// SPDX-License-Identifier: GPL-2.0 /* * Copyright (C) 2020-2024 Microsoft Corporation. All rights reserved. */ #include <uapi/linux/lsm.h> #include "ipe.h" #include "eval.h" #include "hooks.h" extern const char *const ipe_boot_policy; bool ipe_enabled; static struct lsm_blob_sizes ipe_blobs __ro_after_init = …; static const struct lsm_id ipe_lsmid = …; struct ipe_superblock *ipe_sb(const struct super_block *sb) { … } #ifdef CONFIG_IPE_PROP_DM_VERITY struct ipe_bdev *ipe_bdev(struct block_device *b) { … } #endif /* CONFIG_IPE_PROP_DM_VERITY */ #ifdef CONFIG_IPE_PROP_FS_VERITY_BUILTIN_SIG struct ipe_inode *ipe_inode(const struct inode *inode) { … } #endif /* CONFIG_IPE_PROP_FS_VERITY_BUILTIN_SIG */ static struct security_hook_list ipe_hooks[] __ro_after_init = …; /** * ipe_init() - Entry point of IPE. * * This is called at LSM init, which happens occurs early during kernel * start up. During this phase, IPE registers its hooks and loads the * builtin boot policy. * * Return: * * %0 - OK * * %-ENOMEM - Out of memory (OOM) */ static int __init ipe_init(void) { … } DEFINE_LSM(ipe) = …;
Codebase Browser
linux