search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Merge tag 'samsung-defconfig-v2' of git://git.kernel.org/pub/scm/linux/kernel/git...
[linux-2.6.git] / security / smack / smackfs.c
blobab167037b2ddcc99b9dc733b69f1243ee65843fb
1 /*
2 * Copyright (C) 2007 Casey Schaufler <casey@schaufler-ca.com>
3 *
4 * This program is free software; you can redistribute it and/or modify
5 * it under the terms of the GNU General Public License as published by
6 * the Free Software Foundation, version 2.
7 *
8 * Authors:
9 * Casey Schaufler <casey@schaufler-ca.com>
10 * Ahmed S. Darwish <darwish.07@gmail.com>
11 *
12 * Special thanks to the authors of selinuxfs.
13 *
14 * Karl MacMillan <kmacmillan@tresys.com>
15 * James Morris <jmorris@redhat.com>
16 *
17 */
18
19 #include <linux/kernel.h>
20 #include <linux/vmalloc.h>
21 #include <linux/security.h>
22 #include <linux/mutex.h>
23 #include <linux/slab.h>
24 #include <net/net_namespace.h>
25 #include <net/cipso_ipv4.h>
26 #include <linux/seq_file.h>
27 #include <linux/ctype.h>
28 #include <linux/audit.h>
29 #include <linux/magic.h>
30 #include "smack.h"
31
32 /*
33 * smackfs pseudo filesystem.
34 */
35
36 enum smk_inos {
37 SMK_ROOT_INO = 2,
38 SMK_LOAD = 3, /* load policy */
39 SMK_CIPSO = 4, /* load label -> CIPSO mapping */
40 SMK_DOI = 5, /* CIPSO DOI */
41 SMK_DIRECT = 6, /* CIPSO level indicating direct label */
42 SMK_AMBIENT = 7, /* internet ambient label */
43 SMK_NETLBLADDR = 8, /* single label hosts */
44 SMK_ONLYCAP = 9, /* the only "capable" label */
45 SMK_LOGGING = 10, /* logging */
46 SMK_LOAD_SELF = 11, /* task specific rules */
47 SMK_ACCESSES = 12, /* access policy */
48 SMK_MAPPED = 13, /* CIPSO level indicating mapped label */
49 SMK_LOAD2 = 14, /* load policy with long labels */
50 SMK_LOAD_SELF2 = 15, /* load task specific rules with long labels */
51 SMK_ACCESS2 = 16, /* make an access check with long labels */
52 SMK_CIPSO2 = 17, /* load long label -> CIPSO mapping */
53 SMK_REVOKE_SUBJ = 18, /* set rules with subject label to '-' */
54 SMK_CHANGE_RULE = 19, /* change or add rules (long labels) */
55 };
56
57 /*
58 * List locks
59 */
60 static DEFINE_MUTEX(smack_cipso_lock);
61 static DEFINE_MUTEX(smack_ambient_lock);
62 static DEFINE_MUTEX(smk_netlbladdr_lock);
63
64 /*
65 * This is the "ambient" label for network traffic.
66 * If it isn't somehow marked, use this.
67 * It can be reset via smackfs/ambient
68 */
69 struct smack_known *smack_net_ambient;
70
71 /*
72 * This is the level in a CIPSO header that indicates a
73 * smack label is contained directly in the category set.
74 * It can be reset via smackfs/direct
75 */
76 int smack_cipso_direct = SMACK_CIPSO_DIRECT_DEFAULT;
77
78 /*
79 * This is the level in a CIPSO header that indicates a
80 * secid is contained directly in the category set.
81 * It can be reset via smackfs/mapped
82 */
83 int smack_cipso_mapped = SMACK_CIPSO_MAPPED_DEFAULT;
84
85 /*
86 * Unless a process is running with this label even
87 * having CAP_MAC_OVERRIDE isn't enough to grant
88 * privilege to violate MAC policy. If no label is
89 * designated (the NULL case) capabilities apply to
90 * everyone. It is expected that the hat (^) label
91 * will be used if any label is used.
