Revert to Fedora kernel-2.6.17-1.2187_FC5 patched with vs2.0.2.1; there are too many...

[linux-2.6.git] / security / Kconfig

diff --git a/security/Kconfig b/security/Kconfig
index 576feff..34f5934 100644 (file)
--- a/security/Kconfig
+++ b/security/Kconfig
@@ -35,6 +35,7 @@ config KEYS_DEBUG_PROC_KEYS
 
 config SECURITY
        bool "Enable different security models"
+       depends on SYSFS
        help
          This allows you to choose different security modules to be
          configured into your kernel.
@@ -53,6 +54,19 @@ config SECURITY_NETWORK
          implement socket and networking access controls.
          If you are unsure how to answer this question, answer N.
 
+config SECURITY_NETWORK_XFRM
+       bool "XFRM (IPSec) Networking Security Hooks"
+       depends on XFRM && SECURITY_NETWORK
+       help
+         This enables the XFRM (IPSec) networking security hooks.
+         If enabled, a security module can use these hooks to
+         implement per-packet access controls based on labels
+         derived from IPSec policy.  Non-IPSec communications are
+         designated as unlabelled, and only sockets authorized
+         to communicate unlabelled data can send without using
+         IPSec.
+         If you are unsure how to answer this question, answer N.
+
 config SECURITY_CAPABILITIES
        tristate "Default Linux Capabilities"
        depends on SECURITY
@@ -76,10 +90,11 @@ config SECURITY_ROOTPLUG
 config SECURITY_SECLVL
        tristate "BSD Secure Levels"
        depends on SECURITY
+       select CRYPTO
        select CRYPTO_SHA1
        help
          Implements BSD Secure Levels as an LSM.  See
-         Documentation/seclvl.txt for instructions on how to use this
+         <file:Documentation/seclvl.txt> for instructions on how to use this
          module.
 
          If you are unsure how to answer this question, answer N.