integrity: Allow sigv3 verification on EVM_XATTR_PORTABLE_DIGSIG

Allow sigv3 verification on EVM_XATTR_PORTABLE_DIGSIG on RSA, ECDSA, ECRDSA, and SM2 signatures. Signed-off-by: Stefan Berger <stefanb@linux.ibm.com> Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
author: Stefan Berger <stefanb@linux.ibm.com> 2026-03-25 03:10:51 +0300
committer: Mimi Zohar <zohar@linux.ibm.com> 2026-04-01 17:16:53 +0300
commit: bab8e90bca64a87dd058527ae1d02596d35dc601 (patch)
tree: 5911edbc175d698e97d63cba411bcd24db90135c
parent: de4c44a7f559ceae19f7a70febf49e87bdfb125c (diff)
download: linux-bab8e90bca64a87dd058527ae1d02596d35dc601.tar.xz
1 files changed, 2 insertions, 1 deletions
diff --git a/security/integrity/digsig_asymmetric.c b/security/integrity/digsig_asymmetric.c
index 6b21b9bf829e..6e68ec3becbd 100644
--- a/security/integrity/digsig_asymmetric.c
+++ b/security/integrity/digsig_asymmetric.c
@@ -154,7 +154,8 @@ static int calc_file_id_hash(enum evm_ima_xattr_type type,
 	size_t file_id_size;
 	int rc;
 
-	if (type != IMA_VERITY_DIGSIG && type != EVM_IMA_XATTR_DIGSIG)
+	if (type != IMA_VERITY_DIGSIG && type != EVM_IMA_XATTR_DIGSIG &&
+	    type != EVM_XATTR_PORTABLE_DIGSIG)
 		return -EINVAL;
 
 	tfm = crypto_alloc_shash(hash_algo_name[algo], 0, 0);
author	Stefan Berger <stefanb@linux.ibm.com>	2026-03-25 03:10:51 +0300
committer	Mimi Zohar <zohar@linux.ibm.com>	2026-04-01 17:16:53 +0300
commit	bab8e90bca64a87dd058527ae1d02596d35dc601 (patch)
tree	5911edbc175d698e97d63cba411bcd24db90135c
parent	de4c44a7f559ceae19f7a70febf49e87bdfb125c (diff)
download	linux-bab8e90bca64a87dd058527ae1d02596d35dc601.tar.xz