[PATCH 5/6] integrity: PowerVM machine keyring enablement.

Nayna Jain Fri, 14 Jul 2023 08:39:17 -0700

Update Kconfig to enable machine keyring and limit to CA certificates
on PowerVM.


Signed-off-by: Nayna Jain <na...@linux.ibm.com>
---
 security/integrity/Kconfig | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/security/integrity/Kconfig b/security/integrity/Kconfig
index ec6e0d789da1..03c40ade0214 100644
--- a/security/integrity/Kconfig
+++ b/security/integrity/Kconfig
@@ -67,7 +67,8 @@ config INTEGRITY_MACHINE_KEYRING
        depends on SECONDARY_TRUSTED_KEYRING
        depends on INTEGRITY_ASYMMETRIC_KEYS
        depends on SYSTEM_BLACKLIST_KEYRING
-       depends on LOAD_UEFI_KEYS
+       depends on LOAD_UEFI_KEYS || LOAD_PPC_KEYS
+       select INTEGRITY_CA_MACHINE_KEYRING if LOAD_PPC_KEYS
        help
         If set, provide a keyring to which Machine Owner Keys (MOK) may
         be added. This keyring shall contain just MOK keys.  Unlike keys
-- 
2.31.1

[PATCH 5/6] integrity: PowerVM machine keyring enablement.

Reply via email to