Show patches with: State = Action Required       |    Archived = No       |   645 patches
« 1 2 3 46 7 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
tpm: Define TPM2_SPACE_BUFFER_SIZE to replace the use of PAGE_SIZE tpm: Define TPM2_SPACE_BUFFER_SIZE to replace the use of PAGE_SIZE - 1 1 --- 2020-07-02 Jarkko Sakkinen Under Review
[v7,1/3] certs: export load_certificate_list() to be used outside certs/ integrity: support including firmware ".platform" keys at build time - 1 - --- 2022-01-05 Nayna Jain New
[v7,2/3] integrity: make integrity_keyring_from_id() non-static integrity: support including firmware ".platform" keys at build time - 1 - --- 2022-01-05 Nayna Jain New
[v7,3/3] integrity: support including firmware ".platform" keys at build time integrity: support including firmware ".platform" keys at build time - 1 - --- 2022-01-05 Nayna Jain New
[RFC,1/3] dm ima: allow targets to remeasure their table entry dm ima: allow targets to remeasure their state - - - --- 2022-01-06 Thore Sommer New
[RFC,2/3] dm verity: add support for IMA target update event dm ima: allow targets to remeasure their state - - - --- 2022-01-06 Thore Sommer New
[RFC,3/3] dm ima: add documentation target update event dm ima: allow targets to remeasure their state - - - --- 2022-01-06 Thore Sommer New
[v3,1/6] s390/kexec_file: Don't opencode appended signature check. KEXEC_SIG with appended signature 1 - - --- 2022-01-07 Michal Suchánek New
[v3,2/6] powerpc/kexec_file: Add KEXEC_SIG support. KEXEC_SIG with appended signature - - - --- 2022-01-07 Michal Suchánek New
[v3,3/6] kexec_file: Don't opencode appended signature verification. KEXEC_SIG with appended signature - - - --- 2022-01-07 Michal Suchánek New
[v3,4/6] module: strip the signature marker in the verification function. KEXEC_SIG with appended signature - - - --- 2022-01-07 Michal Suchánek New
[v3,5/6] module: Use key_being_used_for for log messages in verify_appended_signature KEXEC_SIG with appended signature - - - --- 2022-01-07 Michal Suchánek New
[v3,6/6] module: Move duplicate mod_check_sig users code to mod_parse_sig KEXEC_SIG with appended signature - - - --- 2022-01-07 Michal Suchánek New
[v2,1/6] ima: rename IMA_ACTION_FLAGS to IMA_NONACTION_FLAGS ima: support fs-verity digests and signatures - - - --- 2022-01-09 Mimi Zohar New
[v2,2/6] fs-verity: define a function to return the integrity protected file digest ima: support fs-verity digests and signatures 1 - - --- 2022-01-09 Mimi Zohar New
[v2,3/6] ima: define a new template field 'd-type' and a new template 'ima-ngv2' ima: support fs-verity digests and signatures - - - --- 2022-01-09 Mimi Zohar New
[v2,4/6] ima: include fsverity's file digests in the IMA measurement list ima: support fs-verity digests and signatures - - - --- 2022-01-09 Mimi Zohar New
[v2,5/6] ima: support fs-verity file digest based signatures ima: support fs-verity digests and signatures - - - --- 2022-01-09 Mimi Zohar New
[v2,6/6] fsverity: update the documentation ima: support fs-verity digests and signatures - - - --- 2022-01-09 Mimi Zohar New
[v4,1/6] s390/kexec_file: Don't opencode appended signature check. KEXEC_SIG with appended signature 1 1 - --- 2022-01-10 Michal Suchánek New
[v4,2/6] powerpc/kexec_file: Add KEXEC_SIG support. KEXEC_SIG with appended signature - - - --- 2022-01-10 Michal Suchánek New
[v4,3/6] kexec_file: Don't opencode appended signature verification. KEXEC_SIG with appended signature - - - --- 2022-01-10 Michal Suchánek New
[v4,4/6] module: strip the signature marker in the verification function. KEXEC_SIG with appended signature - - - --- 2022-01-10 Michal Suchánek New
[v4,5/6] module: Use key_being_used_for for log messages in verify_appended_signature KEXEC_SIG with appended signature - - - --- 2022-01-10 Michal Suchánek New
