Linux Integrity
[Prev Page][Next Page]
- Re: [PATCH 1/3] ima: Remove inode lock, (continued)
- [PATCH] tpm_tis_spi: Pass in ACPI handle during init, Jamie Nguyen
- Problems with TPM timeouts,
Jonathan McDowell
- [syzbot] [integrity?] [lsm?] KMSAN: uninit-value in ima_add_template_entry (2),
syzbot
- [no subject], Unknown
- [syzbot] [integrity?] [lsm?] possible deadlock in process_measurement (4),
syzbot
- Re: [PATCH] dm verity: fallback to platform keyring also if key in trusted keyring is rejected,
Mikulas Patocka
- [PATCH] hwrng: core - Add WARN_ON for buggy read return values,
Herbert Xu
- [PATCH v5 0/5] Lazy flush for the auth session,
Jarkko Sakkinen
- [GIT PULL] KEYS: keys-next-6.12-rc1,
Jarkko Sakkinen
- [PATCH] MAINTAINERS: Add Google Security Chip entry,
tzungbi
- [PATCH v4 0/5] Lazy flush for the auth session,
Jarkko Sakkinen
- Re: [RFC] Proposal: Static SECCOMP Policies,
Maxwell Bland
- [GIT PULL] TPM DEVICE DRIVER: tpmdd-next-6.12-rc1,
Jarkko Sakkinen
- [PATCH v3 0/7] Lazy flush for the auth session,
Jarkko Sakkinen
- [PATCH v2 0/6] lazy flush for the auth session,
Jarkko Sakkinen
- [PATCH 0/4] tpm: lazy flush for the session null key,
Jarkko Sakkinen
[PATCH] tpm: remove file header documentation from tpm2-sessions.c,
Jarkko Sakkinen
[PATCH v11 00/20] x86: Trenchboot secure dynamic launch Linux kernel support,
Ross Philipson
- [PATCH v11 03/20] x86: Secure Launch Resource Table header file, Ross Philipson
- [PATCH v11 01/20] Documentation/x86: Secure Launch kernel documentation, Ross Philipson
- [PATCH v11 04/20] x86: Secure Launch main header file, Ross Philipson
- [PATCH v11 05/20] x86: Add early SHA-1 support for Secure Launch early measurements, Ross Philipson
- [PATCH v11 06/20] x86: Add early SHA-256 support for Secure Launch early measurements, Ross Philipson
- [PATCH v11 07/20] x86/msr: Add variable MTRR base/mask and x2apic ID registers, Ross Philipson
- [PATCH v11 08/20] x86/boot: Place TXT MLE header in the kernel_info section, Ross Philipson
- [PATCH v11 09/20] x86: Secure Launch kernel early boot stub, Ross Philipson
- [PATCH v11 10/20] x86: Secure Launch kernel late boot stub, Ross Philipson
- [PATCH v11 11/20] x86: Secure Launch SMP bringup support, Ross Philipson
- [PATCH v11 12/20] kexec: Secure Launch kexec SEXIT support, Ross Philipson
- [PATCH v11 13/20] x86/reboot: Secure Launch SEXIT support on reboot paths, Ross Philipson
- [PATCH v11 14/20] tpm: Protect against locality counter underflow, Ross Philipson
- [PATCH v11 15/20] tpm: Ensure tpm is in known state at startup, Ross Philipson
- [PATCH v11 16/20] tpm: Make locality requests return consistent values, Ross Philipson
- [PATCH v11 17/20] tpm: Add ability to set the default locality the TPM chip uses, Ross Philipson
- [PATCH v11 18/20] tpm: Add sysfs interface to allow setting and querying the default locality, Ross Philipson
- [PATCH v11 19/20] x86: Secure Launch late initcall platform module, Ross Philipson
- [PATCH v11 20/20] x86/efi: EFI stub DRTM launch support for Secure Launch, Ross Philipson
- [PATCH v11 02/20] x86: Secure Launch Kconfig, Ross Philipson
- Re: [PATCH v11 00/20] x86: Trenchboot secure dynamic launch Linux kernel support, Thomas Gleixner
- Re: [PATCH v11 00/20] x86: Trenchboot secure dynamic launch Linux kernel support, Jarkko Sakkinen
