Linux Integrity
[Prev Page][Next Page]
- Re: [PATCH 4/7] KEYS: Introduce a builtin root of trust key flag, (continued)
- [PATCH v2 0/1] ima: fix boot command line issue,
GUO Zihua
- [PATCH v2] ima: remove the IMA_TEMPLATE Kconfig option,
GUO Zihua
- [PATCH] tpm: cr50: Add new device/vendor ID 0x504a6666,
Jes B. Klinke
- [PATCH 5.15 235/913] KEYS: trusted: Avoid calling null function trusted_key_exit, Greg Kroah-Hartman
- [PATCH 5.16 0248/1017] KEYS: trusted: Avoid calling null function trusted_key_exit, Greg Kroah-Hartman
- [PATCH 5.17 0255/1126] KEYS: trusted: Avoid calling null function trusted_key_exit, Greg Kroah-Hartman
- [PATCH] drivers/char/tpm: Google TPM, additional DID:VID,
Jes Klinke
- PATCH: Google security chip, additional DID:VID,
Jes Klinke
- [PATCH 1/4] tpm: Add tpm_tis_i2c backend for tpm_tis_core,
Johannes Holland
- [PATCH] char: tpm: Prepare cleanup of powerpc's asm/prom.h,
Christophe Leroy
- Progress about SM2-with-SM3 signature support for PKCS #7.,
Guozihua (Scott)
- [PATCH 2/5] integrity: Remove redundant assignments, Michal Orzel
- [PATCH 00/18] bpf: Secure and authenticated preloading of eBPF programs,
Roberto Sassu
- [PATCH 04/18] bpf-preload: Export and call bpf_obj_do_pin_kernel(), Roberto Sassu
- [PATCH 03/18] bpf-preload: Generalize object pinning from the kernel, Roberto Sassu
- [PATCH 01/18] bpf: Export bpf_link_inc(), Roberto Sassu
- [PATCH 02/18] bpf-preload: Move bpf_preload.h to include/linux, Roberto Sassu
- [PATCH 05/18] bpf-preload: Generate static variables, Roberto Sassu
- [PATCH 06/18] bpf-preload: Generate free_objs_and_skel(), Roberto Sassu
- [PATCH 09/18] bpf-preload: Generate code to pin non-internal maps, Roberto Sassu
- [PATCH 08/18] bpf-preload: Generate load_skel(), Roberto Sassu
- [PATCH 07/18] bpf-preload: Generate preload(), Roberto Sassu
- [PATCH 14/18] bpf-preload: Switch to new preload registration method, Roberto Sassu
- [PATCH 11/18] bpf-preload: Store multiple bpf_preload_ops structures in a linked list, Roberto Sassu
- [PATCH 12/18] bpf-preload: Implement new registration method for preloading eBPF programs, Roberto Sassu
- [PATCH 10/18] bpf-preload: Generate bpf_preload_ops, Roberto Sassu
- [PATCH 13/18] bpf-preload: Move pinned links and maps to a dedicated directory in bpffs, Roberto Sassu
- [PATCH 15/18] bpf-preload: Generate code of kernel module to preload, Roberto Sassu
- [PATCH 16/18] bpf-preload: Do kernel mount to ensure that pinned objects don't disappear, Roberto Sassu
- [PATCH 18/18] bpf-preload/selftests: Preload a test eBPF program and check pinned objects, Roberto Sassu
- [PATCH 17/18] bpf-preload/selftests: Add test for automatic generation of preload methods, Roberto Sassu
- Re: [PATCH 00/18] bpf: Secure and authenticated preloading of eBPF programs, Andrii Nakryiko
- Re: [PATCH 00/18] bpf: Secure and authenticated preloading of eBPF programs, Alexei Starovoitov
- [PATCH v7 0/5] ima: support fs-verity digests and signatures,
Mimi Zohar
- [PATCH 5.16 14/37] tpm: Fix error handling in async work, Greg Kroah-Hartman
- [PATCH 5.15 03/37] tpm: Fix error handling in async work, Greg Kroah-Hartman
