David Wright wrote: > On Mon 14 Aug 2023 at 11:26:13 (+0200), Björn Persson wrote: > > Other functions in the same source file create /dev/tpm0, and it looks > > like the random number generator should get registered together with > > the TPM. It's conditional on CONFIG_HW_RANDOM_TPM. Where can I check > > the value of that option? > > $ grep CONFIG_HW_RANDOM_TPM /boot/config-5.10.0-2* > /boot/config-5.10.0-23-amd64:CONFIG_HW_RANDOM_TPM=y > /boot/config-5.10.0-24-amd64:CONFIG_HW_RANDOM_TPM=y > $ Thanks. And look at that: # grep CONFIG_HW_RANDOM_TPM /boot/config-* /boot/config-5.10.0-23-amd64:CONFIG_HW_RANDOM_TPM=y # grep CONFIG_HW_RANDOM_TPM /boot/config-6.1.0-11-amd64 ; echo $? 1 So apparently randomness from a TPM is completely disabled in Debian 12 regardless of manufacturer. Next question: Why? Björn Persson
Attachment:
pgpYwhMBEMyzW.pgp
Description: OpenPGP digital signatur