Re: CFP for the containers and checkpoint-restore micro-conference at LPC 2024 mailing/containers, Enrico Bravi
[PATCH v3 00/14] KEYS: Add support for PGP keys and signatures,
Roberto Sassu
- [PATCH v3 01/14] mpi: Introduce mpi_key_length(), Roberto Sassu
- [PATCH v3 02/14] rsa: add parser of raw format, Roberto Sassu
- [PATCH v3 03/14] PGPLIB: PGP definitions (RFC 9580), Roberto Sassu
- [PATCH v3 04/14] PGPLIB: Basic packet parser, Roberto Sassu
- [PATCH v3 05/14] PGPLIB: Signature parser, Roberto Sassu
- [PATCH v3 06/14] KEYS: PGP data parser, Roberto Sassu
- [PATCH v3 07/14] KEYS: Provide PGP key description autogeneration, Roberto Sassu
- [PATCH v3 08/14] KEYS: PGP-based public key signature verification, Roberto Sassu
- [PATCH v3 09/14] KEYS: Retry asym key search with partial ID in restrict_link_by_signature(), Roberto Sassu
- [PATCH v3 10/14] KEYS: Calculate key digest and get signature of the key, Roberto Sassu
- [PATCH v3 11/14] verification: introduce verify_pgp_signature(), Roberto Sassu
- [PATCH v3 12/14] PGP: Provide a key type for testing PGP signatures, Roberto Sassu
- [PATCH v3 13/14] KEYS: Provide a function to load keys from a PGP keyring blob, Roberto Sassu
- [PATCH v3 14/14] KEYS: Introduce load_pgp_public_keyring(), Roberto Sassu
- Re: [PATCH v3 00/14] KEYS: Add support for PGP keys and signatures, Herbert Xu
[PATCH v6] tpm: Add new device/vendor ID 0x50666666,
Jett Rink
[PATCH v3 07/13] LSM: Use lsm_prop in security_current_getsecid, Casey Schaufler
[PATCH v3 10/13] LSM: Create new security_cred_getlsmprop LSM hook, Casey Schaufler
[PATCH v3 08/13] LSM: Use lsm_prop in security_inode_getsecid, Casey Schaufler
Trusted keys: DCP: Unable to handle paging request,
Parthiban
[regression] significant delays when secureboot is enabled since 6.10,
Linux regression tracking (Thorsten Leemhuis)
[PATCH] tpm: Drop explicit initialization of struct i2c_device_id::driver_data to 0,
Uwe Kleine-König
TPM HMAC (really) bad performance,
Roberto Sassu
[PATCH RFC 0/2] tpm: Minor improvements,
Stefan Wahren
[RFC][PATCH v3 00/10] ima: Integrate with Integrity Digest Cache,
Roberto Sassu
- [RFC][PATCH v3 01/10] ima: Introduce hook DIGEST_LIST_CHECK, Roberto Sassu
- [RFC][PATCH v3 02/10] ima: Nest iint mutex for DIGEST_LIST_CHECK hook, Roberto Sassu
- [RFC][PATCH v3 03/10] ima: Add digest_cache policy keyword, Roberto Sassu
- [RFC][PATCH v3 04/10] ima: Add digest_cache_measure/appraise boot-time built-in policies, Roberto Sassu
- [RFC][PATCH v3 05/10] ima: Modify existing boot-time built-in policies with digest cache policies, Roberto Sassu
- [RFC][PATCH v3 06/10] ima: Retrieve digest cache and check if changed, Roberto Sassu
- [RFC][PATCH v3 07/10] ima: Store verified usage in digest cache based on integrity metadata flags, Roberto Sassu
- [RFC][PATCH v3 08/10] ima: Load verified usage from digest cache found from query, Roberto Sassu
- [RFC][PATCH v3 09/10] ima: Use digest caches for measurement, Roberto Sassu
- [RFC][PATCH v3 10/10] ima: Use digest caches for appraisal, Roberto Sassu
[PATCH v5 00/14] integrity: Introduce the Integrity Digest Cache,
Roberto Sassu
- [PATCH v5 01/14] lib: Add TLV parser, Roberto Sassu
- [PATCH v5 03/14] digest_cache: Initialize digest caches, Roberto Sassu
- [PATCH v5 05/14] digest_cache: Add hash tables and operations, Roberto Sassu
- [PATCH v5 04/14] digest_cache: Add securityfs interface, Roberto Sassu