92 */
93 char *smack_onlycap;
94
95 /*
96 * Certain IP addresses may be designated as single label hosts.
97 * Packets are sent there unlabeled, but only from tasks that
98 * can write to the specified label.
99 */
100
101 LIST_HEAD(smk_netlbladdr_list);
102
103 /*
104 * Rule lists are maintained for each label.
105 * This master list is just for reading /smack/load and /smack/load2.
106 */
107 struct smack_master_list {
108 struct list_head list;
109 struct smack_rule *smk_rule;
110 };
111
112 LIST_HEAD(smack_rule_list);
113
114 struct smack_parsed_rule {
115 struct smack_known *smk_subject;
116 char *smk_object;
117 int smk_access1;
118 int smk_access2;
119 };
120
121 static int smk_cipso_doi_value = SMACK_CIPSO_DOI_DEFAULT;
122
123 const char *smack_cipso_option = SMACK_CIPSO_OPTION;
124
125 /*
126 * Values for parsing cipso rules
127 * SMK_DIGITLEN: Length of a digit field in a rule.
128 * SMK_CIPSOMIN: Minimum possible cipso rule length.
129 * SMK_CIPSOMAX: Maximum possible cipso rule length.
130 */
131 #define SMK_DIGITLEN 4
132 #define SMK_CIPSOMIN (SMK_LABELLEN + 2 * SMK_DIGITLEN)
133 #define SMK_CIPSOMAX (SMK_CIPSOMIN + SMACK_CIPSO_MAXCATNUM * SMK_DIGITLEN)
134
135 /*
136 * Values for parsing MAC rules
137 * SMK_ACCESS: Maximum possible combination of access permissions
138 * SMK_ACCESSLEN: Maximum length for a rule access field
139 * SMK_LOADLEN: Smack rule length
140 */
141 #define SMK_OACCESS "rwxa"
142 #define SMK_ACCESS "rwxat"
143 #define SMK_OACCESSLEN (sizeof(SMK_OACCESS) - 1)
144 #define SMK_ACCESSLEN (sizeof(SMK_ACCESS) - 1)
145 #define SMK_OLOADLEN (SMK_LABELLEN + SMK_LABELLEN + SMK_OACCESSLEN)
146 #define SMK_LOADLEN (SMK_LABELLEN + SMK_LABELLEN + SMK_ACCESSLEN)
147
148 /*
149 * Stricly for CIPSO level manipulation.
150 * Set the category bit number in a smack label sized buffer.
151 */
152 static inline void smack_catset_bit(unsigned int cat, char *catsetp)
153 {
154 if (cat == 0 || cat > (SMK_CIPSOLEN * 8))
155 return;
156
157 catsetp[(cat - 1) / 8] |= 0x80 >> ((cat - 1) % 8);
158 }
159
160 /**
161 * smk_netlabel_audit_set - fill a netlbl_audit struct
162 * @nap: structure to fill
163 */
164 static void smk_netlabel_audit_set(struct netlbl_audit *nap)
165 {
166 struct smack_known *skp = smk_of_current();
167
168 nap->loginuid = audit_get_loginuid(current);
169 nap->sessionid = audit_get_sessionid(current);
170 nap->secid = skp->smk_secid;
171 }
172
173 /*
174 * Value for parsing single label host rules
175 * "1.2.3.4 X"
176 */
177 #define SMK_NETLBLADDRMIN 9
178
179 /**
180 * smk_set_access - add a rule to the rule list or replace an old rule
181 * @srp: the rule to add or replace
182 * @rule_list: the list of rules
183 * @rule_lock: the rule list lock
184 * @global: if non-zero, indicates a global rule
185 *
186 * Looks through the current subject/object/access list for
187 * the subject/object pair and replaces the access that was
188 * there. If the pair isn't found add it with the specified
189 * access.
190 *
191 * Returns 0 if nothing goes wrong or -ENOMEM if it fails
192 * during the allocation of the new pair to add.
