linux-integrity.vger.kernel.org archive mirror
 help / color / mirror / Atom feed
[RFC PATCH v15 00/21] Integrity Policy Enforcement LSM (IPE)
 2024-03-18 20:58 UTC  (29+ messages)
` [RFC PATCH v15 01/21] security: add ipe lsm
` [RFC PATCH v15 02/21] ipe: add policy parser
` [RFC PATCH v15 03/21] ipe: add evaluation loop
` [RFC PATCH v15 04/21] ipe: add LSM hooks on execution and kernel read
` [RFC PATCH v15 05/21] initramfs|security: Add a security hook to do_populate_rootfs()
` [RFC PATCH v15 06/21] ipe: introduce 'boot_verified' as a trust provider
` [RFC PATCH v15 07/21] security: add new securityfs delete function
` [RFC PATCH v15 08/21] ipe: add userspace interface
` [RFC PATCH v15 09/21] uapi|audit|ipe: add ipe auditing support
` [RFC PATCH v15 10/21] ipe: add permissive toggle
` [RFC PATCH v15 11/21] block|security: add LSM blob to block_device
` [RFC PATCH v15 12/21] security: add security_bdev_setintegrity() hook
` [RFC PATCH v15 13/21] dm: add finalize hook to target_type
` [RFC PATCH v15 14/21] dm verity: consume root hash digest and signature data via LSM hook
` [RFC PATCH v15 15/21] ipe: add support for dm-verity as a trust provider
` [RFC PATCH v15 16/21] security: add security_inode_setintegrity() hook
` [RFC PATCH v15 17/21] fsverity: consume builtin signature via LSM hook
` [RFC PATCH v15 18/21] ipe: enable support for fs-verity as a trust provider
` [RFC PATCH v15 19/21] scripts: add boot policy generation program
` [RFC PATCH v15 20/21] ipe: kunit test for parser
` [RFC PATCH v15 21/21] documentation: add ipe documentation

[ima-evm-utils: PATCH v2 1/1] Change license to LGPL-2.0-or-later and GPL-2.0-or-later
 2024-03-18 19:16 UTC  (5+ messages)

[PATCH v4] ima: add crypto agility support for template-hash algorithm
 2024-03-18 13:05 UTC  (3+ messages)

[PATCH 0/1] Fix TPM chip hanging system before suspend/shutdown
 2024-03-14 16:32 UTC  (12+ messages)
` [PATCH 1/1] "
    ` [PATCH v2] tpm: Fix suspend/shutdown on some boards by preserving chip Locality
        ` [PATCH v3] "

[ima-evm-utils: PATCH v1 1/1] Change license to LGPL-2.0-or-later and GPL-2.0-or-later
 2024-03-14 14:11 UTC  (3+ messages)

[GIT PULL] tpmdd changes for v6.9
 2024-03-13 21:47 UTC  (2+ messages)

[PATCH] integrity: don't throw an error immediately when failed to add a cert to the .machine keyring
 2024-03-13  2:37 UTC  (6+ messages)
` [PATCH v2] integrity: eliminate unnecessary "Problem loading X.509 certificate" msg

[RFC PATCH v14 00/19] Integrity Policy Enforcement LSM (IPE)
 2024-03-12 20:07 UTC  (36+ messages)
` [RFC PATCH v14 01/19] security: add ipe lsm
` [RFC PATCH v14 02/19] ipe: add policy parser
` [RFC PATCH v14 03/19] ipe: add evaluation loop
` [RFC PATCH v14 04/19] ipe: add LSM hooks on execution and kernel read
` [RFC PATCH v14 05/19] initramfs|security: Add a security hook to do_populate_rootfs()
` [RFC PATCH v14 06/19] ipe: introduce 'boot_verified' as a trust provider
` [RFC PATCH v14 07/19] security: add new securityfs delete function
` [RFC PATCH v14 08/19] ipe: add userspace interface
` [RFC PATCH v14 09/19] uapi|audit|ipe: add ipe auditing support
` [RFC PATCH v14 10/19] ipe: add permissive toggle
` [RFC PATCH v14 11/19] block|security: add LSM blob to block_device
` [RFC PATCH v14 12/19] dm: add finalize hook to target_type
` [RFC PATCH v14 13/19] dm verity: consume root hash digest and signature data via LSM hook
` [RFC PATCH v14 14/19] ipe: add support for dm-verity as a trust provider
` [RFC PATCH v14 15/19] fsverity: consume builtin signature via LSM hook
` [RFC PATCH v14 16/19] ipe: enable support for fs-verity as a trust provider
` [RFC PATCH v14 17/19] scripts: add boot policy generation program
` [RFC PATCH v14 18/19] ipe: kunit test for parser
` [RFC PATCH v14 19/19] documentation: add ipe documentation

