git.baikalelectronics.ru Git - kernel.git/commit

Merge tag 'integrity-v5.10' of git://git.kernel.org/pub/scm/linux/kernel/git/zohar/linux-integrity

Pull integrity updates from Mimi Zohar:
"Continuing IMA policy rule cleanup and validation in particular for
  measuring keys, adding/removing/updating informational and error
  messages (e.g. "ima_appraise" boot command line option), and other bug
  fixes (e.g. minimal data size validation before use, return code and
  NULL pointer checking)"

* tag 'integrity-v5.10' of git://git.kernel.org/pub/scm/linux/kernel/git/zohar/linux-integrity:
  ima: Fix NULL pointer dereference in ima_file_hash
  evm: Check size of security.evm before using it
  ima: Remove semicolon at the end of ima_get_binary_runtime_size()
  ima: Don't ignore errors from crypto_shash_update()
  ima: Use kmemdup rather than kmalloc+memcpy
  integrity: include keyring name for unknown key request
  ima: limit secure boot feedback scope for appraise
  integrity: invalid kernel parameters feedback
  ima: add check for enforced appraise option
  integrity: Use current_uid() in integrity_audit_message()
  ima: Fail rule parsing when asymmetric key measurement isn't supportable
  ima: Pre-parse the list of keyrings in a KEY_CHECK rule

author	Linus Torvalds <torvalds@linux-foundation.org>
	Thu, 15 Oct 2020 22:58:18 +0000 (15:58 -0700)
committer	Linus Torvalds <torvalds@linux-foundation.org>
	Thu, 15 Oct 2020 22:58:18 +0000 (15:58 -0700)
commit	e6efd8b840c08a8a581bc17e09e7bbb98ae00fe2
tree	0db7a077c3ae35dd99a89f0128b760951d95db72	tree \| snapshot
parent	ab79c733d31035c5ac71b5deee0018a5579ac300	commit \| diff
parent	5080573ecc7175e0f0361b1ccee15956914ba6c6	commit \| diff

security/integrity/digsig_asymmetric.c	diff1 \|	diff2 \|	blob \| history
security/integrity/ima/ima_appraise.c	diff1 \|	diff2 \|	blob \| history
security/integrity/ima/ima_main.c	diff1 \|	diff2 \|	blob \| history
security/integrity/ima/ima_policy.c	diff1 \|	diff2 \|	blob \| history