summaryrefslogtreecommitdiff
path: root/rust/kernel/interop/git@git.tavy.me:linux-stable.git
diff options
context:
space:
mode:
authorDaniel Hodges <hodgesd@meta.com>2026-01-31 18:40:15 -0800
committerMimi Zohar <zohar@linux.ibm.com>2026-03-09 10:57:49 -0400
commit870819434c8dfcc3158033b66e7851b81bb17e21 (patch)
treedb29179f5fb3f3aa7b3e739c909246fafc97e05c /rust/kernel/interop/git@git.tavy.me:linux-stable.git
parenta74d7197ebe5b1b8028911d47e78c119d9aaf193 (diff)
ima: check return value of crypto_shash_final() in boot aggregate
The return value of crypto_shash_final() is not checked in ima_calc_boot_aggregate_tfm(). If the hash finalization fails, the function returns success and a corrupted boot aggregate digest could be used for IMA measurements. Capture the return value and propagate any error to the caller. Fixes: 76bb28f6126f ("ima: use new crypto_shash API instead of old crypto_hash") Signed-off-by: Daniel Hodges <hodgesd@meta.com> Reviewed-by: Roberto Sassu <roberto.sassu@huawei.com> Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
Diffstat (limited to 'rust/kernel/interop/git@git.tavy.me:linux-stable.git')
0 files changed, 0 insertions, 0 deletions
generated by cgit v1.2.3 (git 2.25.1) at 2026-04-22 01:35:15 +0000