tst_require_kconfigs() quits testing with tst_brk TCONF, but that first
hides the explanation in ima_conditionals.sh (which also calls tst_brk
TCONF) but also quits testing in ima_policy.sh (which calls tst_res
TCONF). Therefore use tst_check_kconfigs binary instead.
Fixes: c38b528783 ("ima_{conditionals, policy}: Handle policy required to be
signed")
Reported-by: Mimi Zohar <[email protected]>
Signed-off-by: Petr Vorel <[email protected]>
---
FYI Fix needed before the release.
testcases/kernel/security/integrity/ima/tests/ima_setup.sh | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/testcases/kernel/security/integrity/ima/tests/ima_setup.sh
b/testcases/kernel/security/integrity/ima/tests/ima_setup.sh
index df0b8d1532..b69d7c31d9 100644
--- a/testcases/kernel/security/integrity/ima/tests/ima_setup.sh
+++ b/testcases/kernel/security/integrity/ima/tests/ima_setup.sh
@@ -469,7 +469,7 @@ require_evmctl()
# d958083a8f640 ("x86/ima: define arch_get_ima_policy() for x86") # v5.0
check_need_signed_policy()
{
- tst_secureboot_enabled && tst_kvcmp -ge '6.5' && tst_require_kconfigs \
+ tst_secureboot_enabled && tst_kvcmp -ge '6.5' && tst_check_kconfigs \
'CONFIG_IMA_KEYRINGS_PERMIT_SIGNED_BY_BUILTIN_OR_SECONDARY,CONFIG_IMA_ARCH_POLICY'
}
--
2.51.0
