[Linux-ima-user] [PATCH v1 0/3] Provide immutable and portable EVM digsig versions.

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

Currently EVM have only standard EVM digital signature version, this patch set provide 2 more versions:
1) immutable EVM digsig version, same as standard EVM digsig version we already have, but instead of standard EVM digsig version this one should never being converted into HMAC.
2) portable EVM digsig version, aimed to protect archived file's meta data from manipulations.

Dmitry Kasatkin (1):
 evm: provide portable EVM digital signature.

Mikhail Kurinnoi (2):
 vfs: support a valid, non-zero return code from security_inode_setxattr().
 evm: provide immutable EVM digital signature.

 fs/xattr.c                          |  2 +-
 security/integrity/digsig.c         |  2 +
 security/integrity/evm/evm.h        | 11 ++++-
 security/integrity/evm/evm_crypto.c | 34 +++++++++++--
 security/integrity/evm/evm_main.c   | 97 ++++++++++++++++++++++++++++++++-----
 security/security.c                 |  4 ++
 6 files changed, 131 insertions(+), 19 deletions(-)

-- 
Best regards,
Mikhail Kurinnoi