Linux-Integrity Archive on lore.kernel.org
 help / color / Atom feed
[PATCH 0/3 v5] Kexec cmdline bufffer measure
 2019-05-10 22:37 UTC  (3+ messages) - mbox.gz / Atom
` [PATCH 1/3 v5] add a new ima hook and policy to measure the cmdline
` [PATCH 3/3 v5] call ima_kexec_cmdline from kexec_file_load path

[PATCH 0/3 v5] Kexec cmdline bufffer measure
 2019-05-10 22:32 UTC  (4+ messages) - mbox.gz / Atom
` [PATCH 1/3 v5] add a new ima hook and policy to measure the cmdline
` [PATCH 2/3 v5] add a new template field buf to contain the buffer
` [PATCH 3/3 v5] call ima_kexec_cmdline from kexec_file_load path

[PATCH v2 0/3] initramfs: add support for xattrs in the initial ram disk
 2019-05-10 21:33 UTC  (10+ messages) - mbox.gz / Atom
` [PATCH v2 1/3] fs: add ksys_lsetxattr() wrapper
` [PATCH v2 2/3] initramfs: set extended attributes
` [PATCH v2 3/3] initramfs: introduce do_readxattrs()

[PATCH 0/4] Enabling secure boot on PowerNV systems
 2019-05-10 21:31 UTC  (11+ messages) - mbox.gz / Atom

[PATCH 00/16] treewide: fix match_string() helper when array size
 2019-05-10 14:34 UTC  (25+ messages) - mbox.gz / Atom
` [PATCH 01/16] lib: fix match_string() helper on -1 "
` [PATCH 01/16] lib: fix match_string() helper when array size is positive
` [PATCH 02/16] treewide: rename match_string() -> __match_string()
` [PATCH 03/16] lib,treewide: add new match_string() helper/macro
` [PATCH 04/16] powerpc/xmon: use "
` [PATCH 05/16] ALSA: oxygen: "
` [PATCH 06/16] x86/mtrr: use new match_string() helper + add gaps == minor fix
` [PATCH 07/16] device connection: use new match_string() helper/macro
` [PATCH 08/16] cpufreq/intel_pstate: remove NULL entry + use match_string()
` [PATCH 09/16] mmc: sdhci-xenon: use new match_string() helper/macro
` [PATCH 10/16] pinctrl: armada-37xx: "
` [PATCH 11/16] mm/vmpressure.c: "
` [PATCH 12/16] rdmacg: "
` [PATCH 13/16] drm/edid: "
` [PATCH 14/16] staging: gdm724x: "
` [PATCH 15/16] video: fbdev: pxafb: "
` [PATCH 16/16] sched: debug: "

[PATCH v10 00/12] Appended signatures support for IMA appraisal
 2019-05-09 23:01 UTC  (15+ messages) - mbox.gz / Atom
` [PATCH v10 01/12] MODSIGN: Export module signature definitions
` [PATCH v10 02/12] PKCS#7: Refactor verify_pkcs7_signature()
` [PATCH v10 03/12] PKCS#7: Introduce pkcs7_get_digest()
` [PATCH v10 06/12] ima: Use designated initializers for struct ima_event_data
` [PATCH v10 08/12] ima: Factor xattr_verify() out of ima_appraise_measurement()
` [PATCH v10 09/12] ima: Implement support for module-style appended signatures
` [PATCH v10 11/12] ima: Define ima-modsig template

setfattr to set security.ima fails with error "Invalid argument"
 2019-05-08 14:54 UTC  (2+ messages) - mbox.gz / Atom

[PATCH v3 0/2] ftpm: a firmware based TPM driver
 2019-05-08 12:44 UTC  (6+ messages) - mbox.gz / Atom

[PATCH] integrity: keep the integrity state of open files up to date
 2019-05-08  8:03 UTC  (3+ messages) - mbox.gz / Atom

[PATCH] integrity: make 'sync' update the inode integrity state
 2019-05-07 12:42 UTC  (6+ messages) - mbox.gz / Atom

[PATCH AUTOSEL 4.14 41/95] ima: open a new file instance if no read permissions
 2019-05-07  5:37 UTC  - mbox.gz / Atom

Add support for TCG2 log format on UEFI systems
 2019-05-06 19:20 UTC  (17+ messages) - mbox.gz / Atom
` [PATCH V5 2/4] tpm: Reserve the TPM final events table

