messages from 2024-02-05 14:15:40 to 2024-02-15 06:14:19 UTC [more...]
[RFC PATCH v2 0/4] tsm: Runtime measurement registers ABI
2024-02-15 6:14 UTC (18+ messages)
[PATCH v5 0/8] ima: kexec: measure events between kexec load and execute
2024-02-15 6:13 UTC (15+ messages)
` [PATCH v5 1/8] ima: define and call ima_alloc_kexec_file_buf
` [PATCH v5 2/8] kexec: define functions to map and unmap segments
` [PATCH v5 3/8] ima: kexec: skip IMA segment validation after kexec soft reboot
` [PATCH v5 4/8] ima: kexec: define functions to copy IMA log at soft boot
` [PATCH v5 5/8] ima: kexec: move IMA log copy from kexec load to execute
` [PATCH v5 6/8] ima: suspend measurements during buffer copy at kexec execute
` [PATCH v5 7/8] ima: make the kexec extra memory configurable
` [PATCH v5 8/8] ima: measure kexec load and exec events as critical data
[PATCH v8 00/15] x86: Trenchboot secure dynamic launch Linux kernel support
2024-02-14 22:18 UTC (16+ messages)
` [PATCH v8 01/15] x86/boot: Place kernel_info at a fixed offset
` [PATCH v8 02/15] Documentation/x86: Secure Launch kernel documentation
` [PATCH v8 03/15] x86: Secure Launch Kconfig
` [PATCH v8 04/15] x86: Secure Launch Resource Table header file
` [PATCH v8 05/15] x86: Secure Launch main "
` [PATCH v8 06/15] x86: Add early SHA support for Secure Launch early measurements
` [PATCH v8 07/15] x86: Secure Launch kernel early boot stub
` [PATCH v8 08/15] x86: Secure Launch kernel late "
` [PATCH v8 09/15] x86: Secure Launch SMP bringup support
` [PATCH v8 10/15] kexec: Secure Launch kexec SEXIT support
` [PATCH v8 11/15] reboot: Secure Launch SEXIT support on reboot paths
` [PATCH v8 12/15] tpm: Add ability to set the preferred locality the TPM chip uses
` [PATCH v8 13/15] tpm: Add sysfs interface to allow setting and querying the preferred locality
` [PATCH v8 14/15] x86: Secure Launch late initcall platform module
` [PATCH v8 15/15] x86: EFI stub DRTM launch support for Secure Launch
[PATCH v9 00/25] security: Move IMA and EVM to the LSM infrastructure
2024-02-14 21:21 UTC (68+ messages)
` [PATCH v9 10/25] security: Introduce inode_post_setattr hook
` [PATCH v9 11/25] security: Introduce inode_post_removexattr hook
` [PATCH v9 12/25] security: Introduce file_post_open hook
` [PATCH v9 13/25] security: Introduce file_release hook
` [PATCH v9 14/25] security: Introduce path_post_mknod hook
` [PATCH v9 15/25] security: Introduce inode_post_create_tmpfile hook
` [PATCH v9 16/25] security: Introduce inode_post_set_acl hook
` [PATCH v9 17/25] security: Introduce inode_post_remove_acl hook
` [PATCH v9 19/25] integrity: Move integrity_kernel_module_request() to IMA
` [PATCH v9 20/25] ima: Move to LSM infrastructure
` [PATCH v9 21/25] ima: Move IMA-Appraisal "
` [PATCH v9 22/25] evm: Move "
` [PATCH v9 23/25] evm: Make it independent from 'integrity' LSM
` [PATCH v9 24/25] ima: "
` [PATCH v9 25/25] integrity: Remove LSM
` [PATCH v9 0/25] security: Move IMA and EVM to the LSM infrastructure
init_tis() takes 50 ms on Dell XPS 13 9360 – almost 10 % of whole time until initrd
2024-02-14 15:10 UTC
[RFC][PATCH 0/8] ima: Integrate with digest_cache LSM
2024-02-14 14:35 UTC (9+ messages)
` [RFC][PATCH 1/8] ima: Introduce hook DIGEST_LIST_CHECK
` [RFC][PATCH 2/8] ima: Nest iint mutex for DIGEST_LIST_CHECK hook
` [RFC][PATCH 3/8] ima: Add digest_cache policy keyword
` [RFC][PATCH 4/8] ima: Add digest_cache_measure and digest_cache_appraise boot-time policies
