Ehsan, I just checked and the commit adding TPM2 support in Ceph didn't make it into v19.2.0 as you noted [1]. It should be included in v19.2.1 since it was merged to 'squid' branch [2]. V19.2.1 should come out soon. Regards, Frédéric. [1] https://github.com/ceph/ceph/commits/v19.2.0/src/ceph-volume/ceph_volume/devices/lvm/batch.py [2] https://github.com/ceph/ceph/commits/squid/src/ceph-volume/ceph_volume/devices/lvm/batch.py ________________________________ De : Ehsan Golpayegani <e.golpayegani@xxxxxxxxx> Envoyé : samedi 28 décembre 2024 20:00 À : Frédéric Nass Cc: ceph-users@xxxxxxx Objet : Re: Tpm2 in squid Hi, Tpm is working just fine out of ceph and i can connect to tpm device and verify it. If you look at the error even ceph-volume complains about the tpm flag missing on version 19.2.0 What I noticed in this commit , the tps related changes are introduced. https://github.com/ceph/ceph/commit/88836135fd03d28131c58a7440f51de244076166 But when i check the release 19.2.0 version this commit is not included. -------------- Kind Regards Ehsan Golpayegani www.ehsan.pw SAVE PAPER - THINK BEFORE YOU PRINT! On Sat, 28 Dec 2024 at 09:44, Frédéric Nass <frederic.nass@xxxxxxxxxxxxxxxx> wrote: > > Hi, > > Ceph is using systemd-cryptenroll for tpm2 token enrollment. Have you check the requirements for hardware configuration (UEFI mode), kernel and systemd support for TPM 2.0? > > You can check for 'tpm' in the output of 'dmesg | grep -i tpm' and the presence of a /dev/tpmrm0 device. > > Maybe try using TPM 2.0 directly (outside of Ceph) and see how it goes. > > Regards, > Frédéric > > ________________________________ > De : Ehsan Golpayegani <e.golpayegani@xxxxxxxxx> > Envoyé : vendredi 27 décembre 2024 05:04 > À : ceph-users@xxxxxxx > Objet : Tpm2 in squid > > Hi ceph users, > > Has anyone successfully installed Ceph Squid with TPM2 enabled on an OSD? > I'm encountering an error during installation: "stderr_lines": ["Error > EINVAL: Failed to validate OSD spec "<unnamed>": Feature `tpm2` is not > supported"]. > > I've also attempted to prepare the disks with TPM2 before adding them to > the cluster, but I receive the following error: "/usr/bin/podman: stderr > ceph-volume lvm prepare: error: unrecognized arguments: --with-tpm". > > For reference, my cluster is deployed via Cephadm and I'm using Squid > 19.2.0. Any guidance would be greatly appreciated. > > Thanks, > Ehsan > > > -------------- > Kind Regards > <http://about.me/ehsan310?promo=email_sig> > > > Ehsan Golpayegani > [image: https://]www.ehsan.pw > <https://ehsan.pw?promo=email_sig&utm_source=product&utm_medium=email_sig&utm_campaign=edit_panel&utm_content=plaintext> > SAVE PAPER - THINK BEFORE YOU PRINT! > _______________________________________________ > ceph-users mailing list -- ceph-users@xxxxxxx > To unsubscribe send an email to ceph-users-leave@xxxxxxx _______________________________________________ ceph-users mailing list -- ceph-users@xxxxxxx To unsubscribe send an email to ceph-users-leave@xxxxxxx
 |