[PATCH 0/3] ima: addressing mmap/mprotect concerns
 2019-05-06 16:57 UTC  (4+ messages) - mbox.gz / Atom
` [PATCH 1/3] ima: verify mprotect change is consistent with mmap policy
` [PATCH 2/3] ima: prevent a file already mmap'ed write to be mmap'ed execute
` [PATCH 3/3] ima: prevent a file already mmap'ed read|execute to be mmap'ed write

Friendly reminder
 2019-05-06 13:31 UTC  - mbox.gz / Atom

[PATCH 0/5 v4] Kexec cmdline bufffer measure
 2019-05-06 12:13 UTC  (10+ messages) - mbox.gz / Atom
` [PATCH 1/5 v4] added a new ima policy func buffer_check, and ima hook to measure the buffer hash into ima
` [PATCH 2/5 v4] add the buffer to the xattr
` [PATCH 3/5 v4] add kexec_cmdline used to ima
` [PATCH 4/5 v4] added LSM hook to call ima_buffer_check
` [PATCH 5/5 v4] removed the LSM hook made available, and renamed the ima_policy to be KEXEC_CMDLINE

[PATCH] kexec_buffer measure
 2019-05-03 14:24 UTC  (7+ messages) - mbox.gz / Atom

Allow trusted filesystems to provide IMA hashes directly
 2019-05-03 13:20 UTC  (37+ messages) - mbox.gz / Atom
` [PATCH V2 3/4] IMA: Optionally make use of filesystem-provided hashes

[ANNOUNCE][CFP] Linux Security Summit Europe 2019
 2019-05-03 11:46 UTC  - mbox.gz / Atom

[PATCH v3 0/4] Add a new ima_hook buffer_check to measure buffers critical for attestation
 2019-05-02 16:58 UTC  (10+ messages) - mbox.gz / Atom
` [PATCH v3 1/4] added a new ima policy func buffer_check, and ima hook to measure the buffer hash into ima
` [PATCH v3 2/4] add the buffer to the xattr
` [PATCH v3 3/4] add kexec_cmdline used to ima
` [PATCH v3 4/4] added LSM hook to call ima_buffer_check

[PATCH v4] tpm: fix an invalid condition in tpm_common_poll
 2019-05-02  7:22 UTC  (7+ messages) - mbox.gz / Atom

linux-tpmdd self signed kernel failing to boot with secreboot on
 2019-04-30 23:24 UTC  (10+ messages) - mbox.gz / Atom

[PATCH v6 00/24] x86: text_poke() fixes and executable lockdowns
 2019-04-27 10:32 UTC  (27+ messages) - mbox.gz / Atom
` [PATCH v6 01/24] Fix "x86/alternatives: Lockdep-enforce text_mutex in text_poke*()"
` [PATCH v6 02/24] x86/jump_label: Use text_poke_early() during early init
` [PATCH v6 03/24] x86/mm: Introduce temporary mm structs
` [PATCH v6 04/24] x86/mm: Save debug registers when loading a temporary mm
` [PATCH v6 05/24] uprobes: Initialize uprobes earlier
` [PATCH v6 06/24] fork: Provide a function for copying init_mm
` [PATCH v6 07/24] x86/alternative: Initialize temporary mm for patching
` [PATCH v6 08/24] x86/alternative: Use temporary mm for text poking
` [PATCH v6 09/24] x86/kgdb: Avoid redundant comparison of patched code
` [PATCH v6 10/24] x86/ftrace: Set trampoline pages as executable
` [PATCH v6 11/24] x86/kprobes: Set instruction page "
` [PATCH v6 12/24] x86/module: Avoid breaking W^X while loading modules
` [PATCH v6 13/24] x86/jump-label: Remove support for custom poker
` [PATCH v6 14/24] x86/alternative: Remove the return value of text_poke_*()
` [PATCH v6 15/24] x86/mm/cpa: Add set_direct_map_ functions
` [PATCH v6 16/24] mm: Make hibernate handle unmapped pages
` [PATCH v6 17/24] vmalloc: Add flag for free of special permsissions
` [PATCH v6 18/24] modules: Use vmalloc special flag
` [PATCH v6 19/24] bpf: "
` [PATCH v6 20/24] x86/ftrace: "
` [PATCH v6 21/24] x86/kprobes: "
` [PATCH v6 22/24] x86/alternative: Comment about module removal races
` [PATCH v6 23/24] mm/tlb: Provide default nmi_uaccess_okay()
` [PATCH v6 24/24] bpf: Fail bpf_probe_write_user() while mm is switched

