Herbert, On Wed, Oct 17, 2018 at 02:08:51PM +0800, Herbert Xu wrote: > On Fri, Oct 12, 2018 at 09:41:05AM +0300, Vitaly Chikunov wrote: > > > > It is the first part of attempts to add to the Integrity subsystem > > ability of verifying file and module signatures by Russian GOST > > algorithms. > > It would be better if these patches are posted together. That > way we don't end up with a situation where the algorithm goes into > the kernel but the ultimate user is rejected. IMA does not need any particular patching inside of their subtree to support new hash, because it is using any hash registered in Hash Info which is still under crypto subtree. I added appropriate patch into v3 which is already posted a week ago, and tested it to work correctly with ima_appraise=fix. Thanks,