- [PATCH 5.17 01/39] tpm: Fix error handling in async work, Greg Kroah-Hartman
- [PATCH 5.10 07/38] tpm: Fix error handling in async work, Greg Kroah-Hartman
- [PATCH 5.4 06/29] tpm: Fix error handling in async work, Greg Kroah-Hartman
- [PATCH v2] tpm: Fix regression in tpm_tis_synquacer.c, Johannes Holland
- [PATCH ima-evm-utils] travis: include CentOS stream 8,
Mimi Zohar
- [no subject], Unknown
- [PATCH v2 1/1] ci/GitHub: Remove CentOS 8, Petr Vorel
- [PATCH v1] tpm: Fix regression in tpm_tis_synquacer.c,
Johannes Holland
- [GIT PULL] integrity: subsystem fixes for v5.18,
Mimi Zohar
- [GIT PULL] Add trusted_for(2) (was O_MAYEXEC),
Mickaël Salaün
- [PATCH v4] tpm: Remove read16/read32/write32 calls from tpm_tis_phy_ops,
Johannes Holland
- [PATCH] ima: remove template "ima" as the compiled default,
GUO Zihua
- [PATCH v6 0/5] ima: support fs-verity digests and signatures,
Mimi Zohar
- [PATCH v3] tpm: Remove read16/read32/write32 calls from tpm_tis_phy_ops,
Johannes Holland
- [PATCH -next] tpm: ibmvtpm: Correct the return value in tpm_ibmvtpm_probe(),
Xiu Jianfeng
- [PATCH] tpm/tpm_ftpm_tee: Return true/false (not 1/0) from bool functions,
Haowen Bai
- [PATCH -next] char: tpm: cr50: Fix tpm_cr50_i2c_probe() kernel-doc comment, Yang Li
- [PATCH v6 0/4] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys,
Ahmad Fatoum
- [PATCH v12 0/4] integrity: support including firmware ".platform" keys at build time,
Nayna Jain
- [PATCH 0/2] xen/grant-table: do some cleanup,
Juergen Gross
- [PATCH v33 15/29] LSM: Ensure the correct LSM context releaser, Casey Schaufler
- [PATCH v33 13/29] LSM: Use lsmblob in security_cred_getsecid,
Casey Schaufler
- [PATCH v33 12/29] LSM: Use lsmblob in security_inode_getsecid, Casey Schaufler
- [PATCH v33 11/29] LSM: Use lsmblob in security_current_getsecid, Casey Schaufler
- [PATCH v11 0/4] integrity: support including firmware ".platform" keys at build time,
Nayna Jain
- [LSF/MM/BPF TOPIC] DIGLIM eBPF, Roberto Sassu
- [GIT PULL] TPM DEVICE DRIVER updates for v5.18,
Jarkko Sakkinen
- [PATCH] tpm: use try_get_ops() in tpm-space.c,
James Bottomley
- [PATCH] tpm: Fix memory leak in tpmm_chip_alloc,
GUO Zihua
- [PATCH v10 0/3] integrity: support including firmware ".platform" keys at build time,
Nayna Jain
- [PATCH v9 0/3] integrity: support including firmware ".platform" keys at build time,
Nayna Jain
- [LitExtension] Thank You For Registering For The "Change To Grow" Program, LitExtension Contact Form
- [PATCH v11 00/27] ima: Namespace IMA with audit support in IMA-ns,
Stefan Berger
- [PATCH v11 15/27] ima: Implement hierarchical processing of file accesses, Stefan Berger
- [PATCH v11 16/27] ima: Implement ima_free_policy_rules() for freeing of an ima_namespace, Stefan Berger
- [PATCH v11 25/27] ima: Limit number of policy rules in non-init_ima_ns, Stefan Berger
- [PATCH v11 11/27] ima: Switch to lazy lsm policy updates for better performance, Stefan Berger
- [PATCH v11 10/27] ima: Move ima_lsm_policy_notifier into ima_namespace, Stefan Berger
- [PATCH v11 12/27] ima: Define mac_admin_ns_capable() as a wrapper for ns_capable(), Stefan Berger
- [PATCH v11 18/27] integrity/ima: Define ns_status for storing namespaced iint data, Stefan Berger