[PATCH AUTOSEL 5.0 51/79] tpm: fix an invalid condition in tpm_common_poll
 2019-04-27  1:38 UTC  (2+ messages) - mbox.gz / Atom
` [PATCH AUTOSEL 5.0 52/79] KEYS: trusted: fix -Wvarags warning

[PATCH v5 00/23] x86: text_poke() fixes and executable lockdowns
 2019-04-26 16:43 UTC  (27+ messages) - mbox.gz / Atom
` [PATCH v5 01/23] Fix "x86/alternatives: Lockdep-enforce text_mutex in text_poke*()"
` [PATCH v5 02/23] x86/jump_label: Use text_poke_early() during early init
` [PATCH v5 03/23] x86/mm: Introduce temporary mm structs
` [PATCH v5 04/23] x86/mm: Save debug registers when loading a temporary mm
` [PATCH v5 05/23] fork: Provide a function for copying init_mm
` [PATCH v5 06/23] x86/alternative: Initialize temporary mm for patching
` [PATCH v5 07/23] x86/alternative: Use temporary mm for text poking
` [PATCH v5 08/23] x86/kgdb: Avoid redundant comparison of patched code
` [PATCH v5 09/23] x86/ftrace: Set trampoline pages as executable
` [PATCH v5 10/23] x86/kprobes: Set instruction page "
` [PATCH v5 11/23] x86/module: Avoid breaking W^X while loading modules
` [PATCH v5 12/23] x86/jump-label: Remove support for custom poker
` [PATCH v5 13/23] x86/alternative: Remove the return value of text_poke_*()
` [PATCH v5 14/23] x86/mm/cpa: Add set_direct_map_ functions
` [PATCH v5 15/23] mm: Make hibernate handle unmapped pages
` [PATCH v5 16/23] vmalloc: Add flag for free of special permsissions
` [PATCH v5 17/23] modules: Use vmalloc special flag
` [PATCH v5 18/23] bpf: "
` [PATCH v5 19/23] x86/ftrace: "
` [PATCH v5 20/23] x86/kprobes: "
` [PATCH v5 21/23] x86/alternative: Comment about module removal races
` [PATCH v5 22/23] mm/tlb: Provide default nmi_uaccess_okay()
` [PATCH v5 23/23] bpf: Fail bpf_probe_write_user() while mm is switched

[PATCH v2 1/5 RFC] added ima hook for buffer, being enabled as a policy
 2019-04-26  0:03 UTC  (10+ messages) - mbox.gz / Atom
` [PATCH v2 2/5 RFC] use event name instead of enum to make the call generic

[PATCH v4 00/23] Merge text_poke fixes and executable lockdowns
 2019-04-25 21:22 UTC  (11+ messages) - mbox.gz / Atom
` [PATCH v4 04/23] x86/mm: Save DRs when loading a temporary mm
` [PATCH v4 16/23] vmalloc: Add flag for free of special permsissions
` [PATCH v4 19/23] x86/ftrace: Use vmalloc special flag

[PATCH v2] KEYS: Make use of platform keyring for module signature verify
 2019-04-25 19:46 UTC  (4+ messages) - mbox.gz / Atom

Can we enforce "IMA Policy" based on file type
 2019-04-25 19:35 UTC  (4+ messages) - mbox.gz / Atom

page:   latest

Linux-Integrity Archive on lore.kernel.org

Archives are clonable:
	git clone --mirror https://lore.kernel.org/linux-integrity/0 linux-integrity/git/0.git

	# If you have public-inbox 1.1+ installed, you may
	# initialize and index your mirror using the following commands:
	public-inbox-init -V2 linux-integrity linux-integrity/ https://lore.kernel.org/linux-integrity \
		linux-integrity@vger.kernel.org linux-integrity@archiver.kernel.org
	public-inbox-index linux-integrity


Newsgroup available over NNTP:
	nntp://nntp.lore.kernel.org/org.kernel.vger.linux-integrity


AGPL code for this site: git clone https://public-inbox.org/ public-inbox