27.12.2021 06:24, Stefan Berger пишет:
I suppose the host has a TIS interface.
Hello, Stefan.
I do not think so. There is only tpm_crb tpm kernel module compiled in
my system
# systemd-cryptenroll --tpm2-device=list
PATH DEVICE DRIVER
/dev/tpmrm0 MSFT0101:00 tpm_crb
The reason it gives this message is that the response this TPM may
send back could be 4096 bytes in size but the CRB of the VM can only
catch 3968 bytes, so there's a mismatch. You may not be able to use
the CRB in passthrough mode. I would try to have the VM use the TIS.
--
Best regards, Yuri Konotopov
