ima: Fix Kconfig to select TPM 2.0 CRB interface
TPM_CRB driver provides TPM CRB 2.0 support. If it is built as a module, the TPM chip is registered after IMA init. tpm_pcr_read() in IMA fails and displays the following message even though eventually there is a TPM chip on the system. ima: No TPM chip found, activating TPM-bypass! (rc=-19) Fix IMA Kconfig to select TPM_CRB so TPM_CRB driver is built in the kernel and initializes before IMA. Signed-off-by: Jiandi An <anjiandi@codeaurora.org> Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
This commit is contained in:
parent
17d7b0af06
commit
fac37c628f
|
@ -10,6 +10,7 @@ config IMA
|
||||||
select CRYPTO_HASH_INFO
|
select CRYPTO_HASH_INFO
|
||||||
select TCG_TPM if HAS_IOMEM && !UML
|
select TCG_TPM if HAS_IOMEM && !UML
|
||||||
select TCG_TIS if TCG_TPM && X86
|
select TCG_TIS if TCG_TPM && X86
|
||||||
|
select TCG_CRB if TCG_TPM && ACPI
|
||||||
select TCG_IBMVTPM if TCG_TPM && PPC_PSERIES
|
select TCG_IBMVTPM if TCG_TPM && PPC_PSERIES
|
||||||
help
|
help
|
||||||
The Trusted Computing Group(TCG) runtime Integrity
|
The Trusted Computing Group(TCG) runtime Integrity
|
||||||
|
|
Loading…
Reference in New Issue