projects / platform / kernel / linux-rpi.git / search
? search:
summary | shortlog | log | commit | commitdiff | tree
first ⋅ prev ⋅ next
smb3: fix caching of ctime on setxattr
2023-11-28 Mimi Zoharima: detect changes to the backing overlay file
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2022-08-23 Mimi Zoharima: fix blocking of security.ima xattrs of unsupported...
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2022-07-26 Mimi ZoharMerge remote-tracking branch 'linux-integrity/kexec...
commit | commitdiff | tree
2022-07-07 Mimi Zoharima: fix violation measurement list record
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2022-05-12 Mimi ZoharMerge branch 'next-integrity.fsverity-v9' into next...
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2022-05-12 Mimi Zoharfsverity: update the documentation
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2022-05-05 Mimi Zoharima: support fs-verity file digest based version 3...
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2022-05-05 Mimi Zoharima: permit fsverity's file digests in the IMA measurement...
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2022-05-05 Mimi Zoharima: define a new template field named 'd-ngv2' and...
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2022-05-01 Mimi Zoharfs-verity: define a function to return the integrity...
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2022-05-01 Mimi Zoharima: use IMA default hash algorithm for integrity violations
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2022-05-01 Mimi Zoharima: fix 'd-ng' comments and documentation
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2022-03-01 Mimi ZoharMAINTAINERS: add missing security/integrity/platform_certs
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2022-02-15 Mimi Zoharima: define ima_max_digest_data struct without a flexible...
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2022-02-15 Mimi Zoharima: rename IMA_ACTION_FLAGS to IMA_NONACTION_FLAGS
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2022-02-15 Mimi ZoharMAINTAINERS: add missing "security/integrity" directory
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2021-12-31 Mimi Zoharselftests/kexec: update searching for the Kconfig
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2021-12-31 Mimi Zoharselftest/kexec: fix "ignored null byte in input" warning
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2021-09-08 Mimi Zoharcheckpatch: make email address check case insensitive
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2021-08-18 Mimi ZoharMerge branch 'restrict-digest-alg-v8' into next-integrity
 commit | commitdiff | tree
2021-07-23 Mimi ZoharMerge branch 'ima-buffer-measurement-changes-v4' into...
commit | commitdiff | tree
2021-06-22 Mimi Zoharmodule: limit enabling module.sig_enforce
Tested-by: Mimi Zohar <zohar@linux.ibm.com>
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2021-06-20 Mimi Zoharevm: output EVM digest calculation info
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2021-06-10 Mimi Zoharima: differentiate between EVM failures in the audit log
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2021-06-03 Mimi ZoharMerge branch 'verify-evm-portable-sig-v2' into next...
commit | commitdiff | tree
2021-06-01 Mimi ZoharMerge branch 'misc-evm-v7' into next-integrity
 commit | commitdiff | tree
2021-05-20 Mimi Zoharevm: fix writing <securityfs>/evm overflow
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2021-04-09 Mimi ZoharMerge branch 'ima-module-signing-v4' into next-integrity
 commit | commitdiff | tree
2021-03-22 Mimi Zoharima: without an IMA policy loaded, return quickly
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2021-03-22 Mimi Zoharintegrity: double check iint_cache was initialized
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2021-02-10 Mimi ZoharMerge branch 'ima-kexec-fixes' into next-integrity
 commit | commitdiff | tree
2021-01-15 Mimi ZoharMerge branch 'measure-critical-data' into next-integrity
 commit | commitdiff | tree
2020-07-20 Mimi ZoharMerge branch 'validate-policy-rules' into next-integrity
 commit | commitdiff | tree
2020-06-12 Mimi Zoharima: fix mprotect checking
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2020-05-22 Mimi Zoharima: verify mprotect change is consistent with mmap...
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2020-02-28 Mimi ZoharMerge branch 'next-integrity.logging-cleanup' into...
commit | commitdiff | tree
2020-01-23 Mimi ZoharMerge branch 'next-integrity.defer-measuring-keys'...
commit | commitdiff | tree
2019-12-12 Mimi ZoharMerge branch 'next-integrity.measure-keys' into next...
commit | commitdiff | tree
2019-11-12 Mimi Zoharpowerpc/ima: Indicate kernel modules appended signatures...
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2019-08-29 Mimi Zoharsefltest/ima: support appended signatures (modsig)
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2019-08-01 Mimi Zoharima: initialize the "template" field with the default...
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2019-06-04 Mimi Zoharima: prevent a file already mmap'ed write to be mmap...
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2019-05-30 Mimi Zoharx86/ima: check EFI SetupMode too
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2019-04-17 Mimi Zoharselftests/kexec: update get_secureboot_mode
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2019-04-17 Mimi Zoharselftests/kexec: make kexec_load test independent of...
