Linux Integrity

Date Index

Re: [PATCH v8 0/5] Enable root to update the blacklist keyring, (continued)
[PATCH] tpm: ibmvtpm: Avoid error message when process gets signal while waiting, Stefan Berger
- Re: [PATCH] tpm: ibmvtpm: Avoid error message when process gets signal while waiting, Nageswara Sastry
- Re: [PATCH] tpm: ibmvtpm: Avoid error message when process gets signal while waiting, Jarkko Sakkinen
  - Re: [PATCH] tpm: ibmvtpm: Avoid error message when process gets signal while waiting, Stefan Berger
    - Re: [PATCH] tpm: ibmvtpm: Avoid error message when process gets signal while waiting, Jarkko Sakkinen
      - Re: [PATCH] tpm: ibmvtpm: Avoid error message when process gets signal while waiting, Stefan Berger
        
        Re: [PATCH] tpm: ibmvtpm: Avoid error message when process gets signal while waiting, Jarkko Sakkinen
        
        Re: [PATCH] tpm: ibmvtpm: Avoid error message when process gets signal while waiting, Stefan Berger
- <Possible follow-ups>
- [PATCH] tpm: ibmvtpm: Avoid error message when process gets signal while waiting, Stefan Berger
  - Re: [PATCH] tpm: ibmvtpm: Avoid error message when process gets signal while waiting, Nageswara Sastry
[PATCH ima-evm-utils v8 0/3] ima-evm-utils: Add --keyid option, Vitaly Chikunov
- [PATCH ima-evm-utils v8 1/3] Allow manual setting keyid for signing, Vitaly Chikunov
- [PATCH ima-evm-utils v8 2/3] Allow manual setting keyid from a cert file, Vitaly Chikunov
- [PATCH ima-evm-utils v8 3/3] Read keyid from the cert appended to the key file, Vitaly Chikunov
  - Re: [PATCH ima-evm-utils v8 3/3] Read keyid from the cert appended to the key file, Mimi Zohar
    - Re: [PATCH ima-evm-utils v8 3/3] Read keyid from the cert appended to the key file, Vitaly Chikunov
      - Re: [PATCH ima-evm-utils v8 3/3] Read keyid from the cert appended to the key file, Mimi Zohar
        
        Re: [PATCH ima-evm-utils v8 3/3] Read keyid from the cert appended to the key file, Vitaly Chikunov
    - Re: [PATCH ima-evm-utils v8 3/3] Read keyid from the cert appended to the key file, Vitaly Chikunov
      - Re: [PATCH ima-evm-utils v8 3/3] Read keyid from the cert appended to the key file, Vitaly Chikunov
      - Re: [PATCH ima-evm-utils v8 3/3] Read keyid from the cert appended to the key file, Mimi Zohar
- Re: [PATCH ima-evm-utils v8 0/3] ima-evm-utils: Add --keyid option, Mimi Zohar
  - Re: [PATCH ima-evm-utils v8 0/3] ima-evm-utils: Add --keyid option, Vitaly Chikunov
[PATCH ima-evm-utils 1/3] CI: Do not install swtpm if it cannot work anyway, Vitaly Chikunov
- [PATCH ima-evm-utils 2/3] CI: Do not use sudo when it does not needed, Vitaly Chikunov
- [PATCH ima-evm-utils 3/3] CI: Add support for ALT Linux, Vitaly Chikunov
- Re: [PATCH ima-evm-utils 1/3] CI: Do not install swtpm if it cannot work anyway, Mimi Zohar
[PATCH] CI: Add GitHub Actions for ALT Linux, Vitaly Chikunov
- Re: [PATCH] CI: Add GitHub Actions for ALT Linux, Vitaly Chikunov
- Re: [PATCH] CI: Add GitHub Actions for ALT Linux, Mimi Zohar
Vacation weeks 28, 29, Jarkko Sakkinen
[no subject], Jarkko Sakkinen
[PATCH ima-evm-utils v2 0/4] libimaevm: Remove digest calculations not supported by IMA, Stefan Berger
- [PATCH ima-evm-utils v2 4/4] libimaevm: Remove calculation of a digest over a symbolic link, Stefan Berger
- [PATCH ima-evm-utils v2 2/4] libimaevm: Remove calculation of a digest over a device file, Stefan Berger
- [PATCH ima-evm-utils v2 1/4] evmctl: Remove filtering support for file types unsupported by IMA, Stefan Berger
- [PATCH ima-evm-utils v2 3/4] libimaevm: Remove calculation of a digest over a directory, Stefan Berger
[PATCH v2] char: tpm: vtpm_proxy: Fix race in init, Saubhik Mukherjee
- Re: [PATCH v2] char: tpm: vtpm_proxy: Fix race in init, Jarkko Sakkinen
- Re: [PATCH v2] char: tpm: vtpm_proxy: Fix race in init, Stefan Berger
[PATCH] efi/tpm: Differentiate missing and invalid final event log table., Michal Suchanek
- Re: [PATCH] efi/tpm: Differentiate missing and invalid final event log table., Jarkko Sakkinen
  - Re: [PATCH] efi/tpm: Differentiate missing and invalid final event log table., Ard Biesheuvel
[PATCH] ima: check control characters in policy path, Tianxing Zhang
Weak hash algorithms allowed with DIGEST_NG, THOBY Simon
- Re: Weak hash algorithms allowed with DIGEST_NG, Mimi Zohar
  - RE: Weak hash algorithms allowed with DIGEST_NG, THOBY Simon
    - Re: Weak hash algorithms allowed with DIGEST_NG, Mimi Zohar
[PATCH RFC 00/12] Enroll kernel keys thru MOK, Eric Snowberg
- [PATCH RFC 02/12] KEYS: Allow unrestricted keys to be moved to the secondary keyring, Eric Snowberg
- [PATCH RFC 05/12] integrity: Introduce mok keyring, Eric Snowberg
  - Re: [PATCH RFC 05/12] integrity: Introduce mok keyring, Linus Torvalds
    - Re: [PATCH RFC 05/12] integrity: Introduce mok keyring, Jarkko Sakkinen
      - Re: [PATCH RFC 05/12] integrity: Introduce mok keyring, Eric Snowberg
- [PATCH RFC 09/12] integrity: accessor function to get trust_moklist, Eric Snowberg
- [PATCH RFC 04/12] integrity: add integrity_destroy_keyring, Eric Snowberg
- [PATCH RFC 03/12] KEYS: CA link restriction, Eric Snowberg
- [PATCH RFC 01/12] KEYS: Add KEY_ALLOC_BYPASS_RESTRICTION option to key_move, Eric Snowberg
- [PATCH RFC 12/12] integrity: Suppress error message for keys added to the mok keyring, Eric Snowberg
- [PATCH RFC 08/12] integrity: restrict INTEGRITY_KEYRING_MOK to restrict_link_by_secondary_trusted_or_ca, Eric Snowberg
- [PATCH RFC 11/12] integrity: move keys from the mok keyring into the secondary keyring, Eric Snowberg
- [PATCH RFC 06/12] integrity: Trust mok keys if MokListTrustedRT found, Eric Snowberg
- [PATCH RFC 07/12] integrity: add add_to_mok_keyring, Eric Snowberg
- [PATCH RFC 10/12] integrity: add new keyring handler, Eric Snowberg
- Re: [PATCH RFC 00/12] Enroll kernel keys thru MOK, Christoph Hellwig
  - Re: [PATCH RFC 00/12] Enroll kernel keys thru MOK, Eric Snowberg
    - Re: [PATCH RFC 00/12] Enroll kernel keys thru MOK, Christoph Hellwig
      - Re: [PATCH RFC 00/12] Enroll kernel keys thru MOK, Eric Snowberg
- Re: [PATCH RFC 00/12] Enroll kernel keys thru MOK, Mimi Zohar
  - Re: [PATCH RFC 00/12] Enroll kernel keys thru MOK, Eric Snowberg
    - Re: [PATCH RFC 00/12] Enroll kernel keys thru MOK, Mimi Zohar
      - Re: [PATCH RFC 00/12] Enroll kernel keys thru MOK, Eric Snowberg
        
        Re: [PATCH RFC 00/12] Enroll kernel keys thru MOK, Mimi Zohar
        
        Re: [PATCH RFC 00/12] Enroll kernel keys thru MOK, Eric Snowberg
        
        Re: [PATCH RFC 00/12] Enroll kernel keys thru MOK, Mimi Zohar
        
        Re: [PATCH RFC 00/12] Enroll kernel keys thru MOK, Eric Snowberg
        
        Re: [PATCH RFC 00/12] Enroll kernel keys thru MOK, Mimi Zohar
        
        Re: [PATCH RFC 00/12] Enroll kernel keys thru MOK, Nayna
[PATCH 1/1] NAX LSM: Add initial support support, Igor Zhbanov
- Re: [PATCH 1/1] NAX LSM: Add initial support support, THOBY Simon
  - Re: [PATCH 1/1] NAX LSM: Add initial support support, J Freyensee
    - Re: [PATCH 1/1] NAX LSM: Add initial support support, THOBY Simon
  - Re: [PATCH 1/1] NAX LSM: Add initial support support, Igor Zhbanov
    - Re: [PATCH 1/1] NAX LSM: Add initial support support, THOBY Simon
      - Re: [PATCH 1/1] NAX LSM: Add initial support support, Igor Zhbanov
        
