projects
/
linux-2.6-microblaze.git
/ search
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
first ⋅ prev ⋅
next
ima: Fix potential memory leak in ima_init_crypto()
2022-07-13
Jianglei Nie
ima: Fix potential memory leak in ima_init_crypto()
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2022-07-13
Coiby Xu
ima: force signature verification when CONFIG_KEXEC_SIG...
...and-suggested-by: Mimi Zohar <
zohar@linux.ibm.com
>
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2022-07-07
Huaxin Lu
ima: Fix a potential integer overflow in ima_appraise_measur...
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2022-07-07
Mimi Zohar
ima: fix violation measurement list record
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2022-06-15
Xiu Jianfeng
Revert "evm: Fix memleak in init_desc"
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2022-05-16
Stefan Berger
integrity: Fix sparse warnings in keyring_handler
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2022-05-16
Stefan Berger
evm: Clean up some variables
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2022-05-16
Stefan Berger
evm: Return INTEGRITY_PASS for enum integrity_status...
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2022-05-15
Aditya Garg
efi: Do not import certificates from UEFI Secure Boot...
Reviewed-by: Mimi Zohar <
zohar@linux.ibm.com
>
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2022-05-12
Mimi Zohar
Merge branch 'next-integrity.fsverity-v9' into next...
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2022-05-12
Mimi Zohar
fsverity: update the documentation
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2022-05-05
Mimi Zohar
ima: support fs-verity file digest based version 3...
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2022-05-05
Mimi Zohar
ima: permit fsverity's file digests in the IMA measurement...
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2022-05-05
Mimi Zohar
ima: define a new template field named 'd-ngv2' and...
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2022-05-01
Mimi Zohar
fs-verity: define a function to return the integrity...
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2022-05-01
Mimi Zohar
ima: use IMA default hash algorithm for integrity violations
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2022-05-01
Mimi Zohar
ima: fix 'd-ng' comments and documentation
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2022-04-07
GUO Zihua
ima: remove the IMA_TEMPLATE Kconfig option
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2022-04-04
Colin Ian King
ima: remove redundant initialization of pointer 'file'.
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2022-03-01
Mimi Zohar
MAINTAINERS: add missing security/integrity/platform_certs
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2022-02-22
Randy Dunlap
EVM: fix the evm= __setup handler return value
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2022-02-22
Yael Tzur
KEYS: encrypted: Instantiate key with user-provided...
Reviewed-by: Mimi Zohar <
zohar@linux.ibm.com
>
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2022-02-15
Mimi Zohar
ima: define ima_max_digest_data struct without a flexible...
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2022-02-15
Mimi Zohar
ima: rename IMA_ACTION_FLAGS to IMA_NONACTION_FLAGS
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2022-02-15
Stefan Berger
ima: Return error code obtained from securityfs functions
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2022-02-15
Mimi Zohar
MAINTAINERS: add missing "security/integrity" directory
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2022-02-15
Austin Kim
ima: Fix trivial typos in the comments
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2022-02-02
Stefan Berger
ima: Do not print policy rule with inactive LSM labels
[
zohar@linux.ibm.com
: Updated "Fixes" tag]
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2022-02-02
Roberto Sassu
ima: Allow template selection with ima_template[_fmt...
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2022-02-02
Stefan Berger
ima: Remove ima_policy file before directory
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2022-02-02
Xiaoke Wang
integrity: check the return value of audit_log_start()
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2022-01-24
Eric Biggers
ima: fix reference leak in asymmetric_verify()
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2022-01-05
Nageswara R Sastry
selftests/kexec: Enable secureboot tests for PowerPC
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2022-01-05
Bruno Meneguele
ima: silence measurement list hexdump during kexec
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-12-31
Mimi Zohar
selftests/kexec: update searching for the Kconfig
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-12-31
Mimi Zohar
selftest/kexec: fix "ignored null byte in input" warning
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-12-24
Lee, Chun-Yi
integrity: Do not load MOK and MOKx when secure boot...
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-12-24
Takashi Iwai
ima: Fix undefined arch_ima_get_secureboot() and co
[
zohar@linux.ibm.com
: removed in-tree/out-of-tree comment...
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-10-28
Austin Kim
evm: mark evm_fixmode as __ro_after_init
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-10-10
Petr Vorel
ima: Use strscpy instead of strlcpy
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-10-10
Petr Vorel
ima_policy: Remove duplicate 'the' in docs comment
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-10-10
Curtis Veit
ima: add gid support
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-10-10
Alex Henrie
ima: fix uid code style problems
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-10-10
liqiong
ima: fix deadlock when traversing "ima_default_rules".
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-08-23
THOBY Simon
IMA: reject unknown hash algorithms in ima_get_hash_algo
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-08-18
Mimi Zohar
Merge branch 'restrict-digest-alg-v8' into next-integrity
commit
|
commitdiff
|
tree
2021-08-16
THOBY Simon
IMA: prevent SETXATTR_CHECK policy rules with unavailable...
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-08-16
THOBY Simon
IMA: introduce a new policy option func=SETXATTR_CHECK
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-08-16
THOBY Simon
IMA: add a policy option to restrict xattr hash algorithms...
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-08-16
THOBY Simon
IMA: add support to restrict the hash algorithms used...
