chore: enable random trust CPU

Enable `CONFIG_RANDOM_TRUST_CPU` Even though Talos sets this via kernel cmdline, enabling also in Kernel config ```bash ❯ talosctl read /proc/cmdline BOOT_IMAGE=/B/vmlinuz talos.platform=metal talos.config=none console=tty0 console=ttyS0,115200 init_on_alloc=1 slab_nomerge pti=on consoleblank=0 nvme_core.io_timeout=4294967295 random.trust_cpu=on printk.devkmsg=on ima_template=ima-ng ima_appraise=fix ima_hash=sha512 talos.board=jetson_nano sysctl.kernel.kexec_load_disabled=1 ``` Ref: https://systemd.io/RANDOM_SEEDS/ Signed-off-by: Noel Georgi <[email protected]>
siderolabs · Mar 28, 2022 · 3baf4e4 · 3baf4e4
1 parent df31920
commit 3baf4e4
Show file tree

Hide file tree

Showing 2 changed files with 2 additions and 2 deletions.
diff --git a/kernel/build/config-amd64 b/kernel/build/config-amd64
@@ -3079,7 +3079,7 @@ CONFIG_TCG_CRB=y
 # CONFIG_TELCLOCK is not set
 # CONFIG_XILLYBUS is not set
 # CONFIG_XILLYUSB is not set
-# CONFIG_RANDOM_TRUST_CPU is not set
+CONFIG_RANDOM_TRUST_CPU=y
 # CONFIG_RANDOM_TRUST_BOOTLOADER is not set
 # end of Character devices
 

diff --git a/kernel/build/config-arm64 b/kernel/build/config-arm64
@@ -3583,7 +3583,7 @@ CONFIG_TCG_CRB=y
 # CONFIG_TCG_TIS_ST33ZP24_SPI is not set
 # CONFIG_XILLYBUS is not set
 # CONFIG_XILLYUSB is not set
-# CONFIG_RANDOM_TRUST_CPU is not set
+CONFIG_RANDOM_TRUST_CPU=y
 # CONFIG_RANDOM_TRUST_BOOTLOADER is not set
 # end of Character devices