From nobody Mon Jun 15 07:45:15 2026 Received: from mx0b-001b2d01.pphosted.com (mx0b-001b2d01.pphosted.com [148.163.158.5]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id E9BEE33A9F8; Wed, 8 Apr 2026 17:42:08 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=148.163.158.5 ARC-Seal: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1775670130; cv=none; b=can7bgTN/EMhhAccPKUlU7SA7PbIsYpXfG72cDZwE31LsyxKSiWkcusnLmhYaZPMTy4YlbbIA8BMPXs0XL7p7kYtrNVjoWhOugp1W+APqww1DX6k3v/ZYdS6IRU351Ei/tQOp1HQFywB1H/HuR5VinS0mdIvFRhX45owcw6KAao= ARC-Message-Signature: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1775670130; c=relaxed/simple; bh=VffJ3U4k2l7pQdgyy08SxjbO5rRNGagE1DF2g+EXWvQ=; h=From:To:Cc:Subject:Date:Message-ID:In-Reply-To:References: MIME-Version; b=Uzg2CEI5YiPQRjzlB9+A9/0u+CrLX+/Qs/MrE1tPLAODiX8JgxnZYAzknbo/NIyw5wvMZ/V+jd3NZ/RpDeXdRSgA3Ll2bizjOtI4+PEjXtXPGPug4G35Gp/i8B1/NGuQ8W5QQ/Q9pyiDGQn650Db7ycedAHdXRjTOdFaRzhiclE= ARC-Authentication-Results: i=1; smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=linux.ibm.com; spf=pass smtp.mailfrom=linux.ibm.com; dkim=pass (2048-bit key) header.d=ibm.com header.i=@ibm.com header.b=SrhHEmCQ; arc=none smtp.client-ip=148.163.158.5 Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=linux.ibm.com Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=linux.ibm.com Authentication-Results: smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=ibm.com header.i=@ibm.com header.b="SrhHEmCQ" Received: from pps.filterd (m0360072.ppops.net [127.0.0.1]) by mx0a-001b2d01.pphosted.com (8.18.1.11/8.18.1.11) with ESMTP id 6386SJkH2299537; Wed, 8 Apr 2026 17:41:59 GMT DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ibm.com; h=cc :content-transfer-encoding:date:from:in-reply-to:message-id :mime-version:references:subject:to; s=pp1; bh=ljsXZyjvZBW0dqpuj VQ2iby7FO11MxaPslmIMj/tcCw=; b=SrhHEmCQiYMot7eTBkc4dq2a0d8YtbFEF uIq1XSH9RHOYAoDTrhSNfmd41Dr8eV4XO4ydei84l7WGP7bTr+URwbYhpG2bEAeI efCuqLWyPmIzmmyb4p//HjV8Aos/EtgQ80fNXtXDNQJneaYaDoAC1Q6hhl4ahb9Z zMiaujAtO4TzPlGeJebREYiuaIMvkgOSCAvH2orlzsoPyl+oe1aGG5U96QSMkPDg XtdpC3fJ+3U6kz/4mobY36eZPmBVN/KHJYNB/QFydTRvD1UlQvYiwszdwOkhZdxu 1LuUmoM86t47rlVN/rwhnaemn9Xio7wpGAyXXDH7rp7W7fuLgguBw== Received: from ppma21.wdc07v.mail.ibm.com (5b.69.3da9.ip4.static.sl-reverse.com [169.61.105.91]) by mx0a-001b2d01.pphosted.com (PPS) with ESMTPS id 4dcn2g0mcn-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Wed, 08 Apr 2026 17:41:59 +0000 (GMT) Received: from pps.filterd (ppma21.wdc07v.mail.ibm.com [127.0.0.1]) by ppma21.wdc07v.mail.ibm.com (8.18.1.2/8.18.1.2) with ESMTP id 638GDh3Z030030; Wed, 8 Apr 2026 17:41:58 GMT Received: from smtprelay06.wdc07v.mail.ibm.com ([172.16.1.73]) by ppma21.wdc07v.mail.ibm.com (PPS) with ESMTPS id 4dcme7gbxe-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Wed, 08 Apr 2026 17:41:58 +0000 Received: from smtpav02.dal12v.mail.ibm.com (smtpav02.dal12v.mail.ibm.com [10.241.53.101]) by smtprelay06.wdc07v.mail.ibm.com (8.14.9/8.14.9/NCO v10.0) with ESMTP id 638HfvCG19202620 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK); Wed, 8 Apr 2026 17:41:57 GMT Received: from smtpav02.dal12v.mail.ibm.com (unknown [127.0.0.1]) by IMSVA (Postfix) with ESMTP id 6271A5805A; Wed, 8 Apr 2026 17:41:57 +0000 (GMT) Received: from smtpav02.dal12v.mail.ibm.com (unknown [127.0.0.1]) by IMSVA (Postfix) with ESMTP id E0BDE58051; Wed, 8 Apr 2026 17:41:56 +0000 (GMT) Received: from sbct-3.pok.ibm.com (unknown [9.47.158.153]) by smtpav02.dal12v.mail.ibm.com (Postfix) with ESMTP; Wed, 8 Apr 2026 17:41:56 +0000 (GMT) From: Stefan Berger To: linux-integrity@vger.kernel.org, linux-security-module@vger.kernel.org Cc: linux-kernel@vger.kernel.org, zohar@linux.ibm.com, roberto.sassu@huawei.com, ebiggers@kernel.org, Stefan Berger Subject: [PATCH v2 1/2] integrity: Refactor asymmetric_verify for reusability Date: Wed, 8 Apr 2026 13:41:53 -0400 Message-ID: <20260408174154.139606-2-stefanb@linux.ibm.com> X-Mailer: git-send-email 2.53.0 In-Reply-To: <20260408174154.139606-1-stefanb@linux.ibm.com> References: <20260408174154.139606-1-stefanb@linux.ibm.com> Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable X-TM-AS-GCONF: 00 X-Authority-Analysis: v=2.4 cv=KeridwYD c=1 sm=1 tr=0 ts=69d69367 cx=c_pps a=GFwsV6G8L6GxiO2Y/PsHdQ==:117 a=GFwsV6G8L6GxiO2Y/PsHdQ==:17 a=A5OVakUREuEA:10 a=VkNPw1HP01LnGYTKEx00:22 a=RnoormkPH1_aCDwRdu11:22 a=RzCfie-kr_QcCd8fBx8p:22 a=VnNF1IyMAAAA:8 a=Tf38nk726vcbPy_It_cA:9 X-Proofpoint-ORIG-GUID: -OkZiZkFq5QLn-rAIoJkQCjlBavOVd0X X-Proofpoint-GUID: -OkZiZkFq5QLn-rAIoJkQCjlBavOVd0X X-Proofpoint-Spam-Details-Enc: AW1haW4tMjYwNDA4MDE2MSBTYWx0ZWRfXyLtwpyYfcKAy VYUUF1S7NDcppoCVrMeByyDUjuMcWrUJG3ZUlUq7DxqI3ZrwaaslPcNYixJtDCuRrrbkSPybeUu viEhz7UBJYsL3m00MP6I4L6atW66vn0VebKF6PNEkqANu2v7bwvnZM4Ytrjcn7WQcHUWljOkUTo IDfy8lMziHrsCr2Eyct9B78P9ihCy85jSUvYQh7u1D/de/cc2KoIKClhZ2uChHwPHroxHL1SKqC ETachZaBtPYZLFHzd6OJI8yi9IHiMrk6OYNlj/j99/BpUdlu85cAzkfQCqWm7D4U/4and6te3o/ 6Wdtsm2AyfX6uBfMTF93TzGd+yYqIyproAIHwMqtLlKfTvQg3GmUsXuhtH3R6CfI+s8HhLx2goc zLmMflVCq5YsMC9rHWCVtHs5SsWXD7c75fKgV/0XK6+/PAehIZ0d86fdWH7soKBA7Q+BfCV4hpZ TUy7ZSsn4wpMLmRv/2A== X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.293,Aquarius:18.0.1143,Hydra:6.1.51,FMLib:17.12.100.49 definitions=2026-04-08_05,2026-04-08_01,2025-10-01_01 X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 suspectscore=0 malwarescore=0 lowpriorityscore=0 adultscore=0 impostorscore=0 clxscore=1015 phishscore=0 priorityscore=1501 spamscore=0 bulkscore=0 classifier=typeunknown authscore=0 authtc= authcc= route=outbound adjust=0 reason=mlx scancount=1 engine=8.22.0-2604010000 definitions=main-2604080161 Content-Type: text/plain; charset="utf-8" Refactor asymmetric_verify for reusability. Have it call asymmetric_verify_common with the signature verification key and the public_key structure as parameters. sigv3 support for ML-DSA will need to check the public key type first to decide how