Gitiles
Code Review Sign In
review.shift-gmbh.com / SHIFTPHONES / mainline / linux / refs/heads/master / security / integrity / ima
  1. 8967719 ima: Do not print policy rule with inactive LSM labels by Stefan Berger · 2 years, 11 months ago
  2. bb8e52e ima: Allow template selection with ima_template[_fmt]= after ima_hash= by Roberto Sassu · 2 years, 11 months ago
  3. f7333b9 ima: Remove ima_policy file before directory by Stefan Berger · 3 years ago
  4. 84bfcc0 Merge tag 'integrity-v5.17' of git://git.kernel.org/pub/scm/linux/kernel/git/zohar/linux-integrity by Linus Torvalds · 3 years ago
  5. 520451e ima: silence measurement list hexdump during kexec by Bruno Meneguele · 3 years ago
  6. 6326948 lsm: security_task_getsecid_subj() -> security_current_getsecid_subj() by Paul Moore · 3 years, 3 months ago
  7. cc4299e ima: Use strscpy instead of strlcpy by Petr Vorel · 3 years, 3 months ago
  8. 61868ac ima_policy: Remove duplicate 'the' in docs comment by Petr Vorel · 3 years, 3 months ago
  9. 40224c4 ima: add gid support by Curtis Veit · 3 years, 3 months ago
  10. 30d8764 ima: fix uid code style problems by Alex Henrie · 3 years, 3 months ago
  11. eb0782b ima: fix deadlock when traversing "ima_default_rules". by liqiong · 3 years, 3 months ago
  12. aef4892 Merge tag 'integrity-v5.15' of git://git.kernel.org/pub/scm/linux/kernel/git/zohar/linux-integrity by Linus Torvalds · 3 years, 4 months ago
  13. cb181da IMA: reject unknown hash algorithms in ima_get_hash_algo by THOBY Simon · 3 years, 4 months ago
  14. 8ecd39c IMA: prevent SETXATTR_CHECK policy rules with unavailable algorithms by THOBY Simon · 3 years, 4 months ago
  15. 4f2946a IMA: introduce a new policy option func=SETXATTR_CHECK by THOBY Simon · 3 years, 4 months ago
  16. 583a80a IMA: add a policy option to restrict xattr hash algorithms on appraisal by THOBY Simon · 3 years, 4 months ago
  17. 1624dc0 IMA: add support to restrict the hash algorithms used for file appraisal by THOBY Simon · 3 years, 4 months ago
  18. 50f742d IMA: block writes of the security.ima xattr with unsupported algorithms by THOBY Simon · 3 years, 4 months ago
  19. 8510505 IMA: remove the dependency on CRYPTO_MD5 by THOBY Simon · 3 years, 4 months ago
  20. 91ccbba dm ima: measure data on table load by Tushar Sugandhi · 3 years, 6 months ago
  21. ca3c9bd ima: Add digest and digest_len params to the functions to measure a buffer by Roberto Sassu · 3 years, 5 months ago
  22. ce5bb5a ima: Return int in the functions to measure a buffer by Roberto Sassu · 3 years, 5 months ago
  23. 5d1ef2c ima: Introduce ima_get_current_hash_algo() by Roberto Sassu · 3 years, 5 months ago
  24. a32ad90 IMA: remove -Wmissing-prototypes warning by Austin Kim · 3 years, 6 months ago
  25. 52c2083 IMA: support for duplicate measurement records by Tushar Sugandhi · 3 years, 8 months ago
  26. c679134 ima: Fix warning: no previous prototype for function 'ima_add_kexec_buffer' by Lakshmi Ramasubramanian · 3 years, 7 months ago
  27. 55748ac6 ima: differentiate between EVM failures in the audit log by Mimi Zohar · 3 years, 7 months ago
  28. 7d2201d ima: Fix fall-through warning for Clang by Gustavo A. R. Silva · 3 years, 7 months ago
  29. 531bf6a ima: Pass NULL instead of 0 to ima_get_action() in ima_file_mprotect() by Roberto Sassu · 3 years, 7 months ago
  30. 8c55941 ima: Include header defining ima_post_key_create_or_update() by Roberto Sassu · 3 years, 7 months ago
  31. 6b26285 ima/evm: Fix type mismatch by Roberto Sassu · 3 years, 7 months ago
  32. 24c9ae2 ima: Set correct casting types by Roberto Sassu · 3 years, 7 months ago
  33. 88016de ima: Define new template evm-sig by Roberto Sassu · 3 years, 7 months ago
