blob: d7d80a62aa53e0af55dcb3dc3d886561d14d3652 [file] [log] [blame]
Andrew Geisslerdc9d6142023-05-19 09:38:37 -05001CONFIG_KEYS=y
2CONFIG_ASYMMETRIC_KEY_TYPE=y
3CONFIG_SYSTEM_TRUSTED_KEYRING=y
4CONFIG_SYSTEM_TRUSTED_KEYS="${IMA_EVM_ROOT_CA}"
5CONFIG_SECONDARY_TRUSTED_KEYRING=y
6CONFIG_ASYMMETRIC_PUBLIC_KEY_SUBTYPE=y
7CONFIG_X509_CERTIFICATE_PARSER=y
8CONFIG_PKCS8_PRIVATE_KEY_PARSER=y
9CONFIG_CRYPTO_ECDSA=y
10CONFIG_SECURITY=y
11CONFIG_SECURITYFS=y
12CONFIG_INTEGRITY=y
13CONFIG_INTEGRITY_SIGNATURE=y
14CONFIG_INTEGRITY_ASYMMETRIC_KEYS=y
15CONFIG_INTEGRITY_TRUSTED_KEYRING=y
16CONFIG_IMA=y
17CONFIG_IMA_MEASURE_PCR_IDX=10
18CONFIG_IMA_LSM_RULES=y
19# CONFIG_IMA_TEMPLATE is not set
20# CONFIG_IMA_NG_TEMPLATE is not set
21CONFIG_IMA_SIG_TEMPLATE=y
22CONFIG_IMA_DEFAULT_TEMPLATE="ima-sig"
23# CONFIG_IMA_DEFAULT_HASH_SHA1 is not set
24CONFIG_IMA_DEFAULT_HASH_SHA256=y
25# CONFIG_IMA_DEFAULT_HASH_SHA512 is not set
26CONFIG_IMA_DEFAULT_HASH="sha256"
27CONFIG_IMA_WRITE_POLICY=y
28CONFIG_IMA_READ_POLICY=y
29CONFIG_IMA_APPRAISE=y
30CONFIG_IMA_ARCH_POLICY=y
31CONFIG_IMA_APPRAISE_BUILD_POLICY=y
32CONFIG_IMA_APPRAISE_REQUIRE_POLICY_SIGS=y
33# CONFIG_IMA_APPRAISE_BOOTPARAM is not set
34# CONFIG_IMA_APPRAISE_MODSIG is not set
35CONFIG_IMA_TRUSTED_KEYRING=y
36CONFIG_IMA_KEYRINGS_PERMIT_SIGNED_BY_BUILTIN_OR_SECONDARY=y
37# CONFIG_IMA_BLACKLIST_KEYRING is not set
38# CONFIG_IMA_LOAD_X509 is not set
39CONFIG_IMA_APPRAISE_SIGNED_INIT=y
40CONFIG_IMA_MEASURE_ASYMMETRIC_KEYS=y
41CONFIG_IMA_QUEUE_EARLY_BOOT_KEYS=y
42CONFIG_IMA_SECURE_AND_OR_TRUSTED_BOOT=y
43# CONFIG_IMA_DISABLE_HTABLE is not set
44CONFIG_EVM=y
45# CONFIG_EVM_LOAD_X509 is not set