What:		security/evm
Date:		March 2011
Contact:	Mimi Zohar <zohar@us.ibm.com>
Description:
		EVM protects a file's security extended attributes(xattrs)
		against integrity attacks. The initial method maintains an
		HMAC-sha1 value across the extended attributes, storing the
		value as the extended attribute 'security.evm'.

		EVM depends on the Kernel Key Retention System to provide it
		with a trusted/encrypted key for the HMAC-sha1 operation.
		The key is loaded onto the root's keyring using keyctl.  Until
		EVM receives notification that the key has been successfully
		loaded onto the keyring (echo 1 > <securityfs>/evm), EVM
		can not create or validate the 'security.evm' xattr, but
		returns INTEGRITY_UNKNOWN.  Loading the key and signaling EVM
		should be done as early as possible.  Normally this is done
		in the initramfs, which has already been measured as part
		of the trusted boot.  For more information on creating and
		loading existing trusted/encrypted keys, refer to:
		Documentation/keys-trusted-encrypted.txt.  (A sample dracut
		patch, which loads the trusted/encrypted key and enables
		EVM, is available from http://linux-ima.sourceforge.net/#EVM.)
p-back'>packet-loop-back</option>
<option value='packet-rx-pump-back'>packet-rx-pump-back</option>
</select> <input type='submit' value='switch'/></form></td></tr>
<tr><td class='sub'>net-next plumbings</td><td class='sub right'>Tobias Klauser</td></tr></table>
<table class='tabs'><tr><td>
<a href='/cgit.cgi/linux/net-next.git/'>summary</a><a href='/cgit.cgi/linux/net-next.git/refs/?id=2fb78e89405f4321b86274a0c24b30896dd50529'>refs</a><a href='/cgit.cgi/linux/net-next.git/log/include/crypto/cryptd.h'>log</a><a href='/cgit.cgi/linux/net-next.git/tree/include/crypto/cryptd.h?id=2fb78e89405f4321b86274a0c24b30896dd50529'>tree</a><a href='/cgit.cgi/linux/net-next.git/commit/include/crypto/cryptd.h?id=2fb78e89405f4321b86274a0c24b30896dd50529'>commit</a><a class='active' href='/cgit.cgi/linux/net-next.git/diff/include/crypto/cryptd.h?id=2fb78e89405f4321b86274a0c24b30896dd50529'>diff</a></td><td class='form'><form class='right' method='get' action='/cgit.cgi/linux/net-next.git/log/include/crypto/cryptd.h'>
<input type='hidden' name='id' value='2fb78e89405f4321b86274a0c24b30896dd50529'/><select name='qt'>
<option value='grep'>log msg</option>
<option value='author'>author</option>
<option value='committer'>committer</option>
<option value='range'>range</option>
</select>
<input class='txt' type='search' size='10' name='q' value=''/>
<input type='submit' value='search'/>
</form>
</td></tr></table>
<div class='path'>path: <a href='/cgit.cgi/linux/net-next.git/diff/?id=2fb78e89405f4321b86274a0c24b30896dd50529'>root</a>/<a href='/cgit.cgi/linux/net-next.git/diff/include?id=2fb78e89405f4321b86274a0c24b30896dd50529'>include</a>/<a href='/cgit.cgi/linux/net-next.git/diff/include/crypto?id=2fb78e89405f4321b86274a0c24b30896dd50529'>crypto</a>/<a href='/cgit.cgi/linux/net-next.git/diff/include/crypto/cryptd.h?id=2fb78e89405f4321b86274a0c24b30896dd50529'>cryptd.h</a></div><div class='content'><div class='cgit-panel'><b>diff options</b><form method='get'><input type='hidden' name='id' value='2fb78e89405f4321b86274a0c24b30896dd50529'/><table><tr><td colspan='2'/></tr><tr><td class='label'>context:</td><td class='ctrl'><select name='context' onchange='this.form.submit();'><option value='1'>1</option><option value='2'>2</option><option value='3' selected='selected'>3</option><option value='4'>4</option><option value='5'>5</option><option value='6'>6</option><option value='7'>7</option><option value='8'>8</option><option value='9'>9</option><option value='10'>10</option><option value='15'>15</option><option value='20'>20</option><option value='25'>25</option><option