projects / platform / kernel / linux-starfive.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: b8867ee)
ima: AppArmor satisfies the audit rule requirements
authorTyler Hicks <tyhicks@linux.microsoft.com>
Tue, 23 Jun 2020 23:38:23 +0000 (18:38 -0500)
committerMimi Zohar <zohar@linux.ibm.com>
Mon, 20 Jul 2020 22:18:37 +0000 (18:18 -0400)
AppArmor meets all the requirements for IMA in terms of audit rules
since commit e79c26d04043 ("apparmor: Add support for audit rule
filtering"). Update IMA's Kconfig section for CONFIG_IMA_LSM_RULES to
reflect this.

Fixes: e79c26d04043 ("apparmor: Add support for audit rule filtering")
Signed-off-by: Tyler Hicks <tyhicks@linux.microsoft.com>
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
security/integrity/ima/Kconfig patch | blob | history

diff --git a/security/integrity/ima/Kconfig b/security/integrity/ima/Kconfig
index edde88d..794ebb5 100644 (file)
--- a/security/integrity/ima/Kconfig
+++ b/security/integrity/ima/Kconfig
@@ -54,7 +54,7 @@ config IMA_MEASURE_PCR_IDX
 
 config IMA_LSM_RULES
        bool
-       depends on IMA && AUDIT && (SECURITY_SELINUX || SECURITY_SMACK)
+       depends on IMA && AUDIT && (SECURITY_SELINUX || SECURITY_SMACK || SECURITY_APPARMOR)
        default y
        help
          Disabling this option will disregard LSM based policy rules.
Domain: System / Kernel;