projects
/
linux-2.6-microblaze.git
/ search
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
first ⋅ prev ⋅
next
Merge branch 'ima-buffer-measurement-changes-v4' into next-integrity
2021-07-23
Mimi Zohar
Merge branch 'ima-buffer-measurement-changes-v4' into...
commit
|
commitdiff
|
tree
2021-07-23
Roberto Sassu
ima: Add digest and digest_len params to the functions...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-07-23
Roberto Sassu
ima: Return int in the functions to measure a buffer
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-07-23
Roberto Sassu
ima: Introduce ima_get_current_hash_algo()
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-07-23
Austin Kim
IMA: remove -Wmissing-prototypes warning
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-06-21
Roberto Sassu
evm: Check xattr size discrepancy between kernel and...
Suggested-by:
Mimi Zohar
<zohar@linux.ibm.com>
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-06-20
Mimi Zohar
evm: output EVM digest calculation info
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-06-11
Tushar Sugandhi
IMA: support for duplicate measurement records
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-06-11
Lakshmi Ramasubramanian
ima: Fix warning: no previous prototype for function...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-06-10
Mimi Zohar
ima: differentiate between EVM failures in the audit log
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-06-09
Gustavo A. R. Silva
ima: Fix fall-through warning for Clang
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-06-08
Roberto Sassu
ima: Pass NULL instead of 0 to ima_get_action() in...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-06-08
Roberto Sassu
ima: Include header defining ima_post_key_create_or_update()
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-06-08
Roberto Sassu
ima/evm: Fix type mismatch
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-06-08
Roberto Sassu
ima: Set correct casting types
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-06-08
Roberto Sassu
doc: Fix warning in Documentation/security/IMA-templates.rst
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-06-03
Mimi Zohar
Merge branch 'verify-evm-portable-sig-v2' into next...
commit
|
commitdiff
|
tree
2021-06-03
Roberto Sassu
evm: Don't return an error in evm_write_xattrs() if...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-06-03
Roberto Sassu
ima: Define new template evm-sig
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-06-02
Roberto Sassu
ima: Define new template fields xattrnames, xattrlengths...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-06-01
Roberto Sassu
evm: Verify portable signatures against all protected...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-06-01
Roberto Sassu
ima: Define new template field imode
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-06-01
Roberto Sassu
ima: Define new template fields iuid and igid
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-06-01
Roberto Sassu
ima: Add ima_show_template_uint() template library...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-06-01
Mimi Zohar
Merge branch 'misc-evm-v7' into next-integrity
commit
|
commitdiff
|
tree
2021-06-01
Roberto Sassu
ima: Don't remove security.ima if file must not be...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-06-01
Roberto Sassu
ima: Introduce template field evmsig and write to field...
Suggested-by:
Mimi Zohar
<zohar@linux.ibm.com>
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-06-01
Roberto Sassu
ima: Allow imasig requirement to be satisfied by EVM...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-06-01
Roberto Sassu
evm: Deprecate EVM_ALLOW_METADATA_WRITES
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-06-01
Roberto Sassu
evm: Allow setxattr() and setattr() for unmodified...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-05-21
Roberto Sassu
evm: Pass user namespace to set/remove xattr hooks
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-05-21
Roberto Sassu
evm: Allow xattr/attr operations for portable signatures
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-05-21
Roberto Sassu
evm: Introduce evm_hmac_disabled() to safely ignore...
Suggested-by:
Mimi Zohar
<zohar@linux.ibm.com> (for ensuring...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-05-21
Roberto Sassu
evm: Introduce evm_revalidate_status()
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-05-21
Roberto Sassu
evm: Refuse EVM_ALLOW_METADATA_WRITES only if an HMAC...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-05-21
Roberto Sassu
evm: Load EVM key in ima_load_x509() to avoid appraisal
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-05-21
Roberto Sassu
evm: Execute evm_inode_init_security() only when an...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-05-20
Mimi Zohar
evm: fix writing <securityfs>/evm overflow
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-04-27
Nayna Jain
ima: ensure IMA_APPRAISE_MODSIG has necessary dependencies
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-04-20
Gustavo A. R. Silva
ima: Fix fall-through warnings for Clang
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-04-09
Jiele Zhao
integrity: Add declarations to init_once void arguments.
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-04-09
Jiele Zhao
ima: Fix function name error in comment.
