projects
/
platform
/
kernel
/
linux-starfive.git
/ search
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
first ⋅ prev ⋅
next
evm: fix writing <securityfs>/evm overflow
2021-05-20
Mimi Zohar
evm: fix writing <securityfs>/evm overflow
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-04-27
Nayna Jain
ima: ensure IMA_APPRAISE_MODSIG has necessary dependencies
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-04-20
Gustavo A. R. Silva
ima: Fix fall-through warnings for Clang
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-04-09
Jiele Zhao
integrity: Add declarations to init_once void arguments.
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-04-09
Jiele Zhao
ima: Fix function name error in comment.
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-04-09
Mimi Zohar
Merge branch 'ima-module-signing-v4' into next-integrity
commit
|
commitdiff
|
tree
2021-04-09
Nayna Jain
ima: enable loading of build time generated key on...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-04-09
Nayna Jain
ima: enable signing of modules with build time generated key
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-04-09
Nayna Jain
keys: cleanup build time module signing keys
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-03-24
Li Huafei
ima: Fix the error code for restoring the PCR value
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-03-22
Mimi Zohar
ima: without an IMA policy loaded, return quickly
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-03-22
Mimi Zohar
integrity: double check iint_cache was initialized
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-02-12
Wei Yongjun
integrity: Make function integrity_add_key() static
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-02-10
Mimi Zohar
Merge branch 'ima-kexec-fixes' into next-integrity
commit
|
commitdiff
|
tree
2021-02-10
Lakshmi Ramasubramanian
ima: Free IMA measurement buffer after kexec syscall
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-02-10
Lakshmi Ramasubramanian
ima: Free IMA measurement buffer on error
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-01-27
Raphael Gianotti
IMA: Measure kernel version in early boot
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-01-15
Mimi Zohar
Merge branch 'measure-critical-data' into next-integrity
commit
|
commitdiff
|
tree
2021-01-15
Lakshmi Ramasubramanian
selinux: include a consumer of the new IMA critical...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-01-15
Lakshmi Ramasubramanian
IMA: define a builtin critical data measurement policy
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-01-15
Tushar Sugandhi
IMA: extend critical data hook to limit the measurement...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-01-15
Tushar Sugandhi
IMA: limit critical data measurement based on a label
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-01-15
Tushar Sugandhi
IMA: add policy rule to measure critical data
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-01-15
Tushar Sugandhi
IMA: define a hook to measure kernel integrity critical...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-01-15
Tushar Sugandhi
IMA: add support to measure buffer data hash
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-01-15
Tushar Sugandhi
IMA: generalize keyring specific measurement constructs
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2021-01-13
Dinghao Liu
evm: Fix memleak in init_desc
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-11-29
Roberto Sassu
ima: Don't modify file descriptor mode on the fly
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-11-20
Lakshmi Ramasubramanian
ima: select ima-buf template for buffer measurement
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-11-02
Ard Biesheuvel
ima: defer arch_ima_get_secureboot() call to IMA init...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-09-16
KP Singh
ima: Fix NULL pointer dereference in ima_file_hash
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-09-15
Roberto Sassu
evm: Check size of security.evm before using it
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-09-15
Roberto Sassu
ima: Remove semicolon at the end of ima_get_binary_runtime_s...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-09-15
Roberto Sassu
ima: Don't ignore errors from crypto_shash_update()
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-09-15
Alex Dewar
ima: Use kmemdup rather than kmalloc+memcpy
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-09-10
Bruno Meneguele
integrity: include keyring name for unknown key request
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-09-10
Bruno Meneguele
ima: limit secure boot feedback scope for appraise
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-09-09
Bruno Meneguele
integrity: invalid kernel parameters feedback
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-09-09
Bruno Meneguele
ima: add check for enforced appraise option
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-08-31
Denis Efremov
integrity: Use current_uid() in integrity_audit_message()
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-08-31
Tyler Hicks
ima: Fail rule parsing when asymmetric key measurement...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-08-31
Tyler Hicks
ima: Pre-parse the list of keyrings in a KEY_CHECK...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-27
Colin Ian King
integrity: remove redundant initialization of variable ret
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-20
Bruno Meneguele
ima: move APPRAISE_BOOTPARAM dependency on ARCH_POLICY...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-20
Tyler Hicks
ima: AppArmor satisfies the audit rule requirements
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-20
Tyler Hicks
ima: Rename internal filter rule functions
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-20
Mimi Zohar
Merge branch 'validate-policy-rules' into next-integrity
commit
|
commitdiff
|
tree
2020-07-20
Tyler Hicks
ima: Support additional conditionals in the KEXEC_CMDLINE...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-20
Tyler Hicks
ima: Use the common function to detect LSM conditionals...
Reviewed-by:
Mimi Zohar
<zohar@linux.ibm.com>
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-20
Tyler Hicks
ima: Move comprehensive rule validation checks out...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-20
Tyler Hicks
ima: Use correct type for the args_p member of ima_rule_entr...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-20
Tyler Hicks
ima: Shallow copy the args_p member of ima_rule_entry...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-20
Tyler Hicks
ima: Fail rule parsing when appraise_flag=blacklist...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-17
Tyler Hicks
ima: Fail rule parsing when the KEY_CHECK hook is combined...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-17
Tyler Hicks
ima: Fail rule parsing when the KEXEC_CMDLINE hook...
