David Howells and Eric Biggers proposed PQC ML-DSA pure mode support, but does not support IMA [1].
Summary:
- The ML-DSA implementation supports only "pure" mode, not pre-hash mode.
By not supporting "pre-hash" mode, IMA file hash will be calculated multiple times, once by the kernel for audit and extending the TPM, and again by the ML-DSA crypto. Review the proposed ML-DSA code to see if this is even possible and how hard it would be.
[1] Link: https://lore.kernel.org/linux-integrity/[email protected]/
David Howells and Eric Biggers proposed PQC ML-DSA pure mode support, but does not support IMA [1].
Summary:
By not supporting "pre-hash" mode, IMA file hash will be calculated multiple times, once by the kernel for audit and extending the TPM, and again by the ML-DSA crypto. Review the proposed ML-DSA code to see if this is even possible and how hard it would be.
[1] Link: https://lore.kernel.org/linux-integrity/[email protected]/