Gitiles
Code Review
Sign In
gerrit-public.fairphone.software
/
kernel
/
msm-4.19
/
f37b55ab8d843b089ead12c2d14dc58689a195df
/
security
/
integrity
8b259b9
ima: open a new file instance if no read permissions
by Goldwyn Rodrigues
· 6 years ago
13d3c98
ima: fix showing large 'violations' or 'runtime_measurements_count'
by Eric Biggers
· 6 years ago
f91e654
Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security
by Linus Torvalds
· 6 years ago
c715ebe
Merge branch 'next-tpm' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security
by Linus Torvalds
· 6 years ago
92d4a03
Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security
by Linus Torvalds
· 6 years ago
ec403d8
ima: Get rid of ima_used_chip and use ima_tpm_chip != NULL instead
by Stefan Berger
· 7 years ago
5c2a640
ima: Use tpm_default_chip() and call TPM functions with a tpm_chip
by Stefan Berger
· 7 years ago
3dd0f18
EVM: fix return value check in evm_write_xattrs()
by Wei Yongjun
· 6 years ago
6eb864c
integrity: prevent deadlock during digsig verification.
by Mikhail Kurinnoi
· 7 years ago
5feeb61
evm: Allow non-SHA1 digital signatures
by Matthew Garrett
· 7 years ago
e2861fa
evm: Don't deadlock if a crypto algorithm is unavailable
by Matthew Garrett
· 7 years ago
ac2409a
integrity: silence warning when CONFIG_SECURITYFS is not enabled
by Sudeep Holla
· 7 years ago
dba31ee
ima: Differentiate auditing policy rules from "audit" actions
by Stefan Berger
· 7 years ago
2afd020
ima: Do not audit if CONFIG_INTEGRITY_AUDIT is not set
by Stefan Berger
· 7 years ago
3d2859d
ima: Use audit_log_format() rather than audit_log_string()
by Stefan Berger
· 7 years ago
8a3bcaf
ima: Call audit_log_string() rather than logging it untrusted
by Stefan Berger
· 7 years ago
4f0496d
ima: based on policy warn about loading firmware (pre-allocated buffer)
by Mimi Zohar
· 6 years ago
c77b8cd
module: replace the existing LSM hook in init_module
by Mimi Zohar
· 6 years ago
ef96837
ima: add build time policy
by Mimi Zohar
· 6 years ago
fed2512
ima: based on policy require signed firmware (sysfs fallback)
by Mimi Zohar
· 6 years ago
16c267a
ima: based on policy require signed kexec kernel images
by Mimi Zohar
· 6 years ago
6035a27
IMA: don't propagate opened through the entire thing
by Al Viro
· 7 years ago
00d535a
Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security
by Linus Torvalds
· 7 years ago
8b5c6a3
Merge tag 'audit-pr-20180605' of git://git.kernel.org/pub/scm/linux/kernel/git/pcmoore/audit
by Linus Torvalds
· 7 years ago
b5c90a7
EVM: unlock on error path in evm_read_xattrs()
by Dan Carpenter
· 7 years ago
a41d80a
EVM: prevent array underflow in evm_write_xattrs()
by Dan Carpenter
· 7 years ago
72acd64
EVM: Fix null dereference on xattr when xattr fails to allocate
by Colin Ian King
· 7 years ago
825b865
EVM: fix memory leak of temporary buffer 'temp'
by Colin Ian King
· 7 years ago
53b626f
IMA: use list_splice_tail_init_rcu() instead of its open coded variant
by Petko Manolov
· 7 years ago
b4df860
ima: use match_string() helper
by Yisheng Xie
· 7 years ago
6f0911a
ima: fix updating the ima_appraise flag
by Mimi Zohar
· 7 years ago
fd90bc5
ima: based on policy verify firmware signatures (pre-allocated buffer)
by Mimi Zohar
· 7 years ago
f1b08bb
ima: define a new policy condition based on the filesystem name
by Mimi Zohar
· 7 years ago
fa516b6
EVM: Allow runtime modification of the set of verified xattrs
by Matthew Garrett
· 7 years ago
21af766
EVM: turn evm_config_xattrnames into a list
by Matthew Garrett
· 7 years ago
0c343af
integrity: Add an integrity directory in securityfs
by Matthew Garrett
· 7 years ago
4ecd993
ima: Remove unused variable ima_initialized
by Petr Vorel
· 7 years ago
de63676
ima: Unify logging
by Petr Vorel
· 7 years ago
ffb122d
ima: Reflect correct permissions for policy
by Petr Vorel
· 7 years ago
cdfb6b3
audit: use inline function to get audit context
by Richard Guy Briggs
· 7 years ago
a3a5c96
evm: Don't update hmacs in user ns mounts
by Seth Forshee
· 7 years ago
ab60368
ima: Fallback to the builtin hash algorithm
by Petr Vorel
· 7 years ago
1c070b1
ima: Add smackfs to the default appraise/measure list
by Martin Townsend
· 7 years ago
70946c4a
evm: check for remount ro in progress before writing
by Sascha Hauer
· 7 years ago
f5e51fa
ima: Improvements in ima_appraise_measurement()
by Thiago Jung Bauermann
· 7 years ago
1775cb8
ima: Simplify ima_eventsig_init()
by Thiago Jung Bauermann
· 7 years ago
11c60f2
integrity: Remove unused macro IMA_ACTION_RULE_FLAGS
by Thiago Jung Bauermann
· 7 years ago
e456ef8
ima: drop vla in ima_audit_measurement()
by Tycho Andersen
· 7 years ago
fac37c62
ima: Fix Kconfig to select TPM 2.0 CRB interface
by Jiandi An
· 7 years ago
17d7b0a