  34. 8314b67 ima: Define new template fields xattrnames, xattrlengths and xattrvalues by Roberto Sassu · 3 years, 7 months ago
  35. f8216f6 ima: Define new template field imode by Roberto Sassu · 3 years, 7 months ago
  36. 7dcfeac ima: Define new template fields iuid and igid by Roberto Sassu · 3 years, 7 months ago
  37. cde1391 ima: Add ima_show_template_uint() template library function by Roberto Sassu · 3 years, 7 months ago
  38. ed1b472 ima: Don't remove security.ima if file must not be appraised by Roberto Sassu · 3 years, 8 months ago
  39. 026d7fc ima: Introduce template field evmsig and write to field sig as fallback by Roberto Sassu · 3 years, 8 months ago
  40. 7aa5783 ima: Allow imasig requirement to be satisfied by EVM portable signatures by Roberto Sassu · 3 years, 8 months ago
  41. cdef685 evm: Allow xattr/attr operations for portable signatures by Roberto Sassu · 3 years, 8 months ago
  42. e3ccfe1 evm: Introduce evm_revalidate_status() by Roberto Sassu · 3 years, 8 months ago
  43. aa2ead7 evm: Load EVM key in ima_load_x509() to avoid appraisal by Roberto Sassu · 3 years, 8 months ago
  44. e6f0bf0 Merge tag 'integrity-v5.13' of git://git.kernel.org/pub/scm/linux/kernel/git/zohar/linux-integrity by Linus Torvalds · 3 years, 8 months ago
  45. 0080665 Merge tag 'devicetree-for-5.13' of git://git.kernel.org/pub/scm/linux/kernel/git/robh/linux by Linus Torvalds · 3 years, 8 months ago
  46. 28073eb ima: Fix fall-through warnings for Clang by Gustavo A. R. Silva · 4 years, 1 month ago
  47. 41d75dd ima: Fix function name error in comment. by Jiele Zhao · 3 years, 9 months ago
  48. 7990cca ima: Fix the error code for restoring the PCR value by Li Huafei · 3 years, 10 months ago
  49. 4ebd765 lsm: separate security_task_getsecid() into subjective and objective variants by Paul Moore · 3 years, 10 months ago
  50. f873b28 ima: without an IMA policy loaded, return quickly by Mimi Zohar · 3 years, 9 months ago
  51. fee3ff9 powerpc: Move arch independent ima kexec functions to drivers/of/kexec.c by Lakshmi Ramasubramanian · 3 years, 10 months ago
  52. 0c60515 powerpc: Move ima buffer fields to struct kimage by Lakshmi Ramasubramanian · 3 years, 10 months ago
  53. c03c21b Merge tag 'keys-misc-20210126' of git://git.kernel.org/pub/scm/linux/kernel/git/dhowells/linux-fs by Linus Torvalds · 3 years, 10 months ago
  54. 7d6beb7 Merge tag 'idmapped-mounts-v5.12' of git://git.kernel.org/pub/scm/linux/kernel/git/brauner/linux by Linus Torvalds · 3 years, 10 months ago
  55. cccb0ef Merge branch 'ima-kexec-fixes' into next-integrity by Mimi Zohar · 3 years, 11 months ago
  56. f31e338 ima: Free IMA measurement buffer after kexec syscall by Lakshmi Ramasubramanian · 3 years, 11 months ago
  57. 6d14c65 ima: Free IMA measurement buffer on error by Lakshmi Ramasubramanian · 3 years, 11 months ago
  58. b3f82af IMA: Measure kernel version in early boot by Raphael Gianotti · 4 years ago
  59. a2d2329 ima: handle idmapped mounts by Christian Brauner · 4 years ago
  60. c7c7a1a1 xattr: handle idmapped mounts by Tycho Andersen · 4 years ago
  61. 4993e1f certs: Fix blacklist flag type confusion by David Howells · 4 years, 1 month ago
  62. 03cee16 IMA: define a builtin critical data measurement policy by Lakshmi Ramasubramanian · 4 years ago
  63. 9f5d7d2 IMA: extend critical data hook to limit the measurement based on a label by Tushar Sugandhi · 4 years ago
  64. 47d76a4 IMA: limit critical data measurement based on a label by Tushar Sugandhi · 4 years ago
  65. c4e43aa IMA: add policy rule to measure critical data by Tushar Sugandhi · 4 years ago
  66. d6e6450 IMA: define a hook to measure kernel integrity critical data by Tushar Sugandhi · 4 years ago
