Linux Integrity

Date Index

Re: [PATCH v2 6/6] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, (continued)
- Re: [PATCH v2 0/6] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Ahmad Fatoum
[PATCH v2] evm: Check xattr size discrepancy between kernel and user, Roberto Sassu
- Re: [PATCH v2] evm: Check xattr size discrepancy between kernel and user, Mimi Zohar
[PATCH] evm: Check xattr size misalignment between kernel and user, Roberto Sassu
- Re: [PATCH] evm: Check xattr size misalignment between kernel and user, Mimi Zohar
[PATCH v2] evm: output EVM digest calculation info, Mimi Zohar
- Re: [PATCH v2] evm: output EVM digest calculation info, nramas
[PATCH v2] tpm, tpm_tis_spi: Allow to sleep in the interrupt handler, Lino Sanfilippo
- Re: [PATCH v2] tpm, tpm_tis_spi: Allow to sleep in the interrupt handler, Jarkko Sakkinen
  - Re: [PATCH v2] tpm, tpm_tis_spi: Allow to sleep in the interrupt handler, Lino Sanfilippo
  - Aw: Re: [PATCH v2] tpm, tpm_tis_spi: Allow to sleep in the interrupt handler, Lino Sanfilippo
[integrity:next-integrity-testing 13/13] security/integrity/evm/evm_crypto.c:181:41: warning: format specifies type 'unsigned long' but the argument has type 'unsigned int', kernel test robot
[integrity:next-integrity-testing 13/13] <command-line>: warning: format '%lu' expects argument of type 'long unsigned int', but argument 3 has type 'unsigned int', kernel test robot
[PATCH v2 00/12] x86: Trenchboot secure dynamic launch Linux kernel support, Ross Philipson
- [PATCH v2 08/12] kexec: Secure Launch kexec SEXIT support, Ross Philipson
- [PATCH v2 11/12] tpm: Allow locality 2 to be set when initializing the TPM for Secure Launch, Ross Philipson
- [PATCH v2 06/12] x86: Secure Launch kernel late boot stub, Ross Philipson
- [PATCH v2 09/12] reboot: Secure Launch SEXIT support on reboot paths, Ross Philipson
- [PATCH v2 12/12] iommu: Do not allow IOMMU passthrough with Secure Launch, Ross Philipson
  - Re: [PATCH v2 12/12] iommu: Do not allow IOMMU passthrough with Secure Launch, Robin Murphy
    - Re: [PATCH v2 12/12] iommu: Do not allow IOMMU passthrough with Secure Launch, Ross Philipson
      - Re: [PATCH v2 12/12] iommu: Do not allow IOMMU passthrough with Secure Launch, Andy Lutomirski
        
        Re: [PATCH v2 12/12] iommu: Do not allow IOMMU passthrough with Secure Launch, Ross Philipson
        
        Re: [PATCH v2 12/12] iommu: Do not allow IOMMU passthrough with Secure Launch, Daniel P. Smith
      - Re: [PATCH v2 12/12] iommu: Do not allow IOMMU passthrough with Secure Launch, Robin Murphy
        
        Re: [PATCH v2 12/12] iommu: Do not allow IOMMU passthrough with Secure Launch, Ross Philipson
- [PATCH v2 04/12] x86: Add early SHA support for Secure Launch early measurements, Ross Philipson
- [PATCH v2 10/12] x86: Secure Launch late initcall platform module, Ross Philipson
- [PATCH v2 05/12] x86: Secure Launch kernel early boot stub, Ross Philipson
- [PATCH v2 03/12] x86: Secure Launch main header file, Ross Philipson
- [PATCH v2 02/12] x86: Secure Launch Kconfig, Ross Philipson
- [PATCH v2 01/12] x86/boot: Place kernel_info at a fixed offset, Ross Philipson
- [PATCH v2 07/12] x86: Secure Launch SMP bringup support, Ross Philipson
[PATCH 1/2] tpm: Fix tpmrm reference counting, Vincent Whitchurch
- [PATCH 2/2] tpm: Fix crash on tmprm release, Vincent Whitchurch
  - Re: [PATCH 2/2] tpm: Fix crash on tmprm release, Jarkko Sakkinen
    - Re: [PATCH 2/2] tpm: Fix crash on tmprm release, Vincent Whitchurch
  - Re: [PATCH 2/2] tpm: Fix crash on tmprm release, Stefan Berger
- Re: [PATCH 1/2] tpm: Fix tpmrm reference counting, Jason Gunthorpe
  - Re: [PATCH 1/2] tpm: Fix tpmrm reference counting, Vincent Whitchurch
[PATCH v5 0/8] tee: Improve support for kexec and kdump, Tyler Hicks
- [PATCH v5 1/8] optee: Fix memory leak when failing to register shm pages, Tyler Hicks
- [PATCH v5 2/8] optee: Refuse to load the driver under the kdump kernel, Tyler Hicks
- [PATCH v5 3/8] optee: fix tee out of memory failure seen during kexec reboot, Tyler Hicks
- [PATCH v5 4/8] optee: Clear stale cache entries during initialization, Tyler Hicks
  - Re: [PATCH v5 4/8] optee: Clear stale cache entries during initialization, Jens Wiklander
- [PATCH v5 5/8] tee: add tee_shm_alloc_kernel_buf(), Tyler Hicks
- [PATCH v5 6/8] tee: Correct inappropriate usage of TEE_SHM_DMA_BUF flag, Tyler Hicks
  - Re: [PATCH v5 6/8] tee: Correct inappropriate usage of TEE_SHM_DMA_BUF flag, Jens Wiklander
- [PATCH v5 7/8] tpm_ftpm_tee: Free and unregister TEE shared memory during kexec, Tyler Hicks
- [PATCH v5 8/8] firmware: tee_bnxt: Release TEE shm, session, and context during kexec, Tyler Hicks
- Re: [PATCH v5 0/8] tee: Improve support for kexec and kdump, Sumit Garg
  - Re: [PATCH v5 0/8] tee: Improve support for kexec and kdump, Tyler Hicks
- Re: [PATCH v5 0/8] tee: Improve support for kexec and kdump, Jens Wiklander
  - Re: [PATCH v5 0/8] tee: Improve support for kexec and kdump, Tyler Hicks
    - Re: [PATCH v5 0/8] tee: Improve support for kexec and kdump, Florian Fainelli
      - Re: [PATCH v5 0/8] tee: Improve support for kexec and kdump, Jens Wiklander
[PATCH 0/3] DCP as trusted keys backend, Richard Weinberger
- [PATCH 3/3] doc: trusted-encrypted: add DCP as new trust source, Richard Weinberger
  - Re: [PATCH 3/3] doc: trusted-encrypted: add DCP as new trust source, Ahmad Fatoum
- [PATCH 1/3] crypto: mxs-dcp: Add support for hardware provided keys, Richard Weinberger
  - Re: [PATCH 1/3] crypto: mxs-dcp: Add support for hardware provided keys, Richard Weinberger
    - Re: [PATCH 1/3] crypto: mxs-dcp: Add support for hardware provided keys, Herbert Xu
      - Re: [PATCH 1/3] crypto: mxs-dcp: Add support for hardware provided keys, Richard Weinberger
  - Re: [PATCH 1/3] crypto: mxs-dcp: Add support for hardware provided keys, Ahmad Fatoum
    - Re: [PATCH 1/3] crypto: mxs-dcp: Add support for hardware provided keys, Richard Weinberger
      - Re: [PATCH 1/3] crypto: mxs-dcp: Add support for hardware provided keys, Ahmad Fatoum
- [PATCH 2/3] KEYS: trusted: Introduce support for NXP DCP-based trusted keys, Richard Weinberger
  - Re: [PATCH 2/3] KEYS: trusted: Introduce support for NXP DCP-based trusted keys, Ahmad Fatoum
    - Re: [PATCH 2/3] KEYS: trusted: Introduce support for NXP DCP-based trusted keys, Richard Weinberger
      - Re: [PATCH 2/3] KEYS: trusted: Introduce support for NXP DCP-based trusted keys, Ahmad Fatoum
Size mismatch between vfs_getxattr_alloc() and vfs_getxattr(), Roberto Sassu
- [PATCH] fs: Return raw xattr for security.* if there is size disagreement with LSMs, Roberto Sassu
  - Re: [PATCH] fs: Return raw xattr for security.* if there is size disagreement with LSMs, Stefan Berger
    - RE: [PATCH] fs: Return raw xattr for security.* if there is size disagreement with LSMs, Roberto Sassu
      - Re: [PATCH] fs: Return raw xattr for security.* if there is size disagreement with LSMs, Mimi Zohar
        
        RE: [PATCH] fs: Return raw xattr for security.* if there is size disagreement with LSMs, Roberto Sassu
        
        Re: [PATCH] fs: Return raw xattr for security.* if there is size disagreement with LSMs, Paul Moore
        
        Re: [PATCH] fs: Return raw xattr for security.* if there is size disagreement with LSMs, Mimi Zohar
        
        RE: [PATCH] fs: Return raw xattr for security.* if there is size disagreement with LSMs, Roberto Sassu
        
        Re: [PATCH] fs: Return raw xattr for security.* if there is size disagreement with LSMs, Paul Moore
        
