Gitiles
Code Review Sign In
review.shift-gmbh.com / SHIFTPHONES / mainline / linux / 42964a18f81c9e514dce2d11277b7cc546146723 / security / integrity / ima / ima_policy.c
  1. 8967719 ima: Do not print policy rule with inactive LSM labels by Stefan Berger · 2 years, 11 months ago
  2. cc4299e ima: Use strscpy instead of strlcpy by Petr Vorel · 3 years, 3 months ago
  3. 61868ac ima_policy: Remove duplicate 'the' in docs comment by Petr Vorel · 3 years, 3 months ago
  4. 40224c4 ima: add gid support by Curtis Veit · 3 years, 3 months ago
  5. 30d8764 ima: fix uid code style problems by Alex Henrie · 3 years, 3 months ago
  6. eb0782b ima: fix deadlock when traversing "ima_default_rules". by liqiong · 3 years, 3 months ago
  7. 8ecd39c IMA: prevent SETXATTR_CHECK policy rules with unavailable algorithms by THOBY Simon · 3 years, 4 months ago
  8. 4f2946a IMA: introduce a new policy option func=SETXATTR_CHECK by THOBY Simon · 3 years, 4 months ago
  9. 583a80a IMA: add a policy option to restrict xattr hash algorithms on appraisal by THOBY Simon · 3 years, 4 months ago
  10. 1624dc0 IMA: add support to restrict the hash algorithms used for file appraisal by THOBY Simon · 3 years, 4 months ago
  11. 28073eb ima: Fix fall-through warnings for Clang by Gustavo A. R. Silva · 4 years, 1 month ago
  12. 7d6beb7 Merge tag 'idmapped-mounts-v5.12' of git://git.kernel.org/pub/scm/linux/kernel/git/brauner/linux by Linus Torvalds · 3 years, 10 months ago
  13. a2d2329 ima: handle idmapped mounts by Christian Brauner · 4 years ago
  14. 03cee16 IMA: define a builtin critical data measurement policy by Lakshmi Ramasubramanian · 4 years ago
  15. 47d76a4 IMA: limit critical data measurement based on a label by Tushar Sugandhi · 4 years ago
  16. c4e43aa IMA: add policy rule to measure critical data by Tushar Sugandhi · 4 years ago
  17. 2b4a247 IMA: generalize keyring specific measurement constructs by Tushar Sugandhi · 4 years ago
  18. dea87d0 ima: select ima-buf template for buffer measurement by Lakshmi Ramasubramanian · 4 years, 2 months ago
  19. 840e5bb Merge tag 'integrity-v5.10' of git://git.kernel.org/pub/scm/linux/kernel/git/zohar/linux-integrity by Linus Torvalds · 4 years, 2 months ago
  20. b89999d0 fs/kernel_read_file: Split into separate include file by Scott Branden · 4 years, 3 months ago
  21. f60c826 ima: Use kmemdup rather than kmalloc+memcpy by Alex Dewar · 4 years, 4 months ago
  22. 7fe2bb7 integrity: invalid kernel parameters feedback by Bruno Meneguele · 4 years, 4 months ago
  23. 48ce1dd ima: Fail rule parsing when asymmetric key measurement isn't supportable by Tyler Hicks · 4 years, 5 months ago
  24. 176377d ima: Pre-parse the list of keyrings in a KEY_CHECK rule by Tyler Hicks · 4 years, 5 months ago
  25. df561f66 treewide: Use fallthrough pseudo-keyword by Gustavo A. R. Silva · 4 years, 4 months ago
  26. b8867ee ima: Rename internal filter rule functions by Tyler Hicks · 4 years, 6 months ago
  27. 4834177 ima: Support additional conditionals in the KEXEC_CMDLINE hook function by Tyler Hicks · 4 years, 6 months ago
  28. 592b24c ima: Use the common function to detect LSM conditionals in a rule by Tyler Hicks · 4 years, 6 months ago
  29. 30031b0 ima: Move comprehensive rule validation checks out of the token parser by Tyler Hicks · 4 years, 6 months ago
  30. aa0c022 ima: Use correct type for the args_p member of ima_rule_entry.lsm elements by Tyler Hicks · 4 years, 6 months ago
  31. 39e5993 ima: Shallow copy the args_p member of ima_rule_entry.lsm elements by Tyler Hicks · 4 years, 6 months ago
