Linux Integrity

Date Index

[PATCH v2 5/6] evm: Align evm_inode_init_security() definition with LSM infrastructure, (continued)
- [PATCH v2 5/6] evm: Align evm_inode_init_security() definition with LSM infrastructure, Roberto Sassu
- [PATCH v2 6/6] evm: Support multiple LSMs providing an xattr, Roberto Sassu
[PATCH 0/3] ima-evm-utils: Implement function to only create IMA signature, Stefan Berger
- [PATCH 2/3] tests: Add program to create IMA signature with new API call, Stefan Berger
- [PATCH 1/3] libimaevm: Implement imaevm_create_ima_signature, Stefan Berger
  - Re: [PATCH 1/3] libimaevm: Implement imaevm_create_ima_signature, Colin Walters
    - Re: [PATCH 1/3] libimaevm: Implement imaevm_create_ima_signature, Stefan Berger
      - Re: [PATCH 1/3] libimaevm: Implement imaevm_create_ima_signature, Stefan Berger
- [PATCH 3/3] libimaevm: Have sign_hash_v2 call sign_hash_v2_pkey after reading key file, Stefan Berger
[PATCH] tpm_crb: Use IOMEM_ERR_PTR when function returns iomem, Tian Tao
- Re: [PATCH] tpm_crb: Use IOMEM_ERR_PTR when function returns iomem, Jarkko Sakkinen
  - Re: [PATCH] tpm_crb: Use IOMEM_ERR_PTR when function returns iomem, tiantao (H)
    - Re: [PATCH] tpm_crb: Use IOMEM_ERR_PTR when function returns iomem, Jarkko Sakkinen
[RFC PATCH] integrity: fix null ptr dereference in integrity_inode_free(), Mimi Zohar
[PATCH 0/6] ima-evm-utils: Some cleanups and bugfixes, Stefan Berger
- [PATCH 2/6] libimaevm: Remove unused off variable, Stefan Berger
- [PATCH 1/6] libimaevm: Properly check for error returned by EVP_DigestUpdate, Stefan Berger
- [PATCH 3/6] libimaevm: Rename variable returned from readlink to len, Stefan Berger
  - Re: [PATCH 3/6] libimaevm: Rename variable returned from readlink to len, Stefan Berger
- [PATCH 5/6] libimaevm: Report unsupported filetype using log_err, Stefan Berger
- [PATCH 4/6] libimaevm: Rename variable from cr to newline, Stefan Berger
- [PATCH 6/6] libimaevm: Use function parameter algo for name of hash, Stefan Berger
- Re: [PATCH 0/6] ima-evm-utils: Some cleanups and bugfixes, Mimi Zohar
Re: linux-next: Tree for Apr 16 (IMA appraise causing build error), Randy Dunlap
- Re: linux-next: Tree for Apr 16 (IMA appraise causing build error), Nayna
  - Re: linux-next: Tree for Apr 16 (IMA appraise causing build error), Randy Dunlap
[PATCH 1/1] travis: Add Docker Hub pull rate limit workaround, Petr Vorel
[PATCH v3 1/2] travis: Fix openSUSE Tumbleweed, Petr Vorel
- [PATCH v3 2/2] tests/install-swtpm.sh: Add tar option --no-same-owner, Petr Vorel
- Re: [PATCH v3 1/2] travis: Fix openSUSE Tumbleweed, Mimi Zohar
  - Re: [PATCH v3 1/2] travis: Fix openSUSE Tumbleweed, Petr Vorel
[PATCH 0/5] evm: Prepare for moving to the LSM infrastructure, Roberto Sassu
- [PATCH 1/5] xattr: Complete constify ->name member of "struct xattr", Roberto Sassu
  - Re: [PATCH 1/5] xattr: Complete constify ->name member of "struct xattr", Tetsuo Handa
    - RE: [PATCH 1/5] xattr: Complete constify ->name member of "struct xattr", Roberto Sassu
- [PATCH 2/5] security: Support multiple LSMs implementing the inode_init_security hook, Roberto Sassu
- [PATCH 3/5] security: Pass xattrs allocated by LSMs to the inode_init_security hook, Roberto Sassu
- [PATCH 4/5] evm: Align evm_inode_init_security() definition with LSM infrastructure, Roberto Sassu
- [PATCH 5/5] evm: Support multiple LSMs providing an xattr, Roberto Sassu
- Re: [PATCH 0/5] evm: Prepare for moving to the LSM infrastructure, Casey Schaufler
  - RE: [PATCH 0/5] evm: Prepare for moving to the LSM infrastructure, Roberto Sassu
    - Re: [PATCH 0/5] evm: Prepare for moving to the LSM infrastructure, Casey Schaufler
      - RE: [PATCH 0/5] evm: Prepare for moving to the LSM infrastructure, Roberto Sassu
Re: null-ptr-deref in integrity_inode_free(), Mimi Zohar
- Re: null-ptr-deref in integrity_inode_free(), Christian Brauner
  - Re: null-ptr-deref in integrity_inode_free(), Mimi Zohar
    - Message not available
      - Re: null-ptr-deref in integrity_inode_free(), Mimi Zohar
[GIT PULL] TPM DEVICE DRIVER updates for v5.13, Jarkko Sakkinen
- Re: [GIT PULL] TPM DEVICE DRIVER updates for v5.13, pr-tracker-bot
[PATCH] KEYS: trusted: fix a couple error pointer dereferences, Dan Carpenter
- Re: [PATCH] KEYS: trusted: fix a couple error pointer dereferences, Serge E. Hallyn
  - Re: [PATCH] KEYS: trusted: fix a couple error pointer dereferences, Sumit Garg
    - Re: [PATCH] KEYS: trusted: fix a couple error pointer dereferences, Serge E. Hallyn
- Re: [PATCH] KEYS: trusted: fix a couple error pointer dereferences, Sumit Garg
[PATCH] security: keys: trusted: prevent memory leak in error path, Muhammad Usama Anjum
[PATCH][next] KEYS: trusted: Fix missing null return from kzalloc call, Colin King
- Re: [PATCH][next] KEYS: trusted: Fix missing null return from kzalloc call, James Bottomley
  - Re: [PATCH][next] KEYS: trusted: Fix missing null return from kzalloc call, Colin Ian King
    - Re: [PATCH][next] KEYS: trusted: Fix missing null return from kzalloc call, Sumit Garg
- Re: [PATCH][next] KEYS: trusted: Fix missing null return from kzalloc call, Sumit Garg
- Re: [PATCH][next] KEYS: trusted: Fix missing null return from kzalloc call, Jarkko Sakkinen
[PATCH -next] KEYS: trusted: Switch to kmemdup_nul(), Wei Yongjun
Re: [PATCH v6 24/40] fs: make helpers idmap mount aware, Anton Altaparmakov
- Re: [PATCH v6 24/40] fs: make helpers idmap mount aware, Linus Torvalds
  - Re: [PATCH v6 24/40] fs: make helpers idmap mount aware, Christian Brauner
[PATCH v4 0/3] ima: kernel build support for loading the kernel module signing key, Nayna Jain
- [PATCH v4 2/3] ima: enable signing of modules with build time generated key, Nayna Jain
- [PATCH v4 1/3] keys: cleanup build time module signing keys, Nayna Jain
- [PATCH v4 3/3] ima: enable loading of build time generated key on .ima keyring, Nayna Jain
- Re: [PATCH v4 0/3] ima: kernel build support for loading the kernel module signing key, Mimi Zohar
[PATCH 0/7] ima/evm: Small enhancements, Roberto Sassu
- [PATCH 1/7] ima: Avoid measurement and audit if access to the file will be denied, Roberto Sassu
- [PATCH 3/7] ima: Introduce exec_tcb and tmpfs policies, Roberto Sassu
- [PATCH 2/7] ima: Add meta_immutable appraisal type, Roberto Sassu
- [PATCH 4/7] ima: Introduce appraise_exec_tcb and appraise_tmpfs policies, Roberto Sassu
- [PATCH 5/7] ima: Introduce appraise_exec_immutable policy, Roberto Sassu
- [PATCH 7/7] evm: Extend evm= with allow_metadata_writes and complete values, Roberto Sassu
- [PATCH 6/7] evm: Allow choice of hash algorithm for HMAC, Roberto Sassu
[PATCH v2] char: tpm: fix error return code in tpm_cr50_i2c_tis_recv(), Zhihao Cheng
- Re: [PATCH v2] char: tpm: fix error return code in tpm_cr50_i2c_tis_recv(), Jarkko Sakkinen
[PATCH v2 0/2] Add support for ECDSA-signed kernel modules, Stefan Berger
- [PATCH v2 2/2] certs: Add support for using elliptic curve keys for signing modules, Stefan Berger
  - Re: [PATCH v2 2/2] certs: Add support for using elliptic curve keys for signing modules, Mimi Zohar
  - Re: [PATCH v2 2/2] certs: Add support for using elliptic curve keys for signing modules, Jessica Yu
    - Re: [PATCH v2 2/2] certs: Add support for using elliptic curve keys for signing modules, Stefan Berger
      - Re: [PATCH v2 2/2] certs: Add support for using elliptic curve keys for signing modules, Jessica Yu
        