- [PATCH v11 21/27] ima: Remove unused iints from the integrity_iint_cache, Stefan Berger
- [PATCH v11 17/27] ima: Add functions for creating and freeing of an ima_namespace, Stefan Berger
- [PATCH v11 27/27] ima: Enable IMA namespaces, Stefan Berger
- [PATCH v11 26/27] ima: Restrict informational audit messages to init_ima_ns, Stefan Berger
- [PATCH v11 01/27] ima: Return error code obtained from securityfs functions, Stefan Berger
- [PATCH v11 19/27] integrity: Add optional callback function to integrity_inode_free(), Stefan Berger
- [PATCH v11 07/27] ima: Move measurement list related variables into ima_namespace, Stefan Berger
- [PATCH v11 23/27] ima: Introduce securityfs file to activate an IMA namespace, Stefan Berger
- [PATCH v11 09/27] ima: Move IMA securityfs files into ima_namespace or onto stack, Stefan Berger
- [PATCH v11 24/27] ima: Show owning user namespace's uid and gid when displaying policy, Stefan Berger
- [PATCH v11 08/27] ima: Move some IMA policy and filesystem related variables into ima_namespace, Stefan Berger
- [PATCH v11 20/27] ima: Namespace audit status flags, Stefan Berger
- [PATCH v11 13/27] ima: Only accept AUDIT rules for non-init_ima_ns namespaces for now, Stefan Berger
- [PATCH v11 06/27] ima: Move ima_htable into ima_namespace, Stefan Berger
- [PATCH v11 05/27] ima: Move arch_policy_entry into ima_namespace, Stefan Berger
- [PATCH v11 03/27] securityfs: Extend securityfs with namespacing support, Stefan Berger
- [PATCH v11 02/27] securityfs: rework dentry creation, Stefan Berger
- [PATCH v11 04/27] ima: Define ima_namespace struct and start moving variables into it, Stefan Berger
- [PATCH v11 14/27] userns: Add pointer to ima_namespace to user_namespace, Stefan Berger
- [PATCH v11 22/27] ima: Setup securityfs for IMA namespace, Stefan Berger
- [PATCH v3 0/9] bpf-lsm: Extend interoperability with IMA,
Roberto Sassu
- [PATCH v3 1/9] ima: Fix documentation-related warnings in ima_main.c, Roberto Sassu
- [PATCH v3 2/9] ima: Always return a file measurement in ima_file_hash(), Roberto Sassu
- [PATCH v3 4/9] selftests/bpf: Move sample generation code to ima_test_common(), Roberto Sassu
- [PATCH v3 3/9] bpf-lsm: Introduce new helper bpf_ima_file_hash(), Roberto Sassu
- [PATCH v3 7/9] bpf-lsm: Make bpf_lsm_kernel_read_file() as sleepable, Roberto Sassu
- [PATCH v3 8/9] selftests/bpf: Add test for bpf_lsm_kernel_read_file(), Roberto Sassu
- [PATCH v3 9/9] selftests/bpf: Check that bpf_kernel_read_file() denies reading IMA policy, Roberto Sassu
- [PATCH v3 6/9] selftests/bpf: Check if the digest is refreshed after a file write, Roberto Sassu
- [PATCH v3 5/9] selftests/bpf: Add test for bpf_ima_file_hash(), Roberto Sassu
- Re: [PATCH v3 0/9] bpf-lsm: Extend interoperability with IMA, Alexei Starovoitov
- Re: [PATCH v3 0/9] bpf-lsm: Extend interoperability with IMA, Mimi Zohar
- Re: [PATCH v3 0/9] bpf-lsm: Extend interoperability with IMA, patchwork-bot+netdevbpf
- [PATCH v9 0/1] This patch fixes a reference count issue in the TPM core code,
Lino Sanfilippo
- [PATCH] ima: remove redundant initialization of pointer 'file'.,
Colin Ian King