to do the signature verification and therefore will have these parameters available for calling asymmetric_verify_common. Signed-off-by: Stefan Berger --- security/integrity/digsig_asymmetric.c | 42 +++++++++++++++++--------- 1 file changed, 28 insertions(+), 14 deletions(-) diff --git a/security/integrity/digsig_asymmetric.c b/security/integrity/di= gsig_asymmetric.c index 6e68ec3becbd..e29ed73f15cd 100644 --- a/security/integrity/digsig_asymmetric.c +++ b/security/integrity/digsig_asymmetric.c @@ -79,18 +79,15 @@ static struct key *request_asymmetric_key(struct key *k= eyring, uint32_t keyid) return key; } =20 -int asymmetric_verify(struct key *keyring, const char *sig, - int siglen, const char *data, int datalen) +static int asymmetric_verify_common(const struct key *key, + const struct public_key *pk, + const char *sig, int siglen, + const char *data, int datalen) { - struct public_key_signature pks; struct signature_v2_hdr *hdr =3D (struct signature_v2_hdr *)sig; - const struct public_key *pk; - struct key *key; + struct public_key_signature pks; int ret; =20 - if (siglen <=3D sizeof(*hdr)) - return -EBADMSG; - siglen -=3D sizeof(*hdr); =20 if (siglen !=3D be16_to_cpu(hdr->sig_size)) @@ -99,15 +96,10 @@ int asymmetric_verify(struct key *keyring, const char *= sig, if (hdr->hash_algo >=3D HASH_ALGO__LAST) return -ENOPKG; =20 - key =3D request_asymmetric_key(keyring, be32_to_cpu(hdr->keyid)); - if (IS_ERR(key)) - return PTR_ERR(key); - memset(&pks, 0, sizeof(pks)); =20 pks.hash_algo =3D hash_algo_name[hdr->hash_algo]; =20 - pk =3D asymmetric_key_public_key(key); pks.pkey_algo =3D pk->pkey_algo; if (!strcmp(pk->pkey_algo, "rsa")) { pks.encoding =3D "pkcs1"; @@ -127,11 +119,33 @@ int asymmetric_verify(struct key *keyring, const char= *sig, pks.s_size =3D siglen; ret =3D verify_signature(key, &pks); out: - key_put(key); pr_debug("%s() =3D %d\n", __func__, ret); return ret; } =20 +int asymmetric_verify(struct key *keyring, const char *sig, + int siglen, const char *data, int datalen) +{ + struct signature_v2_hdr *hdr =3D (struct signature_v2_hdr *)sig; + const struct public_key *pk; + struct key *key; + int ret; + + if (siglen <=3D sizeof(*hdr)) + return -EBADMSG; + + key =3D request_asymmetric_key(keyring, be32_to_cpu(hdr->keyid)); + if (IS_ERR(key)) + return PTR_ERR(key); + pk =3D asymmetric_key_public_key(key); + + ret =3D asymmetric_verify_common(key, pk, sig, siglen, data, datalen); + + key_put(key); + + return ret; +} + /* * calc_file_id_hash - calculate the hash of the ima_file_id struct data * @type: xattr type [enum evm_ima_xattr_type] --=20 2.53.0 From nobody Mon Jun 15 07:45:15 2026 Received: from mx0b-001b2d01.pphosted.com (mx0b-001b2d01.pphosted.com [148.163.158.5]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 6C3BB3D75CB; Wed, 8 Apr 2026 17:42:10 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=148.163.158.5 