        Re: [PATCH v2 2/2] certs: Add support for using elliptic curve keys for signing modules, Stefan Berger
        
        Re: [PATCH v2 2/2] certs: Add support for using elliptic curve keys for signing modules, Jessica Yu
- [PATCH v2 1/2] certs: Trigger creation of RSA module signing key if it's not an RSA key, Stefan Berger
  - Re: [PATCH v2 1/2] certs: Trigger creation of RSA module signing key if it's not an RSA key, Mimi Zohar
    - Re: [PATCH v2 1/2] certs: Trigger creation of RSA module signing key if it's not an RSA key, Stefan Berger
      - Re: [PATCH v2 1/2] certs: Trigger creation of RSA module signing key if it's not an RSA key, Mimi Zohar
[PATCH] char: tpm: fix error return code in tpm_cr50_i2c_tis_recv(), Zhihao Cheng
- Re: [PATCH] char: tpm: fix error return code in tpm_cr50_i2c_tis_recv(), Jarkko Sakkinen
[PATCH v4 0/4] crypto: add rsa pss support for x509, Hongbo Li
- [PATCH v4 1/4] x509: add support for rsa-pss, Hongbo Li
- [PATCH v4 2/4] crypto: support rsa-pss encoding, Hongbo Li
  - Re: [PATCH v4 2/4] crypto: support rsa-pss encoding, kernel test robot
- [PATCH v4 3/4] crypto: add rsa pss test vector, Hongbo Li
- [PATCH v4 4/4] ima: add support for rsa pss verification, Hongbo Li
[PATCH v5 00/12] evm: Improve usability of portable signatures, Roberto Sassu
- [PATCH v5 01/12] evm: Execute evm_inode_init_security() only when an HMAC key is loaded, Roberto Sassu
- [PATCH v5 02/12] evm: Load EVM key in ima_load_x509() to avoid appraisal, Roberto Sassu
- [PATCH v5 03/12] evm: Refuse EVM_ALLOW_METADATA_WRITES only if an HMAC key is loaded, Roberto Sassu
  - Re: [PATCH v5 03/12] evm: Refuse EVM_ALLOW_METADATA_WRITES only if an HMAC key is loaded, Mimi Zohar
- [PATCH v5 04/12] ima: Move ima_reset_appraise_flags() call to post hooks, Roberto Sassu
  - Re: [PATCH v5 04/12] ima: Move ima_reset_appraise_flags() call to post hooks, Casey Schaufler
    - RE: [PATCH v5 04/12] ima: Move ima_reset_appraise_flags() call to post hooks, Roberto Sassu
    - Re: [PATCH v5 04/12] ima: Move ima_reset_appraise_flags() call to post hooks, Mimi Zohar
- [PATCH v5 05/12] evm: Introduce evm_status_revalidate(), Roberto Sassu
- [PATCH v5 07/12] evm: Allow xattr/attr operations for portable signatures, Roberto Sassu
  - Re: [PATCH v5 07/12] evm: Allow xattr/attr operations for portable signatures, Mimi Zohar
    - RE: [PATCH v5 07/12] evm: Allow xattr/attr operations for portable signatures, Roberto Sassu
      - Re: [PATCH v5 07/12] evm: Allow xattr/attr operations for portable signatures, Mimi Zohar
- [PATCH v5 08/12] evm: Pass user namespace to set/remove xattr hooks, Roberto Sassu
  - Re: [PATCH v5 08/12] evm: Pass user namespace to set/remove xattr hooks, Christian Brauner
- [PATCH v5 06/12] evm: Ignore INTEGRITY_NOLABEL/INTEGRITY_NOXATTRS if conditions are safe, Roberto Sassu
  - Re: [PATCH v5 06/12] evm: Ignore INTEGRITY_NOLABEL/INTEGRITY_NOXATTRS if conditions are safe, Mimi Zohar
    - RE: [PATCH v5 06/12] evm: Ignore INTEGRITY_NOLABEL/INTEGRITY_NOXATTRS if conditions are safe, Roberto Sassu
      - Re: [PATCH v5 06/12] evm: Ignore INTEGRITY_NOLABEL/INTEGRITY_NOXATTRS if conditions are safe, Mimi Zohar
      - RE: [PATCH v5 06/12] evm: Ignore INTEGRITY_NOLABEL/INTEGRITY_NOXATTRS if conditions are safe, Roberto Sassu
        
        Re: [PATCH v5 06/12] evm: Ignore INTEGRITY_NOLABEL/INTEGRITY_NOXATTRS if conditions are safe, Mimi Zohar
        
        RE: [PATCH v5 06/12] evm: Ignore INTEGRITY_NOLABEL/INTEGRITY_NOXATTRS if conditions are safe, Roberto Sassu
        
        Re: [PATCH v5 06/12] evm: Ignore INTEGRITY_NOLABEL/INTEGRITY_NOXATTRS if conditions are safe, Mimi Zohar
- [PATCH v5 09/12] evm: Allow setxattr() and setattr() for unmodified metadata, Roberto Sassu
  - Re: [PATCH v5 09/12] evm: Allow setxattr() and setattr() for unmodified metadata, Christian Brauner
  - Re: [PATCH v5 09/12] evm: Allow setxattr() and setattr() for unmodified metadata, kernel test robot
  - Re: [PATCH v5 09/12] evm: Allow setxattr() and setattr() for unmodified metadata, kernel test robot
    - [RESEND][PATCH v5 09/12] evm: Allow setxattr() and setattr() for unmodified metadata, Roberto Sassu
  - Re: [PATCH v5 09/12] evm: Allow setxattr() and setattr() for unmodified metadata, Mimi Zohar
    - RE: [PATCH v5 09/12] evm: Allow setxattr() and setattr() for unmodified metadata, Roberto Sassu
      - Re: [PATCH v5 09/12] evm: Allow setxattr() and setattr() for unmodified metadata, Mimi Zohar
        
        RE: [PATCH v5 09/12] evm: Allow setxattr() and setattr() for unmodified metadata, Roberto Sassu
    - RE: [PATCH v5 09/12] evm: Allow setxattr() and setattr() for unmodified metadata, Roberto Sassu
      - Re: [PATCH v5 09/12] evm: Allow setxattr() and setattr() for unmodified metadata, Mimi Zohar
        
        RE: [PATCH v5 09/12] evm: Allow setxattr() and setattr() for unmodified metadata, Roberto Sassu
        