Reviewed-by:
Mimi Zohar
<zohar@linux.ibm.com>
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-17
Tyler Hicks
ima: Fail rule parsing when buffer hook functions have...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-17
Tyler Hicks
ima: Free the entire rule if it fails to parse
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-17
Tyler Hicks
ima: Free the entire rule when deleting a list of rules
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-17
Tyler Hicks
ima: Have the LSM free its audit rule
Reviewed-by:
Mimi Zohar
<zohar@linux.ibm.com>
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-17
Lakshmi Ramasubramanian
IMA: Add audit log for failure conditions
Suggested-by:
Mimi Zohar
<zohar@linux.ibm.com>
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-07-17
Lakshmi Ramasubramanian
integrity: Add errno field in audit message
Suggested-by:
Mimi Zohar
<zohar@linux.ibm.com>
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-06-25
Maurizio Drocco
ima: extend boot_aggregate with kernel measurements
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-06-12
Mimi Zohar
ima: fix mprotect checking
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-06-05
Roberto Sassu
ima: Directly free *entry in ima_alloc_init_template...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-06-03
Roberto Sassu
ima: Call ima_calc_boot_aggregate() in ima_eventdigest_init()
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-06-03
Roberto Sassu
ima: Directly assign the ima_default_policy pointer...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-05-22
Mimi Zohar
ima: verify mprotect change is consistent with mmap...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-05-14
Dan Carpenter
evm: Fix a small race in init_desc()
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-05-08
Roberto Sassu
evm: Fix possible memory leak in evm_calc_hmac_or_hash()
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-05-08
Krzysztof Struczynski
ima: Set again build_ima_appraise variable
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-05-08
Krzysztof Struczynski
ima: Remove redundant policy rule set in add_rules()
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-05-08
Krzysztof Struczynski
ima: Fix ima digest hash table key calculation
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-05-08
Madhuparna Bhowmik
evm: Fix RCU list related warnings
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-05-08
Roberto Sassu
ima: Fix return value of ima_write_policy()
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-05-08
Roberto Sassu
evm: Check also if *tfm is an error pointer in init_desc()
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-05-08
Roberto Sassu
ima: Set file->f_mode instead of file->f_flags in ima_calc_f...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-04-20
Roberto Sassu
ima: Use ima_hash_algo for collision detection in the...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-04-20
Roberto Sassu
ima: Calculate and extend PCR with digests in ima_template_entry
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-04-20
Roberto Sassu
ima: Allocate and initialize tfm for each PCR bank
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-04-20
Roberto Sassu
ima: Switch to dynamically allocated buffer for template...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-04-20
Roberto Sassu
ima: Store template digest directly in ima_template_entry
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-04-20
Roberto Sassu
ima: Evaluate error in init_ima()
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-04-20
Roberto Sassu
ima: Switch to ima_hash_algo for boot aggregate
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-03-12
Nayna Jain
ima: add a new CONFIG for loading arch-specific policies
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-02-28
Mimi Zohar
Merge branch 'next-integrity.logging-cleanup' into...
commit
|
commitdiff
|
tree
2020-02-28
Tushar Sugandhi
integrity: Remove duplicate pr_fmt definitions
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-02-28
Tushar Sugandhi
IMA: Add log statements for failure conditions
Reviewed-by:
Mimi Zohar
<zohar@linux.ibm.com>
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-02-28
Tushar Sugandhi
IMA: Update KBUILD_MODNAME for IMA files to ima
Reviewed-by:
Mimi Zohar
<zohar@linux.ibm.com>
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-02-18
Tianjia Zhang
ima: add sm3 algorithm to hash algorithm configuration...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-02-18
Tianjia Zhang
crypto: rename sm3-256 to sm3 in hash_algo_name
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-02-18
Javier Martinez...
efi: Only print errors about failing to get certs if...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-02-11
Ard Biesheuvel
x86/ima: use correct identifier for SetupMode variable
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-01-23
Mimi Zohar
Merge branch 'next-integrity.defer-measuring-keys'...
commit
|
commitdiff
|
tree
2020-01-23
Lakshmi Ramasubramanian
IMA: Defined delayed workqueue to free the queued keys
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-01-23
Lakshmi Ramasubramanian
IMA: Call workqueue functions to measure queued keys
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-01-23
Lakshmi Ramasubramanian
IMA: Define workqueue for early boot key measurements
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-01-22
Lakshmi Ramasubramanian
IMA: pre-allocate buffer to hold keyrings string
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-01-22
Janne Karhunen
ima: ima/lsm policy rule loading logic bug fixes
Reported-by:
Mimi Zohar
<zohar@linux.ibm.com>
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-01-22
Florent Revest
ima: add the ability to query the cached hash of a...
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
2020-01-22
Clay Chang
ima: Add a space after printing LSM rules for readability
Signed-off-by:
Mimi Zohar
<zohar@linux.ibm.com>
commit
|
commitdiff
|
tree
next