ARC-Seal: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1775670131; cv=none; b=I1Q2BqTA/fB/bcNhdOevV8CRRGo3ae+3xrIXk4RhTi4BtXt+ZzgMLt11N2q9b6QBDmoVqfaecp/b5CPYG8NAB+2k3tYr/Q/AbJPT2yZHDhh/8bZCfHJFmilrqB6yTocrCgTvBZA/BY3sFJmpY76Uc0dWrtJgKkPFi4/PHe+KEGc= ARC-Message-Signature: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1775670131; c=relaxed/simple; bh=BrMuetVpaBFLHhRA+jbk9HT15gBvymjXI4KagFTnBkg=; h=From:To:Cc:Subject:Date:Message-ID:In-Reply-To:References: MIME-Version; b=Wuz+3Peao4TbOA62aMZNzIM+YyE1tTJ47vBoik6hO4JKDeOSgF3lCcueIFvrA/O8nTsXguooCB9n/R4j7c7VdrsnUz+pmLCdqGiKa6zp/Xi7fs94opuWd0HK4NW25zAQTcXxiPNo9Oay9MucopSBaThiSSHZPg41k9FTz3MPYhU= ARC-Authentication-Results: i=1; smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=linux.ibm.com; spf=pass smtp.mailfrom=linux.ibm.com; dkim=pass (2048-bit key) header.d=ibm.com header.i=@ibm.com header.b=S4/dKUTj; arc=none smtp.client-ip=148.163.158.5 Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=linux.ibm.com Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=linux.ibm.com Authentication-Results: smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=ibm.com header.i=@ibm.com header.b="S4/dKUTj" Received: from pps.filterd (m0360072.ppops.net [127.0.0.1]) by mx0a-001b2d01.pphosted.com (8.18.1.11/8.18.1.11) with ESMTP id 6385lhaG2297936; Wed, 8 Apr 2026 17:42:01 GMT DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ibm.com; h=cc :content-transfer-encoding:date:from:in-reply-to:message-id :mime-version:references:subject:to; s=pp1; bh=HPEa+WMuqJ0euATJo oXjk7D58G3/Mhr/wTJMYWghzCY=; b=S4/dKUTj54hRKOOf6x4Mxc7AvVewHW60h BRezzDSwrvStoo6JWhXfunmp20yns8HT8KNlyUFreaeKdnBHjFLt9XDQ1cqVYumY Eg3uK55p4vkE4Ky9b6sMy3DfkDFkohAZ0FGMnN3H1E8JAunK0CDg/vKIuj2QvZ53 Tm09pcpjc1IK0E2WForHTHR74EIVEVksUqRPpsA/EaFm98uFQB+knwnW8ufnJhcI VEPhsynL3eBdFCH3xCComCfn2B8waY4r1xEwbJ3XSls6Tyzh0uheqrIphlhtPUH0 UAX/8Pr4wUFRa0/55pyFVwzhE65GS/0RNvtuEGZ8DhhTd+wGnu5+A== Received: from ppma13.dal12v.mail.ibm.com (dd.9e.1632.ip4.static.sl-reverse.com [50.22.158.221]) by mx0a-001b2d01.pphosted.com (PPS) with ESMTPS id 4dcn2g0mcq-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Wed, 08 Apr 2026 17:42:00 +0000 (GMT) Received: from pps.filterd (ppma13.dal12v.mail.ibm.com [127.0.0.1]) by ppma13.dal12v.mail.ibm.com (8.18.1.2/8.18.1.2) with ESMTP id 638FP1ir018952; Wed, 8 Apr 2026 17:41:59 GMT Received: from smtprelay07.wdc07v.mail.ibm.com ([172.16.1.74]) by ppma13.dal12v.mail.ibm.com (PPS) with ESMTPS id 4dcme9gcmt-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Wed, 08 Apr 2026 17:41:59 +0000 Received: from smtpav02.dal12v.mail.ibm.com (smtpav02.dal12v.mail.ibm.com [10.241.53.101]) by smtprelay07.wdc07v.mail.ibm.com (8.14.9/8.14.9/NCO v10.0) with ESMTP id 638HfwEq33423894 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK); Wed, 8 Apr 2026 17:41:58 GMT Received: from smtpav02.dal12v.mail.ibm.com (unknown [127.0.0.1]) by IMSVA (Postfix) with ESMTP id E83B45805A; Wed, 8 Apr 2026 17:41:57 +0000 (GMT) Received: from smtpav02.dal12v.mail.ibm.com (unknown [127.0.0.1]) by IMSVA (Postfix) with ESMTP id 7A6AF58051; Wed, 8 Apr 2026 17:41:57 +0000 (GMT) Received: from sbct-3.pok.ibm.com (unknown [9.47.158.153]) by smtpav02.dal12v.mail.ibm.com (Postfix) with ESMTP; Wed, 8 Apr 2026 17:41:57 +0000 (GMT) From: Stefan Berger To: linux-integrity@vger.kernel.org, linux-security-module@vger.kernel.org Cc: linux-kernel@vger.kernel.org, zohar@linux.ibm.com, roberto.sassu@huawei.com, ebiggers@kernel.org, Stefan Berger Subject: [PATCH v2 2/2] integrity: Add support for sigv3 verification using ML-DSA keys Date: Wed, 8 Apr 2026 13:41:54 -0400 Message-ID: <20260408174154.139606-3-stefanb@linux.ibm.com> X-Mailer: git-send-email 2.53.0 In-Reply-To: <20260408174154.139606-1-stefanb@linux.ibm.com> References: <20260408174154.139606-1-stefanb@linux.ibm.com> Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable X-TM-AS-GCONF: 00 X-Authority-Analysis: v=2.4 cv=KeridwYD c=1 sm=1 tr=0 ts=69d69368 cx=c_pps a=AfN7/Ok6k8XGzOShvHwTGQ==:117 a=AfN7/Ok6k8XGzOShvHwTGQ==:17 a=A5OVakUREuEA:10 a=VkNPw1HP01LnGYTKEx00:22 a=RnoormkPH1_aCDwRdu11:22 a=RzCfie-kr_QcCd8fBx8p:22 a=VwQbUJbxAAAA:8 a=VnNF1IyMAAAA:8 a=l4_6J5y0UeJh4BTlO3gA:9 X-Proofpoint-ORIG-GUID: Cr2FbTONnOn3jHHypiqwm_PVfF_s7Bu2 X-Proofpoint-GUID: Cr2FbTONnOn3jHHypiqwm_PVfF_s7Bu2 X-Proofpoint-Spam-Details-Enc: AW1haW4tMjYwNDA4MDE2MSBTYWx0ZWRfX8R8wPRJBxojz yUE47XtOoKNcn32C8WpYQkHNZ/QjIwxnGwnEar/1a2bjT/KbC+SBzp5ZP9m0sJPafzLYgo8X0hD OT/pS4h/XalqLbCPGKvYgDExJt1YJyw3aDSziGxFpvlac9VLnYuooO6jb8izx6NC6PlRmUJCM5p A1q9jxmAMyNn55e4gJqbsyr6gIMGTamkuYM3ILKqRZFjNh4v39NgaChINorgUkdKsEfFdiI2UW+ 6hCjbs+7LK5LRA4YCEHzlc0vg/L5tcgoPMPIX1m9hcJ5DKC26VXjBDBBPx8Eqlzkbm2MuX5b6Sy NhLd+LmpyGtSA9r+9OopvX4Av0G6CPbLDrprLk+ux2pkuJ2HHzRQf1R5JJ+pmUY28qx/A62L4MV AkPoH7fsEIzoTfco9Zc0Il8D3L/SbadRBtY2JcITY7Bu4QiH1Dh8/Lkt4kk/OtXfuL5sMyykRGP BIk7MrfWmtPOtEZqZSQ== X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.293,Aquarius:18.0.1143,Hydra:6.1.51,FMLib:17.12.100.49 definitions=2026-04-08_05,2026-04-08_01,2025-10-01_01 X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 suspectscore=0 malwarescore=0 lowpriorityscore=0 adultscore=0 impostorscore=0 clxscore=1015 phishscore=0 priorityscore=1501 spamscore=0 bulkscore=0 classifier=typeunknown authscore=0 authtc= authcc= route=outbound adjust=0 reason=mlx scancount=1 engine=8.22.0-2604010000 definitions=main-2604080161 Content-Type: text/plain; charset="utf-8" Add support for sigv3 signature verification using ML-DSA in pure mode. When a sigv3 signature is verified, first check whether the key to use for verification is an ML-DSA key and therefore uses a hashless signature verification scheme. The hashless signature verification method uses the ima_file_id structure directly for signature verification rather than its digest. Suggested-by: Eric Biggers Signed-off-by: Stefan Berger --- v2: Set hash_algo in public_key_signature to "none" --- security/integrity/digsig_asymmetric.c | 84 ++++++++++++++++++++++++-- 1 file changed, 