Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

tpm2 encryption fails with "tpm2_pcrlist: command not found" on Fedora 31 #125

Closed
jeremyvisser opened this issue Nov 12, 2019 · 1 comment
Closed

tpm2 encryption fails with "tpm2_pcrlist: command not found" on Fedora 31 #125

jeremyvisser opened this issue Nov 12, 2019 · 1 comment

Comments

@jeremyvisser
Copy link

When I try to encrypt something with my TPM2 after upgrading to Fedora 31, I get this error:

$ echo hi | sudo clevis encrypt tpm2 '{}'
/usr/bin/clevis-encrypt-tpm2: line 62: tpm2_pcrlist: command not found

The tpm2_pcrlist tool is no longer shipped by the tpm2-tools package:

$ rpm -q tpm2-tools 
tpm2-tools-4.0.1-1.fc31.x86_64

$ rpm -ql tpm2-tools | grep /usr/bin/tpm2_pcr
/usr/bin/tpm2_pcrallocate
/usr/bin/tpm2_pcrevent
/usr/bin/tpm2_pcrextend
/usr/bin/tpm2_pcrread
/usr/bin/tpm2_pcrreset

Even though the issue title is similar, I believe this issue is unrelated to #74. In this issue, the cause is that the tpm2_pcrlist tool no longer exists in a dependency, whereas in the other issue the cause was that tpm2_pcrlist wasn't being copied to the initramfs.
@jeremyvisser
Copy link
Author

jeremyvisser commented Nov 12, 2019
edited
Loading

Actually, it looks like this was already fixed in c86cf48, but the fix wasn't shipped in Fedora 31.

A bug already exists in Fedora for this issue: https://bugzilla.redhat.com/show_bug.cgi?id=1770480

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@jeremyvisser