summaryrefslogtreecommitdiff
path: root/security/integrity
diff options
context:
space:
mode:
authorStefan Berger <stefanb@linux.ibm.com>2026-03-24 20:10:51 -0400
committerMimi Zohar <zohar@linux.ibm.com>2026-04-01 10:16:53 -0400
commitbab8e90bca64a87dd058527ae1d02596d35dc601 (patch)
tree5911edbc175d698e97d63cba411bcd24db90135c /security/integrity
parentde4c44a7f559ceae19f7a70febf49e87bdfb125c (diff)
integrity: Allow sigv3 verification on EVM_XATTR_PORTABLE_DIGSIG
Allow sigv3 verification on EVM_XATTR_PORTABLE_DIGSIG on RSA, ECDSA, ECRDSA, and SM2 signatures. Signed-off-by: Stefan Berger <stefanb@linux.ibm.com> Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
Diffstat (limited to 'security/integrity')
-rw-r--r--security/integrity/digsig_asymmetric.c3
1 files changed, 2 insertions, 1 deletions
diff --git a/security/integrity/digsig_asymmetric.c b/security/integrity/digsig_asymmetric.c
index 6b21b9bf829e..6e68ec3becbd 100644
--- a/security/integrity/digsig_asymmetric.c
+++ b/security/integrity/digsig_asymmetric.c
@@ -154,7 +154,8 @@ static int calc_file_id_hash(enum evm_ima_xattr_type type,
size_t file_id_size;
int rc;
- if (type != IMA_VERITY_DIGSIG && type != EVM_IMA_XATTR_DIGSIG)
+ if (type != IMA_VERITY_DIGSIG && type != EVM_IMA_XATTR_DIGSIG &&
+ type != EVM_XATTR_PORTABLE_DIGSIG)
return -EINVAL;
tfm = crypto_alloc_shash(hash_algo_name[algo], 0, 0);
generated by cgit v1.2.3 (git 2.0.4) at 2026-05-07 10:05:23 +0000