Re: [PATCH 2/4] ima: define a new signature type named IMA_VERITY_DIGSIG

[PATCH 0/4] ima: support fs-verity signatures stored as · Mimi Zohar <zohar@linux.ibm.com> · 2021-11-29
[PATCH 3/4] ima: limit including fs-verity's file digest in measurement list · Mimi Zohar <zohar@linux.ibm.com> · 2021-11-29
Re: [PATCH 3/4] ima: limit including fs-verity's file digest in measurement list · Eric Biggers <ebiggers@kernel.org> · 2021-11-30
Re: [PATCH 3/4] ima: limit including fs-verity's file digest in measurement list · Mimi Zohar <zohar@linux.ibm.com> · 2021-11-30
Re: [PATCH 3/4] ima: limit including fs-verity's file digest in measurement list · Lakshmi Ramasubramanian <hidden> · 2021-11-30
[PATCH 2/4] ima: define a new signature type named IMA_VERITY_DIGSIG · Mimi Zohar <zohar@linux.ibm.com> · 2021-11-29
Re: [PATCH 2/4] ima: define a new signature type named IMA_VERITY_DIGSIG · Eric Biggers <ebiggers@kernel.org> · 2021-11-30
Re: [PATCH 2/4] ima: define a new signature type named IMA_VERITY_DIGSIG · Mimi Zohar <zohar@linux.ibm.com> · 2021-11-30
Re: [PATCH 2/4] ima: define a new signature type named IMA_VERITY_DIGSIG · Mimi Zohar <zohar@linux.ibm.com> · 2021-12-02
Re: [PATCH 2/4] ima: define a new signature type named IMA_VERITY_DIGSIG · Eric Biggers <ebiggers@kernel.org> · 2021-12-02
Re: [PATCH 2/4] ima: define a new signature type named IMA_VERITY_DIGSIG · Mimi Zohar <zohar@linux.ibm.com> · 2021-12-02
[PATCH 4/4] ima: support fs-verity file digest based signatures · Mimi Zohar <zohar@linux.ibm.com> · 2021-11-29
Re: [PATCH 4/4] ima: support fs-verity file digest based signatures · Lakshmi Ramasubramanian <hidden> · 2021-11-30
Re: [PATCH 4/4] ima: support fs-verity file digest based signatures · Mimi Zohar <zohar@linux.ibm.com> · 2021-11-30
[PATCH 1/4] fs-verity: define a function to return the integrity protected file digest · Mimi Zohar <zohar@linux.ibm.com> · 2021-11-29
Re: [PATCH 1/4] fs-verity: define a function to return the integrity protected file digest · kernel test robot <hidden> · 2021-11-29
Re: [PATCH 1/4] fs-verity: define a function to return the integrity protected file digest · kernel test robot <hidden> · 2021-11-29
Re: [PATCH 1/4] fs-verity: define a function to return the integrity protected file digest · Eric Biggers <ebiggers@kernel.org> · 2021-11-30
Re: [PATCH 1/4] fs-verity: define a function to return the integrity protected file digest · Lakshmi Ramasubramanian <hidden> · 2021-11-30
Re: [PATCH 1/4] fs-verity: define a function to return the integrity protected file digest · Eric Biggers <ebiggers@kernel.org> · 2021-11-30
Re: [PATCH 0/4] ima: support fs-verity signatures stored as · Eric Biggers <ebiggers@kernel.org> · 2021-11-30
Re: [PATCH 0/4] ima: support fs-verity signatures stored as · Mimi Zohar <zohar@linux.ibm.com> · 2021-11-30
Re: [PATCH 0/4] ima: support fs-verity signatures stored as · Mimi Zohar <zohar@linux.ibm.com> · 2021-11-30

From: Mimi Zohar <zohar@linux.ibm.com>
Date: 2021-12-02 16:26:29
Also in: linux-fscrypt, lkml

Hi Eric,

On Tue, 2021-11-30 at 13:14 -0500, Mimi Zohar wrote:

On Mon, 2021-11-29 at 18:33 -0800, Eric Biggers wrote:

quoted

On Mon, Nov 29, 2021 at 12:00:55PM -0500, Mimi Zohar wrote:

quoted

To differentiate between a regular file hash and an fs-verity file digest
based signature stored as security.ima xattr, define a new signature type
named IMA_VERITY_DIGSIG.

Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>

For this new signature type, what bytes are actually signed?  It looks like it's
just the raw digest, which isn't sufficient since it is ambiguous.  It needs to
include information that makes it clear what the signer is actually signing,
such as "this is an fs-verity SHA-256 file digest".  See
'struct fsverity_formatted_digest' for an example of this (but it isn't
necessary to use that exact structure).

I think the existing IMA signatures have the same problem (but it is hard for me
to understand the code).  However, a new signature type doesn't have
backwards-compatibility concerns, so it could be done right.

As this change should probably be applicable to all signature types,
the signature version in the  signature_v2_hdr should be bumped.  The
existing signature version could co-exist with the new signature
version.

By signing the file hash, the sig field in the IMA measurement list can
be directly verified against the digest field.  For appended
signatures, we defined a new template named ima-modsig which contains
two file hashes, with and without the appended signature.

Similarly, by signing a digest containing other metadata and fs-
verity's file digest, the measurement list should include both digests.
Otherwise the consumer of the measurement list would first need to
calculate the signed digest before verifying the signature.

Options:
- Include just fs-verity's file digest and the signature in the
measurement list.  Leave it to the consumer of the measurement list to
deal with.
- Define a new template format to include both digests, add a new field
in the iint for the signed digest.  (Much more work.)
- As originally posted, directly sign fs-verity's file digest.

thanks,

Mimi

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help