        Re: [PATCH 1/1] NAX LSM: Add initial support support, THOBY Simon
  - Re: [PATCH 1/1] NAX LSM: Add initial support support, Igor Zhbanov
    - Re: [PATCH 1/1] NAX LSM: Add initial support support, THOBY Simon
      - Re: [PATCH 1/1] NAX LSM: Add initial support support, Igor Zhbanov
        
        Re: [PATCH 1/1] NAX LSM: Add initial support support, THOBY Simon
  - Re: [PATCH 1/1] NAX LSM: Add initial support support, Igor Zhbanov
    - Re: [PATCH 1/1] NAX LSM: Add initial support support, THOBY Simon
[PATCH 0/1] NAX (No Anonymous Execution) LSM, Igor Zhbanov
[PATCH] ima: Support euid keyword for buffer measurement, Roberto Sassu
- Re: [PATCH] ima: Support euid keyword for buffer measurement, Lakshmi Ramasubramanian
  - RE: [PATCH] ima: Support euid keyword for buffer measurement, Roberto Sassu
    - Re: [PATCH] ima: Support euid keyword for buffer measurement, Mimi Zohar
[PATCH v3 0/3] ima: Provide more info about buffer measurement, Roberto Sassu
- [PATCH v3 1/3] ima: Introduce ima_get_current_hash_algo(), Roberto Sassu
- [PATCH v3 2/3] ima: Return int in the functions to measure a buffer, Roberto Sassu
  - Re: [PATCH v3 2/3] ima: Return int in the functions to measure a buffer, Lakshmi Ramasubramanian
  - Re: [PATCH v3 2/3] ima: Return int in the functions to measure a buffer, Mimi Zohar
    - RE: [PATCH v3 2/3] ima: Return int in the functions to measure a buffer, Roberto Sassu
      - Re: [PATCH v3 2/3] ima: Return int in the functions to measure a buffer, Mimi Zohar
- [PATCH v3 3/3] ima: Add digest and digest_len params to the functions to measure a buffer, Roberto Sassu
  - Re: [PATCH v3 3/3] ima: Add digest and digest_len params to the functions to measure a buffer, Lakshmi Ramasubramanian
  - Re: [PATCH v3 3/3] ima: Add digest and digest_len params to the functions to measure a buffer, Paul Moore
  - Re: [PATCH v3 3/3] ima: Add digest and digest_len params to the functions to measure a buffer, Mimi Zohar
[PATCH AUTOSEL 5.12 36/80] ima: Don't remove security.ima if file must not be appraised, Sasha Levin
[PATCH AUTOSEL 5.13 38/85] ima: Don't remove security.ima if file must not be appraised, Sasha Levin
[PATCH] ima: add gid support, Alex Henrie
- Re: [PATCH] ima: add gid support, Alex Henrie
  - Re: [PATCH] ima: add gid support, Mimi Zohar
    - Re: [PATCH] ima: add gid support, Alex Henrie
[PATCH v2 0/3] ima: Provide more info about buffer measurement, Roberto Sassu
- [PATCH v2 1/3] ima: Introduce ima_get_current_hash_algo(), Roberto Sassu
  - Re: [PATCH v2 1/3] ima: Introduce ima_get_current_hash_algo(), Lakshmi Ramasubramanian
- [PATCH v2 2/3] ima: Return int in the functions to measure a buffer, Roberto Sassu
  - Re: [PATCH v2 2/3] ima: Return int in the functions to measure a buffer, Lakshmi Ramasubramanian
    - RE: [PATCH v2 2/3] ima: Return int in the functions to measure a buffer, Roberto Sassu
- [PATCH v2 3/3] ima: Add digest and digest_len params to the functions to measure a buffer, Roberto Sassu
  - Re: [PATCH v2 3/3] ima: Add digest and digest_len params to the functions to measure a buffer, Lakshmi Ramasubramanian
    - RE: [PATCH v2 3/3] ima: Add digest and digest_len params to the functions to measure a buffer, Roberto Sassu
[PATCH v7 0/3] ima-evm-utils: Add --keyid option, Vitaly Chikunov
- [PATCH v7 1/3] ima-evm-utils: Allow manual setting keyid for signing, Vitaly Chikunov
- [PATCH v7 2/3] ima-evm-utils: Allow manual setting keyid from a cert file, Vitaly Chikunov
  - Re: [PATCH v7 2/3] ima-evm-utils: Allow manual setting keyid from a cert file, Mimi Zohar
    - Re: [PATCH v7 2/3] ima-evm-utils: Allow manual setting keyid from a cert file, Vitaly Chikunov
- [PATCH v7 3/3] ima-evm-utils: Read keyid from the cert appended to the key file, Vitaly Chikunov
  - Re: [PATCH v7 3/3] ima-evm-utils: Read keyid from the cert appended to the key file, Mimi Zohar
    - Re: [PATCH v7 3/3] ima-evm-utils: Read keyid from the cert appended to the key file, Vitaly Chikunov
- Re: [PATCH v7 0/3] ima-evm-utils: Add --keyid option, Mimi Zohar
  - Re: [PATCH v7 0/3] ima-evm-utils: Add --keyid option, Vitaly Chikunov
    - Re: [PATCH v7 0/3] ima-evm-utils: Add --keyid option, Mimi Zohar
      - Re: [PATCH v7 0/3] ima-evm-utils: Add --keyid option, Vitaly Chikunov
[PATCH ima-evm-utils 0/3] libimaevm: Remove digest calculations not supported by IMA, Stefan Berger
- [PATCH ima-evm-utils 1/3] libimaevm: Remove calculation of a digest over a device file, Stefan Berger
- [PATCH ima-evm-utils 2/3] libimaevm: Remove calculation of a digest over a directory, Stefan Berger
- [PATCH ima-evm-utils 3/3] libimaevm: Remove calculation of a digest over a symbolic link, Stefan Berger
- Re: [PATCH ima-evm-utils 0/3] libimaevm: Remove digest calculations not supported by IMA, Mimi Zohar
[PATCH 0/3] ima: Provide more info about buffer measurement, Roberto Sassu
- [PATCH 1/3] ima: Introduce ima_get_current_hash_algo(), Roberto Sassu
- [PATCH 2/3] ima: Return int in the functions to measure a buffer, Roberto Sassu
- [PATCH 3/3] ima: Add digest parameter to the functions to measure a buffer, Roberto Sassu
  - Re: [PATCH 3/3] ima: Add digest parameter to the functions to measure a buffer, Lakshmi Ramasubramanian
    - RE: [PATCH 3/3] ima: Add digest parameter to the functions to measure a buffer, Roberto Sassu
[PATCH v8 0/2] Add support for ECDSA-signed kernel modules, Stefan Berger
- [PATCH v8 2/2] certs: Add support for using elliptic curve keys for signing modules, Stefan Berger
- [PATCH v8 1/2] certs: Trigger creation of RSA module signing key if it's not an RSA key, Stefan Berger
  - Re: [PATCH v8 1/2] certs: Trigger creation of RSA module signing key if it's not an RSA key, Linus Torvalds
    - Re: [PATCH v8 1/2] certs: Trigger creation of RSA module signing key if it's not an RSA key, Jarkko Sakkinen
- Re: [PATCH v8 0/2] Add support for ECDSA-signed kernel modules, Jarkko Sakkinen
[PATCH] IMA: remove -Wmissing-prototypes warning, Austin Kim
- Re: [PATCH] IMA: remove -Wmissing-prototypes warning, Mimi Zohar
  - Re: [PATCH] IMA: remove -Wmissing-prototypes warning, Austin Kim
[RFC] ima: check ima-policy's path, Tianxing Zhang
- Re: [RFC] ima: check ima-policy's path, Mimi Zohar
/dev/tpmrm0 session handling, Ken Goldman
[PATCH v7 0/2] Add support for ECDSA-signed kernel modules, Stefan Berger
- [PATCH v7 1/2] certs: Trigger creation of RSA module signing key if it's not an RSA key, Stefan Berger
- [PATCH v7 2/2] certs: Add support for using elliptic curve keys for signing modules, Stefan Berger
  - Re: [PATCH v7 2/2] certs: Add support for using elliptic curve keys for signing modules, Jarkko Sakkinen
[GIT PULL] integrity subsystem updates for v5.14, Mimi Zohar
- Re: [GIT PULL] integrity subsystem updates for v5.14, pr-tracker-bot
[RFC][PATCH 00/12] Huawei Digest Lists, Roberto Sassu
- [RFC][PATCH 03/12] digest_lists: Basic definitions, Roberto Sassu
  - Re: [RFC][PATCH 03/12] digest_lists: Basic definitions, Greg KH
    - Re: [RFC][PATCH 03/12] digest_lists: Basic definitions, Matthew Wilcox
      - Re: [RFC][PATCH 03/12] digest_lists: Basic definitions, Greg KH
    - RE: [RFC][PATCH 03/12] digest_lists: Basic definitions, Roberto Sassu
      - Re: [RFC][PATCH 03/12] digest_lists: Basic definitions, Greg KH
        
