Linux kernel stable tree (mirror) https://git.radix-linux.su/kernel/linux.git/atom?h=linux-4.13.y 2017-06-21T18:37:12+00:00 2017-06-21T18:37:12+00:00 Thiago Jung Bauermann bauerman@linux.vnet.ibm.com 2017-06-08T01:49:10+00:00 urn:sha1:bb543e3959b5909e7b5db4a216018c634a9d9898 These changes are too small to warrant their own patches: The keyid and sig_size members of struct signature_v2_hdr are in BE format, so use a type that makes this assumption explicit. Also, use beXX_to_cpu instead of __beXX_to_cpu to read them. Change integrity_kernel_read to take a void * buffer instead of char * buffer, so that callers don't have to use a cast if they provide a buffer that isn't a char *. Add missing #endif comment in ima.h pointing out which macro it refers to. Add missing fall through comment in ima_appraise.c. Constify mask_tokens and func_tokens arrays. Signed-off-by: Thiago Jung Bauermann <bauerman@linux.vnet.ibm.com> Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com> 2016-06-30T05:14:19+00:00 Eric Richter erichte@linux.vnet.ibm.com 2016-06-01T18:14:00+00:00 urn:sha1:96d450bbeccda6f32c70bbb9ee54057f68733cad To keep track of which measurements have been extended to which PCRs, this patch defines a new integrity_iint_cache field named measured_pcrs. This field is a bitmask of the PCRs measured. Each bit corresponds to a PCR index. For example, bit 10 corresponds to PCR 10. Signed-off-by: Eric Richter <erichte@linux.vnet.ibm.com> Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com> 2016-05-01T13:23:52+00:00 Mimi Zohar zohar@linux.vnet.ibm.com 2016-02-29T13:30:12+00:00 urn:sha1:42a4c603198f0d45b7aa936d3ac6ba1b8bd14a1b Changing file metadata (eg. uid, guid) could result in having to re-appraise a file's integrity, but does not change the "new file" status nor the security.ima xattr. The IMA_PERMIT_DIRECTIO and IMA_DIGSIG_REQUIRED flags are policy rule specific. This patch only resets these flags, not the IMA_NEW_FILE or IMA_DIGSIG flags. With this patch, changing the file timestamp will not remove the file signature on new files. Reported-by: Dmitry Rozhkov <dmitry.rozhkov@linux.intel.com> Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com> Tested-by: Dmitry Rozhkov <dmitry.rozhkov@linux.intel.com> 2016-03-04T00:39:53+00:00 James Morris james.l.morris@oracle.com 2016-03-04T00:39:53+00:00 urn:sha1:88a1b564a20e371e6be41b39b85673e9c1959491 2016-03-03T21:49:27+00:00 David Howells dhowells@redhat.com 2016-03-03T21:49:27+00:00 urn:sha1:4e8ae72a75aae285ec5b93518b9680da198afd0d Make the identifier public key and digest algorithm fields text instead of enum. Signed-off-by: David Howells <dhowells@redhat.com> Acked-by: Herbert Xu <herbert@gondor.apana.org.au> 2016-02-21T14:06:13+00:00 Mimi Zohar zohar@linux.vnet.ibm.com 2015-11-19T17:39:22+00:00 urn:sha1:c6af8efe97d87fa308eb1bbd0cf4feb820a4d622 Each time a file is read by the kernel, the file should be re-measured and the file signature re-appraised, based on policy. As there is no need to preserve the status information, this patch replaces the firmware and module specific cache status with a generic one named read_file. This change simplifies adding support for other files read by the kernel. Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com> Acked-by: Petko Manolov <petkan@mip-labs.com> Acked-by: Dmitry Kasatkin <dmitry.kasatkin@huawei.com> 2016-02-21T03:35:08+00:00 Mimi Zohar zohar@linux.vnet.ibm.com 2016-01-14T22:57:47+00:00 urn:sha1:cf2222178645e545e96717b2825601321ce4745c This patch defines a new IMA hook ima_post_read_file() for measuring and appraising files read by the kernel. The caller loads the file into memory before calling this function, which calculates the hash followed by the normal IMA policy based processing. Changelog v5: - fail ima_post_read_file() if either file or buf is NULL v3: - rename ima_hash_and_process_file() to ima_post_read_file() v1: - split patch Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com> Acked-by: Dmitry Kasatkin <dmitry.kasatkin@huawei.com> 2015-12-15T13:31:19+00:00 Dmitry Kasatkin dmitry.kasatkin@huawei.com 2015-10-22T18:26:21+00:00 urn:sha1:2ce523eb8976a12de1a4fb6fe8ad0b09b5dafb31 This patch defines a configuration option and the evm_load_x509() hook to load an X509 certificate onto the EVM trusted kernel keyring. Changes in v4: * Patch description updated Changes in v3: * Removed EVM_X509_PATH definition. CONFIG_EVM_X509_PATH is used directly. Changes in v2: * default key patch changed to /etc/keys Signed-off-by: Dmitry Kasatkin <dmitry.kasatkin@huawei.com> Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com> 2015-11-23T19:30:02+00:00 Dmitry Kasatkin dmitry.kasatkin@huawei.com 2015-10-22T18:26:10+00:00 urn:sha1:f4dc37785e9b3373d0cb93125d5579fed2af3a43 Require all keys added to the EVM keyring be signed by an existing trusted key on the system trusted keyring. This patch also switches IMA to use integrity_init_keyring(). Changes in v3: * Added 'init_keyring' config based variable to skip initializing keyring instead of using __integrity_init_keyring() wrapper. * Added dependency back to CONFIG_IMA_TRUSTED_KEYRING Changes in v2: * Replace CONFIG_EVM_TRUSTED_KEYRING with IMA and EVM common CONFIG_INTEGRITY_TRUSTED_KEYRING configuration option * Deprecate CONFIG_IMA_TRUSTED_KEYRING but keep it for config file compatibility. (Mimi Zohar) Signed-off-by: Dmitry Kasatkin <dmitry.kasatkin@huawei.com> Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com> 2015-05-21T17:59:28+00:00 Dmitry Kasatkin d.kasatkin@samsung.com 2014-11-26T14:55:00+00:00 urn:sha1:9d03a721a3a4a5120de790a0e67dc324c2ed9184 This patch adds validity checks for 'path' parameter and makes it const. Signed-off-by: Dmitry Kasatkin <d.kasatkin@samsung.com> Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>