luks bind tpm2

[ShinobiX9X]

Arch Linux up to date After binding the luks encrypted device. no errors But the tpm module is still empty

[savchenko]

What's the output of sudo tpm2_pcrread?

[sarroutbi]

@ShinobiX9X : can you please provide the output of tpm2_pcrread as requested?

[savchenko]

@latchset, the issue can probably be closed.

[sarroutbi]

Hello @ShinobiX9X , are you ok if we close the issue?

[ShinobiX9X]

Hello, I am very sorry, only yesterday I saw there are reactions on this post. sudo: tpm2_pcrread: command not found is what I get

[sarroutbi]

tpm2_pcrread is part of the tpm2-tools package, at least in RHEL8.

Install it on your distribution and provide output for further investigation, please.

[ShinobiX9X]

[sarroutbi]

Sorry, but I am a little bit confused about the relationship between tpm2_getcap and clevis binding. Are they related? What are you expecting to see? tpm2_getcap should return TPM for it’s capabilities / properties. Anyway, can you please post tpm2_getcap -l output?

[ShinobiX9X]

`

• algorithms
• commands
• pcrs
• properties-fixed
• properties-variable
• ecc-curves
• handles-transient
• handles-persistent
• handles-permanent
• handles-pcr
• handles-nv-index
• handles-loaded-session
• handles-saved-session `