Gitiles
Code Review
Sign In
gerrit-public.fairphone.software
/
kernel
/
msm-4.9
/
9fc1e624cbb56975fc89686daf23c2ee851ae8bd
/
security
/
integrity
1e42dec
ima: always return negative code for error
by Sascha Hauer
· 5 years ago
1f89834
ima: re-initialize iint->atomic_flags
by Mimi Zohar
· 7 years ago
166f454
ima: re-introduce own integrity cache lock
by Dmitry Kasatkin
· 7 years ago
87043e4
EVM: Add support for portable signature format
by Matthew Garrett
· 7 years ago
5f9fb1a
ima: always measure and audit files in policy
by Mimi Zohar
· 7 years ago
5fed1ff
Revert "evm: Translate user/group ids relative to s_user_ns when computing HMAC"
by Eric W. Biederman
· 8 years ago
53de32d
ima: fix showing large 'violations' or 'runtime_measurements_count'
by Eric Biggers
· 6 years ago
eddbab1
evm: Don't deadlock if a crypto algorithm is unavailable
by Matthew Garrett
· 6 years ago
81be552
ima: based on policy verify firmware signatures (pre-allocated buffer)
by Mimi Zohar
· 7 years ago
28fffa9
Revert "ima: limit file hash setting by user to fix and log modes"
by Mimi Zohar
· 8 years ago
99d8240
ima: Fallback to the builtin hash algorithm
by Petr Vorel
· 7 years ago
8a5a436
integrity/security: fix digsig.c build error with header file
by Randy Dunlap
· 7 years ago
27a0856
ima: relax requiring a file signature for new files with zero length
by Mimi Zohar
· 7 years ago
b0a4608
ima: fix hash algorithm initialization
by Boshi Wang
· 7 years ago
2cfbb32
ima: do not update security.ima if appraisal status is not INTEGRITY_PASS
by Roberto Sassu
· 7 years ago
91034255
ima: accept previously set IMA_NEW_FILE
by Daniel Glöckner
· 8 years ago
d9cc316
ima: fix ima_d_path() possible race with rename
by Mimi Zohar
· 8 years ago
825e6a0
ima: fix memory leak in ima_release_policy
by Eric Richter
· 8 years ago
97d2116
Merge branch 'work.xattr' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
by Linus Torvalds
· 8 years ago
5d6c319
xattr: Add __vfs_{get,set,remove}xattr helpers
by Andreas Gruenbacher
· 8 years ago
e71b9df
ima: use file_dentry()
by Miklos Szeredi
· 8 years ago
7a1e8b8
Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security
by Linus Torvalds
· 8 years ago
0b3c976
evm: Translate user/group ids relative to s_user_ns when computing HMAC
by Seth Forshee
· 10 years ago
544e1ce
ima: extend the measurement entry specific pcr
by Eric Richter
· 8 years ago
a422638
ima: change integrity cache to store measured pcr
by Eric Richter
· 8 years ago
67696f6
ima: redefine duplicate template entries
by Eric Richter
· 8 years ago
5f6f027
ima: change ima_measurements_show() to display the entry specific pcr
by Eric Richter
· 8 years ago
14b1da8
ima: include pcr for each measurement log entry
by Eric Richter
· 8 years ago
725de7f
ima: extend ima_get_action() to return the policy pcr
by Eric Richter
· 8 years ago
0260643
ima: add policy support for extending different pcrs
by Eric Richter
· 8 years ago
96d450b
integrity: add measured_pcrs field to integrity cache
by Eric Richter
· 8 years ago
b8b5727
security/integrity/ima/ima_policy.c: use %pU to output UUID in printable format
by Andy Shevchenko
· 8 years ago
f4f27d0
Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security
by Linus Torvalds
· 8 years ago
c52b761
Merge branch 'work.const-path' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
by Linus Torvalds
· 8 years ago
0e0162b
Merge branch 'ovl-fixes' into for-linus
by Al Viro
· 8 years ago
0250abc
Merge tag 'keys-next-20160505' of git://git.kernel.org/pub/scm/linux/kernel/git/dhowells/linux-fs into next
by James Morris
· 8 years ago
d55201c
Merge branch 'keys-trust' into keys-next
by David Howells
· 8 years ago
cf90ea9
ima: fix the string representation of the LSM/IMA hook enumeration ordering
by Mimi Zohar
· 9 years ago
05d1a71
ima: add support for creating files using the mknodat syscall
by Mimi Zohar
· 9 years ago
42a4c60
ima: fix ima_inode_post_setattr
by Mimi Zohar
· 9 years ago
93da17b
security: integrity: Remove select to deleted option PUBLIC_KEY_ALGO_RSA
by Andreas Ziegler
· 9 years ago
56104cf
IMA: Use the the system trusted keyrings instead of .ima_mok
by David Howells
· 9 years ago
77f68ba
KEYS: Remove KEY_FLAG_TRUSTED and KEY_ALLOC_TRUSTED
by David Howells
· 9 years ago
a511e1a
KEYS: Move the point of trust determination to __key_link()
by David Howells
· 9 years ago
5ac7eac
KEYS: Add a facility to restrict new links into a keyring
by David Howells
· 9 years ago
ce23e64
->getxattr(): pass dentry and inode as separate arguments
by Al Viro
· 9 years ago
fc64005
don't bother with ->d_inode->i_sb - it's always equal to ->d_sb
by Al Viro
· 9 years ago
81cd889
constify ima_d_path()
by Al Viro
· 9 years ago
bb7aeae
Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security
by Linus Torvalds
· 9 years ago
88a1b56
Merge tag 'keys-next-20160303' of git://git.kernel.org/pub/scm/linux/kernel/git/dhowells/linux-fs into next
by James Morris
· 9 years ago
4e8ae72
X.509: Make algo identifiers text instead of enum
by David Howells
· 9 years ago
d43de6c
akcipher: Move the RSA DER encoding check to the crypto layer
by David Howells
· 9 years ago
95ee08f
ima: require signed IMA policy
by Mimi Zohar
· 9 years ago
19f8a84
ima: measure and appraise the IMA policy itself
by Mimi Zohar
· 9 years ago
7429b09
ima: load policy using path
by Dmitry Kasatkin
· 11 years ago
d9ddf07
ima: support for kexec image and initramfs
by Mimi Zohar
· 9 years ago
c6af8ef
ima: remove firmware and module specific cached status info
by Mimi Zohar
· 9 years ago
a1db742
module: replace copy_module_from_fd with kernel version
by Mimi Zohar
· 9 years ago
39eeb4f
security: define kernel_read_file hook
by Mimi Zohar
· 9 years ago
e40ba6d
firmware: replace call to fw_read_file_contents() with kernel version
by Mimi Zohar
· 9 years ago
cf22221
ima: define a new hook to measure and appraise a file already in memory
by Mimi Zohar
· 9 years ago
98304bc
ima: calculate the hash of a buffer using aynchronous hash(ahash)
by Mimi Zohar
· 9 years ago
11d7646
ima: provide buffer hash calculation function
by Dmitry Kasatkin
· 11 years ago
4ad87a3
ima: use "ima_hooks" enum as function argument
by Mimi Zohar
· 9 years ago
b5269ab
ima: refactor ima_policy_show() to display "ima_hooks" rules
by Mimi Zohar
· 9 years ago
1525b06
ima: separate 'security.ima' reading functionality from collect
by Dmitry Kasatkin
· 10 years ago
eb5798f
integrity: convert digsig to akcipher api
by Tadeusz Struk
· 9 years ago
613317b
EVM: Use crypto_memneq() for digest comparisons
by Ryan Ware
· 9 years ago
50d3501
KEYS: CONFIG_KEYS_DEBUG_PROC_KEYS is no longer an option
by David Howells
· 9 years ago
c75d8e9
IMA: fix non-ANSI declaration of ima_check_policy()
by Colin Ian King
· 9 years ago
5955102
wrappers for ->i_mutex access
by Al Viro
· 9 years ago
5807fca
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security
by Linus Torvalds
· 9 years ago
cc4e719
fix the leak in integrity_read_file()
by Al Viro
· 9 years ago
6427e6c
ima: ima_write_policy() limit locking
by Petko Manolov
· 9 years ago
0112721
IMA: policy can be updated zero times
by Sasha Levin
· 9 years ago
92cc916
security/integrity: make ima/ima_mok.c explicitly non-modular
by Paul Gortmaker
· 9 years ago
6ad6afa
ima: update appraise flags after policy update completes
by Mimi Zohar
· 9 years ago
501f1bd
IMA: prevent keys on the .ima_blacklist from being removed
by Mimi Zohar
· 9 years ago
80eae20
IMA: allow reading back the current IMA policy
by Petko Manolov
· 9 years ago
41c89b6
IMA: create machine owner and blacklist keyrings
by Petko Manolov
· 9 years ago
38d859f
IMA: policy can now be updated multiple times
by Petko Manolov
· 9 years ago
05d3884
evm: EVM_LOAD_X509 depends on EVM
by Arnd Bergmann
· 9 years ago
523b74b
evm: reset EVM status when file attributes change
by Dmitry Kasatkin
· 9 years ago
7626676
evm: provide a function to set the EVM key from the kernel
by Dmitry Kasatkin
· 9 years ago
26ddabf
evm: enable EVM when X509 certificate is loaded
by Dmitry Kasatkin
· 9 years ago
2ce523e
evm: load an x509 certificate from the kernel
by Dmitry Kasatkin
· 9 years ago
f4dc377
integrity: define '.evm' as a builtin 'trusted' keyring
by Dmitry Kasatkin
· 9 years ago
71baba4
mm, page_alloc: rename __GFP_WAIT to __GFP_RECLAIM
by Mel Gorman
· 9 years ago
146aa8b
KEYS: Merge the type-specific data with the payload data
by David Howells
· 9 years ago
72e1eed
integrity: prevent loading untrusted certificates on the IMA trusted keyring
by Dmitry Kasatkin
· 9 years ago
02201e3
Merge tag 'modules-next-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/rusty/linux
by Linus Torvalds
· 9 years ago
24fd03c
ima: update builtin policies
by Mimi Zohar
· 9 years ago
4351c29
ima: extend "mask" policy matching support
by Mimi Zohar
· 10 years ago
139069e
ima: add support for new "euid" policy condition
by Mimi Zohar
· 10 years ago
45b2613
ima: fix ima_show_template_data_ascii()
by Mimi Zohar
· 9 years ago
9c27847
kernel/params: constify struct kernel_param_ops uses
by Luis R. Rodriguez
· 9 years ago
8d94eb9
ima: pass iint to ima_add_violation()
by Roberto Sassu
· 10 years ago
23b5741
ima: wrap event related data to the new ima_event_data structure
by Roberto Sassu
· 10 years ago
9d03a72
integrity: add validity checks for 'path' parameter
by Dmitry Kasatkin
· 10 years ago
7c51bb0
evm: fix potential race when removing xattrs
by Dmitry Kasatkin
· 10 years ago
Next »