aboutsummaryrefslogtreecommitdiff
path: root/security/integrity/integrity.h
diff options
context:
space:
mode:
authorMimi Zohar <zohar@linux.vnet.ibm.com>2012-01-09 22:59:36 -0500
committerMimi Zohar <zohar@linux.vnet.ibm.com>2012-09-07 14:57:47 -0400
commit5a44b41207174e1882ce0c24a752f4cfb65dab07 (patch)
treea5426be63a4f165f3ce15d1e61d8fd10f37fd8c3 /security/integrity/integrity.h
parent42c63330f2b05aa6077c1bfc2798c04afe54f6b2 (diff)
downloadlinux-stericsson-5a44b41207174e1882ce0c24a752f4cfb65dab07.tar.gz
ima: add support for different security.ima data types
IMA-appraisal currently verifies the integrity of a file based on a known 'good' measurement value. This patch reserves the first byte of 'security.ima' as a place holder for the type of method used for verifying file data integrity. Changelog v1: - Use the newly defined 'struct evm_ima_xattr_data' Signed-off-by: Dmitry Kasatkin <dmitry.kasatkin@nokia.com> Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
Diffstat (limited to 'security/integrity/integrity.h')
-rw-r--r--security/integrity/integrity.h2
1 files changed, 1 insertions, 1 deletions
diff --git a/security/integrity/integrity.h b/security/integrity/integrity.h
index dac6b68e945a..91ccef1c704b 100644
--- a/security/integrity/integrity.h
+++ b/security/integrity/integrity.h
@@ -39,7 +39,7 @@ struct integrity_iint_cache {
struct inode *inode; /* back pointer to inode in question */
u64 version; /* track inode changes */
unsigned char flags;
- u8 digest[SHA1_DIGEST_SIZE];
+ struct evm_ima_xattr_data ima_xattr;
enum integrity_status ima_status;
enum integrity_status evm_status;
};