788849b64d
Make it impossible to enable support for the DES or DES3 Kerberos encryption types in SunRPC. These enctypes were deprecated by RFCs 6649 and 8429 because they are known to be insecure. Reviewed-by: Jeff Layton <jlayton@kernel.org> Signed-off-by: Chuck Lever <chuck.lever@oracle.com>
30 lines
659 B
Plaintext
30 lines
659 B
Plaintext
CONFIG_KUNIT=y
|
|
CONFIG_UBSAN=y
|
|
CONFIG_STACKTRACE=y
|
|
CONFIG_NET=y
|
|
CONFIG_NETWORK_FILESYSTEMS=y
|
|
CONFIG_INET=y
|
|
CONFIG_FILE_LOCKING=y
|
|
CONFIG_MULTIUSER=y
|
|
CONFIG_CRYPTO=y
|
|
CONFIG_CRYPTO_CBC=y
|
|
CONFIG_CRYPTO_CTS=y
|
|
CONFIG_CRYPTO_ECB=y
|
|
CONFIG_CRYPTO_HMAC=y
|
|
CONFIG_CRYPTO_CMAC=y
|
|
CONFIG_CRYPTO_MD5=y
|
|
CONFIG_CRYPTO_SHA1=y
|
|
CONFIG_CRYPTO_SHA256=y
|
|
CONFIG_CRYPTO_SHA512=y
|
|
CONFIG_CRYPTO_DES=y
|
|
CONFIG_CRYPTO_AES=y
|
|
CONFIG_CRYPTO_CAMELLIA=y
|
|
CONFIG_NFS_FS=y
|
|
CONFIG_SUNRPC=y
|
|
CONFIG_SUNRPC_GSS=y
|
|
CONFIG_RPCSEC_GSS_KRB5=y
|
|
CONFIG_RPCSEC_GSS_KRB5_ENCTYPES_AES_SHA1=y
|
|
CONFIG_RPCSEC_GSS_KRB5_ENCTYPES_CAMELLIA=y
|
|
CONFIG_RPCSEC_GSS_KRB5_ENCTYPES_AES_SHA2=y
|
|
CONFIG_RPCSEC_GSS_KRB5_KUNIT_TEST=y
|