  32. 5f3e926 ima: Fail rule parsing when appraise_flag=blacklist is unsupportable by Tyler Hicks · 4 years, 6 months ago
  33. eb624fe ima: Fail rule parsing when the KEY_CHECK hook is combined with an invalid cond by Tyler Hicks · 4 years, 6 months ago
  34. db2045f ima: Fail rule parsing when the KEXEC_CMDLINE hook is combined with an invalid cond by Tyler Hicks · 4 years, 6 months ago
  35. 71218343 ima: Fail rule parsing when buffer hook functions have an invalid action by Tyler Hicks · 4 years, 6 months ago
  36. 2bdd737 ima: Free the entire rule if it fails to parse by Tyler Hicks · 4 years, 6 months ago
  37. 465aee7 ima: Free the entire rule when deleting a list of rules by Tyler Hicks · 4 years, 6 months ago
  38. 9ff8a61 ima: Have the LSM free its audit rule by Tyler Hicks · 4 years, 6 months ago
  39. 34e980b IMA: Add audit log for failure conditions by Lakshmi Ramasubramanian · 4 years, 6 months ago
  40. 067a436 ima: Directly assign the ima_default_policy pointer to ima_rules by Roberto Sassu · 4 years, 7 months ago
  41. b59fda4 ima: Set again build_ima_appraise variable by Krzysztof Struczynski · 4 years, 8 months ago
  42. 6ee2844 ima: Remove redundant policy rule set in add_rules() by Krzysztof Struczynski · 4 years, 8 months ago
  43. 555d6d7 integrity: Remove duplicate pr_fmt definitions by Tushar Sugandhi · 4 years, 10 months ago
  44. 73a0bff Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/git/zohar/linux-integrity by Linus Torvalds · 5 years ago
  45. 450d0fd IMA: Call workqueue functions to measure queued keys by Lakshmi Ramasubramanian · 5 years ago
  46. 5c7bac9 IMA: pre-allocate buffer to hold keyrings string by Lakshmi Ramasubramanian · 5 years ago
  47. 483ec26 ima: ima/lsm policy rule loading logic bug fixes by Janne Karhunen · 5 years ago
  48. 5350ceb ima: Add a space after printing LSM rules for readability by Clay Chang · 5 years ago
  49. 2b60c0e IMA: Read keyrings= option from the IMA policy by Lakshmi Ramasubramanian · 5 years ago
  50. e9085e0 IMA: Add support to limit measuring keys by Lakshmi Ramasubramanian · 5 years ago
  51. 5808611 IMA: Add KEY_CHECK func to measure keys by Lakshmi Ramasubramanian · 5 years ago
  52. c593642 treewide: Use sizeof_field() macro by Pankaj Bharadiya · 5 years ago
  53. 273df86 ima: Check against blacklisted hashes for files with modsig by Nayna Jain · 5 years ago
  54. aefcf2f Merge branch 'next-lockdown' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security by Linus Torvalds · 5 years ago
  55. 29d3c1c kexec: Allow kexec_file() with appropriate IMA policy when locked down by Matthew Garrett · 5 years ago
  56. 3878d50 ima: Define ima-modsig template by Thiago Jung Bauermann · 6 years ago
  57. 39b0709 ima: Implement support for module-style appended signatures by Thiago Jung Bauermann · 6 years ago
  58. 9044d62 ima: Add modsig appraise_type option for module-style appended signatures by Thiago Jung Bauermann · 6 years ago
  59. b36f281 ima: initialize the "template" field with the default template by Mimi Zohar · 5 years ago
  60. 8b68150 Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/git/zohar/linux-integrity by Linus Torvalds · 5 years ago
  61. b093512 IMA: Define a new hook to measure the kexec boot command line arguments by Prakhar Srivastava · 6 years ago
  62. 19453ce0 IMA: support for per policy rule template formats by Matthew Garrett · 6 years ago
  63. b169424 ima: use the lsm policy update notifier by Janne Karhunen · 6 years ago
  64. 68f2529 ima: Make arch_policy_entry static by YueHaibing · 6 years ago
