Google Git
Sign in
android / kernel / common / d45de2088e68aedd84809ac6f8ad73c04252d0c2 / . / drivers / md / dm-ima.h
blob: 568870a1a145607738a43f11ee4d13457619d1ec [file] [log] [blame]
Heinz Mauelshagen3bd94002023-01-25 21:00:44 +0100[diff] [blame]1/* SPDX-License-Identifier: GPL-2.0-only */
2/*
Tushar Sugandhi91ccbba2021-07-12 17:48:58 -0700[diff] [blame]3 * Copyright (C) 2021 Microsoft Corporation
4 *
5 * Author: Tushar Sugandhi <tusharsu@linux.microsoft.com>
6 *
Heinz Mauelshagen9bfeac52023-02-07 20:56:57 +0100[diff] [blame]7 * Header file for device mapper IMA measurements.
Tushar Sugandhi91ccbba2021-07-12 17:48:58 -0700[diff] [blame]8 */
9
10#ifndef DM_IMA_H
11#define DM_IMA_H
12
13#define DM_IMA_MEASUREMENT_BUF_LEN 4096
14#define DM_IMA_DEVICE_BUF_LEN 1024
15#define DM_IMA_TARGET_METADATA_BUF_LEN 128
16#define DM_IMA_TARGET_DATA_BUF_LEN 2048
Tushar Sugandhi8eb6fab2021-07-12 17:48:59 -0700[diff] [blame]17#define DM_IMA_DEVICE_CAPACITY_BUF_LEN 128
Tushar Sugandhi8f509fd2021-08-13 14:37:56 -0700[diff] [blame]18#define DM_IMA_TABLE_HASH_ALG "sha256"
Tushar Sugandhi91ccbba2021-07-12 17:48:58 -0700[diff] [blame]19
Tushar Sugandhidc7b79c2021-08-13 14:37:57 -0700[diff] [blame]20#define __dm_ima_stringify(s) #s
21#define __dm_ima_str(s) __dm_ima_stringify(s)
22
23#define DM_IMA_VERSION_STR "dm_version=" \
24 __dm_ima_str(DM_VERSION_MAJOR) "." \
25 __dm_ima_str(DM_VERSION_MINOR) "." \
26 __dm_ima_str(DM_VERSION_PATCHLEVEL) ";"
27
Tushar Sugandhi91ccbba2021-07-12 17:48:58 -0700[diff] [blame]28#ifdef CONFIG_IMA
29
30struct dm_ima_device_table_metadata {
31 /*
32 * Contains data specific to the device which is common across
33 * all the targets in the table (e.g. name, uuid, major, minor, etc).
34 * The values are stored in comma separated list of key1=val1,key2=val2;
35 * pairs delimited by a semicolon at the end of the list.
36 */
37 char *device_metadata;
38 unsigned int device_metadata_len;
39 unsigned int num_targets;
40
41 /*
42 * Contains the sha256 hashes of the IMA measurements of the target
43 * attributes' key-value pairs from the active/inactive tables.
44 */
45 char *hash;
46 unsigned int hash_len;
47};
48
49/*
50 * This structure contains device metadata, and table hash for
51 * active and inactive tables for ima measurements.
52 */
53struct dm_ima_measurements {
54 struct dm_ima_device_table_metadata active_table;
55 struct dm_ima_device_table_metadata inactive_table;
Tushar Sugandhidc7b79c2021-08-13 14:37:57 -0700[diff] [blame]56 unsigned int dm_version_str_len;
Tushar Sugandhi91ccbba2021-07-12 17:48:58 -0700[diff] [blame]57};
58
59void dm_ima_reset_data(struct mapped_device *md);
60void dm_ima_measure_on_table_load(struct dm_table *table, unsigned int status_flags);
Tushar Sugandhi8eb6fab2021-07-12 17:48:59 -0700[diff] [blame]61void dm_ima_measure_on_device_resume(struct mapped_device *md, bool swap);
Tushar Sugandhi84010e52021-07-12 17:49:00 -0700[diff] [blame]62void dm_ima_measure_on_device_remove(struct mapped_device *md, bool remove_all);
Tushar Sugandhi99169b92021-07-12 17:49:01 -0700[diff] [blame]63void dm_ima_measure_on_table_clear(struct mapped_device *md, bool new_map);
Tushar Sugandhi7d1d1df2021-07-12 17:49:02 -0700[diff] [blame]64void dm_ima_measure_on_device_rename(struct mapped_device *md);
Tushar Sugandhi91ccbba2021-07-12 17:48:58 -0700[diff] [blame]65
66#else
67
68static inline void dm_ima_reset_data(struct mapped_device *md) {}
69static inline void dm_ima_measure_on_table_load(struct dm_table *table, unsigned int status_flags) {}
Tushar Sugandhi8eb6fab2021-07-12 17:48:59 -0700[diff] [blame]70static inline void dm_ima_measure_on_device_resume(struct mapped_device *md, bool swap) {}
Tushar Sugandhi84010e52021-07-12 17:49:00 -0700[diff] [blame]71static inline void dm_ima_measure_on_device_remove(struct mapped_device *md, bool remove_all) {}
Tushar Sugandhi99169b92021-07-12 17:49:01 -0700[diff] [blame]72static inline void dm_ima_measure_on_table_clear(struct mapped_device *md, bool new_map) {}
Tushar Sugandhi7d1d1df2021-07-12 17:49:02 -0700[diff] [blame]73static inline void dm_ima_measure_on_device_rename(struct mapped_device *md) {}
Tushar Sugandhi91ccbba2021-07-12 17:48:58 -0700[diff] [blame]74
75#endif /* CONFIG_IMA */
76
77#endif /* DM_IMA_H */