Linux Integrity
[Prev Page][Next Page]
- Re: [PATCH v4 1/2] fTPM: firmware TPM running in TEE, (continued)
- [PATCH 00/22] Some documentation fixes,
Mauro Carvalho Chehab
- [PATCH] ima: use struct_size() in kzalloc(),
Gustavo A. R. Silva
- [PATCH v2 0/3] ima/evm fixes for v5.2,
Roberto Sassu
- [PATCH V2] IMA: Allow profiles to define the desired IMA template,
Matthew Garrett
- [PATCH v3 00/15] fs-verity: read-only file-based authenticity protection,
Eric Biggers
- [PATCH v3 02/15] fs-verity: add MAINTAINERS file entry, Eric Biggers
- [PATCH v3 01/15] fs-verity: add a documentation file, Eric Biggers
- [PATCH v3 03/15] fs-verity: add UAPI header, Eric Biggers
- [PATCH v3 05/15] fs-verity: add inode and superblock fields, Eric Biggers
- [PATCH v3 13/15] ext4: add basic fs-verity support, Eric Biggers
- [PATCH v3 14/15] ext4: add fs-verity read support, Eric Biggers
- [PATCH v3 15/15] f2fs: add fs-verity support, Eric Biggers
- [PATCH v3 12/15] fs-verity: support builtin file signatures, Eric Biggers
- [PATCH v3 10/15] fs-verity: implement FS_IOC_MEASURE_VERITY ioctl, Eric Biggers
- [PATCH v3 11/15] fs-verity: add SHA-512 support, Eric Biggers
- [PATCH v3 09/15] fs-verity: implement FS_IOC_ENABLE_VERITY ioctl, Eric Biggers
- [PATCH v3 08/15] fs-verity: add data verification hooks for ->readpages(), Eric Biggers
- [PATCH v3 06/15] fs-verity: add the hook for file ->open(), Eric Biggers
- [PATCH v3 07/15] fs-verity: add the hook for file ->setattr(), Eric Biggers
- [PATCH v3 04/15] fs-verity: add Kconfig and the helper functions for hashing, Eric Biggers
- Re: [PATCH v3 00/15] fs-verity: read-only file-based authenticity protection, Eric Biggers
- [USER][PATCH] cpio: add option to add file metadata in copy-out mode, Roberto Sassu
- [PATCH 1/4] ima-evm-utils: link to libcrypto instead of OpenSSL,
Dmitry Eremin-Solenikov
- [PATCH v4 0/3] initramfs: add support for xattrs in the initial ram disk,
Roberto Sassu
- [PATCH v4 1/3] initramfs: add file metadata, Roberto Sassu
- [PATCH v4 2/3] initramfs: read metadata from special file METADATA!!!, Roberto Sassu
- [PATCH v4 3/3] gen_init_cpio: add support for file metadata, Roberto Sassu
- Re: [PATCH v4 0/3] initramfs: add support for xattrs in the initial ram disk, Roberto Sassu
- Re: [PATCH v4 0/3] initramfs: add support for xattrs in the initial ram disk, Rob Landley
- Re: [PATCH v4 0/3] initramfs: add support for xattrs in the initial ram disk, Roberto Sassu
- Re: [PATCH v4 0/3] initramfs: add support for xattrs in the initial ram disk, Mimi Zohar
- Re: [PATCH v4 0/3] initramfs: add support for xattrs in the initial ram disk, Roberto Sassu
- Re: [PATCH v4 0/3] initramfs: add support for xattrs in the initial ram disk, Mimi Zohar
- Re: [PATCH v4 0/3] initramfs: add support for xattrs in the initial ram disk, Roberto Sassu
- Re: [PATCH v4 0/3] initramfs: add support for xattrs in the initial ram disk, Roberto Sassu
- Re: [PATCH v4 0/3] initramfs: add support for xattrs in the initial ram disk, Eugeniu Rosca
- RE: [PATCH v4 0/3] initramfs: add support for xattrs in the initial ram disk, Roberto Sassu
- Re: [PATCH v4 0/3] initramfs: add support for xattrs in the initial ram disk, Eugeniu Rosca
