Hi, > Also, I'd be glad to learn > about success (failure as well) - as I currently have no hardware with > TPM support around and swtpm creates a lot of strange error messages > I cannot follow, I'm currently somewhat blind.
I've built the source version you uploaded (need to report one bug in tests upstream though: they fail if sha256 pcrs are available but sha1 ones not) and the tpm2 pin encryption/decryption works fine! I'm still figuring out and debugging the initramfs integration though, because it looks like clevis is included in the built initramfs but I don't see any sign that it triggers during boot. Thanks, Marek
