procmem at riseup.net
2019-Oct-05 14:32 UTC
[libvirt-users] Emulated TPM doesn't work on Debian Buster
Hi. I am very interested in the security properties a totally open TPM
can give our users? - its use as a universal smartcard to protect all
types of keys. When adding the virtual 1.2 or 2.0 TPM I get the vague
error below. OS is Debian stable with standard packages.
Error starting domain: Unable to find 'swtpm' binary in $PATH: No such
file or directory
Traceback (most recent call last):
? File "/usr/share/virt-manager/virtManager/asyncjob.py", line 75, in
cb_wrapper
??? callback(asyncjob, *args, **kwargs)
? File "/usr/share/virt-manager/virtManager/asyncjob.py", line 111, in
tmpcb
??? callback(*args, **kwargs)
? File "/usr/share/virt-manager/virtManager/libvirtobject.py", line
66,
in newfn
??? ret = fn(self, *args, **kwargs)
? File "/usr/share/virt-manager/virtManager/domain.py", line 1400, in
startup
??? self._backend.create()
? File "/usr/lib/python3/dist-packages/libvirt.py", line 1080, in
create
??? if ret == -1: raise libvirtError ('virDomainCreate() failed',
dom=self)
libvirt.libvirtError: Unable to find 'swtpm' binary in $PATH: No such
file or directory
Andrea Bolognani
2019-Oct-07 07:31 UTC
Re: [libvirt-users] Emulated TPM doesn't work on Debian Buster
On Sat, 2019-10-05 at 14:32 +0000, procmem@riseup.net wrote:> Hi. I am very interested in the security properties a totally open TPM > can give our users - its use as a universal smartcard to protect all > types of keys. When adding the virtual 1.2 or 2.0 TPM I get the vague > error below. OS is Debian stable with standard packages. > > > Error starting domain: Unable to find 'swtpm' binary in $PATH: No such > file or directoryI wouldn't call this error message vague at all: it tells you exactly what the problem is, namely that libvirt needs the 'swtpm' command for your configuration but the latter is not available :) Unfortunately it looks like swtpm it's not packaged for Debian, so I'm afraid the solution is not just a simple apt-get away :( -- Andrea Bolognani / Red Hat / Virtualization
Martin Kletzander
2019-Oct-07 08:17 UTC
Re: [libvirt-users] Emulated TPM doesn't work on Debian Buster
On Sat, Oct 05, 2019 at 02:32:19PM +0000, procmem@riseup.net wrote:>Hi. I am very interested in the security properties a totally open TPM >can give our users - its use as a universal smartcard to protect all >types of keys. When adding the virtual 1.2 or 2.0 TPM I get the vague >error below. OS is Debian stable with standard packages. > > >Error starting domain: Unable to find 'swtpm' binary in $PATH: No such >file or directory > >Traceback (most recent call last): > File "/usr/share/virt-manager/virtManager/asyncjob.py", line 75, in >cb_wrapper > callback(asyncjob, *args, **kwargs) > File "/usr/share/virt-manager/virtManager/asyncjob.py", line 111, in tmpcb > callback(*args, **kwargs) > File "/usr/share/virt-manager/virtManager/libvirtobject.py", line 66, >in newfn > ret = fn(self, *args, **kwargs) > File "/usr/share/virt-manager/virtManager/domain.py", line 1400, in >startup > self._backend.create() > File "/usr/lib/python3/dist-packages/libvirt.py", line 1080, in create > if ret == -1: raise libvirtError ('virDomainCreate() failed', dom=self) >libvirt.libvirtError: Unable to find 'swtpm' binary in $PATH: No such >file or directory >What is vague about this? "Unable to find 'swtpm' binary in $PATH:" ??? Have you tried: apt install -y swtpm perhaps?> > >_______________________________________________ >libvirt-users mailing list >libvirt-users@redhat.com >https://www.redhat.com/mailman/listinfo/libvirt-users