193 */
194 static int smk_set_access(struct smack_parsed_rule *srp,
195 struct list_head *rule_list,
196 struct mutex *rule_lock, int global)
197 {
198 struct smack_rule *sp;
199 struct smack_master_list *smlp;
200 int found = 0;
201 int rc = 0;
202
203 mutex_lock(rule_lock);
204
205 /*
206 * Because the object label is less likely to match
207 * than the subject label check it first
208 */
209 list_for_each_entry_rcu(sp, rule_list, list) {
210 if (sp->smk_object == srp->smk_object &&
211 sp->smk_subject == srp->smk_subject) {
212 found = 1;
213 sp->smk_access |= srp->smk_access1;
214 sp->smk_access &= ~srp->smk_access2;
215 break;
216 }
217 }
218
219 if (found == 0) {
220 sp = kzalloc(sizeof(*sp), GFP_KERNEL);
221 if (sp == NULL) {
222 rc = -ENOMEM;
223 goto out;
224 }
225
226 sp->smk_subject = srp->smk_subject;
227 sp->smk_object = srp->smk_object;
228 sp->smk_access = srp->smk_access1 & ~srp->smk_access2;
229
230 list_add_rcu(&sp->list, rule_list);
231 /*
232 * If this is a global as opposed to self and a new rule
233 * it needs to get added for reporting.
234 */
235 if (global) {
236 smlp = kzalloc(sizeof(*smlp), GFP_KERNEL);
237 if (smlp != NULL) {
238 smlp->smk_rule = sp;
239 list_add_rcu(&smlp->list, &smack_rule_list);
240 } else
241 rc = -ENOMEM;
242 }
243 }
244
245 out:
246 mutex_unlock(rule_lock);
247 return rc;
248 }
249
250 /**
251 * smk_perm_from_str - parse smack accesses from a text string
252 * @string: a text string that contains a Smack accesses code
253 *
254 * Returns an integer with respective bits set for specified accesses.
255 */
256 static int smk_perm_from_str(const char *string)
257 {
258 int perm = 0;
259 const char *cp;
260
261 for (cp = string; ; cp++)
262 switch (*cp) {
263 case '-':
264 break;
265 case 'r':
266 case 'R':
267 perm |= MAY_READ;
268 break;
269 case 'w':
270 case 'W':
271 perm |= MAY_WRITE;
272 break;
273 case 'x':
274 case 'X':
275 perm |= MAY_EXEC;
276 break;
277 case 'a':
278 case 'A':
279 perm |= MAY_APPEND;
280 break;
281 case 't':
282 case 'T':
283 perm |= MAY_TRANSMUTE;
284 break;
285 default:
286 return perm;
287 }
288 }
289
290 /**
291 * smk_fill_rule - Fill Smack rule from strings
292 * @subject: subject label string
293 * @object: object label string
294 * @access1: access string
295 * @access2: string with permissions to be removed
296 * @rule: Smack rule
297 * @import: if non-zero, import labels
298 * @len: label length limit
299 *
300 * Returns 0 on success, -1 on failure
301 */
302 static int smk_fill_rule(const char *subject, const char *object,
303 const char *access1, const char *access2,
304 struct smack_parsed_rule *rule, int import,
305 int len)
306 {
307 const char *cp;
308 struct smack_known *skp;
309
310 if (import) {
311 rule->smk_subject = smk_import_entry(subject, len);
312 if (rule->smk_subject == NULL)
313 return -1;
314
315 rule->smk_object = smk_import(object, len);
316 if (rule->smk_object == NULL)
317 return -1;
318 } else {
319 cp = smk_parse_smack(subject, len);
320 if (cp == NULL)
321 return -1;
322 skp = smk_find_entry(cp);
323 kfree(cp);
324 if (skp == NULL)
325 return -1;
326 rule->smk_subject = skp;
327
328 cp = smk_parse_smack(object, len);
329 if (cp == NULL)
330 return -1;
331 skp = smk_find_entry(cp);
332 kfree(cp);
333 if (skp == NULL)
334 return -1;
335 rule->smk_object = skp->smk_known;
336 }
337
338 rule->smk_access1 = smk_perm_from_str(access1);
339 if (access2)
340 rule->smk_access2 = smk_perm_from_str(access2);
341 else
342 rule->smk_access2 = ~rule->smk_access1;
343
344 return 0;
345 }
346
347 /**
348 * smk_parse_rule - parse Smack rule from load string
349 * @data: string to be parsed whose size is SMK_LOADLEN
350 * @rule: Smack rule
351 * @import: if non-zero, import labels
352 *
353 * Returns 0 on success, -1 on errors.