        RE: [RFC][PATCH 03/12] digest_lists: Basic definitions, Roberto Sassu
        
        Re: [RFC][PATCH 03/12] digest_lists: Basic definitions, Greg KH
        
        RE: [RFC][PATCH 03/12] digest_lists: Basic definitions, Roberto Sassu
- [RFC][PATCH 01/12] ima: Add digest, algo, measured parameters to ima_measure_critical_data(), Roberto Sassu
  - Re: [RFC][PATCH 01/12] ima: Add digest, algo, measured parameters to ima_measure_critical_data(), Mimi Zohar
- [RFC][PATCH 02/12] digest_lists: Overview, Roberto Sassu
- [RFC][PATCH 04/12] digest_lists: Objects, Roberto Sassu
  - Re: [RFC][PATCH 04/12] digest_lists: Objects, Greg KH
    - RE: [RFC][PATCH 04/12] digest_lists: Objects, Roberto Sassu
      - Re: [RFC][PATCH 04/12] digest_lists: Objects, Greg KH
- [RFC][PATCH 06/12] digest_lists: Parser, Roberto Sassu
- [RFC][PATCH 07/12] digest_lists: Interfaces - digest_list_add, digest_list_del, Roberto Sassu
- [RFC][PATCH 05/12] digest_lists: Methods, Roberto Sassu
- [RFC][PATCH 09/12] digest_lists: Interfaces - digest_label, Roberto Sassu
- [RFC][PATCH 08/12] digest_lists: Interfaces - digest_lists_loaded, Roberto Sassu
- [RFC][PATCH 10/12] digest_lists: Interfaces - digest_query, Roberto Sassu
- [RFC][PATCH 11/12] digest_lists: Interfaces - digests_count, Roberto Sassu
- [RFC][PATCH 12/12] digest_lists: Tests, Roberto Sassu
[PATCH] certs: Redirect openssl error message to null device, Stefan Berger
- Re: [PATCH] certs: Redirect openssl error message to null device, Stefan Berger
  - Re: [PATCH] certs: Redirect openssl error message to null device, Jarkko Sakkinen
    - Re: [PATCH] certs: Redirect openssl error message to null device, Stefan Berger
[GIT PULL] TPM DEVICE DRIVER changes for v5.14, Jarkko Sakkinen
- Re: [GIT PULL] TPM DEVICE DRIVER changes for v5.14, Linus Torvalds
  - Re: [GIT PULL] TPM DEVICE DRIVER changes for v5.14, Stefan Berger
    - Re: [GIT PULL] TPM DEVICE DRIVER changes for v5.14, Linus Torvalds
      - Re: [GIT PULL] TPM DEVICE DRIVER changes for v5.14, Stefan Berger
        
        Re: [GIT PULL] TPM DEVICE DRIVER changes for v5.14, Linus Torvalds
        
        Re: [GIT PULL] TPM DEVICE DRIVER changes for v5.14, Stefan Berger
  - Re: [GIT PULL] TPM DEVICE DRIVER changes for v5.14, Jarkko Sakkinen
    - Re: [GIT PULL] TPM DEVICE DRIVER changes for v5.14, Linus Torvalds
      - Re: [GIT PULL] TPM DEVICE DRIVER changes for v5.14, Jarkko Sakkinen
[PATCH] char: tpm: vtpm_proxy: Fix race in init, Saubhik Mukherjee
- Re: [PATCH] char: tpm: vtpm_proxy: Fix race in init, Jarkko Sakkinen
  - Re: [PATCH] char: tpm: vtpm_proxy: Fix race in init, Jarkko Sakkinen
    - [PATCH] char: tpm: vtpm_proxy: Fix race in init, Saubhik Mukherjee
      - Re: [PATCH] char: tpm: vtpm_proxy: Fix race in init, Jarkko Sakkinen
    - Re: [PATCH] char: tpm: vtpm_proxy: Fix race in init, Saubhik Mukherjee
      - Re: [PATCH] char: tpm: vtpm_proxy: Fix race in init, Jarkko Sakkinen
[PATCH 0/3] Add GitHub Actions support, Petr Vorel
- [PATCH 1/3] CI: Rename travis script directory, Petr Vorel
- [PATCH 2/3] CI/openSUSE: Fix tpm_server symlink creation, Petr Vorel
- [PATCH 3/3] CI: Introduce GitHub Actions setup, Petr Vorel
- Re: [PATCH 0/3] Add GitHub Actions support, Petr Vorel
  - Re: [PATCH 0/3] Add GitHub Actions support, Mimi Zohar
- Re: [PATCH 0/3] Add GitHub Actions support, Mimi Zohar
  - Re: [PATCH 0/3] Add GitHub Actions support, Petr Vorel
[PATCH v2 2/6] KEYS: trusted: Allow import from existing key material for development, Ahmad Fatoum
[PATCH v2 0/6] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Ahmad Fatoum
- [PATCH v2 5/6] crypto: caam - add in-kernel interface for blob generator, Ahmad Fatoum
  - Re: [PATCH v2 5/6] crypto: caam - add in-kernel interface for blob generator, Ahmad Fatoum
- [PATCH v2 1/6] KEYS: trusted: allow use of TEE as backend without TCG_TPM support, Ahmad Fatoum
  - Re: [PATCH v2 1/6] KEYS: trusted: allow use of TEE as backend without TCG_TPM support, Sumit Garg
    - Re: [PATCH v2 1/6] KEYS: trusted: allow use of TEE as backend without TCG_TPM support, Ahmad Fatoum
- [PATCH v2 4/6] KEYS: trusted: allow trust sources to use kernel RNG for key material, Ahmad Fatoum
- [PATCH v2 3/6] KEYS: trusted: allow users to use kernel RNG for key material, Ahmad Fatoum
- [PATCH v2 6/6] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Ahmad Fatoum
  - Re: [PATCH v2 6/6] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Richard Weinberger
    - Re: [PATCH v2 6/6] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Ahmad Fatoum
      - Re: [PATCH v2 6/6] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Richard Weinberger
        
        Re: [PATCH v2 6/6] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Ahmad Fatoum
        
        Re: [PATCH v2 6/6] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Richard Weinberger
        
        Re: [PATCH v2 6/6] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Mimi Zohar
        
        Re: [PATCH v2 6/6] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Richard Weinberger
        
        Re: [PATCH v2 6/6] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Ahmad Fatoum
- Re: [PATCH v2 0/6] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Ahmad Fatoum
[PATCH v2] evm: Check xattr size discrepancy between kernel and user, Roberto Sassu
- Re: [PATCH v2] evm: Check xattr size discrepancy between kernel and user, Mimi Zohar
[PATCH] evm: Check xattr size misalignment between kernel and user, Roberto Sassu
- Re: [PATCH] evm: Check xattr size misalignment between kernel and user, Mimi Zohar
[PATCH v2] evm: output EVM digest calculation info, Mimi Zohar
- Re: [PATCH v2] evm: output EVM digest calculation info, nramas
[PATCH v2] tpm, tpm_tis_spi: Allow to sleep in the interrupt handler, Lino Sanfilippo
- Re: [PATCH v2] tpm, tpm_tis_spi: Allow to sleep in the interrupt handler, Jarkko Sakkinen
  - Re: [PATCH v2] tpm, tpm_tis_spi: Allow to sleep in the interrupt handler, Lino Sanfilippo
  - Aw: Re: [PATCH v2] tpm, tpm_tis_spi: Allow to sleep in the interrupt handler, Lino Sanfilippo
[integrity:next-integrity-testing 13/13] security/integrity/evm/evm_crypto.c:181:41: warning: format specifies type 'unsigned long' but the argument has type 'unsigned int', kernel test robot
[integrity:next-integrity-testing 13/13] <command-line>: warning: format '%lu' expects argument of type 'long unsigned int', but argument 3 has type 'unsigned int', kernel test robot
[PATCH v2 00/12] x86: Trenchboot secure dynamic launch Linux kernel support, Ross Philipson
- [PATCH v2 08/12] kexec: Secure Launch kexec SEXIT support, Ross Philipson
- [PATCH v2 11/12] tpm: Allow locality 2 to be set when initializing the TPM for Secure Launch, Ross Philipson
- [PATCH v2 06/12] x86: Secure Launch kernel late boot stub, Ross Philipson
- [PATCH v2 09/12] reboot: Secure Launch SEXIT support on reboot paths, Ross Philipson
- [PATCH v2 12/12] iommu: Do not allow IOMMU passthrough with Secure Launch, Ross Philipson
  - Re: [PATCH v2 12/12] iommu: Do not allow IOMMU passthrough with Secure Launch, Robin Murphy
    - Re: [PATCH v2 12/12] iommu: Do not allow IOMMU passthrough with Secure Launch, Ross Philipson
      - Re: [PATCH v2 12/12] iommu: Do not allow IOMMU passthrough with Secure Launch, Andy Lutomirski
        