- RE: [PATCH v4 0/3] initramfs: add support for xattrs in the initial ram disk, Roberto Sassu
- Re: [PATCH v4 0/3] initramfs: add support for xattrs in the initial ram disk, Eugeniu Rosca
- Re: [PATCH v4 0/3] initramfs: add support for xattrs in the initial ram disk, Jim Baxter
- RE: [PATCH v4 0/3] initramfs: add support for xattrs in the initial ram disk, Roberto Sassu
- Re: [PATCH v4 0/3] initramfs: add support for xattrs in the initial ram disk, Jim Baxter
- RE: [PATCH v4 0/3] initramfs: add support for xattrs in the initial ram disk, Roberto Sassu
- Re: [PATCH v4 0/3] initramfs: add support for xattrs in the initial ram disk, Rob Landley
- RE: [PATCH v4 0/3] initramfs: add support for xattrs in the initial ram disk, Roberto Sassu
- Re: [PATCH v4 0/3] initramfs: add support for xattrs in the initial ram disk, Rob Landley
- RE: [PATCH v4 0/3] initramfs: add support for xattrs in the initial ram disk, Roberto Sassu
- Re: [PATCH v4 0/3] initramfs: add support for xattrs in the initial ram disk, Jim Baxter
- Re: [PATCH v4 0/3] initramfs: add support for xattrs in the initial ram disk, Rob Landley
- Re: [PATCH v4 0/3] initramfs: add support for xattrs in the initial ram disk, Rob Landley
- Re: [PATCH v4 0/3] initramfs: add support for xattrs in the initial ram disk, Rob Landley
- Re: [PATCH v4 0/3] initramfs: add support for xattrs in the initial ram disk, Mimi Zohar
- Re: [PATCH v4 0/3] initramfs: add support for xattrs in the initial ram disk, Alexander Lobakin
- Re: [PATCH v4 0/3] initramfs: add support for xattrs in the initial ram disk, Eugeniu Rosca
- [PATCH] IMA: Allow profiles to define the desired IMA template,
Matthew Garrett
- [PATCH V4 0/5] Allow FUSE to provide IMA hashes directly,
Matthew Garrett
- CAP_SYS_ADMIN requirement for updating IMA metadata,
Chuck Lever
- sleep in selinux_audit_rule_init,
Janne Karhunen
- [PATCH v6 0/3] add new ima hook ima_kexec_cmdline to measure kexec boot cmdline args,
Prakhar Srivastava
- [PATCH V7 0/4] Add support for crypto agile logs,
Matthew Garrett
- [PATCH] x86/ima: check EFI SetupMode too,
Mimi Zohar
- [PATCH V6 0/4] Add support for crypto agile TPM event logs,
Matthew Garrett
- [PATCH V3 0/6] IMA: Support asking the VFS for a file hash,
Matthew Garrett
- [PATCH v3 0/2] initramfs: add support for xattrs in the initial ram disk,
Roberto Sassu
- [PATCH] ima: skip verifying TPM 2.0 PCR values,
Mimi Zohar
- [PATCH 1/4] evm: check hash algorithm passed to init_desc(),
Roberto Sassu
- [PATCH 4/4] ima: only audit failed appraisal verifications, Roberto Sassu
- Re: [PATCH 1/4] evm: check hash algorithm passed to init_desc(), Mimi Zohar
[PATCH v2] ima: fix wrong signed policy requirement when not appraising, Petr Vorel
[PATCH] ima: fix wrong signed policy requirement when not appraising,
Petr Vorel
[PATCH 2/2] public key: IMA signer logging: Add a new template ima-sigkey to store/read the public, key of ima signature signer, Lakshmi
[PATCH 1/2] public key: IMA signer logging: Add support for querying public key from a given key, Lakshmi
[PATCH 0/2] public key: IMA signer logging: Log public key of IMA Signature signer in IMA log,
Lakshmi
[PATCH 0/5] integrity: improve ima measurement accuracy,
