Linux Integrity
[Prev Page][Next Page]
- Re: [RFC PATCH 0/4] Alternative TPM patches for Trenchboot, (continued)
- [syzbot] [integrity?] [lsm?] [erofs?] INFO: task hung in ima_file_free (4), syzbot
- [no subject], Unknown
- [PATCH 1/2] ima_boot_aggregate: Fix openssl 3.0 deprecation warnings,
Petr Vorel
- [PATCH v3] tpm: Lock TPM chip in tpm_pm_suspend() first,
Jarkko Sakkinen
- [PATCH v2] tpm: Lock TPM chip in tpm_pm_suspend() first, Jarkko Sakkinen
- [no subject], Unknown
- [PATCH] tpm: set TPM_CHIP_FLAG_SUSPENDED early,
Jarkko Sakkinen
- [GIT PULL] TPM DEVICE DRIVER: tpmdd-next-6.12-rc6,
Jarkko Sakkinen
- [PATCH v8 0/3] Lazy flush for the auth session,
Jarkko Sakkinen
- [PATCH] mailmap: update email addresses, Jarkko Sakkinen
- [REGRESSION][BISECTED] tpm: Popping noise in USB headphones since 1b6d7f9eb150,
Christian Heusel
- [PATCH v1] tpm: tis_i2c: add ST33KTPM2XI2C compatible entry, Heiko Schocher
- [PATCH v3 1/5] LSM: Ensure the correct LSM context releaser,
Casey Schaufler
- Re: [Bug 219383] New: System reboot on S3 sleep/wakeup test,
Borislav Petkov
- [PATCH v7 0/5] Lazy flush for the auth session,
Jarkko Sakkinen
- [PATCH v2] mm: Split critical region in remap_file_pages() and invoke LSMs in between,
Roberto Sassu
- [RFC][PATCH] mm: Split locks in remap_file_pages(),
Roberto Sassu
- [RFC PATCH v3 00/13] Clavis LSM,
Eric Snowberg
- [RFC PATCH v3 04/13] keys: Add new verification type (VERIFYING_CLAVIS_SIGNATURE), Eric Snowberg
- [RFC PATCH v3 12/13] clavis: Add function redirection for Kunit support, Eric Snowberg
- [RFC PATCH v3 06/13] clavis: Populate clavis keyring acl with kernel module signature, Eric Snowberg
- [RFC PATCH v3 03/13] clavis: Introduce a new system keyring called clavis, Eric Snowberg
- [RFC PATCH v3 05/13] clavis: Introduce a new key type called clavis_key_acl, Eric Snowberg
- [RFC PATCH v3 11/13] clavis: Prevent boot param change during kexec, Eric Snowberg
- [RFC PATCH v3 02/13] certs: Introduce ability to link to a system key, Eric Snowberg
- [RFC PATCH v3 10/13] efi: Make clavis boot param persist across kexec, Eric Snowberg
- [RFC PATCH v3 09/13] clavis: Allow user to define acl at build time, Eric Snowberg
- [RFC PATCH v3 07/13] keys: Add ability to track intended usage of the public key, Eric Snowberg
- [RFC PATCH v3 13/13] clavis: Kunit support, Eric Snowberg
- [RFC PATCH v3 08/13] clavis: Introduce new LSM called clavis, Eric Snowberg
- [RFC PATCH v3 01/13] certs: Remove CONFIG_INTEGRITY_PLATFORM_KEYRING check, Eric Snowberg
- Re: [RFC PATCH v3 00/13] Clavis LSM, Mimi Zohar
- [PATCH v6 5/5] tpm: flush the auth session only when /dev/tpm0 is open,
Jarkko Sakkinen
- [PATCH v6 4/5] tpm: Allocate chip->auth in tpm2_start_auth_session(), Jarkko Sakkinen
- [PATCH v6 3/5] tpm: flush the null key only when /dev/tpm0 is accessed, Jarkko Sakkinen
- [PATCH v6 2/5] tpm: Implement tpm2_load_null() rollback, Jarkko Sakkinen
- [PATCH v6 1/5] tpm: Return on tpm2_create_null_primary() failure,
Jarkko Sakkinen
- [RFC PATCH] tpm: Allow the TPM2 pcr_extend HMAC capability to be disabled on boot,
Mimi Zohar
- [PATCH v2 1/6] LSM: Ensure the correct LSM context releaser,
Casey Schaufler
