ARM64: tizen_bcmrpi3_defconfig: enable SMACK_NETFILTER

author Seung-Woo Kim <sw0312.kim@samsung.com>

Tue, 29 Aug 2017 05:56:16 +0000 (14:56 +0900)

committer Seung-Woo Kim <sw0312.kim@samsung.com>

Wed, 30 Aug 2017 02:54:25 +0000 (11:54 +0900)
author Seung-Woo Kim <sw0312.kim@samsung.com>
Tue, 29 Aug 2017 05:56:16 +0000 (14:56 +0900)
committer Seung-Woo Kim <sw0312.kim@samsung.com>
Wed, 30 Aug 2017 02:54:25 +0000 (11:54 +0900)
diff --git a/arch/arm64/configs/tizen_bcmrpi3_defconfig b/arch/arm64/configs/tizen_bcmrpi3_defconfig

index ad6d802a7841f3625c17f01db8f5cf350718cd89..9521e95d7a717e25d32e6f1f2b433a42fcdd0f81 100644 (file)
--- a/arch/arm64/configs/tizen_bcmrpi3_defconfig
+++ b/arch/arm64/configs/tizen_bcmrpi3_defconfig
@@ -650,7 +650,7 @@ CONFIG_IPV6_MROUTE=y
  CONFIG_IPV6_MROUTE_MULTIPLE_TABLES=y
  CONFIG_IPV6_PIMSM_V2=y
  CONFIG_NETLABEL=y
-# CONFIG_NETWORK_SECMARK is not set
+CONFIG_NETWORK_SECMARK=y
  # CONFIG_NET_PTP_CLASSIFY is not set
  # CONFIG_NETWORK_PHY_TIMESTAMPING is not set
  CONFIG_NETFILTER=y
@@ -662,11 +662,13 @@ CONFIG_BRIDGE_NETFILTER=y
  # Core Netfilter Configuration
  #
  CONFIG_NETFILTER_INGRESS=y
+CONFIG_NETFILTER_NETLINK=y
  # CONFIG_NETFILTER_NETLINK_ACCT is not set
-# CONFIG_NETFILTER_NETLINK_QUEUE is not set
+CONFIG_NETFILTER_NETLINK_QUEUE=y
  # CONFIG_NETFILTER_NETLINK_LOG is not set
  CONFIG_NF_CONNTRACK=y
-# CONFIG_NF_CONNTRACK_MARK is not set
+CONFIG_NF_CONNTRACK_MARK=y
+# CONFIG_NF_CONNTRACK_SECMARK is not set
  CONFIG_NF_CONNTRACK_PROCFS=y
  # CONFIG_NF_CONNTRACK_EVENTS is not set
  # CONFIG_NF_CONNTRACK_TIMEOUT is not set
@@ -700,13 +702,13 @@ CONFIG_NETFILTER_XTABLES=y
  #
  # Xtables combined modules
  #
-# CONFIG_NETFILTER_XT_MARK is not set
-# CONFIG_NETFILTER_XT_CONNMARK is not set
+CONFIG_NETFILTER_XT_MARK=y
+CONFIG_NETFILTER_XT_CONNMARK=y
  
  #
  # Xtables targets
  #
-# CONFIG_NETFILTER_XT_TARGET_AUDIT is not set
+CONFIG_NETFILTER_XT_TARGET_AUDIT=y
  # CONFIG_NETFILTER_XT_TARGET_CLASSIFY is not set
  # CONFIG_NETFILTER_XT_TARGET_CONNMARK is not set
  # CONFIG_NETFILTER_XT_TARGET_HMARK is not set
@@ -716,10 +718,11 @@ CONFIG_NETFILTER_XTABLES=y
  CONFIG_NETFILTER_XT_NAT=y
  # CONFIG_NETFILTER_XT_TARGET_NETMAP is not set
  # CONFIG_NETFILTER_XT_TARGET_NFLOG is not set
-# CONFIG_NETFILTER_XT_TARGET_NFQUEUE is not set
+CONFIG_NETFILTER_XT_TARGET_NFQUEUE=y
  # CONFIG_NETFILTER_XT_TARGET_RATEEST is not set
  CONFIG_NETFILTER_XT_TARGET_REDIRECT=y
  # CONFIG_NETFILTER_XT_TARGET_TEE is not set
+CONFIG_NETFILTER_XT_TARGET_SECMARK=y
  # CONFIG_NETFILTER_XT_TARGET_TCPMSS is not set
  
  #
@@ -753,6 +756,7 @@ CONFIG_NETFILTER_XT_TARGET_REDIRECT=y
  # CONFIG_NETFILTER_XT_MATCH_MARK is not set
  # CONFIG_NETFILTER_XT_MATCH_MULTIPORT is not set
  # CONFIG_NETFILTER_XT_MATCH_NFACCT is not set
+# CONFIG_NETFILTER_XT_MATCH_OSF is not set
  # CONFIG_NETFILTER_XT_MATCH_OWNER is not set
  # CONFIG_NETFILTER_XT_MATCH_POLICY is not set
  # CONFIG_NETFILTER_XT_MATCH_PHYSDEV is not set
@@ -919,6 +923,7 @@ CONFIG_NET_CLS_ACT=y
  # CONFIG_NET_ACT_CSUM is not set
  # CONFIG_NET_ACT_VLAN is not set
  # CONFIG_NET_ACT_BPF is not set
+# CONFIG_NET_ACT_CONNMARK is not set
  # CONFIG_NET_ACT_SKBMOD is not set
  # CONFIG_NET_ACT_IFE is not set
  # CONFIG_NET_ACT_TUNNEL_KEY is not set
@@ -3758,7 +3763,8 @@ CONFIG_HAVE_ARCH_HARDENED_USERCOPY=y
  # CONFIG_SECURITY_SELINUX is not set
  CONFIG_SECURITY_SMACK=y
  # CONFIG_SECURITY_SMACK_BRINGUP is not set
-# CONFIG_SECURITY_SMACK_APPEND_SIGNALS is not set
+CONFIG_SECURITY_SMACK_NETFILTER=y
+CONFIG_SECURITY_SMACK_APPEND_SIGNALS=y
  # CONFIG_SECURITY_TOMOYO is not set
  # CONFIG_SECURITY_APPARMOR is not set
  # CONFIG_SECURITY_LOADPIN is not set
author	Seung-Woo Kim <sw0312.kim@samsung.com>
	Tue, 29 Aug 2017 05:56:16 +0000 (14:56 +0900)
committer	Seung-Woo Kim <sw0312.kim@samsung.com>
	Wed, 30 Aug 2017 02:54:25 +0000 (11:54 +0900)