[PATCH 03/20] ima: move asymmetric keys config option

From: Dmitry Kasatkin
Date: Wed Apr 23 2014 - 09:44:14 EST

Next message: Anna Schumaker: "Re: [PATCH 4/5] SUNRPC: track when a client connection is routed to the local host."
Previous message: Dmitry Kasatkin: "[PATCH 13/20] ima: replace opencount with bitop"
In reply to: Dmitry Kasatkin: "[PATCH 13/20] ima: replace opencount with bitop"
Next in thread: Dmitry Kasatkin: "[PATCH 04/20] integrity: move integrity subsystem options to a separate menu"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

For better visual appearance it is better to co-locate
asymmetric key option together with signature support.

Signed-off-by: Dmitry Kasatkin <d.kasatkin@xxxxxxxxxxx>
---
security/integrity/Kconfig | 24 ++++++++++++------------
1 file changed, 12 insertions(+), 12 deletions(-)

diff --git a/security/integrity/Kconfig b/security/integrity/Kconfig
index 245c6d9..f79d853 100644
--- a/security/integrity/Kconfig
+++ b/security/integrity/Kconfig
@@ -17,6 +17,18 @@ config INTEGRITY_SIGNATURE
This is useful for evm and module keyrings, when keys are
usually only added from initramfs.

+config INTEGRITY_ASYMMETRIC_KEYS
+ boolean "Enable asymmetric keys support"
+ depends on INTEGRITY_SIGNATURE
+ default n
+ select ASYMMETRIC_KEY_TYPE
+ select ASYMMETRIC_PUBLIC_KEY_SUBTYPE
+ select PUBLIC_KEY_ALGO_RSA
+ select X509_CERTIFICATE_PARSER
+ help
+ This option enables digital signature verification using
+ asymmetric keys.
+
config INTEGRITY_AUDIT
bool "Enables integrity auditing support "
depends on INTEGRITY && AUDIT
@@ -32,17 +44,5 @@ config INTEGRITY_AUDIT
be enabled by specifying 'integrity_audit=1' on the kernel
command line.

-config INTEGRITY_ASYMMETRIC_KEYS
- boolean "Enable asymmetric keys support"
- depends on INTEGRITY_SIGNATURE
- default n
- select ASYMMETRIC_KEY_TYPE
- select ASYMMETRIC_PUBLIC_KEY_SUBTYPE
- select PUBLIC_KEY_ALGO_RSA
- select X509_CERTIFICATE_PARSER
- help
- This option enables digital signature verification using
- asymmetric keys.
-
source security/integrity/ima/Kconfig
source security/integrity/evm/Kconfig
--
1.8.3.2

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Anna Schumaker: "Re: [PATCH 4/5] SUNRPC: track when a client connection is routed to the local host."
Previous message: Dmitry Kasatkin: "[PATCH 13/20] ima: replace opencount with bitop"
In reply to: Dmitry Kasatkin: "[PATCH 13/20] ima: replace opencount with bitop"
Next in thread: Dmitry Kasatkin: "[PATCH 04/20] integrity: move integrity subsystem options to a separate menu"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]