summaryrefslogtreecommitdiffstats
path: root/security/integrity
Commit message (Expand)AuthorAgeFilesLines
* ima: based on policy verify firmware signatures (pre-allocated buffer)Mimi Zohar2018-08-031-0/+1
* ima: Fallback to the builtin hash algorithmPetr Vorel2018-03-252-0/+15
* ima: Add smackfs to the default appraise/measure listMartin Townsend2018-03-251-0/+2
* evm: check for remount ro in progress before writingSascha Hauer2018-03-251-2/+6
* ima: Improvements in ima_appraise_measurement()Thiago Jung Bauermann2018-03-251-13/+22
* ima: Simplify ima_eventsig_init()Thiago Jung Bauermann2018-03-251-8/+3
* integrity: Remove unused macro IMA_ACTION_RULE_FLAGSThiago Jung Bauermann2018-03-251-1/+0
* ima: drop vla in ima_audit_measurement()Tycho Andersen2018-03-251-6/+10
* ima: Fix Kconfig to select TPM 2.0 CRB interfaceJiandi An2018-03-251-0/+1
* evm: Constify *integrity_status_msg[]Hernán Gonzalez2018-03-231-1/+1
* evm: Move evm_hmac and evm_hash from evm_main.c to evm_crypto.cHernán Gonzalez2018-03-233-4/+3
* ima: fail signature verification based on policyMimi Zohar2018-03-234-6/+14
* ima: clear IMA_HASHMimi Zohar2018-03-231-1/+1
* ima: re-evaluate files on privileged mounted filesystemsMimi Zohar2018-03-231-2/+11
* ima: fail file signature verification on non-init mounted filesystemsMimi Zohar2018-03-231-1/+14
* IMA: Support using new creds in appraisal policyMatthew Garrett2018-03-237-29/+79
* integrity/security: fix digsig.c build error with header fileRandy Dunlap2018-02-221-0/+1
* Merge tag 'iversion-v4.16-2' of git://git.kernel.org/pub/scm/linux/kernel/git...Linus Torvalds2018-02-071-1/+1
|\
| * iversion: Rename make inode_cmp_iversion{+raw} to inode_eq_iversion{+raw}Goffredo Baroncelli2018-02-011-1/+1
* | ima: re-initialize iint->atomic_flagsMimi Zohar2018-02-021-0/+1
|/
* Merge branch 'next-tpm' of git://git.kernel.org/pub/scm/linux/kernel/git/jmor...Linus Torvalds2018-01-313-3/+3
|\
| * tpm: use struct tpm_chip for tpm_chip_find_get()Jarkko Sakkinen2018-01-083-3/+3
* | Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds2018-01-3111-105/+294
|\ \
| * | ima/policy: fix parsing of fsuuidMike Rapoport2018-01-181-1/+1
| * | ima: Use i_version only when filesystem supports itSascha Hauer2017-12-181-1/+2
| * | integrity: remove unneeded initializations in integrity_iint_cache entriesJeff Layton2017-12-181-4/+0
| * | ima: log message to module appraisal errorBruno E. O. Meneguele2017-12-181-1/+3
| * | ima: pass filename to ima_rdwr_violation_check()Roberto Sassu2017-12-181-3/+3
| * | ima: Fix line continuation formatJoe Perches2017-12-181-6/+5
| * | ima: support new "hash" and "dont_hash" policy actionsMimi Zohar2017-12-185-20/+63
| * | ima: re-introduce own integrity cache lockDmitry Kasatkin2017-12-114-40/+77
| * | EVM: Add support for portable signature formatMatthew Garrett2017-12-115-21/+91
| * | EVM: Allow userland to permit modification of EVM-protected metadataMatthew Garrett2017-12-113-12/+53
| * | ima: relax requiring a file signature for new files with zero lengthMimi Zohar2017-12-111-1/+2
| |/
* | IMA: switch IMA over to new i_version APIJeff Layton2018-01-292-2/+4
* | ima: Use i_version only when filesystem supports itSascha Hauer2017-12-131-1/+2
|/
* ima: do not update security.ima if appraisal status is not INTEGRITY_PASSRoberto Sassu2017-11-201-0/+3
* Merge branch 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert...Linus Torvalds2017-11-141-39/+17
|\
| * ima: move to generic async completionGilad Ben-Yossef2017-11-031-39/+17
* | Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds2017-11-1313-110/+108
|\ \
| * | ima: Remove redundant conditional operatorThiago Jung Bauermann2017-11-081-2/+2
| * | ima: Fix bool initialization/comparisonThomas Meyer2017-11-082-4/+4
| * | ima: check signature enforcement against cmdline param instead of CONFIGBruno E. O. Meneguele2017-11-081-3/+3
| * | ima: fix hash algorithm initializationBoshi Wang2017-11-081-0/+4
| * | EVM: Only complain about a missing HMAC key onceMatthew Garrett2017-11-081-1/+1
| * | EVM: Allow userspace to signal an RSA key has been loadedMatthew Garrett2017-11-082-12/+20
| * | EVM: Include security.apparmor in EVM measurementsMatthew Garrett2017-11-081-0/+3
| * | integrity: use kernel_read_file_from_path() to read x509 certsChristoph Hellwig2017-11-084-56/+13
| * | ima: always measure and audit files in policyMimi Zohar2017-11-083-30/+56
| * | ima: don't remove the securityfs policy fileMimi Zohar2017-11-081-2/+2
| |/