HP Laptop TPM slots are reversed, need to enter recovery key at each boot #35
Description
Describe the bug
After install Aeon always asks for the recovery password. There were no errors during install. The Wiki section on key slot layout says that Slot 1 = TPM 2.0 key, and Slot 2 is for the recovery key.
On my HP laptop when I check the layout using sudo systemd-cryptenroll /dev/nvme0n1p2 I see:
SLOT TYPE
1 recovery
2 tpm2
To Reproduce
Steps to reproduce the behavior:
- Install (downloaded image today)
- Reboot, prompted for recovery key
- sudo systemd-cryptenroll /dev/nvme0n1p2
- Slot 1 = recovery; Slot 2 = tpm2
Expected behavior
According to the wiki Aeon expects the tpm2 key to be in slot 1 and the recovery key to be in slot 2.
hardware
HP ZBook G8 Firefly 14
cat /sys/class/tpm/tpm0/tpm_version_major = 2
cat /sys/class/tpm/tpm0/device/firmware_node/description = 2.0
tpm device (dmesg | grep -i tpm) = tpm_tis IFX0785:00: 2.0 TPM (device-id 0x1B, rev-id 22)
tik log
tik.log is not created on the USB
/etc/os-release
NAME="Aeon"
VERSION="20260109"
ID="aeon"
ID_LIKE="suse opensuse opensuse-tumbleweed opensuse-microos opensuse-aeon microos"
VERSION_ID="20260109"
PRETTY_NAME="Aeon"
ANSI_COLOR="0;32"
CPE_NAME="cpe:/o:opensuse:aeon:20260109"
BUG_REPORT_URL="https://aeondesktop.org/reportbug"
SUPPORT_URL="https://aeondesktop.org/bugs"
HOME_URL="https://aeondesktop.org/"
DOCUMENTATION_URL="https://aeondesktop.org/docs"
LOGO="distributor-logo-Aeon"