        Re: [PATCH] fs: Return raw xattr for security.* if there is size disagreement with LSMs, Mimi Zohar
[PATCH v27 15/25] LSM: Ensure the correct LSM context releaser, Casey Schaufler
[PATCH v27 13/25] IMA: Change internal interfaces to use lsmblobs, Casey Schaufler
[PATCH v27 12/25] LSM: Use lsmblob in security_cred_getsecid, Casey Schaufler
[PATCH v27 11/25] LSM: Use lsmblob in security_inode_getsecid, Casey Schaufler
[PATCH v27 10/25] LSM: Use lsmblob in security_task_getsecid, Casey Schaufler
[PATCH v27 05/25] LSM: Use lsmblob in security_audit_rule_match, Casey Schaufler
[PATCH v4 0/8] tee: Improve support for kexec and kdump, Tyler Hicks
- [PATCH v4 1/8] optee: Fix memory leak when failing to register shm pages, Tyler Hicks
  - Re: [PATCH v4 1/8] optee: Fix memory leak when failing to register shm pages, Jens Wiklander
- [PATCH v4 2/8] optee: Refuse to load the driver under the kdump kernel, Tyler Hicks
  - Re: [PATCH v4 2/8] optee: Refuse to load the driver under the kdump kernel, Jens Wiklander
- [PATCH v4 3/8] optee: fix tee out of memory failure seen during kexec reboot, Tyler Hicks
  - Re: [PATCH v4 3/8] optee: fix tee out of memory failure seen during kexec reboot, Jens Wiklander
    - Re: [PATCH v4 3/8] optee: fix tee out of memory failure seen during kexec reboot, Tyler Hicks
      - Re: [PATCH v4 3/8] optee: fix tee out of memory failure seen during kexec reboot, Jens Wiklander
  - Re: [PATCH v4 3/8] optee: fix tee out of memory failure seen during kexec reboot, Jens Wiklander
- [PATCH v4 4/8] optee: Clear stale cache entries during initialization, Tyler Hicks
  - Re: [PATCH v4 4/8] optee: Clear stale cache entries during initialization, Jens Wiklander
    - Re: [PATCH v4 4/8] optee: Clear stale cache entries during initialization, Tyler Hicks
      - Re: [PATCH v4 4/8] optee: Clear stale cache entries during initialization, Jens Wiklander
- [PATCH v4 5/8] tee: add tee_shm_alloc_kernel_buf(), Tyler Hicks
- [PATCH v4 6/8] tee: Support kernel shm registration without dma-buf backing, Tyler Hicks
  - Re: [PATCH v4 6/8] tee: Support kernel shm registration without dma-buf backing, Sumit Garg
    - Re: [PATCH v4 6/8] tee: Support kernel shm registration without dma-buf backing, Tyler Hicks
      - Re: [PATCH v4 6/8] tee: Support kernel shm registration without dma-buf backing, Tyler Hicks
        
        Re: [PATCH v4 6/8] tee: Support kernel shm registration without dma-buf backing, Sumit Garg
        
        Re: [PATCH v4 6/8] tee: Support kernel shm registration without dma-buf backing, Tyler Hicks
        
        Re: [PATCH v4 6/8] tee: Support kernel shm registration without dma-buf backing, Sumit Garg
- [PATCH v4 7/8] tpm_ftpm_tee: Free and unregister TEE shared memory during kexec, Tyler Hicks
  - Re: [PATCH v4 7/8] tpm_ftpm_tee: Free and unregister TEE shared memory during kexec, Jarkko Sakkinen
- [PATCH v4 8/8] firmware: tee_bnxt: Release TEE shm, session, and context during kexec, Tyler Hicks
[PATCH 1/2] ima: Fix warning: no previous prototype for function 'ima_add_kexec_buffer', Lakshmi Ramasubramanian
- [PATCH 2/2] ima: Fix warning: no previous prototype for function 'ima_post_key_create_or_update', Lakshmi Ramasubramanian
  - Re: [PATCH 2/2] ima: Fix warning: no previous prototype for function 'ima_post_key_create_or_update', Rob Herring
  - Re: [PATCH 2/2] ima: Fix warning: no previous prototype for function 'ima_post_key_create_or_update', Mimi Zohar
- Re: [PATCH 1/2] ima: Fix warning: no previous prototype for function 'ima_add_kexec_buffer', Rob Herring
- Re: [PATCH 1/2] ima: Fix warning: no previous prototype for function 'ima_add_kexec_buffer', Mimi Zohar
[PATCH v6 0/4] Add support for ECDSA-signed kernel modules, Stefan Berger
- [PATCH v6 4/4] certs: Adjustment due to 'Check whether openssl tool is available', Stefan Berger
  - Re: [PATCH v6 4/4] certs: Adjustment due to 'Check whether openssl tool is available', Jarkko Sakkinen
    - Re: [PATCH v6 4/4] certs: Adjustment due to 'Check whether openssl tool is available', Stefan Berger
      - Re: [PATCH v6 4/4] certs: Adjustment due to 'Check whether openssl tool is available', Jarkko Sakkinen
        
        Re: [PATCH v6 4/4] certs: Adjustment due to 'Check whether openssl tool is available', Stefan Berger
        
        Re: [PATCH v6 4/4] certs: Adjustment due to 'Check whether openssl tool is available', Jarkko Sakkinen
- [PATCH v6 1/4] certs: Trigger creation of RSA module signing key if it's not an RSA key, Stefan Berger
- [PATCH v6 2/4] certs: Check whether openssl tool is available, Stefan Berger
- [PATCH v6 3/4] certs: Add support for using elliptic curve keys for signing modules, Stefan Berger
- Re: [PATCH v6 0/4] Add support for ECDSA-signed kernel modules, Stefan Berger
- Re: [PATCH v6 0/4] Add support for ECDSA-signed kernel modules, Jarkko Sakkinen
  - Re: [PATCH v6 0/4] Add support for ECDSA-signed kernel modules, Stefan Berger
    - Re: [PATCH v6 0/4] Add support for ECDSA-signed kernel modules, Jarkko Sakkinen
  - Re: [PATCH v6 0/4] Add support for ECDSA-signed kernel modules, Jarkko Sakkinen
[PATCH] tpm2_load_command leaks memory, Dhiraj Shah
- Re: [PATCH] tpm2_load_command leaks memory, kernel test robot
- Re: [PATCH] tpm2_load_command leaks memory, James Bottomley
ima - wait for tpm load, Jorge Ramirez-Ortiz, Foundries
- Re: ima - wait for tpm load, Mimi Zohar
  - Re: ima - wait for tpm load, Jorge Ramirez-Ortiz, Foundries
    - Re: ima - wait for tpm load, Mimi Zohar
      - Re: ima - wait for tpm load, Ken Goldman
[PATCH v3] tpm: Replace WARN_ONCE() with dev_err_once() in tpm_tis_status(), Jarkko Sakkinen
- Re: [PATCH v3] tpm: Replace WARN_ONCE() with dev_err_once() in tpm_tis_status(), Greg KH
[PATCH v3 0/7] tee: Improve support for kexec and kdump, Tyler Hicks
- [PATCH v3 1/7] optee: Fix memory leak when failing to register shm pages, Tyler Hicks
- [PATCH v3 2/7] optee: Refuse to load the driver under the kdump kernel, Tyler Hicks
- [PATCH v3 3/7] optee: fix tee out of memory failure seen during kexec reboot, Tyler Hicks
- [PATCH v3 4/7] optee: Clear stale cache entries during initialization, Tyler Hicks
- [PATCH v3 5/7] tee: Support shm registration without dma-buf backing, Tyler Hicks
  - Re: [PATCH v3 5/7] tee: Support shm registration without dma-buf backing, Sumit Garg
    - Re: [PATCH v3 5/7] tee: Support shm registration without dma-buf backing, Tyler Hicks
      - Re: [PATCH v3 5/7] tee: Support shm registration without dma-buf backing, Sumit Garg
        
        Re: [PATCH v3 5/7] tee: Support shm registration without dma-buf backing, Jens Wiklander
        
        Re: [PATCH v3 5/7] tee: Support shm registration without dma-buf backing, Tyler Hicks
        
        Re: [PATCH v3 5/7] tee: Support shm registration without dma-buf backing, Tyler Hicks
        
        Re: [PATCH v3 5/7] tee: Support shm registration without dma-buf backing, Jens Wiklander
        
        Re: [PATCH v3 5/7] tee: Support shm registration without dma-buf backing, Tyler Hicks
        
        Re: [PATCH v3 5/7] tee: Support shm registration without dma-buf backing, Jens Wiklander
        
        Re: [PATCH v3 5/7] tee: Support shm registration without dma-buf backing, Tyler Hicks
        
        Re: [PATCH v3 5/7] tee: Support shm registration without dma-buf backing, Allen Pais
        
        Re: [PATCH v3 5/7] tee: Support shm registration without dma-buf backing, Jens Wiklander
        