79 insertions(+), 5 deletions(-) diff --git a/security/integrity/digsig_asymmetric.c b/security/integrity/di= gsig_asymmetric.c index e29ed73f15cd..c80cb2b117a6 100644 --- a/security/integrity/digsig_asymmetric.c +++ b/security/integrity/digsig_asymmetric.c @@ -190,17 +190,91 @@ static int calc_file_id_hash(enum evm_ima_xattr_type = type, return rc; } =20 +/* + * asymmetric_verify_v3_hashless - Use hashless signature verification on = sigv3 + * @key: The key to use for signature verification + * @pk: The associated public key + * @encoding: The encoding the key type uses + * @sig: The signature + * @siglen: The length of the xattr signature + * @algo: The hash algorithm + * @digest: The file digest + * + * Create an ima_file_id structure and use it for signature verification + * directly. This can be used for ML-DSA in pure mode for example. + */ +static int asymmetric_verify_v3_hashless(struct key *key, + const struct public_key *pk, + const char *encoding, + const char *sig, int siglen, + u8 algo, + const u8 *digest) +{ + struct signature_v2_hdr *hdr =3D (struct signature_v2_hdr *)sig; + struct ima_file_id file_id =3D { + .hash_type =3D hdr->type, + .hash_algorithm =3D algo, + }; + size_t digest_size =3D hash_digest_size[algo]; + struct public_key_signature pks =3D { + .m =3D (u8 *)&file_id, + .m_size =3D sizeof(file_id) - (HASH_MAX_DIGESTSIZE - digest_size), + .s =3D hdr->sig, + .s_size =3D siglen - sizeof(*hdr), + .pkey_algo =3D pk->pkey_algo, + .hash_algo =3D "none", + .encoding =3D encoding, + }; + int ret; + + if (hdr->type !=3D IMA_VERITY_DIGSIG && + hdr->type !=3D EVM_IMA_XATTR_DIGSIG && + hdr->type !=3D EVM_XATTR_PORTABLE_DIGSIG) + return -EINVAL; + + if (pks.s_size !=3D be16_to_cpu(hdr->sig_size)) + return -EBADMSG; + + memcpy(file_id.hash, digest, digest_size); + + ret =3D verify_signature(key, &pks); + pr_debug("%s() =3D %d\n", __func__, ret); + return ret; +} + int asymmetric_verify_v3(struct key *keyring, const char *sig, int siglen, const char *data, int datalen, u8 algo) { struct signature_v2_hdr *hdr =3D (struct signature_v2_hdr *)sig; struct ima_max_digest_data hash; + const struct public_key *pk; + struct key *key; int rc; =20 - rc =3D calc_file_id_hash(hdr->type, algo, data, &hash); - if (rc) - return -EINVAL; + if (siglen <=3D sizeof(*hdr)) + return -EBADMSG; + + key =3D request_asymmetric_key(keyring, be32_to_cpu(hdr->keyid)); + if (IS_ERR(key)) + return PTR_ERR(key); =20 - return asymmetric_verify(keyring, sig, siglen, hash.digest, - hash.hdr.length); + pk =3D asymmetric_key_public_key(key); + if (!strncmp(pk->pkey_algo, "mldsa", 5)) { + rc =3D asymmetric_verify_v3_hashless(key, pk, "raw", + sig, siglen, algo, data); + } else { + rc =3D calc_file_id_hash(hdr->type, algo, data, &hash); + if (rc) { + rc =3D -EINVAL; + goto err_exit; + } + + rc =3D asymmetric_verify_common(key, pk, sig, siglen, hash.digest, + hash.hdr.length); + } + +err_exit: + key_put(key); + + return rc; } --=20 2.53.0