Re: [PATCH v6 07/12] integrity: Select CONFIG_KEYS instead of depending on it
From: Mimi Zohar <hidden>
Date: 2018-03-21 23:19:00
Also in:
keyrings, linux-crypto, linux-integrity, linux-security-module, lkml
On Fri, 2018-03-16 at 17:38 -0300, Thiago Jung Bauermann wrote:
This avoids a dependency cycle in CONFIG_IMA_APPRAISE_MODSIG (introduced by a later patch in this series): it will select CONFIG_MODULE_SIG_FORMAT which in turn selects CONFIG_KEYS. Kconfig then complains that CONFIG_INTEGRITY_SIGNATURE depends on CONFIG_KEYS. Signed-off-by: Thiago Jung Bauermann <redacted>
Signed-off-by: Mimi Zohar <redacted>
quoted hunk ↗ jump to hunk
--- security/integrity/Kconfig | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)diff --git a/security/integrity/Kconfig b/security/integrity/Kconfig index da9565891738..0d642e0317c7 100644 --- a/security/integrity/Kconfig +++ b/security/integrity/Kconfig@@ -17,8 +17,8 @@ if INTEGRITY config INTEGRITY_SIGNATURE bool "Digital signature verification using multiple keyrings" - depends on KEYS default n + select KEYS select SIGNATURE help This option enables digital signature verification support