Package: tpm2-tools
Version: 3.1.3-1
Severity: normal
The -v output of the tpm2_* tools reports an empty version number, e.g.:
% tpm2_load -v
tool="tpm2_load" version="" tctis="dynamic" tcti-default=device
dlclose=enabled
% tpm2_listpersistent -v
tool="tpm2_listpersistent" version="" tctis="dynamic"
tcti-default=device dlclose=enabled
%
This renders clevis's TPM integration (clevis-tpm2) unusable, because
clevis-{decrypt,encrypt}-tpm2 both refuse to run unless it detects
tpm2-tools version 3.
The empty VERSION string appears to come from the use of autoreconf in
debian/rules. The upstream tarball has a PACKAGE_VERSION hardcoded in
'configure', but 'configure.ac' and autoreconf-ing only expects to be run
from a git checkout, and derives the version from `git describe`:
% head -n2 configure.ac
AC_INIT([tpm2-tools],
[m4_esyscmd_s([git describe --tags --always --dirty])])
Somewhat related: https://github.com/tpm2-software/tpm2-tools/pull/695
-- System Information:
Debian Release: buster/sid
APT prefers unstable-debug
APT policy: (500, 'unstable-debug'), (500, 'unstable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 4.18.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8),
LANGUAGE=en_US.UTF-8:en (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
Versions of packages tpm2-tools depends on:
ii libc6 2.27-8
ii libcurl3-gnutls 7.62.0-1
ii libssl1.1 1.1.1-2
ii libtss2-esys0 2.1.0-2
tpm2-tools recommends no packages.
tpm2-tools suggests no packages.
-- no debconf information