integrity: move ima inode integrity data management

Move the inode integrity data(iint) management up to the integrity directory in order to share the iint among the different integrity models. Changelog: - don't define MAX_DIGEST_SIZE - rename several globally visible 'ima_' prefixed functions, structs, locks, etc to 'integrity_' - replace '20' with SHA1_DIGEST_SIZE - reflect location change in appropriate Kconfig and Makefiles - remove unnecessary initialization of iint_initialized to 0 - rebased on current ima_iint.c - define integrity_iint_store/lock as static There should be no other functional changes. Signed-off-by: Mimi Zohar <zohar@us.ibm.com> Acked-by: Serge Hallyn <serge.hallyn@ubuntu.com>
author: Mimi Zohar <zohar@linux.vnet.ibm.com> 2011-03-09 14:13:22 -0500
committer: Mimi Zohar <zohar@linux.vnet.ibm.com> 2011-07-18 12:29:38 -0400
commit: f381c272224f5f158f5cff64f8f3481fa0eee8b3 (patch)
tree: a003dc4c6635c9d2fa90f31577ba5e7ea7bc71b1 /include/linux
parent: 9d8f13ba3f4833219e50767b022b82cd0da930eb (diff)
2 files changed, 30 insertions, 13 deletions
diff --git a/include/linux/ima.h b/include/linux/ima.h
index 09e6e62f9953..6ac8e50c6cf5 100644
--- a/include/linux/ima.h
+++ b/include/linux/ima.h
@@ -15,8 +15,6 @@ struct linux_binprm;
 #ifdef CONFIG_IMA
 extern int ima_bprm_check(struct linux_binprm *bprm);
-extern int ima_inode_alloc(struct inode *inode);
-extern void ima_inode_free(struct inode *inode);
 extern int ima_file_check(struct file *file, int mask);
 extern void ima_file_free(struct file *file);
 extern int ima_file_mmap(struct file *file, unsigned long prot);
@@ -27,16 +25,6 @@ static inline int ima_bprm_check(struct linux_binprm *bprm)
        return 0;
 }
-static inline int ima_inode_alloc(struct inode *inode)
-{
-        return 0;
-}
-static inline void ima_inode_free(struct inode *inode)
-{
-        return;
-}
 static inline int ima_file_check(struct file *file, int mask)
 {
        return 0;
@@ -51,6 +39,5 @@ static inline int ima_file_mmap(struct file *file, unsigned long prot)
 {
        return 0;
 }
 #endif /* CONFIG_IMA_H */
 #endif /* _LINUX_IMA_H */
diff --git a/include/linux/integrity.h b/include/linux/integrity.h
new file mode 100644
index 000000000000..905981247327
--- /dev/null
+++ b/include/linux/integrity.h
@@ -0,0 +1,30 @@
+/*
+ * Copyright (C) 2009 IBM Corporation
+ * Author: Mimi Zohar <zohar@us.ibm.com>
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation, version 2 of the License.
+ */
+#ifndef _LINUX_INTEGRITY_H
+#define _LINUX_INTEGRITY_H
+#include <linux/fs.h>
+#ifdef CONFIG_INTEGRITY
+extern int integrity_inode_alloc(struct inode *inode);
+extern void integrity_inode_free(struct inode *inode);
+#else
+static inline int integrity_inode_alloc(struct inode *inode)
+{
+        return 0;
+}
+static inline void integrity_inode_free(struct inode *inode)
+{
+        return;
+}
+#endif /* CONFIG_INTEGRITY_H */
+#endif /* _LINUX_INTEGRITY_H */
author	Mimi Zohar <zohar@linux.vnet.ibm.com>	2011-03-09 14:13:22 -0500
committer	Mimi Zohar <zohar@linux.vnet.ibm.com>	2011-07-18 12:29:38 -0400
commit	f381c272224f5f158f5cff64f8f3481fa0eee8b3 (patch)
tree	a003dc4c6635c9d2fa90f31577ba5e7ea7bc71b1 /include/linux
parent	9d8f13ba3f4833219e50767b022b82cd0da930eb (diff)