
0x50000002(INDEX_LCP_AUX)
File name to write the policy data to. If no file name is specified then the contents will be displayed.
Value size to read from NV store. If no size inputted, read by length as this index defined.
The TPM owner password
Print out the help message

lcp_readpol -i default -f policy-file

lcp_readpol -i 0x00011101 -s 10

lcp_readpol -i 0x00011101 -f policy-file -p 123456

lcp_writepol(8), lcp_crtpol(8).

2011-12-31 tboot