ima: provide support for arbitrary hash algorithms In preparation of supporting more hash algorithms with larger hash sizes needed for signature verification, this patch replaces the 20 byte sized digest, with a more flexible structure. The new structure includes the hash algorithm, digest size, and digest. Changelog: - recalculate filedata hash for the measurement list, if the signature hash digest size is greater than 20 bytes. - use generic HASH_ALGO_ - make ima_calc_file_hash static - scripts lindent and checkpatch fixes Signed-off-by: Dmitry Kasatkin <d.kasatkin@samsung.com> Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>

commit: c7c8bb237fdbff932b5e431aebee5ce862ea07d1 [log] [tgz]
author: Dmitry Kasatkin <d.kasatkin@samsung.com> Thu Apr 25 10:43:56 2013 +0300
committer: Mimi Zohar <zohar@linux.vnet.ibm.com> Fri Oct 25 17:16:58 2013 -0400
tree: 4cdbc7c250dd4418b47ab45dd1108848b50f8cff
parent: 3fe78ca2fb1d61ea598e63fcbf38aec76b36b3a8 [diff] [blame]
diff --git a/security/integrity/ima/Kconfig b/security/integrity/ima/Kconfig
index 39196ab..e6628e7 100644
--- a/security/integrity/ima/Kconfig
+++ b/security/integrity/ima/Kconfig

@@ -9,6 +9,7 @@
 	select CRYPTO_HMAC
 	select CRYPTO_MD5
 	select CRYPTO_SHA1
+	select CRYPTO_HASH_INFO
 	select TCG_TPM if HAS_IOMEM && !UML
 	select TCG_TIS if TCG_TPM && X86
 	select TCG_IBMVTPM if TCG_TPM && PPC64
commit	c7c8bb237fdbff932b5e431aebee5ce862ea07d1	[log] [tgz]
author	Dmitry Kasatkin <d.kasatkin@samsung.com>	Thu Apr 25 10:43:56 2013 +0300
committer	Mimi Zohar <zohar@linux.vnet.ibm.com>	Fri Oct 25 17:16:58 2013 -0400
tree	4cdbc7c250dd4418b47ab45dd1108848b50f8cff
parent	3fe78ca2fb1d61ea598e63fcbf38aec76b36b3a8 [diff] [blame]