diff options
| author | Linus Torvalds <torvalds@linux-foundation.org> | 2012-01-11 00:51:23 -0500 |
|---|---|---|
| committer | Linus Torvalds <torvalds@linux-foundation.org> | 2012-01-11 00:51:23 -0500 |
| commit | e7691a1ce341c80ed9504244a36b31c025217391 (patch) | |
| tree | e9941bb350f64a726130e299c411821da6f41a53 /security/integrity/evm/evm.h | |
| parent | 5cd9599bba428762025db6027764f1c59d0b1e1b (diff) | |
| parent | 8fcc99549522fc7a0bbaeb5755855ab0d9a59ce8 (diff) | |
Merge branch 'for-linus' of git://selinuxproject.org/~jmorris/linux-security
* 'for-linus' of git://selinuxproject.org/~jmorris/linux-security: (32 commits)
ima: fix invalid memory reference
ima: free duplicate measurement memory
security: update security_file_mmap() docs
selinux: Casting (void *) value returned by kmalloc is useless
apparmor: fix module parameter handling
Security: tomoyo: add .gitignore file
tomoyo: add missing rcu_dereference()
apparmor: add missing rcu_dereference()
evm: prevent racing during tfm allocation
evm: key must be set once during initialization
mpi/mpi-mpow: NULL dereference on allocation failure
digsig: build dependency fix
KEYS: Give key types their own lockdep class for key->sem
TPM: fix transmit_cmd error logic
TPM: NSC and TIS drivers X86 dependency fix
TPM: Export wait_for_stat for other vendor specific drivers
TPM: Use vendor specific function for status probe
tpm_tis: add delay after aborting command
tpm_tis: Check return code from getting timeouts/durations
tpm: Introduce function to poll for result of self test
...
Fix up trivial conflict in lib/Makefile due to addition of CONFIG_MPI
and SIGSIG next to CONFIG_DQL addition.
Diffstat (limited to 'security/integrity/evm/evm.h')
| -rw-r--r-- | security/integrity/evm/evm.h | 12 |
1 files changed, 12 insertions, 0 deletions
diff --git a/security/integrity/evm/evm.h b/security/integrity/evm/evm.h index d320f5197437..c885247ebcf7 100644 --- a/security/integrity/evm/evm.h +++ b/security/integrity/evm/evm.h | |||
| @@ -12,14 +12,21 @@ | |||
| 12 | * File: evm.h | 12 | * File: evm.h |
| 13 | * | 13 | * |
| 14 | */ | 14 | */ |
| 15 | |||
| 16 | #ifndef __INTEGRITY_EVM_H | ||
| 17 | #define __INTEGRITY_EVM_H | ||
| 18 | |||
| 15 | #include <linux/xattr.h> | 19 | #include <linux/xattr.h> |
| 16 | #include <linux/security.h> | 20 | #include <linux/security.h> |
| 21 | |||
| 17 | #include "../integrity.h" | 22 | #include "../integrity.h" |
| 18 | 23 | ||
| 19 | extern int evm_initialized; | 24 | extern int evm_initialized; |
| 20 | extern char *evm_hmac; | 25 | extern char *evm_hmac; |
| 26 | extern char *evm_hash; | ||
| 21 | 27 | ||
| 22 | extern struct crypto_shash *hmac_tfm; | 28 | extern struct crypto_shash *hmac_tfm; |
| 29 | extern struct crypto_shash *hash_tfm; | ||
| 23 | 30 | ||
| 24 | /* List of EVM protected security xattrs */ | 31 | /* List of EVM protected security xattrs */ |
| 25 | extern char *evm_config_xattrnames[]; | 32 | extern char *evm_config_xattrnames[]; |
| @@ -32,7 +39,12 @@ extern int evm_update_evmxattr(struct dentry *dentry, | |||
| 32 | extern int evm_calc_hmac(struct dentry *dentry, const char *req_xattr_name, | 39 | extern int evm_calc_hmac(struct dentry *dentry, const char *req_xattr_name, |
| 33 | const char *req_xattr_value, | 40 | const char *req_xattr_value, |
| 34 | size_t req_xattr_value_len, char *digest); | 41 | size_t req_xattr_value_len, char *digest); |
| 42 | extern int evm_calc_hash(struct dentry *dentry, const char *req_xattr_name, | ||
| 43 | const char *req_xattr_value, | ||
| 44 | size_t req_xattr_value_len, char *digest); | ||
| 35 | extern int evm_init_hmac(struct inode *inode, const struct xattr *xattr, | 45 | extern int evm_init_hmac(struct inode *inode, const struct xattr *xattr, |
| 36 | char *hmac_val); | 46 | char *hmac_val); |
| 37 | extern int evm_init_secfs(void); | 47 | extern int evm_init_secfs(void); |
| 38 | extern void evm_cleanup_secfs(void); | 48 | extern void evm_cleanup_secfs(void); |
| 49 | |||
| 50 | #endif | ||