summaryrefslogtreecommitdiff
path: root/CREDITS
diff options
context:
space:
mode:
authorThiago Jung Bauermann <bauerman@linux.ibm.com>2019-06-28 05:19:30 +0300
committerMimi Zohar <zohar@linux.ibm.com>2019-08-06 01:40:23 +0300
commit39b07096364a42c516415d5f841069e885234e61 (patch)
tree5ab235d361dcf9671a715f4fa38259789fa68e3f /CREDITS
parenta5fbeb615ca42f913ace3291d636e96feabcc545 (diff)
downloadlinux-39b07096364a42c516415d5f841069e885234e61.tar.xz
ima: Implement support for module-style appended signatures
Implement the appraise_type=imasig|modsig option, allowing IMA to read and verify modsig signatures. In case a file has both an xattr signature and an appended modsig, IMA will only use the appended signature if the key used by the xattr signature isn't present in the IMA or platform keyring. Because modsig verification needs to convert from an integrity keyring id to the keyring itself, add an integrity_keyring_from_id() function in digsig.c so that integrity_modsig_verify() can use it. Signed-off-by: Thiago Jung Bauermann <bauerman@linux.ibm.com> Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
Diffstat (limited to 'CREDITS')
0 files changed, 0 insertions, 0 deletions