        Re: [PATCH v3 5/7] tee: Support shm registration without dma-buf backing, Sumit Garg
- [PATCH v3 6/7] tpm_ftpm_tee: Free and unregister dynamic shared memory during kexec, Tyler Hicks
- [PATCH v3 7/7] firmware: tee_bnxt: Release shm, session, and context during kexec, Tyler Hicks
[PATCH 0/2] EVM: add some debugging info, Mimi Zohar
- [PATCH 2/2] evm: output EVM digest calculation info, Mimi Zohar
  - Re: [PATCH 2/2] evm: output EVM digest calculation info, nramas
- [PATCH 1/2] ima: differentiate between EVM failures in the audit log, Mimi Zohar
[PATCH 1/5] doc: Fix warning in Documentation/security/IMA-templates.rst, Roberto Sassu
- [PATCH 4/5] ima: Include header defining ima_post_key_create_or_update(), Roberto Sassu
- [PATCH 5/5] ima: Pass NULL instead of 0 to ima_get_action() in ima_file_mprotect(), Roberto Sassu
- [PATCH 3/5] ima/evm: Fix type mismatch, Roberto Sassu
- [PATCH 2/5] ima: Set correct casting types, Roberto Sassu
[PATCH][next] ima: Fix fall-through warning for Clang, Gustavo A. R. Silva
- Re: [PATCH][next] ima: Fix fall-through warning for Clang, Kees Cook
[integrity:next-integrity-testing 5/9] security/integrity/ima/ima_template_lib.c:616:22: sparse: sparse: incorrect type in assignment (different base types), kernel test robot
- RE: [integrity:next-integrity-testing 5/9] security/integrity/ima/ima_template_lib.c:616:22: sparse: sparse: incorrect type in assignment (different base types), Roberto Sassu
  - RE: [integrity:next-integrity-testing 5/9] security/integrity/ima/ima_template_lib.c:616:22: sparse: sparse: incorrect type in assignment (different base types), Roberto Sassu
[integrity:next-integrity-testing 4/9] security/integrity/ima/ima_template_lib.c:571:28: sparse: sparse: incorrect type in assignment (different base types), kernel test robot
[integrity:next-integrity-testing 3/9] security/integrity/ima/ima_template_lib.c:100:44: sparse: sparse: cast to restricted __le16, kernel test robot
[RFC PATCH 0/2] EVM: add some debugging info, Mimi Zohar
- [RFC PATCH 1/2] ima: differentiate between EVM failures in the audit log, Mimi Zohar
  - RE: [RFC PATCH 1/2] ima: differentiate between EVM failures in the audit log, Roberto Sassu
- [RFC PATCH 2/2] evm: output EVM digest calculation info needed for debugging, Mimi Zohar
  - Re: [RFC PATCH 2/2] evm: output EVM digest calculation info needed for debugging, nramas
    - Re: [RFC PATCH 2/2] evm: output EVM digest calculation info needed for debugging, Mimi Zohar
      - Re: [RFC PATCH 2/2] evm: output EVM digest calculation info needed for debugging, nramas
[PATCH v2 0/1] tpm_tis: Use DEFINE_RES_MEM() to simplify code, Zhen Lei
- [PATCH v2 1/1] tpm_tis: Use DEFINE_RES_MEM() to simplify code, Zhen Lei
  - Re: [PATCH v2 1/1] tpm_tis: Use DEFINE_RES_MEM() to simplify code, Jarkko Sakkinen
[PATCH -next] tpm: fix some doc warnings in tpm1-cmd.c, Yang Yingliang
- Re: [PATCH -next] tpm: fix some doc warnings in tpm1-cmd.c, Jarkko Sakkinen
[PATCH v5 0/2] Add support for ECDSA-signed kernel modules, Stefan Berger
- [PATCH v5 2/2] certs: Add support for using elliptic curve keys for signing modules, Stefan Berger
- [PATCH v5 1/2] certs: Trigger creation of RSA module signing key if it's not an RSA key, Stefan Berger
  - Re: [PATCH v5 1/2] certs: Trigger creation of RSA module signing key if it's not an RSA key, Jarkko Sakkinen
- <Possible follow-ups>
- [PATCH v5 0/2] Add support for ECDSA-signed kernel modules, Stefan Berger
  - [PATCH v5 2/2] certs: Add support for using elliptic curve keys for signing modules, Stefan Berger
  - [PATCH v5 1/2] certs: Trigger creation of RSA module signing key if it's not an RSA key, Stefan Berger
  - Re: [PATCH v5 0/2] Add support for ECDSA-signed kernel modules, Jarkko Sakkinen
    - Re: [PATCH v5 0/2] Add support for ECDSA-signed kernel modules, Stefan Berger
      - Re: [PATCH v5 0/2] Add support for ECDSA-signed kernel modules, Jarkko Sakkinen
        
        Re: [PATCH v5 0/2] Add support for ECDSA-signed kernel modules, Stefan Berger
        
        Re: [PATCH v5 0/2] Add support for ECDSA-signed kernel modules, Jarkko Sakkinen
        
        Re: [PATCH v5 0/2] Add support for ECDSA-signed kernel modules, Stefan Berger
[PATCH 1/1] tpm_tis: Use DEFINE_RES_MEM() to simplify code, Zhen Lei
- Re: [PATCH 1/1] tpm_tis: Use DEFINE_RES_MEM() to simplify code, Jarkko Sakkinen
  - Re: [PATCH 1/1] tpm_tis: Use DEFINE_RES_MEM() to simplify code, Leizhen (ThunderTown)
    - Re: [PATCH 1/1] tpm_tis: Use DEFINE_RES_MEM() to simplify code, Jarkko Sakkinen
      - Re: [PATCH 1/1] tpm_tis: Use DEFINE_RES_MEM() to simplify code, Leizhen (ThunderTown)
[integrity:next-integrity-testing 18/20] security/integrity/ima/ima_template_lib.c:623:5: warning: no previous prototype for 'ima_eventinodexattrs_init_common', kernel test robot
Good tests for IMA/EVM, Denis Semakin
[PATCH v2] tpm: Replace WARN_ONCE() with dev_err_once() in tpm_tis_status(), Jarkko Sakkinen
- Re: [PATCH v2] tpm: Replace WARN_ONCE() with dev_err_once() in tpm_tis_status(), Greg KH
  - Re: [PATCH v2] tpm: Replace WARN_ONCE() with dev_err_once() in tpm_tis_status(), Jarkko Sakkinen
[PATCH] tpm: Replace WARN_ONCE() with dev_err_once() in tpm_tis_status(), Jarkko Sakkinen
- Re: [PATCH] tpm: Replace WARN_ONCE() with dev_err_once() in tpm_tis_status(), Greg KH
- Re: [PATCH] tpm: Replace WARN_ONCE() with dev_err_once() in tpm_tis_status(), Paul Menzel
  - Re: [PATCH] tpm: Replace WARN_ONCE() with dev_err_once() in tpm_tis_status(), Jarkko Sakkinen
[PATCH v2 0/7] ima: Add template fields to verify EVM portable signatures, Roberto Sassu
- [PATCH v2 1/7] ima: Add ima_show_template_uint() template library function, Roberto Sassu
- [PATCH v2 2/7] ima: Define new template fields iuid and igid, Roberto Sassu
  - Re: [PATCH v2 2/7] ima: Define new template fields iuid and igid, Christian Brauner
- [PATCH v2 3/7] ima: Define new template field imode, Roberto Sassu
- [PATCH v2 4/7] evm: Verify portable signatures against all protected xattrs, Roberto Sassu
- [PATCH v2 5/7] ima: Define new template fields xattrnames, xattrlengths and xattrvalues, Roberto Sassu
  - [RESEND][PATCH v2 5/7] ima: Define new template fields xattrnames, xattrlengths and xattrvalues, Roberto Sassu
    - Re: [RESEND][PATCH v2 5/7] ima: Define new template fields xattrnames, xattrlengths and xattrvalues, Mimi Zohar
- [PATCH v2 6/7] ima: Define new template evm-sig, Roberto Sassu
  - Re: [PATCH v2 6/7] ima: Define new template evm-sig, Mimi Zohar
    - [RESEND][PATCH v2 6/7] ima: Define new template evm-sig, Roberto Sassu
      - Re: [RESEND][PATCH v2 6/7] ima: Define new template evm-sig, Mimi Zohar
- [PATCH v2 7/7] evm: Don't return an error in evm_write_xattrs() if audit is not enabled, Roberto Sassu
- Re: [PATCH v2 0/7] ima: Add template fields to verify EVM portable signatures, Mimi Zohar
[PATCH] tpm_tis_spi: add missing SPI device ID entries, Javier Martinez Canillas
- Re: [PATCH] tpm_tis_spi: add missing SPI device ID entries, Jason Gunthorpe
  - Re: [PATCH] tpm_tis_spi: add missing SPI device ID entries, Javier Martinez Canillas
    - Re: [PATCH] tpm_tis_spi: add missing SPI device ID entries, Jason Gunthorpe
- Re: [PATCH] tpm_tis_spi: add missing SPI device ID entries, Peter Robinson
- Re: [PATCH] tpm_tis_spi: add missing SPI device ID entries, Jarkko Sakkinen
[PATCH v2 0/7] crypto: add eddsa support for x509, Hongbo Li
- [PATCH v2 1/7] crypto: fix a memory leak in sm2, Hongbo Li
  - Re: [PATCH v2 1/7] crypto: fix a memory leak in sm2, Tianjia Zhang
    - Re: [PATCH v2 1/7] crypto: fix a memory leak in sm2, hongbo li
- [PATCH v2 2/7] lib/mpi: use kcalloc in mpi_resize, Hongbo Li
- [PATCH v2 3/7] lib/mpi: export some common function, Hongbo Li
- [PATCH v2 4/7] x509: add support for eddsa, Hongbo Li
- [PATCH v2 5/7] crypto: move common code in sm2 to ec_mpi.c and ec_mpi.h, Hongbo Li
- [PATCH v2 6/7] crypto: ed25519 cert verification, Hongbo Li
- [PATCH v2 7/7] crypto: add eddsa test vector, Hongbo Li
[PATCH ima-evm-utils v3] ima-evm-utils: Support SM2 algorithm for sign and verify, Tianjia Zhang
- Re: [PATCH ima-evm-utils v3] ima-evm-utils: Support SM2 algorithm for sign and verify, Tianjia Zhang
  - Re: [PATCH ima-evm-utils v3] ima-evm-utils: Support SM2 algorithm for sign and verify, Mimi Zohar
    - Re: [PATCH ima-evm-utils v3] ima-evm-utils: Support SM2 algorithm for sign and verify, Tianjia Zhang
      - Re: [PATCH ima-evm-utils v3] ima-evm-utils: Support SM2 algorithm for sign and verify, Mimi Zohar
        
