grigorig/swtpm-vtpm.sh

## swtpm-vtpm.sh
#!/usr/bin/bash
modprobe tpm_vtpm_proxy
rm -rf /tmp/vtpm.state /tmp/vtpm.*
mkdir -p /tmp/vtpm.state
swtpm chardev --vtpm-proxy --tpmstate dir=/tmp/vtpm.state --tpm2 --ctrl type=tcp,port=2322 --log file=/tmp/vtpm.log,level=2 >/tmp/vtpm.out &
trap "kill %%" SIGINT EXIT

for i in {1..5}; do
    [[ -s /tmp/vtpm.out ]] && break
    echo "waiting for swtpm to be ready"
    sleep 1
done

line=$(</tmp/vtpm.out)
pat='/dev/tpm([0-9]+)'
if [[ $line =~ $pat ]]; then
    idx="${BASH_REMATCH[1]}"
    echo "swtpm ready with device index $idx"
else
    echo "vtpm not ready!"
    kill %%
    wait -f
    exit 1
fi

echo "setting up vtpm"
export TPM2TOOLS_TCTI="device:/dev/tpmrm$idx"
tpm2_pcrextend 7:sha256=b5bb9d8014a0f9b1d61e21e796d78dccdf1352f23cd32812f4850b878ae4944c

wait -f
	#!/usr/bin/bash
	modprobe tpm_vtpm_proxy
	rm -rf /tmp/vtpm.state /tmp/vtpm.*
	mkdir -p /tmp/vtpm.state
	swtpm chardev --vtpm-proxy --tpmstate dir=/tmp/vtpm.state --tpm2 --ctrl type=tcp,port=2322 --log file=/tmp/vtpm.log,level=2 >/tmp/vtpm.out &
	trap "kill %%" SIGINT EXIT

	for i in {1..5}; do
	[[ -s /tmp/vtpm.out ]] && break
	echo "waiting for swtpm to be ready"
	sleep 1
	done

	line=$(</tmp/vtpm.out)
	pat='/dev/tpm([0-9]+)'
	if [[ $line =~ $pat ]]; then
	idx="${BASH_REMATCH[1]}"
	echo "swtpm ready with device index $idx"
	else
	echo "vtpm not ready!"
	kill %%
	wait -f
	exit 1
	fi

	echo "setting up vtpm"
	export TPM2TOOLS_TCTI="device:/dev/tpmrm$idx"
	tpm2_pcrextend 7:sha256=b5bb9d8014a0f9b1d61e21e796d78dccdf1352f23cd32812f4850b878ae4944c

	wait -f