Age | Commit message (Expand) | Author | Files | Lines |
2018-10-11 | LSM: Record LSM name in struct lsm_info | Kees Cook | 1 | -0/+1 |
2018-10-11 | LSM: Convert security_initcall() into DEFINE_LSM() | Kees Cook | 1 | -1/+3 |
2018-10-11 | LSM: Convert from initcall to struct lsm_info | Kees Cook | 1 | -0/+1 |
2018-08-16 | Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/gi... | Linus Torvalds | 11 | -45/+102 |
2018-08-16 | Merge branch 'next-tpm' of git://git.kernel.org/pub/scm/linux/kernel/git/jmor... | Linus Torvalds | 4 | -16/+10 |
2018-08-15 | Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/... | Linus Torvalds | 4 | -17/+158 |
2018-07-28 | ima: Get rid of ima_used_chip and use ima_tpm_chip != NULL instead | Stefan Berger | 4 | -8/+4 |
2018-07-28 | ima: Use tpm_default_chip() and call TPM functions with a tpm_chip | Stefan Berger | 4 | -9/+7 |
2018-07-22 | EVM: fix return value check in evm_write_xattrs() | Wei Yongjun | 1 | -2/+2 |
2018-07-18 | integrity: prevent deadlock during digsig verification. | Mikhail Kurinnoi | 1 | -0/+23 |
2018-07-18 | evm: Allow non-SHA1 digital signatures | Matthew Garrett | 4 | -31/+46 |
2018-07-18 | evm: Don't deadlock if a crypto algorithm is unavailable | Matthew Garrett | 1 | -1/+2 |
2018-07-18 | integrity: silence warning when CONFIG_SECURITYFS is not enabled | Sudeep Holla | 1 | -3/+6 |
2018-07-18 | ima: Differentiate auditing policy rules from "audit" actions | Stefan Berger | 1 | -2/+2 |
2018-07-18 | ima: Do not audit if CONFIG_INTEGRITY_AUDIT is not set | Stefan Berger | 3 | -1/+21 |
2018-07-18 | ima: Use audit_log_format() rather than audit_log_string() | Stefan Berger | 2 | -7/+2 |
2018-07-18 | ima: Call audit_log_string() rather than logging it untrusted | Stefan Berger | 1 | -1/+1 |
2018-07-16 | ima: based on policy warn about loading firmware (pre-allocated buffer) | Mimi Zohar | 1 | -0/+8 |
2018-07-16 | module: replace the existing LSM hook in init_module | Mimi Zohar | 1 | -13/+10 |
2018-07-16 | ima: add build time policy | Mimi Zohar | 2 | -3/+101 |
2018-07-16 | ima: based on policy require signed firmware (sysfs fallback) | Mimi Zohar | 1 | -1/+9 |
2018-07-16 | ima: based on policy require signed kexec kernel images | Mimi Zohar | 3 | -0/+30 |
2018-07-12 | IMA: don't propagate opened through the entire thing | Al Viro | 3 | -12/+12 |
2018-06-08 | Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/gi... | Linus Torvalds | 13 | -83/+362 |
2018-06-07 | Merge tag 'audit-pr-20180605' of git://git.kernel.org/pub/scm/linux/kernel/gi... | Linus Torvalds | 2 | -2/+2 |
2018-06-01 | EVM: unlock on error path in evm_read_xattrs() | Dan Carpenter | 1 | -1/+3 |
2018-05-31 | EVM: prevent array underflow in evm_write_xattrs() | Dan Carpenter | 1 | -1/+1 |
2018-05-31 | EVM: Fix null dereference on xattr when xattr fails to allocate | Colin Ian King | 1 | -2/+4 |
2018-05-31 | EVM: fix memory leak of temporary buffer 'temp' | Colin Ian King | 1 | -0/+2 |
2018-05-31 | IMA: use list_splice_tail_init_rcu() instead of its open coded variant | Petko Manolov | 1 | -15/+2 |
2018-05-31 | ima: use match_string() helper | Yisheng Xie | 1 | -7/+4 |
2018-05-22 | ima: fix updating the ima_appraise flag | Mimi Zohar | 1 | -9/+19 |
2018-05-22 | ima: based on policy verify firmware signatures (pre-allocated buffer) | Mimi Zohar | 1 | -0/+1 |
2018-05-22 | ima: define a new policy condition based on the filesystem name | Mimi Zohar | 1 | -1/+24 |
2018-05-18 | EVM: Allow runtime modification of the set of verified xattrs | Matthew Garrett | 4 | -4/+188 |
2018-05-18 | EVM: turn evm_config_xattrnames into a list | Matthew Garrett | 3 | -39/+57 |
2018-05-17 | integrity: Add an integrity directory in securityfs | Matthew Garrett | 4 | -4/+52 |
2018-05-17 | ima: Remove unused variable ima_initialized | Petr Vorel | 2 | -6/+2 |
2018-05-17 | ima: Unify logging | Petr Vorel | 3 | -2/+9 |
2018-05-17 | ima: Reflect correct permissions for policy | Petr Vorel | 1 | -0/+2 |
2018-05-15 | audit: use inline function to get audit context | Richard Guy Briggs | 2 | -2/+2 |
2018-05-03 | evm: Don't update hmacs in user ns mounts | Seth Forshee | 1 | -1/+2 |
2018-03-25 | ima: Fallback to the builtin hash algorithm | Petr Vorel | 2 | -0/+15 |
2018-03-25 | ima: Add smackfs to the default appraise/measure list | Martin Townsend | 1 | -0/+2 |
2018-03-25 | evm: check for remount ro in progress before writing | Sascha Hauer | 1 | -2/+6 |
2018-03-25 | ima: Improvements in ima_appraise_measurement() | Thiago Jung Bauermann | 1 | -13/+22 |
2018-03-25 | ima: Simplify ima_eventsig_init() | Thiago Jung Bauermann | 1 | -8/+3 |
2018-03-25 | integrity: Remove unused macro IMA_ACTION_RULE_FLAGS | Thiago Jung Bauermann | 1 | -1/+0 |
2018-03-25 | ima: drop vla in ima_audit_measurement() | Tycho Andersen | 1 | -6/+10 |
2018-03-25 | ima: Fix Kconfig to select TPM 2.0 CRB interface | Jiandi An | 1 | -0/+1 |