  65. b886d83c treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 441 by Thomas Gleixner · 6 years ago
  66. 8cdc23a ima: show rules with IMA_INMASK correctly by Roberto Sassu · 6 years ago
  67. f400194 ima: fix wrong signed policy requirement when not appraising by Petr Vorel · 6 years ago
  68. be37f21 Merge tag 'audit-pr-20190305' of git://git.kernel.org/pub/scm/linux/kernel/git/pcmoore/audit by Linus Torvalds · 6 years ago
  69. 09186e5 security: mark expected switch fall-throughs and add a missing break by Gustavo A. R. Silva · 6 years ago
  70. 90462a5 audit: remove unused actx param from audit_rule_match by Richard Guy Briggs · 6 years ago
  71. f218a29 Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security by Linus Torvalds · 6 years ago
  72. 3f03bf9 Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security by Linus Torvalds · 6 years ago
  73. 1a9430d ima: cleanup the match_token policy code by Mimi Zohar · 6 years ago
  74. 5580b4a Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/git/zohar/linux-integrity into next-integrity by James Morris · 6 years ago
  75. 876979c security: audit and remove any unnecessary uses of module.h by Paul Gortmaker · 6 years ago
  76. 060190f ima: don't measure/appraise files on efivarfs by Mimi Zohar · 6 years ago
  77. 6191706 ima: add support for arch specific policies by Nayna Jain · 6 years ago
  78. c52657d ima: refactor ima_init_policy() by Nayna Jain · 6 years ago
  79. dba31ee ima: Differentiate auditing policy rules from "audit" actions by Stefan Berger · 7 years ago
  80. 2afd020 ima: Do not audit if CONFIG_INTEGRITY_AUDIT is not set by Stefan Berger · 7 years ago
  81. 3d2859d ima: Use audit_log_format() rather than audit_log_string() by Stefan Berger · 7 years ago
  82. 8a3bcaf ima: Call audit_log_string() rather than logging it untrusted by Stefan Berger · 7 years ago
  83. ef96837 ima: add build time policy by Mimi Zohar · 6 years ago
  84. 16c267a ima: based on policy require signed kexec kernel images by Mimi Zohar · 6 years ago
  85. 53b626f IMA: use list_splice_tail_init_rcu() instead of its open coded variant by Petko Manolov · 7 years ago
  86. 6f0911a ima: fix updating the ima_appraise flag by Mimi Zohar · 7 years ago
  87. f1b08bb ima: define a new policy condition based on the filesystem name by Mimi Zohar · 7 years ago
  88. 1c070b1 ima: Add smackfs to the default appraise/measure list by Martin Townsend · 7 years ago
  89. 9e67028 ima: fail signature verification based on policy by Mimi Zohar · 7 years ago
  90. a9a4935 ima: clear IMA_HASH by Mimi Zohar · 7 years ago
  91. d906c10 IMA: Support using new creds in appraisal policy by Matthew Garrett · 7 years ago
  92. 3644745 ima/policy: fix parsing of fsuuid by Mike Rapoport · 7 years ago
  93. da1b002 ima: support new "hash" and "dont_hash" policy actions by Mimi Zohar · 8 years ago
  94. 39adb92 ima: Fix bool initialization/comparison by Thomas Meyer · 7 years ago
  95. e24dd9e Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security by Linus Torvalds · 7 years ago
  96. 2663218 ima: Simplify policy_func_show. by Thiago Jung Bauermann · 8 years ago
  97. bb543e3 integrity: Small code improvements by Thiago Jung Bauermann · 8 years ago
  98. 82e3bb4 ima: Add cgroups2 to the defaults list by Laura Abbott · 8 years ago
  99. 503ceae ima: define a set of appraisal rules requiring file signatures by Mimi Zohar · 8 years ago
  100. 33ce954 ima: extend the "ima_policy" boot command line to support multiple policies by Mimi Zohar · 8 years ago