| Commit message (Expand) | Author | Age | Files | Lines |
* | integrity: support new struct public_key_signature encoding field | Mimi Zohar | 2018-11-13 | 1 | -0/+1 |
* | Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/gi... | Linus Torvalds | 2018-10-25 | 9 | -43/+54 |
|\ |
|
| * | ima: open a new file instance if no read permissions | Goldwyn Rodrigues | 2018-10-10 | 1 | -20/+34 |
| * | ima: fix showing large 'violations' or 'runtime_measurements_count' | Eric Biggers | 2018-10-10 | 1 | -3/+3 |
| * | security/integrity: remove unnecessary 'init_keyring' variable | Eric Biggers | 2018-10-10 | 1 | -7/+1 |
| * | security/integrity: constify some read-only data | Eric Biggers | 2018-10-10 | 8 | -13/+16 |
* | | LSM: Record LSM name in struct lsm_info | Kees Cook | 2018-10-11 | 1 | -0/+1 |
* | | LSM: Convert security_initcall() into DEFINE_LSM() | Kees Cook | 2018-10-11 | 1 | -1/+3 |
* | | LSM: Convert from initcall to struct lsm_info | Kees Cook | 2018-10-11 | 1 | -0/+1 |
|/ |
|
* | Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/gi... | Linus Torvalds | 2018-08-16 | 11 | -45/+102 |
|\ |
|
| * | EVM: fix return value check in evm_write_xattrs() | Wei Yongjun | 2018-07-22 | 1 | -2/+2 |
| * | integrity: prevent deadlock during digsig verification. | Mikhail Kurinnoi | 2018-07-18 | 1 | -0/+23 |
| * | evm: Allow non-SHA1 digital signatures | Matthew Garrett | 2018-07-18 | 4 | -31/+46 |
| * | evm: Don't deadlock if a crypto algorithm is unavailable | Matthew Garrett | 2018-07-18 | 1 | -1/+2 |
| * | integrity: silence warning when CONFIG_SECURITYFS is not enabled | Sudeep Holla | 2018-07-18 | 1 | -3/+6 |
| * | ima: Differentiate auditing policy rules from "audit" actions | Stefan Berger | 2018-07-18 | 1 | -2/+2 |
| * | ima: Do not audit if CONFIG_INTEGRITY_AUDIT is not set | Stefan Berger | 2018-07-18 | 3 | -1/+21 |
| * | ima: Use audit_log_format() rather than audit_log_string() | Stefan Berger | 2018-07-18 | 2 | -7/+2 |
| * | ima: Call audit_log_string() rather than logging it untrusted | Stefan Berger | 2018-07-18 | 1 | -1/+1 |
* | | Merge branch 'next-tpm' of git://git.kernel.org/pub/scm/linux/kernel/git/jmor... | Linus Torvalds | 2018-08-16 | 4 | -16/+10 |
|\ \ |
|
| * | | ima: Get rid of ima_used_chip and use ima_tpm_chip != NULL instead | Stefan Berger | 2018-07-28 | 4 | -8/+4 |
| * | | ima: Use tpm_default_chip() and call TPM functions with a tpm_chip | Stefan Berger | 2018-07-28 | 4 | -9/+7 |
| |/ |
|
* | | Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/... | Linus Torvalds | 2018-08-15 | 4 | -17/+158 |
|\| |
|
| * | ima: based on policy warn about loading firmware (pre-allocated buffer) | Mimi Zohar | 2018-07-16 | 1 | -0/+8 |
| * | module: replace the existing LSM hook in init_module | Mimi Zohar | 2018-07-16 | 1 | -13/+10 |
| * | ima: add build time policy | Mimi Zohar | 2018-07-16 | 2 | -3/+101 |
| * | ima: based on policy require signed firmware (sysfs fallback) | Mimi Zohar | 2018-07-16 | 1 | -1/+9 |
| * | ima: based on policy require signed kexec kernel images | Mimi Zohar | 2018-07-16 | 3 | -0/+30 |
* | | IMA: don't propagate opened through the entire thing | Al Viro | 2018-07-12 | 3 | -12/+12 |
|/ |
|
* | Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/gi... | Linus Torvalds | 2018-06-08 | 13 | -83/+362 |
|\ |
|
| * | EVM: unlock on error path in evm_read_xattrs() | Dan Carpenter | 2018-06-01 | 1 | -1/+3 |
| * | EVM: prevent array underflow in evm_write_xattrs() | Dan Carpenter | 2018-05-31 | 1 | -1/+1 |
| * | EVM: Fix null dereference on xattr when xattr fails to allocate | Colin Ian King | 2018-05-31 | 1 | -2/+4 |
| * | EVM: fix memory leak of temporary buffer 'temp' | Colin Ian King | 2018-05-31 | 1 | -0/+2 |
| * | IMA: use list_splice_tail_init_rcu() instead of its open coded variant | Petko Manolov | 2018-05-31 | 1 | -15/+2 |
| * | ima: use match_string() helper | Yisheng Xie | 2018-05-31 | 1 | -7/+4 |
| * | ima: fix updating the ima_appraise flag | Mimi Zohar | 2018-05-22 | 1 | -9/+19 |
| * | ima: based on policy verify firmware signatures (pre-allocated buffer) | Mimi Zohar | 2018-05-22 | 1 | -0/+1 |
| * | ima: define a new policy condition based on the filesystem name | Mimi Zohar | 2018-05-22 | 1 | -1/+24 |
| * | EVM: Allow runtime modification of the set of verified xattrs | Matthew Garrett | 2018-05-18 | 4 | -4/+188 |
| * | EVM: turn evm_config_xattrnames into a list | Matthew Garrett | 2018-05-18 | 3 | -39/+57 |
| * | integrity: Add an integrity directory in securityfs | Matthew Garrett | 2018-05-17 | 4 | -4/+52 |
| * | ima: Remove unused variable ima_initialized | Petr Vorel | 2018-05-17 | 2 | -6/+2 |
| * | ima: Unify logging | Petr Vorel | 2018-05-17 | 3 | -2/+9 |
| * | ima: Reflect correct permissions for policy | Petr Vorel | 2018-05-17 | 1 | -0/+2 |
* | | Merge tag 'audit-pr-20180605' of git://git.kernel.org/pub/scm/linux/kernel/gi... | Linus Torvalds | 2018-06-07 | 2 | -2/+2 |
|\ \ |
|
| * | | audit: use inline function to get audit context | Richard Guy Briggs | 2018-05-14 | 2 | -2/+2 |
| |/ |
|
* / | evm: Don't update hmacs in user ns mounts | Seth Forshee | 2018-05-03 | 1 | -1/+2 |
|/ |
|
* | ima: Fallback to the builtin hash algorithm | Petr Vorel | 2018-03-25 | 2 | -0/+15 |
* | ima: Add smackfs to the default appraise/measure list | Martin Townsend | 2018-03-25 | 1 | -0/+2 |