        Re: [PATCH v2 12/12] iommu: Do not allow IOMMU passthrough with Secure Launch, Ross Philipson
        
        Re: [PATCH v2 12/12] iommu: Do not allow IOMMU passthrough with Secure Launch, Daniel P. Smith
      - Re: [PATCH v2 12/12] iommu: Do not allow IOMMU passthrough with Secure Launch, Robin Murphy
        
        Re: [PATCH v2 12/12] iommu: Do not allow IOMMU passthrough with Secure Launch, Ross Philipson
- [PATCH v2 04/12] x86: Add early SHA support for Secure Launch early measurements, Ross Philipson
- [PATCH v2 10/12] x86: Secure Launch late initcall platform module, Ross Philipson
- [PATCH v2 05/12] x86: Secure Launch kernel early boot stub, Ross Philipson
- [PATCH v2 03/12] x86: Secure Launch main header file, Ross Philipson
- [PATCH v2 02/12] x86: Secure Launch Kconfig, Ross Philipson
- [PATCH v2 01/12] x86/boot: Place kernel_info at a fixed offset, Ross Philipson
- [PATCH v2 07/12] x86: Secure Launch SMP bringup support, Ross Philipson
[PATCH 1/2] tpm: Fix tpmrm reference counting, Vincent Whitchurch
- [PATCH 2/2] tpm: Fix crash on tmprm release, Vincent Whitchurch
  - Re: [PATCH 2/2] tpm: Fix crash on tmprm release, Jarkko Sakkinen
    - Re: [PATCH 2/2] tpm: Fix crash on tmprm release, Vincent Whitchurch
  - Re: [PATCH 2/2] tpm: Fix crash on tmprm release, Stefan Berger
- Re: [PATCH 1/2] tpm: Fix tpmrm reference counting, Jason Gunthorpe
  - Re: [PATCH 1/2] tpm: Fix tpmrm reference counting, Vincent Whitchurch
[PATCH v5 0/8] tee: Improve support for kexec and kdump, Tyler Hicks
- [PATCH v5 1/8] optee: Fix memory leak when failing to register shm pages, Tyler Hicks
- [PATCH v5 2/8] optee: Refuse to load the driver under the kdump kernel, Tyler Hicks
- [PATCH v5 3/8] optee: fix tee out of memory failure seen during kexec reboot, Tyler Hicks
- [PATCH v5 4/8] optee: Clear stale cache entries during initialization, Tyler Hicks
  - Re: [PATCH v5 4/8] optee: Clear stale cache entries during initialization, Jens Wiklander
- [PATCH v5 5/8] tee: add tee_shm_alloc_kernel_buf(), Tyler Hicks
- [PATCH v5 6/8] tee: Correct inappropriate usage of TEE_SHM_DMA_BUF flag, Tyler Hicks
  - Re: [PATCH v5 6/8] tee: Correct inappropriate usage of TEE_SHM_DMA_BUF flag, Jens Wiklander
- [PATCH v5 7/8] tpm_ftpm_tee: Free and unregister TEE shared memory during kexec, Tyler Hicks
- [PATCH v5 8/8] firmware: tee_bnxt: Release TEE shm, session, and context during kexec, Tyler Hicks
- Re: [PATCH v5 0/8] tee: Improve support for kexec and kdump, Sumit Garg
  - Re: [PATCH v5 0/8] tee: Improve support for kexec and kdump, Tyler Hicks
- Re: [PATCH v5 0/8] tee: Improve support for kexec and kdump, Jens Wiklander
  - Re: [PATCH v5 0/8] tee: Improve support for kexec and kdump, Tyler Hicks
    - Re: [PATCH v5 0/8] tee: Improve support for kexec and kdump, Florian Fainelli
      - Re: [PATCH v5 0/8] tee: Improve support for kexec and kdump, Jens Wiklander
[PATCH 0/3] DCP as trusted keys backend, Richard Weinberger
- [PATCH 3/3] doc: trusted-encrypted: add DCP as new trust source, Richard Weinberger
  - Re: [PATCH 3/3] doc: trusted-encrypted: add DCP as new trust source, Ahmad Fatoum
- [PATCH 1/3] crypto: mxs-dcp: Add support for hardware provided keys, Richard Weinberger
  - Re: [PATCH 1/3] crypto: mxs-dcp: Add support for hardware provided keys, Richard Weinberger
    - Re: [PATCH 1/3] crypto: mxs-dcp: Add support for hardware provided keys, Herbert Xu
      - Re: [PATCH 1/3] crypto: mxs-dcp: Add support for hardware provided keys, Richard Weinberger
  - Re: [PATCH 1/3] crypto: mxs-dcp: Add support for hardware provided keys, Ahmad Fatoum
    - Re: [PATCH 1/3] crypto: mxs-dcp: Add support for hardware provided keys, Richard Weinberger
      - Re: [PATCH 1/3] crypto: mxs-dcp: Add support for hardware provided keys, Ahmad Fatoum
- [PATCH 2/3] KEYS: trusted: Introduce support for NXP DCP-based trusted keys, Richard Weinberger
  - Re: [PATCH 2/3] KEYS: trusted: Introduce support for NXP DCP-based trusted keys, Ahmad Fatoum
    - Re: [PATCH 2/3] KEYS: trusted: Introduce support for NXP DCP-based trusted keys, Richard Weinberger
      - Re: [PATCH 2/3] KEYS: trusted: Introduce support for NXP DCP-based trusted keys, Ahmad Fatoum
Size mismatch between vfs_getxattr_alloc() and vfs_getxattr(), Roberto Sassu
- [PATCH] fs: Return raw xattr for security.* if there is size disagreement with LSMs, Roberto Sassu
  - Re: [PATCH] fs: Return raw xattr for security.* if there is size disagreement with LSMs, Stefan Berger
    - RE: [PATCH] fs: Return raw xattr for security.* if there is size disagreement with LSMs, Roberto Sassu
      - Re: [PATCH] fs: Return raw xattr for security.* if there is size disagreement with LSMs, Mimi Zohar
        
        RE: [PATCH] fs: Return raw xattr for security.* if there is size disagreement with LSMs, Roberto Sassu
        
        Re: [PATCH] fs: Return raw xattr for security.* if there is size disagreement with LSMs, Paul Moore
        
        Re: [PATCH] fs: Return raw xattr for security.* if there is size disagreement with LSMs, Mimi Zohar
        
        RE: [PATCH] fs: Return raw xattr for security.* if there is size disagreement with LSMs, Roberto Sassu
        
        Re: [PATCH] fs: Return raw xattr for security.* if there is size disagreement with LSMs, Paul Moore
        
        Re: [PATCH] fs: Return raw xattr for security.* if there is size disagreement with LSMs, Mimi Zohar
[PATCH v27 15/25] LSM: Ensure the correct LSM context releaser, Casey Schaufler
[PATCH v27 13/25] IMA: Change internal interfaces to use lsmblobs, Casey Schaufler
[PATCH v27 12/25] LSM: Use lsmblob in security_cred_getsecid, Casey Schaufler
[PATCH v27 11/25] LSM: Use lsmblob in security_inode_getsecid, Casey Schaufler
[PATCH v27 10/25] LSM: Use lsmblob in security_task_getsecid, Casey Schaufler
[PATCH v27 05/25] LSM: Use lsmblob in security_audit_rule_match, Casey Schaufler
[PATCH v4 0/8] tee: Improve support for kexec and kdump, Tyler Hicks
- [PATCH v4 1/8] optee: Fix memory leak when failing to register shm pages, Tyler Hicks
  - Re: [PATCH v4 1/8] optee: Fix memory leak when failing to register shm pages, Jens Wiklander
- [PATCH v4 2/8] optee: Refuse to load the driver under the kdump kernel, Tyler Hicks
  - Re: [PATCH v4 2/8] optee: Refuse to load the driver under the kdump kernel, Jens Wiklander
- [PATCH v4 3/8] optee: fix tee out of memory failure seen during kexec reboot, Tyler Hicks
  - Re: [PATCH v4 3/8] optee: fix tee out of memory failure seen during kexec reboot, Jens Wiklander
    - Re: [PATCH v4 3/8] optee: fix tee out of memory failure seen during kexec reboot, Tyler Hicks
      - Re: [PATCH v4 3/8] optee: fix tee out of memory failure seen during kexec reboot, Jens Wiklander
  - Re: [PATCH v4 3/8] optee: fix tee out of memory failure seen during kexec reboot, Jens Wiklander
- [PATCH v4 4/8] optee: Clear stale cache entries during initialization, Tyler Hicks
  - Re: [PATCH v4 4/8] optee: Clear stale cache entries during initialization, Jens Wiklander
    - Re: [PATCH v4 4/8] optee: Clear stale cache entries during initialization, Tyler Hicks
      - Re: [PATCH v4 4/8] optee: Clear stale cache entries during initialization, Jens Wiklander
- [PATCH v4 5/8] tee: add tee_shm_alloc_kernel_buf(), Tyler Hicks
- [PATCH v4 6/8] tee: Support kernel shm registration without dma-buf backing, Tyler Hicks
  - Re: [PATCH v4 6/8] tee: Support kernel shm registration without dma-buf backing, Sumit Garg
    - Re: [PATCH v4 6/8] tee: Support kernel shm registration without dma-buf backing, Tyler Hicks
      - Re: [PATCH v4 6/8] tee: Support kernel shm registration without dma-buf backing, Tyler Hicks
        
