projects
/
linux-2.6-microblaze.git
/ search
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
first ⋅ prev ⋅
next
encrypted-keys: fix Opt_err/Opt_error = -1
2019-02-04
Mimi Zohar
encrypted-keys: fix Opt_err/Opt_error = -1
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2019-02-04
Kairui Song
kexec, KEYS: Make use of platform keyring for signature...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2019-02-04
Kairui Song
integrity, KEYS: add a reference to platform keyring
Suggested-by:
Mimi Zohar
<zohar@linux.ibm.com>
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2018-12-13
Nikolay Borisov
ima: Use inode_is_open_for_write
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2018-12-13
Nayna Jain
ima: Support platform keyring for kernel appraisal
Reviewed-by:
Mimi Zohar
<zohar@linux.ibm.com>
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2018-12-13
Josh Boyer
efi: Allow the "db" UEFI variable to be suppressed
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2018-12-13
Josh Boyer
efi: Import certificates from UEFI Secure Boot
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2018-12-13
Dave Howells
efi: Add an EFI signature blob parser
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2018-12-13
Dave Howells
efi: Add EFI signature data types
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2018-12-13
Nayna Jain
integrity: Load certs to the platform keyring
Reviewed-by:
Mimi Zohar
<zohar@linux.ibm.com>
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2018-12-13
Nayna Jain
integrity: Define a trusted platform keyring
Reviewed-by:
Mimi Zohar
<zohar@linux.ibm.com>
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2018-12-11
Mimi Zohar
selftests/ima: kexec_load syscall test
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2018-12-11
Mimi Zohar
ima: don't measure/appraise files on efivarfs
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2018-12-11
Mimi Zohar
x86/ima: retry detecting secure boot mode
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2018-12-11
Stefan Berger
docs: Extend trusted keys documentation for TPM 2.0
Reviewed-by:
Mimi Zohar
<zohar@linux.ibm.com>
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2018-12-11
Eric Richter
x86/ima: define arch_get_ima_policy() for x86
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2018-12-11
Nayna Jain
ima: add support for arch specific policies
Co-Developed-by:
Mimi Zohar
<zohar@linux.ibm.com>
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2018-12-11
Nayna Jain
ima: refactor ima_init_policy()
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2018-12-11
Nayna Jain
ima: prevent kexec_load syscall based on runtime secureboot...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2018-11-13
Nayna Jain
x86/ima: define arch_ima_get_secureboot
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2018-11-13
Mimi Zohar
integrity: support new struct public_key_signature...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2018-10-11
Mimi Zohar
MAINTAINERS: add Jarkko as maintainer for trusted keys
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2018-10-10
Goldwyn Rodrigues
ima: open a new file instance if no read permissions
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2018-10-10
Eric Biggers
ima: fix showing large 'violations' or 'runtime_measurements...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2018-10-10
Eric Biggers
security/integrity: remove unnecessary 'init_keyring...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2018-10-10
Eric Biggers
security/integrity: constify some read-only data
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2018-10-10
Eric Biggers
vfs: require i_size <= SIZE_MAX in kernel_read_file()
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2018-07-22
Wei Yongjun
EVM: fix return value check in evm_write_xattrs()
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2018-07-18
Mikhail Kurinnoi
integrity: prevent deadlock during digsig verification.
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-07-18
Matthew Garrett
evm: Allow non-SHA1 digital signatures
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-07-18
Matthew Garrett
evm: Don't deadlock if a crypto algorithm is unavailable
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-07-18
Sudeep Holla
integrity: silence warning when CONFIG_SECURITYFS is...
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-07-18
Stefan Berger
ima: Differentiate auditing policy rules from "audit...
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-07-18
Stefan Berger
ima: Do not audit if CONFIG_INTEGRITY_AUDIT is not set
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-07-18
Stefan Berger
ima: Use audit_log_format() rather than audit_log_string()
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-07-18
Stefan Berger
ima: Call audit_log_string() rather than logging it...
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-06-01
Dan Carpenter
EVM: unlock on error path in evm_read_xattrs()
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-05-31
Dan Carpenter
EVM: prevent array underflow in evm_write_xattrs()
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-05-31
Colin Ian King
EVM: Fix null dereference on xattr when xattr fails...
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-05-31
Colin Ian King
EVM: fix memory leak of temporary buffer 'temp'
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-05-31
Petko Manolov
IMA: use list_splice_tail_init_rcu() instead of its...
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-05-31
Yisheng Xie
ima: use match_string() helper
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-05-22
Mimi Zohar
ima: fix updating the ima_appraise flag
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-05-22
Mimi Zohar
ima: based on policy verify firmware signatures (pre...
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-05-22
Mimi Zohar
ima: define a new policy condition based on the filesystem...
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-05-18
Matthew Garrett
EVM: Allow runtime modification of the set of verified...
