Skip to content

Commit

Permalink
evm: enable key retention service automatically
Browse files Browse the repository at this point in the history 
If keys are not enabled, EVM is not visible in the configuration menu.
It may be difficult to figure out what to do unless you really know.
Other subsystems as NFS, CIFS select keys automatically. This patch does
the same.

This patch also removes '(TRUSTED_KEYS=y || TRUSTED_KEYS=n)' dependency,
which is unnecessary. EVM does not depend on trusted keys, but on
encrypted keys. evm.h provides compile time dependency.

Signed-off-by: Dmitry Kasatkin <d.kasatkin@samsung.com>
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
  • Loading branch information
Dmitry Kasatkin authored and Mimi Zohar committed Mar 7, 2014
1 parent 1d91ac6 commit a3aef94
Showing 1 changed file with 3 additions and 2 deletions.
5 changes: 3 additions & 2 deletions security/integrity/evm/Kconfig
View file
Original file line number Diff line number Diff line change
@@ -1,9 +1,10 @@
config EVM
boolean "EVM support"
depends on SECURITY && KEYS && (TRUSTED_KEYS=y || TRUSTED_KEYS=n)
depends on SECURITY
select KEYS
select ENCRYPTED_KEYS
select CRYPTO_HMAC
select CRYPTO_SHA1
select ENCRYPTED_KEYS
default n
help
EVM protects a file's security extended attributes against
Expand Down

0 comments on commit a3aef94

Please sign in to comment.