Janne Karhunen
IMA signature generated by evmctl has unexpected key identifier,
nramas
Whitelisting with IMA,
m3hm00d
Carrying over the ima log during kexec_file_load, prakhar srivastava
[PATCH 0/3 v5] Kexec cmdline bufffer measure,
Prakhar Srivastava
[PATCH v2 0/3] initramfs: add support for xattrs in the initial ram disk,
Roberto Sassu
[PATCH 00/16] treewide: fix match_string() helper when array size,
Alexandru Ardelean
- [PATCH 01/16] lib: fix match_string() helper on -1 array size, Alexandru Ardelean
- [PATCH 06/16] x86/mtrr: use new match_string() helper + add gaps == minor fix, Alexandru Ardelean
- [PATCH 13/16] drm/edid: use new match_string() helper/macro, Alexandru Ardelean
- [PATCH 16/16] sched: debug: use new match_string() helper/macro, Alexandru Ardelean
- [PATCH 14/16] staging: gdm724x: use new match_string() helper/macro, Alexandru Ardelean
- [PATCH 15/16] video: fbdev: pxafb: use new match_string() helper/macro, Alexandru Ardelean
- [PATCH 12/16] rdmacg: use new match_string() helper/macro, Alexandru Ardelean
- [PATCH 11/16] mm/vmpressure.c: use new match_string() helper/macro, Alexandru Ardelean
- [PATCH 08/16] cpufreq/intel_pstate: remove NULL entry + use match_string(), Alexandru Ardelean
- [PATCH 09/16] mmc: sdhci-xenon: use new match_string() helper/macro, Alexandru Ardelean
- [PATCH 10/16] pinctrl: armada-37xx: use new match_string() helper/macro, Alexandru Ardelean
- [PATCH 07/16] device connection: use new match_string() helper/macro, Alexandru Ardelean
- [PATCH 02/16] treewide: rename match_string() -> __match_string(), Alexandru Ardelean
- [PATCH 03/16] lib,treewide: add new match_string() helper/macro, Alexandru Ardelean
- [PATCH 04/16] powerpc/xmon: use new match_string() helper/macro, Alexandru Ardelean
- [PATCH 05/16] ALSA: oxygen: use new match_string() helper/macro, Alexandru Ardelean
- [PATCH 01/16] lib: fix match_string() helper when array size is positive, Alexandru Ardelean
- [PATCH 1/3][V2] lib: fix match_string() helper on -1 array size, Alexandru Ardelean
[PATCH AUTOSEL 4.14 41/95] ima: open a new file instance if no read permissions, Sasha Levin
[PATCH 0/3] ima: addressing mmap/mprotect concerns,
Mimi Zohar
Friendly reminder, Mimi Zohar
[PATCH] integrity: keep the integrity state of open files up to date,
Janne Karhunen
[PATCH 0/5 v4] Kexec cmdline bufffer measure,
Prakhar Srivastava
setfattr to set security.ima fails with error "Invalid argument",
Lakshmi Ramasubramanian
[ANNOUNCE][CFP] Linux Security Summit Europe 2019, Elena Reshetova
[PATCH v3 0/4] Add a new ima_hook buffer_check to measure buffers critical for attestation,
Prakhar Srivastava
[PATCH v6 00/24] x86: text_poke() fixes and executable lockdowns,
nadav . amit
- [PATCH v6 21/24] x86/kprobes: Use vmalloc special flag, nadav . amit
- [PATCH v6 24/24] bpf: Fail bpf_probe_write_user() while mm is switched, nadav . amit
- [PATCH v6 23/24] mm/tlb: Provide default nmi_uaccess_okay(), nadav . amit
- [PATCH v6 22/24] x86/alternative: Comment about module removal races, nadav . amit
- [PATCH v6 19/24] bpf: Use vmalloc special flag, nadav . amit
- [PATCH v6 20/24] x86/ftrace: Use vmalloc special flag, nadav . amit