        Re: [PATCH v4 6/8] tee: Support kernel shm registration without dma-buf backing, Sumit Garg
        
        Re: [PATCH v4 6/8] tee: Support kernel shm registration without dma-buf backing, Tyler Hicks
        
        Re: [PATCH v4 6/8] tee: Support kernel shm registration without dma-buf backing, Sumit Garg
- [PATCH v4 7/8] tpm_ftpm_tee: Free and unregister TEE shared memory during kexec, Tyler Hicks
  - Re: [PATCH v4 7/8] tpm_ftpm_tee: Free and unregister TEE shared memory during kexec, Jarkko Sakkinen
- [PATCH v4 8/8] firmware: tee_bnxt: Release TEE shm, session, and context during kexec, Tyler Hicks
[PATCH 1/2] ima: Fix warning: no previous prototype for function 'ima_add_kexec_buffer', Lakshmi Ramasubramanian
- [PATCH 2/2] ima: Fix warning: no previous prototype for function 'ima_post_key_create_or_update', Lakshmi Ramasubramanian
  - Re: [PATCH 2/2] ima: Fix warning: no previous prototype for function 'ima_post_key_create_or_update', Rob Herring
  - Re: [PATCH 2/2] ima: Fix warning: no previous prototype for function 'ima_post_key_create_or_update', Mimi Zohar
- Re: [PATCH 1/2] ima: Fix warning: no previous prototype for function 'ima_add_kexec_buffer', Rob Herring
- Re: [PATCH 1/2] ima: Fix warning: no previous prototype for function 'ima_add_kexec_buffer', Mimi Zohar
[PATCH v6 0/4] Add support for ECDSA-signed kernel modules, Stefan Berger
- [PATCH v6 4/4] certs: Adjustment due to 'Check whether openssl tool is available', Stefan Berger
  - Re: [PATCH v6 4/4] certs: Adjustment due to 'Check whether openssl tool is available', Jarkko Sakkinen
    - Re: [PATCH v6 4/4] certs: Adjustment due to 'Check whether openssl tool is available', Stefan Berger
      - Re: [PATCH v6 4/4] certs: Adjustment due to 'Check whether openssl tool is available', Jarkko Sakkinen
        
        Re: [PATCH v6 4/4] certs: Adjustment due to 'Check whether openssl tool is available', Stefan Berger
        
        Re: [PATCH v6 4/4] certs: Adjustment due to 'Check whether openssl tool is available', Jarkko Sakkinen
- [PATCH v6 1/4] certs: Trigger creation of RSA module signing key if it's not an RSA key, Stefan Berger
- [PATCH v6 2/4] certs: Check whether openssl tool is available, Stefan Berger
- [PATCH v6 3/4] certs: Add support for using elliptic curve keys for signing modules, Stefan Berger
- Re: [PATCH v6 0/4] Add support for ECDSA-signed kernel modules, Stefan Berger
- Re: [PATCH v6 0/4] Add support for ECDSA-signed kernel modules, Jarkko Sakkinen
  - Re: [PATCH v6 0/4] Add support for ECDSA-signed kernel modules, Stefan Berger
    - Re: [PATCH v6 0/4] Add support for ECDSA-signed kernel modules, Jarkko Sakkinen
  - Re: [PATCH v6 0/4] Add support for ECDSA-signed kernel modules, Jarkko Sakkinen
[PATCH] tpm2_load_command leaks memory, Dhiraj Shah
- Re: [PATCH] tpm2_load_command leaks memory, kernel test robot
- Re: [PATCH] tpm2_load_command leaks memory, James Bottomley
ima - wait for tpm load, Jorge Ramirez-Ortiz, Foundries
- Re: ima - wait for tpm load, Mimi Zohar
  - Re: ima - wait for tpm load, Jorge Ramirez-Ortiz, Foundries
    - Re: ima - wait for tpm load, Mimi Zohar
      - Re: ima - wait for tpm load, Ken Goldman
[PATCH v3] tpm: Replace WARN_ONCE() with dev_err_once() in tpm_tis_status(), Jarkko Sakkinen
- Re: [PATCH v3] tpm: Replace WARN_ONCE() with dev_err_once() in tpm_tis_status(), Greg KH
[PATCH v3 0/7] tee: Improve support for kexec and kdump, Tyler Hicks
- [PATCH v3 1/7] optee: Fix memory leak when failing to register shm pages, Tyler Hicks
- [PATCH v3 2/7] optee: Refuse to load the driver under the kdump kernel, Tyler Hicks
- [PATCH v3 3/7] optee: fix tee out of memory failure seen during kexec reboot, Tyler Hicks
- [PATCH v3 4/7] optee: Clear stale cache entries during initialization, Tyler Hicks
- [PATCH v3 5/7] tee: Support shm registration without dma-buf backing, Tyler Hicks
  - Re: [PATCH v3 5/7] tee: Support shm registration without dma-buf backing, Sumit Garg
    - Re: [PATCH v3 5/7] tee: Support shm registration without dma-buf backing, Tyler Hicks
      - Re: [PATCH v3 5/7] tee: Support shm registration without dma-buf backing, Sumit Garg
        
        Re: [PATCH v3 5/7] tee: Support shm registration without dma-buf backing, Jens Wiklander
        
        Re: [PATCH v3 5/7] tee: Support shm registration without dma-buf backing, Tyler Hicks
        
        Re: [PATCH v3 5/7] tee: Support shm registration without dma-buf backing, Tyler Hicks
        
        Re: [PATCH v3 5/7] tee: Support shm registration without dma-buf backing, Jens Wiklander
        
        Re: [PATCH v3 5/7] tee: Support shm registration without dma-buf backing, Tyler Hicks
        
        Re: [PATCH v3 5/7] tee: Support shm registration without dma-buf backing, Jens Wiklander
        
        Re: [PATCH v3 5/7] tee: Support shm registration without dma-buf backing, Tyler Hicks
        
        Re: [PATCH v3 5/7] tee: Support shm registration without dma-buf backing, Allen Pais
        
        Re: [PATCH v3 5/7] tee: Support shm registration without dma-buf backing, Jens Wiklander
        
        Re: [PATCH v3 5/7] tee: Support shm registration without dma-buf backing, Sumit Garg
- [PATCH v3 6/7] tpm_ftpm_tee: Free and unregister dynamic shared memory during kexec, Tyler Hicks
- [PATCH v3 7/7] firmware: tee_bnxt: Release shm, session, and context during kexec, Tyler Hicks
[PATCH 0/2] EVM: add some debugging info, Mimi Zohar
- [PATCH 2/2] evm: output EVM digest calculation info, Mimi Zohar
  - Re: [PATCH 2/2] evm: output EVM digest calculation info, nramas
- [PATCH 1/2] ima: differentiate between EVM failures in the audit log, Mimi Zohar
[PATCH 1/5] doc: Fix warning in Documentation/security/IMA-templates.rst, Roberto Sassu
- [PATCH 4/5] ima: Include header defining ima_post_key_create_or_update(), Roberto Sassu
- [PATCH 5/5] ima: Pass NULL instead of 0 to ima_get_action() in ima_file_mprotect(), Roberto Sassu
- [PATCH 3/5] ima/evm: Fix type mismatch, Roberto Sassu
- [PATCH 2/5] ima: Set correct casting types, Roberto Sassu
[PATCH][next] ima: Fix fall-through warning for Clang, Gustavo A. R. Silva
- Re: [PATCH][next] ima: Fix fall-through warning for Clang, Kees Cook
[integrity:next-integrity-testing 5/9] security/integrity/ima/ima_template_lib.c:616:22: sparse: sparse: incorrect type in assignment (different base types), kernel test robot
- RE: [integrity:next-integrity-testing 5/9] security/integrity/ima/ima_template_lib.c:616:22: sparse: sparse: incorrect type in assignment (different base types), Roberto Sassu
  - RE: [integrity:next-integrity-testing 5/9] security/integrity/ima/ima_template_lib.c:616:22: sparse: sparse: incorrect type in assignment (different base types), Roberto Sassu
[integrity:next-integrity-testing 4/9] security/integrity/ima/ima_template_lib.c:571:28: sparse: sparse: incorrect type in assignment (different base types), kernel test robot
[integrity:next-integrity-testing 3/9] security/integrity/ima/ima_template_lib.c:100:44: sparse: sparse: cast to restricted __le16, kernel test robot
[RFC PATCH 0/2] EVM: add some debugging info, Mimi Zohar
- [RFC PATCH 1/2] ima: differentiate between EVM failures in the audit log, Mimi Zohar
  - RE: [RFC PATCH 1/2] ima: differentiate between EVM failures in the audit log, Roberto Sassu
- [RFC PATCH 2/2] evm: output EVM digest calculation info needed for debugging, Mimi Zohar
  - Re: [RFC PATCH 2/2] evm: output EVM digest calculation info needed for debugging, nramas
    - Re: [RFC PATCH 2/2] evm: output EVM digest calculation info needed for debugging, Mimi Zohar
      - Re: [RFC PATCH 2/2] evm: output EVM digest calculation info needed for debugging, nramas
[PATCH v2 0/1] tpm_tis: Use DEFINE_RES_MEM() to simplify code, Zhen Lei
- [PATCH v2 1/1] tpm_tis: Use DEFINE_RES_MEM() to simplify code, Zhen Lei
  - Re: [PATCH v2 1/1] tpm_tis: Use DEFINE_RES_MEM() to simplify code, Jarkko Sakkinen
[PATCH -next] tpm: fix some doc warnings in tpm1-cmd.c, Yang Yingliang
- Re: [PATCH -next] tpm: fix some doc warnings in tpm1-cmd.c, Jarkko Sakkinen
[PATCH v5 0/2] Add support for ECDSA-signed kernel modules, Stefan Berger
- [PATCH v5 2/2] certs: Add support for using elliptic curve keys for signing modules, Stefan Berger
- [PATCH v5 1/2] certs: Trigger creation of RSA module signing key if it's not an RSA key, Stefan Berger
  - Re: [PATCH v5 1/2] certs: Trigger creation of RSA module signing key if it's not an RSA key, Jarkko Sakkinen
- <Possible follow-ups>
- [PATCH v5 0/2] Add support for ECDSA-signed kernel modules, Stefan Berger
  - [PATCH v5 2/2] certs: Add support for using elliptic curve keys for signing modules, Stefan Berger
  - [PATCH v5 1/2] certs: Trigger creation of RSA module signing key if it's not an RSA key, Stefan Berger
  - Re: [PATCH v5 0/2] Add support for ECDSA-signed kernel modules, Jarkko Sakkinen
    - Re: [PATCH v5 0/2] Add support for ECDSA-signed kernel modules, Stefan Berger
      - Re: [PATCH v5 0/2] Add support for ECDSA-signed kernel modules, Jarkko Sakkinen
        
