xref: /linux-6.15/include/linux/evm.h (revision 1f330c32) 
1 /*
2  * evm.h
3  *
4  * Copyright (c) 2009 IBM Corporation
5  * Author: Mimi Zohar <[email protected]>
6  */
7 
8 #ifndef _LINUX_EVM_H
9 #define _LINUX_EVM_H
10 
11 #include <linux/integrity.h>
12 #include <linux/xattr.h>
13 
14 struct integrity_iint_cache;
15 
16 #ifdef CONFIG_EVM
17 extern int evm_set_key(void *key, size_t keylen);
18 extern enum integrity_status evm_verifyxattr(struct dentry *dentry,
19 					     const char *xattr_name,
20 					     void *xattr_value,
21 					     size_t xattr_value_len,
22 					     struct integrity_iint_cache *iint);
23 extern int evm_inode_setattr(struct dentry *dentry, struct iattr *attr);
24 extern void evm_inode_post_setattr(struct dentry *dentry, int ia_valid);
25 extern int evm_inode_setxattr(struct dentry *dentry, const char *name,
26 			      const void *value, size_t size);
27 extern void evm_inode_post_setxattr(struct dentry *dentry,
28 				    const char *xattr_name,
29 				    const void *xattr_value,
30 				    size_t xattr_value_len);
31 extern int evm_inode_removexattr(struct dentry *dentry, const char *xattr_name);
32 extern void evm_inode_post_removexattr(struct dentry *dentry,
33 				       const char *xattr_name);
34 extern int evm_inode_init_security(struct inode *inode,
35 				   const struct xattr *xattr_array,
36 				   struct xattr *evm);
37 #ifdef CONFIG_FS_POSIX_ACL
38 extern int posix_xattr_acl(const char *xattrname);
39 #else
40 static inline int posix_xattr_acl(const char *xattrname)
41 {
42 	return 0;
43 }
44 #endif
45 #else
46 
47 static inline int evm_set_key(void *key, size_t keylen)
48 {
49 	return -EOPNOTSUPP;
50 }
51 
52 #ifdef CONFIG_INTEGRITY
53 static inline enum integrity_status evm_verifyxattr(struct dentry *dentry,
54 						    const char *xattr_name,
55 						    void *xattr_value,
56 						    size_t xattr_value_len,
57 					struct integrity_iint_cache *iint)
58 {
59 	return INTEGRITY_UNKNOWN;
60 }
61 #endif
62 
63 static inline int evm_inode_setattr(struct dentry *dentry, struct iattr *attr)
64 {
65 	return 0;
66 }
67 
68 static inline void evm_inode_post_setattr(struct dentry *dentry, int ia_valid)
69 {
70 	return;
71 }
72 
73 static inline int evm_inode_setxattr(struct dentry *dentry, const char *name,
74 				     const void *value, size_t size)
75 {
76 	return 0;
77 }
78 
79 static inline void evm_inode_post_setxattr(struct dentry *dentry,
80 					   const char *xattr_name,
81 					   const void *xattr_value,
82 					   size_t xattr_value_len)
83 {
84 	return;
85 }
86 
87 static inline int evm_inode_removexattr(struct dentry *dentry,
88 					const char *xattr_name)
89 {
90 	return 0;
91 }
92 
93 static inline void evm_inode_post_removexattr(struct dentry *dentry,
94 					      const char *xattr_name)
95 {
96 	return;
97 }
98 
99 static inline int evm_inode_init_security(struct inode *inode,
100 					  const struct xattr *xattr_array,
101 					  struct xattr *evm)
102 {
103 	return 0;
104 }
105 
106 #endif /* CONFIG_EVM */
107 #endif /* LINUX_EVM_H */
108