[PATCH v9 07/14] integrity: Select CONFIG_KEYS instead of depending on it

Thiago Jung Bauermann Wed, 12 Dec 2018 18:11:43 -0800

This avoids a dependency cycle in soon-to-be-introduced
CONFIG_IMA_APPRAISE_MODSIG: it will select CONFIG_MODULE_SIG_FORMAT
which in turn selects CONFIG_KEYS. Kconfig then complains that
CONFIG_INTEGRITY_SIGNATURE depends on CONFIG_KEYS.


Signed-off-by: Thiago Jung Bauermann <bauer...@linux.ibm.com>
Signed-off-by: Mimi Zohar <zo...@linux.ibm.com>
---
 security/integrity/Kconfig | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/security/integrity/Kconfig b/security/integrity/Kconfig
index 4b4d2aeef539..176905bef20a 100644
--- a/security/integrity/Kconfig
+++ b/security/integrity/Kconfig
@@ -17,8 +17,8 @@ if INTEGRITY
 
 config INTEGRITY_SIGNATURE
        bool "Digital signature verification using multiple keyrings"
-       depends on KEYS
        default n
+       select KEYS
        select SIGNATURE
        help
          This option enables digital signature verification support

[PATCH v9 07/14] integrity: Select CONFIG_KEYS instead of depending on it

Reply via email to