From 7c4529d110f1d16e1557623f97746ac4ecee1489 Mon Sep 17 00:00:00 2001 From: Kai Lueke Date: Fri, 15 Mar 2024 20:25:35 +0100 Subject: [PATCH] profiles: Enable TPM2 support in systemd We could use systemd-cryptenroll and cryptsetup with a TPM device but so far the support was not compiled in. Enable the use flags for TPM2 support in systemd. --- build_packages | 2 +- .../third_party/coreos-overlay/profiles/coreos/base/package.use | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/build_packages b/build_packages index 1a9cd6a96a3..e23c2c0ff37 100755 --- a/build_packages +++ b/build_packages @@ -272,7 +272,7 @@ if [[ "${FLAGS_usepkgonly}" -eq "${FLAGS_FALSE}" ]]; then break_dep_loop sys-apps/util-linux udev,systemd,cryptsetup \ sys-fs/cryptsetup udev \ sys-fs/lvm2 udev,systemd \ - sys-apps/systemd cryptsetup \ + sys-apps/systemd cryptsetup,tpm \ net-misc/curl http2 \ net-libs/nghttp2 systemd fi diff --git a/sdk_container/src/third_party/coreos-overlay/profiles/coreos/base/package.use b/sdk_container/src/third_party/coreos-overlay/profiles/coreos/base/package.use index abb96dce804..bb8c7114765 100644 --- a/sdk_container/src/third_party/coreos-overlay/profiles/coreos/base/package.use +++ b/sdk_container/src/third_party/coreos-overlay/profiles/coreos/base/package.use @@ -29,7 +29,7 @@ app-admin/sudo -sendmail # disable hybrid cgroup as we use the unified mode now # use lzma which is the default on non-gentoo systems, enable selinux, -sys-apps/systemd -cgroup-hybrid curl idn lzma selinux +sys-apps/systemd -cgroup-hybrid curl idn lzma selinux tpm net-libs/libmicrohttpd -ssl # disable kernel config detection and module building