- [PATCH v6 16/24] mm: Make hibernate handle unmapped pages, nadav . amit
- [PATCH v6 18/24] modules: Use vmalloc special flag, nadav . amit
- [PATCH v6 17/24] vmalloc: Add flag for free of special permsissions, nadav . amit
- [PATCH v6 15/24] x86/mm/cpa: Add set_direct_map_ functions, nadav . amit
- [PATCH v6 10/24] x86/ftrace: Set trampoline pages as executable, nadav . amit
- [PATCH v6 12/24] x86/module: Avoid breaking W^X while loading modules, nadav . amit
- [PATCH v6 14/24] x86/alternative: Remove the return value of text_poke_*(), nadav . amit
- [PATCH v6 13/24] x86/jump-label: Remove support for custom poker, nadav . amit
- [PATCH v6 09/24] x86/kgdb: Avoid redundant comparison of patched code, nadav . amit
- [PATCH v6 11/24] x86/kprobes: Set instruction page as executable, nadav . amit
- [PATCH v6 08/24] x86/alternative: Use temporary mm for text poking, nadav . amit
- [PATCH v6 03/24] x86/mm: Introduce temporary mm structs, nadav . amit
- [PATCH v6 06/24] fork: Provide a function for copying init_mm, nadav . amit
- [PATCH v6 07/24] x86/alternative: Initialize temporary mm for patching, nadav . amit
- [PATCH v6 05/24] uprobes: Initialize uprobes earlier, nadav . amit
- [PATCH v6 01/24] Fix "x86/alternatives: Lockdep-enforce text_mutex in text_poke*()", nadav . amit
- [PATCH v6 04/24] x86/mm: Save debug registers when loading a temporary mm, nadav . amit
- [PATCH v6 02/24] x86/jump_label: Use text_poke_early() during early init, nadav . amit
- Re: [PATCH v6 00/24] x86: text_poke() fixes and executable lockdowns, Ingo Molnar
- Re: [PATCH v6 00/24] x86: text_poke() fixes and executable lockdowns, Peter Zijlstra
[PATCH AUTOSEL 5.0 52/79] KEYS: trusted: fix -Wvarags warning, Sasha Levin
[PATCH AUTOSEL 5.0 51/79] tpm: fix an invalid condition in tpm_common_poll, Sasha Levin
[PATCH v5 00/23] x86: text_poke() fixes and executable lockdowns,
Nadav Amit
- [PATCH v5 02/23] x86/jump_label: Use text_poke_early() during early init, Nadav Amit
- [PATCH v5 08/23] x86/kgdb: Avoid redundant comparison of patched code, Nadav Amit
- [PATCH v5 14/23] x86/mm/cpa: Add set_direct_map_ functions, Nadav Amit
- [PATCH v5 10/23] x86/kprobes: Set instruction page as executable, Nadav Amit
- [PATCH v5 13/23] x86/alternative: Remove the return value of text_poke_*(), Nadav Amit
- [PATCH v5 23/23] bpf: Fail bpf_probe_write_user() while mm is switched, Nadav Amit
- [PATCH v5 20/23] x86/kprobes: Use vmalloc special flag, Nadav Amit
- [PATCH v5 21/23] x86/alternative: Comment about module removal races, Nadav Amit
- [PATCH v5 16/23] vmalloc: Add flag for free of special permsissions, Nadav Amit
- [PATCH v5 12/23] x86/jump-label: Remove support for custom poker, Nadav Amit
- [PATCH v5 17/23] modules: Use vmalloc special flag, Nadav Amit
- [PATCH v5 18/23] bpf: Use vmalloc special flag, Nadav Amit
- [PATCH v5 09/23] x86/ftrace: Set trampoline pages as executable, Nadav Amit
- [PATCH v5 06/23] x86/alternative: Initialize temporary mm for patching, Nadav Amit
- [PATCH v5 01/23] Fix "x86/alternatives: Lockdep-enforce text_mutex in text_poke*()", Nadav Amit
- [PATCH v5 03/23] x86/mm: Introduce temporary mm structs, Nadav Amit
