Blame view
security/integrity/Kconfig
689 Bytes
f381c2722 integrity: move i... |
1 2 3 |
# config INTEGRITY def_bool y |
66dbc325a evm: re-release |
4 |
depends on IMA || EVM |
f381c2722 integrity: move i... |
5 |
|
8607c5014 integrity: digita... |
6 7 |
config INTEGRITY_DIGSIG boolean "Digital signature verification using multiple keyrings" |
de3535337 digsig: build dep... |
8 |
depends on INTEGRITY && KEYS |
8607c5014 integrity: digita... |
9 10 11 12 13 14 15 16 17 18 |
default n select DIGSIG help This option enables digital signature verification support using multiple keyrings. It defines separate keyrings for each of the different use cases - evm, ima, and modules. Different keyrings improves search performance, but also allow to "lock" certain keyring to prevent adding new keys. This is useful for evm and module keyrings, when keys are usually only added from initramfs. |
f381c2722 integrity: move i... |
19 |
source security/integrity/ima/Kconfig |
66dbc325a evm: re-release |
20 |
source security/integrity/evm/Kconfig |