        Re: [PATCH v5 09/12] evm: Allow setxattr() and setattr() for unmodified metadata, Mimi Zohar
- [PATCH v5 10/12] ima: Allow imasig requirement to be satisfied by EVM portable signatures, Roberto Sassu
- [PATCH v5 11/12] ima: Introduce template field evmsig and write to field sig as fallback, Roberto Sassu
- [PATCH v5 12/12] ima: Don't remove security.ima if file must not be appraised, Roberto Sassu
[PATCH v3 0/4] crypto: add rsa pss support for x509, Hongbo Li
- [PATCH v3 1/4] x509: add support for rsa-pss, Hongbo Li
- [PATCH v3 2/4] crypto: support rsa-pss encoding, Hongbo Li
  - Re: [PATCH v3 2/4] crypto: support rsa-pss encoding, kernel test robot
- [PATCH v3 3/4] crypto: add rsa pss test vector, Hongbo Li
- [PATCH v3 4/4] ima: add support for rsa pss verification, Hongbo Li
[PATCH v2 0/4] crypto: add rsa pss support for x509, Hongbo Li
[PATCH v2] integrity: Add declarations to init_once void arguments., Jiele Zhao
- Re: [PATCH v2] integrity: Add declarations to init_once void arguments., Jiele Zhao
- Re: [PATCH v2] integrity: Add declarations to init_once void arguments., Mimi Zohar
  - Re: [PATCH v2] integrity: Add declarations to init_once void arguments., Jiele Zhao
[PATCH 0/2] Add support for ECDSA-signed kernel modules, Stefan Berger
- [PATCH 1/2] certs: Trigger recreation of module signing key if it's not an RSA key, Stefan Berger
- [PATCH 2/2] certs: Add support for using elliptic curve keys for signing modules, Stefan Berger
- Re: [PATCH 0/2] Add support for ECDSA-signed kernel modules, Jarkko Sakkinen
  - Re: [PATCH 0/2] Add support for ECDSA-signed kernel modules, Mimi Zohar
    - Re: [PATCH 0/2] Add support for ECDSA-signed kernel modules, Stefan Berger
      - Re: [PATCH 0/2] Add support for ECDSA-signed kernel modules, Jarkko Sakkinen
[PATCH] rsa: add pss encoding support, Hongbo Li
[PATCH 0/5] crypto: add rsa pss support for x509, Hongbo Li
- [PATCH 1/5] x509: add support for rsa-pss, Hongbo Li
  - Re: [PATCH 1/5] x509: add support for rsa-pss, kernel test robot
- [PATCH 2/5] crypto: support rsa-pss encoding, Hongbo Li
  - Re: [PATCH 2/5] crypto: support rsa-pss encoding, kernel test robot
- [PATCH 3/5] crypto: add rsa pss test vector, Hongbo Li
- [PATCH 4/5] crypto: ecdsa ima support, Hongbo Li
- [PATCH 5/5] ima: add support for rsa pss verification, Hongbo Li
- Re: [PATCH 0/5] crypto: add rsa pss support for x509, Jarkko Sakkinen
  - Re: [PATCH 0/5] crypto: add rsa pss support for x509(Internet mail), herberthbli(李弘博)
- <Possible follow-ups>
- [PATCH 0/5] crypto: add rsa pss support for x509, Hongbo Li
  - [PATCH v2 1/4] x509: add support for rsa-pss, Hongbo Li
  - [PATCH v2 2/4] crypto: support rsa-pss encoding, Hongbo Li
    - Re: [PATCH v2 2/4] crypto: support rsa-pss encoding, kernel test robot
  - [PATCH v2 3/4] crypto: add rsa pss test vector, Hongbo Li
  - [PATCH v2 4/4] ima: add support for rsa pss verification, Hongbo Li
Question about the available tests for IMA apprise, Fan Wu
- Re: Question about the available tests for IMA apprise, Mimi Zohar
[PATCH v3 0/3] ima: kernel build support for loading the kernel module signing key, Nayna Jain
- [PATCH v3 1/3] keys: cleanup build time module signing keys, Nayna Jain
  - Re: [PATCH v3 1/3] keys: cleanup build time module signing keys, Jarkko Sakkinen
- [PATCH v3 2/3] ima: enable signing of modules with build time generated key, Nayna Jain
  - Re: [PATCH v3 2/3] ima: enable signing of modules with build time generated key, Stefan Berger
- [PATCH v3 3/3] ima: enable loading of build time generated key on .ima keyring, Nayna Jain
  - Re: [PATCH v3 3/3] ima: enable loading of build time generated key on .ima keyring, Stefan Berger
[PATCH] IMA: Fix error in comment, Ricardo Ribalda
- Re: [PATCH] IMA: Fix error in comment, Jarkko Sakkinen
[GIT PULL] integrity subsystem fix for v5.12, Mimi Zohar
- Re: [GIT PULL] integrity subsystem fix for v5.12, pr-tracker-bot
[PATCH] ima: Fix function name error in comment., Jiele Zhao
- Re: [PATCH] ima: Fix function name error in comment., Mimi Zohar
- Re: [PATCH] ima: Fix function name error in comment., Jiele Zhao
5.10.y Kernel Panic while poweroff and reboot - Null Pointer Exception - with TPM-Module SLB 9670, Paul Enuta
- Re: 5.10.y Kernel Panic while poweroff and reboot - Null Pointer Exception - with TPM-Module SLB 9670, Jarkko Sakkinen
  - Re: 5.10.y Kernel Panic while poweroff and reboot - Null Pointer Exception - with TPM-Module SLB 9670, Paul Enuta
    - Re: 5.10.y Kernel Panic while poweroff and reboot - Null Pointer Exception - with TPM-Module SLB 9670, Paul Enuta
    - Re: 5.10.y Kernel Panic while poweroff and reboot - Null Pointer Exception - with TPM-Module SLB 9670, Jarkko Sakkinen
      - Re: 5.10.y Kernel Panic while poweroff and reboot - Null Pointer Exception - with TPM-Module SLB 9670, Jarkko Sakkinen
[PATCH v4] IMA: Allow only ima-buf template for key measurement, Lakshmi Ramasubramanian
- Re: [PATCH v4] IMA: Allow only ima-buf template for key measurement, Petr Vorel
[PATCH 1/2] ima: don't access a file's integrity status before an IMA policy is loaded, Mimi Zohar
- [PATCH 2/2] integrity: double check iint_cache was initialized, Mimi Zohar
  - Re: [PATCH 2/2] integrity: double check iint_cache was initialized, Eric Biggers
    - Re: [PATCH 2/2] integrity: double check iint_cache was initialized, Mimi Zohar
  - Re: [PATCH 2/2] integrity: double check iint_cache was initialized, Petr Vorel
    - Re: [PATCH 2/2] integrity: double check iint_cache was initialized, Casey Schaufler
      - Re: [PATCH 2/2] integrity: double check iint_cache was initialized, Petr Vorel
        
        Re: [PATCH 2/2] integrity: double check iint_cache was initialized, Casey Schaufler
        
        Re: [PATCH 2/2] integrity: double check iint_cache was initialized, Mimi Zohar
        
        Re: [PATCH 2/2] integrity: double check iint_cache was initialized, Petr Vorel
        
        Re: [PATCH 2/2] integrity: double check iint_cache was initialized, Mimi Zohar
- Re: [PATCH 1/2] ima: don't access a file's integrity status before an IMA policy is loaded, Eric Biggers
  - Re: [PATCH 1/2] ima: don't access a file's integrity status before an IMA policy is loaded, Mimi Zohar
[RFC PATCH 1/2] ima: don't access a file's integrity status before an IMA policy is loaded, Mimi Zohar
- [RFC PATCH 2/2] integrity: double check iint_cache was initialized, Mimi Zohar
  - Re: [RFC PATCH 2/2] integrity: double check iint_cache was initialized, Tetsuo Handa
    - Re: [RFC PATCH 2/2] integrity: double check iint_cache was initialized, Dmitry Vyukov
      - Re: [RFC PATCH 2/2] integrity: double check iint_cache was initialized, Tetsuo Handa
        
        Re: [RFC PATCH 2/2] integrity: double check iint_cache was initialized, Mimi Zohar
        
        Re: [RFC PATCH 2/2] integrity: double check iint_cache was initialized, Tetsuo Handa
        
        Re: [RFC PATCH 2/2] integrity: double check iint_cache was initialized, Tetsuo Handa
        
        Re: [RFC PATCH 2/2] integrity: double check iint_cache was initialized, Mimi Zohar
        
        Re: [RFC PATCH 2/2] integrity: double check iint_cache was initialized, Tetsuo Handa
        
        Re: [RFC PATCH 2/2] integrity: double check iint_cache was initialized, Mimi Zohar
        
        Re: [RFC PATCH 2/2] integrity: double check iint_cache was initialized, Tetsuo Handa
        
        Re: [RFC PATCH 2/2] integrity: double check iint_cache was initialized, Mimi Zohar
        
        Re: [RFC PATCH 2/2] integrity: double check iint_cache was initialized, Tetsuo Handa
        
        Re: [RFC PATCH 2/2] integrity: double check iint_cache was initialized, Dmitry Vyukov
        
        Re: [RFC PATCH 2/2] integrity: double check iint_cache was initialized, Mimi Zohar
        
        Re: [RFC PATCH 2/2] integrity: double check iint_cache was initialized, Dmitry Vyukov
        
        Re: [RFC PATCH 2/2] integrity: double check iint_cache was initialized, Mimi Zohar
        
