Blame - security/integrity/evm/Kconfig - kernel/msm-4.9

blob: fea9749c37562b1006885cf56410361a64f31db1 [file] [log] [blame]

Mimi Zohar	66dbc325	2011-03-15 16:12:09 -0400	[diff] [blame]	1	config EVM
				2	boolean "EVM support"
Mimi Zohar	1d71405	2011-08-28 08:57:11 -0400	[diff] [blame]	3	depends on SECURITY && KEYS && (TRUSTED_KEYS=y \|\| TRUSTED_KEYS=n)
Mimi Zohar	66dbc325	2011-03-15 16:12:09 -0400	[diff] [blame]	4	select CRYPTO_HMAC
				5	select CRYPTO_MD5
				6	select CRYPTO_SHA1
James Morris	0b024d2	2011-08-09 11:33:36 +1000	[diff] [blame]	7	select ENCRYPTED_KEYS
Mimi Zohar	66dbc325	2011-03-15 16:12:09 -0400	[diff] [blame]	8	default n
				9	help
				10	EVM protects a file's security extended attributes against
				11	integrity attacks.
				12
				13	If you are unsure how to answer this question, answer N.
Dmitry Kasatkin	74de668	2012-09-10 10:37:20 +0300	[diff] [blame^]	14
				15	config EVM_HMAC_VERSION
				16	int "EVM HMAC version"
				17	depends on EVM
				18	default 2
				19	help
				20	This options adds EVM HMAC version support.
				21	1 - original version
				22	2 - add per filesystem unique identifier (UUID) (default)
				23
				24	WARNING: changing the HMAC calculation method or adding
				25	additional info to the calculation, requires existing EVM
				26	labeled file systems to be relabeled.