Merging upstream version 6.9.2.

Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
author: Daniel Baumann <daniel.baumann@progress-linux.org> 2024-06-19 21:00:51 +0000
committer: Daniel Baumann <daniel.baumann@progress-linux.org> 2024-06-19 21:00:51 +0000
commit: 6d03a247468059b0e59c821ef39e6762d4d6fc30 (patch)
tree: 17b9c00de2c62e68c965c742cdbc206f77a375da /security/integrity/evm/evm.h
parent: Releasing progress-linux version 6.8.12-1~progress7.99u1. (diff)
download: linux-6d03a247468059b0e59c821ef39e6762d4d6fc30.tar.xz
linux-6d03a247468059b0e59c821ef39e6762d4d6fc30.zip
1 files changed, 19 insertions, 0 deletions
diff --git a/security/integrity/evm/evm.h b/security/integrity/evm/evm.h
index 53bd7fec93..eb1a2c343b 100644
--- a/security/integrity/evm/evm.h
+++ b/security/integrity/evm/evm.h
@@ -32,6 +32,25 @@ struct xattr_list {
 	bool enabled;
 };
 
+#define EVM_NEW_FILE			0x00000001
+#define EVM_IMMUTABLE_DIGSIG		0x00000002
+
+/* EVM integrity metadata associated with an inode */
+struct evm_iint_cache {
+	unsigned long flags;
+	enum integrity_status evm_status:4;
+};
+
+extern struct lsm_blob_sizes evm_blob_sizes;
+
+static inline struct evm_iint_cache *evm_iint_inode(const struct inode *inode)
+{
+	if (unlikely(!inode->i_security))
+		return NULL;
+
+	return inode->i_security + evm_blob_sizes.lbs_inode;
+}
+
 extern int evm_initialized;
 
 #define EVM_ATTR_FSUUID		0x0001
author	Daniel Baumann <daniel.baumann@progress-linux.org>	2024-06-19 21:00:51 +0000
committer	Daniel Baumann <daniel.baumann@progress-linux.org>	2024-06-19 21:00:51 +0000
commit	6d03a247468059b0e59c821ef39e6762d4d6fc30 (patch)
tree	17b9c00de2c62e68c965c742cdbc206f77a375da /security/integrity/evm/evm.h
parent	Releasing progress-linux version 6.8.12-1~progress7.99u1. (diff)
download	linux-6d03a247468059b0e59c821ef39e6762d4d6fc30.tar.xz linux-6d03a247468059b0e59c821ef39e6762d4d6fc30.zip