evm: Make it independent from 'integrity' LSM

[linux-2.6-microblaze.git] / security / integrity / evm / evm.h

diff --git a/security/integrity/evm/evm.h b/security/integrity/evm/evm.h
index 53bd7fe..eb1a2c3 100644 (file)
--- a/security/integrity/evm/evm.h
+++ b/security/integrity/evm/evm.h
@@ -32,6 +32,25 @@ struct xattr_list {
        bool enabled;
 };
 
+#define EVM_NEW_FILE                   0x00000001
+#define EVM_IMMUTABLE_DIGSIG           0x00000002
+
+/* EVM integrity metadata associated with an inode */
+struct evm_iint_cache {
+       unsigned long flags;
+       enum integrity_status evm_status:4;
+};
+
+extern struct lsm_blob_sizes evm_blob_sizes;
+
+static inline struct evm_iint_cache *evm_iint_inode(const struct inode *inode)
+{
+       if (unlikely(!inode->i_security))
+               return NULL;
+
+       return inode->i_security + evm_blob_sizes.lbs_inode;
+}
+
 extern int evm_initialized;
 
 #define EVM_ATTR_FSUUID                0x0001