- [PATCH v8 0/1] tpm: fix reference counting for struct tpm_chip,
Lino Sanfilippo
- [PATCH v4] syscalls/keyctl09: test encrypted keys with provided decrypted data.,
Yael Tzur
- [PATCH] MAINTAINERS: add missing security/integrity/platform_certs,
Mimi Zohar
- Unintended file entry addition in commit 7ed88a03b15b ("certs: Check that builtin blacklist hashes are valid")?,
Lukas Bulwahn
- Re: [PATCH v32 05/28] IMA: avoid label collisions with stacked LSMs, Casey Schaufler
- [PATCH] EVM: fix the evm= __setup handler return value,
Randy Dunlap
- [PATCH v5 0/5] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys,
Ahmad Fatoum
- [PATCH v3] syscalls/keyctl09: test encrypted keys with provided decrypted data.,
Yael Tzur
- init_ima() adds 8 % to boot time,
Paul Menzel
- [PATCH v5 00/12] x86: Trenchboot secure dynamic launch Linux kernel support,
Ross Philipson
- [PATCH v5 08/12] x86: Secure Launch SMP bringup support, Ross Philipson
- [PATCH v5 05/12] x86: Add early SHA support for Secure Launch early measurements, Ross Philipson
- [PATCH v5 03/12] x86: Secure Launch Kconfig, Ross Philipson
- [PATCH v5 12/12] tpm: Allow locality 2 to be set when initializing the TPM for Secure Launch, Ross Philipson
- [PATCH v5 07/12] x86: Secure Launch kernel late boot stub, Ross Philipson
- [PATCH v5 10/12] reboot: Secure Launch SEXIT support on reboot paths, Ross Philipson
- [PATCH v5 04/12] x86: Secure Launch main header file, Ross Philipson
- [PATCH v5 09/12] kexec: Secure Launch kexec SEXIT support, Ross Philipson
- [PATCH v5 06/12] x86: Secure Launch kernel early boot stub, Ross Philipson
- [PATCH v5 11/12] x86: Secure Launch late initcall platform module, Ross Philipson
- [PATCH v5 02/12] Documentation/x86: Secure Launch kernel documentation, Ross Philipson
- [PATCH v5 01/12] x86/boot: Place kernel_info at a fixed offset, Ross Philipson
- Re: [PATCH v5 00/12] x86: Trenchboot secure dynamic launch Linux kernel support, Dave Hansen
- [PATCH v5] KEYS: encrypted: Instantiate key with user-provided decrypted data,
Yael Tzur
- [PATCH v2 0/6] bpf-lsm: Extend interoperability with IMA,
Roberto Sassu
- [PATCH 1/1] ci: Remove CentOS 8,
Petr Vorel
- [PATCH v5 0/8] ima: support fs-verity digests and signatures,
Mimi Zohar
- [PATCH] ima: Calculate digest in ima_inode_hash() if not available,
Roberto Sassu
- [PATCH] efi: Do not import certificates from UEFI Secure Boot for T2 Macs,
Aditya Garg
- Problem with commit ccf11dbaa07b ("evm: Fix memleak in init_desc"),
Guozihua (Scott)
- [PATCH v2 0/2] Fix bugs in public_key_verify_signature(),
Eric Biggers
- [PATCH v4 0/8] ima: support fs-verity digests and signatures,
Mimi Zohar
- [ANNOUNCE][CFP] Linux Security Summit North America 2022,
James Morris
- [GIT PULL] integrity: subsystem fixes for v5.17,
Mimi Zohar
- [PATCH] KEYS: trusted: fix crash when TPM/TEE are built as module,
Tong Zhang
- [PATCH v32 15/28] LSM: Ensure the correct LSM context releaser, Casey Schaufler
- [PATCH v32 13/28] LSM: Use lsmblob in security_cred_getsecid, Casey Schaufler
- [PATCH v32 12/28] LSM: Use lsmblob in security_inode_getsecid, Casey Schaufler
- [PATCH v32 11/28] LSM: Use lsmblob in security_current_getsecid, Casey Schaufler