` [RFC][PATCH 5/8] ima: Record IMA verification result of digest lists in digest cache
` [RFC][PATCH 6/8] ima: Use digest cache for measurement
` [RFC][PATCH 7/8] ima: Use digest cache for appraisal
` [RFC][PATCH 8/8] ima: Detect if digest cache changed since last measurement/appraisal
[PATCH v7 00/21] add integrity and security to TPM2 transactions
2024-02-14 0:13 UTC (23+ messages)
` [PATCH v7 01/21] tpm: Remove unused tpm_buf_tag()
` [PATCH v7 02/21] tpm: Remove tpm_send()
` [PATCH v7 03/21] tpm: Move buffer handling from static inlines to real functions
` [PATCH v7 04/21] tpm: Update struct tpm_buf documentation comments
` [PATCH v7 05/21] tpm: Store the length of the tpm_buf data separately
` [PATCH v7 06/21] tpm: TPM2B formatted buffers
` [PATCH v7 07/21] tpm: Add tpm_buf_read_{u8,u16,u32}
` [PATCH v7 08/21] KEYS: trusted: tpm2: Use struct tpm_buf for sized buffers
` [PATCH v7 09/21] crypto: lib - implement library version of AES in CFB mode
` [PATCH v7 10/21] tpm: add buffer function to point to returned parameters
` [PATCH v7 11/21] tpm: export the context save and load commands
` [PATCH v7 12/21] tpm: Add NULL primary creation
` [PATCH v7 13/21] tpm: Add HMAC session start and end functions
` [PATCH v7 14/21] tpm: Add HMAC session name/handle append
` [PATCH v7 15/21] tpm: Add the rest of the session HMAC API
` [PATCH v7 16/21] tpm: add hmac checks to tpm2_pcr_extend()
` [PATCH v7 17/21] tpm: add session encryption protection to tpm2_get_random()
` [PATCH v7 18/21] KEYS: trusted: Add session encryption protection to the seal/unseal path
` [PATCH v7 19/21] tpm: add the null key name as a sysfs export
` [PATCH v7 20/21] Documentation: add tpm-security.rst
` [PATCH v7 21/21] tpm: disable the TPM if NULL name changes
[PATCH v2 0/9] evm: Support signatures on stacked filesystem
2024-02-13 23:14 UTC (21+ messages)
` [PATCH v2 1/9] ima: Rename backing_inode to real_inode
` [PATCH v2 2/9] security: allow finer granularity in permitting copy-up of security xattrs
` [PATCH v2 3/9] evm: Implement per signature type decision in security_inode_copy_up_xattr
` [PATCH v2 4/9] ima: Reset EVM status upon detecting changes to the real file
` [PATCH v2 5/9] evm: Use the inode holding the metadata to calculate metadata hash
` [PATCH v2 6/9] evm: Enforce signatures on unsupported filesystem for EVM_INIT_X509
` [PATCH v2 7/9] fs: Rename SB_I_EVM_UNSUPPORTED to SB_I_EVM_HMAC_UNSUPPORTED
` [PATCH v2 8/9] evm: Rename is_unsupported_fs to is_unsupported_hmac_fs
` [PATCH v2 9/9] ima: Record i_version of real_inode for change detection
[PATCH v1 ima-evm-utils 0/6] Deprecate sign_hash and add provider support
2024-02-13 17:39 UTC (8+ messages)
` [PATCH v1 ima-evm-utils 1/6] headers: Remove usage of CONFIG_IMA_EVM_ENGINE from public header
` [PATCH v1 ima-evm-utils 2/6] Pass ENGINE and keyid through to function using them
` [PATCH v1 ima-evm-utils 3/6] evmctl: Replace deprecated sign_hash with imaevm_signhash
` [PATCH v1 ima-evm-utils 4/6] Add support for OpenSSL provider to the library and evmctl
` [PATCH v1 ima-evm-utils 5/6] tests: Add pkcs11 test using provider
` [PATCH v1 ima-evm-utils 6/6] ci: Install pkcs11-provider where available
[PATCH v5 0/6] DCP as trusted keys backend
2024-02-13 9:59 UTC (3+ messages)
[PATCH 1/3] tpm: protect against locality counter underflow
2024-02-12 20:05 UTC (4+ messages)
[PATCH v2 00/33] spi: get rid of some legacy macros
