]> git.proxmox.com Git - mirror_ubuntu-bionic-kernel.git/commit
projects / mirror_ubuntu-bionic-kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e7fff81) | patch
ima: Fix Kconfig to select TPM 2.0 CRB interface
authorJiandi An <anjiandi@codeaurora.org>
Wed, 7 Mar 2018 05:26:26 +0000 (23:26 -0600)
committerKleber Sacilotto de Souza <kleber.souza@canonical.com>
Mon, 27 Aug 2018 14:40:05 +0000 (16:40 +0200)
commit0e93ceeaf5fcc6a8c500281a0bb5dfca138f2c6e
tree88b77555f0add251f63b4624a4468836cfc802d5tree
parente7fff81c0b3df58cb970413aeb4d6c730e5c7d85commit | diff
ima: Fix Kconfig to select TPM 2.0 CRB interface

BugLink: http://bugs.launchpad.net/bugs/1786352
[ Upstream commit fac37c628fd5d68fd7298d9b57ae8601ee1b4723 ]

TPM_CRB driver provides TPM CRB 2.0 support.  If it is built as a
module, the TPM chip is registered after IMA init.  tpm_pcr_read() in
IMA fails and displays the following message even though eventually
there is a TPM chip on the system.

ima: No TPM chip found, activating TPM-bypass! (rc=-19)

Fix IMA Kconfig to select TPM_CRB so TPM_CRB driver is built in the kernel
and initializes before IMA.

Signed-off-by: Jiandi An <anjiandi@codeaurora.org>
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
Signed-off-by: Sasha Levin <alexander.levin@microsoft.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Signed-off-by: Kamal Mostafa <kamal@canonical.com>
Signed-off-by: Khalid Elmously <khalid.elmously@canonical.com>
security/integrity/ima/Kconfig diff | blob | blame | history
ubuntu-bionic-kernel mirror