diff options
| author | Mimi Zohar <[email protected]> | 2018-11-09 00:53:40 -0500 |
|---|---|---|
| committer | James Morris <[email protected]> | 2018-11-13 13:09:56 -0800 |
| commit | fd35f192e42cf7c0df1e2480bfd5965e35b2f4ca (patch) | |
| tree | 772f7b697fa729f1f186f6e9310def5493c11e83 /tools/perf/util/trace-event-scripting.c | |
| parent | ccda4af0f4b92f7b4c308d3acc262f4a7e3affad (diff) | |
integrity: support new struct public_key_signature encoding field
On systems with IMA-appraisal enabled with a policy requiring file
signatures, the "good" signature values are stored on the filesystem as
extended attributes (security.ima). Signature verification failure
would normally be limited to just a particular file (eg. executable),
but during boot signature verification failure could result in a system
hang.
Defining and requiring a new public_key_signature field requires all
callers of asymmetric signature verification to be updated to reflect
the change. This patch updates the integrity asymmetric_verify()
caller.
Fixes: 82f94f24475c ("KEYS: Provide software public key query function [ver #2]")
Signed-off-by: Mimi Zohar <[email protected]>
Cc: David Howells <[email protected]>
Acked-by: Denis Kenzior <[email protected]>
Signed-off-by: James Morris <[email protected]>
Diffstat (limited to 'tools/perf/util/trace-event-scripting.c')
0 files changed, 0 insertions, 0 deletions