* [PATCH] evm: add Kconfig TCG_TPM dependency
@ 2011-08-17 22:51 Mimi Zohar
2011-08-18 2:58 ` James Morris
2011-08-18 17:38 ` Randy Dunlap
0 siblings, 2 replies; 3+ messages in thread
From: Mimi Zohar @ 2011-08-17 22:51 UTC (permalink / raw)
To: linux-security-module
Cc: Mimi Zohar, linux-next, linux-kernel, James Morris,
Stephen Rothwell, Randy Dunlap, David Safford, Mimi Zohar
Although the EVM encrypted-key should be encrypted/decrypted using a
trusted-key, a user-defined key could be used instead. When using a user-
defined key, a TCG_TPM dependency should not be required. Unfortunately,
the encrypted-key code needs to be refactored a bit in order to remove
this dependency.
This patch adds the TCG_TPM dependency.
Reported-by: Stephen Rothwell <sfr@canb•auug.org.au>,
Randy Dunlap <rdunlap@xenotimenet>
Signed-off-by: Mimi Zohar <zohar@us•ibm.com>
---
security/integrity/evm/Kconfig | 2 +-
1 files changed, 1 insertions(+), 1 deletions(-)
diff --git a/security/integrity/evm/Kconfig b/security/integrity/evm/Kconfig
index 444877d..884617d 100644
--- a/security/integrity/evm/Kconfig
+++ b/security/integrity/evm/Kconfig
@@ -1,6 +1,6 @@
config EVM
boolean "EVM support"
- depends on SECURITY && KEYS
+ depends on SECURITY && KEYS && TCG_TPM
select CRYPTO_HMAC
select CRYPTO_MD5
select CRYPTO_SHA1
--
1.7.3.4
^ permalink raw reply related [flat|nested] 3+ messages in thread
* Re: [PATCH] evm: add Kconfig TCG_TPM dependency
2011-08-17 22:51 [PATCH] evm: add Kconfig TCG_TPM dependency Mimi Zohar
@ 2011-08-18 2:58 ` James Morris
2011-08-18 17:38 ` Randy Dunlap
1 sibling, 0 replies; 3+ messages in thread
From: James Morris @ 2011-08-18 2:58 UTC (permalink / raw)
To: Mimi Zohar
Cc: linux-security-module, linux-next, linux-kernel, Stephen Rothwell,
Randy Dunlap, David Safford, Mimi Zohar
On Wed, 17 Aug 2011, Mimi Zohar wrote:
> Although the EVM encrypted-key should be encrypted/decrypted using a
> trusted-key, a user-defined key could be used instead. When using a user-
> defined key, a TCG_TPM dependency should not be required. Unfortunately,
> the encrypted-key code needs to be refactored a bit in order to remove
> this dependency.
>
> This patch adds the TCG_TPM dependency.
Applied to
git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/security-testing-2.6#next
--
James Morris
<jmorris@namei•org>
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: [PATCH] evm: add Kconfig TCG_TPM dependency
2011-08-17 22:51 [PATCH] evm: add Kconfig TCG_TPM dependency Mimi Zohar
2011-08-18 2:58 ` James Morris
@ 2011-08-18 17:38 ` Randy Dunlap
1 sibling, 0 replies; 3+ messages in thread
From: Randy Dunlap @ 2011-08-18 17:38 UTC (permalink / raw)
To: Mimi Zohar
Cc: linux-security-module, linux-next, linux-kernel, James Morris,
Stephen Rothwell, David Safford, Mimi Zohar
On Wed, 17 Aug 2011 18:51:36 -0400 Mimi Zohar wrote:
> Although the EVM encrypted-key should be encrypted/decrypted using a
> trusted-key, a user-defined key could be used instead. When using a user-
> defined key, a TCG_TPM dependency should not be required. Unfortunately,
> the encrypted-key code needs to be refactored a bit in order to remove
> this dependency.
>
> This patch adds the TCG_TPM dependency.
>
> Reported-by: Stephen Rothwell <sfr@canb•auug.org.au>,
> Randy Dunlap <rdunlap@xenotimenet>
> Signed-off-by: Mimi Zohar <zohar@us•ibm.com>
Acked-by: Randy Dunlap <rdunlap@xenotime•net>
Thanks.
> ---
> security/integrity/evm/Kconfig | 2 +-
> 1 files changed, 1 insertions(+), 1 deletions(-)
>
> diff --git a/security/integrity/evm/Kconfig b/security/integrity/evm/Kconfig
> index 444877d..884617d 100644
> --- a/security/integrity/evm/Kconfig
> +++ b/security/integrity/evm/Kconfig
> @@ -1,6 +1,6 @@
> config EVM
> boolean "EVM support"
> - depends on SECURITY && KEYS
> + depends on SECURITY && KEYS && TCG_TPM
> select CRYPTO_HMAC
> select CRYPTO_MD5
> select CRYPTO_SHA1
> --
---
~Randy
*** Remember to use Documentation/SubmitChecklist when testing your code ***
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2011-08-18 17:38 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2011-08-17 22:51 [PATCH] evm: add Kconfig TCG_TPM dependency Mimi Zohar
2011-08-18 2:58 ` James Morris
2011-08-18 17:38 ` Randy Dunlap
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox