-
I am trying to seal a secret with a PCR policy but my tpm2_load keeps failing. I can't figure out what I am doing wrong. I hope that someone can point me in the right direction.
The steps I took:
…
-
Hello there. Currently, I have my root ext4 partition encrypted. I load a key directly into the TPM's nv storage and then unseal it at boot to automatically unlock my encrypted root ext4 partition. I …
-
Hi @lelegard ,
This problem is **not** the same as #399.
But it has some relation with the option `--min-ms-interval` added in commit https://github.com/tsduck/tsduck/commit/157690471565c79bb5d0e5…
-
The timing model disallows clock drift in sec. 5.2.4. This is not a realistic requirement for linear -- there always is a small drift (i.e., very small difference in duration of a second) which in tra…
-
Similar/related to #103
using `pcr_banks` instead of `pcr_bank` results in an `stack smashing detected` error
```sh
[root@fedora-server-1 ~]# clevis luks bind -d /dev/nvme0n1p1 tpm2 '{"pcr_ban…
-
Clevis with `tpm2-tools-3.1.4-1.fc29.x86_64` worked fine, as noted in https://github.com/latchset/clevis/issues/102
Clevis with `tpm2-tools-3.2.0-1.fc30.x86_64` is running into this issue, as noted…
-
Since LUKS doesn't have official support for tpm2 yet, I'm using @AndreasFuchsSIT LUKS branch to try and encrypt my root ext4 partition. When I'm in initramfs, I can now attempt to use the cryptsetup …
-
When executing the following command with tpm2-tools 3.0.4
```sh
sudo tpm2_createpolicy -T device -f policy_pcr.file -P -g sha1 -L sha1:0,1,2,3,4,5,6,7,8,9,10,11,12
```
if more than 12 registers a…
-
tpm2_checkquote manpage do not match the options in the code
Code:
```
const struct option topts[] = {
{ "halg", required_argument, NULL, 'g' },
{ "messag…
-
How does Heads use the PCRs?