HEAD commit is: c651d559d

find /home/wcrobert/.local/share/tpm2-tss
/home/wcrobert/.local/share/tpm2-tss
/home/wcrobert/.local/share/tpm2-tss/user
/home/wcrobert/.local/share/tpm2-tss/user/keystore

{
     "profile_name": "P_ECCP256SHA256",
     "profile_dir": "/usr/local/etc/tpm2-tss/fapi-profiles/",
     "user_dir": "~/.local/share/tpm2-tss/user/keystore",
     "system_dir": "/usr/local/var/lib/tpm2-tss/system/keystore",
     "tcti": "",
     "system_pcrs" : [],
     "log_dir" : "/usr/local/var/run/tpm2-tss/eventlog/"
}


From: Fuchs, Andreas <andreas.fuchs@sit.fraunhofer.de>
Sent: Monday, March 15, 2021 4:00 AM
To: Roberts, William C <william.c.roberts@intel.com>; tpm2@lists.01.org <tpm2@lists.01.org>
Subject: AW: FAPI Provision Could not open: /HN
 
What does a "find /home/wcrobert/.local/share/tpm2-tss" give back ?
And what's your fapi-config.json ?

________________________________________
Von: Roberts, William C <william.c.roberts@intel.com>
Gesendet: Donnerstag, 11. März 2021 21:30
An: tpm2@lists.01.org
Betreff: [tpm2] FAPI Provision Could not open: /HN

I have never been able to run a successfull tss2 provision command (ever), the most current error is this:

$ tss2 provision

ERROR:fapijson:src/tss2-fapi/ifapi_json_serialize.c:529:ifapi_json_IFAPI_OBJECT_serialize() Invalid call get_json ErrorCode (0x00060001)
ERROR:fapi:src/tss2-fapi/ifapi_keystore.c:710:ifapi_keystore_store_async() ErrorCode (0x00060001) Object for /home/wcrobert/.local/share/tpm2-tss/user/keystore//P_ECCP256SHA256/HN/object.json could not be serialized.
ERROR:fapi:src/tss2-fapi/api/Fapi_Provision.c:1290:Fapi_Provision_Finish() ErrorCode (0x00060001) Could not open: /HN
WARNING:fapi:src/tss2-fapi/ifapi_io.c:421:ifapi_io_remove_directories() Removing: /usr/local/var/lib/tpm2-tss/system/keystore/P_ECCP256SHA256/HS/SRK/object.json
WARNING:fapi:src/tss2-fapi/ifapi_io.c:421:ifapi_io_remove_directories() Removing: /usr/local/var/lib/tpm2-tss/system/keystore/P_ECCP256SHA256/HS/object.json
WARNING:fapi:src/tss2-fapi/ifapi_io.c:421:ifapi_io_remove_directories() Removing: /usr/local/var/lib/tpm2-tss/system/keystore/P_ECCP256SHA256/LOCKOUT/object.json
WARNING:fapi:src/tss2-fapi/ifapi_io.c:421:ifapi_io_remove_directories() Removing: /usr/local/var/lib/tpm2-tss/system/keystore/P_ECCP256SHA256/HE/EK/object.json
WARNING:fapi:src/tss2-fapi/ifapi_io.c:421:ifapi_io_remove_directories() Removing: /usr/local/var/lib/tpm2-tss/system/keystore/P_ECCP256SHA256/HE/object.json
ERROR:fapi:src/tss2-fapi/api/Fapi_Provision.c:168:Fapi_Provision() ErrorCode (0x00060001) Provision
Fapi_Provision(0x60001) - fapi:Catch all for all errors not otherwise specified

Any ideas?

System Details Below:

tpm2-tss version
pkg-config --modversion tss2-fapi
3.1.0-dev

tpm2-tss$ git describe 3.0.0-136-gc651d559d036

tpm2-tools version:
tss2 getrandom --version
tool="getrandom" version="5.0-92-g46ffe7eed571"

I have a working connection to a swtpm via tpm2-abrmd as confirmed by:'
tpm2 getrandom --hex --tcti=tabrmd 4

I have modified my /usr/local/etc/tpm2-tss/fapi-config.json to include:
"ek_cert_less" : "yes"
"tcti": "tabrmd"

My user wcrobert is part of tss group:

$groups
wcrobert adm cdrom sudo dip plugdev lpadmin sambashare kvm libvirt tss docker