Home Explore Help
Sign In
GfA
/
linux_kernel
5
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

evm: enable key retention service automatically

If keys are not enabled, EVM is not visible in the configuration menu.
It may be difficult to figure out what to do unless you really know.
Other subsystems as NFS, CIFS select keys automatically. This patch does
the same.

This patch also removes '(TRUSTED_KEYS=y || TRUSTED_KEYS=n)' dependency,
which is unnecessary. EVM does not depend on trusted keys, but on
encrypted keys. evm.h provides compile time dependency.

Signed-off-by: Dmitry Kasatkin <d.kasatkin@samsung.com>
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
Dmitry Kasatkin 11 years ago
parent
1d91ac6213
commit
a3aef94b31
1 changed files with 3 additions and 2 deletions
Split View Show Diff Stats
  1. 3 2
      security/integrity/evm/Kconfig

+ 3 - 2
security/integrity/evm/Kconfig
View File 

@@ -1,9 +1,10 @@
 
 config EVM
 
 	boolean "EVM support"
 
-	depends on SECURITY && KEYS && (TRUSTED_KEYS=y || TRUSTED_KEYS=n)
 
+	depends on SECURITY
 
+	select KEYS
 
+	select ENCRYPTED_KEYS
 
 	select CRYPTO_HMAC
 
 	select CRYPTO_SHA1
 
-	select ENCRYPTED_KEYS
 
 	default n
 
 	help
 
 	  EVM protects a file's security extended attributes against