[v4,6/6] module: Move duplicate mod_check_sig users code to mod_parse_sig KEXEC_SIG with appended signature - - - --- 2022-01-10 Michal Suchánek New
[GIT,PULL] integrity subsystem updates for v5.17 [GIT,PULL] integrity subsystem updates for v5.17 - - - --- 2022-01-10 Mimi Zohar New
[GIT,PULL] TPM DEVICE DRIVER updates for v5.17 (fixed) [GIT,PULL] TPM DEVICE DRIVER updates for v5.17 (fixed) - - - --- 2022-01-11 Jarkko Sakkinen New
[v3,1/2] tpm: Fix error handling in async work [v3,1/2] tpm: Fix error handling in async work - - 1 --- 2022-01-11 Tadeusz Struk New
[v2,2/2] selftests: tpm: add async space test with noneexisting handle [v3,1/2] tpm: Fix error handling in async work - - - --- 2022-01-11 Tadeusz Struk New
[v5,1/6] s390/kexec_file: Don't opencode appended signature check. KEXEC_SIG with appended signature 1 - - --- 2022-01-11 Michal Suchánek New
[v5,2/6] powerpc/kexec_file: Add KEXEC_SIG support. KEXEC_SIG with appended signature 1 - - --- 2022-01-11 Michal Suchánek New
[v5,3/6] kexec_file: Don't opencode appended signature verification. KEXEC_SIG with appended signature - 1 - --- 2022-01-11 Michal Suchánek New
[v5,4/6] module: strip the signature marker in the verification function. KEXEC_SIG with appended signature - 1 - --- 2022-01-11 Michal Suchánek New
[v5,5/6] module: Use key_being_used_for for log messages in verify_appended_signature KEXEC_SIG with appended signature 1 - - --- 2022-01-11 Michal Suchánek New
[v5,6/6] module: Move duplicate mod_check_sig users code to mod_parse_sig KEXEC_SIG with appended signature - 1 - --- 2022-01-11 Michal Suchánek New
[01/14] mpi: Introduce mpi_key_length() KEYS: Add support for PGP keys and signatures - - - --- 2022-01-11 Roberto Sassu New
[02/14] rsa: add parser of raw format KEYS: Add support for PGP keys and signatures - - - --- 2022-01-11 Roberto Sassu New
[03/14] PGPLIB: PGP definitions (RFC 4880) KEYS: Add support for PGP keys and signatures - - - --- 2022-01-11 Roberto Sassu New
[04/14] PGPLIB: Basic packet parser KEYS: Add support for PGP keys and signatures - - - --- 2022-01-11 Roberto Sassu New
[05/14] PGPLIB: Signature parser KEYS: Add support for PGP keys and signatures - - - --- 2022-01-11 Roberto Sassu New
[06/14] KEYS: PGP data parser KEYS: Add support for PGP keys and signatures - - - --- 2022-01-11 Roberto Sassu New
[07/14] KEYS: Provide PGP key description autogeneration KEYS: Add support for PGP keys and signatures - - - --- 2022-01-11 Roberto Sassu New
[08/14] KEYS: PGP-based public key signature verification KEYS: Add support for PGP keys and signatures - - - --- 2022-01-11 Roberto Sassu New
[09/14] KEYS: Retry asym key search with partial ID in restrict_link_by_signature() KEYS: Add support for PGP keys and signatures - - - --- 2022-01-11 Roberto Sassu New
[10/14] KEYS: Calculate key digest and get signature of the key KEYS: Add support for PGP keys and signatures - - - --- 2022-01-11 Roberto Sassu New
[11/14] verification: introduce verify_pgp_signature() KEYS: Add support for PGP keys and signatures - - - --- 2022-01-11 Roberto Sassu New
[12/14] PGP: Provide a key type for testing PGP signatures KEYS: Add support for PGP keys and signatures - - - --- 2022-01-11 Roberto Sassu New
[13/14] KEYS: Provide a function to load keys from a PGP keyring blob KEYS: Add support for PGP keys and signatures - - - --- 2022-01-11 Roberto Sassu New
[14/14] KEYS: Introduce load_pgp_public_keyring() KEYS: Add support for PGP keys and signatures - - - --- 2022-01-11 Roberto Sassu New
[v8,1/3] certs: export load_certificate_list() to be used outside certs/ integrity: support including firmware ".platform" keys at build time - 1 - --- 2022-01-11 Nayna Jain New