354 */
355 static int smk_parse_rule(const char *data, struct smack_parsed_rule *rule,
356 int import)
357 {
358 int rc;
359
360 rc = smk_fill_rule(data, data + SMK_LABELLEN,
361 data + SMK_LABELLEN + SMK_LABELLEN, NULL, rule,
362 import, SMK_LABELLEN);
363 return rc;
364 }
365
366 /**
367 * smk_parse_long_rule - parse Smack rule from rule string
368 * @data: string to be parsed, null terminated
369 * @rule: Will be filled with Smack parsed rule
370 * @import: if non-zero, import labels
371 * @change: if non-zero, data is from /smack/change-rule
372 *
373 * Returns 0 on success, -1 on failure
374 */
375 static int smk_parse_long_rule(const char *data, struct smack_parsed_rule *rule,
376 int import, int change)
377 {
378 char *subject;
379 char *object;
380 char *access1;
381 char *access2;
382 int datalen;
383 int rc = -1;
384
385 /* This is inefficient */
386 datalen = strlen(data);
387
388 /* Our first element can be 64 + \0 with no spaces */
389 subject = kzalloc(datalen + 1, GFP_KERNEL);
390 if (subject == NULL)
391 return -1;
392 object = kzalloc(datalen, GFP_KERNEL);
393 if (object == NULL)
394 goto free_out_s;
395 access1 = kzalloc(datalen, GFP_KERNEL);
396 if (access1 == NULL)
397 goto free_out_o;
398 access2 = kzalloc(datalen, GFP_KERNEL);
399 if (access2 == NULL)
400 goto free_out_a;
401
402 if (change) {
403 if (sscanf(data, "%s %s %s %s",
404 subject, object, access1, access2) == 4)
405 rc = smk_fill_rule(subject, object, access1, access2,
406 rule, import, 0);
407 } else {
408 if (sscanf(data, "%s %s %s", subject, object, access1) == 3)
409 rc = smk_fill_rule(subject, object, access1, NULL,
410 rule, import, 0);
411 }
412
413 kfree(access2);
414 free_out_a:
415 kfree(access1);
416 free_out_o:
417 kfree(object);
418 free_out_s:
419 kfree(subject);
420 return rc;
421 }
422
423 #define SMK_FIXED24_FMT 0 /* Fixed 24byte label format */
424 #define SMK_LONG_FMT 1 /* Variable long label format */
425 #define SMK_CHANGE_FMT 2 /* Rule modification format */
426 /**
427 * smk_write_rules_list - write() for any /smack rule file
428 * @file: file pointer, not actually used
429 * @buf: where to get the data from
430 * @count: bytes sent
431 * @ppos: where to start - must be 0
432 * @rule_list: the list of rules to write to
433 * @rule_lock: lock for the rule list
434 * @format: /smack/load or /smack/load2 or /smack/change-rule format.
435 *
436 * Get one smack access rule from above.
437 * The format for SMK_LONG_FMT is:
438 * "subject<whitespace>object<whitespace>access[<whitespace>...]"
439 * The format for SMK_FIXED24_FMT is exactly:
440 * "subject object rwxat"
441 * The format for SMK_CHANGE_FMT is:
442 * "subject<whitespace>object<whitespace>
443 * acc_enable<whitespace>acc_disable[<whitespace>...]"