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2019-04-17 Mimi Zoharselftests/kexec: check kexec_load and kexec_file_load...
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2019-04-17 Mimi Zoharselftests/kexec: kexec_file_load syscall test
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2019-04-17 Mimi Zoharselftests/kexec: define "require_root_privileges"
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2019-04-17 Mimi Zoharselftests/kexec: define common logging functions
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2019-04-17 Mimi Zoharselftests/kexec: define a set of common functions
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2019-04-17 Mimi Zoharselftests/kexec: cleanup the kexec selftest
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2019-04-17 Mimi Zoharselftests/kexec: move the IMA kexec_load selftest to...
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2019-04-10 Mimi Zoharx86/ima: add missing include
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2019-03-27 Mimi Zoharx86/ima: require signed kernel modules
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2019-02-04 Mimi Zoharima: define ima_post_create_tmpfile() hook and add...
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2019-02-04 Mimi Zoharencrypted-keys: fix Opt_err/Opt_error = -1
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2018-12-18 Mimi Zoharima: cleanup the match_token policy code
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2018-12-11 Mimi Zoharselftests/ima: kexec_load syscall test
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2018-12-11 Mimi Zoharima: don't measure/appraise files on efivarfs
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2018-12-11 Mimi Zoharx86/ima: retry detecting secure boot mode
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2018-11-13 Mimi Zoharintegrity: support new struct public_key_signature...
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2018-11-13 Mimi Zoharintegrity: support new struct public_key_signature...
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2018-10-11 Mimi ZoharMAINTAINERS: add Jarkko as maintainer for trusted keys
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
 commit | commitdiff | tree
2018-07-16 Mimi Zoharima: based on policy warn about loading firmware (pre...
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2018-07-16 Mimi Zoharmodule: replace the existing LSM hook in init_module
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2018-07-16 Mimi Zoharima: add build time policy
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2018-07-16 Mimi Zoharima: based on policy require signed firmware (sysfs...
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2018-07-16 Mimi Zoharfirmware: add call to LSM hook before firmware sysfs...
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2018-07-16 Mimi Zoharima: based on policy require signed kexec kernel images
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2018-07-16 Mimi Zoharkexec: add call to LSM hook in original kexec_load...
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2018-07-16 Mimi Zoharsecurity: define new LSM hook named security_kernel_load_data
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2018-05-22 Mimi Zoharima: fix updating the ima_appraise flag
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2018-05-22 Mimi Zoharima: based on policy verify firmware signatures (pre...
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2018-05-22 Mimi Zoharima: define a new policy condition based on the filesystem...
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2018-03-23 Mimi Zoharfuse: define the filesystem as untrusted
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2018-03-23 Mimi Zoharima: fail signature verification based on policy
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2018-03-23 Mimi Zoharima: clear IMA_HASH
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2018-03-23 Mimi Zoharima: re-evaluate files on privileged mounted filesystems
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2018-03-23 Mimi Zoharima: fail file signature verification on non-init mounted...
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2018-02-02 Mimi Zoharima: re-initialize iint->atomic_flags
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2018-02-02 Mimi Zoharmaintainers: update trusted keys
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2017-12-18 Mimi Zoharima: support new "hash" and "dont_hash" policy actions
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2017-12-11 Mimi Zoharima: relax requiring a file signature for new files...
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2017-11-08 Mimi Zoharima: call ima_file_free() prior to calling fasync
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2017-11-08 Mimi Zoharima: always measure and audit files in policy
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2017-11-08 Mimi Zoharima: don't remove the securityfs policy file
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2017-11-08 Mimi Zoharvfs: fix mounting a filesystem with i_version
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2017-11-05 Mimi ZoharMAINTAINERS: update the IMA, EVM, trusted-keys, encrypted...
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2017-10-17 Mimi Zoharvfs: fix mounting a filesystem with i_version
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2017-09-15 Mimi Zoharvfs: constify path argument to kernel_read_file_from_path
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2017-06-21 Mimi Zoharima: define is_ima_appraise_enabled()
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2017-06-21 Mimi Zoharima: define Kconfig IMA_APPRAISE_BOOTPARAM option
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2017-06-21 Mimi Zoharima: define a set of appraisal rules requiring file...
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2017-06-21 Mimi Zoharima: extend the "ima_policy" boot command line to support...
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2017-01-27 Mimi Zoharima: fix ima_d_path() possible race with rename
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2016-12-20 Mimi Zoharima: define a canonical binary_runtime_measurements...
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2016-12-20 Mimi Zoharima: support restoring multiple template formats
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2016-12-20 Mimi Zoharima: store the builtin/custom template definitions...
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2016-12-20 Mimi Zoharima: on soft reboot, save the measurement list
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
2016-12-20 Mimi Zoharima: maintain memory size needed for serializing the...
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
 commit | commitdiff | tree
next
Domain: System / Kernel;