TPM2 stuck on boot
Posted: Sat May 16, 2020 7:17 am
Hi
I have an issue with booting disk encrypted fitlet2 - it used to work quite well for a few weeks, and then it strated with jwk error during initial disk decryption on boot. As result it cannot take the password for auto disc decryption and hangs there waiting for manual input. If I connect a keyboard and type the disk encryption password, it boots and works properly.
I then decided to try:
Any idea what else I can do in order to fix this?
The OS is debian 10.3; instructions on how to set the encryption is form the official documentation. The disc was encrypted during the initial system setup.
Thanks in advance!
Ivan
I have an issue with booting disk encrypted fitlet2 - it used to work quite well for a few weeks, and then it strated with jwk error during initial disk decryption on boot. As result it cannot take the password for auto disc decryption and hangs there waiting for manual input. If I connect a keyboard and type the disk encryption password, it boots and works properly.
I then decided to try:
Code: Select all
clevis luks bind -d /dev/sda3 tpm2 '{"pcr_ids":"7"}'
ERROR:
Create Object Failed ! ErrorCode: 0x921
ERROR: Unable to run tpm2_create
Creating TPM2 object for jwk failed!
The OS is debian 10.3; instructions on how to set the encryption is form the official documentation. The disc was encrypted during the initial system setup.
Thanks in advance!
Ivan