444 */
445 static ssize_t smk_write_rules_list(struct file *file, const char __user *buf,
446 size_t count, loff_t *ppos,
447 struct list_head *rule_list,
448 struct mutex *rule_lock, int format)
449 {
450 struct smack_parsed_rule *rule;
451 char *data;
452 int datalen;
453 int rc = -EINVAL;
454 int load = 0;
455
456 /*
457 * No partial writes.
458 * Enough data must be present.
459 */
460 if (*ppos != 0)
461 return -EINVAL;
462
463 if (format == SMK_FIXED24_FMT) {
464 /*
465 * Minor hack for backward compatibility
466 */
467 if (count != SMK_OLOADLEN && count != SMK_LOADLEN)
468 return -EINVAL;
469 datalen = SMK_LOADLEN;
470 } else
471 datalen = count + 1;
472
473 data = kzalloc(datalen, GFP_KERNEL);
474 if (data == NULL)
475 return -ENOMEM;
476
477 if (copy_from_user(data, buf, count) != 0) {
478 rc = -EFAULT;
479 goto out;
480 }
481
482 rule = kzalloc(sizeof(*rule), GFP_KERNEL);
483 if (rule == NULL) {
484 rc = -ENOMEM;
485 goto out;
486 }
487
488 if (format == SMK_LONG_FMT) {
489 /*
490 * Be sure the data string is terminated.
491 */
492 data[count] = '\0';
493 if (smk_parse_long_rule(data, rule, 1, 0))
494 goto out_free_rule;
495 } else if (format == SMK_CHANGE_FMT) {
496 data[count] = '\0';
497 if (smk_parse_long_rule(data, rule, 1, 1))
498 goto out_free_rule;
499 } else {
500 /*
501 * More on the minor hack for backward compatibility
502 */
503 if (count == (SMK_OLOADLEN))
504 data[SMK_OLOADLEN] = '-';
505 if (smk_parse_rule(data, rule, 1))
506 goto out_free_rule;
507 }
508
509 if (rule_list == NULL) {
510 load = 1;
511 rule_list = &rule->smk_subject->smk_rules;
512 rule_lock = &rule->smk_subject->smk_rules_lock;
513 }
514
515 rc = smk_set_access(rule, rule_list, rule_lock, load);
516 if (rc == 0) {
517 rc = count;
518 goto out;
519 }
520
521 out_free_rule:
522 kfree(rule);
523 out:
524 kfree(data);
525 return rc;
526 }
527
528 /*
529 * Core logic for smackfs seq list operations.
530 */
531
532 static void *smk_seq_start(struct seq_file *s, loff_t *pos,
533 struct list_head *head)
534 {
535 struct list_head *list;
536
537 /*
538 * This is 0 the first time through.
539 */
540 if (s->index == 0)
541 s->private = head;
542
543 if (s->private == NULL)
544 return NULL;
545
546 list = s->private;
547 if (list_empty(list))
548 return NULL;
549
550 if (s->index == 0)
551 return list->next;
552 return list;
553 }
554
555 static void *smk_seq_next(struct seq_file *s, void *v, loff_t *pos,
556 struct list_head *head)
557 {
558 struct list_head *list = v;
559
560 if (list_is_last(list, head)) {
561 s->private = NULL;
562 return NULL;
563 }
564 s->private = list->next;
565 return list->next;
566 }
567
568 static void smk_seq_stop(struct seq_file *s, void *v)
569 {
570 /* No-op */
571 }
572
573 static void smk_rule_show(struct seq_file *s, struct smack_rule *srp, int max)
574 {
575 /*
576 * Don't show any rules with label names too long for
577 * interface file (/smack/load or /smack/load2)
578 * because you should expect to be able to write
579 * anything you read back.
