** Description changed: Switch IMA default hash to sha256 - Originally when IMA was requested to be turned on, it was requested to - be on with SHA256, despite linux kernel upstream default of sha1. + Some arches use sha256, others sha1. + sha256 is widely accelerated now. + most use sha256. + sha1 usage must stop after 2030, for NIST compliance. - Also most use sha256. One can switch to sha1 with kernel command line - ima_hash=sha1 + One can switch to sha1 with kernel command line ima_hash=sha1
-- You received this bug notification because you are a member of Kernel Packages, which is subscribed to linux in Ubuntu. https://bugs.launchpad.net/bugs/2041735 Title: Switch IMA default hash to sha256 Status in linux package in Ubuntu: New Bug description: Switch IMA default hash to sha256 Some arches use sha256, others sha1. sha256 is widely accelerated now. most use sha256. sha1 usage must stop after 2030, for NIST compliance. One can switch to sha1 with kernel command line ima_hash=sha1 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/2041735/+subscriptions -- Mailing list: https://launchpad.net/~kernel-packages Post to : kernel-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~kernel-packages More help : https://help.launchpad.net/ListHelp