summaryrefslogtreecommitdiffstats
path: root/drivers/md/dm-ima.h
diff options
context:
space:
mode:
authorTushar Sugandhi <tusharsu@linux.microsoft.com>2021-07-13 02:49:00 +0200
committerMike Snitzer <snitzer@redhat.com>2021-08-10 19:34:22 +0200
commit84010e519f95c863728e4b1d73cf93cda41ac00e (patch)
tree359b62c7fe2d5e1f811463b267d6ce6182b09a63 /drivers/md/dm-ima.h
parentdm ima: measure data on device resume (diff)
downloadlinux-84010e519f95c863728e4b1d73cf93cda41ac00e.tar.xz
linux-84010e519f95c863728e4b1d73cf93cda41ac00e.zip
dm ima: measure data on device remove
Presence of an active block-device, configured with expected parameters, is important for an external attestation service to determine if a system meets the attestation requirements. Therefore it is important for DM to measure the device remove events. Measure device parameters and table hashes when the device is removed, using either remove or remove_all. Signed-off-by: Tushar Sugandhi <tusharsu@linux.microsoft.com> Signed-off-by: Mike Snitzer <snitzer@redhat.com>
Diffstat (limited to 'drivers/md/dm-ima.h')
-rw-r--r--drivers/md/dm-ima.h2
1 files changed, 2 insertions, 0 deletions
diff --git a/drivers/md/dm-ima.h b/drivers/md/dm-ima.h
index 78c36b877ccf..59bede2454b0 100644
--- a/drivers/md/dm-ima.h
+++ b/drivers/md/dm-ima.h
@@ -50,12 +50,14 @@ struct dm_ima_measurements {
void dm_ima_reset_data(struct mapped_device *md);
void dm_ima_measure_on_table_load(struct dm_table *table, unsigned int status_flags);
void dm_ima_measure_on_device_resume(struct mapped_device *md, bool swap);
+void dm_ima_measure_on_device_remove(struct mapped_device *md, bool remove_all);
#else
static inline void dm_ima_reset_data(struct mapped_device *md) {}
static inline void dm_ima_measure_on_table_load(struct dm_table *table, unsigned int status_flags) {}
static inline void dm_ima_measure_on_device_resume(struct mapped_device *md, bool swap) {}
+static inline void dm_ima_measure_on_device_remove(struct mapped_device *md, bool remove_all) {}
#endif /* CONFIG_IMA */