Ich glaube ich bin nach einem Nitropad Qubes OS Update irgendwo falsch abgebogen.
Saving a default will modify the disk. Proceed? (Y/n): Y
Do you want to reseal a disk key to the TPM [y/N]: y
+++ LVM volume groups (lvm vgscan):
Segmentation fault
Encrypted LVM group? (was ‘’): /dev/sda2
+++ Block devices (blkid):
/dev/sda2: UUID="…"
/dev/sda1: UUID="…"
Encrypted devices? (was ‘/dev/sda2’ ):
Ohne “Please set a new default” kann ich booten.
Aber scheinbar habe ich mich beim ersten mal vertan und kann die default boot option nicht mehr setzen.
Hat jemand eine Idee wie ich die default boot option wieder setzen kann?
i followed the in steps for setting a new default boot
it all works as expected.
But i have still the problem that i am unable to read a key from TPM:
I choose the default boot and get:
+++ Found verified kexec boot params
gpg: Signature made Mon Sep 14 16:58:10 2020 UTC
gpg: using RSA key …
gpg: Good signature from “…” [ultimate]
+++ Found verified kexec boot params
+++ Scanning for unsigned boot options
+++ Checking verified boot hash file
+++ Verified boot hashes
632…: 000…
/tmp/counter-632…: OK
+++ Checking verified default boot hash file
+++ Verified default boot hashes
+++ Executing default boot for Qubes, with Xen hypervisor:
New value of PCR[6]: 71…
Error Illegal index from NV_ReadValue
Unable to read key from TPM NVRAM
!!! Failed to unseal the TPM LUKS disk key
New value of PCR[4]: 11…
Do you wish to boot and use the disk recovery key? [Y/n]
When i choose Y i can boot.
How do i get rid of the TPM error?