evm: Constify *integrity_status_msg[]
by Hernán Gonzalez
· 7 years ago
1a82cee
evm: Move evm_hmac and evm_hash from evm_main.c to evm_crypto.c
by Hernán Gonzalez
· 7 years ago
9e67028
ima: fail signature verification based on policy
by Mimi Zohar
· 7 years ago
a9a4935
ima: clear IMA_HASH
by Mimi Zohar
· 7 years ago
d77ccdc
ima: re-evaluate files on privileged mounted filesystems
by Mimi Zohar
· 7 years ago
57b56ac
ima: fail file signature verification on non-init mounted filesystems
by Mimi Zohar
· 7 years ago
d906c10
IMA: Support using new creds in appraisal policy
by Matthew Garrett
· 7 years ago
120f3b1
integrity/security: fix digsig.c build error with header file
by Randy Dunlap
· 7 years ago
6fbac20
Merge tag 'iversion-v4.16-2' of git://git.kernel.org/pub/scm/linux/kernel/git/jlayton/linux
by Linus Torvalds
· 7 years ago
e259807
ima: re-initialize iint->atomic_flags
by Mimi Zohar
· 7 years ago
c472c07
iversion: Rename make inode_cmp_iversion{+raw} to inode_eq_iversion{+raw}
by Goffredo Baroncelli
· 7 years ago
ae0cb7b
Merge branch 'next-tpm' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security
by Linus Torvalds
· 7 years ago
3c29548
Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security
by Linus Torvalds
· 7 years ago
3b370b2
IMA: switch IMA over to new i_version API
by Jeff Layton
· 7 years ago
3644745
ima/policy: fix parsing of fsuuid
by Mike Rapoport
· 7 years ago
aad887f
tpm: use struct tpm_chip for tpm_chip_find_get()
by Jarkko Sakkinen
· 7 years ago
a2a2c3c
ima: Use i_version only when filesystem supports it
by Sascha Hauer
· 7 years ago
02c324a
integrity: remove unneeded initializations in integrity_iint_cache entries
by Jeff Layton
· 7 years ago
9c655be
ima: log message to module appraisal error
by Bruno E. O. Meneguele
· 7 years ago
4e8581e
ima: pass filename to ima_rdwr_violation_check()
by Roberto Sassu
· 7 years ago
72bf83b
ima: Fix line continuation format
by Joe Perches
· 7 years ago
da1b002
ima: support new "hash" and "dont_hash" policy actions
by Mimi Zohar
· 8 years ago
ac0bf02
ima: Use i_version only when filesystem supports it
by Sascha Hauer
· 7 years ago
0d73a55
ima: re-introduce own integrity cache lock
by Dmitry Kasatkin
· 7 years ago
50b9774
EVM: Add support for portable signature format
by Matthew Garrett
· 7 years ago
ae1ba16
EVM: Allow userland to permit modification of EVM-protected metadata
by Matthew Garrett
· 7 years ago
b7e27bc
ima: relax requiring a file signature for new files with zero length
by Mimi Zohar
· 7 years ago
020aae3
ima: do not update security.ima if appraisal status is not INTEGRITY_PASS
by Roberto Sassu
· 7 years ago
37dc795
Merge branch 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert/crypto-2.6
by Linus Torvalds
· 7 years ago
b33e3cc
Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security
by Linus Torvalds
· 7 years ago
e5729f8
ima: Remove redundant conditional operator
by Thiago Jung Bauermann
· 7 years ago
39adb92
ima: Fix bool initialization/comparison
by Thomas Meyer
· 7 years ago
7c9bc09
ima: check signature enforcement against cmdline param instead of CONFIG
by Bruno E. O. Meneguele
· 7 years ago
ebe7c0a
ima: fix hash algorithm initialization
by Boshi Wang
· 7 years ago
0485d06
EVM: Only complain about a missing HMAC key once
by Matthew Garrett
· 7 years ago
f00d797
EVM: Allow userspace to signal an RSA key has been loaded
by Matthew Garrett
· 7 years ago
096b854
EVM: Include security.apparmor in EVM measurements
by Matthew Garrett
· 7 years ago
a7d3d03
integrity: use kernel_read_file_from_path() to read x509 certs
by Christoph Hellwig
· 7 years ago
f3cc6b2
ima: always measure and audit files in policy
by Mimi Zohar
· 8 years ago
2068626
ima: don't remove the securityfs policy file
by Mimi Zohar
· 8 years ago
46f1414
ima: move to generic async completion
by Gilad Ben-Yossef
· 7 years ago
b244131
License cleanup: add SPDX GPL-2.0 license identifier to files with no license
by Greg Kroah-Hartman
· 7 years ago
e24dd9e
Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security
by Linus Torvalds
· 7 years ago
915d9d2
ima: Log the same audit cause whenever a file has no signature
by Thiago Jung Bauermann
· 8 years ago
2663218
ima: Simplify policy_func_show.
by Thiago Jung Bauermann
· 8 years ago
bb543e3
integrity: Small code improvements
by Thiago Jung Bauermann
· 8 years ago
e4586c79
ima: fix get_binary_runtime_size()
by Roberto Sassu
· 8 years ago
28a8dc4
ima: use ima_parse_buf() to parse template data
by Roberto Sassu
· 8 years ago
47fdee6
ima: use ima_parse_buf() to parse measurements headers
by Roberto Sassu
· 8 years ago
b17fd9e
ima: introduce ima_parse_buf()
by Roberto Sassu
· 8 years ago
82e3bb4
ima: Add cgroups2 to the defaults list
by Laura Abbott
· 8 years ago
Next »