Remove DO_WITH_DEBUG from increment_tpm_counter calls

tlaurion · tlaurion · commit 699a1a7ed7ef · 2026-02-08T18:17:06.000-05:00
DO_WITH_DEBUG redirects stdout/stderr through tee for logging, which
breaks interactive password prompts by interfering with TTY access.

Both increment_tpm_counter calls already redirect output to /dev/null,
so DO_WITH_DEBUG provided no logging benefit while breaking prompts.

This allows TPM owner password prompts to display correctly on console
when TPM counters need to be created or incremented.

Signed-off-by: Thierry Laurion &lt;insurgo@riseup.net&gt;
diff --git a/initrd/bin/gui-init b/initrd/bin/gui-init
@@ -566,7 +566,7 @@ reset_tpm() {
 			DEBUG "TPM_COUNTER: $TPM_COUNTER"
 			#TPM_COUNTER can be empty
 
-			DO_WITH_DEBUG increment_tpm_counter $TPM_COUNTER>/dev/null 2>&1 ||
+			increment_tpm_counter $TPM_COUNTER>/dev/null 2>&1 ||
 				die "Unable to increment tpm counter"
 
 			DO_WITH_DEBUG sha256sum /tmp/counter-$TPM_COUNTER >/boot/kexec_rollback.txt ||
diff --git a/initrd/bin/kexec-sign-config b/initrd/bin/kexec-sign-config
@@ -94,7 +94,7 @@ if [ "$rollback" = "y" ]; then
 
 	# Increment the TPM counter
 	DEBUG "rollback=y: Incrementing counter $TPM_COUNTER."
-	DO_WITH_DEBUG increment_tpm_counter $TPM_COUNTER >/dev/null 2>&1 ||
+	increment_tpm_counter $TPM_COUNTER >/dev/null 2>&1 ||
 		die "$paramsdir: Unable to increment tpm counter"
 
 	# Ensure the incremented counter file exists