- [PATCH] tpm: ibmvtpm: Set TPM_OPS_AUTO_STARTUP flag on driver,
Stefan Berger
- [PATCH v20 0/6] Script execution control (was O_MAYEXEC),
Mickaël Salaün
- [PATCH] ima: Suspend PCR extends and log appends when rebooting,
Stefan Berger
- [PATCH v4 10/13] LSM: Create new security_cred_getlsmprop LSM hook, Casey Schaufler
- [PATCH v4 08/13] LSM: Use lsm_prop in security_inode_getsecid, Casey Schaufler
- [PATCH v4 07/13] LSM: Use lsm_prop in security_current_getsecid, Casey Schaufler
- Possible overflow of TPM log,
Usama Arif
- [PATCH] ima: Fix OOB read when violation occurs with ima template.,
David Fernandez Gonzalez
- Re: [RFC] efi/tpm: add efi.tpm_log as a reserved region in 820_table_firmware,
Jonathan McDowell
- [PATCH 1/3] ima: Remove inode lock,
Roberto Sassu
- [PATCH] tpm_tis_spi: Pass in ACPI handle during init, Jamie Nguyen
- Problems with TPM timeouts,
Jonathan McDowell
- [syzbot] [integrity?] [lsm?] KMSAN: uninit-value in ima_add_template_entry (2),
syzbot
- [no subject], Unknown
- [syzbot] [integrity?] [lsm?] possible deadlock in process_measurement (4),
syzbot
- Re: [PATCH] dm verity: fallback to platform keyring also if key in trusted keyring is rejected,
Mikulas Patocka
- [PATCH] hwrng: core - Add WARN_ON for buggy read return values,
Herbert Xu
- [PATCH v5 0/5] Lazy flush for the auth session,
Jarkko Sakkinen
- [GIT PULL] KEYS: keys-next-6.12-rc1,
Jarkko Sakkinen
- [PATCH] MAINTAINERS: Add Google Security Chip entry,
tzungbi
- [PATCH v4 0/5] Lazy flush for the auth session,
Jarkko Sakkinen
- Re: [RFC] Proposal: Static SECCOMP Policies,
Maxwell Bland
- [GIT PULL] TPM DEVICE DRIVER: tpmdd-next-6.12-rc1,
Jarkko Sakkinen
- [PATCH v3 0/7] Lazy flush for the auth session,
Jarkko Sakkinen
- [PATCH v2 0/6] lazy flush for the auth session,
Jarkko Sakkinen
- [PATCH 0/4] tpm: lazy flush for the session null key,
Jarkko Sakkinen
[PATCH] tpm: remove file header documentation from tpm2-sessions.c,
Jarkko Sakkinen
[PATCH v11 00/20] x86: Trenchboot secure dynamic launch Linux kernel support,
Ross Philipson
- [PATCH v11 03/20] x86: Secure Launch Resource Table header file, Ross Philipson
- [PATCH v11 01/20] Documentation/x86: Secure Launch kernel documentation, Ross Philipson
- [PATCH v11 04/20] x86: Secure Launch main header file, Ross Philipson
- [PATCH v11 05/20] x86: Add early SHA-1 support for Secure Launch early measurements, Ross Philipson
- [PATCH v11 06/20] x86: Add early SHA-256 support for Secure Launch early measurements, Ross Philipson
- [PATCH v11 07/20] x86/msr: Add variable MTRR base/mask and x2apic ID registers, Ross Philipson
- [PATCH v11 08/20] x86/boot: Place TXT MLE header in the kernel_info section, Ross Philipson
- [PATCH v11 09/20] x86: Secure Launch kernel early boot stub, Ross Philipson
- [PATCH v11 10/20] x86: Secure Launch kernel late boot stub, Ross Philipson
- [PATCH v11 11/20] x86: Secure Launch SMP bringup support, Ross Philipson
- [PATCH v11 12/20] kexec: Secure Launch kexec SEXIT support, Ross Philipson
- [PATCH v11 13/20] x86/reboot: Secure Launch SEXIT support on reboot paths, Ross Philipson
- [PATCH v11 14/20] tpm: Protect against locality counter underflow, Ross Philipson