        Re: [PATCH ima-evm-utils v3] ima-evm-utils: Support SM2 algorithm for sign and verify, Tianjia Zhang
        
        Re: [PATCH ima-evm-utils v3] ima-evm-utils: Support SM2 algorithm for sign and verify, Mimi Zohar
        
        Re: [PATCH ima-evm-utils v3] ima-evm-utils: Support SM2 algorithm for sign and verify, Tianjia Zhang
        
        Re: [PATCH ima-evm-utils v3] ima-evm-utils: Support SM2 algorithm for sign and verify, Petr Vorel
        
        Re: [PATCH ima-evm-utils v3] ima-evm-utils: Support SM2 algorithm for sign and verify, Mimi Zohar
        
        Re: [PATCH ima-evm-utils v3] ima-evm-utils: Support SM2 algorithm for sign and verify, Tianjia Zhang
[PATCH v3] ima-evm-utils: Support SM2 algorithm for sign and verify, Tianjia Zhang
- Re: [PATCH v3] ima-evm-utils: Support SM2 algorithm for sign and verify, Tianjia Zhang
- Re: [PATCH v3] ima-evm-utils: Support SM2 algorithm for sign and verify, Tianjia Zhang
[PATCH v4] add longer timeout for verify signature command, amirmizi6
- [PATCH v4] tpm2: add longer timeout for verify signature command, amirmizi6
  - Re: [PATCH v4] tpm2: add longer timeout for verify signature command, Jarkko Sakkinen
    - Re: [PATCH v4] tpm2: add longer timeout for verify signature command, Jarkko Sakkinen
EVM gives no_label error due to security_kernfs_init_security, Bighead Wang
- RE: EVM gives no_label error due to security_kernfs_init_security, Roberto Sassu
  - Re: EVM gives no_label error due to security_kernfs_init_security, Bighead Wang
    - RE: EVM gives no_label error due to security_kernfs_init_security, Roberto Sassu
[PATCH v2 0/1] draft RFC for TPM key format, James Bottomley
- [PATCH v2 1/1] doc: add draft RFC for TPM Key format, James Bottomley
[PATCH v3] add longer timeout for verify signature command, amirmizi6
- [PATCH v3] tpm2: add longer timeout for verify signature command, amirmizi6
  - Re: [PATCH v3] tpm2: add longer timeout for verify signature command, Jarkko Sakkinen
[PATCH 0/1] draft RFC for TPM key format, James Bottomley
- [PATCH 1/1] doc: add draft RFC for TPM Key format, James Bottomley
- Re: [PATCH 0/1] draft RFC for TPM key format, Jarkko Sakkinen
- Re: [PATCH 0/1] draft RFC for TPM key format, David Woodhouse
  - Re: [PATCH 0/1] draft RFC for TPM key format, David Woodhouse
[PATCH 0/4] Trusted Key policy for TPM 2.0, James Bottomley
- [PATCH 1/4] security: keys: trusted: add PCR policy to TPM2 keys, James Bottomley
  - Re: [PATCH 1/4] security: keys: trusted: add PCR policy to TPM2 keys, Jarkko Sakkinen
- [PATCH 2/4] security: keys: trusted: add ability to specify arbitrary policy, James Bottomley
  - Re: [PATCH 2/4] security: keys: trusted: add ability to specify arbitrary policy, Jarkko Sakkinen
- [PATCH 3/4] security: keys: trusted: implement counter/timer policy, James Bottomley
- [PATCH 4/4] security: keys: trusted: implement authorization policy, James Bottomley
- Re: [PATCH 0/4] Trusted Key policy for TPM 2.0, David Woodhouse
  - Re: [PATCH 0/4] Trusted Key policy for TPM 2.0, James Bottomley
    - Re: [PATCH 0/4] Trusted Key policy for TPM 2.0, David Woodhouse
      - Re: [PATCH 0/4] Trusted Key policy for TPM 2.0, James Bottomley
        
        Re: [PATCH 0/4] Trusted Key policy for TPM 2.0, David Woodhouse
        
        Re: [PATCH 0/4] Trusted Key policy for TPM 2.0, James Bottomley
        
        Re: [PATCH 0/4] Trusted Key policy for TPM 2.0, David Woodhouse
  - Re: [PATCH 0/4] Trusted Key policy for TPM 2.0, Jarkko Sakkinen
[PATCH 00/16] Rid W=1 warnings from Char, Lee Jones
- [PATCH 07/16] char: tpm: tpm1-cmd: Fix a couple of misnamed functions, Lee Jones
  - Re: [PATCH 07/16] char: tpm: tpm1-cmd: Fix a couple of misnamed functions, Jarkko Sakkinen
- [PATCH 08/16] char: tpm: tpm_ftpm_tee: Fix a couple of kernel-doc misdemeanours, Lee Jones
  - Re: [PATCH 08/16] char: tpm: tpm_ftpm_tee: Fix a couple of kernel-doc misdemeanours, Jarkko Sakkinen
- Re: [PATCH 00/16] Rid W=1 warnings from Char, Arnd Bergmann
  - Re: [PATCH 00/16] Rid W=1 warnings from Char, Lee Jones
    - Re: [PATCH 00/16] Rid W=1 warnings from Char, Greg Kroah-Hartman
      - Re: [PATCH 00/16] Rid W=1 warnings from Char, Greg Kroah-Hartman
        
        Re: [PATCH 00/16] Rid W=1 warnings from Char, Lee Jones
[PATCH 0/7] ima: Add template fields to verify EVM portable signatures, Roberto Sassu
- [PATCH 1/7] ima: Add ima_show_template_uint() template library function, Roberto Sassu
- [PATCH 2/7] ima: Introduce template fields iuid and igid, Roberto Sassu
- [PATCH 3/7] ima: Introduce template fields mntuidmap and mntgidmap, Roberto Sassu
  - Re: [PATCH 3/7] ima: Introduce template fields mntuidmap and mntgidmap, Christian Brauner
    - Re: [PATCH 3/7] ima: Introduce template fields mntuidmap and mntgidmap, Christian Brauner
      - RE: [PATCH 3/7] ima: Introduce template fields mntuidmap and mntgidmap, Roberto Sassu
- [PATCH 4/7] ima: Introduce template field imode, Roberto Sassu
- [PATCH 5/7] evm: Verify portable signatures against all protected xattrs, Roberto Sassu
  - Re: [PATCH 5/7] evm: Verify portable signatures against all protected xattrs, Mimi Zohar
- [PATCH 6/7] ima: Introduce template field evmxattrs, Roberto Sassu
  - Re: [PATCH 6/7] ima: Introduce template field evmxattrs, Mimi Zohar
- [PATCH 7/7] evm: Don't return an error in evm_write_xattrs() if audit is not enabled, Roberto Sassu
[PATCH v2] add longer timeout for verify signature command, amirmizi6
- [PATCH v2] tpm2: add longer timeout for verify signature command, amirmizi6
  - Re: [PATCH v2] tpm2: add longer timeout for verify signature command, Jarkko Sakkinen
[PATCH v3] char: tpm: move to use request_irq by IRQF_NO_AUTOEN flag, Tian Tao
- Re: [PATCH v3] char: tpm: move to use request_irq by IRQF_NO_AUTOEN flag, Jarkko Sakkinen
  - Re: [PATCH v3] char: tpm: move to use request_irq by IRQF_NO_AUTOEN flag, tiantao (H)
[RFC PATCH 0/3] Add additional MOK vars, Eric Snowberg
- [RFC PATCH 1/3] keys: Add ability to trust the platform keyring, Eric Snowberg
  - Re: [RFC PATCH 1/3] keys: Add ability to trust the platform keyring, Jarkko Sakkinen
- [RFC PATCH 3/3] ima: Enable IMA SB Policy if MokIMAPolicy found, Eric Snowberg
- [RFC PATCH 2/3] keys: Trust platform keyring if MokTrustPlatform found, Eric Snowberg
- Re: [RFC PATCH 0/3] Add additional MOK vars, Jarkko Sakkinen
- Re: [RFC PATCH 0/3] Add additional MOK vars, Mimi Zohar
  - Re: [RFC PATCH 0/3] Add additional MOK vars, Eric Snowberg
    - Re: [RFC PATCH 0/3] Add additional MOK vars, Mimi Zohar
      - Re: [RFC PATCH 0/3] Add additional MOK vars, Eric Snowberg
        
        Re: [RFC PATCH 0/3] Add additional MOK vars, Mimi Zohar
        
        Re: [RFC PATCH 0/3] Add additional MOK vars, Eric Snowberg
        
        Re: [RFC PATCH 0/3] Add additional MOK vars, Mimi Zohar
        
        Re: [RFC PATCH 0/3] Add additional MOK vars, Eric Snowberg
        
        Re: [RFC PATCH 0/3] Add additional MOK vars, Dr. Greg
Changes for module stacking in Linux integrity, Casey Schaufler
[RESEND PATCH v2 1/1] char: tpm: move to use request_irq by IRQF_NO_AUTOEN flag, Tian Tao
- Re: [RESEND PATCH v2 1/1] char: tpm: move to use request_irq by IRQF_NO_AUTOEN flag, Jarkko Sakkinen
[PATCH v7 00/12] evm: Improve usability of portable signatures, Roberto Sassu
- [PATCH v7 02/12] evm: Load EVM key in ima_load_x509() to avoid appraisal, Roberto Sassu
- [PATCH v7 01/12] evm: Execute evm_inode_init_security() only when an HMAC key is loaded, Roberto Sassu
- [PATCH v7 03/12] evm: Refuse EVM_ALLOW_METADATA_WRITES only if an HMAC key is loaded, Roberto Sassu
- [PATCH v7 04/12] evm: Introduce evm_revalidate_status(), Roberto Sassu
- [PATCH v7 05/12] evm: Introduce evm_hmac_disabled() to safely ignore verification errors, Roberto Sassu
  - [RESEND][PATCH 05/12] evm: Introduce evm_hmac_disabled() to safely ignore verification errors, Roberto Sassu
    - RE: [RESEND][PATCH 05/12] evm: Introduce evm_hmac_disabled() to safely ignore verification errors, Roberto Sassu
- [PATCH v7 06/12] evm: Allow xattr/attr operations for portable signatures, Roberto Sassu
- [PATCH v7 08/12] evm: Allow setxattr() and setattr() for unmodified metadata, Roberto Sassu
- [PATCH v7 07/12] evm: Pass user namespace to set/remove xattr hooks, Roberto Sassu
- [PATCH v7 09/12] evm: Deprecate EVM_ALLOW_METADATA_WRITES, Roberto Sassu
- [PATCH v7 10/12] ima: Allow imasig requirement to be satisfied by EVM portable signatures, Roberto Sassu
- [PATCH v7 11/12] ima: Introduce template field evmsig and write to field sig as fallback, Roberto Sassu
- [PATCH v7 12/12] ima: Don't remove security.ima if file must not be appraised, Roberto Sassu
- Re: [PATCH v7 00/12] evm: Improve usability of portable signatures, Mimi Zohar
  - RE: [PATCH v7 00/12] evm: Improve usability of portable signatures, Roberto Sassu
    - Re: [PATCH v7 00/12] evm: Improve usability of portable signatures, Mimi Zohar
[PATCH v26 15/25] LSM: Ensure the correct LSM context releaser, Casey Schaufler
- Re: [PATCH v26 15/25] LSM: Ensure the correct LSM context releaser, Paul Moore
[PATCH v26 13/25] IMA: Change internal interfaces to use lsmblobs, Casey Schaufler
[PATCH v26 12/25] LSM: Use lsmblob in security_cred_getsecid, Casey Schaufler
[PATCH v26 11/25] LSM: Use lsmblob in security_inode_getsecid, Casey Schaufler
[PATCH v26 10/25] LSM: Use lsmblob in security_task_getsecid, Casey Schaufler
[PATCH v26 05/25] LSM: Use lsmblob in security_audit_rule_match, Casey Schaufler
[GIT PULL] TPM DEVICE DRIVER changes for v5.13-rc2, Jarkko Sakkinen
- Re: [GIT PULL] TPM DEVICE DRIVER changes for v5.13-rc2, pr-tracker-bot
[PATCH v2 0/1] tpm: fix error return code in tpm2_get_cc_attrs_tbl(), Zhen Lei
- [PATCH v2 1/1] tpm: fix error return code in tpm2_get_cc_attrs_tbl(), Zhen Lei
  - Re: [PATCH v2 1/1] tpm: fix error return code in tpm2_get_cc_attrs_tbl(), Jarkko Sakkinen
[PATCH v2 00/40] Use ASCII subset instead of UTF-8 alternate symbols, Mauro Carvalho Chehab
- [PATCH v2 23/40] docs: security: keys: trusted-encrypted.rst: Use ASCII subset instead of UTF-8 alternate symbols, Mauro Carvalho Chehab
- Re: [PATCH v2 00/40] Use ASCII subset instead of UTF-8 alternate symbols, Theodore Ts'o
  - Re: [PATCH v2 00/40] Use ASCII subset instead of UTF-8 alternate symbols, Mauro Carvalho Chehab
    - Re: [PATCH v2 00/40] Use ASCII subset instead of UTF-8 alternate symbols, David Woodhouse
- Re: [PATCH v2 00/40] Use ASCII subset instead of UTF-8 alternate symbols, David Woodhouse
  - Re: [PATCH v2 00/40] Use ASCII subset instead of UTF-8 alternate symbols, Mauro Carvalho Chehab
    - Re: [PATCH v2 00/40] Use ASCII subset instead of UTF-8 alternate symbols, David Woodhouse
      - Re: [PATCH v2 00/40] Use ASCII subset instead of UTF-8 alternate symbols, Edward Cree
        
        Re: [PATCH v2 00/40] Use ASCII subset instead of UTF-8 alternate symbols, Mauro Carvalho Chehab
      - Re: [PATCH v2 00/40] Use ASCII subset instead of UTF-8 alternate symbols, Mauro Carvalho Chehab
        
        Re: [PATCH v2 00/40] Use ASCII subset instead of UTF-8 alternate symbols, David Woodhouse
        
        Re: [PATCH v2 00/40] Use ASCII subset instead of UTF-8 alternate symbols, Mauro Carvalho Chehab
        
        Re: [PATCH v2 00/40] Use ASCII subset instead of UTF-8 alternate symbols, David Woodhouse
[PATCH v6 0/3] ima-evm-utils: Add --keyid option, Vitaly Chikunov
- [PATCH v6 1/3] ima-evm-utils: Allow manual setting keyid for signing, Vitaly Chikunov
  - Re: [PATCH v6 1/3] ima-evm-utils: Allow manual setting keyid for signing, Mimi Zohar
    - Re: [PATCH v6 1/3] ima-evm-utils: Allow manual setting keyid for signing, Vitaly Chikunov
      - Re: [PATCH v6 1/3] ima-evm-utils: Allow manual setting keyid for signing, Mimi Zohar
        
        Re: [PATCH v6 1/3] ima-evm-utils: Allow manual setting keyid for signing, Vitaly Chikunov
        
        Re: [PATCH v6 1/3] ima-evm-utils: Allow manual setting keyid for signing, Mimi Zohar
        
        Re: [PATCH v6 1/3] ima-evm-utils: Allow manual setting keyid for signing, Vitaly Chikunov
        
        Re: [PATCH v6 1/3] ima-evm-utils: Allow manual setting keyid for signing, Mimi Zohar
        
        Re: [PATCH v6 1/3] ima-evm-utils: Allow manual setting keyid for signing, Vitaly Chikunov
        
        Re: [PATCH v6 1/3] ima-evm-utils: Allow manual setting keyid for signing, Mimi Zohar
- [PATCH v6 2/3] ima-evm-utils: Allow manual setting keyid from a cert file, Vitaly Chikunov
  - Re: [PATCH v6 2/3] ima-evm-utils: Allow manual setting keyid from a cert file, Mimi Zohar
    - Re: [PATCH v6 2/3] ima-evm-utils: Allow manual setting keyid from a cert file, Vitaly Chikunov
      - Re: [PATCH v6 2/3] ima-evm-utils: Allow manual setting keyid from a cert file, Mimi Zohar
- [PATCH v6 3/3] ima-evm-utils: Read keyid from the cert appended to the key file, Vitaly Chikunov
  - Re: [PATCH v6 3/3] ima-evm-utils: Read keyid from the cert appended to the key file, Mimi Zohar
    - Re: [PATCH v6 3/3] ima-evm-utils: Read keyid from the cert appended to the key file, Vitaly Chikunov
  - Re: [PATCH v6 3/3] ima-evm-utils: Read keyid from the cert appended to the key file, Mimi Zohar
    - Re: [PATCH v6 3/3] ima-evm-utils: Read keyid from the cert appended to the key file, Vitaly Chikunov
      - Re: [PATCH v6 3/3] ima-evm-utils: Read keyid from the cert appended to the key file, Vitaly Chikunov
[PATCH v4] IMA: support for duplicate measurement records, Tushar Sugandhi
- Re: [PATCH v4] IMA: support for duplicate measurement records, Mimi Zohar
  - Re: [PATCH v4] IMA: support for duplicate measurement records, Tushar Sugandhi
[PATCH v1] add longer timeout for verify signature command, amirmizi6
- [PATCH v1] tpm2: add longer timeout for verify signature command, amirmizi6
  - Re: [PATCH v1] tpm2: add longer timeout for verify signature command, Jarkko Sakkinen
[PATCH 1/2] tpm, tpm_tis: Extend locality handling to TPM2 in tpm_tis_gen_interrupt(), Jarkko Sakkinen
- [PATCH 2/2] tpm, tpm_tis: Reserve locality in tpm_tis_resume(), Jarkko Sakkinen
- Re: [PATCH 1/2] tpm, tpm_tis: Extend locality handling to TPM2 in tpm_tis_gen_interrupt(), Lino Sanfilippo
  - Re: [PATCH 1/2] tpm, tpm_tis: Extend locality handling to TPM2 in tpm_tis_gen_interrupt(), Jarkko Sakkinen
[syzbot] possible deadlock in process_measurement (3), syzbot
[PATCH 00/53] Get rid of UTF-8 chars that can be mapped as ASCII, Mauro Carvalho Chehab
- [PATCH 32/53] docs: security: keys: trusted-encrypted.rst: avoid using UTF-8 chars, Mauro Carvalho Chehab
- Re: [PATCH 00/53] Get rid of UTF-8 chars that can be mapped as ASCII, David Woodhouse
  - Re: [PATCH 00/53] Get rid of UTF-8 chars that can be mapped as ASCII, Mauro Carvalho Chehab
    - Re: [PATCH 00/53] Get rid of UTF-8 chars that can be mapped as ASCII, Edward Cree
      - Re: [PATCH 00/53] Get rid of UTF-8 chars that can be mapped as ASCII, Mauro Carvalho Chehab
        
        Re: [PATCH 00/53] Get rid of UTF-8 chars that can be mapped as ASCII, Edward Cree
      - Re: [PATCH 00/53] Get rid of UTF-8 chars that can be mapped as ASCII, Matthew Wilcox
        
        Re: [PATCH 00/53] Get rid of UTF-8 chars that can be mapped as ASCII, Edward Cree
        
        Re: [PATCH 00/53] Get rid of UTF-8 chars that can be mapped as ASCII, Mauro Carvalho Chehab
        
        Re: [PATCH 00/53] Get rid of UTF-8 chars that can be mapped as ASCII, David Woodhouse
    - Re: [PATCH 00/53] Get rid of UTF-8 chars that can be mapped as ASCII, Ben Boeckel
    - Re: [PATCH 00/53] Get rid of UTF-8 chars that can be mapped as ASCII, David Woodhouse
      - Re: [PATCH 00/53] Get rid of UTF-8 chars that can be mapped as ASCII, Theodore Ts'o
        
        Re: [PATCH 00/53] Get rid of UTF-8 chars that can be mapped as ASCII, Mauro Carvalho Chehab
      - Re: [PATCH 00/53] Get rid of UTF-8 chars that can be mapped as ASCII, Mauro Carvalho Chehab
- Re: [PATCH 00/53] Get rid of UTF-8 chars that can be mapped as ASCII, Thorsten Leemhuis
  - Re: [PATCH 00/53] Get rid of UTF-8 chars that can be mapped as ASCII, Mauro Carvalho Chehab
    - Re: [PATCH 00/53] Get rid of UTF-8 chars that can be mapped as ASCII, Mauro Carvalho Chehab
- Re: [PATCH 00/53] Get rid of UTF-8 chars that can be mapped as ASCII, Adam Borowski
[PATCH 1/1] tpm: fix error return code in tpm2_get_cc_attrs_tbl(), Zhen Lei
- Re: [PATCH 1/1] tpm: fix error return code in tpm2_get_cc_attrs_tbl(), Jarkko Sakkinen
  - Re: [PATCH 1/1] tpm: fix error return code in tpm2_get_cc_attrs_tbl(), Leizhen (ThunderTown)
    - Re: [PATCH 1/1] tpm: fix error return code in tpm2_get_cc_attrs_tbl(), Jarkko Sakkinen
[PATCH v4 0/3] IMA: Add test for dm-crypt measurement, Petr Vorel
- [PATCH v4 1/3] ima_keys.sh: Check policy only once, Petr Vorel
  - Re: [PATCH v4 1/3] ima_keys.sh: Check policy only once, Lakshmi Ramasubramanian
    - Re: [PATCH v4 1/3] ima_keys.sh: Check policy only once, Petr Vorel
- [PATCH v4 2/3] IMA: Generalize key measurement tests, Petr Vorel
- [PATCH v4 3/3] IMA: Add test for dm-crypt measurement, Petr Vorel
[PATCH] tpm_tis_spi: set default probe function if device id not match, Liguang Zhang
- Re: [PATCH] tpm_tis_spi: set default probe function if device id not match, Jarkko Sakkinen
  - Re: [PATCH] tpm_tis_spi: set default probe function if device id not match, 乱石
    - Re: [PATCH] tpm_tis_spi: set default probe function if device id not match, Jarkko Sakkinen
      - Re: [PATCH] tpm_tis_spi: set default probe function if device id not match, 乱石
      - Re: [PATCH] tpm_tis_spi: set default probe function if device id not match, 乱石
        
        Re: [PATCH] tpm_tis_spi: set default probe function if device id not match, Jarkko Sakkinen
[PATCH v5 0/3] ima-evm-utils: Add --keyid option, Vitaly Chikunov
- [PATCH v5 1/3] ima-evm-utils: Allow manual setting keyid for signing, Vitaly Chikunov
- [PATCH v5 2/3] ima-evm-utils: Allow manual setting keyid from a cert file, Vitaly Chikunov
  - Re: [PATCH v5 2/3] ima-evm-utils: Allow manual setting keyid from a cert file, Stefan Berger
- [PATCH v5 3/3] ima-evm-utils: Read keyid from the cert appended to the key file, Vitaly Chikunov
- Re: [PATCH v5 0/3] ima-evm-utils: Add --keyid option, Stefan Berger
  - Re: [PATCH v5 0/3] ima-evm-utils: Add --keyid option, Vitaly Chikunov
    - Re: [PATCH v5 0/3] ima-evm-utils: Add --keyid option, Stefan Berger
[PATCH v6 00/11] evm: Improve usability of portable signatures, Roberto Sassu
- [PATCH v6 02/11] evm: Load EVM key in ima_load_x509() to avoid appraisal, Roberto Sassu
- [PATCH v6 01/11] evm: Execute evm_inode_init_security() only when an HMAC key is loaded, Roberto Sassu
- [PATCH v6 03/11] evm: Refuse EVM_ALLOW_METADATA_WRITES only if an HMAC key is loaded, Roberto Sassu
  - Re: [PATCH v6 03/11] evm: Refuse EVM_ALLOW_METADATA_WRITES only if an HMAC key is loaded, Mimi Zohar
    - RE: [PATCH v6 03/11] evm: Refuse EVM_ALLOW_METADATA_WRITES only if an HMAC key is loaded, Roberto Sassu
      - Re: [PATCH v6 03/11] evm: Refuse EVM_ALLOW_METADATA_WRITES only if an HMAC key is loaded, Mimi Zohar
- [PATCH v6 04/11] evm: Introduce evm_status_revalidate(), Roberto Sassu
  - Re: [PATCH v6 04/11] evm: Introduce evm_status_revalidate(), Mimi Zohar
- [PATCH v6 05/11] evm: Introduce evm_hmac_disabled() to safely ignore verification errors, Roberto Sassu
  - [RESEND][PATCH v6 05/11] evm: Introduce evm_hmac_disabled() to safely ignore verification errors, Roberto Sassu
    - Re: [RESEND][PATCH v6 05/11] evm: Introduce evm_hmac_disabled() to safely ignore verification errors, Mimi Zohar
- [PATCH v6 06/11] evm: Allow xattr/attr operations for portable signatures, Roberto Sassu
- [PATCH v6 07/11] evm: Pass user namespace to set/remove xattr hooks, Roberto Sassu
- [PATCH v6 08/11] evm: Allow setxattr() and setattr() for unmodified metadata, Roberto Sassu
  - Re: [PATCH v6 08/11] evm: Allow setxattr() and setattr() for unmodified metadata, Mimi Zohar
    - RE: [PATCH v6 08/11] evm: Allow setxattr() and setattr() for unmodified metadata, Roberto Sassu
      - Re: [PATCH v6 08/11] evm: Allow setxattr() and setattr() for unmodified metadata, Mimi Zohar
        
        RE: [PATCH v6 08/11] evm: Allow setxattr() and setattr() for unmodified metadata, Roberto Sassu
        
        Re: [PATCH v6 08/11] evm: Allow setxattr() and setattr() for unmodified metadata, Mimi Zohar
- [PATCH v6 09/11] ima: Allow imasig requirement to be satisfied by EVM portable signatures, Roberto Sassu
- [PATCH v6 10/11] ima: Introduce template field evmsig and write to field sig as fallback, Roberto Sassu
  - Re: [PATCH v6 10/11] ima: Introduce template field evmsig and write to field sig as fallback, Mimi Zohar
    - RE: [PATCH v6 10/11] ima: Introduce template field evmsig and write to field sig as fallback, Roberto Sassu
- [PATCH v6 11/11] ima: Don't remove security.ima if file must not be appraised, Roberto Sassu
[PATCH v4 0/3] ima-evm-utils: Add --keyid option, Vitaly Chikunov
- [PATCH v4 1/3] ima-evm-utils: Allow manual setting keyid for signing, Vitaly Chikunov
- [PATCH v4 2/3] ima-evm-utils: Allow manual setting keyid from a cert file, Vitaly Chikunov
  - Re: [PATCH v4 2/3] ima-evm-utils: Allow manual setting keyid from a cert file, Stefan Berger
    - Re: [PATCH v4 2/3] ima-evm-utils: Allow manual setting keyid from a cert file, Vitaly Chikunov
      - Re: [PATCH v4 2/3] ima-evm-utils: Allow manual setting keyid from a cert file, Vitaly Chikunov
        