        Re: [PATCH v5 0/2] Add support for ECDSA-signed kernel modules, Stefan Berger
        
        Re: [PATCH v5 0/2] Add support for ECDSA-signed kernel modules, Jarkko Sakkinen
        
        Re: [PATCH v5 0/2] Add support for ECDSA-signed kernel modules, Stefan Berger
[PATCH 1/1] tpm_tis: Use DEFINE_RES_MEM() to simplify code, Zhen Lei
- Re: [PATCH 1/1] tpm_tis: Use DEFINE_RES_MEM() to simplify code, Jarkko Sakkinen
  - Re: [PATCH 1/1] tpm_tis: Use DEFINE_RES_MEM() to simplify code, Leizhen (ThunderTown)
    - Re: [PATCH 1/1] tpm_tis: Use DEFINE_RES_MEM() to simplify code, Jarkko Sakkinen
      - Re: [PATCH 1/1] tpm_tis: Use DEFINE_RES_MEM() to simplify code, Leizhen (ThunderTown)
[integrity:next-integrity-testing 18/20] security/integrity/ima/ima_template_lib.c:623:5: warning: no previous prototype for 'ima_eventinodexattrs_init_common', kernel test robot
Good tests for IMA/EVM, Denis Semakin
[PATCH v2] tpm: Replace WARN_ONCE() with dev_err_once() in tpm_tis_status(), Jarkko Sakkinen
- Re: [PATCH v2] tpm: Replace WARN_ONCE() with dev_err_once() in tpm_tis_status(), Greg KH
  - Re: [PATCH v2] tpm: Replace WARN_ONCE() with dev_err_once() in tpm_tis_status(), Jarkko Sakkinen
[PATCH] tpm: Replace WARN_ONCE() with dev_err_once() in tpm_tis_status(), Jarkko Sakkinen
- Re: [PATCH] tpm: Replace WARN_ONCE() with dev_err_once() in tpm_tis_status(), Greg KH
- Re: [PATCH] tpm: Replace WARN_ONCE() with dev_err_once() in tpm_tis_status(), Paul Menzel
  - Re: [PATCH] tpm: Replace WARN_ONCE() with dev_err_once() in tpm_tis_status(), Jarkko Sakkinen
[PATCH v2 0/7] ima: Add template fields to verify EVM portable signatures, Roberto Sassu
- [PATCH v2 1/7] ima: Add ima_show_template_uint() template library function, Roberto Sassu
- [PATCH v2 2/7] ima: Define new template fields iuid and igid, Roberto Sassu
  - Re: [PATCH v2 2/7] ima: Define new template fields iuid and igid, Christian Brauner
- [PATCH v2 3/7] ima: Define new template field imode, Roberto Sassu
- [PATCH v2 4/7] evm: Verify portable signatures against all protected xattrs, Roberto Sassu
- [PATCH v2 5/7] ima: Define new template fields xattrnames, xattrlengths and xattrvalues, Roberto Sassu
  - [RESEND][PATCH v2 5/7] ima: Define new template fields xattrnames, xattrlengths and xattrvalues, Roberto Sassu
    - Re: [RESEND][PATCH v2 5/7] ima: Define new template fields xattrnames, xattrlengths and xattrvalues, Mimi Zohar
- [PATCH v2 6/7] ima: Define new template evm-sig, Roberto Sassu
  - Re: [PATCH v2 6/7] ima: Define new template evm-sig, Mimi Zohar
    - [RESEND][PATCH v2 6/7] ima: Define new template evm-sig, Roberto Sassu
      - Re: [RESEND][PATCH v2 6/7] ima: Define new template evm-sig, Mimi Zohar
- [PATCH v2 7/7] evm: Don't return an error in evm_write_xattrs() if audit is not enabled, Roberto Sassu
- Re: [PATCH v2 0/7] ima: Add template fields to verify EVM portable signatures, Mimi Zohar
[PATCH] tpm_tis_spi: add missing SPI device ID entries, Javier Martinez Canillas
- Re: [PATCH] tpm_tis_spi: add missing SPI device ID entries, Jason Gunthorpe
  - Re: [PATCH] tpm_tis_spi: add missing SPI device ID entries, Javier Martinez Canillas
    - Re: [PATCH] tpm_tis_spi: add missing SPI device ID entries, Jason Gunthorpe
- Re: [PATCH] tpm_tis_spi: add missing SPI device ID entries, Peter Robinson
- Re: [PATCH] tpm_tis_spi: add missing SPI device ID entries, Jarkko Sakkinen
[PATCH v2 0/7] crypto: add eddsa support for x509, Hongbo Li
- [PATCH v2 1/7] crypto: fix a memory leak in sm2, Hongbo Li
  - Re: [PATCH v2 1/7] crypto: fix a memory leak in sm2, Tianjia Zhang
    - Re: [PATCH v2 1/7] crypto: fix a memory leak in sm2, hongbo li
- [PATCH v2 2/7] lib/mpi: use kcalloc in mpi_resize, Hongbo Li
- [PATCH v2 3/7] lib/mpi: export some common function, Hongbo Li
- [PATCH v2 4/7] x509: add support for eddsa, Hongbo Li
- [PATCH v2 5/7] crypto: move common code in sm2 to ec_mpi.c and ec_mpi.h, Hongbo Li
- [PATCH v2 6/7] crypto: ed25519 cert verification, Hongbo Li
- [PATCH v2 7/7] crypto: add eddsa test vector, Hongbo Li
[PATCH ima-evm-utils v3] ima-evm-utils: Support SM2 algorithm for sign and verify, Tianjia Zhang
- Re: [PATCH ima-evm-utils v3] ima-evm-utils: Support SM2 algorithm for sign and verify, Tianjia Zhang
  - Re: [PATCH ima-evm-utils v3] ima-evm-utils: Support SM2 algorithm for sign and verify, Mimi Zohar
    - Re: [PATCH ima-evm-utils v3] ima-evm-utils: Support SM2 algorithm for sign and verify, Tianjia Zhang
      - Re: [PATCH ima-evm-utils v3] ima-evm-utils: Support SM2 algorithm for sign and verify, Mimi Zohar
        
        Re: [PATCH ima-evm-utils v3] ima-evm-utils: Support SM2 algorithm for sign and verify, Tianjia Zhang
        
        Re: [PATCH ima-evm-utils v3] ima-evm-utils: Support SM2 algorithm for sign and verify, Mimi Zohar
        
        Re: [PATCH ima-evm-utils v3] ima-evm-utils: Support SM2 algorithm for sign and verify, Tianjia Zhang
        
        Re: [PATCH ima-evm-utils v3] ima-evm-utils: Support SM2 algorithm for sign and verify, Petr Vorel
        
        Re: [PATCH ima-evm-utils v3] ima-evm-utils: Support SM2 algorithm for sign and verify, Mimi Zohar
        
