1. 8b259b9 ima: open a new file instance if no read permissions by Goldwyn Rodrigues · 6 years ago
  2. 13d3c98 ima: fix showing large 'violations' or 'runtime_measurements_count' by Eric Biggers · 6 years ago
  3. f91e654 Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security by Linus Torvalds · 6 years ago
  4. c715ebe Merge branch 'next-tpm' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security by Linus Torvalds · 6 years ago
  5. 92d4a03 Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security by Linus Torvalds · 6 years ago
  6. ec403d8 ima: Get rid of ima_used_chip and use ima_tpm_chip != NULL instead by Stefan Berger · 7 years ago
  7. 5c2a640 ima: Use tpm_default_chip() and call TPM functions with a tpm_chip by Stefan Berger · 7 years ago
  8. 3dd0f18 EVM: fix return value check in evm_write_xattrs() by Wei Yongjun · 6 years ago
  9. 6eb864c integrity: prevent deadlock during digsig verification. by Mikhail Kurinnoi · 7 years ago
  10. 5feeb61 evm: Allow non-SHA1 digital signatures by Matthew Garrett · 7 years ago
  11. e2861fa evm: Don't deadlock if a crypto algorithm is unavailable by Matthew Garrett · 7 years ago
  12. ac2409a integrity: silence warning when CONFIG_SECURITYFS is not enabled by Sudeep Holla · 7 years ago
  13. dba31ee ima: Differentiate auditing policy rules from "audit" actions by Stefan Berger · 7 years ago
  14. 2afd020 ima: Do not audit if CONFIG_INTEGRITY_AUDIT is not set by Stefan Berger · 7 years ago
  15. 3d2859d ima: Use audit_log_format() rather than audit_log_string() by Stefan Berger · 7 years ago
  16. 8a3bcaf ima: Call audit_log_string() rather than logging it untrusted by Stefan Berger · 7 years ago
  17. 4f0496d ima: based on policy warn about loading firmware (pre-allocated buffer) by Mimi Zohar · 6 years ago
  18. c77b8cd module: replace the existing LSM hook in init_module by Mimi Zohar · 6 years ago
  19. ef96837 ima: add build time policy by Mimi Zohar · 6 years ago
  20. fed2512 ima: based on policy require signed firmware (sysfs fallback) by Mimi Zohar · 6 years ago
  21. 16c267a ima: based on policy require signed kexec kernel images by Mimi Zohar · 6 years ago
  22. 6035a27 IMA: don't propagate opened through the entire thing by Al Viro · 7 years ago
  23. 00d535a Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security by Linus Torvalds · 7 years ago
  24. 8b5c6a3 Merge tag 'audit-pr-20180605' of git://git.kernel.org/pub/scm/linux/kernel/git/pcmoore/audit by Linus Torvalds · 7 years ago
  25. b5c90a7 EVM: unlock on error path in evm_read_xattrs() by Dan Carpenter · 7 years ago
  26. a41d80a EVM: prevent array underflow in evm_write_xattrs() by Dan Carpenter · 7 years ago
  27. 72acd64 EVM: Fix null dereference on xattr when xattr fails to allocate by Colin Ian King · 7 years ago
  28. 825b865 EVM: fix memory leak of temporary buffer 'temp' by Colin Ian King · 7 years ago
  29. 53b626f IMA: use list_splice_tail_init_rcu() instead of its open coded variant by Petko Manolov · 7 years ago
  30. b4df860 ima: use match_string() helper by Yisheng Xie · 7 years ago
  31. 6f0911a ima: fix updating the ima_appraise flag by Mimi Zohar · 7 years ago
  32. fd90bc5 ima: based on policy verify firmware signatures (pre-allocated buffer) by Mimi Zohar · 7 years ago
  33. f1b08bb ima: define a new policy condition based on the filesystem name by Mimi Zohar · 7 years ago
  34. fa516b6 EVM: Allow runtime modification of the set of verified xattrs by Matthew Garrett · 7 years ago
  35. 21af766 EVM: turn evm_config_xattrnames into a list by Matthew Garrett · 7 years ago
  36. 0c343af integrity: Add an integrity directory in securityfs by Matthew Garrett · 7 years ago
  37. 4ecd993 ima: Remove unused variable ima_initialized by Petr Vorel · 7 years ago
  38. de63676 ima: Unify logging by Petr Vorel · 7 years ago
  39. ffb122d ima: Reflect correct permissions for policy by Petr Vorel · 7 years ago
  40. cdfb6b3 audit: use inline function to get audit context by Richard Guy Briggs · 7 years ago
  41. a3a5c96 evm: Don't update hmacs in user ns mounts by Seth Forshee · 7 years ago
  42. ab60368 ima: Fallback to the builtin hash algorithm by Petr Vorel · 7 years ago
  43. 1c070b1 ima: Add smackfs to the default appraise/measure list by Martin Townsend · 7 years ago
  44. 70946c4a evm: check for remount ro in progress before writing by Sascha Hauer · 7 years ago
  45. f5e51fa ima: Improvements in ima_appraise_measurement() by Thiago Jung Bauermann · 7 years ago
  46. 1775cb8 ima: Simplify ima_eventsig_init() by Thiago Jung Bauermann · 7 years ago
  47. 11c60f2 integrity: Remove unused macro IMA_ACTION_RULE_FLAGS by Thiago Jung Bauermann · 7 years ago
  48. e456ef8 ima: drop vla in ima_audit_measurement() by Tycho Andersen · 7 years ago
  49. fac37c62 ima: Fix Kconfig to select TPM 2.0 CRB interface by Jiandi An · 7 years ago
  50. 17d7b0a evm: Constify *integrity_status_msg[] by Hernán Gonzalez · 7 years ago