- [PATCH v5 11/23] x86/module: Avoid breaking W^X while loading modules, Nadav Amit
- [PATCH v5 05/23] fork: Provide a function for copying init_mm, Nadav Amit
- [PATCH v5 19/23] x86/ftrace: Use vmalloc special flag, Nadav Amit
- [PATCH v5 22/23] mm/tlb: Provide default nmi_uaccess_okay(), Nadav Amit
- [PATCH v5 15/23] mm: Make hibernate handle unmapped pages, Nadav Amit
- [PATCH v5 04/23] x86/mm: Save debug registers when loading a temporary mm, Nadav Amit
- [PATCH v5 07/23] x86/alternative: Use temporary mm for text poking, Nadav Amit
- Re: [PATCH v5 00/23] x86: text_poke() fixes and executable lockdowns, Peter Zijlstra
linux-tpmdd self signed kernel failing to boot with secreboot on,
Jordan
[PATCH v2] KEYS: Make use of platform keyring for module signature verify,
Robert Holmes
Re: [PATCH v2] KEYS: Make use of platform keyring for module signature verify, Mimi Zohar
[PATCH v1 1/1] Return the verified kernel image signature in kexec_file_load, nramas
[PATCH v2 1/5 RFC] added ima hook for buffer, being enabled as a policy,
Prakhar Srivastava
[PATCH] x86/ima: Check EFI_RUNTIME_SERVICES before using,
Scott Wood
[PATCH v4 00/23] Merge text_poke fixes and executable lockdowns,
Rick Edgecombe
- [PATCH v4 14/23] x86/mm/cpa: Add set_direct_map_ functions, Rick Edgecombe
- [PATCH v4 23/23] bpf: Fail bpf_probe_write_user() while mm is switched, Rick Edgecombe
- [PATCH v4 22/23] tlb: provide default nmi_uaccess_okay(), Rick Edgecombe
- [PATCH v4 21/23] x86/alternative: Comment about module removal races, Rick Edgecombe
- [PATCH v4 20/23] x86/kprobes: Use vmalloc special flag, Rick Edgecombe
- [PATCH v4 15/23] mm: Make hibernate handle unmapped pages, Rick Edgecombe
- [PATCH v4 18/23] bpf: Use vmalloc special flag, Rick Edgecombe
- [PATCH v4 19/23] x86/ftrace: Use vmalloc special flag, Rick Edgecombe
- [PATCH v4 17/23] modules: Use vmalloc special flag, Rick Edgecombe
- [PATCH v4 16/23] vmalloc: Add flag for free of special permsissions, Rick Edgecombe
- [PATCH v4 12/23] x86/jump-label: Remove support for custom poker, Rick Edgecombe
- [PATCH v4 11/23] x86/module: Avoid breaking W^X while loading modules, Rick Edgecombe
- [PATCH v4 10/23] x86/kprobes: Set instruction page as executable, Rick Edgecombe
- [PATCH v4 13/23] x86/alternative: Remove the return value of text_poke_*(), Rick Edgecombe
- [PATCH v4 06/23] x86/alternative: Initialize temporary mm for patching, Rick Edgecombe
- [PATCH v4 03/23] x86/mm: Introduce temporary mm structs, Rick Edgecombe
- [PATCH v4 08/23] x86/kgdb: Avoid redundant comparison of patched code, Rick Edgecombe
- [PATCH v4 09/23] x86/ftrace: Set trampoline pages as executable, Rick Edgecombe
- [PATCH v4 07/23] x86/alternative: Use temporary mm for text poking, Rick Edgecombe
- [PATCH v4 04/23] x86/mm: Save DRs when loading a temporary mm, Rick Edgecombe
- [PATCH v4 05/23] fork: Provide a function for copying init_mm, Rick Edgecombe
- [PATCH v4 01/23] Fix "x86/alternatives: Lockdep-enforce text_mutex in text_poke*()", Rick Edgecombe
- [PATCH v4 02/23] x86/jump_label: Use text_poke_early() during early init, Rick Edgecombe
- Re: [PATCH v4 00/23] Merge text_poke fixes and executable lockdowns, Peter Zijlstra