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-05-18
Matthew Garrett
EVM: turn evm_config_xattrnames into a list
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-05-17
Matthew Garrett
integrity: Add an integrity directory in securityfs
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-05-17
Petr Vorel
ima: Remove unused variable ima_initialized
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-05-17
Petr Vorel
ima: Unify logging
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-05-17
Petr Vorel
ima: Reflect correct permissions for policy
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-03-25
Petr Vorel
ima: Fallback to the builtin hash algorithm
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-03-25
Martin Townsend
ima: Add smackfs to the default appraise/measure list
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-03-25
Sascha Hauer
evm: check for remount ro in progress before writing
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-03-25
Thiago Jung Bauermann
ima: Improvements in ima_appraise_measurement()
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-03-25
Thiago Jung Bauermann
ima: Simplify ima_eventsig_init()
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-03-25
Thiago Jung Bauermann
integrity: Remove unused macro IMA_ACTION_RULE_FLAGS
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-03-25
Tycho Andersen
ima: drop vla in ima_audit_measurement()
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-03-25
Jiandi An
ima: Fix Kconfig to select TPM 2.0 CRB interface
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-03-23
Hernán Gonzalez
evm: Constify *integrity_status_msg[]
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-03-23
Hernán Gonzalez
evm: Move evm_hmac and evm_hash from evm_main.c to...
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-03-23
Mimi Zohar
fuse: define the filesystem as untrusted
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-03-23
Mimi Zohar
ima: fail signature verification based on policy
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-03-23
Mimi Zohar
ima: clear IMA_HASH
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-03-23
Mimi Zohar
ima: re-evaluate files on privileged mounted filesystems
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-03-23
Mimi Zohar
ima: fail file signature verification on non-init mounted...
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-03-23
Matthew Garrett
IMA: Support using new creds in appraisal policy
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-03-23
Matthew Garrett
security: Add a cred_getsecid hook
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2018-01-18
Mike Rapoport
ima/policy: fix parsing of fsuuid
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2017-12-18
Sascha Hauer
ima: Use i_version only when filesystem supports it
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2017-12-18
Jeff Layton
integrity: remove unneeded initializations in integrity_iint...
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2017-12-18
Bruno E. O. Meneguele
ima: log message to module appraisal error
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2017-12-18
Roberto Sassu
ima: pass filename to ima_rdwr_violation_check()
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2017-12-18
Joe Perches
ima: Fix line continuation format
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2017-12-18
Mimi Zohar
ima: support new "hash" and "dont_hash" policy actions
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2017-12-11
Dmitry Kasatkin
ima: re-introduce own integrity cache lock
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2017-12-11
Matthew Garrett
EVM: Add support for portable signature format
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2017-12-11
Matthew Garrett
EVM: Allow userland to permit modification of EVM-protected...
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2017-12-11
Mimi Zohar
ima: relax requiring a file signature for new files...
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2017-11-08
Thiago Jung Bauermann
ima: Remove redundant conditional operator
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2017-11-08
Thomas Meyer
ima: Fix bool initialization/comparison
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2017-11-08
Bruno E. O. Meneguele
ima: check signature enforcement against cmdline param...
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2017-11-08
Bruno E. O. Meneguele
module: export module signature enforcement status
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2017-11-08
Boshi Wang
ima: fix hash algorithm initialization
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2017-11-08
Matthew Garrett
EVM: Only complain about a missing HMAC key once
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2017-11-08
Matthew Garrett
EVM: Allow userspace to signal an RSA key has been...
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2017-11-08
Matthew Garrett
EVM: Include security.apparmor in EVM measurements
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2017-11-08
Mimi Zohar
ima: call ima_file_free() prior to calling fasync
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2017-11-08
Christoph Hellwig
integrity: use kernel_read_file_from_path() to read...
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2017-11-08
Mimi Zohar
ima: always measure and audit files in policy
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2017-11-08
Mimi Zohar
ima: don't remove the securityfs policy file
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2017-11-08
Mimi Zohar
vfs: fix mounting a filesystem with i_version
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2017-06-21
Eric Richter
IMA: update IMA policy documentation to include pcr...
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2017-06-21
Thiago Jung Bauermann
ima: Log the same audit cause whenever a file has no...
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2017-06-21
Thiago Jung Bauermann
ima: Simplify policy_func_show.
are always in sync (suggested by
Mimi Zohar
).
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2017-06-21
Thiago Jung Bauermann
integrity: Small code improvements
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2017-06-21
Roberto Sassu
ima: fix get_binary_runtime_size()
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2017-06-21
Roberto Sassu
ima: use ima_parse_buf() to parse template data
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2017-06-21
Roberto Sassu
ima: use ima_parse_buf() to parse measurements headers
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
2017-06-21
Roberto Sassu
ima: introduce ima_parse_buf()
Signed-off-by:
Mimi Zohar
<zohar@linux.vnet.ibm.com>
commit
|
commitdiff
|
tree
next