        Re: [PATCH ima-evm-utils v3] ima-evm-utils: Support SM2 algorithm for sign and verify, Tianjia Zhang
[PATCH v3] ima-evm-utils: Support SM2 algorithm for sign and verify, Tianjia Zhang
- Re: [PATCH v3] ima-evm-utils: Support SM2 algorithm for sign and verify, Tianjia Zhang
- Re: [PATCH v3] ima-evm-utils: Support SM2 algorithm for sign and verify, Tianjia Zhang
[PATCH v4] add longer timeout for verify signature command, amirmizi6
- [PATCH v4] tpm2: add longer timeout for verify signature command, amirmizi6
  - Re: [PATCH v4] tpm2: add longer timeout for verify signature command, Jarkko Sakkinen
    - Re: [PATCH v4] tpm2: add longer timeout for verify signature command, Jarkko Sakkinen
EVM gives no_label error due to security_kernfs_init_security, Bighead Wang
- RE: EVM gives no_label error due to security_kernfs_init_security, Roberto Sassu
  - Re: EVM gives no_label error due to security_kernfs_init_security, Bighead Wang
    - RE: EVM gives no_label error due to security_kernfs_init_security, Roberto Sassu
[PATCH v2 0/1] draft RFC for TPM key format, James Bottomley
- [PATCH v2 1/1] doc: add draft RFC for TPM Key format, James Bottomley
[PATCH v3] add longer timeout for verify signature command, amirmizi6
- [PATCH v3] tpm2: add longer timeout for verify signature command, amirmizi6
  - Re: [PATCH v3] tpm2: add longer timeout for verify signature command, Jarkko Sakkinen
[PATCH 0/1] draft RFC for TPM key format, James Bottomley
- [PATCH 1/1] doc: add draft RFC for TPM Key format, James Bottomley
- Re: [PATCH 0/1] draft RFC for TPM key format, Jarkko Sakkinen
- Re: [PATCH 0/1] draft RFC for TPM key format, David Woodhouse
  - Re: [PATCH 0/1] draft RFC for TPM key format, David Woodhouse
[PATCH 0/4] Trusted Key policy for TPM 2.0, James Bottomley
- [PATCH 1/4] security: keys: trusted: add PCR policy to TPM2 keys, James Bottomley
  - Re: [PATCH 1/4] security: keys: trusted: add PCR policy to TPM2 keys, Jarkko Sakkinen
- [PATCH 2/4] security: keys: trusted: add ability to specify arbitrary policy, James Bottomley
  - Re: [PATCH 2/4] security: keys: trusted: add ability to specify arbitrary policy, Jarkko Sakkinen
- [PATCH 3/4] security: keys: trusted: implement counter/timer policy, James Bottomley
- [PATCH 4/4] security: keys: trusted: implement authorization policy, James Bottomley
- Re: [PATCH 0/4] Trusted Key policy for TPM 2.0, David Woodhouse
  - Re: [PATCH 0/4] Trusted Key policy for TPM 2.0, James Bottomley
    - Re: [PATCH 0/4] Trusted Key policy for TPM 2.0, David Woodhouse
      - Re: [PATCH 0/4] Trusted Key policy for TPM 2.0, James Bottomley
        
        Re: [PATCH 0/4] Trusted Key policy for TPM 2.0, David Woodhouse
        
        Re: [PATCH 0/4] Trusted Key policy for TPM 2.0, James Bottomley
        
        Re: [PATCH 0/4] Trusted Key policy for TPM 2.0, David Woodhouse
  - Re: [PATCH 0/4] Trusted Key policy for TPM 2.0, Jarkko Sakkinen
[PATCH 00/16] Rid W=1 warnings from Char, Lee Jones
- [PATCH 07/16] char: tpm: tpm1-cmd: Fix a couple of misnamed functions, Lee Jones
  - Re: [PATCH 07/16] char: tpm: tpm1-cmd: Fix a couple of misnamed functions, Jarkko Sakkinen
- [PATCH 08/16] char: tpm: tpm_ftpm_tee: Fix a couple of kernel-doc misdemeanours, Lee Jones
  - Re: [PATCH 08/16] char: tpm: tpm_ftpm_tee: Fix a couple of kernel-doc misdemeanours, Jarkko Sakkinen
- Re: [PATCH 00/16] Rid W=1 warnings from Char, Arnd Bergmann
  - Re: [PATCH 00/16] Rid W=1 warnings from Char, Lee Jones
    - Re: [PATCH 00/16] Rid W=1 warnings from Char, Greg Kroah-Hartman
      - Re: [PATCH 00/16] Rid W=1 warnings from Char, Greg Kroah-Hartman
        
        Re: [PATCH 00/16] Rid W=1 warnings from Char, Lee Jones
[PATCH 0/7] ima: Add template fields to verify EVM portable signatures, Roberto Sassu
- [PATCH 1/7] ima: Add ima_show_template_uint() template library function, Roberto Sassu
- [PATCH 2/7] ima: Introduce template fields iuid and igid, Roberto Sassu
- [PATCH 3/7] ima: Introduce template fields mntuidmap and mntgidmap, Roberto Sassu
  - Re: [PATCH 3/7] ima: Introduce template fields mntuidmap and mntgidmap, Christian Brauner
    - Re: [PATCH 3/7] ima: Introduce template fields mntuidmap and mntgidmap, Christian Brauner
      - RE: [PATCH 3/7] ima: Introduce template fields mntuidmap and mntgidmap, Roberto Sassu
- [PATCH 4/7] ima: Introduce template field imode, Roberto Sassu
- [PATCH 5/7] evm: Verify portable signatures against all protected xattrs, Roberto Sassu
  - Re: [PATCH 5/7] evm: Verify portable signatures against all protected xattrs, Mimi Zohar
- [PATCH 6/7] ima: Introduce template field evmxattrs, Roberto Sassu
  - Re: [PATCH 6/7] ima: Introduce template field evmxattrs, Mimi Zohar
- [PATCH 7/7] evm: Don't return an error in evm_write_xattrs() if audit is not enabled, Roberto Sassu
[PATCH v2] add longer timeout for verify signature command, amirmizi6
- [PATCH v2] tpm2: add longer timeout for verify signature command, amirmizi6
  - Re: [PATCH v2] tpm2: add longer timeout for verify signature command, Jarkko Sakkinen
[PATCH v3] char: tpm: move to use request_irq by IRQF_NO_AUTOEN flag, Tian Tao
- Re: [PATCH v3] char: tpm: move to use request_irq by IRQF_NO_AUTOEN flag, Jarkko Sakkinen
  - Re: [PATCH v3] char: tpm: move to use request_irq by IRQF_NO_AUTOEN flag, tiantao (H)
[RFC PATCH 0/3] Add additional MOK vars, Eric Snowberg
- [RFC PATCH 1/3] keys: Add ability to trust the platform keyring, Eric Snowberg
  - Re: [RFC PATCH 1/3] keys: Add ability to trust the platform keyring, Jarkko Sakkinen
- [RFC PATCH 3/3] ima: Enable IMA SB Policy if MokIMAPolicy found, Eric Snowberg
- [RFC PATCH 2/3] keys: Trust platform keyring if MokTrustPlatform found, Eric Snowberg
- Re: [RFC PATCH 0/3] Add additional MOK vars, Jarkko Sakkinen
- Re: [RFC PATCH 0/3] Add additional MOK vars, Mimi Zohar
  - Re: [RFC PATCH 0/3] Add additional MOK vars, Eric Snowberg
    - Re: [RFC PATCH 0/3] Add additional MOK vars, Mimi Zohar
      - Re: [RFC PATCH 0/3] Add additional MOK vars, Eric Snowberg
        