[PATCH v2 1/3 RFC] added ima hook for buffer, being enabled as a policy,
Prakhar Srivastava
Can we enforce "IMA Policy" based on file type,
Kavitha Sivagnanam
[PATCH v10 00/12] Appended signatures support for IMA appraisal,
Thiago Jung Bauermann
- [PATCH v10 01/12] MODSIGN: Export module signature definitions, Thiago Jung Bauermann
- [PATCH v10 02/12] PKCS#7: Refactor verify_pkcs7_signature(), Thiago Jung Bauermann
- [PATCH v10 03/12] PKCS#7: Introduce pkcs7_get_digest(), Thiago Jung Bauermann
- [PATCH v10 04/12] integrity: Introduce struct evm_xattr, Thiago Jung Bauermann
- [PATCH v10 05/12] integrity: Select CONFIG_KEYS instead of depending on it, Thiago Jung Bauermann
- [PATCH v10 06/12] ima: Use designated initializers for struct ima_event_data, Thiago Jung Bauermann
- [PATCH v10 07/12] ima: Add modsig appraise_type option for module-style appended signatures, Thiago Jung Bauermann
- [PATCH v10 08/12] ima: Factor xattr_verify() out of ima_appraise_measurement(), Thiago Jung Bauermann
- [PATCH v10 09/12] ima: Implement support for module-style appended signatures, Thiago Jung Bauermann
- [PATCH v10 10/12] ima: Collect modsig, Thiago Jung Bauermann
- [PATCH v10 12/12] ima: Store the measurement again when appraising a modsig, Thiago Jung Bauermann
- [PATCH v10 11/12] ima: Define ima-modsig template, Thiago Jung Bauermann
on leave next week,
Jarkko Sakkinen
[PATCH v3 00/26] compat_ioctl: cleanups,
Arnd Bergmann
[PATCH v3 0/2] ftpm: a firmware based TPM driver,
Sasha Levin
[PATCH v2] MAINTAINERS: fix style in KEYS-TRUSTED entry,
Lukas Bulwahn
[PATCH] kexec_buffer measure,
prsriva02
[GIT PULL] linux-integrity patches for Linux 5.2,
Mimi Zohar
[PATCH v9 00/10] crypto: add EC-RDSA (GOST 34.10) algorithm,
Vitaly Chikunov
- [PATCH v9 01/10] crypto: akcipher - default implementations for request callbacks, Vitaly Chikunov
- [PATCH v9 04/10] KEYS: do not kmemdup digest in {public,tpm}_key_verify_signature, Vitaly Chikunov
- [PATCH v9 07/10] crypto: ecc - make ecc into separate module, Vitaly Chikunov
- [PATCH v9 10/10] integrity: support EC-RDSA signatures for asymmetric_verify, Vitaly Chikunov
- [PATCH v9 08/10] crypto: ecrdsa - add EC-RDSA (GOST 34.10) algorithm, Vitaly Chikunov
- [PATCH v9 09/10] crypto: ecrdsa - add EC-RDSA test vectors to testmgr, Vitaly Chikunov
- [PATCH v9 02/10] crypto: rsa - unimplement sign/verify for raw RSA backends, Vitaly Chikunov
- [PATCH v9 03/10] crypto: akcipher - new verify API for public key algorithms, Vitaly Chikunov
- [PATCH v9 05/10] X.509: parse public key parameters from x509 for akcipher, Vitaly Chikunov
- [PATCH v9 06/10] crypto: Kconfig - create Public-key cryptography section, Vitaly Chikunov
- Re: [PATCH v9 00/10] crypto: add EC-RDSA (GOST 34.10) algorithm, Herbert Xu
[PATCH] integrity: make 'sync' update the inode integrity state,
Janne Karhunen
[ANNOUNCE][CFP] Linux Security Summit North America 2019, James Morris
[PATCH v2 0/3] ftpm: a firmware based TPM driver,
Sasha Levin
[PATCH v2 0/3] powerpc: Enabling secure boot on powernv systems - Part 1,
Nayna Jain
[Index of Archives]
[Linux Kernel]
[Linux Kernel Hardening]
[Linux NFS]
[Linux NILFS]
[Linux USB Devel]
[Video for Linux]
[Linux SCSI]
[Yosemite Forum]
