Ubuntu Version:
Ubuntu 24.04.2 LTS x86_64
Problem Description:
Having issues with fully shutting down my Laptop threw Ubuntu. Everything shuts down and turns off (Screen display and services) except the CPU and one FnLk key light. I need to do a long press on my power button to shut it down.
The reason why I want to enable TPM 2.0 is because I need to enable BitLocker for Windows 11 and LUKS for Ubuntu
Relevant System Information:
- Laptop: Thinkpad T460s
- CPU: Intel i5-6200U (4) @ 2.800GHz
- OSes (both of them were installed when I had the Discrete TPM 1.2 chip enabled):
- Windows 11 Enterprise LTSC IoT
- Ubuntu 24.04.2 LTS x86_64
Screenshots or Error Messages:
boot logs and shutdown logs are the basically the same between Discrete TPM 1.2 and Intel-ptt TPM 2.0 and nothing important of value is in them
sudo journalctl -b -p err
Discrete TPM 1.2 enabled
Jul 06 14:46:03 Ubuntu-T460s kernel: x86/cpu: SGX disabled by BIOS.
Jul 06 14:46:08 Ubuntu-T460s kernel: Bluetooth: hci0: Reading supported features failed (-16)
Jul 06 14:46:08 Ubuntu-T460s bluetoothd[1301]: profiles/sap/server.c:sap_server_register() Sap driver initialization failed.
Jul 06 14:46:08 Ubuntu-T460s bluetoothd[1301]: sap-server: Operation not permitted (1)
Jul 06 14:46:11 Ubuntu-T460s systemd[1]: Failed to start vboxdrv.service - VirtualBox Linux kernel module.
Jul 06 14:46:24 Ubuntu-T460s gdm-password][3583]: gkr-pam: unable to locate daemon control file
Jul 06 14:46:25 Ubuntu-T460s gdm3[2516]: Gdm: on_display_added: assertion 'GDM_IS_REMOTE_DISPLAY (display)' failed
Jul 06 14:46:25 Ubuntu-T460s systemd[3593]: Failed to start app-gnome-gnome\x2dkeyring\x2dpkcs11-3827.scope - Application launched by gnome-session-binary.
Jul 06 14:46:25 Ubuntu-T460s systemd[3593]: Failed to start app-gnome-gnome\x2dkeyring\x2dssh-3831.scope - Application launched by gnome-session-binary.
Jul 06 14:46:28 Ubuntu-T460s systemd[3593]: Failed to start app-gnome-spice\x2dvdagent-4141.scope - Application launched by gnome-session-binary.
Jul 06 14:46:32 Ubuntu-T460s gdm3[2516]: Gdm: on_display_removed: assertion 'GDM_IS_REMOTE_DISPLAY (display)' failed
Intel-PTT TPM 2.0 enabled
Jul 06 15:02:08 Ubuntu-T460s kernel: x86/cpu: SGX disabled by BIOS.
Jul 06 15:02:08 Ubuntu-T460s kernel: DMAR: DRHD: handling fault status reg 3
Jul 06 15:02:08 Ubuntu-T460s kernel: DMAR: [DMA Read NO_PASID] Request device [00:12.4] fault addr 0xb7fff000 [fault reason 0x02] Present bit in context entry is clear
Jul 06 15:02:08 Ubuntu-T460s kernel: tpm tpm0: Operation Timed out
Jul 06 15:02:08 Ubuntu-T460s kernel: tpm tpm0: Operation Timed out
Jul 06 15:02:08 Ubuntu-T460s kernel: tpm_crb MSFT0101:00: probe with driver tpm_crb failed with error -62
Jul 06 15:02:12 Ubuntu-T460s kernel: Bluetooth: hci0: Reading supported features failed (-16)
Jul 06 15:02:12 Ubuntu-T460s bluetoothd[1151]: profiles/sap/server.c:sap_server_register() Sap driver initialization failed.
Jul 06 15:02:12 Ubuntu-T460s bluetoothd[1151]: sap-server: Operation not permitted (1)
Jul 06 15:02:16 Ubuntu-T460s systemd[1]: Failed to start vboxdrv.service - VirtualBox Linux kernel module.
Jul 06 15:02:32 Ubuntu-T460s gdm-password][3618]: gkr-pam: unable to locate daemon control file
Jul 06 15:02:34 Ubuntu-T460s gdm3[2587]: Gdm: on_display_added: assertion 'GDM_IS_REMOTE_DISPLAY (display)' failed
Jul 06 15:02:34 Ubuntu-T460s systemd[3756]: Failed to start app-gnome-gnome\x2dkeyring\x2dpkcs11-4048.scope - Application launched by gnome-session-binary.
Jul 06 15:02:34 Ubuntu-T460s systemd[3756]: Failed to start app-gnome-gnome\x2dkeyring\x2dsecrets-4044.scope - Application launched by gnome-session-binary.