        Re: [RFC PATCH 0/3] Add additional MOK vars, Mimi Zohar
        
        Re: [RFC PATCH 0/3] Add additional MOK vars, Eric Snowberg
        
        Re: [RFC PATCH 0/3] Add additional MOK vars, Mimi Zohar
        
        Re: [RFC PATCH 0/3] Add additional MOK vars, Eric Snowberg
        
        Re: [RFC PATCH 0/3] Add additional MOK vars, Dr. Greg
Changes for module stacking in Linux integrity, Casey Schaufler
[RESEND PATCH v2 1/1] char: tpm: move to use request_irq by IRQF_NO_AUTOEN flag, Tian Tao
- Re: [RESEND PATCH v2 1/1] char: tpm: move to use request_irq by IRQF_NO_AUTOEN flag, Jarkko Sakkinen
[PATCH v7 00/12] evm: Improve usability of portable signatures, Roberto Sassu
- [PATCH v7 02/12] evm: Load EVM key in ima_load_x509() to avoid appraisal, Roberto Sassu
- [PATCH v7 01/12] evm: Execute evm_inode_init_security() only when an HMAC key is loaded, Roberto Sassu
- [PATCH v7 03/12] evm: Refuse EVM_ALLOW_METADATA_WRITES only if an HMAC key is loaded, Roberto Sassu
- [PATCH v7 04/12] evm: Introduce evm_revalidate_status(), Roberto Sassu
- [PATCH v7 05/12] evm: Introduce evm_hmac_disabled() to safely ignore verification errors, Roberto Sassu
  - [RESEND][PATCH 05/12] evm: Introduce evm_hmac_disabled() to safely ignore verification errors, Roberto Sassu
    - RE: [RESEND][PATCH 05/12] evm: Introduce evm_hmac_disabled() to safely ignore verification errors, Roberto Sassu
- [PATCH v7 06/12] evm: Allow xattr/attr operations for portable signatures, Roberto Sassu
- [PATCH v7 08/12] evm: Allow setxattr() and setattr() for unmodified metadata, Roberto Sassu
- [PATCH v7 07/12] evm: Pass user namespace to set/remove xattr hooks, Roberto Sassu
- [PATCH v7 09/12] evm: Deprecate EVM_ALLOW_METADATA_WRITES, Roberto Sassu
- [PATCH v7 10/12] ima: Allow imasig requirement to be satisfied by EVM portable signatures, Roberto Sassu
- [PATCH v7 11/12] ima: Introduce template field evmsig and write to field sig as fallback, Roberto Sassu
- [PATCH v7 12/12] ima: Don't remove security.ima if file must not be appraised, Roberto Sassu
- Re: [PATCH v7 00/12] evm: Improve usability of portable signatures, Mimi Zohar
  - RE: [PATCH v7 00/12] evm: Improve usability of portable signatures, Roberto Sassu
    - Re: [PATCH v7 00/12] evm: Improve usability of portable signatures, Mimi Zohar
[PATCH v26 15/25] LSM: Ensure the correct LSM context releaser, Casey Schaufler
- Re: [PATCH v26 15/25] LSM: Ensure the correct LSM context releaser, Paul Moore
[PATCH v26 13/25] IMA: Change internal interfaces to use lsmblobs, Casey Schaufler
[PATCH v26 12/25] LSM: Use lsmblob in security_cred_getsecid, Casey Schaufler
[PATCH v26 11/25] LSM: Use lsmblob in security_inode_getsecid, Casey Schaufler
[PATCH v26 10/25] LSM: Use lsmblob in security_task_getsecid, Casey Schaufler
[PATCH v26 05/25] LSM: Use lsmblob in security_audit_rule_match, Casey Schaufler
[GIT PULL] TPM DEVICE DRIVER changes for v5.13-rc2, Jarkko Sakkinen
- Re: [GIT PULL] TPM DEVICE DRIVER changes for v5.13-rc2, pr-tracker-bot
[PATCH v2 0/1] tpm: fix error return code in tpm2_get_cc_attrs_tbl(), Zhen Lei
- [PATCH v2 1/1] tpm: fix error return code in tpm2_get_cc_attrs_tbl(), Zhen Lei
  - Re: [PATCH v2 1/1] tpm: fix error return code in tpm2_get_cc_attrs_tbl(), Jarkko Sakkinen
[PATCH v2 00/40] Use ASCII subset instead of UTF-8 alternate symbols, Mauro Carvalho Chehab
- [PATCH v2 23/40] docs: security: keys: trusted-encrypted.rst: Use ASCII subset instead of UTF-8 alternate symbols, Mauro Carvalho Chehab
- Re: [PATCH v2 00/40] Use ASCII subset instead of UTF-8 alternate symbols, Theodore Ts'o
  - Re: [PATCH v2 00/40] Use ASCII subset instead of UTF-8 alternate symbols, Mauro Carvalho Chehab
    - Re: [PATCH v2 00/40] Use ASCII subset instead of UTF-8 alternate symbols, David Woodhouse
- Re: [PATCH v2 00/40] Use ASCII subset instead of UTF-8 alternate symbols, David Woodhouse
  - Re: [PATCH v2 00/40] Use ASCII subset instead of UTF-8 alternate symbols, Mauro Carvalho Chehab
    - Re: [PATCH v2 00/40] Use ASCII subset instead of UTF-8 alternate symbols, David Woodhouse
      - Re: [PATCH v2 00/40] Use ASCII subset instead of UTF-8 alternate symbols, Edward Cree
        
        Re: [PATCH v2 00/40] Use ASCII subset instead of UTF-8 alternate symbols, Mauro Carvalho Chehab
      - Re: [PATCH v2 00/40] Use ASCII subset instead of UTF-8 alternate symbols, Mauro Carvalho Chehab
        
        Re: [PATCH v2 00/40] Use ASCII subset instead of UTF-8 alternate symbols, David Woodhouse
        
        Re: [PATCH v2 00/40] Use ASCII subset instead of UTF-8 alternate symbols, Mauro Carvalho Chehab
        
        Re: [PATCH v2 00/40] Use ASCII subset instead of UTF-8 alternate symbols, David Woodhouse
[PATCH v6 0/3] ima-evm-utils: Add --keyid option, Vitaly Chikunov
- [PATCH v6 1/3] ima-evm-utils: Allow manual setting keyid for signing, Vitaly Chikunov
  - Re: [PATCH v6 1/3] ima-evm-utils: Allow manual setting keyid for signing, Mimi Zohar
    - Re: [PATCH v6 1/3] ima-evm-utils: Allow manual setting keyid for signing, Vitaly Chikunov
      - Re: [PATCH v6 1/3] ima-evm-utils: Allow manual setting keyid for signing, Mimi Zohar
        
        Re: [PATCH v6 1/3] ima-evm-utils: Allow manual setting keyid for signing, Vitaly Chikunov
        
        Re: [PATCH v6 1/3] ima-evm-utils: Allow manual setting keyid for signing, Mimi Zohar
        
        Re: [PATCH v6 1/3] ima-evm-utils: Allow manual setting keyid for signing, Vitaly Chikunov
        
        Re: [PATCH v6 1/3] ima-evm-utils: Allow manual setting keyid for signing, Mimi Zohar
        
        Re: [PATCH v6 1/3] ima-evm-utils: Allow manual setting keyid for signing, Vitaly Chikunov
        
        Re: [PATCH v6 1/3] ima-evm-utils: Allow manual setting keyid for signing, Mimi Zohar
- [PATCH v6 2/3] ima-evm-utils: Allow manual setting keyid from a cert file, Vitaly Chikunov
  - Re: [PATCH v6 2/3] ima-evm-utils: Allow manual setting keyid from a cert file, Mimi Zohar
    - Re: [PATCH v6 2/3] ima-evm-utils: Allow manual setting keyid from a cert file, Vitaly Chikunov
      - Re: [PATCH v6 2/3] ima-evm-utils: Allow manual setting keyid from a cert file, Mimi Zohar
- [PATCH v6 3/3] ima-evm-utils: Read keyid from the cert appended to the key file, Vitaly Chikunov
  - Re: [PATCH v6 3/3] ima-evm-utils: Read keyid from the cert appended to the key file, Mimi Zohar
    - Re: [PATCH v6 3/3] ima-evm-utils: Read keyid from the cert appended to the key file, Vitaly Chikunov
  - Re: [PATCH v6 3/3] ima-evm-utils: Read keyid from the cert appended to the key file, Mimi Zohar
    - Re: [PATCH v6 3/3] ima-evm-utils: Read keyid from the cert appended to the key file, Vitaly Chikunov
      - Re: [PATCH v6 3/3] ima-evm-utils: Read keyid from the cert appended to the key file, Vitaly Chikunov
[PATCH v4] IMA: support for duplicate measurement records, Tushar Sugandhi
- Re: [PATCH v4] IMA: support for duplicate measurement records, Mimi Zohar
  - Re: [PATCH v4] IMA: support for duplicate measurement records, Tushar Sugandhi
[PATCH v1] add longer timeout for verify signature command, amirmizi6
- [PATCH v1] tpm2: add longer timeout for verify signature command, amirmizi6
  - Re: [PATCH v1] tpm2: add longer timeout for verify signature command, Jarkko Sakkinen
[PATCH 1/2] tpm, tpm_tis: Extend locality handling to TPM2 in tpm_tis_gen_interrupt(), Jarkko Sakkinen
- [PATCH 2/2] tpm, tpm_tis: Reserve locality in tpm_tis_resume(), Jarkko Sakkinen
- Re: [PATCH 1/2] tpm, tpm_tis: Extend locality handling to TPM2 in tpm_tis_gen_interrupt(), Lino Sanfilippo
  - Re: [PATCH 1/2] tpm, tpm_tis: Extend locality handling to TPM2 in tpm_tis_gen_interrupt(), Jarkko Sakkinen
[syzbot] possible deadlock in process_measurement (3), syzbot
[PATCH 00/53] Get rid of UTF-8 chars that can be mapped as ASCII, Mauro Carvalho Chehab
- [PATCH 32/53] docs: security: keys: trusted-encrypted.rst: avoid using UTF-8 chars, Mauro Carvalho Chehab
- Re: [PATCH 00/53] Get rid of UTF-8 chars that can be mapped as ASCII, David Woodhouse
  - Re: [PATCH 00/53] Get rid of UTF-8 chars that can be mapped as ASCII, Mauro Carvalho Chehab

[Index of Archives] [Linux Kernel] [Linux Kernel Hardening] [Linux NFS] [Linux NILFS] [Linux USB Devel] [Video for Linux] [Linux SCSI] [Yosemite Forum]