2024-02-12 15:33 UTC (2+ messages)
` (subset) "
[PATCH v3 00/13] security: digest_cache LSM
2024-02-12 8:02 UTC (16+ messages)
` [PATCH v3 01/13] lib: Add TLV parser
` [PATCH v3 02/13] security: Introduce the digest_cache LSM
` [PATCH v3 03/13] digest_cache: Add securityfs interface
` [PATCH v3 04/13] digest_cache: Add hash tables and operations
` [PATCH v3 05/13] digest_cache: Populate the digest cache from a digest list
` [PATCH v3 06/13] digest_cache: Parse tlv digest lists
` [PATCH v3 07/13] digest_cache: Parse rpm "
` [PATCH v3 08/13] digest_cache: Add management of verification data
` [PATCH v3 09/13] digest_cache: Add support for directories
` [PATCH v3 10/13] digest cache: Prefetch digest lists if requested
` [PATCH v3 11/13] digest_cache: Reset digest cache on file/directory change
` [PATCH v3 12/13] selftests/digest_cache: Add selftests for digest_cache LSM
` [PATCH v3 13/13] docs: Add documentation of the "
[PATCH] KEYS: encrypted: Add check for strsep
2024-02-12 5:11 UTC (12+ messages)
[PATCH v3 00/17] kexec: Allow preservation of ftrace buffers
2024-02-09 16:59 UTC (3+ messages)
[PATCH v3 00/32] spi: get rid of some legacy macros
2024-02-08 21:21 UTC (3+ messages)
` [PATCH v3 26/32] tpm_tis_spi: Follow renaming of SPI "master" to "controller"
[PATCH v9 18/25] security: Introduce key_post_create_or_update hook
2024-02-08 3:18 UTC (2+ messages)
[PATCH v9 08/25] evm: Align evm_inode_post_setxattr() definition with LSM infrastructure
2024-02-08 3:18 UTC (2+ messages)
` [PATCH v9 8/25] "
[PATCH v9 09/25] security: Align inode_setattr hook definition with EVM
2024-02-08 3:18 UTC (2+ messages)
` [PATCH v9 9/25] "
[PATCH v9 07/25] evm: Align evm_inode_setxattr() definition with LSM infrastructure
2024-02-08 3:18 UTC (2+ messages)
` [PATCH v9 7/25] "
[PATCH v9 06/25] evm: Align evm_inode_post_setattr() definition with LSM infrastructure
2024-02-08 3:18 UTC (2+ messages)
` [PATCH v9 6/25] "
[PATCH v9 04/25] ima: Align ima_inode_removexattr() definition with LSM infrastructure
2024-02-08 3:18 UTC (2+ messages)
` [PATCH v9 4/25] "
[PATCH v9 05/25] ima: Align ima_post_read_file() definition with LSM infrastructure
2024-02-08 3:18 UTC (2+ messages)
` [PATCH v9 5/25] "
[PATCH v9 03/25] ima: Align ima_inode_setxattr() definition with LSM infrastructure
2024-02-08 3:18 UTC (2+ messages)
` [PATCH v9 3/25] "
[PATCH v9 02/25] ima: Align ima_file_mprotect() definition with LSM infrastructure
2024-02-08 3:18 UTC (2+ messages)
` [PATCH v9 2/25] "
[PATCH v9 01/25] ima: Align ima_inode_post_setattr() definition with LSM infrastructure
2024-02-08 3:18 UTC (2+ messages)
` [PATCH v9 1/25] "
[RFC PATCH v12 15/20] ipe: add support for dm-verity as a trust provider
2024-02-06 21:53 UTC (4+ messages)
` [PATCH RFC "
[PATCH 0/2] Decomplicate file_dentry()
2024-02-06 16:02 UTC (7+ messages)
` [PATCH 2/2] fs: remove the inode argument to ->d_real() method
[RFC PATCH v12 08/20] ipe: add userspace interface
2024-02-05 23:21 UTC (5+ messages)
` [PATCH RFC v12 8/20] "
[RFC PATCH v12 06/20] ipe: introduce 'boot_verified' as a trust provider
2024-02-05 22:39 UTC (3+ messages)
` [PATCH RFC v12 6/20] "
[RFC PATCH v12 05/20] initramfs|security: Add security hook to initramfs unpack
2024-02-05 21:18 UTC (3+ messages)
` [PATCH RFC v12 5/20] "
page: next (older) | prev (newer) | latest
- recent:[subjects (threaded)|topics (new)|topics (active)]
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).