- [PATCH v11 15/20] tpm: Ensure tpm is in known state at startup, Ross Philipson
- [PATCH v11 16/20] tpm: Make locality requests return consistent values, Ross Philipson
- [PATCH v11 17/20] tpm: Add ability to set the default locality the TPM chip uses, Ross Philipson
- [PATCH v11 18/20] tpm: Add sysfs interface to allow setting and querying the default locality, Ross Philipson
- [PATCH v11 19/20] x86: Secure Launch late initcall platform module, Ross Philipson
- [PATCH v11 20/20] x86/efi: EFI stub DRTM launch support for Secure Launch, Ross Philipson
- [PATCH v11 02/20] x86: Secure Launch Kconfig, Ross Philipson
- Re: [PATCH v11 00/20] x86: Trenchboot secure dynamic launch Linux kernel support, Thomas Gleixner
- Re: [PATCH v11 00/20] x86: Trenchboot secure dynamic launch Linux kernel support, Jarkko Sakkinen
Re: CFP for the containers and checkpoint-restore micro-conference at LPC 2024 mailing/containers, Enrico Bravi
[PATCH v3 00/14] KEYS: Add support for PGP keys and signatures,
Roberto Sassu
- [PATCH v3 01/14] mpi: Introduce mpi_key_length(), Roberto Sassu
- [PATCH v3 02/14] rsa: add parser of raw format, Roberto Sassu
- [PATCH v3 03/14] PGPLIB: PGP definitions (RFC 9580), Roberto Sassu
- [PATCH v3 04/14] PGPLIB: Basic packet parser, Roberto Sassu
- [PATCH v3 05/14] PGPLIB: Signature parser, Roberto Sassu
- [PATCH v3 06/14] KEYS: PGP data parser, Roberto Sassu
- [PATCH v3 07/14] KEYS: Provide PGP key description autogeneration, Roberto Sassu
- [PATCH v3 08/14] KEYS: PGP-based public key signature verification, Roberto Sassu
- [PATCH v3 09/14] KEYS: Retry asym key search with partial ID in restrict_link_by_signature(), Roberto Sassu
- [PATCH v3 10/14] KEYS: Calculate key digest and get signature of the key, Roberto Sassu
- [PATCH v3 11/14] verification: introduce verify_pgp_signature(), Roberto Sassu
- [PATCH v3 12/14] PGP: Provide a key type for testing PGP signatures, Roberto Sassu
- [PATCH v3 13/14] KEYS: Provide a function to load keys from a PGP keyring blob, Roberto Sassu
- [PATCH v3 14/14] KEYS: Introduce load_pgp_public_keyring(), Roberto Sassu
- Re: [PATCH v3 00/14] KEYS: Add support for PGP keys and signatures, Herbert Xu
[PATCH v6] tpm: Add new device/vendor ID 0x50666666,
Jett Rink
[PATCH v3 07/13] LSM: Use lsm_prop in security_current_getsecid, Casey Schaufler
[PATCH v3 10/13] LSM: Create new security_cred_getlsmprop LSM hook, Casey Schaufler
[PATCH v3 08/13] LSM: Use lsm_prop in security_inode_getsecid, Casey Schaufler
Trusted keys: DCP: Unable to handle paging request,
Parthiban
[regression] significant delays when secureboot is enabled since 6.10,
Linux regression tracking (Thorsten Leemhuis)
[PATCH] tpm: Drop explicit initialization of struct i2c_device_id::driver_data to 0,
Uwe Kleine-König
TPM HMAC (really) bad performance,
Roberto Sassu
[PATCH RFC 0/2] tpm: Minor improvements,
Stefan Wahren
[RFC][PATCH v3 00/10] ima: Integrate with Integrity Digest Cache,
Roberto Sassu
- [RFC][PATCH v3 01/10] ima: Introduce hook DIGEST_LIST_CHECK, Roberto Sassu
- [RFC][PATCH v3 02/10] ima: Nest iint mutex for DIGEST_LIST_CHECK hook, Roberto Sassu
