[PATCH ima-evm-utils v2 0/2] Fix use of sign_hash via API

[PATCH 0/2] ima-evm-utils: Fix use of sign_hash via API · Patrick Uiterwijk <hidden> · 2021-01-06
[PATCH 2/2] Add test for using sign_hash API · Patrick Uiterwijk <hidden> · 2021-01-06
Re: [PATCH 2/2] Add test for using sign_hash API · Mimi Zohar <zohar@linux.ibm.com> · 2021-01-07
Re: [PATCH 2/2] Add test for using sign_hash API · Vitaly Chikunov <hidden> · 2021-01-07
Re: [PATCH 2/2] Add test for using sign_hash API · Patrick Uiterwijk <hidden> · 2021-01-07
[PATCH 1/2] Fix sign_hash not observing the hashalgo argument · Patrick Uiterwijk <hidden> · 2021-01-06
Re: [PATCH 1/2] Fix sign_hash not observing the hashalgo argument · Mimi Zohar <zohar@linux.ibm.com> · 2021-01-07
Re: [PATCH 1/2] Fix sign_hash not observing the hashalgo argument · Vitaly Chikunov <hidden> · 2021-01-07
Re: [PATCH 1/2] Fix sign_hash not observing the hashalgo argument · Vitaly Chikunov <hidden> · 2021-01-07
Re: [PATCH 1/2] Fix sign_hash not observing the hashalgo argument · Mimi Zohar <zohar@linux.ibm.com> · 2021-01-07
Re: [PATCH 1/2] Fix sign_hash not observing the hashalgo argument · Patrick Uiterwijk <hidden> · 2021-01-07
[PATCH ima-evm-utils v2 0/2] Fix use of sign_hash via API · Patrick Uiterwijk <hidden> · 2021-07-05
[PATCH ima-evm-utils v2 1/2] Fix sign_hash not observing the hashalgo argument · Patrick Uiterwijk <hidden> · 2021-07-05
[PATCH ima-evm-utils v2 2/2] Add test for using sign_hash API · Patrick Uiterwijk <hidden> · 2021-07-05
Re: [PATCH ima-evm-utils v2 2/2] Add test for using sign_hash API · Mimi Zohar <zohar@linux.ibm.com> · 2021-07-06

STALE1790d

From: Patrick Uiterwijk <hidden>
Date: 2021-07-05 15:58:22

When using sign_hash, the resulting signature is incorrect if any hash
algorithm other than sha1 is used.
This is because while the sign_hash function has a hashalgo argument,
the sign_hash_v2 function does not actually use this argument for
anything except setting the hash_algo value in the header.
This patch makes sure it uses the algo variable consistently.

Changes since v1:
  - Using sys/xattr.h
  - Removed copyright line for sign_ima

Patrick Uiterwijk (2):
  Fix sign_hash not observing the hashalgo argument
  Add test for using sign_hash API

 src/evmctl.c                | 23 ----------------
 src/libimaevm.c             |  4 +--
 src/utils.c                 | 20 ++++++++++++++
 src/utils.h                 |  1 +
 tests/.gitignore            |  2 ++
 tests/Makefile.am           |  5 ++++
 tests/sign_verify.apitest.c | 55 +++++++++++++++++++++++++++++++++++++
 tests/sign_verify.test      | 30 ++++++++++++++++----
 8 files changed, 109 insertions(+), 31 deletions(-)
 create mode 100644 tests/sign_verify.apitest.c

-- 
2.31.1

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help