Jul 06 15:02:37 Ubuntu-T460s systemd[3756]: Failed to start app-gnome-snap\x2duserd\x2dautostart-4274.scope - Application launched by gnome-session-binary.
Jul 06 15:02:42 Ubuntu-T460s gdm3[2587]: Gdm: on_display_removed: assertion 'GDM_IS_REMOTE_DISPLAY (display)' failed
sudo dmesg | grep -i tpm
Discrete TPM 1.2 enabled
[ 0.632481] tpm_tis 00:08: 1.2 TPM (device-id 0x1B, rev-id 16)
[ 2.983717] systemd[1]: systemd 255.4-1ubuntu8.8 running in system mode (+PAM +AUDIT +SELINUX +APPARMOR +IMA +SMACK +SECCOMP +GCRYPT -GNUTLS +OPENSSL +ACL +BLKID +CURL +ELFUTILS +FIDO2 +IDN2 -IDN +IPTC +KMOD +LIBCRYPTSETUP +LIBFDISK +PCRE2 -PWQUALITY +P11KIT +QRENCODE +TPM2 +BZIP2 +LZ4 +XZ +ZLIB +ZSTD -BPF_FRAMEWORK -XKBCOMMON +UTMP +SYSVINIT default-hierarchy=unified)
[ 3.631738] systemd[1]: systemd-pcrextend.socket - TPM2 PCR Extension (Varlink) was skipped because of an unmet condition check (ConditionSecurity=measured-uki).
[ 3.816571] systemd[1]: systemd-pcrmachine.service - TPM2 PCR Machine ID Measurement was skipped because of an unmet condition check (ConditionSecurity=measured-uki).
[ 3.839267] systemd[1]: systemd-tpm2-setup-early.service - TPM2 SRK Setup (Early) was skipped because of an unmet condition check (ConditionSecurity=measured-uki).
Intel-PTT TPM 2.0 enabled
[ 0.000000] efi: SMBIOS=0xb7056000 ACPI=0xb7ffd000 ACPI 2.0=0xb7ffd014 ESRT=0xb6ee6000 MOKvar=0xb6ed1000 INITRD=0xac001198 RNG=0xb7fcbf98 TPMEventLog=0xa3619018
[ 0.000000] TPM Final Events table not present
[ 0.026397] ACPI: SSDT 0x00000000B7FFA000 0004B7 (v02 LENOVO Tpm2Tabl 00001000 INTL 20141107)
[ 0.026413] ACPI: TPM2 0x00000000B7FF8000 000034 (v03 LENOVO TP-N1C 00001580 PTEC 00000002)
[ 0.026596] ACPI: Reserving TPM2 table memory at [mem 0xb7ff8000-0xb7ff8033]
[ 3.209866] tpm tpm0: Operation Timed out
[ 6.415903] tpm tpm0: Operation Timed out
[ 6.415935] tpm_crb MSFT0101:00: probe with driver tpm_crb failed with error -62
[ 6.511260] ima: No TPM chip found, activating TPM-bypass!
[ 8.581100] systemd[1]: systemd 255.4-1ubuntu8.8 running in system mode (+PAM +AUDIT +SELINUX +APPARMOR +IMA +SMACK +SECCOMP +GCRYPT -GNUTLS +OPENSSL +ACL +BLKID +CURL +ELFUTILS +FIDO2 +IDN2 -IDN +IPTC +KMOD +LIBCRYPTSETUP +LIBFDISK +PCRE2 -PWQUALITY +P11KIT +QRENCODE +TPM2 +BZIP2 +LZ4 +XZ +ZLIB +ZSTD -BPF_FRAMEWORK -XKBCOMMON +UTMP +SYSVINIT default-hierarchy=unified)
[ 9.225086] systemd[1]: systemd-pcrextend.socket - TPM2 PCR Extension (Varlink) was skipped because of an unmet condition check (ConditionSecurity=measured-uki).
[ 9.408053] systemd[1]: systemd-pcrmachine.service - TPM2 PCR Machine ID Measurement was skipped because of an unmet condition check (ConditionSecurity=measured-uki).
[ 9.421023] systemd[1]: systemd-tpm2-setup-early.service - TPM2 SRK Setup (Early) was skipped because of an unmet condition check (ConditionSecurity=measured-uki).
(It looks like doesn’t detect the TPM 2.0 chip in the first place)
BIOS specs
Security Chip
Unknown DEPEND error that I can not find in any file
What I’ve Tried:
- Disabled Windows Fast boot again
- Adding
acpi=force apm=power_offtoGRUB_CMDLINE_LINUX_DEFAULTin /etc/default/grub - Adding
acpi=force apm=power_offtoGRUB_CMDLINE_LINUX_DEFAULTin /etc/default/grub