summaryrefslogtreecommitdiff
path: root/security/integrity/evm
AgeCommit message (Expand)AuthorFilesLines
2016-12-14Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebi...Linus Torvalds1-2/+10
2016-12-02Revert "evm: Translate user/group ids relative to s_user_ns when computing HMAC"Eric W. Biederman1-2/+10
2016-11-13security/integrity: Harden against malformed xattrsSeth Forshee1-0/+4
2016-10-07xattr: Add __vfs_{get,set,remove}xattr helpersAndreas Gruenbacher2-5/+6
2016-07-05evm: Translate user/group ids relative to s_user_ns when computing HMACSeth Forshee1-2/+2
2016-04-11->getxattr(): pass dentry and inode as separate argumentsAl Viro1-1/+1
2016-04-10don't bother with ->d_inode->i_sb - it's always equal to ->d_sbAl Viro1-2/+2
2016-02-12EVM: Use crypto_memneq() for digest comparisonsRyan Ware1-1/+2
2015-12-15evm: EVM_LOAD_X509 depends on EVMArnd Bergmann1-1/+1
2015-12-15evm: reset EVM status when file attributes changeDmitry Kasatkin1-0/+13
2015-12-15evm: provide a function to set the EVM key from the kernelDmitry Kasatkin2-14/+46
2015-12-15evm: enable EVM when X509 certificate is loadedDmitry Kasatkin4-3/+14
2015-12-15evm: load an x509 certificate from the kernelDmitry Kasatkin2-0/+24
2015-11-23integrity: define '.evm' as a builtin 'trusted' keyringDmitry Kasatkin1-3/+5
2015-10-21KEYS: Merge the type-specific data with the payload dataDavid Howells1-1/+1
2015-05-21evm: fix potential race when removing xattrsDmitry Kasatkin1-4/+3
2015-05-21evm: labeling pseudo filesystems exceptionMimi Zohar1-0/+11
2015-04-15VFS: security/: d_backing_inode() annotationsDavid Howells2-11/+11
2015-01-07kconfig: use bool instead of boolean for type definition attributesChristoph Jaeger1-1/+1
2014-12-14Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/...Linus Torvalds1-3/+8
2014-10-28evm: check xattr value length and type in evm_inode_setxattr()Dmitry Kasatkin1-3/+6
2014-10-07evm: skip replacing EVM signature with HMAC on read-only filesystemDmitry Kasatkin1-3/+8
2014-09-09integrity: base integrity subsystem kconfig options on integrityDmitry Kasatkin1-8/+0
2014-09-09evm: properly handle INTEGRITY_NOXATTRS EVM statusDmitry Kasatkin1-0/+7
2014-09-08evm: prevent passing integrity check if xattr read failsDmitry Kasatkin1-3/+4
2014-09-02evm: fix checkpatch warningsDmitry Kasatkin1-3/+0
2014-06-12evm: prohibit userspace writing 'security.evm' HMAC valueMimi Zohar1-2/+10
2014-06-12evm: provide option to protect additional SMACK xattrsDmitry Kasatkin2-0/+22
2014-06-12evm: replace HMAC version with attribute maskDmitry Kasatkin4-11/+33
2014-04-12Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds2-2/+2
2014-04-01get rid of pointless checks for NULL ->i_opAl Viro2-2/+2
2014-03-07evm: enable key retention service automaticallyDmitry Kasatkin1-2/+3
2014-03-07evm: EVM does not use MD5Dmitry Kasatkin1-1/+0
2014-03-07integrity: fix checkpatch errorsDmitry Kasatkin2-16/+16
2014-03-07security: integrity: Use a more current logging styleJoe Perches3-5/+11
2013-10-25ima: pass full xattr with the signatureDmitry Kasatkin1-2/+2
2013-10-25ima: fix script messagesDmitry Kasatkin1-1/+2
2013-07-25xattr: Constify ->name member of "struct xattr".Tetsuo Handa1-1/+1
2013-06-20evm: audit integrity metadata failuresMimi Zohar1-1/+14
2013-02-21Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/...Linus Torvalds5-16/+18
2013-02-06evm: add file system uuid to EVM hmacDmitry Kasatkin4-0/+18
2013-01-22evm: checking if removexattr is not a NULLDmitry Kasatkin1-2/+2
2013-01-16evm: remove unused cleanup functionsDmitry Kasatkin3-16/+0
2012-10-02Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/...Linus Torvalds1-0/+3
2012-09-21userns: Convert EVM to deal with kuids and kgids in it's hmac computationEric W. Biederman1-2/+2
2012-09-07ima: integrity appraisal extensionMimi Zohar1-0/+3
2012-01-09Merge branch 'next' into for-linusJames Morris3-36/+146
2011-12-20evm: prevent racing during tfm allocationDmitry Kasatkin1-0/+9
2011-12-20evm: key must be set once during initializationDmitry Kasatkin1-4/+6
2011-12-08evm: prevent racing during tfm allocationDmitry Kasatkin1-3/+11