linux/ima at 1624dc0086056c3a35fd34b0235bb1eb88c1c4d5 - linux - MyRedstone

Kernel/linux

mirror of https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git synced 2025-01-18 19:05:39 +00:00

History

THOBY Simon 1624dc0086 IMA: add support to restrict the hash algorithms used for file appraisal

The kernel accepts any hash algorithm as a value for the security.ima
xattr. Users may wish to restrict the accepted algorithms to only
support strong cryptographic ones.

Provide the plumbing to restrict the permitted set of hash algorithms
used for verifying file hashes and signatures stored in security.ima
xattr.

Signed-off-by: THOBY Simon <Simon.THOBY@viveris.fr>
Reviewed-by: Lakshmi Ramasubramanian <nramas@linux.microsoft.com>
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>

2021-08-16 17:30:41 -04:00

..

ima_api.c

IMA: add support to restrict the hash algorithms used for file appraisal

2021-08-16 17:30:41 -04:00

ima_appraise.c

IMA: add support to restrict the hash algorithms used for file appraisal

2021-08-16 17:30:41 -04:00

ima_asymmetric_keys.c

ima: Add digest and digest_len params to the functions to measure a buffer

2021-07-23 09:27:02 -04:00

ima_crypto.c

ima/evm: Fix type mismatch

2021-06-08 16:29:10 -04:00

ima_efi.c

ima: generalize x86/EFI arch glue for other EFI architectures

2020-11-06 07:40:42 +01:00

ima_fs.c

ima/evm: Fix type mismatch

2021-06-08 16:29:10 -04:00

ima_init.c

ima: Add digest and digest_len params to the functions to measure a buffer

2021-07-23 09:27:02 -04:00

ima_kexec.c

ima: Fix warning: no previous prototype for function 'ima_add_kexec_buffer'

2021-06-11 11:27:03 -04:00

ima_main.c

IMA: add support to restrict the hash algorithms used for file appraisal

2021-08-16 17:30:41 -04:00

ima_modsig.c

ima: Move comprehensive rule validation checks out of the token parser

2020-07-20 13:28:15 -04:00

ima_mok.c

IMA: remove -Wmissing-prototypes warning

2021-07-23 08:05:06 -04:00

ima_policy.c

IMA: add support to restrict the hash algorithms used for file appraisal

2021-08-16 17:30:41 -04:00

ima_queue_keys.c

ima: Add digest and digest_len params to the functions to measure a buffer

2021-07-23 09:27:02 -04:00

ima_queue.c

IMA: support for duplicate measurement records

2021-06-11 12:54:13 -04:00

ima_template_lib.c

ima: Fix fall-through warning for Clang

2021-06-08 23:33:48 -04:00

ima_template_lib.h

ima: Define new template fields xattrnames, xattrlengths and xattrvalues

2021-06-02 18:56:13 -04:00

ima_template.c

ima: Set correct casting types

2021-06-08 16:29:10 -04:00

ima.h

IMA: add support to restrict the hash algorithms used for file appraisal

2021-08-16 17:30:41 -04:00

Kconfig

IMA: remove the dependency on CRYPTO_MD5

2021-08-16 17:29:10 -04:00

Makefile

ima: generalize x86/EFI arch glue for other EFI architectures

2020-11-06 07:40:42 +01:00