- [PATCH v5 06/14] digest_cache: Populate the digest cache from a digest list, Roberto Sassu
- [PATCH v5 07/14] digest_cache: Parse tlv digest lists, Roberto Sassu
- [PATCH v5 08/14] digest_cache: Parse rpm digest lists, Roberto Sassu
- [PATCH v5 09/14] digest_cache: Add management of verification data, Roberto Sassu
- [PATCH v5 10/14] digest_cache: Add support for directories, Roberto Sassu
- [PATCH v5 11/14] digest cache: Prefetch digest lists if requested, Roberto Sassu
- [PATCH v5 12/14] digest_cache: Reset digest cache on file/directory change, Roberto Sassu
- [PATCH v5 13/14] selftests/digest_cache: Add selftests for the Integrity Digest Cache, Roberto Sassu
- [PATCH v5 14/14] docs: Add documentation of the Integrity Digest Cache, Roberto Sassu
- [PATCH v5 02/14] integrity: Introduce the Integrity Digest Cache, Roberto Sassu
- Re: [PATCH v5 00/14] integrity: Introduce the Integrity Digest Cache, Dr. Greg
[PATCH v2 RESEND] tpm: export tpm2_sessions_init() to fix ibmvtpm building,
Kexy Biscuit
Re: [PATCH] fs: don't block i_writecount during exec,
Jann Horn
[PATCH v2 10/13] LSM: Create new security_cred_getlsmblob LSM hook,
Casey Schaufler
[PATCH v2 07/13] LSM: Use lsmblob in security_current_getsecid, Casey Schaufler
[PATCH v2 08/13] LSM: Use lsmblob in security_inode_getsecid, Casey Schaufler
[PATCH 1/2] MAINTAINERS: Add selftest files to TPM section,
Michal Suchanek
[GIT PULL] TPM DEVICE DRIVER: tpmdd-next-6.11-rc6,
Jarkko Sakkinen
[PATCH v10 00/20] x86: Trenchboot secure dynamic launch Linux kernel support,
Ross Philipson
- [PATCH v10 02/20] x86: Secure Launch Kconfig, Ross Philipson
- [PATCH v10 03/20] x86: Secure Launch Resource Table header file, Ross Philipson
- [PATCH v10 05/20] x86: Add early SHA-1 support for Secure Launch early measurements, Ross Philipson
- [PATCH v10 06/20] x86: Add early SHA-256 support for Secure Launch early measurements, Ross Philipson
- [PATCH v10 07/20] x86/msr: Add variable MTRR base/mask and x2apic ID registers, Ross Philipson
- [PATCH v10 01/20] Documentation/x86: Secure Launch kernel documentation, Ross Philipson
- [PATCH v10 08/20] x86/boot: Place TXT MLE header in the kernel_info section, Ross Philipson
- [PATCH v10 10/20] x86: Secure Launch kernel late boot stub, Ross Philipson
- [PATCH v10 11/20] x86: Secure Launch SMP bringup support, Ross Philipson
- [PATCH v10 09/20] x86: Secure Launch kernel early boot stub, Ross Philipson
- [PATCH v10 12/20] kexec: Secure Launch kexec SEXIT support, Ross Philipson
- [PATCH v10 13/20] x86/reboot: Secure Launch SEXIT support on reboot paths, Ross Philipson
- [PATCH v10 14/20] tpm: Protect against locality counter underflow, Ross Philipson
- [PATCH v10 15/20] tpm: Ensure tpm is in known state at startup, Ross Philipson
- [PATCH v10 16/20] tpm: Make locality requests return consistent values, Ross Philipson
- [PATCH v10 17/20] tpm: Add ability to set the default locality the TPM chip uses, Ross Philipson
- [PATCH v10 18/20] tpm: Add sysfs interface to allow setting and querying the default locality, Ross Philipson
- [PATCH v10 19/20] x86: Secure Launch late initcall platform module, Ross Philipson
- [PATCH v10 20/20] x86/efi: EFI stub DRTM launch support for Secure Launch, Ross Philipson
- [PATCH v10 04/20] x86: Secure Launch main header file, Ross Philipson
TPM selftests require TPM2 but do not check for the requirement, Michal Suchánek
