integrity: add measured_pcrs field to integrity cache

To keep track of which measurements have been extended to which PCRs, this patch defines a new integrity_iint_cache field named measured_pcrs. This field is a bitmask of the PCRs measured. Each bit corresponds to a PCR index. For example, bit 10 corresponds to PCR 10. Signed-off-by: Eric Richter <erichte@linux.vnet.ibm.com> Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
author: Eric Richter <erichte@linux.vnet.ibm.com> 2016-06-01 13:14:00 -0500
committer: Mimi Zohar <zohar@linux.vnet.ibm.com> 2016-06-30 01:14:19 -0400
commit: 96d450bbeccda6f32c70bbb9ee54057f68733cad (patch)
tree: d42a489679baa7e4043430cdc610f67d9c5d0369 /security/integrity/integrity.h
parent: f786b752098216fedb73ba2905c8cce12358534a (diff)
download: linux-0-day-96d450bbeccda6f32c70bbb9ee54057f68733cad.tar.gz
linux-0-day-96d450bbeccda6f32c70bbb9ee54057f68733cad.tar.xz
1 files changed, 1 insertions, 0 deletions
diff --git a/security/integrity/integrity.h b/security/integrity/integrity.h
index 90bc57d796ec1..24520b4ef3b08 100644
--- a/security/integrity/integrity.h
+++ b/security/integrity/integrity.h
@@ -103,6 +103,7 @@ struct integrity_iint_cache {
 	struct inode *inode;	/* back pointer to inode in question */
 	u64 version;		/* track inode changes */
 	unsigned long flags;
+	unsigned long measured_pcrs;
 	enum integrity_status ima_file_status:4;
 	enum integrity_status ima_mmap_status:4;
 	enum integrity_status ima_bprm_status:4;
author	Eric Richter <erichte@linux.vnet.ibm.com>	2016-06-01 13:14:00 -0500
committer	Mimi Zohar <zohar@linux.vnet.ibm.com>	2016-06-30 01:14:19 -0400
commit	96d450bbeccda6f32c70bbb9ee54057f68733cad (patch)
tree	d42a489679baa7e4043430cdc610f67d9c5d0369 /security/integrity/integrity.h
parent	f786b752098216fedb73ba2905c8cce12358534a (diff)
download	linux-0-day-96d450bbeccda6f32c70bbb9ee54057f68733cad.tar.gz linux-0-day-96d450bbeccda6f32c70bbb9ee54057f68733cad.tar.xz