3:10 a.m.
Hello,
When I start the command sudo tpm2_listpcrs, I receive the message Failed
to initialize tcti context: 0x1.
How to resolve this?
Thanks.
12:39 p.m.
On 3/13/20 3:10 AM, Samuel Mutel wrote:
Hello,
When I start the command sudo tpm2_listpcrs, I receive the message
Failed to initialize tcti context: 0x1.
How to resolve this?
It depends what tcti you are using. If you are using a sw emulator make
sure that it is running before you run the command.
Also see 'man tpm2_listpcrs' which talks about tcti configuration.
--
Tadeusz
3:04 a.m.
Hello,
Are you having resourcemgr daemon? If so, that may be listening on port
2323. You may try with option "-p 2323".
Regards,
Ashok Kumar
On Fri, Mar 13, 2020 at 3:41 PM Samuel Mutel <samuel.mutel(a)gmail.com> wrote:
Hello,
When I start the command sudo tpm2_listpcrs, I receive the message Failed
to initialize tcti context: 0x1.
How to resolve this?
Thanks.
_______________________________________________
tpm2 mailing list -- tpm2(a)lists.01.org
To unsubscribe send an email to tpm2-leave(a)lists.01.org
%(web_page_url)slistinfo%(cgiext)s/%(_internal_name)s
9:43 a.m.
Did you get this sorted out? Also which TCTI is giving this error?
What was the output of tpm2_<tool> -v
Something like:
$ tpm2_getrandom -v
tool="tpm2_getrandom" version="4.2-RC0"
tctis="libtss2-tctildr" tcti-default=tcti-abrmd
Thanks,
Bill
-----Original Message-----
From: Ashok Kumar [mailto:ashokar.1980@gmail.com]
Sent: Thursday, March 26, 2020 5:05 AM
To: Samuel Mutel <samuel.mutel(a)gmail.com>
Cc: tpm2(a)lists.01.org
Subject: [tpm2] Re: Failed to initialize tcti context: 0x1
Hello,
Are you having resourcemgr daemon? If so, that may be listening on port 2323.
You may try with option "-p 2323".
Regards,
Ashok Kumar
On Fri, Mar 13, 2020 at 3:41 PM Samuel Mutel <samuel.mutel(a)gmail.com
<mailto:samuel.mutel@gmail.com> > wrote:
Hello,
When I start the command sudo tpm2_listpcrs, I receive the message
Failed to initialize tcti context: 0x1.
How to resolve this?
Thanks.
_______________________________________________
tpm2 mailing list -- tpm2(a)lists.01.org <mailto:tpm2@lists.01.org>
To unsubscribe send an email to tpm2-leave(a)lists.01.org <mailto:tpm2-
leave(a)lists.01.org>
%(web_page_url)slistinfo%(cgiext)s/%(_internal_name)s
3:39 p.m.
Have you got other tpm2_ commands to work?
If you are trying to interact with actual hardware (not emulator) like I was when I
encountered this error I found I had to run commands like:
sudo tpm2_<command> -T device
and then things would work. On Ubuntu 18.04.
8:07 a.m.
-----Original Message-----
From: sedigj(a)gmail.com [mailto:sedigj@gmail.com]
Sent: Thursday, March 26, 2020 5:40 PM
To: tpm2(a)lists.01.org
Subject: [tpm2] Re: Failed to initialize tcti context: 0x1
Have you got other tpm2_ commands to work?
If you are trying to interact with actual hardware (not emulator) like I was when I
encountered this error I found I had to run commands like:
sudo tpm2_<command> -T device
and then things would work. On Ubuntu 18.04.
Ahh your using the device node directly. You probably just wont to chgrp that
And share a common group with users that need access.
Im surprised theirs not some default udev rules or however they do it now adays.
@tstruk, do you know what the guidance is on permissions for /dev/tpm[0-9]+?
> _______________________________________________
> tpm2 mailing list -- tpm2(a)lists.01.org
> To unsubscribe send an email to tpm2-leave(a)lists.01.org
> %(web_page_url)slistinfo%(cgiext)s/%(_internal_name)s
8:16 a.m.
On 3/27/20 8:07 AM, Roberts, William C wrote:
Im surprised theirs not some default udev rules or however they do it
now adays.
@tstruk, do you know what the guidance is on permissions for /dev/tpm[0-9]+?
Yes. It should be:
$ ls -l /dev/tpm*
crw-rw---- 1 root root 10, 224 Mar 20 09:30 /dev/tpm0
crw-rw---- 1 tss tss 244, 65536 Mar 20 09:30 /dev/tpmrm0
--
Tadeusz
8:25 a.m.
-----Original Message-----
From: Struk, Tadeusz
Sent: Friday, March 27, 2020 10:17 AM
To: Roberts, William C <william.c.roberts(a)intel.com>; sedigj(a)gmail.com;
tpm2(a)lists.01.org
Subject: Re: [tpm2] Re: Failed to initialize tcti context: 0x1
On 3/27/20 8:07 AM, Roberts, William C wrote:
> Im surprised theirs not some default udev rules or however they do it now
adays.
> @tstruk, do you know what the guidance is on permissions for /dev/tpm[0-
9]+?
Yes. It should be:
$ ls -l /dev/tpm*
crw-rw---- 1 root root 10, 224 Mar 20 09:30 /dev/tpm0
crw-rw---- 1 tss tss 244, 65536 Mar 20 09:30 /dev/tpmrm0
So raw access to the TPM is controlled by root, but brokered access through an RM
Is allowed by tss group, ok, makes sense.
If you do, you can use /dev/tpmrm0 by doing, 1 of two things:
1. as a tool argument:
tpm2_<tool> --tcti="device:/dev/tpmrm0"
2. as an env variable:
export TPM2TOOLS_TCTI="device:/dev/tpmrm0"
You need to modify your user so that it's in group tss, like so:
sudo usermod -a -G tss $USER
Ashok, do you have a /dev/tpmrm0, I think you need like kernel version 4.12+ to have
that.
You could also spin up tpm2-abrmd:
https://github.com/tpm2-software/tpm2-abrmd
Which is usually picked up automatically by the tpm2_<tools> executables.
411
days inactive
425
days old
7 comments
5 participants
participants (5)
-
Ashok Kumar -
Roberts, William C -
Samuel Mutel -
sedigj@gmail.com -
Tadeusz Struk