Linux Integrity

Date Index

Re: [PATCH ima-evm-utils v3 03/11] Compile the UML kernel and download it in Github Actions, (continued)
- [PATCH ima-evm-utils v3 04/11] Pass cleanup function and its arguments to _report_exit_and_cleanup(), Roberto Sassu
  - Re: [PATCH ima-evm-utils v3 04/11] Pass cleanup function and its arguments to _report_exit_and_cleanup(), Stefan Berger
- [PATCH ima-evm-utils v3 05/11] Add support for creating a new testing environment in functions.sh, Roberto Sassu
  - Re: [PATCH ima-evm-utils v3 05/11] Add support for creating a new testing environment in functions.sh, Roberto Sassu
- [PATCH ima-evm-utils v3 06/11] Introduce TST_LIST variable to select a test to execute, Roberto Sassu
  - Re: [PATCH ima-evm-utils v3 06/11] Introduce TST_LIST variable to select a test to execute, Stefan Berger
- [PATCH ima-evm-utils v3 08/11] Adapt fsverity.test to be able to run in a new testing environment, Roberto Sassu
  - Re: [PATCH ima-evm-utils v3 08/11] Adapt fsverity.test to be able to run in a new testing environment, Stefan Berger
- [PATCH ima-evm-utils v3 07/11] Add tests for EVM portable signatures, Roberto Sassu
  - Re: [PATCH ima-evm-utils v3 07/11] Add tests for EVM portable signatures, Stefan Berger
- [PATCH ima-evm-utils v3 09/11] Use in-place built fsverity binary instead of installing it, Roberto Sassu
- [PATCH ima-evm-utils v3 10/11] ci: haveged requires EPEL on CentOS stream:8, Roberto Sassu
- [PATCH ima-evm-utils v3 11/11] Temporarily remove CONFIG_DEBUG_SG to test portable signatures, Roberto Sassu
[PATCH v2 00/11] add integrity and security to TPM2 transactions, James Bottomley
- [PATCH v2 01/11] tpm: move buffer handling from static inlines to real functions, James Bottomley
  - Re: [PATCH v2 01/11] tpm: move buffer handling from static inlines to real functions, kernel test robot
    - Re: [PATCH v2 01/11] tpm: move buffer handling from static inlines to real functions, James Bottomley
- [PATCH v2 02/11] tpm: add buffer handling for TPM2B types, James Bottomley
- [PATCH v2 03/11] tpm: add cursor based buffer functions for response parsing, James Bottomley
- [PATCH v2 04/11] tpm: add buffer function to point to returned parameters, James Bottomley
- [PATCH v2 05/11] tpm: export the context save and load commands, James Bottomley
- [PATCH v2 06/11] tpm: Add full HMAC and encrypt/decrypt session handling code, James Bottomley
  - Re: [PATCH v2 06/11] tpm: Add full HMAC and encrypt/decrypt session handling code, kernel test robot
  - Re: [PATCH v2 06/11] tpm: Add full HMAC and encrypt/decrypt session handling code, kernel test robot
    - Re: [PATCH v2 06/11] tpm: Add full HMAC and encrypt/decrypt session handling code, James Bottomley
      - Re: [PATCH v2 06/11] tpm: Add full HMAC and encrypt/decrypt session handling code, Yujie Liu
        
        Re: [PATCH v2 06/11] tpm: Add full HMAC and encrypt/decrypt session handling code, Jarkko Sakkinen
        
        Re: [PATCH v2 06/11] tpm: Add full HMAC and encrypt/decrypt session handling code, James Bottomley
        
        Re: [PATCH v2 06/11] tpm: Add full HMAC and encrypt/decrypt session handling code, Jarkko Sakkinen
        
        Re: [PATCH v2 06/11] tpm: Add full HMAC and encrypt/decrypt session handling code, Yujie Liu
        
        Re: [PATCH v2 06/11] tpm: Add full HMAC and encrypt/decrypt session handling code, Ard Biesheuvel
        
        Re: [PATCH v2 06/11] tpm: Add full HMAC and encrypt/decrypt session handling code, James Bottomley
        
        Re: [PATCH v2 06/11] tpm: Add full HMAC and encrypt/decrypt session handling code, Ard Biesheuvel
        
        Re: [PATCH v2 06/11] tpm: Add full HMAC and encrypt/decrypt session handling code, James Bottomley
        
        Re: [PATCH v2 06/11] tpm: Add full HMAC and encrypt/decrypt session handling code, Ard Biesheuvel
        
        Re: [PATCH v2 06/11] tpm: Add full HMAC and encrypt/decrypt session handling code, James Bottomley
        
        Re: [PATCH v2 06/11] tpm: Add full HMAC and encrypt/decrypt session handling code, Jarkko Sakkinen
        
        Re: [PATCH v2 06/11] tpm: Add full HMAC and encrypt/decrypt session handling code, James Bottomley
  - Re: [PATCH v2 06/11] tpm: Add full HMAC and encrypt/decrypt session handling code, kernel test robot
- [PATCH v2 07/11] tpm: add hmac checks to tpm2_pcr_extend(), James Bottomley
- [PATCH v2 08/11] tpm: add session encryption protection to tpm2_get_random(), James Bottomley
- [PATCH v2 09/11] KEYS: trusted: Add session encryption protection to the seal/unseal path, James Bottomley
  - Re: [PATCH v2 09/11] KEYS: trusted: Add session encryption protection to the seal/unseal path, Ben Boeckel
- [PATCH v2 10/11] tpm: add the null key name as a sysfs export, James Bottomley
- [PATCH v2 11/11] Documentation: add tpm-security.rst, James Bottomley
[ANNOUNCE] Linux Security Summit North Americ (LSS-NA) CfP, James Morris
[PATCH v4 00/24] pSeries dynamic secure boot secvar interface + platform keyring loading, Andrew Donnellan
- [PATCH v4 04/24] powerpc/secvar: Warn and error if multiple secvar ops are set, Andrew Donnellan
- [PATCH v4 02/24] powerpc/pseries: Fix alignment of PLPKS structures and buffers, Andrew Donnellan
  - Re: [PATCH v4 02/24] powerpc/pseries: Fix alignment of PLPKS structures and buffers, Michael Ellerman
    - Re: [PATCH v4 02/24] powerpc/pseries: Fix alignment of PLPKS structures and buffers, Segher Boessenkool
      - RE: [PATCH v4 02/24] powerpc/pseries: Fix alignment of PLPKS structures and buffers, David Laight
        
        Re: [PATCH v4 02/24] powerpc/pseries: Fix alignment of PLPKS structures and buffers, Andrew Donnellan
        
        RE: [PATCH v4 02/24] powerpc/pseries: Fix alignment of PLPKS structures and buffers, David Laight
        
        Re: [PATCH v4 02/24] powerpc/pseries: Fix alignment of PLPKS structures and buffers, Michael Ellerman
      - Re: [PATCH v4 02/24] powerpc/pseries: Fix alignment of PLPKS structures and buffers, Michael Ellerman
- [PATCH v4 03/24] powerpc/secvar: Use u64 in secvar_operations, Andrew Donnellan
- [PATCH v4 01/24] powerpc/pseries: Fix handling of PLPKS object flushing timeout, Andrew Donnellan
- [PATCH v4 19/24] powerpc/pseries: Turn PSERIES_PLPKS into a hidden option, Andrew Donnellan
  - Re: [PATCH v4 19/24] powerpc/pseries: Turn PSERIES_PLPKS into a hidden option, Nicholas Piggin
- [PATCH v4 15/24] powerpc/pseries: Expose PLPKS config values, support additional fields, Andrew Donnellan
- [PATCH v4 08/24] powerpc/secvar: Clean up init error messages, Andrew Donnellan
- [PATCH v4 20/24] powerpc/pseries: Add helpers to get PLPKS password, Andrew Donnellan
- [PATCH v4 10/24] powerpc/secvar: Allow backend to populate static list of variable names, Andrew Donnellan
- [PATCH v4 14/24] powerpc/pseries: Move PLPKS constants to header file, Andrew Donnellan
- [PATCH v4 16/24] powerpc/pseries: Implement signed update for PLPKS objects, Andrew Donnellan
  - Re: [PATCH v4 16/24] powerpc/pseries: Implement signed update for PLPKS objects, Nicholas Piggin
    - Re: [PATCH v4 16/24] powerpc/pseries: Implement signed update for PLPKS objects, Andrew Donnellan
      - Re: [PATCH v4 16/24] powerpc/pseries: Implement signed update for PLPKS objects, Russell Currey
- [PATCH v4 05/24] powerpc/secvar: Use sysfs_emit() instead of sprintf(), Andrew Donnellan
- [PATCH v4 06/24] powerpc/secvar: Handle format string in the consumer, Andrew Donnellan
- [PATCH v4 22/24] powerpc/pseries: Implement secvars for dynamic secure boot, Andrew Donnellan
  - Re: [PATCH v4 22/24] powerpc/pseries: Implement secvars for dynamic secure boot, Nicholas Piggin
    - Re: [PATCH v4 22/24] powerpc/pseries: Implement secvars for dynamic secure boot, Andrew Donnellan
      - Re: [PATCH v4 22/24] powerpc/pseries: Implement secvars for dynamic secure boot, Andrew Donnellan
      - Re: [PATCH v4 22/24] powerpc/pseries: Implement secvars for dynamic secure boot, Nicholas Piggin
        
        Re: [PATCH v4 22/24] powerpc/pseries: Implement secvars for dynamic secure boot, Andrew Donnellan
- [PATCH v4 17/24] powerpc/pseries: Log hcall return codes for PLPKS debug, Andrew Donnellan
- [PATCH v4 21/24] powerpc/pseries: Pass PLPKS password on kexec, Andrew Donnellan
  - Re: [PATCH v4 21/24] powerpc/pseries: Pass PLPKS password on kexec, Nicholas Piggin
    - Re: [PATCH v4 21/24] powerpc/pseries: Pass PLPKS password on kexec, Andrew Donnellan
      - Re: [PATCH v4 21/24] powerpc/pseries: Pass PLPKS password on kexec, Michael Ellerman
    - Re: [PATCH v4 21/24] powerpc/pseries: Pass PLPKS password on kexec, Russell Currey
- [PATCH v4 24/24] integrity/powerpc: Support loading keys from pseries secvar, Andrew Donnellan
  - Re: [PATCH v4 24/24] integrity/powerpc: Support loading keys from pseries secvar, Nicholas Piggin
  - Re: [PATCH v4 24/24] integrity/powerpc: Support loading keys from pseries secvar, Mimi Zohar
    - Re: [PATCH v4 24/24] integrity/powerpc: Support loading keys from pseries secvar, Andrew Donnellan
    - Re: [PATCH v4 24/24] integrity/powerpc: Support loading keys from pseries secvar, Russell Currey
      - Re: [PATCH v4 24/24] integrity/powerpc: Support loading keys from pseries secvar, Mimi Zohar
        
        Re: [PATCH v4 24/24] integrity/powerpc: Support loading keys from pseries secvar, Andrew Donnellan
- [PATCH v4 09/24] powerpc/secvar: Extend sysfs to include config vars, Andrew Donnellan
- [PATCH v4 11/24] powerpc/secvar: Warn when PAGE_SIZE is smaller than max object size, Andrew Donnellan
- [PATCH v4 13/24] powerpc/pseries: Move plpks.h to include directory, Andrew Donnellan
- [PATCH v4 23/24] integrity/powerpc: Improve error handling & reporting when loading certs, Andrew Donnellan
  - Re: [PATCH v4 23/24] integrity/powerpc: Improve error handling & reporting when loading certs, Mimi Zohar
- [PATCH v4 18/24] powerpc/pseries: Make caller pass buffer to plpks_read_var(), Andrew Donnellan
- [PATCH v4 12/24] powerpc/secvar: Don't print error on ENOENT when reading variables, Andrew Donnellan
- [PATCH v4 07/24] powerpc/secvar: Handle max object size in the consumer, Andrew Donnellan
[PATCH v3 00/24] pSeries dynamic secure boot secvar interface + platform keyring loading, Andrew Donnellan
- [PATCH v3 19/24] powerpc/pseries: Turn PSERIES_PLPKS into a hidden option, Andrew Donnellan
- [PATCH v3 18/24] powerpc/pseries: Make caller pass buffer to plpks_read_var(), Andrew Donnellan
- [PATCH v3 15/24] powerpc/pseries: Expose PLPKS config values, support additional fields, Andrew Donnellan
- [PATCH v3 12/24] powerpc/pseries: Move PLPKS constants to header file, Andrew Donnellan
- [PATCH v3 17/24] powerpc/pseries: Log hcall return codes for PLPKS debug, Andrew Donnellan
- [PATCH v3 20/24] powerpc/pseries: Add helpers to get PLPKS password, Andrew Donnellan
- [PATCH v3 24/24] integrity/powerpc: Support loading keys from pseries secvar, Andrew Donnellan
- [PATCH v3 10/24] powerpc/secvar: Don't print error on ENOENT when reading variables, Andrew Donnellan
- [PATCH v3 14/24] powerpc/pseries: Fix alignment of PLPKS structures and buffers, Andrew Donnellan
- [PATCH v3 22/24] powerpc/pseries: Implement secvars for dynamic secure boot, Andrew Donnellan
  - Re: [PATCH v3 22/24] powerpc/pseries: Implement secvars for dynamic secure boot, Stefan Berger
- [PATCH v3 09/24] powerpc/secvar: Warn when PAGE_SIZE is smaller than max object size, Andrew Donnellan
- [PATCH v3 05/24] powerpc/secvar: Handle max object size in the consumer, Andrew Donnellan
  - Re: [PATCH v3 05/24] powerpc/secvar: Handle max object size in the consumer, Greg Joyce
- [PATCH v3 16/24] powerpc/pseries: Implement signed update for PLPKS objects, Andrew Donnellan
  - Re: [PATCH v3 16/24] powerpc/pseries: Implement signed update for PLPKS objects, Nicholas Piggin
- [PATCH v3 11/24] powerpc/pseries: Move plpks.h to include directory, Andrew Donnellan
- [PATCH v3 04/24] powerpc/secvar: Handle format string in the consumer, Andrew Donnellan
  - Re: [PATCH v3 04/24] powerpc/secvar: Handle format string in the consumer, Nicholas Piggin
  - Re: [PATCH v3 04/24] powerpc/secvar: Handle format string in the consumer, Nicholas Piggin
    - Re: [PATCH v3 04/24] powerpc/secvar: Handle format string in the consumer, Russell Currey
- [PATCH v3 06/24] powerpc/secvar: Clean up init error messages, Andrew Donnellan
- [PATCH v3 02/24] powerpc/secvar: WARN_ON_ONCE() if multiple secvar ops are set, Andrew Donnellan
  - Re: [PATCH v3 02/24] powerpc/secvar: WARN_ON_ONCE() if multiple secvar ops are set, Nicholas Piggin
- [PATCH v3 03/24] powerpc/secvar: Use sysfs_emit() instead of sprintf(), Andrew Donnellan
- [PATCH v3 01/24] powerpc/secvar: Use u64 in secvar_operations, Andrew Donnellan
- [PATCH v3 08/24] powerpc/secvar: Allow backend to populate static list of variable names, Andrew Donnellan
  - Re: [PATCH v3 08/24] powerpc/secvar: Allow backend to populate static list of variable names, Nicholas Piggin
    - Re: [PATCH v3 08/24] powerpc/secvar: Allow backend to populate static list of variable names, Andrew Donnellan
- [PATCH v3 13/24] powerpc/pseries: Fix handling of PLPKS object flushing timeout, Andrew Donnellan
  - Re: [PATCH v3 13/24] powerpc/pseries: Fix handling of PLPKS object flushing timeout, Nicholas Piggin
- [PATCH v3 23/24] integrity/powerpc: Improve error handling & reporting when loading certs, Andrew Donnellan
- [PATCH v3 07/24] powerpc/secvar: Extend sysfs to include config vars, Andrew Donnellan
- [PATCH v3 21/24] powerpc/pseries: Pass PLPKS password on kexec, Andrew Donnellan
  - Re: [PATCH v3 21/24] powerpc/pseries: Pass PLPKS password on kexec, Andrew Donnellan
[PATCH v2 0/2] tpm: Add reserved memory event log, Eddie James
- [PATCH v2 2/2] tpm: Add reserved memory event log, Eddie James
  - Re: [PATCH v2 2/2] tpm: Add reserved memory event log, Stefan Berger
    - Re: [PATCH v2 2/2] tpm: Add reserved memory event log, Eddie James
      - Re: [PATCH v2 2/2] tpm: Add reserved memory event log, Stefan Berger
        
        Re: [PATCH v2 2/2] tpm: Add reserved memory event log, Jarkko Sakkinen
  - Re: [PATCH v2 2/2] tpm: Add reserved memory event log, Jarkko Sakkinen
- [PATCH v2 1/2] tpm: Use managed allocation for bios event log, Eddie James
  - Re: [PATCH v2 1/2] tpm: Use managed allocation for bios event log, Jarkko Sakkinen
    - Re: [PATCH v2 1/2] tpm: Use managed allocation for bios event log, Eddie James
      - Re: [PATCH v2 1/2] tpm: Use managed allocation for bios event log, Jarkko Sakkinen
[PATCH ima-evm-utils v2 0/9] Support testing with UML kernel, Roberto Sassu
- [PATCH ima-evm-utils v2 1/9] Fix error messages and mdlen init in calc_evm_hmac(), Roberto Sassu
  - Re: [PATCH ima-evm-utils v2 1/9] Fix error messages and mdlen init in calc_evm_hmac(), Stefan Berger
- [PATCH ima-evm-utils v2 2/9] Add config for UML kernel, Roberto Sassu
  - Re: [PATCH ima-evm-utils v2 2/9] Add config for UML kernel, Stefan Berger
- [PATCH ima-evm-utils v2 5/9] Introduce TST_LIST variable to select a test to execute, Roberto Sassu
  - Re: [PATCH ima-evm-utils v2 5/9] Introduce TST_LIST variable to select a test to execute, Stefan Berger
- [PATCH ima-evm-utils v2 3/9] Compile the UML kernel and download it in Github Actions, Roberto Sassu
- [PATCH ima-evm-utils v2 4/9] Add support for UML in functions.sh, Roberto Sassu
  - Re: [PATCH ima-evm-utils v2 4/9] Add support for UML in functions.sh, Stefan Berger
    - Re: [PATCH ima-evm-utils v2 4/9] Add support for UML in functions.sh, Roberto Sassu
- [PATCH ima-evm-utils v2 6/9] Add tests for EVM portable signatures, Roberto Sassu
  - Re: [PATCH ima-evm-utils v2 6/9] Add tests for EVM portable signatures, Stefan Berger
    - Re: [PATCH ima-evm-utils v2 6/9] Add tests for EVM portable signatures, Roberto Sassu
  - Re: [PATCH ima-evm-utils v2 6/9] Add tests for EVM portable signatures, Mimi Zohar
    - Re: [PATCH ima-evm-utils v2 6/9] Add tests for EVM portable signatures, Roberto Sassu
      - Re: [PATCH ima-evm-utils v2 6/9] Add tests for EVM portable signatures, Mimi Zohar
        
        Re: [PATCH ima-evm-utils v2 6/9] Add tests for EVM portable signatures, Roberto Sassu
- [PATCH ima-evm-utils v2 7/9] Adapt fsverity.test to work with UML kernel, Roberto Sassu
- [PATCH ima-evm-utils v2 8/9] Use in-place built fsverity binary instead of installing it, Roberto Sassu
  - Re: [PATCH ima-evm-utils v2 8/9] Use in-place built fsverity binary instead of installing it, Stefan Berger
    - Re: [PATCH ima-evm-utils v2 8/9] Use in-place built fsverity binary instead of installing it, Roberto Sassu
      - Re: [PATCH ima-evm-utils v2 8/9] Use in-place built fsverity binary instead of installing it, Stefan Berger
        
        Re: [PATCH ima-evm-utils v2 8/9] Use in-place built fsverity binary instead of installing it, Roberto Sassu
        
        Re: [PATCH ima-evm-utils v2 8/9] Use in-place built fsverity binary instead of installing it, Mimi Zohar
- [PATCH ima-evm-utils v2 9/9] ci: haveged requires EPEL on CentOS stream:8, Roberto Sassu
  - Re: [PATCH ima-evm-utils v2 9/9] ci: haveged requires EPEL on CentOS stream:8, Stefan Berger
- Re: [PATCH ima-evm-utils v2 0/9] Support testing with UML kernel, Mimi Zohar
[PATCH ima-evm-utils 0/8] Support testing with UML kernel, Roberto Sassu
- [PATCH ima-evm-utils 5/8] Introduce TST_LIST variable to select a test to execute, Roberto Sassu
- [PATCH ima-evm-utils 3/8] Compile the UML kernel and download it in Github Actions, Roberto Sassu
  - Re: [PATCH ima-evm-utils 3/8] Compile the UML kernel and download it in Github Actions, Mimi Zohar
    - Re: [PATCH ima-evm-utils 3/8] Compile the UML kernel and download it in Github Actions, Roberto Sassu
- [PATCH ima-evm-utils 6/8] Add tests for EVM portable signatures, Roberto Sassu
- [PATCH ima-evm-utils 1/8] Fix error messages and mdlen init in calc_evm_hmac(), Roberto Sassu
- [PATCH ima-evm-utils 2/8] Add config for UML kernel, Roberto Sassu
- [PATCH ima-evm-utils 7/8] Adapt fsverity.test to work with UML kernel, Roberto Sassu
- [PATCH ima-evm-utils 4/8] Add support for UML in functions.sh, Roberto Sassu
- [PATCH ima-evm-utils 8/8] Use in-place built fsverity binary instead of installing it, Roberto Sassu
[PATCH v7 0/3] ima: Fix IMA mishandling of LSM based rule during, GUO Zihua
- [PATCH v7 2/3] ima: use the lsm policy update notifier, GUO Zihua
- [PATCH v7 1/3] LSM: switch to blocking policy update notifiers, GUO Zihua
- [PATCH v7 3/3] ima: Handle -ESTALE returned by ima_filter_rule_match(), GUO Zihua
- Re: [PATCH v7 0/3] ima: Fix IMA mishandling of LSM based rule during, Paul Moore
  - Re: [PATCH v7 0/3] ima: Fix IMA mishandling of LSM based rule during, Mimi Zohar
[PATCH v6 0/3] ima: Fix IMA mishandling of LSM based rule during, GUO Zihua
- [PATCH v6 1/3] LSM: switch to blocking policy update notifiers, GUO Zihua
- [PATCH v6 3/3] ima: Handle -ESTALE returned by ima_filter_rule_match(), GUO Zihua
- [PATCH v6 2/3] ima: use the lsm policy update notifier, GUO Zihua
  - Re: [PATCH v6 2/3] ima: use the lsm policy update notifier, Mimi Zohar
- Re: [PATCH v6 0/3] ima: Fix IMA mishandling of LSM based rule during, Greg KH
  - Re: [PATCH v6 0/3] ima: Fix IMA mishandling of LSM based rule during, Mimi Zohar
[PATCH v5 0/3] ima: Fix IMA mishandling of LSM based rule during, GUO Zihua
- [PATCH v5 1/3] LSM: switch to blocking policy update notifiers, GUO Zihua
- [PATCH v5 2/3] ima: use the lsm policy update notifier, GUO Zihua
- [PATCH v5 3/3] ima: Handle -ESTALE returned by ima_filter_rule_match(), GUO Zihua
[PATCH v4 0/3] ima: Fix IMA mishandling of LSM based rule during, GUO Zihua
- [PATCH v4 1/3] LSM: switch to blocking policy update notifiers, GUO Zihua
- [PATCH v4 2/3] ima: use the lsm policy update notifier, GUO Zihua
- [PATCH v4 3/3] ima: Handle -ESTALE returned by ima_filter_rule_match(), GUO Zihua
- Re: [PATCH v4 0/3] ima: Fix IMA mishandling of LSM based rule during, Guozihua (Scott)
[PATCH v3 0/3] ima: Fix IMA mishandling of LSM based rule during, GUO Zihua
- [PATCH v3 1/3] LSM: switch to blocking policy update notifiers, GUO Zihua
- [PATCH v3 2/3] ima: use the lsm policy update notifier, GUO Zihua
- [PATCH v3 3/3] ima: Handle -ESTALE returned by ima_filter_rule_match(), GUO Zihua
[PATCH] ima: return IMA digest value only when IMA_COLLECTED flag is set, Matt Bobrowski
- Re: [PATCH] ima: return IMA digest value only when IMA_COLLECTED flag is set, Matt Bobrowski
[PATCH] ima: fix error handling logic when file measurement failed, Matt Bobrowski
- Re: [PATCH] ima: fix error handling logic when file measurement failed, Matt Bobrowski
  - Re: [PATCH] ima: fix error handling logic when file measurement failed, Mimi Zohar
    - Re: [PATCH] ima: fix error handling logic when file measurement failed, Matt Bobrowski
[PATCH] tpm: Add reserved memory event log, Eddie James
- Re: [PATCH] tpm: Add reserved memory event log, Jarkko Sakkinen
  - Re: [PATCH] tpm: Add reserved memory event log, Eddie James
ima: zeroed out digest values, Matt Bobrowski
- Re: ima: zeroed out digest values, Mimi Zohar
[PATCH v2 0/2] ima: Fix IMA mishandling of LSM based rule during, GUO Zihua
- [PATCH v2 2/2] ima: Handle -ESTALE returned by ima_filter_rule_match(), GUO Zihua
- [PATCH v2 1/2] ima: use the lsm policy update notifier, GUO Zihua
  - Re: [PATCH v2 1/2] ima: use the lsm policy update notifier, Mimi Zohar
    - Re: [PATCH v2 1/2] ima: use the lsm policy update notifier, Guozihua (Scott)
[PATCH] KEYS: trusted: tpm2: use correct function name in kernel-doc, Randy Dunlap
- Re: [PATCH] KEYS: trusted: tpm2: use correct function name in kernel-doc, Paul Moore
[PATCH] ima: fix ima_delete_rules() kernel-doc warning, Randy Dunlap
- Re: [PATCH] ima: fix ima_delete_rules() kernel-doc warning, Paul Moore
[PATCH V2] tpm_crb: Add support for CRB devices based on Pluton, Matthew Garrett
- Re: [PATCH V2] tpm_crb: Add support for CRB devices based on Pluton, Jarkko Sakkinen
[PATCH v3 1/2] lockdown: kexec_file: prevent unsigned kernel image when KEXEC_SIG not enabled, Coiby Xu
- [PATCH v3 2/2] selftests/kexec: enable lockdown tests, Coiby Xu
  - Re: [PATCH v3 2/2] selftests/kexec: enable lockdown tests, Mimi Zohar
- Re: [PATCH v3 1/2] lockdown: kexec_file: prevent unsigned kernel image when KEXEC_SIG not enabled, Mimi Zohar
[REGRESSION] suspend to ram fails in 6.2-rc1 due to tpm errors, Vlastimil Babka
- Re: [REGRESSION] suspend to ram fails in 6.2-rc1 due to tpm errors, James Bottomley
  - Re: [REGRESSION] suspend to ram fails in 6.2-rc1 due to tpm errors, Jason A. Donenfeld
    - Re: [REGRESSION] suspend to ram fails in 6.2-rc1 due to tpm errors, Jason A. Donenfeld
    - Re: [REGRESSION] suspend to ram fails in 6.2-rc1 due to tpm errors, Thorsten Leemhuis
      - Re: [REGRESSION] suspend to ram fails in 6.2-rc1 due to tpm errors, Vlastimil Babka
        
        [PATCH] tpm: Disable hwrng for TPM 1 if PM_SLEEP is enabled, Jason A. Donenfeld
        
        Re: [PATCH] tpm: Disable hwrng for TPM 1 if PM_SLEEP is enabled, Jason A. Donenfeld
        
        Re: [PATCH] tpm: Disable hwrng for TPM 1 if PM_SLEEP is enabled, Linus Torvalds
        
        Re: [PATCH] tpm: Disable hwrng for TPM 1 if PM_SLEEP is enabled, Jason A. Donenfeld
        
        [PATCH v2] tpm: Allow system suspend to continue when TPM suspend fails, Jason A. Donenfeld
        
        Re: [PATCH v2] tpm: Allow system suspend to continue when TPM suspend fails, Jason A. Donenfeld
        
        Message not available
        
        Re: [PATCH v2] tpm: Allow system suspend to continue when TPM suspend fails, Jason A. Donenfeld
        
        Re: [PATCH v2] tpm: Allow system suspend to continue when TPM suspend fails, Linus Torvalds
        
        Re: [PATCH v2] tpm: Allow system suspend to continue when TPM suspend fails, Luigi Semenzato
        
        Re: [PATCH v2] tpm: Allow system suspend to continue when TPM suspend fails, Linus Torvalds
        
        Re: [PATCH v2] tpm: Allow system suspend to continue when TPM suspend fails, Jason A. Donenfeld
        
        Re: [PATCH v2] tpm: Allow system suspend to continue when TPM suspend fails, Jarkko Sakkinen
        
        Re: [PATCH v2] tpm: Allow system suspend to continue when TPM suspend fails, Jason A. Donenfeld
        
        Re: [PATCH v2] tpm: Allow system suspend to continue when TPM suspend fails, Jarkko Sakkinen
        
        Re: [PATCH v2] tpm: Allow system suspend to continue when TPM suspend fails, Jarkko Sakkinen
        
        Re: [PATCH v2] tpm: Allow system suspend to continue when TPM suspend fails, Vlastimil Babka
        
        Re: [PATCH v2] tpm: Allow system suspend to continue when TPM suspend fails, Jarkko Sakkinen
      - Re: [REGRESSION] suspend to ram fails in 6.2-rc1 due to tpm errors, James Bottomley
        
        Re: [REGRESSION] suspend to ram fails in 6.2-rc1 due to tpm errors, Jason A. Donenfeld
        
        Re: [REGRESSION] suspend to ram fails in 6.2-rc1 due to tpm errors, Jason A. Donenfeld
      - Re: [REGRESSION] suspend to ram fails in 6.2-rc1 due to tpm errors, Jason A. Donenfeld
        
        Re: [REGRESSION] suspend to ram fails in 6.2-rc1 due to tpm errors, Vlastimil Babka
        
        Re: [REGRESSION] suspend to ram fails in 6.2-rc1 due to tpm errors, Jarkko Sakkinen
        
        Re: [REGRESSION] suspend to ram fails in 6.2-rc1 due to tpm errors, Thorsten Leemhuis
        
        Re: [REGRESSION] suspend to ram fails in 6.2-rc1 due to tpm errors, Jarkko Sakkinen
        
        Re: [REGRESSION] suspend to ram fails in 6.2-rc1 due to tpm errors, Jason A. Donenfeld
        
        Re: [REGRESSION] suspend to ram fails in 6.2-rc1 due to tpm errors, Jarkko Sakkinen
        
        Re: [REGRESSION] suspend to ram fails in 6.2-rc1 due to tpm errors, Jarkko Sakkinen
        
        Re: [REGRESSION] suspend to ram fails in 6.2-rc1 due to tpm errors, Jason A. Donenfeld
        
        Re: [REGRESSION] suspend to ram fails in 6.2-rc1 due to tpm errors, Jarkko Sakkinen
        
        Re: [REGRESSION] suspend to ram fails in 6.2-rc1 due to tpm errors, Jarkko Sakkinen
        
        Re: [REGRESSION] suspend to ram fails in 6.2-rc1 due to tpm errors, Jason A. Donenfeld
        
        Re: [REGRESSION] suspend to ram fails in 6.2-rc1 due to tpm errors, Jarkko Sakkinen
        
        Re: [REGRESSION] suspend to ram fails in 6.2-rc1 due to tpm errors, Jarkko Sakkinen
        
        Re: [REGRESSION] suspend to ram fails in 6.2-rc1 due to tpm errors, Jason A. Donenfeld
        
        Re: [REGRESSION] suspend to ram fails in 6.2-rc1 due to tpm errors, Jarkko Sakkinen
        
        Re: [REGRESSION] suspend to ram fails in 6.2-rc1 due to tpm errors, Jarkko Sakkinen
- Re: [REGRESSION] suspend to ram fails in 6.2-rc1 due to tpm errors, Johannes Altmanninger
- Re: [REGRESSION] suspend to ram fails in 6.2-rc1 due to tpm errors, Jarkko Sakkinen
[PATCH -next] evm: Use __vfs_setxattr() to update security.evm, Xiu Jianfeng
- Re: [PATCH -next] evm: Use __vfs_setxattr() to update security.evm, Mimi Zohar
  - Re: [PATCH -next] evm: Use __vfs_setxattr() to update security.evm, Guozihua (Scott)
    - Re: [PATCH -next] evm: Use __vfs_setxattr() to update security.evm, Mimi Zohar
      - Re: [PATCH -next] evm: Use __vfs_setxattr() to update security.evm, xiujianfeng
      - Re: [PATCH -next] evm: Use __vfs_setxattr() to update security.evm, Guozihua (Scott)
[PATCH v5 0/2] KEYS: asymmetric: Copy sig and digest in public_key_verify_signature(), Roberto Sassu
- [PATCH v5 1/2] lib/mpi: Fix buffer overrun when SG is too long, Roberto Sassu
  - Re: [PATCH v5 1/2] lib/mpi: Fix buffer overrun when SG is too long, Eric Biggers
  - RE: [PATCH v5 1/2] lib/mpi: Fix buffer overrun when SG is too long, David Laight
    - Re: [PATCH v5 1/2] lib/mpi: Fix buffer overrun when SG is too long, Herbert Xu
      - RE: [PATCH v5 1/2] lib/mpi: Fix buffer overrun when SG is too long, David Laight
  - Re: [PATCH v5 1/2] lib/mpi: Fix buffer overrun when SG is too long, Herbert Xu
    - Re: [PATCH v5 1/2] lib/mpi: Fix buffer overrun when SG is too long, Roberto Sassu
      - Re: [PATCH v5 1/2] lib/mpi: Fix buffer overrun when SG is too long, Herbert Xu
        
        Re: [PATCH v5 1/2] lib/mpi: Fix buffer overrun when SG is too long, Roberto Sassu
- [PATCH v5 2/2] KEYS: asymmetric: Copy sig and digest in public_key_verify_signature(), Roberto Sassu
  - Re: [PATCH v5 2/2] KEYS: asymmetric: Copy sig and digest in public_key_verify_signature(), Eric Biggers
    - Re: [PATCH v5 2/2] KEYS: asymmetric: Copy sig and digest in public_key_verify_signature(), Roberto Sassu
      - Re: [PATCH v5 2/2] KEYS: asymmetric: Copy sig and digest in public_key_verify_signature(), Roberto Sassu
        
        Re: [PATCH v5 2/2] KEYS: asymmetric: Copy sig and digest in public_key_verify_signature(), Eric Biggers
        
        Re: [PATCH v5 2/2] KEYS: asymmetric: Copy sig and digest in public_key_verify_signature(), Paul Moore
        
        Re: [PATCH v5 2/2] KEYS: asymmetric: Copy sig and digest in public_key_verify_signature(), Jarkko Sakkinen
        
        Re: [PATCH v5 2/2] KEYS: asymmetric: Copy sig and digest in public_key_verify_signature(), Paul Moore
        
        Re: [PATCH v5 2/2] KEYS: asymmetric: Copy sig and digest in public_key_verify_signature(), Jarkko Sakkinen
        
        Re: [PATCH v5 2/2] KEYS: asymmetric: Copy sig and digest in public_key_verify_signature(), Roberto Sassu
  - Re: [PATCH v5 2/2] KEYS: asymmetric: Copy sig and digest in public_key_verify_signature(), Stefan Berger
    - Re: [PATCH v5 2/2] KEYS: asymmetric: Copy sig and digest in public_key_verify_signature(), Roberto Sassu
      - Re: [PATCH v5 2/2] KEYS: asymmetric: Copy sig and digest in public_key_verify_signature(), Eric Biggers
        
        Re: [PATCH v5 2/2] KEYS: asymmetric: Copy sig and digest in public_key_verify_signature(), Roberto Sassu
[PATCH v4 1/2] lib/mpi: Fix buffer overrun when SG is too long, Roberto Sassu
- [PATCH v4 2/2] KEYS: asymmetric: Copy sig and digest in public_key_verify_signature(), Roberto Sassu
  - Re: [PATCH v4 2/2] KEYS: asymmetric: Copy sig and digest in public_key_verify_signature(), Roberto Sassu
Seal/Unseal trusted keys against PCR policy, Sughosh Ganu
- Re: Seal/Unseal trusted keys against PCR policy, James Bottomley
  - Re: Seal/Unseal trusted keys against PCR policy, Sughosh Ganu
    - Re: Seal/Unseal trusted keys against PCR policy, James Bottomley
      - Re: Seal/Unseal trusted keys against PCR policy, Sughosh Ganu
      - Re: Seal/Unseal trusted keys against PCR policy, Ken Goldman
        
        Re: Seal/Unseal trusted keys against PCR policy, William Roberts
        
        Re: Seal/Unseal trusted keys against PCR policy, James Bottomley
        
        Message not available
        
        Re: Seal/Unseal trusted keys against PCR policy, Sughosh Ganu
        
        Re: Seal/Unseal trusted keys against PCR policy, James Bottomley
        
        Re: Seal/Unseal trusted keys against PCR policy, William Roberts
        
        Re: Seal/Unseal trusted keys against PCR policy, James Bottomley
        
        Re: Seal/Unseal trusted keys against PCR policy, Ken Goldman
        
        Re: Seal/Unseal trusted keys against PCR policy, William Roberts
[PATCH 0/2] ima: Fix IMA mishandling of LSM based rule during, GUO Zihua
- [PATCH 1/2] ima: use the lsm policy update notifier, GUO Zihua
- [PATCH 2/2] ima: Handle -ESTALE returned by ima_filter_rule_match(), GUO Zihua
  - Re: [PATCH 2/2] ima: Handle -ESTALE returned by ima_filter_rule_match(), Greg KH
    - Re: [PATCH 2/2] ima: Handle -ESTALE returned by ima_filter_rule_match(), Mimi Zohar
      - Re: [PATCH 2/2] ima: Handle -ESTALE returned by ima_filter_rule_match(), Guozihua (Scott)
[PATCH] ima: Handle error code from security_audit_rule_match, GUO Zihua
- Re: [PATCH] ima: Handle error code from security_audit_rule_match, Mimi Zohar
  - Re: [PATCH] ima: Handle error code from security_audit_rule_match, Guozihua (Scott)
[PATCH -next] evm: Support small xattr in dump_security_xattr(), Xiu Jianfeng
- Re: [PATCH -next] evm: Support small xattr in dump_security_xattr(), Mimi Zohar
[RFC][PATCH 2/2] ima: created new ima template ima-cgpath for Kubernates' pods attestation, Enrico Bravi
[RFC][PATCH 1/2] ima: created new ima template ima-dep-cgn for OCI containers attestation, Enrico Bravi
- Re: [RFC][PATCH 1/2] ima: created new ima template ima-dep-cgn for OCI containers attestation, Mimi Zohar
Stable backport request, Mimi Zohar
- Re: Stable backport request, Greg KH
  - Re: Stable backport request, Mimi Zohar
    - Re: Stable backport request, Greg KH
[PATCH v2] security: Restore passing final prot to ima_file_mmap(), Roberto Sassu
- Re: [PATCH v2] security: Restore passing final prot to ima_file_mmap(), Paul Moore
  - Re: [PATCH v2] security: Restore passing final prot to ima_file_mmap(), Roberto Sassu
    - Re: [PATCH v2] security: Restore passing final prot to ima_file_mmap(), Paul Moore
      - Re: [PATCH v2] security: Restore passing final prot to ima_file_mmap(), Roberto Sassu
        
        Re: [PATCH v2] security: Restore passing final prot to ima_file_mmap(), Mimi Zohar
        
        Re: [PATCH v2] security: Restore passing final prot to ima_file_mmap(), Roberto Sassu
        
        Re: [PATCH v2] security: Restore passing final prot to ima_file_mmap(), Paul Moore
        
        Re: [PATCH v2] security: Restore passing final prot to ima_file_mmap(), Roberto Sassu
        
        Re: [PATCH v2] security: Restore passing final prot to ima_file_mmap(), Paul Moore
        
        Re: [PATCH v2] security: Restore passing final prot to ima_file_mmap(), Mimi Zohar
[PATCH] security: Restore passing final prot to ima_file_mmap(), Roberto Sassu
[PATCH v3 1/2] lib/mpi: Fix buffer overrun when SG is too long, Roberto Sassu
- [PATCH v3 2/2] KEYS: asymmetric: Copy sig and digest in public_key_verify_signature(), Roberto Sassu
  - Re: [PATCH v3 2/2] KEYS: asymmetric: Copy sig and digest in public_key_verify_signature(), Eric Biggers
[PATCH] libimaevm: do not crash if the certificate cannot be read, Alberto Mardegan
- Re: [PATCH] libimaevm: do not crash if the certificate cannot be read, Mimi Zohar
  - [PATCH] libimaevm: do not crash if the certificate cannot be read, Alberto Mardegan
Question on loading trusted key with keyctl command, Sughosh Ganu
- Re: Question on loading trusted key with keyctl command, Mimi Zohar
- Re: Question on loading trusted key with keyctl command, James Bottomley
  - Re: Question on loading trusted key with keyctl command, Sughosh Ganu
    - Re: Question on loading trusted key with keyctl command, James Bottomley
      - Re: Question on loading trusted key with keyctl command, Mimi Zohar
        
        Re: Question on loading trusted key with keyctl command, James Bottomley
        
        Re: Question on loading trusted key with keyctl command, Mimi Zohar
        
        Re: Question on loading trusted key with keyctl command, James Bottomley
        
        Re: Question on loading trusted key with keyctl command, Mimi Zohar
Re: [PATCH] ima: add check for khdr->buffer_size, Mimi Zohar
IMA & tpm_unsealdata with PCR 10, Michaël Musset
- Re: IMA & tpm_unsealdata with PCR 10, Roberto Sassu
[PATCH v3 00/10] Add CA enforcement keyring restrictions, Eric Snowberg
- [PATCH v3 01/10] KEYS: Create static version of public_key_verify_signature, Eric Snowberg
  - Re: [PATCH v3 01/10] KEYS: Create static version of public_key_verify_signature, Jarkko Sakkinen
- [PATCH v3 04/10] KEYS: X.509: Parse Key Usage, Eric Snowberg
  - Re: [PATCH v3 04/10] KEYS: X.509: Parse Key Usage, Mimi Zohar
  - Re: [PATCH v3 04/10] KEYS: X.509: Parse Key Usage, Jarkko Sakkinen
    - Re: [PATCH v3 04/10] KEYS: X.509: Parse Key Usage, Eric Snowberg
- [PATCH v3 05/10] KEYS: Introduce a CA endorsed flag, Eric Snowberg
  - Re: [PATCH v3 05/10] KEYS: Introduce a CA endorsed flag, Jarkko Sakkinen
- [PATCH v3 07/10] KEYS: X.509: Flag Intermediate CA certs as endorsed, Eric Snowberg
  - Re: [PATCH v3 07/10] KEYS: X.509: Flag Intermediate CA certs as endorsed, Mimi Zohar
- [PATCH v3 02/10] KEYS: Add missing function documentation, Eric Snowberg
  - Re: [PATCH v3 02/10] KEYS: Add missing function documentation, Jarkko Sakkinen
- [PATCH v3 03/10] KEYS: X.509: Parse Basic Constraints for CA, Eric Snowberg
  - Re: [PATCH v3 03/10] KEYS: X.509: Parse Basic Constraints for CA, Mimi Zohar
    - Re: [PATCH v3 03/10] KEYS: X.509: Parse Basic Constraints for CA, Jarkko Sakkinen
      - Re: [PATCH v3 03/10] KEYS: X.509: Parse Basic Constraints for CA, Eric Snowberg
        
        Re: [PATCH v3 03/10] KEYS: X.509: Parse Basic Constraints for CA, Mimi Zohar
  - Re: [PATCH v3 03/10] KEYS: X.509: Parse Basic Constraints for CA, Jarkko Sakkinen
- [PATCH v3 09/10] KEYS: CA link restriction, Eric Snowberg
  - Re: [PATCH v3 09/10] KEYS: CA link restriction, Jarkko Sakkinen
    - Re: [PATCH v3 09/10] KEYS: CA link restriction, Jarkko Sakkinen
- [PATCH v3 10/10] integrity: restrict INTEGRITY_KEYRING_MACHINE to restrict_link_by_ca, Eric Snowberg
- [PATCH v3 06/10] KEYS: Introduce keyring restriction that validates ca trust, Eric Snowberg
- [PATCH v3 08/10] integrity: Use root of trust signature restriction, Eric Snowberg
- Re: [PATCH v3 00/10] Add CA enforcement keyring restrictions, Mimi Zohar
  - Re: [PATCH v3 00/10] Add CA enforcement keyring restrictions, Eric Snowberg
    - Re: [PATCH v3 00/10] Add CA enforcement keyring restrictions, Mimi Zohar
      - Re: [PATCH v3 00/10] Add CA enforcement keyring restrictions, Eric Snowberg
        
        Re: [PATCH v3 00/10] Add CA enforcement keyring restrictions, Mimi Zohar
        
        Re: [PATCH v3 00/10] Add CA enforcement keyring restrictions, Eric Snowberg
        
        Re: [PATCH v3 00/10] Add CA enforcement keyring restrictions, Coiby Xu
        
        Re: [PATCH v3 00/10] Add CA enforcement keyring restrictions, Mimi Zohar
        
        Re: [PATCH v3 00/10] Add CA enforcement keyring restrictions, Eric Snowberg
        
        Re: [PATCH v3 00/10] Add CA enforcement keyring restrictions, Mimi Zohar
        
        Re: [PATCH v3 00/10] Add CA enforcement keyring restrictions, Eric Snowberg
        
        Re: [PATCH v3 00/10] Add CA enforcement keyring restrictions, Mimi Zohar
        
        Re: [PATCH v3 00/10] Add CA enforcement keyring restrictions, Eric Snowberg
        
        Re: [PATCH v3 00/10] Add CA enforcement keyring restrictions, Mimi Zohar
        
        Re: [PATCH v3 00/10] Add CA enforcement keyring restrictions, Eric Snowberg
        
        Re: [PATCH v3 00/10] Add CA enforcement keyring restrictions, Mimi Zohar
[GIT PULL] integrity: susbsytem updates for v6.2, Mimi Zohar
- Re: [GIT PULL] integrity: susbsytem updates for v6.2, pr-tracker-bot
Firmware bug on ASRock X370/Ryzen 2600 prevents use of TPM device, Genevieve
[PATCH] tpm_crb: Add support for CRB devices based on Pluton, Matthew Garrett
- Re: [PATCH] tpm_crb: Add support for CRB devices based on Pluton, Jarkko Sakkinen
[PATCH 00/11] add integrity and security to TPM2 transactions, James Bottomley
- [PATCH 01/11] tpm: move buffer handling from static inlines to real functions, James Bottomley
  - Re: [PATCH 01/11] tpm: move buffer handling from static inlines to real functions, Jarkko Sakkinen
    - Re: [PATCH 01/11] tpm: move buffer handling from static inlines to real functions, James Bottomley
      - Re: [PATCH 01/11] tpm: move buffer handling from static inlines to real functions, Jarkko Sakkinen
        
        Re: [PATCH 01/11] tpm: move buffer handling from static inlines to real functions, James Bottomley
        
        Re: [PATCH 01/11] tpm: move buffer handling from static inlines to real functions, Jarkko Sakkinen
- [PATCH 03/11] tpm: add cursor based buffer functions for response parsing, James Bottomley
  - Re: [PATCH 03/11] tpm: add cursor based buffer functions for response parsing, Jarkko Sakkinen
    - Re: [PATCH 03/11] tpm: add cursor based buffer functions for response parsing, James Bottomley
      - Re: [PATCH 03/11] tpm: add cursor based buffer functions for response parsing, Jarkko Sakkinen
- [PATCH 02/11] tpm: add buffer handling for TPM2B types, James Bottomley
- [PATCH 04/11] tpm: add buffer function to point to returned parameters, James Bottomley
- [PATCH 05/11] tpm: export the context save and load commands, James Bottomley
- [PATCH 06/11] tpm: Add full HMAC and encrypt/decrypt session handling code, James Bottomley
  - Re: [PATCH 06/11] tpm: Add full HMAC and encrypt/decrypt session handling code, James Bottomley
  - Re: [PATCH 06/11] tpm: Add full HMAC and encrypt/decrypt session handling code, Dan Carpenter
    - Re: [PATCH 06/11] tpm: Add full HMAC and encrypt/decrypt session handling code, James Bottomley
- [PATCH 07/11] tpm: add hmac checks to tpm2_pcr_extend(), James Bottomley
- [PATCH 08/11] tpm: add session encryption protection to tpm2_get_random(), James Bottomley
- [PATCH 09/11] KEYS: trusted: Add session encryption protection to the seal/unseal path, James Bottomley
- [PATCH 10/11] tpm: add the null key name as a sysfs export, James Bottomley
- [PATCH 11/11] Documentation: add tpm-security.rst, James Bottomley
[PATCH v2] KEYS: asymmetric: Copy sig and digest in public_key_verify_signature(), Roberto Sassu
- Re: [PATCH v2] KEYS: asymmetric: Copy sig and digest in public_key_verify_signature(), Eric Biggers
  - Re: [PATCH v2] KEYS: asymmetric: Copy sig and digest in public_key_verify_signature(), Roberto Sassu
    - Re: [PATCH v2] KEYS: asymmetric: Copy sig and digest in public_key_verify_signature(), Herbert Xu
      - Re: [PATCH v2] KEYS: asymmetric: Copy sig and digest in public_key_verify_signature(), Roberto Sassu
        
        [PATCH] lib/mpi: Fix buffer overrun when SG is too long, Herbert Xu
        
        Re: [PATCH] lib/mpi: Fix buffer overrun when SG is too long, Roberto Sassu
        
        Re: [PATCH] lib/mpi: Fix buffer overrun when SG is too long, Eric Biggers
        
        [v2 PATCH] lib/mpi: Fix buffer overrun when SG is too long, Herbert Xu
        
        Re: [v2 PATCH] lib/mpi: Fix buffer overrun when SG is too long, Eric Biggers
        
        Re: [v2 PATCH] lib/mpi: Fix buffer overrun when SG is too long, Herbert Xu
[RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
- Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Greg KH
  - Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
    - Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Greg KH
      - Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Greg KH
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Greg KH
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Greg KH
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
- Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Mimi Zohar
  - Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
    - Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Mimi Zohar
      - Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Mimi Zohar
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Mimi Zohar
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Paul Moore
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Paul Moore
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Mimi Zohar
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Mimi Zohar
[PATCH] KEYS: asymmetric: Make a copy of sig and digest in vmalloced stack, Roberto Sassu
- Re: [PATCH] KEYS: asymmetric: Make a copy of sig and digest in vmalloced stack, Eric Biggers
  - Re: [PATCH] KEYS: asymmetric: Make a copy of sig and digest in vmalloced stack, Roberto Sassu
    - Re: [PATCH] KEYS: asymmetric: Make a copy of sig and digest in vmalloced stack, Roberto Sassu
[GIT PULL] tpmdd updates for tpmdd-next-v6.2-rc1, Jarkko Sakkinen
- Re: [GIT PULL] tpmdd updates for tpmdd-next-v6.2-rc1, pr-tracker-bot
[PATCH] fsverity: mark builtin signatures as deprecated, Eric Biggers
- Re: [PATCH] fsverity: mark builtin signatures as deprecated, Luca Boccassi
  - Re: [PATCH] fsverity: mark builtin signatures as deprecated, Eric Biggers
    - Re: [PATCH] fsverity: mark builtin signatures as deprecated, Luca Boccassi
      - Re: [PATCH] fsverity: mark builtin signatures as deprecated, Eric Biggers
        
