1 /* 2 * Copyright (C) 2008 IBM Corporation 3 * Author: Mimi Zohar <[email protected]> 4 * 5 * This program is free software; you can redistribute it and/or modify 6 * it under the terms of the GNU General Public License as published by 7 * the Free Software Foundation, version 2 of the License. 8 */ 9 10 #ifndef _LINUX_IMA_H 11 #define _LINUX_IMA_H 12 13 #include <linux/fs.h> 14 #include <linux/kexec.h> 15 struct linux_binprm; 16 17 #ifdef CONFIG_IMA 18 extern int ima_bprm_check(struct linux_binprm *bprm); 19 extern int ima_file_check(struct file *file, int mask, int opened); 20 extern void ima_file_free(struct file *file); 21 extern int ima_file_mmap(struct file *file, unsigned long prot); 22 extern int ima_read_file(struct file *file, enum kernel_read_file_id id); 23 extern int ima_post_read_file(struct file *file, void *buf, loff_t size, 24 enum kernel_read_file_id id); 25 extern void ima_post_path_mknod(struct dentry *dentry); 26 27 #ifdef CONFIG_IMA_KEXEC 28 extern void ima_add_kexec_buffer(struct kimage *image); 29 #endif 30 31 #else 32 static inline int ima_bprm_check(struct linux_binprm *bprm) 33 { 34 return 0; 35 } 36 37 static inline int ima_file_check(struct file *file, int mask, int opened) 38 { 39 return 0; 40 } 41 42 static inline void ima_file_free(struct file *file) 43 { 44 return; 45 } 46 47 static inline int ima_file_mmap(struct file *file, unsigned long prot) 48 { 49 return 0; 50 } 51 52 static inline int ima_read_file(struct file *file, enum kernel_read_file_id id) 53 { 54 return 0; 55 } 56 57 static inline int ima_post_read_file(struct file *file, void *buf, loff_t size, 58 enum kernel_read_file_id id) 59 { 60 return 0; 61 } 62 63 static inline void ima_post_path_mknod(struct dentry *dentry) 64 { 65 return; 66 } 67 68 #endif /* CONFIG_IMA */ 69 70 #ifndef CONFIG_IMA_KEXEC 71 struct kimage; 72 73 static inline void ima_add_kexec_buffer(struct kimage *image) 74 {} 75 #endif 76 77 #ifdef CONFIG_IMA_APPRAISE 78 extern bool is_ima_appraise_enabled(void); 79 extern void ima_inode_post_setattr(struct dentry *dentry); 80 extern int ima_inode_setxattr(struct dentry *dentry, const char *xattr_name, 81 const void *xattr_value, size_t xattr_value_len); 82 extern int ima_inode_removexattr(struct dentry *dentry, const char *xattr_name); 83 #else 84 static inline bool is_ima_appraise_enabled(void) 85 { 86 return 0; 87 } 88 89 static inline void ima_inode_post_setattr(struct dentry *dentry) 90 { 91 return; 92 } 93 94 static inline int ima_inode_setxattr(struct dentry *dentry, 95 const char *xattr_name, 96 const void *xattr_value, 97 size_t xattr_value_len) 98 { 99 return 0; 100 } 101 102 static inline int ima_inode_removexattr(struct dentry *dentry, 103 const char *xattr_name) 104 { 105 return 0; 106 } 107 #endif /* CONFIG_IMA_APPRAISE */ 108 #endif /* _LINUX_IMA_H */ 109