[RFC PATCH v2 0/3] Preserve TPM log across kexec
 2024-03-12 19:37 UTC  (15+ messages)
` [RFC PATCH v2 1/3] powerpc/prom_init: Replace linux,sml-base/sml-size with linux,sml-log
` [RFC PATCH v2 2/3] dt-bindings: tpm: Add linux,sml-log to ibm,vtpm.yaml
` [RFC PATCH v2 3/3] tpm: of: If available use linux,sml-log to get the log and its size

[PATCH 0/2] Preserve TPM log across kexec
 2024-03-12 19:15 UTC  (29+ messages)
` [PATCH 1/2] powerpc/prom_init: Replace linux,sml-base/sml-size with linux,sml-log
` [PATCH 2/2] tpm: of: If available Use linux,sml-log to get the log and its size

[PATCH RFC 0/8] Clavis LSM
 2024-03-12 15:18 UTC  (17+ messages)
` [PATCH RFC 1/8] certs: Introduce ability to link to a system key
  ` [EXTERNAL] "
` [PATCH RFC 2/8] clavis: Introduce a new system keyring called clavis
` [PATCH RFC 3/8] efi: Make clavis boot param persist across kexec
` [PATCH RFC 4/8] clavis: Prevent clavis boot param from changing during kexec
` [PATCH RFC 5/8] keys: Add new verification type (VERIFYING_CLAVIS_SIGNATURE)
` [PATCH RFC 6/8] keys: Add ability to track intended usage of the public key
` [PATCH RFC 7/8] clavis: Introduce a new key type called clavis_key_acl
` [PATCH RFC 8/8] clavis: Introduce new LSM called clavis

[PATCH v5 0/6] DCP as trusted keys backend
 2024-03-11 20:07 UTC  (14+ messages)
` [PATCH v6 1/6] crypto: mxs-dcp: Add support for hardware-bound keys
` [PATCH v6 2/6] KEYS: trusted: improve scalability of trust source config
` [PATCH v6 3/6] KEYS: trusted: Introduce NXP DCP-backed trusted keys
` [PATCH v6 4/6] MAINTAINERS: add entry for DCP-based "
` [PATCH v6 5/6] docs: document DCP-backed trusted keys kernel params
` [PATCH v6 6/6] docs: trusted-encrypted: add DCP as new trust source

[RFC][PATCH 0/8] ima: Integrate with digest_cache LSM
 2024-03-11 14:00 UTC  (22+ messages)
` [RFC][PATCH 2/8] ima: Nest iint mutex for DIGEST_LIST_CHECK hook
` [RFC][PATCH 3/8] ima: Add digest_cache policy keyword
` [RFC][PATCH 4/8] ima: Add digest_cache_measure and digest_cache_appraise boot-time policies
` [RFC][PATCH 5/8] ima: Record IMA verification result of digest lists in digest cache
` [RFC][PATCH 6/8] ima: Use digest cache for measurement
` [RFC][PATCH 8/8] ima: Detect if digest cache changed since last measurement/appraisal

[PATCH] tpm,tpm_tis: Avoid warning splat at shutdown
 2024-03-07 20:33 UTC  (4+ messages)

[PATCH] xattr: restrict vfs_getxattr_alloc() allocation size
 2024-03-07 20:03 UTC  (3+ messages)

[PATCH] Fix TPM chip hanging system before suspend/shutdown
 2024-03-07 19:52 UTC  (2+ messages)

tpm_tis_remove: `WARNING: CPU: 6 PID: 265 at kernel/workqueue.c:3397 __flush_work.isra.0+0x29f/0x2c0`
 2024-03-07 19:42 UTC  (4+ messages)

[PATCH v5 0/6] DCP as trusted keys backend
 2024-03-07 15:34 UTC  (4+ messages)
` [PATCH v5 4/6] MAINTAINERS: add entry for DCP-based trusted keys

[PATCH] evm: Change vfs_getxattr() with __vfs_getxattr() in evm_calc_hmac_or_hash()
 2024-03-07 15:02 UTC  (4+ messages)

[PATCH v39 01/42] integrity: disassociate ima_filter_rule from security_audit_rule
 2024-03-07  7:56 UTC  (4+ messages)

[PATCH v2 00/25] fs: use type-safe uid representation for filesystem capabilities
 2024-03-06 12:56 UTC  (14+ messages)
` [PATCH v2 24/25] commoncap: use vfs fscaps interfaces


This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).