-
- Downloads
IMA: add support to restrict the hash algorithms used for file appraisal
The kernel accepts any hash algorithm as a value for the security.ima xattr. Users may wish to restrict the accepted algorithms to only support strong cryptographic ones. Provide the plumbing to restrict the permitted set of hash algorithms used for verifying file hashes and signatures stored in security.ima xattr. Signed-off-by:THOBY Simon <Simon.THOBY@viveris.fr> Reviewed-by:
Lakshmi Ramasubramanian <nramas@linux.microsoft.com> Signed-off-by:
Mimi Zohar <zohar@linux.ibm.com>
Showing
- security/integrity/ima/ima.h 3 additions, 3 deletionssecurity/integrity/ima/ima.h
- security/integrity/ima/ima_api.c 4 additions, 2 deletionssecurity/integrity/ima/ima_api.c
- security/integrity/ima/ima_appraise.c 3 additions, 2 deletionssecurity/integrity/ima/ima_appraise.c
- security/integrity/ima/ima_main.c 15 additions, 3 deletionssecurity/integrity/ima/ima_main.c
- security/integrity/ima/ima_policy.c 16 additions, 2 deletionssecurity/integrity/ima/ima_policy.c
Loading
Please register or sign in to comment