[v8,2/3] integrity: make integrity_keyring_from_id() non-static integrity: support including firmware ".platform" keys at build time - 1 - --- 2022-01-11 Nayna Jain New
[v8,3/3] integrity: support including firmware ".platform" keys at build time integrity: support including firmware ".platform" keys at build time - 1 - --- 2022-01-11 Nayna Jain New
tpm: vtpm_proxy: Avoid device-originated buffer overflow tpm: vtpm_proxy: Avoid device-originated buffer overflow - 1 - --- 2022-01-13 Kees Cook New
ima: fix reference leak in asymmetric_verify() ima: fix reference leak in asymmetric_verify() - 3 - --- 2022-01-13 Eric Biggers New
[v4,1/2] tpm: Fix error handling in async work [v4,1/2] tpm: Fix error handling in async work - 1 1 --- 2022-01-16 Tadeusz Struk New
[v3,2/2] selftests: tpm: add async space test with noneexisting handle [v4,1/2] tpm: Fix error handling in async work - 1 1 --- 2022-01-16 Tadeusz Struk New
MAINTAINERS: add missing "security/integrity" directory MAINTAINERS: add missing "security/integrity" directory - 1 - --- 2022-01-17 Mimi Zohar New
[v2] tpm: vtpm_proxy: Double-check to avoid buffer overflow [v2] tpm: vtpm_proxy: Double-check to avoid buffer overflow - 1 - --- 2022-01-18 Kees Cook New
[v2,1/1] ci: Replace groovy -> impish [v2,1/1] ci: Replace groovy -> impish - - - --- 2022-01-19 Petr Vorel New
[v2,1/1] ci: Replace groovy -> impish [v2,1/1] ci: Replace groovy -> impish - - - --- 2022-01-19 Petr Vorel New
[v3] tpm: vtpm_proxy: Check length to avoid compiler warning [v3] tpm: vtpm_proxy: Check length to avoid compiler warning - 1 - --- 2022-01-19 Kees Cook New
[next] tpm: xen-tpmfront: Use struct_size() helper [next] tpm: xen-tpmfront: Use struct_size() helper - 1 - --- 2022-01-19 Gustavo A. R. Silva New
[v3,1/1] ci/travis: Replace groovy -> impish [v3,1/1] ci/travis: Replace groovy -> impish - - - --- 2022-01-21 Petr Vorel New
[3/5] tpm: st33zp24: Make st33zp24_remove() a void function spi: make remove callback a void function - - - --- 2022-01-23 Uwe Kleine-König New
[RESEND] Documentation: added order requirement for ima_hash= [RESEND] Documentation: added order requirement for ima_hash= - 1 - --- 2022-01-25 GUO Zihua New
[v9,01/23] ima: Remove ima_policy file before directory ima: Namespace IMA with audit support in IMA-ns 1 - - --- 2022-01-25 Stefan Berger New
[v9,02/23] ima: Do not print policy rule with inactive LSM labels ima: Namespace IMA with audit support in IMA-ns - - - --- 2022-01-25 Stefan Berger New
[v9,03/23] securityfs: rework dentry creation ima: Namespace IMA with audit support in IMA-ns - - - --- 2022-01-25 Stefan Berger New
[v9,04/23] securityfs: Extend securityfs with namespacing support ima: Namespace IMA with audit support in IMA-ns - 1 - --- 2022-01-25 Stefan Berger New
[v9,05/23] ima: Define ima_namespace struct and start moving variables into it ima: Namespace IMA with audit support in IMA-ns 1 - - --- 2022-01-25 Stefan Berger New
[v9,06/23] ima: Move arch_policy_entry into ima_namespace ima: Namespace IMA with audit support in IMA-ns 1 1 - --- 2022-01-25 Stefan Berger New
[v9,07/23] ima: Move ima_htable into ima_namespace ima: Namespace IMA with audit support in IMA-ns 1 - - --- 2022-01-25 Stefan Berger New
[v9,08/23] ima: Move measurement list related variables into ima_namespace ima: Namespace IMA with audit support in IMA-ns - - - --- 2022-01-25 Stefan Berger New
[v9,09/23] ima: Move some IMA policy and filesystem related variables into ima_namespace ima: Namespace IMA with audit support in IMA-ns 1 - - --- 2022-01-25 Stefan Berger New
[v9,10/23] ima: Move IMA securityfs files into ima_namespace or onto stack ima: Namespace IMA with audit support in IMA-ns 1 - - --- 2022-01-25 Stefan Berger New
[v9,11/23] ima: Move ima_lsm_policy_notifier into ima_namespace ima: Namespace IMA with audit support in IMA-ns - - - --- 2022-01-25 Stefan Berger New