- [RFC][PATCH v3 03/10] ima: Add digest_cache policy keyword, Roberto Sassu
- [RFC][PATCH v3 04/10] ima: Add digest_cache_measure/appraise boot-time built-in policies, Roberto Sassu
- [RFC][PATCH v3 05/10] ima: Modify existing boot-time built-in policies with digest cache policies, Roberto Sassu
- [RFC][PATCH v3 06/10] ima: Retrieve digest cache and check if changed, Roberto Sassu
- [RFC][PATCH v3 07/10] ima: Store verified usage in digest cache based on integrity metadata flags, Roberto Sassu
- [RFC][PATCH v3 08/10] ima: Load verified usage from digest cache found from query, Roberto Sassu
- [RFC][PATCH v3 09/10] ima: Use digest caches for measurement, Roberto Sassu
- [RFC][PATCH v3 10/10] ima: Use digest caches for appraisal, Roberto Sassu
[PATCH v5 00/14] integrity: Introduce the Integrity Digest Cache,
Roberto Sassu
- [PATCH v5 01/14] lib: Add TLV parser, Roberto Sassu
- [PATCH v5 03/14] digest_cache: Initialize digest caches, Roberto Sassu
- [PATCH v5 05/14] digest_cache: Add hash tables and operations, Roberto Sassu
- [PATCH v5 04/14] digest_cache: Add securityfs interface, Roberto Sassu
- [PATCH v5 06/14] digest_cache: Populate the digest cache from a digest list, Roberto Sassu
- [PATCH v5 07/14] digest_cache: Parse tlv digest lists, Roberto Sassu
- [PATCH v5 08/14] digest_cache: Parse rpm digest lists, Roberto Sassu
- [PATCH v5 09/14] digest_cache: Add management of verification data, Roberto Sassu
- [PATCH v5 10/14] digest_cache: Add support for directories, Roberto Sassu
- [PATCH v5 11/14] digest cache: Prefetch digest lists if requested, Roberto Sassu
- [PATCH v5 12/14] digest_cache: Reset digest cache on file/directory change, Roberto Sassu
- [PATCH v5 13/14] selftests/digest_cache: Add selftests for the Integrity Digest Cache, Roberto Sassu
- [PATCH v5 14/14] docs: Add documentation of the Integrity Digest Cache, Roberto Sassu
- [PATCH v5 02/14] integrity: Introduce the Integrity Digest Cache, Roberto Sassu
- Re: [PATCH v5 00/14] integrity: Introduce the Integrity Digest Cache, Dr. Greg
[PATCH v2 RESEND] tpm: export tpm2_sessions_init() to fix ibmvtpm building,
Kexy Biscuit
Re: [PATCH] fs: don't block i_writecount during exec,
Jann Horn
[PATCH v2 10/13] LSM: Create new security_cred_getlsmblob LSM hook,
Casey Schaufler
[PATCH v2 07/13] LSM: Use lsmblob in security_current_getsecid, Casey Schaufler
[PATCH v2 08/13] LSM: Use lsmblob in security_inode_getsecid, Casey Schaufler
[PATCH 1/2] MAINTAINERS: Add selftest files to TPM section,
Michal Suchanek
[GIT PULL] TPM DEVICE DRIVER: tpmdd-next-6.11-rc6,
Jarkko Sakkinen
[PATCH v10 00/20] x86: Trenchboot secure dynamic launch Linux kernel support,
Ross Philipson
- [PATCH v10 02/20] x86: Secure Launch Kconfig, Ross Philipson
- [PATCH v10 03/20] x86: Secure Launch Resource Table header file, Ross Philipson
- [PATCH v10 05/20] x86: Add early SHA-1 support for Secure Launch early measurements, Ross Philipson
- [PATCH v10 06/20] x86: Add early SHA-256 support for Secure Launch early measurements, Ross Philipson
- [PATCH v10 07/20] x86/msr: Add variable MTRR base/mask and x2apic ID registers, Ross Philipson
- [PATCH v10 01/20] Documentation/x86: Secure Launch kernel documentation, Ross Philipson
