From: Roberto Sassu <roberto.sassu@xxxxxxxxxx> Add two simple tests to check whether or not the HMAC calculated by the kernel and evmctl matches. Do the tests for a regular file, and for a directory successfully transmuted with Smack. Also add two bug fixes to include the filesystem UUID and the inode generation in the HMAC calculation, and the new option --hmackey to specify an alternate location of the HMAC key. Changelog v1: - Add documentation for --hmackey option of evmctl (suggested by Mimi) - Update kernel configuration for CI - Include inode generation in HMAC calculation for directories - Specify kernel patches required for the tests (suggested by Mimi) - Move xattr compare code to compare_xattr() - Add new Smack-specific test to check HMAC of transmuting directory (suggested by Mimi) - Check in the test that the --hmackey option is available (suggested by Mimi) - Remove i_version mount option (should be default in ext4) - Mount smackfs if the UML kernel is used Roberto Sassu (4): Include the filesystem UUID in HMAC calculation Restore correct HMAC calculation for directories Add --hmackey option for evmctl Add simple test to check EVM HMAC calculation README | 3 +- kernel-configs/base | 4 +- kernel-configs/integrity | 1 + src/evmctl.c | 31 ++++- src/imaevm.h | 1 + tests/Makefile.am | 2 +- tests/evm_hmac.test | 251 +++++++++++++++++++++++++++++++++++++++ tests/functions.sh | 6 + 8 files changed, 293 insertions(+), 6 deletions(-) create mode 100755 tests/evm_hmac.test -- 2.25.1
