diff options
author | Dmitry Kasatkin <d.kasatkin@samsung.com> | 2013-10-10 09:12:03 +0200 |
---|---|---|
committer | Mimi Zohar <zohar@linux.vnet.ibm.com> | 2013-10-25 23:16:59 +0200 |
commit | b1aaab22e263d0cca1effe319b7d2bf895444219 (patch) | |
tree | a46f2285bd884e784d967e4132f71cd2f09565da /security/integrity/digsig.c | |
parent | ima: read and use signature hash algorithm (diff) | |
download | linux-b1aaab22e263d0cca1effe319b7d2bf895444219.tar.xz linux-b1aaab22e263d0cca1effe319b7d2bf895444219.zip |
ima: pass full xattr with the signature
For possibility to use xattr type for new signature formats,
pass full xattr to the signature verification function.
Signed-off-by: Dmitry Kasatkin <d.kasatkin@samsung.com>
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
Diffstat (limited to 'security/integrity/digsig.c')
-rw-r--r-- | security/integrity/digsig.c | 5 |
1 files changed, 3 insertions, 2 deletions
diff --git a/security/integrity/digsig.c b/security/integrity/digsig.c index 198e60903685..b4af4ebc5be2 100644 --- a/security/integrity/digsig.c +++ b/security/integrity/digsig.c @@ -44,9 +44,10 @@ int integrity_digsig_verify(const unsigned int id, const char *sig, int siglen, } } - switch (sig[0]) { + switch (sig[1]) { case 1: - return digsig_verify(keyring[id], sig, siglen, + /* v1 API expect signature without xattr type */ + return digsig_verify(keyring[id], sig + 1, siglen - 1, digest, digestlen); case 2: return asymmetric_verify(keyring[id], sig, siglen, |