- [RFC PATCH] KEYS: Double max_size to make keyctl pkey_verify work,
Vitaly Chikunov
- [PATCH v10 00/27] ima: Namespace IMA with audit support in IMA-ns,
Stefan Berger
- [PATCH v10 03/27] ima: Return error code obtained from securityfs functions, Stefan Berger
- [PATCH v10 26/27] ima: Limit number of policy rules in non-init_ima_ns, Stefan Berger
- [PATCH v10 21/27] ima: Remove unused iints from the integrity_iint_cache, Stefan Berger
- [PATCH v10 18/27] integrity/ima: Define ns_status for storing namespaced iint data, Stefan Berger
- [PATCH v10 01/27] ima: Remove ima_policy file before directory, Stefan Berger
- [PATCH v10 11/27] ima: Move ima_lsm_policy_notifier into ima_namespace, Stefan Berger
- [PATCH v10 23/27] ima: Setup securityfs for IMA namespace, Stefan Berger
- [PATCH v10 06/27] ima: Move arch_policy_entry into ima_namespace, Stefan Berger
- [PATCH v10 07/27] ima: Move ima_htable into ima_namespace, Stefan Berger
- [PATCH v10 19/27] integrity: Add optional callback function to integrity_inode_free(), Stefan Berger
- [PATCH v10 13/27] ima: Only accept AUDIT rules for non-init_ima_ns namespaces for now, Stefan Berger
- [PATCH v10 12/27] ima: Define mac_admin_ns_capable() as a wrapper for ns_capable(), Stefan Berger
- [PATCH v10 22/27] securityfs: Extend securityfs with namespacing support, Stefan Berger
- [PATCH v10 20/27] ima: Namespace audit status flags, Stefan Berger
- [PATCH v10 27/27] ima: Enable IMA namespaces, Stefan Berger
- [PATCH v10 17/27] ima: Add functions for creating and freeing of an ima_namespace, Stefan Berger
- [PATCH v10 10/27] ima: Move IMA securityfs files into ima_namespace or onto stack, Stefan Berger
- [PATCH v10 24/27] ima: Introduce securityfs file to activate an IMA namespace, Stefan Berger
- [PATCH v10 15/27] ima: Implement hierarchical processing of file accesses, Stefan Berger
- [PATCH v10 05/27] ima: Define ima_namespace struct and start moving variables into it, Stefan Berger
- [PATCH v10 08/27] ima: Move measurement list related variables into ima_namespace, Stefan Berger
- [PATCH v10 16/27] ima: Implement ima_free_policy_rules() for freeing of an ima_namespace, Stefan Berger
- [PATCH v10 09/27] ima: Move some IMA policy and filesystem related variables into ima_namespace, Stefan Berger
- [PATCH v10 14/27] userns: Add pointer to ima_namespace to user_namespace, Stefan Berger
- [PATCH v10 25/27] ima: Show owning user namespace's uid and gid when displaying policy, Stefan Berger
- [PATCH v10 04/27] securityfs: rework dentry creation, Stefan Berger
- [PATCH v10 02/27] ima: Do not print policy rule with inactive LSM labels, Stefan Berger
- Re: [PATCH v10 00/27] ima: Namespace IMA with audit support in IMA-ns, Christian Brauner
- [PATCH 0/2] Fix bugs in public_key_verify_signature(),
Eric Biggers
- [PATCH] ima: Allow template selection with ima_template[_fmt]= after ima_hash=,
Roberto Sassu
- [RFC][PATCH v3a 00/11] ima: support fs-verity digests and signatures (alternative),
Roberto Sassu
[Index of Archives]
[Linux Kernel]
[Linux Kernel Hardening]
[Linux NFS]
[Linux NILFS]
[Linux USB Devel]
[Video for Linux]
[Linux SCSI]
[Yosemite Forum]