[PATCH 10/13] LSM: Create new security_cred_getlsmblob LSM hook,
Casey Schaufler
[PATCH 08/13] LSM: Use lsmblob in security_inode_getsecid, Casey Schaufler
[PATCH 07/13] LSM: Use lsmblob in security_current_getsecid,
Casey Schaufler
WARNING in process_measurement,
Xingyu Li
[PATCH v2 00/14] KEYS: Add support for PGP keys and signatures,
Roberto Sassu
- [PATCH v2 02/14] rsa: add parser of raw format, Roberto Sassu
- [PATCH v2 01/14] mpi: Introduce mpi_key_length(), Roberto Sassu
- [PATCH v2 03/14] PGPLIB: PGP definitions (RFC 4880), Roberto Sassu
- [PATCH v2 04/14] PGPLIB: Basic packet parser, Roberto Sassu
- [PATCH v2 05/14] PGPLIB: Signature parser, Roberto Sassu
- [PATCH v2 06/14] KEYS: PGP data parser, Roberto Sassu
- [PATCH v2 07/14] KEYS: Provide PGP key description autogeneration, Roberto Sassu
- [PATCH v2 09/14] KEYS: Retry asym key search with partial ID in restrict_link_by_signature(), Roberto Sassu
- [PATCH v2 08/14] KEYS: PGP-based public key signature verification, Roberto Sassu
- [PATCH v2 10/14] KEYS: Calculate key digest and get signature of the key, Roberto Sassu
- [PATCH v2 11/14] verification: introduce verify_pgp_signature(), Roberto Sassu
- [PATCH v2 12/14] PGP: Provide a key type for testing PGP signatures, Roberto Sassu
- [PATCH v2 13/14] KEYS: Provide a function to load keys from a PGP keyring blob, Roberto Sassu
- [PATCH v2 14/14] KEYS: Introduce load_pgp_public_keyring(), Roberto Sassu
- Re: [PATCH v2 00/14] KEYS: Add support for PGP keys and signatures, Jonathan McDowell
- Re: [PATCH v2 00/14] KEYS: Add support for PGP keys and signatures, Roberto Sassu
- Re: [PATCH v2 00/14] KEYS: Add support for PGP keys and signatures, Jarkko Sakkinen
[GIT PULL] KEYS-TRUSTED: keys-trusted-next-6.11-rc4,
Jarkko Sakkinen
[RFC] [PATCH] tpm: Clean up TPM space after command failure,
Jonathan McDowell
[PATCH][next] integrity: Use static_assert() to check struct sizes,
Gustavo A. R. Silva
[ima-evm-utils PATCH] Add copies of the license text,
Mimi Zohar
[PATCH v2] ima: fix buffer overrun in ima_eventdigest_init_common,
Samasth Norway Ananda
[PATCH v5] tpm: Add new device/vendor ID 0x50666666,
Jett Rink
[PATCH] evm: stop avoidably reading i_writecount in evm_file_release,
Mateusz Guzik
[PATCH v20 00/20] Integrity Policy Enforcement LSM (IPE),
Fan Wu
- [PATCH v20 05/20] initramfs|security: Add a security hook to do_populate_rootfs(), Fan Wu
- [PATCH v20 06/20] ipe: introduce 'boot_verified' as a trust provider, Fan Wu
- [PATCH v20 07/20] security: add new securityfs delete function, Fan Wu
- [PATCH v20 08/20] ipe: add userspace interface, Fan Wu
- [PATCH v20 14/20] security: add security_inode_setintegrity() hook, Fan Wu
- [PATCH v20 09/20] uapi|audit|ipe: add ipe auditing support, Fan Wu
- [PATCH v20 15/20] fsverity: expose verified fsverity built-in signatures to LSMs, Fan Wu
- [PATCH v20 16/20] ipe: enable support for fs-verity as a trust provider, Fan Wu
- [PATCH v20 20/20] MAINTAINERS: ipe: add ipe maintainer information, Fan Wu
- [PATCH v20 11/20] block|lsm: Add LSM blob and new LSM hooks for block devices, Fan Wu
- [PATCH v20 18/20] ipe: kunit test for parser, Fan Wu
- [PATCH v20 10/20] ipe: add permissive toggle, Fan Wu
- [PATCH v20 13/20] ipe: add support for dm-verity as a trust provider, Fan Wu
- [PATCH v20 12/20] dm verity: expose root hash digest and signature data to LSMs, Fan Wu
