Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security

Pull security subsystem updates from James Morris: "Highlights: - Integrity: add local fs integrity verification to detect offline attacks - Integrity: add digital signature verification - Simple stacking of Yama with other LSMs (per LSS discussions) - IBM vTPM support on ppc64 - Add new driver for Infineon I2C TIS TPM - Smack: add rule revocation for subject labels" Fixed conflicts with the user namespace support in kernel/auditsc.c and security/integrity/ima/ima_policy.c. * 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security: (39 commits) Documentation: Update git repository URL for Smack userland tools ima: change flags container data type Smack: setprocattr memory leak fix Smack: implement revoking all rules for a subject label Smack: remove task_wait() hook. ima: audit log hashes ima: generic IMA action flag handling ima: rename ima_must_appraise_or_measure audit: export audit_log_task_info tpm: fix tpm_acpi sparse warning on different address spaces samples/seccomp: fix 31 bit build on s390 ima: digital signature verification support ima: add support for different security.ima data types ima: add ima_inode_setxattr/removexattr function and calls ima: add inode_post_setattr call ima: replace iint spinblock with rwlock/read_lock ima: allocating iint improvements ima: add appraise action keywords and default rules ima: integrity appraisal extension vfs: move ima_file_free before releasing the file ...
author: Linus Torvalds <torvalds@linux-foundation.org> 2012-10-02 21:38:48 -0700
committer: Linus Torvalds <torvalds@linux-foundation.org> 2012-10-02 21:38:48 -0700
commit: 88265322c14cce39f7afbc416726ef4fac413298 (patch)
tree: e4956f905ef617971f87788d8f8a09dbb66b70a3 /include/linux/security.h
parent: Merge tag 'upstream-3.7-rc1' of git://git.infradead.org/linux-ubi (diff)
parent: Merge tag 'v3.6-rc7' into next (diff)
download: linux-dev-88265322c14cce39f7afbc416726ef4fac413298.tar.xz
linux-dev-88265322c14cce39f7afbc416726ef4fac413298.zip
1 files changed, 31 insertions, 0 deletions
diff --git a/include/linux/security.h b/include/linux/security.h
index 145accee9236..5b50c4e1a7c2 100644
--- a/include/linux/security.h
+++ b/include/linux/security.h
@@ -3022,5 +3022,36 @@ static inline void free_secdata(void *secdata)
 { }
 #endif /* CONFIG_SECURITY */
 
+#ifdef CONFIG_SECURITY_YAMA
+extern int yama_ptrace_access_check(struct task_struct *child,
+				    unsigned int mode);
+extern int yama_ptrace_traceme(struct task_struct *parent);
+extern void yama_task_free(struct task_struct *task);
+extern int yama_task_prctl(int option, unsigned long arg2, unsigned long arg3,
+			   unsigned long arg4, unsigned long arg5);
+#else
+static inline int yama_ptrace_access_check(struct task_struct *child,
+					   unsigned int mode)
+{
+	return 0;
+}
+
+static inline int yama_ptrace_traceme(struct task_struct *parent)
+{
+	return 0;
+}
+
+static inline void yama_task_free(struct task_struct *task)
+{
+}
+
+static inline int yama_task_prctl(int option, unsigned long arg2,
+				  unsigned long arg3, unsigned long arg4,
+				  unsigned long arg5)
+{
+	return -ENOSYS;
+}
+#endif /* CONFIG_SECURITY_YAMA */
+
 #endif /* ! __LINUX_SECURITY_H */
author	Linus Torvalds <torvalds@linux-foundation.org>	2012-10-02 21:38:48 -0700
committer	Linus Torvalds <torvalds@linux-foundation.org>	2012-10-02 21:38:48 -0700
commit	88265322c14cce39f7afbc416726ef4fac413298 (patch)
tree	e4956f905ef617971f87788d8f8a09dbb66b70a3 /include/linux/security.h
parent	Merge tag 'upstream-3.7-rc1' of git://git.infradead.org/linux-ubi (diff)
parent	Merge tag 'v3.6-rc7' into next (diff)
download	linux-dev-88265322c14cce39f7afbc416726ef4fac413298.tar.xz linux-dev-88265322c14cce39f7afbc416726ef4fac413298.zip