Mirror of https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/ https://git.shady.money/linux/atom?h=v4.0 2015-02-19T18:36:45Z 2015-02-19T18:36:45Z Linus Torvalds torvalds@linux-foundation.org 2015-02-19T18:36:45Z urn:sha1:b11a2783974791d37e44abbb48d41e8c120b5126 Pull kconfig updates from Michal Marek: "Yann E Morin was supposed to take over kconfig maintainership, but this hasn't happened. So I'm sending a few kconfig patches that I collected: - Fix for missing va_end in kconfig - merge_config.sh displays used if given too few arguments - s/boolean/bool/ in Kconfig files for consistency, with the plan to only support bool in the future" * 'kconfig' of git://git.kernel.org/pub/scm/linux/kernel/git/mmarek/kbuild: kconfig: use va_end to match corresponding va_start merge_config.sh: Display usage if given too few arguments kconfig: use bool instead of boolean for type definition attributes 2015-02-02T02:19:48Z David Howells dhowells@redhat.com 2015-01-30T11:04:12Z urn:sha1:11cd64a234d5a1a7111627ef947beb0e5fad9e71 /proc/keys is now mandatory and its config option no longer exists, so it doesn't need selecting. Reported-by: Paul Bolle <pebolle@tiscali.nl> Signed-off-by: David Howells <dhowells@redhat.com> Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com> Signed-off-by: James Morris <james.l.morris@oracle.com> 2015-01-07T12:08:04Z Christoph Jaeger cj@linux.com 2014-12-20T20:41:11Z urn:sha1:6341e62b212a2541efb0160c470e90bd226d5496 Support for keyword 'boolean' will be dropped later on. No functional change. Reference: http://lkml.kernel.org/r/cover.1418003065.git.cj@linux.com Signed-off-by: Christoph Jaeger <cj@linux.com> Signed-off-by: Michal Marek <mmarek@suse.cz> 2014-12-16T01:49:10Z James Morris james.l.morris@oracle.com 2014-12-16T01:49:10Z urn:sha1:d0bffab0439fb7edaee09677b636eef5991e8b80 2014-12-15T04:36:37Z Linus Torvalds torvalds@linux-foundation.org 2014-12-15T04:36:37Z urn:sha1:67e2c3883828b39548cee2091b36656787775d95 Pull security layer updates from James Morris: "In terms of changes, there's general maintenance to the Smack, SELinux, and integrity code. The IMA code adds a new kconfig option, IMA_APPRAISE_SIGNED_INIT, which allows IMA appraisal to require signatures. Support for reading keys from rootfs before init is call is also added" * 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security: (23 commits) selinux: Remove security_ops extern security: smack: fix out-of-bounds access in smk_parse_smack() VFS: refactor vfs_read() ima: require signature based appraisal integrity: provide a hook to load keys when rootfs is ready ima: load x509 certificate from the kernel integrity: provide a function to load x509 certificate from the kernel integrity: define a new function integrity_read_file() Security: smack: replace kzalloc with kmem_cache for inode_smack Smack: Lock mode for the floor and hat labels ima: added support for new kernel cmdline parameter ima_template_fmt ima: allocate field pointers array on demand in template_desc_init_fields() ima: don't allocate a copy of template_fmt in template_desc_init_fields() ima: display template format in meas. list if template name length is zero ima: added error messages to template-related functions ima: use atomic bit operations to protect policy update interface ima: ignore empty and with whitespaces policy lines ima: no need to allocate entry for comment ima: report policy load status ima: use path names cache ... 2014-12-09T01:39:29Z Al Viro viro@zeniv.linux.org.uk 2014-12-09T01:39:29Z urn:sha1:ba00410b8131b23edfb0e09f8b6dd26c8eb621fb 2014-12-07T02:50:37Z Michael Ellerman mpe@ellerman.id.au 2014-12-03T06:04:50Z urn:sha1:63a0eb7891bdf3ef32ecb6b01eb09106df646c10 On powerpc we can end up with IMA=y and PPC_PSERIES=n which leads to: warning: (IMA) selects TCG_IBMVTPM which has unmet direct dependencies (TCG_TPM && PPC_PSERIES) tpm_ibmvtpm.c:(.text+0x14f3e8): undefined reference to `.plpar_hcall_norets' I'm not sure why IMA needs to select those user-visible symbols, but if it must then the simplest fix is to just express the proper dependencies on the select. Tested-by: Hon Ching (Vicky) Lo <lo1@us.ibm.com> Signed-off-by: Michael Ellerman <mpe@ellerman.id.au> Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com> 2014-11-19T18:01:25Z Al Viro viro@zeniv.linux.org.uk 2014-10-31T05:22:04Z urn:sha1:b583043e99bc6d91e98fae32bd9eff6a5958240a Signed-off-by: Al Viro <viro@zeniv.linux.org.uk> 2014-11-18T04:14:22Z Dmitry Kasatkin d.kasatkin@samsung.com 2014-11-05T15:01:17Z urn:sha1:6fb5032ebb1c5b852461d64ee33829081de8ca61 integrity_kernel_read() duplicates the file read operations code in vfs_read(). This patch refactors vfs_read() code creating a helper function __vfs_read(). It is used by both vfs_read() and integrity_kernel_read(). Signed-off-by: Dmitry Kasatkin <d.kasatkin@samsung.com> Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com> 2014-11-18T04:12:01Z Dmitry Kasatkin d.kasatkin@samsung.com 2014-11-05T15:01:16Z urn:sha1:c57782c13ecd7e7aca66cbf0139ad2a72317dc81 This patch provides CONFIG_IMA_APPRAISE_SIGNED_INIT kernel configuration option to force IMA appraisal using signatures. This is useful, when EVM key is not initialized yet and we want securely initialize integrity or any other functionality. It forces embedded policy to require signature. Signed initialization script can initialize EVM key, update the IMA policy and change further requirement of everything to be signed. Changes in v3: * kernel parameter fixed to configuration option in the patch description Changes in v2: * policy change of this patch separated from the key loading patch Signed-off-by: Dmitry Kasatkin <d.kasatkin@samsung.com> Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>