Linux Kernel https://git.stealer.net/cgit.cgi/user/sven/linux.git/atom?h=v3.2 2011-12-20T15:50:08Z 2011-12-20T15:50:08Z Dmitry Kasatkin dmitry.kasatkin@intel.com 2011-12-05T11:17:42Z urn:sha1:97426f985729573cea06e82e271cc3929f1f5f8e There is a small chance of racing during tfm allocation. This patch fixes it. Signed-off-by: Dmitry Kasatkin <dmitry.kasatkin@intel.com> Acked-by: Mimi Zohar <zohar@us.ibm.com> Signed-off-by: James Morris <jmorris@namei.org> 2011-12-20T15:45:45Z Dmitry Kasatkin dmitry.kasatkin@intel.com 2011-12-05T11:17:41Z urn:sha1:d21b59451886cb82448302f8d6f9ac87c3bd56cf On multi-core systems, setting of the key before every caclculation, causes invalid HMAC calculation for other tfm users, because internal state (ipad, opad) can be invalid before set key call returns. It needs to be set only once during initialization. Signed-off-by: Dmitry Kasatkin <dmitry.kasatkin@intel.com> Acked-by: Mimi Zohar <zohar@us.ibm.com> Signed-off-by: James Morris <jmorris@namei.org> 2011-11-02T16:45:39Z Linus Torvalds torvalds@linux-foundation.org 2011-11-02T16:45:39Z urn:sha1:de0a5345a55b8dd5a4695181275df0e691176830 * 'for-linus' of git://github.com/richardweinberger/linux: (90 commits) um: fix ubd cow size um: Fix kmalloc argument order in um/vdso/vma.c um: switch to use of drivers/Kconfig UserModeLinux-HOWTO.txt: fix a typo UserModeLinux-HOWTO.txt: remove ^H characters um: we need sys/user.h only on i386 um: merge delay_{32,64}.c um: distribute exports to where exported stuff is defined um: kill system-um.h um: generic ftrace.h will do... um: segment.h is x86-only and needed only there um: asm/pda.h is not needed anymore um: hw_irq.h can go generic as well um: switch to generic-y um: clean Kconfig up a bit um: a couple of missing dependencies... um: kill useless argument of free_chan() and free_one_chan() um: unify ptrace_user.h um: unify KSTK_... um: fix gcov build breakage ... 2011-11-02T13:15:41Z Al Viro viro@ftp.linux.org.uk 2011-08-18T19:11:59Z urn:sha1:3369465ed1a6a9aa9b885a6d7d8e074ecbd782da Signed-off-by: Al Viro <viro@zeniv.linux.org.uk> Signed-off-by: Richard Weinberger <richard@nod.at> 2011-09-14T19:24:52Z Dmitry Kasatkin dmitry.kasatkin@intel.com 2011-08-15T12:30:11Z urn:sha1:fb788d8b981fa55603873416882f8dcf835e7924 When allocating from slab, initialization is done the first time in init_once() and subsequently on free. Because evm_status was not re-initialized on free, evm_verify_hmac() skipped verifications. This patch re-initializes evm_status. Signed-off-by: Dmitry Kasatkin <dmitry.kasatkin@intel.com> Signed-off-by: Mimi Zohar <zohar@us.ibm.com> 2011-09-14T19:24:52Z Mimi Zohar zohar@linux.vnet.ibm.com 2011-08-22T13:14:18Z urn:sha1:566be59ab86c0e030b980645a580d683a015a483 Before permitting 'security.evm' to be updated, 'security.evm' must exist and be valid. In the case that there are no existing EVM protected xattrs, it is safe for posix acls to update the mode bits. To differentiate between no 'security.evm' xattr and no xattrs used to calculate 'security.evm', this patch defines INTEGRITY_NOXATTR. Signed-off-by: Mimi Zohar <zohar@us.ibm.com> 2011-09-14T19:24:51Z Mimi Zohar zohar@linux.vnet.ibm.com 2011-08-18T22:07:44Z urn:sha1:bf6d0f5dcda17df3cc5577e203d0f8ea1c2ad6aa The posix xattr acls are 'system' prefixed, which normally would not affect security.evm. An interesting side affect of writing posix xattr acls is their modifying of the i_mode, which is included in security.evm. This patch updates security.evm when posix xattr acls are written. Signed-off-by: Mimi Zohar <zohar@us.ibm.com> 2011-09-14T19:24:51Z Mimi Zohar zohar@linux.vnet.ibm.com 2011-08-11T05:22:30Z urn:sha1:a924ce0b35875ef9512135b46a32f4150fd700b2 evm_protect_xattr unnecessarily validates the current security.evm integrity, before updating non-evm protected extended attributes and other file metadata. This patch limits validating the current security.evm integrity to evm protected metadata. Signed-off-by: Mimi Zohar <zohar@us.ibm.com> 2011-09-14T19:24:49Z Mimi Zohar zohar@linux.vnet.ibm.com 2011-08-28T12:57:11Z urn:sha1:1d714057ef8f6348eba7b28ace6d307513e57cef All tristates selected by EVM(boolean) are forced to be builtin, except in the TCG_TPM(tristate) dependency case. Arnaud Lacombe summarizes the Kconfig bug as, "So it would seem direct dependency state influence the state of reverse dependencies.." For a detailed explanation, refer to Arnaud Lacombe's posting http://lkml.org/lkml/2011/8/23/498. With the "encrypted-keys: remove trusted-keys dependency" patch, EVM can now be built without a dependency on TCG_TPM. The trusted-keys dependency requires trusted-keys to either be builtin or not selected. This dependency will prevent the boolean/tristate mismatch from occuring. Reported-by: Stephen Rothwell <sfr@canb.auug.org.au>, Randy Dunlap <rdunlap@xenotimenet> Signed-off-by: Mimi Zohar <zohar@us.ibm.com> 2011-09-09T23:56:30Z James Morris jmorris@namei.org 2011-08-30T00:19:50Z urn:sha1:d5813a571876c72766f125b1c6e63414f6822c28 Fixes sparse warnings: security/integrity/ima/ima_main.c:105:6: warning: symbol 'ima_file_free' was not declared. Should it be static? security/integrity/ima/ima_main.c:167:5: warning: symbol 'ima_file_mmap' was not declared. Should it be static? security/integrity/ima/ima_main.c:192:5: warning: symbol 'ima_bprm_check' was not declared. Should it be static? security/integrity/ima/ima_main.c:211:5: warning: symbol 'ima_file_check' was not declared. Should it be static? Signed-off-by: James Morris <jmorris@namei.org>