value='30'>30</option><option value='35'>35</option><option value='40'>40</option></select></td></tr><tr><td class='label'>space:</td><td class='ctrl'><select name='ignorews' onchange='this.form.submit();'><option value='0' selected='selected'>include</option><option value='1'>ignore</option></select></td></tr><tr><td class='label'>mode:</td><td class='ctrl'><select name='dt' onchange='this.form.submit();'><option value='0' selected='selected'>unified</option><option value='1'>ssdiff</option><option value='2'>stat only</option></select></td></tr><tr><td/><td class='ctrl'><noscript><input type='submit' value='reload'/></noscript></td></tr></table></form></div><div class='diffstat-header'><a href='/cgit.cgi/linux/net-next.git/diff/?id=2fb78e89405f4321b86274a0c24b30896dd50529'>Diffstat</a> (limited to 'include/crypto/cryptd.h')</div><table summary='diffstat' class='diffstat'></td></tr>
<tr><th>committer</th><td>Linus Torvalds &lt;torvalds@linux-foundation.org&gt;</td><td class='right'>2017-01-27 12:36:39 -0800</td></tr>
<tr><th>commit</th><td colspan='2' class='oid'><a href='/cgit.cgi/linux/net-next.git/commit/include/crypto/des.h?id=2fb78e89405f4321b86274a0c24b30896dd50529'>2fb78e89405f4321b86274a0c24b30896dd50529</a> (<a href='/cgit.cgi/linux/net-next.git/patch/include/crypto/des.h?id=2fb78e89405f4321b86274a0c24b30896dd50529'>patch</a>)</td></tr>
<tr><th>tree</th><td colspan='2' class='oid'><a href='/cgit.cgi/linux/net-next.git/tree/?id=2fb78e89405f4321b86274a0c24b30896dd50529'>4de241e242441b80bd3f0022fc546bb07374571f</a> /<a href='/cgit.cgi/linux/net-next.git/tree/include/crypto/des.h?id=2fb78e89405f4321b86274a0c24b30896dd50529'>include/crypto/des.h</a></td></tr>
<tr><th>parent</th><td colspan='2' class='oid'><a href='/cgit.cgi/linux/net-next.git/commit/include/crypto/des.h?id=dd3b9f25c867cb2507a45e436d6ede8eb08e7b05'>dd3b9f25c867cb2507a45e436d6ede8eb08e7b05</a> (<a href='/cgit.cgi/linux/net-next.git/diff/include/crypto/des.h?id=2fb78e89405f4321b86274a0c24b30896dd50529&amp;id2=dd3b9f25c867cb2507a45e436d6ede8eb08e7b05'>diff</a>)</td></tr><tr><th>parent</th><td colspan='2' class='oid'><a href='/cgit.cgi/linux/net-next.git/commit/include/crypto/des.h?id=c14024dbb156c8392908aaa822097d27c6af8ec8'>c14024dbb156c8392908aaa822097d27c6af8ec8</a> (<a href='/cgit.cgi/linux/net-next.git/diff/include/crypto/des.h?id=2fb78e89405f4321b86274a0c24b30896dd50529&amp;id2=c14024dbb156c8392908aaa822097d27c6af8ec8'>diff</a>)</td></tr></table>
<div class='commit-subject'>Merge branch 'for-linus' of git://git.kernel.dk/linux-block</div><div class='commit-msg'>Pull block fixes from Jens Axboe:
 "A set of fixes for this series. This contains:

   - Set of fixes for the nvme target code

   - A revert of patch from this merge window, causing a regression with
     WRITE_SAME on iSCSI targets at least.

   - A fix for a use-after-free in the new O_DIRECT bdev code.

   - Two fixes for the xen-blkfront driver"

* 'for-linus' of git://git.kernel.dk/linux-block:
  Revert "sd: remove __data_len hack for WRITE SAME"
  nvme-fc: use blk_rq_nr_phys_segments
  nvmet-rdma: Fix missing dma sync to nvme data structures
  nvmet: Call fatal_error from keep-alive timout expiration
  nvmet: cancel fatal error and flush async work before free controller
  nvmet: delete controllers deletion upon subsystem release
  nvmet_fc: correct logic in disconnect queue LS handling
  block: fix use after free in __blkdev_direct_IO
  xen-blkfront: correct maximum segment accounting
  xen-blkfront: feature flags handling adjustments
</div><div class='diffstat-header'><a href='/cgit.cgi/linux/net-next.git/diff/?id=2fb78e89405f4321b86274a0c24b30896dd50529'>Diffstat</a> (limited to 'include/crypto/des.h')</div><table summary='diffstat' class='diffstat'>