evm: Allow non-SHA1 digital signatures - linux-dev - Linux kernel development work

diff options

author	Matthew Garrett <mjg59@google.com>	2018-06-08 14:57:43 -0700
committer	Mimi Zohar <zohar@linux.vnet.ibm.com>	2018-07-18 07:27:22 -0400
commit	5feeb61183dde9d4f4026fd0d5801388c21d61a2 (patch)
tree	6998490db3d17d7dffbfcc4d69d521c44f0fe8ac /security/security.c
parent	evm: Don't deadlock if a crypto algorithm is unavailable (diff)
download	linux-dev-5feeb61183dde9d4f4026fd0d5801388c21d61a2.tar.xz linux-dev-5feeb61183dde9d4f4026fd0d5801388c21d61a2.zip

evm: Allow non-SHA1 digital signatures

SHA1 is reasonable in HMAC constructs, but it's desirable to be able to use stronger hashes in digital signatures. Modify the EVM crypto code so the hash type is imported from the digital signature and passed down to the hash calculation code, and return the digest size to higher layers for validation. Signed-off-by: Matthew Garrett <mjg59@google.com> Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>

Diffstat (limited to 'security/security.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: