Linux Integrity
[Prev Page][Next Page]
- Re: [PATCH v4 13/30] evm: add post set acl hook, (continued)
- [PATCHv2 RESEND] efi: Correct Macmini DMI match in uefi cert quirk,
Orlando Chamberlain
- [PATCH v3 00/29] acl: add vfs posix acl api,
Christian Brauner
- [PATCH v2 0/3] tpm: tsi-i2c: Add compatible strings,
Joel Stanley
- [GIT PULL] linux-tpmdd updates for v6.0-rc1,
Jarkko Sakkinen
- [PATCH v38 21/39] LSM: Ensure the correct LSM context releaser, Casey Schaufler
- [PATCH v38 18/39] LSM: Use lsmblob in security_inode_getsecid, Casey Schaufler
- [PATCH v38 19/39] LSM: Use lsmblob in security_cred_getsecid, Casey Schaufler
- [PATCH v38 17/39] LSM: Use lsmblob in security_current_getsecid, Casey Schaufler
- [PATCH v38 07/39] integrity: disassociate ima_filter_rule from security_audit_rule, Casey Schaufler
- [PATCH v3 00/11] Encrypted Hibernation,
Evan Green
- [PATCH v3 03/11] tpm: Allow PCR 23 to be restricted to kernel-only use, Evan Green
- [PATCH v3 02/11] tpm: Export and rename tpm2_find_and_validate_cc(), Evan Green
- [PATCH v3 01/11] tpm: Add support for in-kernel resetting of PCRs, Evan Green
- [PATCH v3 05/11] security: keys: trusted: Allow storage of PCR values in creation data, Evan Green
- [PATCH v3 10/11] PM: hibernate: Verify the digest encryption key, Evan Green
- [PATCH v3 04/11] security: keys: trusted: Include TPM2 creation data, Evan Green
- [PATCH v3 06/11] security: keys: trusted: Verify creation data, Evan Green
- [PATCH v3 07/11] PM: hibernate: Add kernel-based encryption, Evan Green
- [PATCH v3 09/11] PM: hibernate: Mix user key in encrypted hibernate, Evan Green
- [PATCH v3 11/11] PM: hibernate: seal the encryption key with a PCR policy, Evan Green
- [PATCH v3 08/11] PM: hibernate: Use TPM-backed keys to encrypt image, Evan Green
- [PATCH v2 00/30] acl: add vfs posix acl api,
Christian Brauner
- Re: [PATCH 3/3] ima_setup.sh: Use tst_supported_fs instead of df, Petr Vorel
- [PATCH 1/3] tpm: st33zp24: drop support for platform data,
Dmitry Torokhov
- [RFC PATCH 00/29] acl: add vfs posix acl api,
Christian Brauner
- [PATCH v5 0/2] ima: Handle -ESTALE returned by ima_filter_rule_match(),
GUO Zihua
- [PATCH v2] selftest: tpm2: Add Client.__del__() to close /dev/tpm* handle,
Stefan Berger
- [PATCH] KEYS: encrypted: fix key instantiation with user-provided data,
Nikolaus Voss
- [PATCHv2 1/1] efi: Correct Macmini DMI match in uefi cert quirk, Orlando Chamberlain
- User questions,
Ken Williams
- [PATCH v14 00/26] ima: Namespace IMA with audit support in IMA-ns,
Stefan Berger
- [PATCH v14 12/26] ima: Only accept AUDIT rules for non-init_ima_ns namespaces for now, Stefan Berger
- [PATCH v14 24/26] ima: Limit number of policy rules in non-init_ima_ns, Stefan Berger
- [PATCH v14 11/26] ima: Define mac_admin_ns_capable() as a wrapper for ns_capable(), Stefan Berger
- [PATCH v14 16/26] ima: Add functions for creating and freeing of an ima_namespace, Stefan Berger
- [PATCH v14 21/26] ima: Setup securityfs for IMA namespace, Stefan Berger
- [PATCH v14 14/26] ima: Implement hierarchical processing of file accesses, Stefan Berger
- [PATCH v14 06/26] ima: Move measurement list related variables into ima_namespace, Stefan Berger
- [PATCH v14 04/26] ima: Move arch_policy_entry into ima_namespace, Stefan Berger
- [PATCH v14 02/26] securityfs: Extend securityfs with namespacing support, Stefan Berger
- [PATCH v14 13/26] userns: Add pointer to ima_namespace to user_namespace, Stefan Berger
- [PATCH v14 09/26] ima: Move ima_lsm_policy_notifier into ima_namespace, Stefan Berger
- [PATCH v14 19/26] ima: Namespace audit status flags, Stefan Berger
- [PATCH v14 22/26] ima: Introduce securityfs file to activate an IMA namespace, Stefan Berger
- [PATCH v14 08/26] ima: Move IMA securityfs files into ima_namespace or onto stack, Stefan Berger
- [PATCH v14 15/26] ima: Implement ima_free_policy_rules() for freeing of an ima_namespace, Stefan Berger
- [PATCH v14 20/26] ima: Remove unused iints from the integrity_iint_cache, Stefan Berger
- [PATCH v14 18/26] integrity: Add optional callback function to integrity_inode_free(), Stefan Berger
- [PATCH v14 25/26] ima: Restrict informational audit messages to init_ima_ns, Stefan Berger
- [PATCH v14 23/26] ima: Show owning user namespace's uid and gid when displaying policy, Stefan Berger
- [PATCH v14 10/26] ima: Switch to lazy lsm policy updates for better performance, Stefan Berger
- [PATCH v14 07/26] ima: Move some IMA policy and filesystem related variables into ima_namespace, Stefan Berger
- [PATCH v14 17/26] integrity/ima: Define ns_status for storing namespaced iint data, Stefan Berger
- [PATCH v14 26/26] ima: Enable IMA namespaces, Stefan Berger
- [PATCH v14 05/26] ima: Move ima_htable into ima_namespace, Stefan Berger
- [PATCH v14 03/26] ima: Define ima_namespace struct and start moving variables into it, Stefan Berger
- [PATCH v14 01/26] securityfs: rework dentry creation, Stefan Berger
- Re: [PATCH v14 00/26] ima: Namespace IMA with audit support in IMA-ns, Casey Schaufler
- Re: [PATCH v14 00/26] ima: Namespace IMA with audit support in IMA-ns, Stefan Berger
- [PATCH v1 1/1] ima: fix possible memory leak in cache allocating for namespace, Denis Semakin
- [PATCH ima-evm-utils 0/4] misc bug and other fixes,
Mimi Zohar
- [PATCH ima-evm-utils v3 00/15] address deprecated warnings,
Mimi Zohar
- [PATCH ima-evm-utils v3 01/15] travis: update dist=focal, Mimi Zohar
- [PATCH ima-evm-utils v3 02/15] Update configure.ac to address a couple of obsolete warnings, Mimi Zohar
- [PATCH ima-evm-utils v3 05/15] Replace the low level HMAC calls when calculating the EVM HMAC, Mimi Zohar
- [PATCH ima-evm-utils v3 04/15] Replace the low level SHA1 calls when calculating the TPM 1.2 PCRs, Mimi Zohar
- [PATCH ima-evm-utils v3 03/15] Deprecate IMA signature version 1, Mimi Zohar
- [PATCH ima-evm-utils v3 08/15] Fix potential use after free in read_tpm_banks(), Mimi Zohar
- [PATCH ima-evm-utils v3 06/15] Add missing EVP_MD_CTX_free() call in calc_evm_hash(), Mimi Zohar
- [PATCH ima-evm-utils v3 07/15] Disable use of OpenSSL "engine" support, Mimi Zohar
- [PATCH ima-evm-utils v3 09/15] Limit the file hash algorithm name length, Mimi Zohar
- [PATCH ima-evm-utils v3 10/15] Missing template data size lower bounds checking, Mimi Zohar
- [PATCH ima-evm-utils v3 11/15] Limit configuring OpenSSL engine support, Mimi Zohar
- [PATCH ima-evm-utils v3 12/15] Base sm2/sm3 test on openssl version installed, Mimi Zohar
- [PATCH ima-evm-utils v3 13/15] Compile a newer version of OpenSSL, Mimi Zohar
- [PATCH ima-evm-utils v3 15/15] Fix d2i_x509_fp failure, Mimi Zohar
- [PATCH ima-evm-utils v3 14/15] Build OpenSSL without engine support, Mimi Zohar
- [PATCH 0/2] tpm: tsi-i2c: Add compatible strings,
Joel Stanley
- [PATCH] selftests: tpm2: Implement class desstructor to close file descriptor,
Stefan Berger
- [PATCH v4 0/2] ima: Handle -ESTALE returned by ima_filter_rule_match(),
GUO Zihua
- [PATCH ima-evm-utils v2] add support for reading per bank TPM 2.0 PCRs via sysfs,
Tergel Myanganbayar
- [PATCH] tpm: Add flag to use default cancellation policy,
Eddie James
- [PATCH ima-evm-utils v2 00/12] address deprecated warnings,
Mimi Zohar
- [PATCH ima-evm-utils v2 03/12] Update configure.ac to address a couple of obsolete warnings, Mimi Zohar
- [PATCH ima-evm-utils v2 06/12] Replace the low level HMAC calls when calculating the EVM HMAC, Mimi Zohar
- [PATCH ima-evm-utils v2 04/12] Deprecate IMA signature version 1, Mimi Zohar
- [PATCH ima-evm-utils v2 09/12] Fix potential use after free in read_tpm_banks(), Mimi Zohar
- [PATCH ima-evm-utils v2 05/12] Replace the low level SHA1 calls when calculating the TPM 1.2 PCRs, Mimi Zohar
- [PATCH ima-evm-utils v2 01/12] travis: use the distro OpenSSL version on jammy, Mimi Zohar
- [PATCH ima-evm-utils v2 07/12] Add missing EVP_MD_CTX_free() call in calc_evm_hash(), Mimi Zohar
- [PATCH ima-evm-utils v2 08/12] Disable use of OpenSSL "engine" support, Mimi Zohar
- [PATCH ima-evm-utils v2 02/12] travis: update dist=focal, Mimi Zohar
- [PATCH ima-evm-utils v2 11/12] Missing template data size lower bounds checking, Mimi Zohar
- [RFC PATCH ima-evm-utils v2 12/12] Limit configuring OpenSSL engine support, Mimi Zohar
- [PATCH ima-evm-utils v2 10/12] Limit the file hash algorithm name length, Mimi Zohar
- [RFC PATCH HBK: 0/8] HW BOUND KEY as TRUSTED KEY,
Pankaj Gupta
- [RFC PATCH HBK: 3/8] sk_cipher: checking for hw bound operation, Pankaj Gupta
- [RFC PATCH HBK: 1/8] keys-trusted: new cmd line option added, Pankaj Gupta
- [RFC PATCH HBK: 2/8] hw-bound-key: flag-is_hbk added to the tfm, Pankaj Gupta
- [RFC PATCH HBK: 6/8] KEYS: trusted: caam based black key, Pankaj Gupta
- [RFC PATCH HBK: 4/8] keys-trusted: re-factored caam based trusted key, Pankaj Gupta
- [RFC PATCH HBK: 5/8] caam blob-gen: moving blob_priv to caam_drv_private, Pankaj Gupta
- [RFC PATCH HBK: 7/8] caam alg: symmetric key ciphers are updated, Pankaj Gupta
- [RFC PATCH HBK: 8/8] dm-crypt: consumer-app setting the flag-is_hbk, Pankaj Gupta
- Re: [RFC PATCH HBK: 0/8] HW BOUND KEY as TRUSTED KEY, Michael Walle
- Re: [RFC PATCH HBK: 0/8] HW BOUND KEY as TRUSTED KEY, Jarkko Sakkinen
- [PATCH -next] security: Fix some kernel-doc comments, Yang Li
- [PATCH -next 0/4] Use DECLARE_FLEX_ARRAY() helper for ima,
Gaosheng Cui
- [PATCH ima-evm-utils] add support for reading per bank TPM 2.0 PCRs via sysfs,
Tergel Myanganbayar
- [PATCH ima-evm-utils 00/11] address deprecated warnings,
Mimi Zohar
- [PATCH ima-evm-utils 10/11] Limit the file hash algorithm name length, Mimi Zohar
- [PATCH ima-evm-utils 07/11] Add missing EVP_MD_CTX_free() call in calc_evm_hash(), Mimi Zohar
- [PATCH ima-evm-utils 01/11] travis: use the distro OpenSSL version on jammy, Mimi Zohar
- [PATCH ima-evm-utils 02/11] travis: update dist=focal, Mimi Zohar
- [PATCH ima-evm-utils 09/11] Fix potential use after free in read_tpm_banks(), Mimi Zohar
- [PATCH ima-evm-utils 08/11] Deprecate use of OpenSSL v3 "engine" support, Mimi Zohar
- [PATCH ima-evm-utils 05/11] Replace the low level SHA1 calls when calculating the TPM 1.2 PCRs, Mimi Zohar
- [PATCH ima-evm-utils 11/11] Missing template data size lower bounds checking, Mimi Zohar
- [PATCH ima-evm-utils 03/11] Update configure.ac to address a couple of obsolete warnings, Mimi Zohar
- [PATCH ima-evm-utils 06/11] Replace the low level HMAC calls when calculating the EVM HMAC, Mimi Zohar
- [PATCH ima-evm-utils 04/11] Deprecate IMA signature version 1, Mimi Zohar
- [PATCH v8 0/4] tpm: Preserve TPM measurement log across kexec (ppc64),
Stefan Berger
- [PATCH v3] ima: Handle -ESTALE returned by ima_filter_rule_match(),
GUO Zihua
- [RFC PATCH ima-evm-utils 00/11] address deprecated warnings,
Mimi Zohar
- [RFC PATCH ima-evm-utils 01/11] travis: use the distro OpenSSL version on jammy, Mimi Zohar
- [RFC PATCH ima-evm-utils 05/11] Replace the low level SHA1 calls when calculating the TPM 1.2 PCRs, Mimi Zohar
- [RFC PATCH ima-evm-utils 02/11] travis: update dist=focal, Mimi Zohar
- [RFC PATCH ima-evm-utils 04/11] Deprecate IMA signature version 1, Mimi Zohar
- [RFC PATCH ima-evm-utils 03/11] Update configure.ac to address a couple of obsolete warnings, Mimi Zohar
- [RFC PATCH ima-evm-utils 09/11] Fix potential use after free in read_tpm_banks(), Mimi Zohar
- [RFC PATCH ima-evm-utils 08/11] Deprecate use of OpenSSL 3 "engine" support, Mimi Zohar
- [RFC PATCH ima-evm-utils 10/11] Limit the file hash algorithm name length, Mimi Zohar
- [RFC PATCH ima-evm-utils 11/11] Missing template data size lower bounds checking, Mimi Zohar
- [RFC PATCH ima-evm-utils 06/11] Replace the low level HMAC calls when calculating the EVM HMAC, Mimi Zohar
- [RFC PATCH ima-evm-utils 07/11] Add missing EVP_MD_CTX_free() call in calc_evm_hash(), Mimi Zohar
- [RFC PATCH v1 4/4] ima: Extend the real PCR12 with tempPCR value.,
Denis Semakin
- [RFC PATCH v1 3/4] ima: Create vpcr file on securityfs., Denis Semakin
- [RFC PATCH v1 2/4] ima: Use tpm_chip from init IMA namespace., Denis Semakin
- [RFC PATCH v1 1/4] ima: Introduce PCR virtualization for IMA namespace., Denis Semakin
- [RFC PATCH v1 0/4] Virtualize PCR for Container-IMA,
Denis Semakin
- [PATCH v2 00/10] Encrypted Hibernation,
Evan Green
- [PATCH v2 01/10] tpm: Add support for in-kernel resetting of PCRs, Evan Green
- [PATCH v2 02/10] tpm: Allow PCR 23 to be restricted to kernel-only use, Evan Green
- [PATCH v2 03/10] security: keys: trusted: Include TPM2 creation data, Evan Green
- [PATCH v2 04/10] security: keys: trusted: Allow storage of PCR values in creation data, Evan Green
- [PATCH v2 05/10] security: keys: trusted: Verify creation data, Evan Green
- [PATCH v2 06/10] PM: hibernate: Add kernel-based encryption, Evan Green
- [PATCH v2 07/10] PM: hibernate: Use TPM-backed keys to encrypt image, Evan Green
- [PATCH v2 09/10] PM: hibernate: Verify the digest encryption key, Evan Green
- [PATCH v2 08/10] PM: hibernate: Mix user key in encrypted hibernate, Evan Green
- [PATCH v2 10/10] PM: hibernate: seal the encryption key with a PCR policy, Evan Green
- Re: [PATCH v2 00/10] Encrypted Hibernation, Limonciello, Mario
- Re: [PATCH v2 00/10] Encrypted Hibernation, Pavel Machek
- Re: [PATCH v2 00/10] Encrypted Hibernation, Kees Cook
- [PATCH v2] ima: Handle -ESTALE returned by ima_filter_rule_match(), GUO Zihua
- [PATCH] ima: fix blocking of security.ima xattrs of unsupported algorithms,
Mimi Zohar
- [PATCH v2] xfs: don't bump the i_version on an atime update in xfs_vn_update_time,
Jeff Layton
- [PATCH] iversion: update comments with info about atime updates,
Jeff Layton
- [PATCH] ext4: fix i_version handling in ext4,
Jeff Layton
- [PATCH] xfs: don't bump the i_version on an atime update in xfs_vn_update_time,
Jeff Layton
- [PATCH] char: move from strlcpy with unused retval to strscpy,
Wolfram Sang
- [PATCH] ima: Handle -ESTALE returned by ima_filter_rule_match(),
GUO Zihua
- [PATCH] tpm: tis_i2c: Fix sanity check interrupt enable mask,
Eddie James
- Bug in ima_inode_setxattr(),
Christian Brauner
- tpm2_createprim blocked for more than 122 seconds,
Anatol Pomozov
- [PATCH v7 0/6] tpm: Preserve TPM measurement log across kexec (ppc64),
Stefan Berger
- [PATCH] tpm: fix potential race condition in suspend/resume,
Sven van Ashbrook
- Race conditioned discovered between ima_match_rules and ima_update_lsm_update_rules,
Guozihua (Scott)
- [PATCH 1/1] efi: Correct Macmini capitalisation in uefi cert quirk, Orlando Chamberlain
- [PATCH] tpm/ppi: fix return type in tpm_show_ppi_response(),
Dan Carpenter
- [GIT PULL] tpmdd updates for v5.20,
Jarkko Sakkinen
- [GIT PULL] integrity subsystem updates for v6.0,
Mimi Zohar
- [PATCH v4] tpm: Add check for Failure mode for TPM2 modules,
Mårten Lindahl
- keyrings, key usage, and trust models,
Elaine Palmer
- [PATCH v2 0/1] lockdown: Fix kexec lockdown bypass with ima policy,
Eric Snowberg
- [PATCH AUTOSEL 5.4 01/16] Revert "evm: Fix memleak in init_desc", Sasha Levin
- [PATCH AUTOSEL 5.10 01/25] Revert "evm: Fix memleak in init_desc", Sasha Levin
- [PATCH AUTOSEL 5.15 01/42] Revert "evm: Fix memleak in init_desc", Sasha Levin
- [PATCH AUTOSEL 5.18 01/54] Revert "evm: Fix memleak in init_desc", Sasha Levin
- [PATCH] lockdown: Fix kexec lockdown bypass with ima policy,
Eric Snowberg
- [PATCH 1/1] ci/alpine.sh: Install bash,
Petr Vorel
- [GIT PULL] integrity: subsystem fixes for v5.19,
Mimi Zohar
- [PATCH v10 0/4] unify the keyrings of arm64 and s390 with x86 to verify kexec'ed kernel signature,
Coiby Xu
- [zohar-integrity:next-integrity-testing 4/6] security/integrity/ima/ima_efi.c:72:25: error: implicit declaration of function 'set_kexec_sig_enforced'; did you mean 'set_module_sig_enforced'?, kernel test robot
- [zohar-integrity:next-integrity-testing 4/6] security/integrity/ima/ima_efi.c:72:4: error: call to undeclared function 'set_kexec_sig_enforced'; ISO C99 and later do not support implicit function declarations, kernel test robot
- [PATCH] ima: force signature verification when CONFIG_KEXEC_SIG is configured,
Coiby Xu
- [PATCH v2] ima/evm: Fix potential memory leak in ima_init_crypto(),
Jianglei Nie
- [PATCH V2] tpm: eventlog: Fix section mismatch for DEBUG_SECTION_MISMATCH,
Huacai Chen
- [RFC PATCH 0/7] ima: Support measurement of kexec initramfs components,
Jonathan McDowell
- [PATCH v6 0/6] tpm: Preserve TPM measurement log across kexec (ppc64),
Stefan Berger
- [PATCH v13 00/26] ima: Namespace IMA with audit support in IMA-ns,
Stefan Berger
- [PATCH v13 20/26] ima: Remove unused iints from the integrity_iint_cache, Stefan Berger
- [PATCH v13 13/26] userns: Add pointer to ima_namespace to user_namespace, Stefan Berger
- [PATCH v13 26/26] ima: Enable IMA namespaces, Stefan Berger
- [PATCH v13 14/26] ima: Implement hierarchical processing of file accesses, Stefan Berger
- [PATCH v13 24/26] ima: Limit number of policy rules in non-init_ima_ns, Stefan Berger
- [PATCH v13 25/26] ima: Restrict informational audit messages to init_ima_ns, Stefan Berger
- [PATCH v13 12/26] ima: Only accept AUDIT rules for non-init_ima_ns namespaces for now, Stefan Berger
- [PATCH v13 03/26] ima: Define ima_namespace struct and start moving variables into it, Stefan Berger
- [PATCH v13 19/26] ima: Namespace audit status flags, Stefan Berger
- [PATCH v13 05/26] ima: Move ima_htable into ima_namespace, Stefan Berger
- [PATCH v13 11/26] ima: Define mac_admin_ns_capable() as a wrapper for ns_capable(), Stefan Berger
- [PATCH v13 17/26] integrity/ima: Define ns_status for storing namespaced iint data, Stefan Berger
- [PATCH v13 09/26] ima: Move ima_lsm_policy_notifier into ima_namespace, Stefan Berger
- [PATCH v13 02/26] securityfs: Extend securityfs with namespacing support, Stefan Berger
- [PATCH v13 01/26] securityfs: rework dentry creation, Stefan Berger
- [PATCH v13 16/26] ima: Add functions for creating and freeing of an ima_namespace, Stefan Berger
- [PATCH v13 04/26] ima: Move arch_policy_entry into ima_namespace, Stefan Berger
- [PATCH v13 18/26] integrity: Add optional callback function to integrity_inode_free(), Stefan Berger
- [PATCH v13 07/26] ima: Move some IMA policy and filesystem related variables into ima_namespace, Stefan Berger
- [PATCH v13 22/26] ima: Introduce securityfs file to activate an IMA namespace, Stefan Berger
- [PATCH v13 06/26] ima: Move measurement list related variables into ima_namespace, Stefan Berger
- [PATCH v13 21/26] ima: Setup securityfs for IMA namespace, Stefan Berger
- [PATCH v13 10/26] ima: Switch to lazy lsm policy updates for better performance, Stefan Berger
- [PATCH v13 23/26] ima: Show owning user namespace's uid and gid when displaying policy, Stefan Berger
- [PATCH v13 15/26] ima: Implement ima_free_policy_rules() for freeing of an ima_namespace, Stefan Berger
- [PATCH v13 08/26] ima: Move IMA securityfs files into ima_namespace or onto stack, Stefan Berger
- [linux-next:master] BUILD REGRESSION 088b9c375534d905a4d337c78db3b3bfbb52c4a0,
kernel test robot
- [PATCH] tpm_tis: Hold locality open during probe,
Jason Andryuk
- [PATCH v5 0/6] tpm: Preserve TPM measurement log across kexec (ppc64),
Stefan Berger
- [PATCH v2] ima: fix violation measurement list record,
Mimi Zohar
- [PATCH v3] tpm: Add check for Failure mode for TPM2 modules,
Mårten Lindahl
- [PATCH v2] ima: Fix a potential integer overflow in ima_appraise_measurement,
luhuaxin1
- [PATCH] ima: Fix a potential integer overflow in ima_appraise_measurement,
luhuaxin1
- Re: [PATCH 0/6] i2c: Make remove callback return void,
Uwe Kleine-König
- [PATCH v9 0/4] unify the keyrings of arm64 and s390 with x86 to verify kexec'ed kernel signature,
Coiby Xu
- [PATCH] ima/evm: Fix potential memory leak in ima_init_crypto(),
Jianglei Nie
[Index of Archives]
[Linux Kernel]
[Linux Kernel Hardening]
[Linux NFS]
[Linux NILFS]
[Linux USB Devel]
[Video for Linux]
[Linux SCSI]
[Yosemite Forum]
