Eric Lee / smarc-ti-linux-kernel

Download as
Browse Code ยป

Commit a3aef94b312ec51b5dfc199ef884924e60ad1b75

Authored by Dmitry Kasatkin
Committed by Mimi Zohar
1 parent 1d91ac6213
Exists in master and in 13 other branches dlt-processor-sdk-linux-03.00.00.04, processor-sdk-linux-02.00.01, smarc-ti-linux-3.15.y, smarc-ti-lsk-linux-4.1.y, smarct3x-processor-sdk-04.01.00.06, smarct3x-processor-sdk-linux-02.00.01, smarct3x-processor-sdk-linux-03.00.00.04, smarct4x-800-processor-sdk-linux-02.00.01, smarct4x-processor-sdk-04.01.00.06, smarct4x-processor-sdk-linux-02.00.01, smarct4x-processor-sdk-linux-03.00.00.04, ti-linux-3.15.y, ti-lsk-linux-4.1.y

evm: enable key retention service automatically 

If keys are not enabled, EVM is not visible in the configuration menu.
It may be difficult to figure out what to do unless you really know.
Other subsystems as NFS, CIFS select keys automatically. This patch does
the same.

This patch also removes '(TRUSTED_KEYS=y || TRUSTED_KEYS=n)' dependency,
which is unnecessary. EVM does not depend on trusted keys, but on
encrypted keys. evm.h provides compile time dependency.

Signed-off-by: Dmitry Kasatkin <d.kasatkin@samsung.com>
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>

Showing 1 changed file with 3 additions and 2 deletions Side-by-side Diff

security/integrity/evm/Kconfig
Diff comments   View file @ a3aef94
1 1 config EVM
2 2 boolean "EVM support"
3   - depends on SECURITY && KEYS && (TRUSTED_KEYS=y || TRUSTED_KEYS=n)
  3 + depends on SECURITY
  4 + select KEYS
  5 + select ENCRYPTED_KEYS
4 6 select CRYPTO_HMAC
5 7 select CRYPTO_SHA1
6   - select ENCRYPTED_KEYS
7 8 default n
8 9 help
9 10 EVM protects a file's security extended attributes against