166dbc325SMimi Zoharconfig EVM 266dbc325SMimi Zohar boolean "EVM support" 31d714057SMimi Zohar depends on SECURITY && KEYS && (TRUSTED_KEYS=y || TRUSTED_KEYS=n) 466dbc325SMimi Zohar select CRYPTO_HMAC 566dbc325SMimi Zohar select CRYPTO_MD5 666dbc325SMimi Zohar select CRYPTO_SHA1 70b024d24SJames Morris select ENCRYPTED_KEYS 866dbc325SMimi Zohar default n 966dbc325SMimi Zohar help 1066dbc325SMimi Zohar EVM protects a file's security extended attributes against 1166dbc325SMimi Zohar integrity attacks. 1266dbc325SMimi Zohar 1366dbc325SMimi Zohar If you are unsure how to answer this question, answer N. 14*74de6684SDmitry Kasatkin 15*74de6684SDmitry Kasatkinconfig EVM_HMAC_VERSION 16*74de6684SDmitry Kasatkin int "EVM HMAC version" 17*74de6684SDmitry Kasatkin depends on EVM 18*74de6684SDmitry Kasatkin default 2 19*74de6684SDmitry Kasatkin help 20*74de6684SDmitry Kasatkin This options adds EVM HMAC version support. 21*74de6684SDmitry Kasatkin 1 - original version 22*74de6684SDmitry Kasatkin 2 - add per filesystem unique identifier (UUID) (default) 23*74de6684SDmitry Kasatkin 24*74de6684SDmitry Kasatkin WARNING: changing the HMAC calculation method or adding 25*74de6684SDmitry Kasatkin additional info to the calculation, requires existing EVM 26*74de6684SDmitry Kasatkin labeled file systems to be relabeled. 27