uki: enable FIPS mode

JIRA: https://issues.redhat.com/browse/RHEL-37109
Upstream Status: RHEL-only

dracut-057-79.git20241127.el9 adds support for UKIs in the FIPS module,
enable it. Note: RHEL9 already ships 'fips=1' cmdline extension in
kernel-uki-virt-addons, this can now be used.

Signed-off-by: Vitaly Kuznetsov <vkuznets@redhat.com>

Author: vittyvk

redhat/dracut-virt.conf

@@ -20,6 +20,11 @@ dracutmodules+=" walinuxagentcvm "
 # modules: root disk integrity protection
 dracutmodules+=" systemd-veritysetup "
 
+# modules: FIPS
+dracutmodules+=" fips "
+# FIPS mode requires early crypto drivers test
+drivers+=" =crypto "
+
 # drivers: virtual buses, pci
 drivers+=" virtio-pci virtio-mmio "      # qemu-kvm
 drivers+=" hv-vmbus pci-hyperv "         # hyperv

redhat/kernel.spec.template

@@ -776,7 +776,7 @@ BuildRequires: lld
 %endif
 
 %if %{efiuki}
-BuildRequires: dracut >= 057-67.git20240812.el9
+BuildRequires: dracut >= 057-79.git20241127.el9
 # For dracut UEFI uki binaries
 BuildRequires: binutils
 # For the initrd