integrity: digital signature verification using multiple keyrings

Define separate keyrings for each of the different use cases - evm, ima, and modules. Using different keyrings improves search performance, and also allows "locking" specific keyring to prevent adding new keys. This is useful for evm and module keyrings, when keys are usually only added from initramfs. Signed-off-by: Dmitry Kasatkin <dmitry.kasatkin@intel.com>
author: Dmitry Kasatkin <dmitry.kasatkin@intel.com> 2011-10-05 11:54:46 +0300
committer: Dmitry Kasatkin <dmitry.kasatkin@intel.com> 2011-11-09 16:51:09 +0200
commit: 8607c501478432b23654739c7321bc7456053cb6 (patch)
tree: 598ef1649a261954cb1cafc05189ddedb3bd3ff8 /security/integrity/Makefile
parent: 051dbb918c7fb7da8e64a2cd0d804ba73399709f (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/security/integrity/Makefile b/security/integrity/Makefile
index 0ae44aea6516..bece0563ee5e 100644
--- a/security/integrity/Makefile
+++ b/security/integrity/Makefile
@@ -3,6 +3,7 @@
 #
 
 obj-$(CONFIG_INTEGRITY) += integrity.o
+obj-$(CONFIG_INTEGRITY_DIGSIG) += digsig.o
 
 integrity-y := iint.o
author	Dmitry Kasatkin <dmitry.kasatkin@intel.com>	2011-10-05 11:54:46 +0300
committer	Dmitry Kasatkin <dmitry.kasatkin@intel.com>	2011-11-09 16:51:09 +0200
commit	8607c501478432b23654739c7321bc7456053cb6 (patch)
tree	598ef1649a261954cb1cafc05189ddedb3bd3ff8 /security/integrity/Makefile
parent	051dbb918c7fb7da8e64a2cd0d804ba73399709f (diff)