        Re: [PATCH] fsverity: mark builtin signatures as deprecated, Luca Boccassi
    - Re: [PATCH] fsverity: mark builtin signatures as deprecated, Fan Wu
      - Re: [PATCH] fsverity: mark builtin signatures as deprecated, Eric Biggers
- <Possible follow-ups>
- Re: [PATCH] fsverity: mark builtin signatures as deprecated, Paul Moore
[PATCH] fsverity: don't check builtin signatures when require_signatures=0, Eric Biggers
- Re: [PATCH] fsverity: don't check builtin signatures when require_signatures=0, Luca Boccassi
  - Re: [PATCH] fsverity: don't check builtin signatures when require_signatures=0, Eric Biggers
    - Re: [PATCH] fsverity: don't check builtin signatures when require_signatures=0, Luca Boccassi
      - Re: [PATCH] fsverity: don't check builtin signatures when require_signatures=0, Eric Biggers
[PATCH v2 00/10] Add CA enforcement keyring restrictions, Eric Snowberg
- [PATCH v2 02/10] KEYS: Add missing function documentation, Eric Snowberg
  - Re: [PATCH v2 02/10] KEYS: Add missing function documentation, Petr Vorel
- [PATCH v2 05/10] KEYS: Introduce a CA endorsed flag, Eric Snowberg
- [PATCH v2 06/10] KEYS: Introduce keyring restriction that validates ca trust, Eric Snowberg
- [PATCH v2 07/10] KEYS: X.509: Flag Intermediate CA certs as endorsed, Eric Snowberg
- [PATCH v2 08/10] integrity: Use root of trust signature restriction, Eric Snowberg
- [PATCH v2 01/10] KEYS: Create static version of public_key_verify_signature, Eric Snowberg
  - Re: [PATCH v2 01/10] KEYS: Create static version of public_key_verify_signature, Petr Vorel
- [PATCH v2 09/10] KEYS: CA link restriction, Eric Snowberg
- [PATCH v2 04/10] KEYS: X.509: Parse Key Usage, Eric Snowberg
- [PATCH v2 10/10] integrity: restrict INTEGRITY_KEYRING_MACHINE to restrict_link_by_ca, Eric Snowberg
- [PATCH v2 03/10] KEYS: X.509: Parse Basic Constraints for CA, Eric Snowberg
- Re: [PATCH v2 00/10] Add CA enforcement keyring restrictions, Coiby Xu
  - Re: [PATCH v2 00/10] Add CA enforcement keyring restrictions, Eric Snowberg
    - Re: [PATCH v2 00/10] Add CA enforcement keyring restrictions, Mimi Zohar
      - Re: [PATCH v2 00/10] Add CA enforcement keyring restrictions, Eric Snowberg
[PATCH] public_key: Add a comment to public_key_signature struct definition, Roberto Sassu
- Re: [PATCH] public_key: Add a comment to public_key_signature struct definition, Paul Moore
  - Re: [PATCH] public_key: Add a comment to public_key_signature struct definition, Eric Biggers
    - Re: [PATCH] public_key: Add a comment to public_key_signature struct definition, Paul Moore
[RESEND PATCH v3] tpm: st33zp24: remove pointless checks on probe, Dmitry Torokhov
- Re: [RESEND PATCH v3] tpm: st33zp24: remove pointless checks on probe, Jarkko Sakkinen
[PATCH v7 0/6] evm: Do HMAC of multiple per LSM xattrs for new inodes, Roberto Sassu
- [PATCH v7 1/6] reiserfs: Switch to security_inode_init_security(), Roberto Sassu
  - Re: [PATCH v7 1/6] reiserfs: Switch to security_inode_init_security(), Mimi Zohar
- [PATCH v7 5/6] evm: Align evm_inode_init_security() definition with LSM infrastructure, Roberto Sassu
  - Re: [PATCH v7 5/6] evm: Align evm_inode_init_security() definition with LSM infrastructure, Mimi Zohar
- [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Roberto Sassu
  - Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Roberto Sassu
    - Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Paul Moore
      - Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Roberto Sassu
        
        Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Paul Moore
    - Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Joseph Qi
      - Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Roberto Sassu
  - Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Mimi Zohar
    - Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Mimi Zohar
      - Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Roberto Sassu
        
        Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Mimi Zohar
        
        Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Roberto Sassu
        
        Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Mimi Zohar
    - Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Roberto Sassu
- [PATCH v7 3/6] security: Remove security_old_inode_init_security(), Roberto Sassu
  - Re: [PATCH v7 3/6] security: Remove security_old_inode_init_security(), Mimi Zohar
- [PATCH v7 6/6] evm: Support multiple LSMs providing an xattr, Roberto Sassu
  - Re: [PATCH v7 6/6] evm: Support multiple LSMs providing an xattr, Mimi Zohar
    - Re: [PATCH v7 6/6] evm: Support multiple LSMs providing an xattr, Roberto Sassu
      - Re: [PATCH v7 6/6] evm: Support multiple LSMs providing an xattr, Mimi Zohar
- [PATCH v7 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Roberto Sassu
  - Re: [PATCH v7 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Mimi Zohar
- Re: [PATCH v7 0/6] evm: Do HMAC of multiple per LSM xattrs for new inodes, Paul Moore
  - Re: [PATCH v7 0/6] evm: Do HMAC of multiple per LSM xattrs for new inodes, Roberto Sassu
- Re: [PATCH v7 0/6] evm: Do HMAC of multiple per LSM xattrs for new inodes, Paul Moore
  - Re: [PATCH v7 0/6] evm: Do HMAC of multiple per LSM xattrs for new inodes, Roberto Sassu
[PATCH v2 0/2] ima/evm: Ensure digest to verify is in linear mapping area, Roberto Sassu
- [PATCH v2 1/2] evm: Alloc evm_digest in evm_verify_hmac() if CONFIG_VMAP_STACK=y, Roberto Sassu
  - Re: [PATCH v2 1/2] evm: Alloc evm_digest in evm_verify_hmac() if CONFIG_VMAP_STACK=y, Eric Biggers
    - Re: [PATCH v2 1/2] evm: Alloc evm_digest in evm_verify_hmac() if CONFIG_VMAP_STACK=y, Mimi Zohar
      - Re: [PATCH v2 1/2] evm: Alloc evm_digest in evm_verify_hmac() if CONFIG_VMAP_STACK=y, Eric Biggers
    - Re: [PATCH v2 1/2] evm: Alloc evm_digest in evm_verify_hmac() if CONFIG_VMAP_STACK=y, Roberto Sassu
      - Re: [PATCH v2 1/2] evm: Alloc evm_digest in evm_verify_hmac() if CONFIG_VMAP_STACK=y, Eric Biggers
        
        Re: [PATCH v2 1/2] evm: Alloc evm_digest in evm_verify_hmac() if CONFIG_VMAP_STACK=y, Roberto Sassu
        
        Re: [PATCH v2 1/2] evm: Alloc evm_digest in evm_verify_hmac() if CONFIG_VMAP_STACK=y, Mimi Zohar
        
        Re: [PATCH v2 1/2] evm: Alloc evm_digest in evm_verify_hmac() if CONFIG_VMAP_STACK=y, Roberto Sassu
- [PATCH v2 2/2] ima: Alloc ima_max_digest_data in xattr_verify() if CONFIG_VMAP_STACK=y, Roberto Sassu
  - Re: [PATCH v2 2/2] ima: Alloc ima_max_digest_data in xattr_verify() if CONFIG_VMAP_STACK=y, Eric Biggers
[PATCH] tpm/ppi: use sysfs_emit() to instead of scnprintf(), ye.xingchen
[PATCH ima-evm-utils] Experimental fsverity.test related GA CI improvements, Vitaly Chikunov
- Re: [PATCH ima-evm-utils] Experimental fsverity.test related GA CI improvements, Vitaly Chikunov
- Re: [PATCH ima-evm-utils] Experimental fsverity.test related GA CI improvements, Mimi Zohar
  - Re: [PATCH ima-evm-utils] Experimental fsverity.test related GA CI improvements, Vitaly Chikunov
    - Re: [PATCH ima-evm-utils] Experimental fsverity.test related GA CI improvements, Roberto Sassu
    - Re: [PATCH ima-evm-utils] Experimental fsverity.test related GA CI improvements, Mimi Zohar
[PATCH] fsverity: simplify fsverity_get_digest(), Eric Biggers
- Re: [PATCH] fsverity: simplify fsverity_get_digest(), Eric Biggers
- Re: [PATCH] fsverity: simplify fsverity_get_digest(), Mimi Zohar
[PATCH v3] char: tpm: Protect tpm_pm_suspend with locks, Jason A. Donenfeld
- Re: [PATCH v3] char: tpm: Protect tpm_pm_suspend with locks, Thorsten Leemhuis
  - Re: [PATCH v3] char: tpm: Protect tpm_pm_suspend with locks, Jason A. Donenfeld
    - Re: [PATCH v3] char: tpm: Protect tpm_pm_suspend with locks, Jan Dąbroś
  - Re: [PATCH v3] char: tpm: Protect tpm_pm_suspend with locks, Jason A. Donenfeld
- Re: [PATCH v3] char: tpm: Protect tpm_pm_suspend with locks, Jarkko Sakkinen
  - Re: [PATCH v3] char: tpm: Protect tpm_pm_suspend with locks, Jarkko Sakkinen
    - Re: [PATCH v3] char: tpm: Protect tpm_pm_suspend with locks, Jason A. Donenfeld
      - Re: [PATCH v3] char: tpm: Protect tpm_pm_suspend with locks, Jarkko Sakkinen
        
        Re: [PATCH v3] char: tpm: Protect tpm_pm_suspend with locks, Vlastimil Babka
        
        Re: [PATCH v3] char: tpm: Protect tpm_pm_suspend with locks, Jarkko Sakkinen
[REGRESSION] suspend to ram fails in 6.1 due to tpm errors, Vlastimil Babka
- Re: [REGRESSION] suspend to ram fails in 6.1 due to tpm errors, Jason A. Donenfeld
  - Re: [REGRESSION] suspend to ram fails in 6.1 due to tpm errors, Vlastimil Babka
    - Re: [REGRESSION] suspend to ram fails in 6.1 due to tpm errors, Vlastimil Babka
  - Re: [REGRESSION] suspend to ram fails in 6.1 due to tpm errors, Jason A. Donenfeld
[PATCH] tpm_crb: Remove a useless include, Christophe JAILLET
[PATCH v5] evm: Correct inode_init_security hooks behaviors, Nicolas Bouchinet
- Re: [PATCH v5] evm: Correct inode_init_security hooks behaviors, Mimi Zohar
  - Re: [PATCH v5] evm: Correct inode_init_security hooks behaviors, Roberto Sassu
  - Re: [PATCH v5] evm: Correct inode_init_security hooks behaviors, Nicolas Bouchinet
    - Re: [PATCH v5] evm: Correct inode_init_security hooks behaviors, Roberto Sassu
      - Re: [PATCH v5] evm: Correct inode_init_security hooks behaviors, Nicolas Bouchinet
        
        Re: [PATCH v5] evm: Correct inode_init_security hooks behaviors, Roberto Sassu
[PATCH] ima: Fix hash dependency to correct algorithm, Tianjia Zhang
- Re: [PATCH] ima: Fix hash dependency to correct algorithm, Mimi Zohar
[PATCH v11 00/14] TPM IRQ fixes, Lino Sanfilippo
- [PATCH v11 10/14] tpm, tpm_tis: Request threaded interrupt handler, Lino Sanfilippo
- [PATCH v11 02/14] tpm, tpm_tis: Claim locality before writing TPM_INT_ENABLE register, Lino Sanfilippo
- [PATCH v11 07/14] tpm, tpm_tis: Move interrupt mask checks into own function, Lino Sanfilippo
- [PATCH v11 05/14] tpm, tpm_tis: Claim locality before writing interrupt registers, Lino Sanfilippo
- [PATCH v11 12/14] tpm, tpm_tis: Claim locality when interrupts are reenabled on resume, Lino Sanfilippo
- [PATCH v11 03/14] tpm, tpm_tis: Disable interrupts if tpm_tis_probe_irq() failed, Lino Sanfilippo
- [PATCH v11 04/14] tpm, tpm_tis: Do not skip reset of original interrupt vector, Lino Sanfilippo
  - Re: [PATCH v11 04/14] tpm, tpm_tis: Do not skip reset of original interrupt vector, Jarkko Sakkinen
- [PATCH v11 01/14] tpm, tpm_tis: Avoid cache incoherency in test for interrupts, Lino Sanfilippo
- [PATCH v11 13/14] tpm, tpm_tis: startup chip before testing for interrupts, Lino Sanfilippo
  - Re: [PATCH v11 13/14] tpm, tpm_tis: startup chip before testing for interrupts, Lino Sanfilippo
    - Re: [PATCH v11 13/14] tpm, tpm_tis: startup chip before testing for interrupts, Jarkko Sakkinen
  - Re: [PATCH v11 13/14] tpm, tpm_tis: startup chip before testing for interrupts, Jarkko Sakkinen
- [PATCH v11 06/14] tpm, tpm_tis: Only handle supported interrupts, Lino Sanfilippo
- [PATCH v11 08/14] tpm, tpm_tis: do not check for the active locality in interrupt handler, Lino Sanfilippo
- [PATCH v11 09/14] tpm, tpm: Implement usage counter for locality, Lino Sanfilippo
  - Re: [PATCH v11 09/14] tpm, tpm: Implement usage counter for locality, Jarkko Sakkinen
- [PATCH v11 14/14] tpm, tpm_tis: Enable interrupt test, Lino Sanfilippo
- [PATCH v11 11/14] tpm, tpm_tis: Claim locality in interrupt handler, Lino Sanfilippo
- Re: [PATCH v11 00/14] TPM IRQ fixes, Lino Sanfilippo
  - Re: [PATCH v11 00/14] TPM IRQ fixes, Michael Niewöhner
    - Re: [PATCH v11 00/14] TPM IRQ fixes, Jarkko Sakkinen
      - Re: [PATCH v11 00/14] TPM IRQ fixes, Jarkko Sakkinen
        
        Re: [PATCH v11 00/14] TPM IRQ fixes, Jarkko Sakkinen
        
        Re: [PATCH v11 00/14] TPM IRQ fixes, Jarkko Sakkinen
        
        Re: [PATCH v11 00/14] TPM IRQ fixes, Lino Sanfilippo
        
        Re: [PATCH v11 00/14] TPM IRQ fixes, Jarkko Sakkinen
        
        Re: [PATCH v11 00/14] TPM IRQ fixes, Michael Niewöhner
        
        Re: [PATCH v11 00/14] TPM IRQ fixes, Jarkko Sakkinen
        
        Re: [PATCH v11 00/14] TPM IRQ fixes, Michael Niewöhner
[PATCH] tpm/tpm_ftpm_tee: Fix error handling in ftpm_mod_init(), Yuan Can
- Re: [PATCH] tpm/tpm_ftpm_tee: Fix error handling in ftpm_mod_init(), Jarkko Sakkinen
  - Re: [PATCH] tpm/tpm_ftpm_tee: Fix error handling in ftpm_mod_init(), Maxim Uvarov
    - Re: [PATCH] tpm/tpm_ftpm_tee: Fix error handling in ftpm_mod_init(), Jarkko Sakkinen
[PATCH v6 0/6] evm: Do HMAC of multiple per LSM xattrs for new inodes, Roberto Sassu
- [PATCH v6 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Roberto Sassu
  - Re: [PATCH v6 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Casey Schaufler
    - Re: [PATCH v6 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Roberto Sassu
  - Re: [PATCH v6 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Mimi Zohar
    - Re: [PATCH v6 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Roberto Sassu
      - Re: [PATCH v6 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Mimi Zohar
        
        Re: [PATCH v6 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Casey Schaufler
        
        Re: [PATCH v6 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Mimi Zohar
- [PATCH v6 1/6] reiserfs: Switch to security_inode_init_security(), Roberto Sassu
- [PATCH v6 6/6] evm: Support multiple LSMs providing an xattr, Roberto Sassu
- [PATCH v6 5/6] evm: Align evm_inode_init_security() definition with LSM infrastructure, Roberto Sassu
- [PATCH v6 3/6] security: Remove security_old_inode_init_security(), Roberto Sassu
- [PATCH v6 2/6] ocfs2: Switch to security_inode_init_security(), Roberto Sassu
- Re: [PATCH v6 0/6] evm: Do HMAC of multiple per LSM xattrs for new inodes, Mimi Zohar
- Re: [PATCH v6 0/6] evm: Do HMAC of multiple per LSM xattrs for new inodes, Casey Schaufler
[PATCH v5 0/6] evm: Prepare for moving to the LSM infrastructure, Roberto Sassu
- [PATCH v5 3/6] security: Remove security_old_inode_init_security(), Roberto Sassu
- [PATCH v5 1/6] reiserfs: Switch to security_inode_init_security(), Roberto Sassu
  - Re: [PATCH v5 1/6] reiserfs: Switch to security_inode_init_security(), Mimi Zohar
- [PATCH v5 5/6] evm: Align evm_inode_init_security() definition with LSM infrastructure, Roberto Sassu

[Index of Archives] [Linux Kernel] [Linux Kernel Hardening] [Linux NFS] [Linux NILFS] [Linux USB Devel] [Video for Linux] [Linux SCSI] [Yosemite Forum]