linux-integrity.vger.kernel.org archive mirror

 messages from 2019-04-18 11:10:39 to 2019-05-06 16:58:10 UTC [more...]

[PATCH 0/3] ima: addressing mmap/mprotect concerns
 2019-05-06 16:57 UTC  (4+ messages)
` [PATCH 1/3] ima: verify mprotect change is consistent with mmap policy
` [PATCH 2/3] ima: prevent a file already mmap'ed write to be mmap'ed execute
` [PATCH 3/3] ima: prevent a file already mmap'ed read|execute to be mmap'ed write

Friendly reminder
 2019-05-06 13:31 UTC 

[PATCH] integrity: make 'sync' update the inode integrity state
 2019-05-06 13:17 UTC  (9+ messages)

[PATCH] integrity: keep the integrity state of open files up to date
 2019-05-06 12:53 UTC 

[PATCH 0/5 v4] Kexec cmdline bufffer measure
 2019-05-06 12:13 UTC  (10+ messages)
` [PATCH 1/5 v4] added a new ima policy func buffer_check, and ima hook to measure the buffer hash into ima
` [PATCH 2/5 v4] add the buffer to the xattr
` [PATCH 3/5 v4] add kexec_cmdline used to ima
` [PATCH 4/5 v4] added LSM hook to call ima_buffer_check
` [PATCH 5/5 v4] removed the LSM hook made available, and renamed the ima_policy to be KEXEC_CMDLINE

setfattr to set security.ima fails with error "Invalid argument"
 2019-05-03 21:59 UTC 

[PATCH] kexec_buffer measure
 2019-05-03 14:24 UTC  (7+ messages)

Allow trusted filesystems to provide IMA hashes directly
 2019-05-03 13:20 UTC  (37+ messages)
` [PATCH V2 3/4] IMA: Optionally make use of filesystem-provided hashes

[ANNOUNCE][CFP] Linux Security Summit Europe 2019
 2019-05-03 11:46 UTC 

Add support for TCG2 log format on UEFI systems
 2019-05-03  6:12 UTC  (16+ messages)
` [PATCH V5 2/4] tpm: Reserve the TPM final events table

[PATCH v3 0/4] Add a new ima_hook buffer_check to measure buffers critical for attestation
 2019-05-02 16:58 UTC  (10+ messages)
` [PATCH v3 1/4] added a new ima policy func buffer_check, and ima hook to measure the buffer hash into ima
` [PATCH v3 2/4] add the buffer to the xattr
` [PATCH v3 3/4] add kexec_cmdline used to ima
` [PATCH v3 4/4] added LSM hook to call ima_buffer_check

[PATCH v4] tpm: fix an invalid condition in tpm_common_poll
 2019-05-02  7:22 UTC  (9+ messages)

linux-tpmdd self signed kernel failing to boot with secreboot on
 2019-04-30 23:24 UTC  (10+ messages)

[PATCH v6 00/24] x86: text_poke() fixes and executable lockdowns
 2019-04-27 10:32 UTC  (27+ messages)
` [PATCH v6 01/24] Fix "x86/alternatives: Lockdep-enforce text_mutex in text_poke*()"
` [PATCH v6 02/24] x86/jump_label: Use text_poke_early() during early init
` [PATCH v6 03/24] x86/mm: Introduce temporary mm structs
` [PATCH v6 04/24] x86/mm: Save debug registers when loading a temporary mm
` [PATCH v6 05/24] uprobes: Initialize uprobes earlier
` [PATCH v6 06/24] fork: Provide a function for copying init_mm
` [PATCH v6 07/24] x86/alternative: Initialize temporary mm for patching
` [PATCH v6 08/24] x86/alternative: Use temporary mm for text poking
` [PATCH v6 09/24] x86/kgdb: Avoid redundant comparison of patched code
` [PATCH v6 10/24] x86/ftrace: Set trampoline pages as executable
` [PATCH v6 11/24] x86/kprobes: Set instruction page "
` [PATCH v6 12/24] x86/module: Avoid breaking W^X while loading modules
` [PATCH v6 13/24] x86/jump-label: Remove support for custom poker
` [PATCH v6 14/24] x86/alternative: Remove the return value of text_poke_*()
` [PATCH v6 15/24] x86/mm/cpa: Add set_direct_map_ functions
` [PATCH v6 16/24] mm: Make hibernate handle unmapped pages
` [PATCH v6 17/24] vmalloc: Add flag for free of special permsissions
` [PATCH v6 18/24] modules: Use vmalloc special flag
` [PATCH v6 19/24] bpf: "
` [PATCH v6 20/24] x86/ftrace: "
` [PATCH v6 21/24] x86/kprobes: "
` [PATCH v6 22/24] x86/alternative: Comment about module removal races
` [PATCH v6 23/24] mm/tlb: Provide default nmi_uaccess_okay()
` [PATCH v6 24/24] bpf: Fail bpf_probe_write_user() while mm is switched

[PATCH AUTOSEL 5.0 51/79] tpm: fix an invalid condition in tpm_common_poll
 2019-04-27  1:38 UTC  (2+ messages)
` [PATCH AUTOSEL 5.0 52/79] KEYS: trusted: fix -Wvarags warning

