I have an APU2e5 with TPM2 module and it appears to be working however, it is listed as disabled based on the output of “rngd --list” Attempts to enable it using “rngd --include=tpm” return “enabling” but subsequent listing indicates it is still disabled.
At some point yesterday after messing around at the command line, it started to work and returned a solid 4k entropy status on the WUI. Unfortunately, I have no idea why it started working.
Thank you for the info. I used the history command to realize that I can’t explain why it worked one day but didn’t work after a reboot. My BIOS is currently coreboot 4.15.01.
Frustrating. I can’t enable the tpm, nor can I disable hwrng. I can issue the command, and the return message indicated that the service is “enabling” or “disabling”, however, a subsequent list of services indicates that there was no change.
The TPM is definitely available (and enabled?) in the BIOS. The SeaBIOS/coreboot BIOS only have very limited options regarding the TPM. There is no ability to enable or disable, it appears to be always enabled if present and detected. The only two things that can be done with the TPM via the BIOS is: clear keys/cache; and enable/disable SHA1 and/or SHA256.
Question. Within the WUI, under the entropy, if rngd is not running, what process does the WUI refer to? The WUI under “Hardware Support” indicates “Random Number Generator Daemon” with status of either “stopped” or “running”. I had assumed that the process was rngd.