aboutsummaryrefslogtreecommitdiffstats
path: root/security/integrity/ima/ima_policy.c (follow)
AgeCommit message (Expand)AuthorFilesLines
2020-01-28Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/git/zohar/linux-integrityLinus Torvalds1-24/+141
2020-01-23IMA: Call workqueue functions to measure queued keysLakshmi Ramasubramanian1-0/+3
2020-01-22IMA: pre-allocate buffer to hold keyrings stringLakshmi Ramasubramanian1-8/+30
2020-01-22ima: ima/lsm policy rule loading logic bug fixesJanne Karhunen1-18/+26
2020-01-22ima: Add a space after printing LSM rules for readabilityClay Chang1-0/+1
2019-12-12IMA: Read keyrings= option from the IMA policyLakshmi Ramasubramanian1-1/+28
2019-12-12IMA: Add support to limit measuring keysLakshmi Ramasubramanian1-4/+58
2019-12-12IMA: Add KEY_CHECK func to measure keysLakshmi Ramasubramanian1-1/+3
2019-12-09treewide: Use sizeof_field() macroPankaj Bharadiya1-2/+2
2019-11-12ima: Check against blacklisted hashes for files with modsigNayna Jain1-2/+10
2019-09-28Merge branch 'next-lockdown' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-securityLinus Torvalds1-0/+50
2019-08-19kexec: Allow kexec_file() with appropriate IMA policy when locked downMatthew Garrett1-0/+50
2019-08-05ima: Define ima-modsig templateThiago Jung Bauermann1-0/+41
2019-08-05ima: Implement support for module-style appended signaturesThiago Jung Bauermann1-6/+6
2019-08-05ima: Add modsig appraise_type option for module-style appended signaturesThiago Jung Bauermann1-2/+10
2019-08-01ima: initialize the "template" field with the default templateMimi Zohar1-2/+4
2019-07-08Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/git/zohar/linux-integrityLinus Torvalds1-23/+140
2019-06-24IMA: Define a new hook to measure the kexec boot command line argumentsPrakhar Srivastava1-0/+7
2019-06-19IMA: support for per policy rule template formatsMatthew Garrett1-2/+36
2019-06-14ima: use the lsm policy update notifierJanne Karhunen1-20/+96
2019-06-14ima: Make arch_policy_entry staticYueHaibing1-1/+1
2019-06-05treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 441Thomas Gleixner1-5/+1
2019-05-29ima: show rules with IMA_INMASK correctlyRoberto Sassu1-9/+12
2019-05-19ima: fix wrong signed policy requirement when not appraisingPetr Vorel1-3/+4
2019-03-07Merge tag 'audit-pr-20190305' of git://git.kernel.org/pub/scm/linux/kernel/git/pcmoore/auditLinus Torvalds1-4/+2
2019-02-22security: mark expected switch fall-throughs and add a missing breakGustavo A. R. Silva1-0/+4
2019-01-31audit: remove unused actx param from audit_rule_matchRichard Guy Briggs1-4/+2
2019-01-02Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-securityLinus Torvalds1-43/+128
2018-12-27Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-securityLinus Torvalds1-1/+1
2018-12-17ima: cleanup the match_token policy codeMimi Zohar1-5/+5
2018-12-17Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/git/zohar/linux-integrity into next-integrityJames Morris1-43/+128
2018-12-12security: audit and remove any unnecessary uses of module.hPaul Gortmaker1-1/+1
2018-12-11ima: don't measure/appraise files on efivarfsMimi Zohar1-1/+3
2018-12-11ima: add support for arch specific policiesNayna Jain1-2/+70
2018-12-11ima: refactor ima_init_policy()Nayna Jain1-41/+56
2018-07-18ima: Differentiate auditing policy rules from "audit" actionsStefan Berger1-2/+2
2018-07-18ima: Do not audit if CONFIG_INTEGRITY_AUDIT is not setStefan Berger1-1/+5
2018-07-18ima: Use audit_log_format() rather than audit_log_string()Stefan Berger1-2/+1
2018-07-18ima: Call audit_log_string() rather than logging it untrustedStefan Berger1-1/+1
2018-07-16ima: add build time policyMimi Zohar1-3/+43
2018-07-16ima: based on policy require signed kexec kernel imagesMimi Zohar1-0/+2
2018-05-31IMA: use list_splice_tail_init_rcu() instead of its open coded variantPetko Manolov1-15/+2
2018-05-22ima: fix updating the ima_appraise flagMimi Zohar1-9/+19
2018-05-22ima: define a new policy condition based on the filesystem nameMimi Zohar1-1/+24
2018-03-25ima: Add smackfs to the default appraise/measure listMartin Townsend1-0/+2
2018-03-23ima: fail signature verification based on policyMimi Zohar1-0/+5
2018-03-23ima: clear IMA_HASHMimi Zohar1-1/+1
2018-03-23IMA: Support using new creds in appraisal policyMatthew Garrett1-8/+15
2018-01-18ima/policy: fix parsing of fsuuidMike Rapoport1-1/+1
2017-12-18ima: support new "hash" and "dont_hash" policy actionsMimi Zohar1-2/+28