- [PATCH v10 08/20] x86/boot: Place TXT MLE header in the kernel_info section, Ross Philipson
- [PATCH v10 10/20] x86: Secure Launch kernel late boot stub, Ross Philipson
- [PATCH v10 11/20] x86: Secure Launch SMP bringup support, Ross Philipson
- [PATCH v10 09/20] x86: Secure Launch kernel early boot stub, Ross Philipson
- [PATCH v10 12/20] kexec: Secure Launch kexec SEXIT support, Ross Philipson
- [PATCH v10 13/20] x86/reboot: Secure Launch SEXIT support on reboot paths, Ross Philipson
- [PATCH v10 14/20] tpm: Protect against locality counter underflow, Ross Philipson
- [PATCH v10 15/20] tpm: Ensure tpm is in known state at startup, Ross Philipson
- [PATCH v10 16/20] tpm: Make locality requests return consistent values, Ross Philipson
- [PATCH v10 17/20] tpm: Add ability to set the default locality the TPM chip uses, Ross Philipson
- [PATCH v10 18/20] tpm: Add sysfs interface to allow setting and querying the default locality, Ross Philipson
- [PATCH v10 19/20] x86: Secure Launch late initcall platform module, Ross Philipson
- [PATCH v10 20/20] x86/efi: EFI stub DRTM launch support for Secure Launch, Ross Philipson
- [PATCH v10 04/20] x86: Secure Launch main header file, Ross Philipson
TPM selftests require TPM2 but do not check for the requirement, Michal Suchánek
[PATCH 10/13] LSM: Create new security_cred_getlsmblob LSM hook,
Casey Schaufler
[PATCH 08/13] LSM: Use lsmblob in security_inode_getsecid, Casey Schaufler
[PATCH 07/13] LSM: Use lsmblob in security_current_getsecid,
Casey Schaufler
WARNING in process_measurement,
Xingyu Li
[PATCH v2 00/14] KEYS: Add support for PGP keys and signatures,
Roberto Sassu
- [PATCH v2 02/14] rsa: add parser of raw format, Roberto Sassu
- [PATCH v2 01/14] mpi: Introduce mpi_key_length(), Roberto Sassu
- [PATCH v2 03/14] PGPLIB: PGP definitions (RFC 4880), Roberto Sassu
- [PATCH v2 04/14] PGPLIB: Basic packet parser, Roberto Sassu
- [PATCH v2 05/14] PGPLIB: Signature parser, Roberto Sassu
- [PATCH v2 06/14] KEYS: PGP data parser, Roberto Sassu
- [PATCH v2 07/14] KEYS: Provide PGP key description autogeneration, Roberto Sassu
- [PATCH v2 09/14] KEYS: Retry asym key search with partial ID in restrict_link_by_signature(), Roberto Sassu
- [PATCH v2 08/14] KEYS: PGP-based public key signature verification, Roberto Sassu
- [PATCH v2 10/14] KEYS: Calculate key digest and get signature of the key, Roberto Sassu
- [PATCH v2 11/14] verification: introduce verify_pgp_signature(), Roberto Sassu
- [PATCH v2 12/14] PGP: Provide a key type for testing PGP signatures, Roberto Sassu
- [PATCH v2 13/14] KEYS: Provide a function to load keys from a PGP keyring blob, Roberto Sassu
- [PATCH v2 14/14] KEYS: Introduce load_pgp_public_keyring(), Roberto Sassu
- Re: [PATCH v2 00/14] KEYS: Add support for PGP keys and signatures, Jonathan McDowell
- Re: [PATCH v2 00/14] KEYS: Add support for PGP keys and signatures, Roberto Sassu
- Re: [PATCH v2 00/14] KEYS: Add support for PGP keys and signatures, Jarkko Sakkinen
[Index of Archives]
[Linux Kernel]
[Linux Kernel Hardening]
[Linux NFS]
[Linux NILFS]
[Linux USB Devel]
[Video for Linux]
[Linux SCSI]
[Yosemite Forum]