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-04-09
Mimi Zohar
Merge branch 'ima-module-signing-v4' into next-integrity
commit
|
commitdiff
|
tree
2021-04-09
Nayna Jain
ima: enable loading of build time generated key on...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-04-09
Nayna Jain
ima: enable signing of modules with build time generated key
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-04-09
Nayna Jain
keys: cleanup build time module signing keys
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-03-24
Li Huafei
ima: Fix the error code for restoring the PCR value
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-03-22
Mimi Zohar
ima: without an IMA policy loaded, return quickly
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-03-22
Mimi Zohar
integrity: double check iint_cache was initialized
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-02-12
Wei Yongjun
integrity: Make function integrity_add_key() static
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-02-10
Mimi Zohar
Merge branch 'ima-kexec-fixes' into next-integrity
commit
|
commitdiff
|
tree
2021-02-10
Lakshmi Ramasubramanian
ima: Free IMA measurement buffer after kexec syscall
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-02-10
Lakshmi Ramasubramanian
ima: Free IMA measurement buffer on error
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-01-27
Raphael Gianotti
IMA: Measure kernel version in early boot
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-01-15
Mimi Zohar
Merge branch 'measure-critical-data' into next-integrity
commit
|
commitdiff
|
tree
2021-01-15
Lakshmi Ramasubramanian
selinux: include a consumer of the new IMA critical...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-01-15
Lakshmi Ramasubramanian
IMA: define a builtin critical data measurement policy
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-01-15
Tushar Sugandhi
IMA: extend critical data hook to limit the measurement...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-01-15
Tushar Sugandhi
IMA: limit critical data measurement based on a label
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-01-15
Tushar Sugandhi
IMA: add policy rule to measure critical data
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-01-15
Tushar Sugandhi
IMA: define a hook to measure kernel integrity critical...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-01-15
Tushar Sugandhi
IMA: add support to measure buffer data hash
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-01-15
Tushar Sugandhi
IMA: generalize keyring specific measurement constructs
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-01-13
Dinghao Liu
evm: Fix memleak in init_desc
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-11-29
Roberto Sassu
ima: Don't modify file descriptor mode on the fly
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-11-20
Lakshmi Ramasubramanian
ima: select ima-buf template for buffer measurement
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-11-02
Ard Biesheuvel
ima: defer arch_ima_get_secureboot() call to IMA init...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-09-16
KP Singh
ima: Fix NULL pointer dereference in ima_file_hash
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-09-15
Roberto Sassu
evm: Check size of security.evm before using it
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-09-15
Roberto Sassu
ima: Remove semicolon at the end of ima_get_binary_runtime_s...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-09-15
Roberto Sassu
ima: Don't ignore errors from crypto_shash_update()
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-09-15
Alex Dewar
ima: Use kmemdup rather than kmalloc+memcpy
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-09-10
Bruno Meneguele
integrity: include keyring name for unknown key request
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-09-10
Bruno Meneguele
ima: limit secure boot feedback scope for appraise
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-09-09
Bruno Meneguele
integrity: invalid kernel parameters feedback
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-09-09
Bruno Meneguele
ima: add check for enforced appraise option
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-08-31
Denis Efremov
integrity: Use current_uid() in integrity_audit_message()
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-08-31
Tyler Hicks
ima: Fail rule parsing when asymmetric key measurement...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-08-31
Tyler Hicks
ima: Pre-parse the list of keyrings in a KEY_CHECK...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-27
Colin Ian King
integrity: remove redundant initialization of variable ret
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-20
Bruno Meneguele
ima: move APPRAISE_BOOTPARAM dependency on ARCH_POLICY...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-20
Tyler Hicks
ima: AppArmor satisfies the audit rule requirements
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-20
Tyler Hicks
ima: Rename internal filter rule functions
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-20
Mimi Zohar
Merge branch 'validate-policy-rules' into next-integrity
commit
|
commitdiff
|
tree
2020-07-20
Tyler Hicks
ima: Support additional conditionals in the KEXEC_CMDLINE...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-20
Tyler Hicks
ima: Use the common function to detect LSM conditionals...
Reviewed-by:
Mimi Zohar
<zohar@linux.ibm.com>
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-20
Tyler Hicks
ima: Move comprehensive rule validation checks out...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-20
Tyler Hicks
ima: Use correct type for the args_p member of ima_rule_entr...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-20
Tyler Hicks
ima: Shallow copy the args_p member of ima_rule_entry...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-20
Tyler Hicks
ima: Fail rule parsing when appraise_flag=blacklist...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-17
Tyler Hicks
ima: Fail rule parsing when the KEY_CHECK hook is combined...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-17
Tyler Hicks
ima: Fail rule parsing when the KEXEC_CMDLINE hook...
Reviewed-by:
Mimi Zohar
<zohar@linux.ibm.com>
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-17
Tyler Hicks
ima: Fail rule parsing when buffer hook functions have...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-17
Tyler Hicks
ima: Free the entire rule if it fails to parse
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-17
Tyler Hicks
ima: Free the entire rule when deleting a list of rules
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-17
Tyler Hicks
ima: Have the LSM free its audit rule
Reviewed-by:
Mimi Zohar
<zohar@linux.ibm.com>
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-17
Lakshmi Ramasubramanian
IMA: Add audit log for failure conditions
Suggested-by:
Mimi Zohar
<zohar@linux.ibm.com>
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-17
Lakshmi Ramasubramanian
integrity: Add errno field in audit message
Suggested-by:
Mimi Zohar
<zohar@linux.ibm.com>
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-06-25
Maurizio Drocco
ima: extend boot_aggregate with kernel measurements
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-06-12
Mimi Zohar
ima: fix mprotect checking
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
next