        Re: [PATCH v4 2/3] ima-evm-utils: Allow manual setting keyid from a cert file, Stefan Berger
        
        Re: [PATCH v4 2/3] ima-evm-utils: Allow manual setting keyid from a cert file, Vitaly Chikunov
      - Re: [PATCH v4 2/3] ima-evm-utils: Allow manual setting keyid from a cert file, Stefan Berger
- [PATCH v4 3/3] ima-evm-utils: Read keyid from the cert appended to the key file, Vitaly Chikunov
  - Re: [PATCH v4 3/3] ima-evm-utils: Read keyid from the cert appended to the key file, Stefan Berger
    - Re: [PATCH v4 3/3] ima-evm-utils: Read keyid from the cert appended to the key file, Vitaly Chikunov
      - Re: [PATCH v4 3/3] ima-evm-utils: Read keyid from the cert appended to the key file, Vitaly Chikunov
        
        Re: [PATCH v4 3/3] ima-evm-utils: Read keyid from the cert appended to the key file, Stefan Berger
[PATCH v3 0/3] ima-evm-utils: Add --keyid option, Vitaly Chikunov
- [PATCH v3 1/3] ima-evm-utils: Allow manual setting keyid for signing, Vitaly Chikunov
- [PATCH v3 2/3] ima-evm-utils: Allow manual setting keyid from a cert file, Vitaly Chikunov
- [PATCH v3 3/3] ima-evm-utils: Read keyid from the cert appended to the key file, Vitaly Chikunov
[PATCH v2 0/3] ima-evm-utils: Add --keyid option, Vitaly Chikunov
- [PATCH v2 1/3] ima-evm-utils: Allow manual setting keyid for signing, Vitaly Chikunov
  - Re: [PATCH v2 1/3] ima-evm-utils: Allow manual setting keyid for signing, Stefan Berger
    - Re: [PATCH v2 1/3] ima-evm-utils: Allow manual setting keyid for signing, Vitaly Chikunov
      - Re: [PATCH v2 1/3] ima-evm-utils: Allow manual setting keyid for signing, Dmitry V. Levin
        
        Re: [PATCH v2 1/3] ima-evm-utils: Allow manual setting keyid for signing, Vitaly Chikunov
- [PATCH v2 2/3] ima-evm-utils: Allow manual setting keyid from a cert file, Vitaly Chikunov
  - Re: [PATCH v2 2/3] ima-evm-utils: Allow manual setting keyid from a cert file, Stefan Berger
    - Re: [PATCH v2 2/3] ima-evm-utils: Allow manual setting keyid from a cert file, Vitaly Chikunov
  - Re: [PATCH v2 2/3] ima-evm-utils: Allow manual setting keyid from a cert file, Stefan Berger
- [PATCH v2 3/3] ima-evm-utils: Read keyid from the cert appended to the key file, Vitaly Chikunov
  - Re: [PATCH v2 3/3] ima-evm-utils: Read keyid from the cert appended to the key file, Stefan Berger
    - Re: [PATCH v2 3/3] ima-evm-utils: Read keyid from the cert appended to the key file, Vitaly Chikunov
      - Re: [PATCH v2 3/3] ima-evm-utils: Read keyid from the cert appended to the key file, Stefan Berger
        
        Re: [PATCH v2 3/3] ima-evm-utils: Read keyid from the cert appended to the key file, Vitaly Chikunov
        
        Re: [PATCH v2 3/3] ima-evm-utils: Read keyid from the cert appended to the key file, Vitaly Chikunov
[PATCH 0/2] ima-evm-utils: Add --keyid option, Vitaly Chikunov
- [PATCH 1/2] ima-evm-utils: Allow manual setting keyid for signing, Vitaly Chikunov
- [PATCH 2/2] ima-evm-utils: Allow manual setting keyid from a cert file, Vitaly Chikunov
[PATCH v3 0/4] Fixes for TPM interrupt handling, Lino Sanfilippo
- [PATCH v3 2/4] tpm: Simplify locality handling, Lino Sanfilippo
  - Re: [PATCH v3 2/4] tpm: Simplify locality handling, Jarkko Sakkinen
    - Re: [PATCH v3 2/4] tpm: Simplify locality handling, Lino Sanfilippo
      - Re: [PATCH v3 2/4] tpm: Simplify locality handling, Jarkko Sakkinen
        
        Re: [PATCH v3 0/4] Fixes for TPM interrupt handling, Michael Niewöhner
        
        Re: [PATCH v3 0/4] Fixes for TPM interrupt handling, Jarkko Sakkinen
        
        Re: [PATCH v3 0/4] Fixes for TPM interrupt handling, Michael Niewöhner
        
        Re: [PATCH v3 0/4] Fixes for TPM interrupt handling, Lino Sanfilippo
        
        Re: [PATCH v3 0/4] Fixes for TPM interrupt handling, Michael Niewöhner
        
        Re: [PATCH v3 0/4] Fixes for TPM interrupt handling, Jarkko Sakkinen
        
        Re: [PATCH v3 0/4] Fixes for TPM interrupt handling, Jarkko Sakkinen
        
        Re: [PATCH v3 0/4] Fixes for TPM interrupt handling, Jarkko Sakkinen
        
        Re: [PATCH v3 0/4] Fixes for TPM interrupt handling, Lino Sanfilippo
        
        Re: [PATCH v3 0/4] Fixes for TPM interrupt handling, Jarkko Sakkinen
        
        Re: [PATCH v3 0/4] Fixes for TPM interrupt handling, Jarkko Sakkinen
- [PATCH v3 1/4] tpm: Use a threaded interrupt handler, Lino Sanfilippo
  - Re: [PATCH v3 1/4] tpm: Use a threaded interrupt handler, Jarkko Sakkinen
    - Re: [PATCH v3 1/4] tpm: Use a threaded interrupt handler, Lino Sanfilippo
      - Re: [PATCH v3 1/4] tpm: Use a threaded interrupt handler, Jarkko Sakkinen
- [PATCH v3 3/4] tpm: Fix test for interrupts, Lino Sanfilippo
  - Re: [PATCH v3 3/4] tpm: Fix test for interrupts, Jarkko Sakkinen
    - Re: [PATCH v3 3/4] tpm: Fix test for interrupts, Lino Sanfilippo
- [PATCH v3 4/4] tpm: Only enable supported irqs, Lino Sanfilippo
  - Re: [PATCH v3 4/4] tpm: Only enable supported irqs, Stefan Berger
    - Re: [PATCH v3 4/4] tpm: Only enable supported irqs, Lino Sanfilippo
  - Re: [PATCH v3 4/4] tpm: Only enable supported irqs, Jarkko Sakkinen
[RFC PATCH] ima-evm-utils: Allow manual setting keyid for signing, Vitaly Chikunov
- Re: [RFC PATCH] ima-evm-utils: Allow manual setting keyid for signing, Stefan Berger
  - Re: [RFC PATCH] ima-evm-utils: Allow manual setting keyid for signing, Vitaly Chikunov
[PATCH] KEYS: trusted: fix memory leak, trix
- Re: [PATCH] KEYS: trusted: fix memory leak, Ben Boeckel
  - Re: [PATCH] KEYS: trusted: fix memory leak, Tom Rix
- Re: [PATCH] KEYS: trusted: fix memory leak, Jarkko Sakkinen
[PATCH] KEYS: trusted: Fix memory leak on object td, Colin King
- Re: [PATCH] KEYS: trusted: Fix memory leak on object td, Nick Desaulniers
- Re: [PATCH] KEYS: trusted: Fix memory leak on object td, Jarkko Sakkinen
- Re: [PATCH] KEYS: trusted: Fix memory leak on object td, Jarkko Sakkinen
[PATCH] evm: fix writing <securityfs>/evm overflow, Mimi Zohar
- Re: [PATCH] evm: fix writing <securityfs>/evm overflow, Stefan Berger
[PATCH v2 0/1] trusted-keys: match tpm_get_ops on all return paths, Ben Boeckel
- [PATCH v2 1/1] trusted-keys: match tpm_get_ops on all return paths, Ben Boeckel
  - Re: [PATCH v2 1/1] trusted-keys: match tpm_get_ops on all return paths, Ben Boeckel
    - Re: [PATCH v2 1/1] trusted-keys: match tpm_get_ops on all return paths, James Bottomley
    - Re: [PATCH v2 1/1] trusted-keys: match tpm_get_ops on all return paths, Jarkko Sakkinen
    - Re: [PATCH v2 1/1] trusted-keys: match tpm_get_ops on all return paths, Jarkko Sakkinen
      - Re: [PATCH v2 1/1] trusted-keys: match tpm_get_ops on all return paths, Ben Boeckel
[PATCH 0/1] trusted-keys: match tpm_get_ops on all return paths, Ben Boeckel
- [PATCH 1/1] trusted-keys: match tpm_get_ops on all return paths, Ben Boeckel
  - Re: [PATCH 1/1] trusted-keys: match tpm_get_ops on all return paths, James Bottomley
    - Re: [PATCH 1/1] trusted-keys: match tpm_get_ops on all return paths, Ben Boeckel
      - Re: [PATCH 1/1] trusted-keys: match tpm_get_ops on all return paths, James Bottomley
[PATCH v2] tpm_crb: Use IOMEM_ERR_PTR when function returns iomem, Tian Tao
- Re: [PATCH v2] tpm_crb: Use IOMEM_ERR_PTR when function returns iomem, Jarkko Sakkinen
[PATCH 1/1] travis: Fix Fedora, Petr Vorel
- Re: [PATCH 1/1] travis: Fix Fedora, Mimi Zohar
  - Re: [PATCH 1/1] travis: Fix Fedora, Petr Vorel
    - Re: [PATCH 1/1] travis: Fix Fedora, Mimi Zohar
      - Re: [PATCH 1/1] travis: Fix Fedora, Petr Vorel
        
        Re: [PATCH 1/1] travis: Fix Fedora, Petr Vorel
[GIT PULL] integrity subsystem updates for v5.13, Mimi Zohar
- Re: [GIT PULL] integrity subsystem updates for v5.13, pr-tracker-bot
- Re: [GIT PULL] integrity subsystem updates for v5.13, Linus Torvalds
  - Re: [GIT PULL] integrity subsystem updates for v5.13, Mimi Zohar
[PATCH v2 0/3] ima-evm-utils: Implement function to only create IMA signature, Stefan Berger
- [PATCH v2 1/3] libimaevm: Implement imaevm_create_ima_signature, Stefan Berger
- [PATCH v2 3/3] libimaevm: Have sign_hash_v2 call sign_hash_v2_pkey after reading key file, Stefan Berger
- [PATCH v2 2/3] tests: Add program to create IMA signature with new API call, Stefan Berger
  - Re: [PATCH v2 2/3] tests: Add program to create IMA signature with new API call, Vitaly Chikunov
    - Re: [PATCH v2 2/3] tests: Add program to create IMA signature with new API call, Stefan Berger
- Re: [PATCH v2 0/3] ima-evm-utils: Implement function to only create IMA signature, Stefan Berger
  - Re: [PATCH v2 0/3] ima-evm-utils: Implement function to only create IMA signature, Mimi Zohar
[PATCH v3 0/6] evm: Prepare for moving to the LSM infrastructure, Roberto Sassu
- [PATCH v3 4/6] security: Support multiple LSMs implementing the inode_init_security hook, Roberto Sassu
- [PATCH v3 3/6] security: Pass xattrs allocated by LSMs to the inode_init_security hook, Roberto Sassu
- [PATCH v3 2/6] security: Rewrite security_old_inode_init_security(), Roberto Sassu
- [PATCH v3 1/6] reiserfs: Add missing calls to reiserfs_security_free(), Roberto Sassu
- [PATCH v3 5/6] evm: Align evm_inode_init_security() definition with LSM infrastructure, Roberto Sassu
- [PATCH v3 6/6] evm: Support multiple LSMs providing an xattr, Roberto Sassu
- RE: [PATCH v3 0/6] evm: Prepare for moving to the LSM infrastructure, Roberto Sassu
calc_keyid_v2 producing different keyid for non-sha1 SKIDs, Vitaly Chikunov
- Re: calc_keyid_v2 producing different keyid for non-sha1 SKIDs, Stefan Berger
  - Re: calc_keyid_v2 producing different keyid for non-sha1 SKIDs, Vitaly Chikunov
    - Re: calc_keyid_v2 producing different keyid for non-sha1 SKIDs, Vitaly Chikunov
      - Re: calc_keyid_v2 producing different keyid for non-sha1 SKIDs, Stefan Berger
        
        Re: calc_keyid_v2 producing different keyid for non-sha1 SKIDs, Vitaly Chikunov
        
        Re: calc_keyid_v2 producing different keyid for non-sha1 SKIDs, Stefan Berger
[PATCH v2 0/4] Fixes for TPM interrupt handling, Lino Sanfilippo
- [PATCH v2 2/4] tpm: Simplify locality handling, Lino Sanfilippo
  - Re: [PATCH v2 2/4] tpm: Simplify locality handling, Jarkko Sakkinen
    - RE: [PATCH v2 2/4] tpm: Simplify locality handling, Peter.Huewe
    - Re: [PATCH v2 2/4] tpm: Simplify locality handling, Lino Sanfilippo
- [PATCH v2 1/4] tpm: Use a threaded interrupt handler, Lino Sanfilippo
  - Re: [PATCH v2 1/4] tpm: Use a threaded interrupt handler, Stefan Berger
  - Re: [PATCH v2 1/4] tpm: Use a threaded interrupt handler, Jarkko Sakkinen
    - Re: [PATCH v2 1/4] tpm: Use a threaded interrupt handler, Lino Sanfilippo
      - Re: [PATCH v2 1/4] tpm: Use a threaded interrupt handler, Jarkko Sakkinen
        
        Re: [PATCH v2 1/4] tpm: Use a threaded interrupt handler, Lino Sanfilippo
- [PATCH v2 3/4] tpm: Fix test for interrupts, Lino Sanfilippo
  - Re: [PATCH v2 3/4] tpm: Fix test for interrupts, Stefan Berger
    - Re: [PATCH v2 3/4] tpm: Fix test for interrupts, Lino Sanfilippo
- [PATCH v2 4/4] tpm: Only enable supported irqs, Lino Sanfilippo
  - Re: [PATCH v2 4/4] tpm: Only enable supported irqs, kernel test robot
  - Re: [PATCH v2 4/4] tpm: Only enable supported irqs, Stefan Berger
[GIT PULL] TPM DEVICE DRIVER updates for v5.13 (updated), James Bottomley
- Re: [GIT PULL] TPM DEVICE DRIVER updates for v5.13 (updated), pr-tracker-bot
  - Re: [GIT PULL] TPM DEVICE DRIVER updates for v5.13 (updated), Jarkko Sakkinen
[PATCH v4 0/2] Add support for ECDSA-signed kernel modules, Stefan Berger
- [PATCH v4 2/2] certs: Add support for using elliptic curve keys for signing modules, Stefan Berger
  - Re: [PATCH v4 2/2] certs: Add support for using elliptic curve keys for signing modules, Mimi Zohar
- [PATCH v4 1/2] certs: Trigger creation of RSA module signing key if it's not an RSA key, Stefan Berger
  - Re: [PATCH v4 1/2] certs: Trigger creation of RSA module signing key if it's not an RSA key, Mimi Zohar
- Re: [PATCH v4 0/2] Add support for ECDSA-signed kernel modules, Jarkko Sakkinen
[PATCH] ima: ensure IMA_APPRAISE_MODSIG has necessary dependencies, Nayna Jain
- Re: [PATCH] ima: ensure IMA_APPRAISE_MODSIG has necessary dependencies, Randy Dunlap
[GIT PULL] KEYS: trusted fixes for 5.12-rc7, James Bottomley
- Re: [GIT PULL] KEYS: trusted fixes for 5.12-rc7, Linus Torvalds
- Re: [GIT PULL] KEYS: trusted fixes for 5.12-rc7, pr-tracker-bot
[PATCH] ima: require CONFIG_MODULES for IMA_APPRAISE_MODSIG, Arnd Bergmann
- Re: [PATCH] ima: require CONFIG_MODULES for IMA_APPRAISE_MODSIG, Nayna
[PATCH] KEYS: trusted: fix TPM trusted keys for generic framework, James Bottomley
- Re: [PATCH] KEYS: trusted: fix TPM trusted keys for generic framework, Sumit Garg
[PATCH] KEYS: trusted: Fix TPM reservation for seal/unseal, James Bottomley
- Re: [PATCH] KEYS: trusted: Fix TPM reservation for seal/unseal, Mimi Zohar
[PATCH v3 0/2] Add support for ECDSA-signed kernel modules, Stefan Berger
- [PATCH v3 1/2] certs: Trigger creation of RSA module signing key if it's not an RSA key, Stefan Berger
  - Re: [PATCH v3 1/2] certs: Trigger creation of RSA module signing key if it's not an RSA key, Jarkko Sakkinen
- [PATCH v3 2/2] certs: Add support for using elliptic curve keys for signing modules, Stefan Berger
  - Re: [PATCH v3 2/2] certs: Add support for using elliptic curve keys for signing modules, Jarkko Sakkinen
[PATCH v2 0/6] evm: Prepare for moving to the LSM infrastructure, Roberto Sassu
- [PATCH v2 1/6] xattr: Complete constify ->name member of "struct xattr", Roberto Sassu
- [PATCH v2 3/6] security: Pass xattrs allocated by LSMs to the inode_init_security hook, Roberto Sassu
  - Re: [PATCH v2 3/6] security: Pass xattrs allocated by LSMs to the inode_init_security hook, Casey Schaufler
    - RE: [PATCH v2 3/6] security: Pass xattrs allocated by LSMs to the inode_init_security hook, Roberto Sassu
      - Re: [PATCH v2 3/6] security: Pass xattrs allocated by LSMs to the inode_init_security hook, Casey Schaufler
        
        RE: [PATCH v2 3/6] security: Pass xattrs allocated by LSMs to the inode_init_security hook, Roberto Sassu
        
        Re: [PATCH v2 3/6] security: Pass xattrs allocated by LSMs to the inode_init_security hook, Casey Schaufler

[Index of Archives] [Linux Kernel] [Linux Kernel Hardening] [Linux NFS] [Linux NILFS] [Linux USB Devel] [Video for Linux] [Linux SCSI] [Yosemite Forum]