summaryrefslogtreecommitdiffstats
path: root/security/integrity
Commit message (Expand)AuthorAgeFilesLines
* ima: fix freeing ongoing ahash_requestSascha Hauer2019-10-111-0/+5
* ima: always return negative code for errorSascha Hauer2019-10-111-1/+4
* evm: check hash algorithm passed to init_desc()Roberto Sassu2019-06-091-0/+3
* ima: show rules with IMA_INMASK correctlyRoberto Sassu2019-06-091-9/+12
* ima: open a new file instance if no read permissionsGoldwyn Rodrigues2018-11-131-20/+34
* ima: fix showing large 'violations' or 'runtime_measurements_count'Eric Biggers2018-11-131-3/+3
* Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds2018-08-1511-45/+102
|\
| * EVM: fix return value check in evm_write_xattrs()Wei Yongjun2018-07-221-2/+2
| * integrity: prevent deadlock during digsig verification.Mikhail Kurinnoi2018-07-181-0/+23
| * evm: Allow non-SHA1 digital signaturesMatthew Garrett2018-07-184-31/+46
| * evm: Don't deadlock if a crypto algorithm is unavailableMatthew Garrett2018-07-181-1/+2
| * integrity: silence warning when CONFIG_SECURITYFS is not enabledSudeep Holla2018-07-181-3/+6
| * ima: Differentiate auditing policy rules from "audit" actionsStefan Berger2018-07-181-2/+2
| * ima: Do not audit if CONFIG_INTEGRITY_AUDIT is not setStefan Berger2018-07-183-1/+21
| * ima: Use audit_log_format() rather than audit_log_string()Stefan Berger2018-07-182-7/+2
| * ima: Call audit_log_string() rather than logging it untrustedStefan Berger2018-07-181-1/+1
* | Merge branch 'next-tpm' of git://git.kernel.org/pub/scm/linux/kernel/git/jmor...Linus Torvalds2018-08-154-16/+10
|\ \
| * | ima: Get rid of ima_used_chip and use ima_tpm_chip != NULL insteadStefan Berger2018-07-284-8/+4
| * | ima: Use tpm_default_chip() and call TPM functions with a tpm_chipStefan Berger2018-07-284-9/+7
| |/
* | Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds2018-08-154-17/+158
|\|
| * ima: based on policy warn about loading firmware (pre-allocated buffer)Mimi Zohar2018-07-161-0/+8
| * module: replace the existing LSM hook in init_moduleMimi Zohar2018-07-161-13/+10
| * ima: add build time policyMimi Zohar2018-07-162-3/+101
| * ima: based on policy require signed firmware (sysfs fallback)Mimi Zohar2018-07-161-1/+9
| * ima: based on policy require signed kexec kernel imagesMimi Zohar2018-07-163-0/+30
* | IMA: don't propagate opened through the entire thingAl Viro2018-07-123-12/+12
|/
* Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds2018-06-0713-83/+362
|\
| * EVM: unlock on error path in evm_read_xattrs()Dan Carpenter2018-06-011-1/+3
| * EVM: prevent array underflow in evm_write_xattrs()Dan Carpenter2018-05-311-1/+1
| * EVM: Fix null dereference on xattr when xattr fails to allocateColin Ian King2018-05-311-2/+4
| * EVM: fix memory leak of temporary buffer 'temp'Colin Ian King2018-05-311-0/+2
| * IMA: use list_splice_tail_init_rcu() instead of its open coded variantPetko Manolov2018-05-311-15/+2
| * ima: use match_string() helperYisheng Xie2018-05-311-7/+4
| * ima: fix updating the ima_appraise flagMimi Zohar2018-05-221-9/+19
| * ima: based on policy verify firmware signatures (pre-allocated buffer)Mimi Zohar2018-05-221-0/+1
| * ima: define a new policy condition based on the filesystem nameMimi Zohar2018-05-221-1/+24
| * EVM: Allow runtime modification of the set of verified xattrsMatthew Garrett2018-05-184-4/+188
| * EVM: turn evm_config_xattrnames into a listMatthew Garrett2018-05-183-39/+57
| * integrity: Add an integrity directory in securityfsMatthew Garrett2018-05-174-4/+52
| * ima: Remove unused variable ima_initializedPetr Vorel2018-05-172-6/+2
| * ima: Unify loggingPetr Vorel2018-05-173-2/+9
| * ima: Reflect correct permissions for policyPetr Vorel2018-05-171-0/+2
* | Merge tag 'audit-pr-20180605' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds2018-06-062-2/+2
|\ \
| * | audit: use inline function to get audit contextRichard Guy Briggs2018-05-142-2/+2
| |/
* / evm: Don't update hmacs in user ns mountsSeth Forshee2018-05-031-1/+2
|/
* ima: Fallback to the builtin hash algorithmPetr Vorel2018-03-252-0/+15
* ima: Add smackfs to the default appraise/measure listMartin Townsend2018-03-251-0/+2
* evm: check for remount ro in progress before writingSascha Hauer2018-03-251-2/+6
* ima: Improvements in ima_appraise_measurement()Thiago Jung Bauermann2018-03-251-13/+22
* ima: Simplify ima_eventsig_init()Thiago Jung Bauermann2018-03-251-8/+3