[v9,12/23] ima: Define mac_admin_ns_capable() as a wrapper for ns_capable() ima: Namespace IMA with audit support in IMA-ns - - - --- 2022-01-25 Stefan Berger New
[v9,13/23] ima: Only accept AUDIT rules for non-init_ima_ns namespaces for now ima: Namespace IMA with audit support in IMA-ns 1 - - --- 2022-01-25 Stefan Berger New
[v9,14/23] userns: Add pointer to ima_namespace to user_namespace ima: Namespace IMA with audit support in IMA-ns 1 - - --- 2022-01-25 Stefan Berger New
[v9,15/23] ima: Implement hierarchical processing of file accesses ima: Namespace IMA with audit support in IMA-ns - - - --- 2022-01-25 Stefan Berger New
[v9,16/23] ima: Implement ima_free_policy_rules() for freeing of an ima_namespace ima: Namespace IMA with audit support in IMA-ns - - - --- 2022-01-25 Stefan Berger New
[v9,17/23] ima: Add functions for creating and freeing of an ima_namespace ima: Namespace IMA with audit support in IMA-ns 1 - - --- 2022-01-25 Stefan Berger New
[v9,18/23] integrity/ima: Define ns_status for storing namespaced iint data ima: Namespace IMA with audit support in IMA-ns - - - --- 2022-01-25 Stefan Berger New
[v9,19/23] ima: Namespace audit status flags ima: Namespace IMA with audit support in IMA-ns - - - --- 2022-01-25 Stefan Berger New
[v9,20/23] ima: Setup securityfs for IMA namespace ima: Namespace IMA with audit support in IMA-ns 1 - - --- 2022-01-25 Stefan Berger New
[v9,21/23] ima: Introduce securityfs file to activate an IMA namespace ima: Namespace IMA with audit support in IMA-ns - - - --- 2022-01-25 Stefan Berger New
[v9,22/23] ima: Show owning user namespace's uid and gid when displaying policy ima: Namespace IMA with audit support in IMA-ns 1 - - --- 2022-01-25 Stefan Berger New
[v9,23/23] ima: Enable IMA namespaces ima: Namespace IMA with audit support in IMA-ns - - - --- 2022-01-25 Stefan Berger New
[v3,1/8] ima: rename IMA_ACTION_FLAGS to IMA_NONACTION_FLAGS ima: support fs-verity digests and signatures - - - --- 2022-01-26 Mimi Zohar New
[v3,2/8] ima: define ima_max_digest_data struct without a flexible array variable ima: support fs-verity digests and signatures - - - --- 2022-01-26 Mimi Zohar New
[v3,3/8] fs-verity: define a function to return the integrity protected file digest ima: support fs-verity digests and signatures 1 - - --- 2022-01-26 Mimi Zohar New
[v3,4/8] ima: define a new template field 'd-type' and a new template 'ima-ngv2' ima: support fs-verity digests and signatures - - - --- 2022-01-26 Mimi Zohar New
[v3,5/8] ima: include fsverity's file digests in the IMA measurement list ima: support fs-verity digests and signatures - - - --- 2022-01-26 Mimi Zohar New
[v3,6/8] ima: define signature version 3 ima: support fs-verity digests and signatures - - - --- 2022-01-26 Mimi Zohar New
[v3,7/8] ima: support fs-verity file digest based version 3 signatures ima: support fs-verity digests and signatures - - - --- 2022-01-26 Mimi Zohar New
[v3,8/8] fsverity: update the documentation ima: support fs-verity digests and signatures - - - --- 2022-01-26 Mimi Zohar New
[ima-evm-utils] Signing fs-verity file digest based on existing evmctl commands [ima-evm-utils] Signing fs-verity file digest based on existing evmctl commands - - - --- 2022-01-26 Mimi Zohar New
KEYS: trusted: Avoid calling null function trusted_key_exit KEYS: trusted: Avoid calling null function trusted_key_exit - - - --- 2022-01-26 Dave Kleikamp New
[v2] KEYS: trusted: Avoid calling null function trusted_key_exit [v2] KEYS: trusted: Avoid calling null function trusted_key_exit - 1 - --- 2022-01-26 Dave Kleikamp New
[v4] integrity: check the return value of audit_log_start() [v4] integrity: check the return value of audit_log_start() - 1 - --- 2022-01-27 Xiaoke Wang New
« 1 2 3 46 7 »