7 Jul
2020
7 Jul
'20
11:43 a.m.
On 2020/7/6 23:41, Roberto Sassu wrote:
diff --git a/security/integrity/ima/ima_main.c b/security/integrity/ima/ima_main.c index c08dbc55e5f9..703f65dcedde 100644 --- a/security/integrity/ima/ima_main.c +++ b/security/integrity/ima/ima_main.c @@ -120,6 +120,57 @@ static void ima_rdwr_violation_check(struct file *file, "invalid_pcr", "open_writers"); }
+static enum hash_algo ima_get_hash_algo(struct evm_ima_xattr_data *xattr_value,
int xattr_len)+{
- struct signature_v2_hdr *sig;
- enum hash_algo ret;
- if (!xattr_value || xattr_len < 2)
/* return default hash algo */return ima_hash_algo;- switch (xattr_value->type) {
- case EVM_IMA_XATTR_DIGSIG:
sig = (typeof(sig))xattr_value;if (sig->version != 2 || xattr_len <= sizeof(*sig))return ima_hash_algo;return sig->hash_algo;break;
This break after return is not needed.
- case IMA_XATTR_DIGEST_NG:
ret = xattr_value->digest[0];if (ret < HASH_ALGO__LAST)return ret;break;- case IMA_XATTR_DIGEST:
/* this is for backward compatibility */if (xattr_len == 21) {unsigned int zero = 0;if (!memcmp(&xattr_value->digest[16], &zero, 4))return HASH_ALGO_MD5;elsereturn HASH_ALGO_SHA1;} else if (xattr_len == 17)return HASH_ALGO_MD5;break;- }