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-08-16
THOBY Simon
IMA: block writes of the security.ima xattr with unsupported...
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-08-16
THOBY Simon
IMA: remove the dependency on CRYPTO_MD5
[
zohar@linux.ibm.com
: include commit number in patch...
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-07-23
Mimi Zohar
Merge branch 'ima-buffer-measurement-changes-v4' into...
commit
|
commitdiff
|
tree
2021-07-23
Roberto Sassu
ima: Add digest and digest_len params to the functions...
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-07-23
Roberto Sassu
ima: Return int in the functions to measure a buffer
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-07-23
Roberto Sassu
ima: Introduce ima_get_current_hash_algo()
[
zohar@linux.ibm.com
: annotate ima_hash_algo as __ro_after_init]
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-07-23
Austin Kim
IMA: remove -Wmissing-prototypes warning
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-06-21
Roberto Sassu
evm: Check xattr size discrepancy between kernel and...
Suggested-by: Mimi Zohar <
zohar@linux.ibm.com
>
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-06-20
Mimi Zohar
evm: output EVM digest calculation info
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-06-11
Tushar Sugandhi
IMA: support for duplicate measurement records
[
zohar@linux.ibm.com
: updated list of duplicate measurement...
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-06-11
Lakshmi Ramasubramanian
ima: Fix warning: no previous prototype for function...
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-06-10
Mimi Zohar
ima: differentiate between EVM failures in the audit log
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-06-09
Gustavo A. R. Silva
ima: Fix fall-through warning for Clang
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-06-08
Roberto Sassu
ima: Pass NULL instead of 0 to ima_get_action() in...
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-06-08
Roberto Sassu
ima: Include header defining ima_post_key_create_or_update()
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-06-08
Roberto Sassu
ima/evm: Fix type mismatch
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-06-08
Roberto Sassu
ima: Set correct casting types
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-06-08
Roberto Sassu
doc: Fix warning in Documentation/security/IMA-templates.rst
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-06-03
Mimi Zohar
Merge branch 'verify-evm-portable-sig-v2' into next...
commit
|
commitdiff
|
tree
2021-06-03
Roberto Sassu
evm: Don't return an error in evm_write_xattrs() if...
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-06-03
Roberto Sassu
ima: Define new template evm-sig
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-06-02
Roberto Sassu
ima: Define new template fields xattrnames, xattrlengths...
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-06-01
Roberto Sassu
evm: Verify portable signatures against all protected...
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-06-01
Roberto Sassu
ima: Define new template field imode
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-06-01
Roberto Sassu
ima: Define new template fields iuid and igid
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-06-01
Roberto Sassu
ima: Add ima_show_template_uint() template library...
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-06-01
Mimi Zohar
Merge branch 'misc-evm-v7' into next-integrity
commit
|
commitdiff
|
tree
2021-06-01
Roberto Sassu
ima: Don't remove security.ima if file must not be...
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-06-01
Roberto Sassu
ima: Introduce template field evmsig and write to field...
Suggested-by: Mimi Zohar <
zohar@linux.ibm.com
>
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-06-01
Roberto Sassu
ima: Allow imasig requirement to be satisfied by EVM...
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-06-01
Roberto Sassu
evm: Deprecate EVM_ALLOW_METADATA_WRITES
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-06-01
Roberto Sassu
evm: Allow setxattr() and setattr() for unmodified...
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-05-21
Roberto Sassu
evm: Pass user namespace to set/remove xattr hooks
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-05-21
Roberto Sassu
evm: Allow xattr/attr operations for portable signatures
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-05-21
Roberto Sassu
evm: Introduce evm_hmac_disabled() to safely ignore...
Suggested-by: Mimi Zohar <
zohar@linux.ibm.com
> (for ensuring EVM_INIT_HMAC is...
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-05-21
Roberto Sassu
evm: Introduce evm_revalidate_status()
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-05-21
Roberto Sassu
evm: Refuse EVM_ALLOW_METADATA_WRITES only if an HMAC...
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-05-21
Roberto Sassu
evm: Load EVM key in ima_load_x509() to avoid appraisal
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-05-21
Roberto Sassu
evm: Execute evm_inode_init_security() only when an...
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-05-20
Mimi Zohar
evm: fix writing <securityfs>/evm overflow
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-04-27
Nayna Jain
ima: ensure IMA_APPRAISE_MODSIG has necessary dependencies
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-04-20
Gustavo A. R. Silva
ima: Fix fall-through warnings for Clang
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-04-09
Jiele Zhao
integrity: Add declarations to init_once void arguments.
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-04-09
Jiele Zhao
ima: Fix function name error in comment.
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-04-09
Mimi Zohar
Merge branch 'ima-module-signing-v4' into next-integrity
commit
|
commitdiff
|
tree
2021-04-09
Nayna Jain
ima: enable loading of build time generated key on...
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-04-09
Nayna Jain
ima: enable signing of modules with build time generated key
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-04-09
Nayna Jain
keys: cleanup build time module signing keys
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-03-24
Li Huafei
ima: Fix the error code for restoring the PCR value
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
2021-03-22
Mimi Zohar
ima: without an IMA policy loaded, return quickly
Signed-off-by: Mimi Zohar <
zohar@linux.ibm.com
>
commit
|
commitdiff
|
tree
next