580 */
581 if (strlen(srp->smk_subject->smk_known) >= max ||
582 strlen(srp->smk_object) >= max)
583 return;
584
585 if (srp->smk_access == 0)
586 return;
587
588 seq_printf(s, "%s %s", srp->smk_subject->smk_known, srp->smk_object);
589
590 seq_putc(s, ' ');
591
592 if (srp->smk_access & MAY_READ)
593 seq_putc(s, 'r');
594 if (srp->smk_access & MAY_WRITE)
595 seq_putc(s, 'w');
596 if (srp->smk_access & MAY_EXEC)
597 seq_putc(s, 'x');
598 if (srp->smk_access & MAY_APPEND)
599 seq_putc(s, 'a');
600 if (srp->smk_access & MAY_TRANSMUTE)
601 seq_putc(s, 't');
602
603 seq_putc(s, '\n');
604 }
605
606 /*
607 * Seq_file read operations for /smack/load
608 */
609
610 static void *load2_seq_start(struct seq_file *s, loff_t *pos)
611 {
612 return smk_seq_start(s, pos, &smack_rule_list);
613 }
614
615 static void *load2_seq_next(struct seq_file *s, void *v, loff_t *pos)
616 {
617 return smk_seq_next(s, v, pos, &smack_rule_list);
618 }
619
620 static int load_seq_show(struct seq_file *s, void *v)
621 {
622 struct list_head *list = v;
623 struct smack_master_list *smlp =
624 list_entry(list, struct smack_master_list, list);
625
626 smk_rule_show(s, smlp->smk_rule, SMK_LABELLEN);
627
628 return 0;
629 }
630
631 static const struct seq_operations load_seq_ops = {
632 .start = load2_seq_start,
633 .next = load2_seq_next,
634 .show = load_seq_show,
635 .stop = smk_seq_stop,
636 };
637
638 /**
639 * smk_open_load - open() for /smack/load
640 * @inode: inode structure representing file
641 * @file: "load" file pointer
642 *
643 * For reading, use load_seq_* seq_file reading operations.
644 */
645 static int smk_open_load(struct inode *inode, struct file *file)
646 {
647 return seq_open(file, &load_seq_ops);
648 }
649
650 /**
651 * smk_write_load - write() for /smack/load
652 * @file: file pointer, not actually used
653 * @buf: where to get the data from
654 * @count: bytes sent
655 * @ppos: where to start - must be 0
656 *
657 */
658 static ssize_t smk_write_load(struct file *file, const char __user *buf,
659 size_t count, loff_t *ppos)
660 {
661 /*
662 * Must have privilege.
663 * No partial writes.
664 * Enough data must be present.
665 */
666 if (!smack_privileged(CAP_MAC_ADMIN))
667 return -EPERM;
668
669 return smk_write_rules_list(file, buf, count, ppos, NULL, NULL,
670 SMK_FIXED24_FMT);
671 }
672
673 static const struct file_operations smk_load_ops = {
674 .open = smk_open_load,
675 .read = seq_read,
676 .llseek = seq_lseek,
677 .write = smk_write_load,
678 .release = seq_release,
679 };
680
681 /**
682 * smk_cipso_doi - initialize the CIPSO domain
683 */
684 static void smk_cipso_doi(void)
685 {
686 int rc;
687 struct cipso_v4_doi *doip;
688 struct netlbl_audit nai;
689
690 smk_netlabel_audit_set(&nai);
691
692 rc = netlbl_cfg_map_del(NULL, PF_INET, NULL, NULL, &nai);
693 if (rc != 0)
694 printk(KERN_WARNING "%s:%d remove rc = %d\n",
695 __func__, __LINE__, rc);
696
697 doip = kmalloc(sizeof(struct cipso_v4_doi), GFP_KERNEL);
698 if (doip == NULL)
699 panic("smack: Failed to initialize cipso DOI.\n");
700 doip->map.std = NULL;
