Roberto Sassu 026d7fc92a ima: Introduce template field evmsig and write to field sig as fallback ... With the patch to accept EVM portable signatures when the appraise_type=imasig requirement is specified in the policy, appraisal can be successfully done even if the file does not have an IMA signature. However, remote attestation would not see that a different signature type was used, as only IMA signatures can be included in the measurement list. This patch solves the issue by introducing the new template field 'evmsig' to show EVM portable signatures and by including its value in the existing field 'sig' if the IMA signature is not found. Suggested-by: Mimi Zohar <zohar@linux.ibm.com> Signed-off-by: Roberto Sassu <roberto.sassu@huawei.com> Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>		2021-06-01 12:30:51 -04:00
..
evm	evm: Allow setxattr() and setattr() for unmodified metadata	2021-06-01 12:28:34 -04:00
ima	ima: Introduce template field evmsig and write to field sig as fallback	2021-06-01 12:30:51 -04:00
platform_certs	integrity: Load mokx variables into the blacklist keyring	2021-03-11 16:34:48 +00:00
digsig_asymmetric.c	ima: Support EC keys for signature verification	2021-03-26 19:41:59 +11:00
digsig.c	ima: enable loading of build time generated key on .ima keyring	2021-04-09 10:40:20 -04:00
iint.c	evm: Load EVM key in ima_load_x509() to avoid appraisal	2021-05-21 12:47:04 -04:00
integrity_audit.c	integrity: Use current_uid() in integrity_audit_message()	2020-08-31 17:46:50 -04:00
integrity.h	crypto: sha - split sha.h into sha1.h and sha2.h	2020-11-20 14:45:33 +11:00
Kconfig	powerpc: Load firmware trusted keys/hashes into kernel keyring	2019-11-13 00:33:23 +11:00
Makefile	powerpc: Load firmware trusted keys/hashes into kernel keyring	2019-11-13 00:33:23 +11:00