RFE: Ability to store NM credentials in TPM2
For IoT use cases I've had a number of requests to be able to use a TPM2 for storing of various network related credentials (WiFi/OpenVPN etc) and it seems it would be useful for NetworkManager to be able to deal with this in a central unified way so each different option doesn't have to implement TPM2 credential storage independently.
As a point of reference OpenConnect as of v8 supports TPM2 credential storage: http://www.infradead.org/openconnect/tpm.html
The upstream TPM2 tools project is found here: https://github.com/tpm2-software
The TPM2 TSS project has libraries for OpenSSL (tpm2-tss-engine), and PKCS#11 interface (tpm2-pkcs11).