        Re: [RFC PATCH 2/2] integrity: double check iint_cache was initialized, Casey Schaufler
[PATCH v2] char: tpm: move to use request_irq by IRQF_NO_AUTOEN flag, Tian Tao
- Re: [PATCH v2] char: tpm: move to use request_irq by IRQF_NO_AUTOEN flag, Jarkko Sakkinen
[PATCH] KEYS: trusted: tee: fix build error due to missing include, Ahmad Fatoum
- Re: [PATCH] KEYS: trusted: tee: fix build error due to missing include, Jarkko Sakkinen
  - Re: [PATCH] KEYS: trusted: tee: fix build error due to missing include, Ahmad Fatoum
[PATCH] char: tpm: move to use request_irq by IRQF_NO_AUTOEN flag, Tian Tao
- Re: [PATCH] char: tpm: move to use request_irq by IRQF_NO_AUTOEN flag, Jarkko Sakkinen
  - Re: [PATCH] char: tpm: move to use request_irq by IRQF_NO_AUTOEN flag, tiantao (H)
    - Re: [PATCH] char: tpm: move to use request_irq by IRQF_NO_AUTOEN flag, Jarkko Sakkinen
[PATCH v12 00/10] Add support for x509 certs with NIST P384/256/192 keys, Stefan Berger
- [PATCH v12 01/10] oid_registry: Add OIDs for ECDSA with SHA224/256/384/512, Stefan Berger
- [PATCH v12 07/10] x509: Add support for parsing x509 certs with ECDSA keys, Stefan Berger
- [PATCH v12 02/10] crypto: Add support for ECDSA signature verification, Stefan Berger
  - Re: [PATCH v12 02/10] crypto: Add support for ECDSA signature verification, Lukas Wunner
    - Re: [PATCH v12 02/10] crypto: Add support for ECDSA signature verification, Stefan Berger
      - Re: [PATCH v12 02/10] crypto: Add support for ECDSA signature verification, Lukas Wunner
- [PATCH v12 04/10] crypto: Add math to support fast NIST P384, Stefan Berger
- [PATCH v12 03/10] crypto: Add NIST P384 curve parameters, Stefan Berger
- [PATCH v12 08/10] ima: Support EC keys for signature verification, Stefan Berger
- [PATCH v12 05/10] ecdsa: Register NIST P384 and extend test suite, Stefan Berger
- [PATCH v12 09/10] x509: Add OID for NIST P384 and extend parser for it, Stefan Berger
- [PATCH v12 10/10] certs: Add support for using elliptic curve keys for signing modules, Stefan Berger
- [PATCH v12 06/10] x509: Detect sm2 keys by their parameters OID, Stefan Berger
- Re: [PATCH v12 00/10] Add support for x509 certs with NIST P384/256/192 keys, Stefan Berger
- Re: [PATCH v12 00/10] Add support for x509 certs with NIST P384/256/192 keys, Herbert Xu
[PATCH v1 0/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Ahmad Fatoum
- [PATCH v1 1/3] crypto: caam - add in-kernel interface for blob generator, Ahmad Fatoum
  - Re: [PATCH v1 1/3] crypto: caam - add in-kernel interface for blob generator, Horia Geantă
    - Re: [PATCH v1 1/3] crypto: caam - add in-kernel interface for blob generator, Ahmad Fatoum
- [PATCH v1 2/3] KEYS: trusted: implement fallback to kernel RNG, Ahmad Fatoum
- [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Ahmad Fatoum
  - Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Jarkko Sakkinen
    - Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Ahmad Fatoum
  - Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Richard Weinberger
    - Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Sumit Garg
      - Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Richard Weinberger
    - Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Ahmad Fatoum
      - Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Richard Weinberger
  - Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Horia Geantă
    - Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Ahmad Fatoum
      - Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Mimi Zohar
        
        Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Ahmad Fatoum
        
        Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Sumit Garg
        
        Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Ahmad Fatoum
        
        Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Sumit Garg
        
        Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, David Gstir
        
        Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Jarkko Sakkinen
        
        Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Ahmad Fatoum
        
        Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Jarkko Sakkinen
        
        Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Sumit Garg
        
        Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Jarkko Sakkinen
        
        Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Ahmad Fatoum
        
        Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Eric Biggers
        
        Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Jarkko Sakkinen
        
        Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Eric Biggers
        
        Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Herbert Xu
        
        Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Jarkko Sakkinen
        
        Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Eric Biggers
        
        Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Jarkko Sakkinen
        
        Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, James Bottomley
        
        Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Mimi Zohar
        
        Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, James Bottomley
        
        Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Serge E. Hallyn
  - Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Richard Weinberger
    - Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Ahmad Fatoum
      - Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Richard Weinberger
- Re: [PATCH v1 0/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Richard Weinberger
  - Re: [PATCH v1 0/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Ahmad Fatoum
    - Re: [PATCH v1 0/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Richard Weinberger
      - Re: [PATCH v1 0/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Ahmad Fatoum
        
        Re: [PATCH v1 0/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Richard Weinberger
        
        Re: [PATCH v1 0/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Ahmad Fatoum
        
        Re: [PATCH v1 0/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Richard Weinberger
        
        Re: [PATCH v1 0/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Ahmad Fatoum
        
        Re: [PATCH v1 0/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Richard Weinberger
        
        Re: [PATCH v1 0/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Ahmad Fatoum
        
        Re: [PATCH v1 0/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Richard Weinberger
    - Re: [PATCH v1 0/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Richard Weinberger
      - Re: [PATCH v1 0/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, James Bottomley
        
        Re: [PATCH v1 0/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Richard Weinberger
        
        Re: [PATCH v1 0/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, James Bottomley
        
        Re: [PATCH v1 0/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Richard Weinberger
        
        Re: [PATCH v1 0/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Ahmad Fatoum
        
        Re: [PATCH v1 0/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Sumit Garg
        
        Re: [PATCH v1 0/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, James Bottomley
      - Re: [PATCH v1 0/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Sumit Garg
        
        Re: [PATCH v1 0/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Richard Weinberger
        
        Re: [PATCH v1 0/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Ahmad Fatoum
        
        Re: [PATCH v1 0/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Sumit Garg
        
        Re: [PATCH v1 0/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Richard Weinberger
        
        Re: [PATCH v1 0/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Sumit Garg
    - Re: [PATCH v1 0/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, David Howells
- Re: [PATCH v1 0/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Horia Geantă
  - Re: [PATCH v1 0/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Ahmad Fatoum
    - Re: [PATCH v1 0/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Sumit Garg
  - Re: [PATCH v1 0/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys, Ahmad Fatoum
[PATCH v3] IMA: Allow only ima-buf template for key measurement, Lakshmi Ramasubramanian
[PATCH 1/2] IMA: Move check_evmctl to setup, add require_evmctl(), Petr Vorel
- [PATCH 2/2] IMA/ima_keys.sh: Require evmctl 1.3.2, Petr Vorel
  - Re: [PATCH 2/2] IMA/ima_keys.sh: Require evmctl 1.3.2, Lakshmi Ramasubramanian
  - Re: [PATCH 2/2] IMA/ima_keys.sh: Require evmctl 1.3.2, Petr Vorel
[PATCH v2] IMA: Allow only ima-buf template for key measurement, Lakshmi Ramasubramanian
- Re: [PATCH v2] IMA: Allow only ima-buf template for key measurement, Petr Vorel
  - Re: [PATCH v2] IMA: Allow only ima-buf template for key measurement, Lakshmi Ramasubramanian
    - Re: [PATCH v2] IMA: Allow only ima-buf template for key measurement, Petr Vorel
      - Re: [PATCH v2] IMA: Allow only ima-buf template for key measurement, Lakshmi Ramasubramanian
        
        Re: [PATCH v2] IMA: Allow only ima-buf template for key measurement, Petr Vorel
[PATCH v7 0/5] Enable root to update the blacklist keyring, Mickaël Salaün
- [PATCH v7 3/5] certs: Make blacklist_vet_description() more strict, Mickaël Salaün
- [PATCH v7 2/5] certs: Check that builtin blacklist hashes are valid, Mickaël Salaün
  - Re: [PATCH v7 2/5] certs: Check that builtin blacklist hashes are valid, Jarkko Sakkinen
- [PATCH v7 4/5] certs: Factor out the blacklist hash creation, Mickaël Salaün
  - Re: [PATCH v7 4/5] certs: Factor out the blacklist hash creation, Jarkko Sakkinen
- [PATCH v7 5/5] certs: Allow root user to append signed hashes to the blacklist keyring, Mickaël Salaün
  - Re: [PATCH v7 5/5] certs: Allow root user to append signed hashes to the blacklist keyring, Eric Snowberg
    - Re: [PATCH v7 5/5] certs: Allow root user to append signed hashes to the blacklist keyring, Mickaël Salaün
      - Re: [PATCH v7 5/5] certs: Allow root user to append signed hashes to the blacklist keyring, Eric Snowberg
        
        Re: [PATCH v7 5/5] certs: Allow root user to append signed hashes to the blacklist keyring, Mickaël Salaün
- [PATCH v7 1/5] tools/certs: Add print-cert-tbs-hash.sh, Mickaël Salaün
  - Re: [PATCH v7 1/5] tools/certs: Add print-cert-tbs-hash.sh, Eric Snowberg
- Re: [PATCH v7 0/5] Enable root to update the blacklist keyring, Mickaël Salaün
- Re: [PATCH v7 0/5] Enable root to update the blacklist keyring, Mickaël Salaün
  - Re: [PATCH v7 0/5] Enable root to update the blacklist keyring, Mickaël Salaün
- Re: [PATCH v7 3/5] certs: Make blacklist_vet_description() more strict, David Howells
  - Re: [PATCH v7 3/5] certs: Make blacklist_vet_description() more strict, Jarkko Sakkinen
    - Re: [PATCH v7 3/5] certs: Make blacklist_vet_description() more strict, Mickaël Salaün
      - Re: [PATCH v7 3/5] certs: Make blacklist_vet_description() more strict, Jarkko Sakkinen
        
        Re: [PATCH v7 3/5] certs: Make blacklist_vet_description() more strict, Mickaël Salaün
        
        Re: [PATCH v7 3/5] certs: Make blacklist_vet_description() more strict, Jarkko Sakkinen
[PATCH ima-evm-utils] travis: Fix openSUSE Tumbleweed, Petr Vorel
- Re: [PATCH ima-evm-utils] travis: Fix openSUSE Tumbleweed, Petr Vorel
- Re: [PATCH ima-evm-utils] travis: Fix openSUSE Tumbleweed, Mimi Zohar
  - Re: [PATCH ima-evm-utils] travis: Fix openSUSE Tumbleweed, Petr Vorel
[PATCH v2 0/3] Fix bugs related to TPM2 event log, Stefan Berger
- [PATCH v2 1/3] tpm: efi: Use local variable for calculating final log size, Stefan Berger
  - Re: [PATCH v2 1/3] tpm: efi: Use local variable for calculating final log size, Jarkko Sakkinen
  - Re: [PATCH v2 1/3] tpm: efi: Use local variable for calculating final log size, Jarkko Sakkinen
    - Re: [PATCH v2 1/3] tpm: efi: Use local variable for calculating final log size, Jarkko Sakkinen
      - Re: [PATCH v2 1/3] tpm: efi: Use local variable for calculating final log size, Stefan Berger
        
        Re: [PATCH v2 1/3] tpm: efi: Use local variable for calculating final log size, Jarkko Sakkinen
- [PATCH v2 3/3] tpm: vtpm_proxy: Avoid reading host log when using a virtual device, Stefan Berger
  - Re: [PATCH v2 3/3] tpm: vtpm_proxy: Avoid reading host log when using a virtual device, Jarkko Sakkinen
- [PATCH v2 2/3] tpm: acpi: Check eventlog signature before using it, Stefan Berger
  - Re: [PATCH v2 2/3] tpm: acpi: Check eventlog signature before using it, Jarkko Sakkinen
- Re: [PATCH v2 0/3] Fix bugs related to TPM2 event log, Jarkko Sakkinen
Fwd: TPM unaligned memory accesses, Andrew James
- Re: Fwd: TPM unaligned memory accesses, Jarkko Sakkinen
[PATCH v25 15/25] LSM: Ensure the correct LSM context releaser, Casey Schaufler
[PATCH v25 13/25] IMA: Change internal interfaces to use lsmblobs, Casey Schaufler
[PATCH v25 12/25] LSM: Use lsmblob in security_cred_getsecid, Casey Schaufler
[PATCH v25 11/25] LSM: Use lsmblob in security_inode_getsecid, Casey Schaufler
[PATCH v25 10/25] LSM: Use lsmblob in security_task_getsecid, Casey Schaufler
[PATCH v25 05/25] LSM: Use lsmblob in security_audit_rule_match, Casey Schaufler
[PATCH 0/3] Fix bugs related to TPM2 event log, Stefan Berger
- [PATCH 2/3] tpm: acpi: Check eventlog signature before using it, Stefan Berger
  - Re: [PATCH 2/3] tpm: acpi: Check eventlog signature before using it, Jarkko Sakkinen
- [PATCH 1/3] tpm: efi: Use local variable for calculating final log size, Stefan Berger
  - Re: [PATCH 1/3] tpm: efi: Use local variable for calculating final log size, Jarkko Sakkinen
- [PATCH 3/3] tpm: vtpm_proxy: Avoid reading host log when using a virtual device, Stefan Berger
[PATCH v11 00/10] Add support for x509 certs with NIST P384/256/192 keys, Stefan Berger
- [PATCH v11 01/10] oid_registry: Add OIDs for ECDSA with sha224/256/384/512, Stefan Berger
  - Re: [PATCH v11 01/10] oid_registry: Add OIDs for ECDSA with sha224/256/384/512, Jarkko Sakkinen
    - Re: [PATCH v11 01/10] oid_registry: Add OIDs for ECDSA with sha224/256/384/512, Stefan Berger
      - Re: [PATCH v11 01/10] oid_registry: Add OIDs for ECDSA with sha224/256/384/512, Jarkko Sakkinen
- [PATCH v11 02/10] crypto: Add support for ECDSA signature verification, Stefan Berger
  - Re: [PATCH v11 02/10] crypto: Add support for ECDSA signature verification, Stefan Berger
- [PATCH v11 03/10] crypto: Add NIST P384 curve parameters, Stefan Berger
  - Re: [PATCH v11 03/10] crypto: Add NIST P384 curve parameters, Jarkko Sakkinen
- [PATCH v11 07/10] x509: Add support for parsing x509 certs with ECDSA keys, Stefan Berger
- [PATCH v11 04/10] crypto: Add math to support fast NIST P384, Stefan Berger
- [PATCH v11 05/10] ecdsa: Register NIST P384 and extend test suite, Stefan Berger
  - Re: [PATCH v11 05/10] ecdsa: Register NIST P384 and extend test suite, Jarkko Sakkinen
- [PATCH v11 10/10] certs: Add support for using elliptic curve keys for signing modules, Stefan Berger
  - Re: [PATCH v11 10/10] certs: Add support for using elliptic curve keys for signing modules, Jarkko Sakkinen
- [PATCH v11 08/10] ima: Support EC keys for signature verification, Stefan Berger
- [PATCH v11 06/10] x509: Detect sm2 keys by their parameters OID, Stefan Berger
- [PATCH v11 09/10] x509: Add OID for NIST P384 and extend parser for it, Stefan Berger
[PATCH v4 00/11] evm: Improve usability of portable signatures, Roberto Sassu
- [PATCH v4 02/11] evm: Load EVM key in ima_load_x509() to avoid appraisal, Roberto Sassu
- [PATCH v4 03/11] evm: Refuse EVM_ALLOW_METADATA_WRITES only if an HMAC key is loaded, Roberto Sassu
- [PATCH v4 04/11] ima: Move ima_reset_appraise_flags() call to post hooks, Roberto Sassu
  - Re: [PATCH v4 04/11] ima: Move ima_reset_appraise_flags() call to post hooks, Casey Schaufler
    - Re: [PATCH v4 04/11] ima: Move ima_reset_appraise_flags() call to post hooks, Mimi Zohar
      - RE: [PATCH v4 04/11] ima: Move ima_reset_appraise_flags() call to post hooks, Roberto Sassu
        
        Re: [PATCH v4 04/11] ima: Move ima_reset_appraise_flags() call to post hooks, Mimi Zohar
        
        RE: [PATCH v4 04/11] ima: Move ima_reset_appraise_flags() call to post hooks, Roberto Sassu
        
        Re: [PATCH v4 04/11] ima: Move ima_reset_appraise_flags() call to post hooks, Mimi Zohar
        
        Re: [PATCH v4 04/11] ima: Move ima_reset_appraise_flags() call to post hooks, Casey Schaufler
        
        Re: [PATCH v4 04/11] ima: Move ima_reset_appraise_flags() call to post hooks, Mimi Zohar
        
        RE: [PATCH v4 04/11] ima: Move ima_reset_appraise_flags() call to post hooks, Roberto Sassu
  - RE: [PATCH v4 04/11] ima: Move ima_reset_appraise_flags() call to post hooks, Roberto Sassu
    - Re: [PATCH v4 04/11] ima: Move ima_reset_appraise_flags() call to post hooks, Mimi Zohar
      - RE: [PATCH v4 04/11] ima: Move ima_reset_appraise_flags() call to post hooks, Roberto Sassu
        
        Re: [PATCH v4 04/11] ima: Move ima_reset_appraise_flags() call to post hooks, Mimi Zohar
- [PATCH v4 01/11] evm: Execute evm_inode_init_security() only when an HMAC key is loaded, Roberto Sassu
- [PATCH v4 09/11] ima: Allow imasig requirement to be satisfied by EVM portable signatures, Roberto Sassu
- [PATCH v4 06/11] evm: Ignore INTEGRITY_NOLABEL/INTEGRITY_NOXATTRS if conditions are safe, Roberto Sassu
- [PATCH v4 05/11] evm: Introduce evm_status_revalidate(), Roberto Sassu
- [PATCH v4 07/11] evm: Allow xattr/attr operations for portable signatures, Roberto Sassu
- [PATCH v4 08/11] evm: Allow setxattr() and setattr() for unmodified metadata, Roberto Sassu
  - RE: [PATCH v4 08/11] evm: Allow setxattr() and setattr() for unmodified metadata, Roberto Sassu
    - Re: [PATCH v4 08/11] evm: Allow setxattr() and setattr() for unmodified metadata, Christian Brauner
      - Re: [PATCH v4 08/11] evm: Allow setxattr() and setattr() for unmodified metadata, Christian Brauner
        
        RE: [PATCH v4 08/11] evm: Allow setxattr() and setattr() for unmodified metadata, Roberto Sassu
      - RE: [PATCH v4 08/11] evm: Allow setxattr() and setattr() for unmodified metadata, Roberto Sassu
- [PATCH v4 11/11] ima: Don't remove security.ima if file must not be appraised, Roberto Sassu
- [PATCH v4 10/11] ima: Introduce template field evmsig and write to field sig as fallback, Roberto Sassu
[PATCH v10 0/9] Add support for x509 certs with NIST P384/256/192 keys, Stefan Berger
- [PATCH v10 6/9] x509: Add support for parsing x509 certs with ECDSA keys, Stefan Berger
  - Re: [PATCH v10 6/9] x509: Add support for parsing x509 certs with ECDSA keys, Jarkko Sakkinen
- [PATCH v10 5/9] x509: Detect sm2 keys by their parameters OID, Stefan Berger
  - Re: [PATCH v10 5/9] x509: Detect sm2 keys by their parameters OID, Tianjia Zhang
  - Re: [PATCH v10 5/9] x509: Detect sm2 keys by their parameters OID, Jarkko Sakkinen
    - Re: [PATCH v10 5/9] x509: Detect sm2 keys by their parameters OID, Stefan Berger
- [PATCH v10 1/9] crypto: Add support for ECDSA signature verification, Stefan Berger
  - Re: [PATCH v10 1/9] crypto: Add support for ECDSA signature verification, Jarkko Sakkinen
    - Re: [PATCH v10 1/9] crypto: Add support for ECDSA signature verification, Vitaly Chikunov
    - Re: [PATCH v10 1/9] crypto: Add support for ECDSA signature verification, Vitaly Chikunov
      - Re: [PATCH v10 1/9] crypto: Add support for ECDSA signature verification, Stefan Berger
- [PATCH v10 9/9] certs: Add support for using elliptic curve keys for signing modules, Stefan Berger
  - Re: [PATCH v10 9/9] certs: Add support for using elliptic curve keys for signing modules, Jarkko Sakkinen
- [PATCH v10 7/9] ima: Support EC keys for signature verification, Stefan Berger
- [PATCH v10 2/9] crypto: Add NIST P384 curve parameters, Stefan Berger
  - Re: [PATCH v10 2/9] crypto: Add NIST P384 curve parameters, Jarkko Sakkinen
- [PATCH v10 3/9] crypto: Add math to support fast NIST P384, Stefan Berger
  - Re: [PATCH v10 3/9] crypto: Add math to support fast NIST P384, Jarkko Sakkinen
  - Re: [PATCH v10 3/9] crypto: Add math to support fast NIST P384, Vitaly Chikunov
    - Re: [PATCH v10 3/9] crypto: Add math to support fast NIST P384, Stefan Berger
      - Re: [PATCH v10 3/9] crypto: Add math to support fast NIST P384, Vitaly Chikunov
        
        Re: [PATCH v10 3/9] crypto: Add math to support fast NIST P384, Stefan Berger
- [PATCH v10 4/9] ecdsa: Register NIST P384 and extend test suite, Stefan Berger
  - Re: [PATCH v10 4/9] ecdsa: Register NIST P384 and extend test suite, Jarkko Sakkinen
    - Re: [PATCH v10 4/9] ecdsa: Register NIST P384 and extend test suite, Stefan Berger
- [PATCH v10 8/9] x509: Add OID for NIST P384 and extend parser for it, Stefan Berger
  - Re: [PATCH v10 8/9] x509: Add OID for NIST P384 and extend parser for it, Jarkko Sakkinen
- Re: [PATCH v10 0/9] Add support for x509 certs with NIST P384/256/192 keys, Stefan Berger
  - Re: [PATCH v10 0/9] Add support for x509 certs with NIST P384/256/192 keys, Jarkko Sakkinen
[PATCH] IMA: Allow only ima-buf template for key measurement, Lakshmi Ramasubramanian
- Re: [PATCH] IMA: Allow only ima-buf template for key measurement, Petr Vorel
  - Re: [PATCH] IMA: Allow only ima-buf template for key measurement, Lakshmi Ramasubramanian
  - Re: [PATCH] IMA: Allow only ima-buf template for key measurement, Lakshmi Ramasubramanian
    - Re: [PATCH] IMA: Allow only ima-buf template for key measurement, Petr Vorel
[GIT PULL] TPM DEVICE DRIVER changes for v5.12-rc2, Jarkko Sakkinen
- Re: [GIT PULL] TPM DEVICE DRIVER changes for v5.12-rc2, pr-tracker-bot
[PATCH] ima: Fix the error code for restoring the PCR value, Li Huafei
- Re: [PATCH] ima: Fix the error code for restoring the PCR value, Li Huafei
  - RE: [PATCH] ima: Fix the error code for restoring the PCR value, Roberto Sassu
    - Re: [PATCH] ima: Fix the error code for restoring the PCR value, Mimi Zohar
[PATCH] x86/sgx: Replace section->init_laundry_list with a temp list, Jarkko Sakkinen
[PATCH v9 0/4] Introduce TEE based Trusted Keys support, Sumit Garg
- [PATCH v9 1/4] KEYS: trusted: Add generic trusted keys framework, Sumit Garg
  - Re: [PATCH v9 1/4] KEYS: trusted: Add generic trusted keys framework, Jarkko Sakkinen
  - Re: [PATCH v9 1/4] KEYS: trusted: Add generic trusted keys framework, James Bottomley
    - Re: [PATCH v9 1/4] KEYS: trusted: Add generic trusted keys framework, Sumit Garg
      - Re: [PATCH v9 1/4] KEYS: trusted: Add generic trusted keys framework, James Bottomley
        
        Re: [PATCH v9 1/4] KEYS: trusted: Add generic trusted keys framework, Sumit Garg
- [PATCH v9 2/4] KEYS: trusted: Introduce TEE based Trusted Keys, Sumit Garg
  - Re: [PATCH v9 2/4] KEYS: trusted: Introduce TEE based Trusted Keys, Jarkko Sakkinen
- [PATCH v9 3/4] doc: trusted-encrypted: updates with TEE as a new trust source, Sumit Garg
- [PATCH v9 4/4] MAINTAINERS: Add entry for TEE based Trusted Keys, Sumit Garg
- Re: [PATCH v9 0/4] Introduce TEE based Trusted Keys support, Sumit Garg
  - Re: [PATCH v9 0/4] Introduce TEE based Trusted Keys support, Jarkko Sakkinen
    - Re: [PATCH v9 0/4] Introduce TEE based Trusted Keys support, Sumit Garg
      - Re: [PATCH v9 0/4] Introduce TEE based Trusted Keys support, Jarkko Sakkinen
        
        Re: [PATCH v9 0/4] Introduce TEE based Trusted Keys support, James Bottomley
        
        Re: [PATCH v9 0/4] Introduce TEE based Trusted Keys support, Jarkko Sakkinen
        
        Re: [PATCH v9 0/4] Introduce TEE based Trusted Keys support, Jarkko Sakkinen
        
        Re: [PATCH v9 0/4] Introduce TEE based Trusted Keys support, Jarkko Sakkinen
        
        Re: [PATCH v9 0/4] Introduce TEE based Trusted Keys support, James Bottomley
        
        Re: [PATCH v9 0/4] Introduce TEE based Trusted Keys support, Jarkko Sakkinen
[PATCH] tpm: Remove unintentional dump_stack() call, jarkko
- Re: [PATCH] tpm: Remove unintentional dump_stack() call, Rikard Falkeborn
- <Possible follow-ups>
- [PATCH] tpm: Remove unintentional dump_stack() call, Jarkko Sakkinen
[PATCH] tpm: Add missing check in tpm_inf_recv, Dinghao Liu
- Re: [PATCH] tpm: Add missing check in tpm_inf_recv, Jarkko Sakkinen
  - Re: Re: [PATCH] tpm: Add missing check in tpm_inf_recv, dinghao . liu
[PATCH 0/3] Load keys from TPM2 NV Index on IMA keyring, Patrick Uiterwijk
- [PATCH 2/3] integrity: Allow specifying flags in integrity_load_cert, Patrick Uiterwijk
  - Re: [PATCH 2/3] integrity: Allow specifying flags in integrity_load_cert, Stefan Berger
- [PATCH 3/3] integrity: Load keys from TPM NV onto IMA keyring, Patrick Uiterwijk
  - Re: [PATCH 3/3] integrity: Load keys from TPM NV onto IMA keyring, Stefan Berger
    - Re: [PATCH 3/3] integrity: Load keys from TPM NV onto IMA keyring, Stefan Berger
- [PATCH 1/3] tpm: Add support for reading a TPM NV Index, Patrick Uiterwijk
  - Re: [PATCH 1/3] tpm: Add support for reading a TPM NV Index, Stefan Berger
  - Re: [PATCH 1/3] tpm: Add support for reading a TPM NV Index, Jarkko Sakkinen
- Re: [PATCH 0/3] Load keys from TPM2 NV Index on IMA keyring, James Bottomley
  - Re: [PATCH 0/3] Load keys from TPM2 NV Index on IMA keyring, Ken Goldman
[PATCH v9 0/9] Add support for x509 certs with NIST P384/256/192 keys, Stefan Berger
- [PATCH v9 2/9] x509: Detect sm2 keys by their parameters OID, Stefan Berger
  - Re: [PATCH v9 2/9] x509: Detect sm2 keys by their parameters OID, Stefan Berger
    - Re: [PATCH v9 2/9] x509: Detect sm2 keys by their parameters OID, Tianjia Zhang
      - Re: [PATCH v9 2/9] x509: Detect sm2 keys by their parameters OID, Stefan Berger
        
        Re: [PATCH v9 2/9] x509: Detect sm2 keys by their parameters OID, Tianjia Zhang
- [PATCH v9 3/9] x509: Add support for parsing x509 certs with ECDSA keys, Stefan Berger
- [PATCH v9 4/9] ima: Support EC keys for signature verification, Stefan Berger
- [PATCH v9 9/9] certs: Add support for using elliptic curve keys for signing modules, Stefan Berger
  - Re: [PATCH v9 9/9] certs: Add support for using elliptic curve keys for signing modules, yumeng
    - Re: [PATCH v9 9/9] certs: Add support for using elliptic curve keys for signing modules, Mimi Zohar
      - [PATCH v9 9/9] certs: Add support for using elliptic curve keys for signing modules, yumeng
    - Re: [PATCH v9 9/9] certs: Add support for using elliptic curve keys for signing modules, Stefan Berger
- [PATCH v9 5/9] x509: Add OID for NIST P384 and extend parser for it, Stefan Berger
- [PATCH v9 6/9] crypto: Add NIST P384 curve parameters, Stefan Berger
  - Re: [PATCH v9 6/9] crypto: Add NIST P384 curve parameters, Herbert Xu
    - Re: [PATCH v9 6/9] crypto: Add NIST P384 curve parameters, Stefan Berger
      - Re: [PATCH v9 6/9] crypto: Add NIST P384 curve parameters, Herbert Xu
- [PATCH v9 8/9] ecdsa: Register NIST P384 and extend test suite, Stefan Berger
- [PATCH v9 1/9] crypto: Add support for ECDSA signature verification, Stefan Berger
- [PATCH v9 7/9] crypto: Add math to support fast NIST P384, Stefan Berger
[PATCH v2] vio: make remove callback return void, Uwe Kleine-König
- Re: [PATCH v2] vio: make remove callback return void, Anatoly Pugachev
- Re: [PATCH v2] vio: make remove callback return void, Michael Ellerman
  - Re: [PATCH v2] vio: make remove callback return void, Arnd Bergmann
- <Possible follow-ups>
- [PATCH v2] vio: make remove callback return void, Uwe Kleine-König
[PATCH v3 0/2] IMA: Add test for dm-crypt measurement, Petr Vorel
- [PATCH v3 1/2] IMA: Generalize key measurement tests, Petr Vorel
- [PATCH v3 2/2] IMA: Add test for dm-crypt measurement, Petr Vorel
- Re: [PATCH v3 0/2] IMA: Add test for dm-crypt measurement, Mimi Zohar
  - Re: [PATCH v3 0/2] IMA: Add test for dm-crypt measurement, Tushar Sugandhi
[PATCH 00/20] Manual replacement of all strlcpy in favor of strscpy, Romain Perier
- [PATCH 06/20] ima: Manual replacement of the deprecated strlcpy() with return values, Romain Perier
  - Re: [PATCH 06/20] ima: Manual replacement of the deprecated strlcpy() with return values, Mimi Zohar
- Re: [PATCH 00/20] Manual replacement of all strlcpy in favor of strscpy, Shuah Khan
[PATCH] IMA: Add test for selinux measurement, Lakshmi Ramasubramanian
- Re: [PATCH] IMA: Add test for selinux measurement, Petr Vorel
  - Re: [PATCH] IMA: Add test for selinux measurement, Lakshmi Ramasubramanian
    - Re: [PATCH] IMA: Add test for selinux measurement, Petr Vorel
      - Re: [PATCH] IMA: Add test for selinux measurement, Lakshmi Ramasubramanian
- Re: [PATCH] IMA: Add test for selinux measurement, Petr Vorel
[PATCH] IMA: Check for ima-buf template is not required for keys tests, Lakshmi Ramasubramanian
- Re: [PATCH] IMA: Check for ima-buf template is not required for keys tests, Petr Vorel
  - Re: [PATCH] IMA: Check for ima-buf template is not required for keys tests, Lakshmi Ramasubramanian
    - Re: [PATCH] IMA: Check for ima-buf template is not required for keys tests, Petr Vorel
      - Re: [PATCH] IMA: Check for ima-buf template is not required for keys tests, Lakshmi Ramasubramanian
[PATCH 0/4] Fixes for TPM interrupt handling, Lino Sanfilippo
- [PATCH 2/4] tpm: get locality before writing to TPM chip, Lino Sanfilippo
- [PATCH 4/4] tpm: Only enable supported irqs, Lino Sanfilippo
- [PATCH 3/4] tpm: Fix test for interrupts, Lino Sanfilippo
- [PATCH 1/4] tpm: Use a threaded interrupt handler, Lino Sanfilippo
[PATCH v7] TPM fixes, Lino Sanfilippo
- [PATCH v7] tpm: fix reference counting for struct tpm_chip, Lino Sanfilippo
  - Re: [PATCH v7] tpm: fix reference counting for struct tpm_chip, Jarkko Sakkinen
[PATCH v19 00/13] Carry forward IMA measurement log on kexec on ARM64, Lakshmi Ramasubramanian
- [PATCH v19 01/13] kexec: Move ELF fields to struct kimage, Lakshmi Ramasubramanian
  - Re: [PATCH v19 01/13] kexec: Move ELF fields to struct kimage, Thiago Jung Bauermann
- [PATCH v19 03/13] powerpc: Use ELF fields defined in 'struct kimage', Lakshmi Ramasubramanian
  - Re: [PATCH v19 03/13] powerpc: Use ELF fields defined in 'struct kimage', Thiago Jung Bauermann
- [PATCH v19 04/13] x86: Use ELF fields defined in 'struct kimage', Lakshmi Ramasubramanian
  - Re: [PATCH v19 04/13] x86: Use ELF fields defined in 'struct kimage', Thiago Jung Bauermann
  - Re: [PATCH v19 04/13] x86: Use ELF fields defined in 'struct kimage', Thiago Jung Bauermann
- [PATCH v19 02/13] arm64: Use ELF fields defined in 'struct kimage', Lakshmi Ramasubramanian
  - Re: [PATCH v19 02/13] arm64: Use ELF fields defined in 'struct kimage', Thiago Jung Bauermann
- [PATCH v19 12/13] powerpc: Delete unused function delete_fdt_mem_rsv(), Lakshmi Ramasubramanian
- [PATCH v19 13/13] arm64: Enable passing IMA log to next kernel on kexec, Lakshmi Ramasubramanian
- [PATCH v19 11/13] kexec: Use fdt_appendprop_addrrange() to add ima buffer to FDT, Lakshmi Ramasubramanian
- [PATCH v19 08/13] powerpc: Move ima buffer fields to struct kimage, Lakshmi Ramasubramanian
- [PATCH v19 09/13] powerpc: Enable passing IMA log to next kernel on kexec, Lakshmi Ramasubramanian
- [PATCH v19 10/13] powerpc: Move arch independent ima kexec functions to drivers/of/kexec.c, Lakshmi Ramasubramanian
- [PATCH v19 07/13] powerpc: Use common of_kexec_alloc_and_setup_fdt(), Lakshmi Ramasubramanian
- [PATCH v19 05/13] of: Add a common kexec FDT setup function, Lakshmi Ramasubramanian
  - Re: [PATCH v19 05/13] of: Add a common kexec FDT setup function, Thiago Jung Bauermann
    - Re: [PATCH v19 05/13] of: Add a common kexec FDT setup function, Lakshmi Ramasubramanian
  - Re: [PATCH v19 05/13] of: Add a common kexec FDT setup function, Geert Uytterhoeven
    - Re: [PATCH v19 05/13] of: Add a common kexec FDT setup function, Rob Herring
      - Re: [PATCH v19 05/13] of: Add a common kexec FDT setup function, nramas
        
        Re: [PATCH v19 05/13] of: Add a common kexec FDT setup function, Rob Herring
        
        Re: [PATCH v19 05/13] of: Add a common kexec FDT setup function, Michael Ellerman
        
        Re: [PATCH v19 05/13] of: Add a common kexec FDT setup function, Rob Herring
- [PATCH v19 06/13] arm64: Use common of_kexec_alloc_and_setup_fdt(), Lakshmi Ramasubramanian
- Re: [PATCH v19 00/13] Carry forward IMA measurement log on kexec on ARM64, Rob Herring
  - Re: [PATCH v19 00/13] Carry forward IMA measurement log on kexec on ARM64, Lakshmi Ramasubramanian
[PATCH 2/2] tpm, tpm_tis: Decorate tpm_tis_gen_interrupt() with request_locality(), Jarkko Sakkinen
[PATCH 1/2] tpm, tpm_tis: Decorate tpm_get_timeouts() with request_locality(), Jarkko Sakkinen
[PATCH 0/9] Enable hibernation when Lockdown is enabled, Matthew Garrett
- [PATCH 1/9] tpm: Add support for in-kernel resetting of PCRs, Matthew Garrett
  - Re: [PATCH 1/9] tpm: Add support for in-kernel resetting of PCRs, Jarkko Sakkinen
- [PATCH 3/9] security: keys: trusted: Parse out individual components of the key blob, Matthew Garrett
  - Re: [PATCH 3/9] security: keys: trusted: Parse out individual components of the key blob, Jarkko Sakkinen
    - Re: [PATCH 3/9] security: keys: trusted: Parse out individual components of the key blob, Matthew Garrett
      - Re: [PATCH 3/9] security: keys: trusted: Parse out individual components of the key blob, Jarkko Sakkinen
- [PATCH 2/9] tpm: Allow PCR 23 to be restricted to kernel-only use, Matthew Garrett
  - Re: [PATCH 2/9] tpm: Allow PCR 23 to be restricted to kernel-only use, Jarkko Sakkinen
  - Re: [PATCH 2/9] tpm: Allow PCR 23 to be restricted to kernel-only use, Jarkko Sakkinen
  - Re: [PATCH 2/9] tpm: Allow PCR 23 to be restricted to kernel-only use, James Bottomley
    - Re: [PATCH 2/9] tpm: Allow PCR 23 to be restricted to kernel-only use, Matthew Garrett
- [PATCH 4/9] security: keys: trusted: Store the handle of a loaded key, Matthew Garrett
  - Re: [PATCH 4/9] security: keys: trusted: Store the handle of a loaded key, Jarkko Sakkinen
- [PATCH 7/9] pm: hibernate: Optionally use TPM-backed keys to protect image integrity, Matthew Garrett
  - Re: [PATCH 7/9] pm: hibernate: Optionally use TPM-backed keys to protect image integrity, Randy Dunlap
    - Re: [PATCH 7/9] pm: hibernate: Optionally use TPM-backed keys to protect image integrity, Matthew Garrett
- [PATCH 8/9] pm: hibernate: Verify the digest encryption key, Matthew Garrett
- [PATCH 9/9] pm: hibernate: seal the encryption key with a PCR policy, Matthew Garrett
- [PATCH 6/9] pm: hibernate: Optionally store and verify a hash of the image, Matthew Garrett
  - Re: [PATCH 6/9] pm: hibernate: Optionally store and verify a hash of the image, Evan Green
- [PATCH 5/9] security: keys: trusted: Allow storage of PCR values in creation data, Matthew Garrett
  - Re: [PATCH 5/9] security: keys: trusted: Allow storage of PCR values in creation data, Jarkko Sakkinen
    - Re: [PATCH 5/9] security: keys: trusted: Allow storage of PCR values in creation data, Ben Boeckel
    - Re: [PATCH 5/9] security: keys: trusted: Allow storage of PCR values in creation data, Matthew Garrett
- Re: [PATCH 0/9] Enable hibernation when Lockdown is enabled, Evan Green
  - Re: [PATCH 0/9] Enable hibernation when Lockdown is enabled, Jarkko Sakkinen
    - Re: [PATCH 0/9] Enable hibernation when Lockdown is enabled, Jarkko Sakkinen
      - Re: [PATCH 0/9] Enable hibernation when Lockdown is enabled, Evan Green
Re: [PATCH] ima: Replacing deprecated strlcpy with strscpy ~~~~~~~~~ Replace, Jarkko Sakkinen
- Re: [PATCH] ima: Replacing deprecated strlcpy with strscpy ~~~~~~~~~ Replace, Palash Oswal
[PATCH] certs: Add support for using elliptic curve keys for signing modules, Stefan Berger
- Re: [PATCH] certs: Add support for using elliptic curve keys for signing modules, Mimi Zohar
  - Re: [PATCH] certs: Add support for using elliptic curve keys for signing modules, Stefan Berger
[PATCH] ima: Replacing deprecated strlcpy with strscpy, Palash Oswal
[PATCH v3] IMA: support for duplicate measurement records, Tushar Sugandhi
- Re: [PATCH v3] IMA: support for duplicate measurement records, Petr Vorel
  - Re: [PATCH v3] IMA: support for duplicate measurement records, Tushar Sugandhi
[PATCH] of: error: 'const struct kimage' has no member named 'arch', Lakshmi Ramasubramanian
- Re: [PATCH] of: error: 'const struct kimage' has no member named 'arch', Mimi Zohar
  - Re: [PATCH] of: error: 'const struct kimage' has no member named 'arch', Lakshmi Ramasubramanian
    - Re: [PATCH] of: error: 'const struct kimage' has no member named 'arch', Thiago Jung Bauermann
      - Re: [PATCH] of: error: 'const struct kimage' has no member named 'arch', Lakshmi Ramasubramanian
        
        Re: [PATCH] of: error: 'const struct kimage' has no member named 'arch', Thiago Jung Bauermann
        
        Re: [PATCH] of: error: 'const struct kimage' has no member named 'arch', Mimi Zohar
        
        Re: [PATCH] of: error: 'const struct kimage' has no member named 'arch', Rob Herring
        
        Re: [PATCH] of: error: 'const struct kimage' has no member named 'arch', Lakshmi Ramasubramanian
        
        Re: [PATCH] of: error: 'const struct kimage' has no member named 'arch', Rob Herring
        
        Re: [PATCH] of: error: 'const struct kimage' has no member named 'arch', Mimi Zohar
        
        Re: [PATCH] of: error: 'const struct kimage' has no member named 'arch', Thiago Jung Bauermann
        
        Re: [PATCH] of: error: 'const struct kimage' has no member named 'arch', Lakshmi Ramasubramanian
[PATCH v2 0/5] ima: kernel build support for loading the kernel module signing key, Nayna Jain
- [PATCH v2 1/5] keys: cleanup build time module signing keys, Nayna Jain
  - Re: [PATCH v2 1/5] keys: cleanup build time module signing keys, Stefan Berger
- [PATCH v2 2/5] keys: generate self-signed module signing key using CSR, Nayna Jain
  - Re: [PATCH v2 2/5] keys: generate self-signed module signing key using CSR, Stefan Berger
- [PATCH v2 3/5] ima: update kernel module signing process during build, Nayna Jain
  - Re: [PATCH v2 3/5] ima: update kernel module signing process during build, Stefan Berger
- [PATCH v2 5/5] ima: enable loading of build time generated key on .ima keyring, Nayna Jain
  - Re: [PATCH v2 5/5] ima: enable loading of build time generated key on .ima keyring, Mimi Zohar
  - Re: [PATCH v2 5/5] ima: enable loading of build time generated key on .ima keyring, Stefan Berger
- [PATCH v2 4/5] keys: define build time generated ephemeral kernel CA key, Nayna Jain
  - Re: [PATCH v2 4/5] keys: define build time generated ephemeral kernel CA key, Stefan Berger

[Index of Archives] [Linux Kernel] [Linux Kernel Hardening] [Linux NFS] [Linux NILFS] [Linux USB Devel] [Video for Linux] [Linux SCSI] [Yosemite Forum]