  67. 291af65 IMA: add support to measure buffer data hash by Tushar Sugandhi · 4 years ago
  68. 2b4a247 IMA: generalize keyring specific measurement constructs by Tushar Sugandhi · 4 years ago
  69. 4a1106a Merge tag 'efi_updates_for_v5.11' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip by Linus Torvalds · 4 years ago
  70. e20a9b92 Merge tag 'integrity-v5.11' of git://git.kernel.org/pub/scm/linux/kernel/git/zohar/linux-integrity by Linus Torvalds · 4 years ago
  71. 207cdd5 ima: Don't modify file descriptor mode on the fly by Roberto Sassu · 4 years, 1 month ago
  72. 403319b ima: Implement ima_inode_hash by KP Singh · 4 years, 1 month ago
  73. dea87d0 ima: select ima-buf template for buffer measurement by Lakshmi Ramasubramanian · 4 years, 2 months ago
  74. 25519d6 ima: generalize x86/EFI arch glue for other EFI architectures by Chester Lin · 4 years, 2 months ago
  75. b000d5c ima: defer arch_ima_get_secureboot() call to IMA init time by Ard Biesheuvel · 4 years, 3 months ago
  76. 4739eea ima: Replace zero-length array with flexible-array member by Gustavo A. R. Silva · 4 years, 4 months ago
  77. 840e5bb Merge tag 'integrity-v5.10' of git://git.kernel.org/pub/scm/linux/kernel/git/zohar/linux-integrity by Linus Torvalds · 4 years, 2 months ago
  78. 0fa8e08 fs/kernel_file_read: Add "offset" arg for partial reads by Kees Cook · 4 years, 3 months ago
  79. 34736da IMA: Add support for file reads without contents by Scott Branden · 4 years, 3 months ago
  80. 2039bda LSM: Add "contents" flag to kernel_read_file hook by Kees Cook · 4 years, 3 months ago
  81. 4f2d99b firmware_loader: Use security_post_load_data() by Kees Cook · 4 years, 3 months ago
  82. b64fcae LSM: Introduce kernel_post_load_data() hook by Kees Cook · 4 years, 3 months ago
  83. 8853528 fs/kernel_read_file: Add file_size output argument by Kees Cook · 4 years, 3 months ago
  84. 113eeb5 fs/kernel_read_file: Switch buffer size arg to size_t by Kees Cook · 4 years, 3 months ago
  85. f7a4f68 fs/kernel_read_file: Remove redundant size argument by Kees Cook · 4 years, 3 months ago
  86. b89999d0 fs/kernel_read_file: Split into separate include file by Scott Branden · 4 years, 3 months ago
  87. c307459 fs/kernel_read_file: Remove FIRMWARE_PREALLOC_BUFFER enum by Kees Cook · 4 years, 3 months ago
  88. aa662fc ima: Fix NULL pointer dereference in ima_file_hash by KP Singh · 4 years, 3 months ago
  89. 4be92db ima: Remove semicolon at the end of ima_get_binary_runtime_size() by Roberto Sassu · 4 years, 4 months ago
  90. 60386b8 ima: Don't ignore errors from crypto_shash_update() by Roberto Sassu · 4 years, 4 months ago
  91. f60c826 ima: Use kmemdup rather than kmalloc+memcpy by Alex Dewar · 4 years, 4 months ago
  92. e4d7e2d ima: limit secure boot feedback scope for appraise by Bruno Meneguele · 4 years, 4 months ago
  93. 7fe2bb7 integrity: invalid kernel parameters feedback by Bruno Meneguele · 4 years, 4 months ago
  94. 4afb28a ima: add check for enforced appraise option by Bruno Meneguele · 4 years, 4 months ago
  95. 48ce1dd ima: Fail rule parsing when asymmetric key measurement isn't supportable by Tyler Hicks · 4 years, 5 months ago
  96. 176377d ima: Pre-parse the list of keyrings in a KEY_CHECK rule by Tyler Hicks · 4 years, 5 months ago
  97. df561f66 treewide: Use fallthrough pseudo-keyword by Gustavo A. R. Silva · 4 years, 4 months ago
  98. ce13266 Merge tag 'for-v5.9' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security by Linus Torvalds · 4 years, 5 months ago
  99. c9fecf5 Replace HTTP links with HTTPS ones: security by Alexander A. Klimov · 4 years, 6 months ago
  100. 311aa6a ima: move APPRAISE_BOOTPARAM dependency on ARCH_POLICY to runtime by Bruno Meneguele · 4 years, 6 months ago