  51. 1a82cee evm: Move evm_hmac and evm_hash from evm_main.c to evm_crypto.c by Hernán Gonzalez · 7 years ago
  52. 9e67028 ima: fail signature verification based on policy by Mimi Zohar · 7 years ago
  53. a9a4935 ima: clear IMA_HASH by Mimi Zohar · 7 years ago
  54. d77ccdc ima: re-evaluate files on privileged mounted filesystems by Mimi Zohar · 7 years ago
  55. 57b56ac ima: fail file signature verification on non-init mounted filesystems by Mimi Zohar · 7 years ago
  56. d906c10 IMA: Support using new creds in appraisal policy by Matthew Garrett · 7 years ago
  57. 120f3b1 integrity/security: fix digsig.c build error with header file by Randy Dunlap · 7 years ago
  58. 6fbac20 Merge tag 'iversion-v4.16-2' of git://git.kernel.org/pub/scm/linux/kernel/git/jlayton/linux by Linus Torvalds · 7 years ago
  59. e259807 ima: re-initialize iint->atomic_flags by Mimi Zohar · 7 years ago
  60. c472c07 iversion: Rename make inode_cmp_iversion{+raw} to inode_eq_iversion{+raw} by Goffredo Baroncelli · 7 years ago
  61. ae0cb7b Merge branch 'next-tpm' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security by Linus Torvalds · 7 years ago
  62. 3c29548 Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security by Linus Torvalds · 7 years ago
  63. 3b370b2 IMA: switch IMA over to new i_version API by Jeff Layton · 7 years ago
  64. 3644745 ima/policy: fix parsing of fsuuid by Mike Rapoport · 7 years ago
  65. aad887f tpm: use struct tpm_chip for tpm_chip_find_get() by Jarkko Sakkinen · 7 years ago
  66. a2a2c3c ima: Use i_version only when filesystem supports it by Sascha Hauer · 7 years ago
  67. 02c324a integrity: remove unneeded initializations in integrity_iint_cache entries by Jeff Layton · 7 years ago
  68. 9c655be ima: log message to module appraisal error by Bruno E. O. Meneguele · 7 years ago
  69. 4e8581e ima: pass filename to ima_rdwr_violation_check() by Roberto Sassu · 7 years ago
  70. 72bf83b ima: Fix line continuation format by Joe Perches · 7 years ago
  71. da1b002 ima: support new "hash" and "dont_hash" policy actions by Mimi Zohar · 8 years ago
  72. ac0bf02 ima: Use i_version only when filesystem supports it by Sascha Hauer · 7 years ago
  73. 0d73a55 ima: re-introduce own integrity cache lock by Dmitry Kasatkin · 7 years ago
  74. 50b9774 EVM: Add support for portable signature format by Matthew Garrett · 7 years ago
  75. ae1ba16 EVM: Allow userland to permit modification of EVM-protected metadata by Matthew Garrett · 7 years ago
  76. b7e27bc ima: relax requiring a file signature for new files with zero length by Mimi Zohar · 7 years ago
  77. 020aae3 ima: do not update security.ima if appraisal status is not INTEGRITY_PASS by Roberto Sassu · 7 years ago
  78. 37dc795 Merge branch 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert/crypto-2.6 by Linus Torvalds · 7 years ago
  79. b33e3cc Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security by Linus Torvalds · 7 years ago
  80. e5729f8 ima: Remove redundant conditional operator by Thiago Jung Bauermann · 7 years ago
  81. 39adb92 ima: Fix bool initialization/comparison by Thomas Meyer · 7 years ago
  82. 7c9bc09 ima: check signature enforcement against cmdline param instead of CONFIG by Bruno E. O. Meneguele · 7 years ago
  83. ebe7c0a ima: fix hash algorithm initialization by Boshi Wang · 7 years ago
  84. 0485d06 EVM: Only complain about a missing HMAC key once by Matthew Garrett · 7 years ago
  85. f00d797 EVM: Allow userspace to signal an RSA key has been loaded by Matthew Garrett · 7 years ago
  86. 096b854 EVM: Include security.apparmor in EVM measurements by Matthew Garrett · 7 years ago
  87. a7d3d03 integrity: use kernel_read_file_from_path() to read x509 certs by Christoph Hellwig · 7 years ago
  88. f3cc6b2 ima: always measure and audit files in policy by Mimi Zohar · 8 years ago
  89. 2068626 ima: don't remove the securityfs policy file by Mimi Zohar · 8 years ago
  90. 46f1414 ima: move to generic async completion by Gilad Ben-Yossef · 7 years ago
  91. b244131 License cleanup: add SPDX GPL-2.0 license identifier to files with no license by Greg Kroah-Hartman · 7 years ago
  92. e24dd9e Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security by Linus Torvalds · 7 years ago
  93. 915d9d2 ima: Log the same audit cause whenever a file has no signature by Thiago Jung Bauermann · 8 years ago
  94. 2663218 ima: Simplify policy_func_show. by Thiago Jung Bauermann · 8 years ago
  95. bb543e3 integrity: Small code improvements by Thiago Jung Bauermann · 8 years ago
  96. e4586c79 ima: fix get_binary_runtime_size() by Roberto Sassu · 8 years ago
  97. 28a8dc4 ima: use ima_parse_buf() to parse template data by Roberto Sassu · 8 years ago
  98. 47fdee6 ima: use ima_parse_buf() to parse measurements headers by Roberto Sassu · 8 years ago
  99. b17fd9e ima: introduce ima_parse_buf() by Roberto Sassu · 8 years ago
  100. 82e3bb4 ima: Add cgroups2 to the defaults list by Laura Abbott · 8 years ago