[PATCH v5 00/23] x86: text_poke() fixes and executable lockdowns
 2019-04-26 16:43 UTC  (27+ messages)
` [PATCH v5 01/23] Fix "x86/alternatives: Lockdep-enforce text_mutex in text_poke*()"
` [PATCH v5 02/23] x86/jump_label: Use text_poke_early() during early init
` [PATCH v5 03/23] x86/mm: Introduce temporary mm structs
` [PATCH v5 04/23] x86/mm: Save debug registers when loading a temporary mm
` [PATCH v5 05/23] fork: Provide a function for copying init_mm
` [PATCH v5 06/23] x86/alternative: Initialize temporary mm for patching
` [PATCH v5 07/23] x86/alternative: Use temporary mm for text poking
` [PATCH v5 08/23] x86/kgdb: Avoid redundant comparison of patched code
` [PATCH v5 09/23] x86/ftrace: Set trampoline pages as executable
` [PATCH v5 10/23] x86/kprobes: Set instruction page "
` [PATCH v5 11/23] x86/module: Avoid breaking W^X while loading modules
` [PATCH v5 12/23] x86/jump-label: Remove support for custom poker
` [PATCH v5 13/23] x86/alternative: Remove the return value of text_poke_*()
` [PATCH v5 14/23] x86/mm/cpa: Add set_direct_map_ functions
` [PATCH v5 15/23] mm: Make hibernate handle unmapped pages
` [PATCH v5 16/23] vmalloc: Add flag for free of special permsissions
` [PATCH v5 17/23] modules: Use vmalloc special flag
` [PATCH v5 18/23] bpf: "
` [PATCH v5 19/23] x86/ftrace: "
` [PATCH v5 20/23] x86/kprobes: "
` [PATCH v5 21/23] x86/alternative: Comment about module removal races
` [PATCH v5 22/23] mm/tlb: Provide default nmi_uaccess_okay()
` [PATCH v5 23/23] bpf: Fail bpf_probe_write_user() while mm is switched

[PATCH v2 1/5 RFC] added ima hook for buffer, being enabled as a policy
 2019-04-26  0:03 UTC  (13+ messages)
` [PATCH v2 2/5 RFC] use event name instead of enum to make the call generic
` [PATCH v2 3/5 RFC] since cmdline args can be same for multiple kexec, log entry hash will collide. Prepend the kernel file name to the cmdline args to distinguish between cmdline args passed to subsequent kexec calls
` [PATCH v2 4/5 RFC] added a buffer_check LSM hook
` [PATCH v2 5/5 RFC] add the buffer to the event data in ima free entry data if store_template failed added check in templates for buffer

[PATCH v4 00/23] Merge text_poke fixes and executable lockdowns
 2019-04-25 21:22 UTC  (35+ messages)
` [PATCH v4 01/23] Fix "x86/alternatives: Lockdep-enforce text_mutex in text_poke*()"
` [PATCH v4 02/23] x86/jump_label: Use text_poke_early() during early init
` [PATCH v4 03/23] x86/mm: Introduce temporary mm structs
` [PATCH v4 04/23] x86/mm: Save DRs when loading a temporary mm
` [PATCH v4 05/23] fork: Provide a function for copying init_mm
` [PATCH v4 06/23] x86/alternative: Initialize temporary mm for patching
` [PATCH v4 07/23] x86/alternative: Use temporary mm for text poking
` [PATCH v4 08/23] x86/kgdb: Avoid redundant comparison of patched code
` [PATCH v4 09/23] x86/ftrace: Set trampoline pages as executable
` [PATCH v4 10/23] x86/kprobes: Set instruction page "
` [PATCH v4 11/23] x86/module: Avoid breaking W^X while loading modules
` [PATCH v4 12/23] x86/jump-label: Remove support for custom poker
` [PATCH v4 13/23] x86/alternative: Remove the return value of text_poke_*()
` [PATCH v4 14/23] x86/mm/cpa: Add set_direct_map_ functions
` [PATCH v4 15/23] mm: Make hibernate handle unmapped pages
` [PATCH v4 16/23] vmalloc: Add flag for free of special permsissions
` [PATCH v4 17/23] modules: Use vmalloc special flag
` [PATCH v4 18/23] bpf: "
` [PATCH v4 19/23] x86/ftrace: "
` [PATCH v4 20/23] x86/kprobes: "
` [PATCH v4 21/23] x86/alternative: Comment about module removal races
` [PATCH v4 22/23] tlb: provide default nmi_uaccess_okay()
` [PATCH v4 23/23] bpf: Fail bpf_probe_write_user() while mm is switched

[PATCH v2] KEYS: Make use of platform keyring for module signature verify
 2019-04-25 19:46 UTC  (5+ messages)

Can we enforce "IMA Policy" based on file type
 2019-04-25 19:35 UTC  (6+ messages)

[PATCH] x86/ima: Check EFI_RUNTIME_SERVICES before using
 2019-04-25 12:17 UTC  (2+ messages)

[PATCH v1 1/1] Return the verified kernel image signature in kexec_file_load
 2019-04-24  2:06 UTC 

[PATCH v2 1/3 RFC] added ima hook for buffer, being enabled as a policy
 2019-04-20  0:15 UTC  (3+ messages)
` [PATCH v2 2/3 RFC] use event name instead of enum to make the call generic
` [PATCH v2 3/3 RFC] since cmdline args can be same for multiple kexec, log entry hash will collide. Prepend the kernel file name to the cmdline args to distinguish between cmdline args passed to subsequent kexec calls

[PATCH v3 00/26] compat_ioctl: cleanups
 2019-04-19 23:16 UTC  (4+ messages)
` [PATCH v3 09/26] compat_ioctl: move drivers to compat_ptr_ioctl

[PATCH v9 00/10] crypto: add EC-RDSA (GOST 34.10) algorithm
 2019-04-18 14:25 UTC  (2+ messages)