- [PATCH v20 17/20] scripts: add boot policy generation program, Fan Wu
- [PATCH v20 19/20] Documentation: add ipe documentation, Fan Wu
- [PATCH v20 03/20] ipe: add evaluation loop, Fan Wu
- [PATCH v20 02/20] ipe: add policy parser, Fan Wu
- [PATCH v20 04/20] ipe: add LSM hooks on execution and kernel read, Fan Wu
- [PATCH v20 01/20] security: add ipe lsm, Fan Wu
- Re: [PATCH v20 00/20] Integrity Policy Enforcement LSM (IPE), Paul Moore
[PATCH v4] tpm: Add new device/vendor ID 0x50666666,
Jett Rink
[PATCH v3] tpm: Add new device/vendor ID 0x50666666, Jett Rink
[PATCH 0/8] openssl_tpm2_engine: Add attestation functions for primary keys,
James Bottomley
[PATCH v2] tpm: ibmvtpm: Call tpm2_sessions_init() to initialize session support,
Stefan Berger
[PATCH v1 0/2] Refactor return value of two lsm hooks,
Xu Kuohai
[PATCH v2] tpm: Add new device/vendor ID 0x50666666,
Jett Rink
[GIT PULL] TPM DEVICE DRIVER: tpmdd-next-6.11-rc1-roundtwo,
Jarkko Sakkinen
[PATCH v2 1/2] KEYS: trusted: fix DCP blob payload length assignment,
David Gstir
[PATCH v3] tpm: Relocate buf->handles to appropriate place,
Jarkko Sakkinen
[PATCH v2] tpm: Relocate buf->handles to appropriate place, Jarkko Sakkinen
[PATCH] tpm: Fix alignment of buf->handles, Jarkko Sakkinen
[bug report] tpm: Address !chip->auth in tpm_buf_append_hmac_session*(), Dan Carpenter
[PATCH bpf-next v4 13/20] bpf, lsm: Add check for BPF LSM return value,
Xu Kuohai
[PATCH bpf-next v4 00/20] Add return value range check for BPF LSM,
Xu Kuohai
- [PATCH bpf-next v4 02/20] lsm: Refactor return value of LSM hook inode_need_killpriv, Xu Kuohai
- [PATCH bpf-next v4 05/20] lsm: Refactor return value of LSM hook inode_copy_up_xattr, Xu Kuohai
- [PATCH bpf-next v4 08/20] lsm: Refactor return value of LSM hook getprocattr, Xu Kuohai
- [PATCH bpf-next v4 11/20] bpf, lsm: Add disabled BPF LSM hook list, Xu Kuohai
- [PATCH bpf-next v4 04/20] lsm: Refactor return value of LSM hook inode_listsecurity, Xu Kuohai
- [PATCH bpf-next v4 03/20] lsm: Refactor return value of LSM hook inode_getsecurity, Xu Kuohai
- [PATCH bpf-next v4 01/20] lsm: Refactor return value of LSM hook vm_enough_memory, Xu Kuohai
- [PATCH bpf-next v4 07/20] lsm: Refactor return value of LSM hook setprocattr, Xu Kuohai
- [PATCH bpf-next v4 06/20] lsm: Refactor return value of LSM hook getselfattr, Xu Kuohai
- [PATCH bpf-next v4 10/20] lsm: Refactor return value of LSM hook audit_rule_match, Xu Kuohai
- [PATCH bpf-next v4 09/20] lsm: Refactor return value of LSM hook key_getsecurity, Xu Kuohai
- [PATCH bpf-next v4 12/20] bpf, lsm: Enable BPF LSM prog to read/write return value parameters, Xu Kuohai
- Re: [PATCH bpf-next v4 00/20] Add return value range check for BPF LSM, Paul Moore
- Re: [PATCH bpf-next v4 00/20] Add return value range check for BPF LSM, Paul Moore
[PATCH] tpm: Move dereference after NULL check in tpm_buf_check_hmac_response,
Hao Ge
[PATCH] tpm: validate object type in tpm2_handle_mso(),
Jarkko Sakkinen
[GIT PULL] integrity: subsystem update for v6.10-rcX,
Mimi Zohar
[GIT PULL] TPM DEVICE DRIVER: tpmdd-next-6.10-rc7,
Jarkko Sakkinen
[RFC PATCH v19 0/5] Script execution control (was O_MAYEXEC),
Mickaël Salaün
[Index of Archives]
[Linux Kernel]
[Linux Kernel Hardening]
[Linux NFS]
[Linux NILFS]
[Linux USB Devel]
[Video for Linux]
[Linux SCSI]
[Yosemite Forum]
