diff for duplicates of <1532430023.4127.10.camel@linux.ibm.com> diff --git a/a/1.txt b/N1/1.txt index 0cb1334..d29e8cd 100644 --- a/a/1.txt +++ b/N1/1.txt @@ -7,7 +7,7 @@ addresses two deadlocks due to either loading or searching for crypto algorithms, and cleans up the audit messages. New to 4.19, but not included in this pull request, is support for a -build time IMA policy. Build time IMA policy rules are automatically +build time IMA policy. ?Build time IMA policy rules are automatically enabled on boot and persist after loading a custom policy. Mimi @@ -15,55 +15,60 @@ Mimi The following changes since commit 87ea58433208d17295e200d56be5e2a4fe4ce7d6: - security: check for kstrdup() failure in lsm_append() (2018-07-17 +? security: check for kstrdup() failure in lsm_append() (2018-07-17 21:27:06 -0700) are available in the git repository at: - git://git.kernel.org/pub/scm/linux/kernel/git/zohar/linux- +? git://git.kernel.org/pub/scm/linux/kernel/git/zohar/linux- integrity.git next-integrity for you to fetch changes up to 3dd0f18c70d94ca2432c78c5735744429f071b0b: - EVM: fix return value check in evm_write_xattrs() (2018-07-22 +? EVM: fix return value check in evm_write_xattrs() (2018-07-22 14:49:11 -0400) ---------------------------------------------------------------- Matthew Garrett (2): - evm: Don't deadlock if a crypto algorithm is unavailable - evm: Allow non-SHA1 digital signatures +??????evm: Don't deadlock if a crypto algorithm is unavailable +??????evm: Allow non-SHA1 digital signatures Mikhail Kurinnoi (1): - integrity: prevent deadlock during digsig verification. +??????integrity: prevent deadlock during digsig verification. Stefan Berger (4): - ima: Call audit_log_string() rather than logging it untrusted - ima: Use audit_log_format() rather than audit_log_string() - ima: Do not audit if CONFIG_INTEGRITY_AUDIT is not set - ima: Differentiate auditing policy rules from "audit" actions +??????ima: Call audit_log_string() rather than logging it untrusted +??????ima: Use audit_log_format() rather than audit_log_string() +??????ima: Do not audit if CONFIG_INTEGRITY_AUDIT is not set +??????ima: Differentiate auditing policy rules from "audit" actions Sudeep Holla (1): - integrity: silence warning when CONFIG_SECURITYFS is not enabled +??????integrity: silence warning when CONFIG_SECURITYFS is not enabled Wei Yongjun (1): - EVM: fix return value check in evm_write_xattrs() - - crypto/api.c | 2 +- - include/linux/crypto.h | 5 ++++ - include/linux/integrity.h | 13 +++++++++ - include/uapi/linux/audit.h | 1 + - security/integrity/digsig_asymmetric.c | 23 ++++++++++++++++ - security/integrity/evm/Kconfig | 1 + - security/integrity/evm/evm.h | 10 +++++-- - security/integrity/evm/evm_crypto.c | 50 ++++++++++++++++++------- +??????EVM: fix return value check in evm_write_xattrs() + +?crypto/api.c???????????????????????????|??2 +- +?include/linux/crypto.h?????????????????|??5 ++++ +?include/linux/integrity.h??????????????| 13 +++++++++ +?include/uapi/linux/audit.h?????????????|??1 + +?security/integrity/digsig_asymmetric.c | 23 ++++++++++++++++ +?security/integrity/evm/Kconfig?????????|??1 + +?security/integrity/evm/evm.h???????????| 10 +++++-- +?security/integrity/evm/evm_crypto.c????| 50 ++++++++++++++++++------- --------- - security/integrity/evm/evm_main.c | 19 ++++++++----- - security/integrity/evm/evm_secfs.c | 4 +-- - security/integrity/iint.c | 9 ++++-- - security/integrity/ima/Kconfig | 1 + - security/integrity/ima/ima_policy.c | 9 ++++-- - security/integrity/integrity.h | 15 ++++++++++ - security/integrity/integrity_audit.c | 6 +--- - security/security.c | 7 ++++- - 16 files changed, 128 insertions(+), 47 deletions(-) +?security/integrity/evm/evm_main.c??????| 19 ++++++++----- +?security/integrity/evm/evm_secfs.c?????|??4 +-- +?security/integrity/iint.c??????????????|??9 ++++-- +?security/integrity/ima/Kconfig?????????|??1 + +?security/integrity/ima/ima_policy.c????|??9 ++++-- +?security/integrity/integrity.h?????????| 15 ++++++++++ +?security/integrity/integrity_audit.c???|??6 +--- +?security/security.c????????????????????|??7 ++++- +?16 files changed, 128 insertions(+), 47 deletions(-) + +-- +To unsubscribe from this list: send the line "unsubscribe linux-security-module" in +the body of a message to majordomo at vger.kernel.org +More majordomo info at http://vger.kernel.org/majordomo-info.html diff --git a/a/content_digest b/N1/content_digest index dce9976..965916e 100644 --- a/a/content_digest +++ b/N1/content_digest @@ -1,9 +1,7 @@ - "From\0Mimi Zohar <zohar@linux.ibm.com>\0" + "From\0zohar@linux.ibm.com (Mimi Zohar)\0" "Subject\0[GIT PULL] linux-integrity patches for 4.19\0" "Date\0Tue, 24 Jul 2018 07:00:23 -0400\0" - "To\0James Morris <jmorris@namei.org>\0" - "Cc\0linux-security-module <linux-security-module@vger.kernel.org>" - " linux-integrity <linux-integrity@vger.kernel.org>\0" + "To\0linux-security-module@vger.kernel.org\0" "\00:1\0" "b\0" "Hi James,\n" @@ -15,7 +13,7 @@ "algorithms, and cleans up the audit messages.\n" "\n" "New to 4.19, but not included in this pull request, is support for a\n" - "build time IMA policy. Build time IMA policy rules are automatically\n" + "build time IMA policy. ?Build time IMA policy rules are automatically\n" "enabled on boot and persist after loading a custom policy.\n" "\n" "Mimi\n" @@ -23,57 +21,62 @@ "The following changes since commit\n" "87ea58433208d17295e200d56be5e2a4fe4ce7d6:\n" "\n" - " security: check for kstrdup() failure in lsm_append() (2018-07-17\n" + "? security: check for kstrdup() failure in lsm_append() (2018-07-17\n" "21:27:06 -0700)\n" "\n" "are available in the git repository at:\n" "\n" - " git://git.kernel.org/pub/scm/linux/kernel/git/zohar/linux-\n" + "? git://git.kernel.org/pub/scm/linux/kernel/git/zohar/linux-\n" "integrity.git next-integrity\n" "\n" "for you to fetch changes up to\n" "3dd0f18c70d94ca2432c78c5735744429f071b0b:\n" "\n" - " EVM: fix return value check in evm_write_xattrs() (2018-07-22\n" + "? EVM: fix return value check in evm_write_xattrs() (2018-07-22\n" "14:49:11 -0400)\n" "\n" "----------------------------------------------------------------\n" "Matthew Garrett (2):\n" - " evm: Don't deadlock if a crypto algorithm is unavailable\n" - " evm: Allow non-SHA1 digital signatures\n" + "??????evm: Don't deadlock if a crypto algorithm is unavailable\n" + "??????evm: Allow non-SHA1 digital signatures\n" "\n" "Mikhail Kurinnoi (1):\n" - " integrity: prevent deadlock during digsig verification.\n" + "??????integrity: prevent deadlock during digsig verification.\n" "\n" "Stefan Berger (4):\n" - " ima: Call audit_log_string() rather than logging it untrusted\n" - " ima: Use audit_log_format() rather than audit_log_string()\n" - " ima: Do not audit if CONFIG_INTEGRITY_AUDIT is not set\n" - " ima: Differentiate auditing policy rules from \"audit\" actions\n" + "??????ima: Call audit_log_string() rather than logging it untrusted\n" + "??????ima: Use audit_log_format() rather than audit_log_string()\n" + "??????ima: Do not audit if CONFIG_INTEGRITY_AUDIT is not set\n" + "??????ima: Differentiate auditing policy rules from \"audit\" actions\n" "\n" "Sudeep Holla (1):\n" - " integrity: silence warning when CONFIG_SECURITYFS is not enabled\n" + "??????integrity: silence warning when CONFIG_SECURITYFS is not enabled\n" "\n" "Wei Yongjun (1):\n" - " EVM: fix return value check in evm_write_xattrs()\n" - "\n" - " crypto/api.c | 2 +-\n" - " include/linux/crypto.h | 5 ++++\n" - " include/linux/integrity.h | 13 +++++++++\n" - " include/uapi/linux/audit.h | 1 +\n" - " security/integrity/digsig_asymmetric.c | 23 ++++++++++++++++\n" - " security/integrity/evm/Kconfig | 1 +\n" - " security/integrity/evm/evm.h | 10 +++++--\n" - " security/integrity/evm/evm_crypto.c | 50 ++++++++++++++++++-------\n" + "??????EVM: fix return value check in evm_write_xattrs()\n" + "\n" + "?crypto/api.c???????????????????????????|??2 +-\n" + "?include/linux/crypto.h?????????????????|??5 ++++\n" + "?include/linux/integrity.h??????????????| 13 +++++++++\n" + "?include/uapi/linux/audit.h?????????????|??1 +\n" + "?security/integrity/digsig_asymmetric.c | 23 ++++++++++++++++\n" + "?security/integrity/evm/Kconfig?????????|??1 +\n" + "?security/integrity/evm/evm.h???????????| 10 +++++--\n" + "?security/integrity/evm/evm_crypto.c????| 50 ++++++++++++++++++-------\n" "---------\n" - " security/integrity/evm/evm_main.c | 19 ++++++++-----\n" - " security/integrity/evm/evm_secfs.c | 4 +--\n" - " security/integrity/iint.c | 9 ++++--\n" - " security/integrity/ima/Kconfig | 1 +\n" - " security/integrity/ima/ima_policy.c | 9 ++++--\n" - " security/integrity/integrity.h | 15 ++++++++++\n" - " security/integrity/integrity_audit.c | 6 +---\n" - " security/security.c | 7 ++++-\n" - 16 files changed, 128 insertions(+), 47 deletions(-) + "?security/integrity/evm/evm_main.c??????| 19 ++++++++-----\n" + "?security/integrity/evm/evm_secfs.c?????|??4 +--\n" + "?security/integrity/iint.c??????????????|??9 ++++--\n" + "?security/integrity/ima/Kconfig?????????|??1 +\n" + "?security/integrity/ima/ima_policy.c????|??9 ++++--\n" + "?security/integrity/integrity.h?????????| 15 ++++++++++\n" + "?security/integrity/integrity_audit.c???|??6 +---\n" + "?security/security.c????????????????????|??7 ++++-\n" + "?16 files changed, 128 insertions(+), 47 deletions(-)\n" + "\n" + "--\n" + "To unsubscribe from this list: send the line \"unsubscribe linux-security-module\" in\n" + "the body of a message to majordomo at vger.kernel.org\n" + More majordomo info at http://vger.kernel.org/majordomo-info.html -2038e3edf8357650a51010ae2bdbd376254ccb29e0425eb5e5ea75a53d66d322 +ef1d6ad01b09a8b75ab7a4605a42b95eaa3a0d5340f609c7bafe298c51c96d0e
This is an external index of several public inboxes, see mirroring instructions on how to clone and mirror all data and code used by this external index.