701 doip->doi = smk_cipso_doi_value;
702 doip->type = CIPSO_V4_MAP_PASS;
703 doip->tags[0] = CIPSO_V4_TAG_RBITMAP;
704 for (rc = 1; rc < CIPSO_V4_TAG_MAXCNT; rc++)
705 doip->tags[rc] = CIPSO_V4_TAG_INVALID;
706
707 rc = netlbl_cfg_cipsov4_add(doip, &nai);
708 if (rc != 0) {
709 printk(KERN_WARNING "%s:%d cipso add rc = %d\n",
710 __func__, __LINE__, rc);
711 kfree(doip);
712 return;
713 }
714 rc = netlbl_cfg_cipsov4_map_add(doip->doi, NULL, NULL, NULL, &nai);
715 if (rc != 0) {
716 printk(KERN_WARNING "%s:%d map add rc = %d\n",
717 __func__, __LINE__, rc);
718 kfree(doip);
719 return;
720 }
721 }
722
723 /**
724 * smk_unlbl_ambient - initialize the unlabeled domain
725 * @oldambient: previous domain string
726 */
727 static void smk_unlbl_ambient(char *oldambient)
728 {
729 int rc;
730 struct netlbl_audit nai;
731
732 smk_netlabel_audit_set(&nai);
733
734 if (oldambient != NULL) {
735 rc = netlbl_cfg_map_del(oldambient, PF_INET, NULL, NULL, &nai);
736 if (rc != 0)
737 printk(KERN_WARNING "%s:%d remove rc = %d\n",
738 __func__, __LINE__, rc);
739 }
740 if (smack_net_ambient == NULL)
741 smack_net_ambient = &smack_known_floor;
742
743 rc = netlbl_cfg_unlbl_map_add(smack_net_ambient->smk_known, PF_INET,
744 NULL, NULL, &nai);
745 if (rc != 0)
746 printk(KERN_WARNING "%s:%d add rc = %d\n",
747 __func__, __LINE__, rc);
748 }
749
750 /*
751 * Seq_file read operations for /smack/cipso
752 */
753
754 static void *cipso_seq_start(struct seq_file *s, loff_t *pos)
755 {
756 return smk_seq_start(s, pos, &smack_known_list);
757 }
758
759 static void *cipso_seq_next(struct seq_file *s, void *v, loff_t *pos)
760 {
761 return smk_seq_next(s, v, pos, &smack_known_list);
762 }
763
764 /*
765 * Print cipso labels in format:
766 * label level[/cat[,cat]]
767 */
768 static int cipso_seq_show(struct seq_file *s, void *v)
769 {
770 struct list_head *list = v;
771 struct smack_known *skp =
772 list_entry(list, struct smack_known, list);
773 struct netlbl_lsm_secattr_catmap *cmp = skp->smk_netlabel.attr.mls.cat;
774 char sep = '/';
775 int i;
776
777 /*
778 * Don't show a label that could not have been set using
779 * /smack/cipso. This is in support of the notion that
780 * anything read from /smack/cipso ought to be writeable
781 * to /smack/cipso.
782 *
783 * /smack/cipso2 should be used instead.
784 */
785 if (strlen(skp->smk_known) >= SMK_LABELLEN)
786 return 0;
787
788 seq_printf(s, "%s %3d", skp->smk_known, skp->smk_netlabel.attr.mls.lvl);
789
790 for (i = netlbl_secattr_catmap_walk(cmp, 0); i >= 0;
791 i = netlbl_secattr_catmap_walk(cmp, i + 1)) {
792 seq_printf(s, "%c%d", sep, i);
793 sep = ',';
794 }
795
796 seq_putc(s, '\n');
797
798 return 0;
799 }
800
801 static const struct seq_operations cipso_seq_ops = {
802 .start = cipso_seq_start,
803 .next = cipso_seq_next,
804 .show = cipso_seq_show,
805 .stop = smk_seq_stop,
806 };
807
808 /**
809 * smk_open_cipso - open() for /smack/cipso
810 * @inode: inode structure representing file
811 * @file: "cipso" file pointer
812 *
813 * Connect our cipso_seq_* operations with /smack/cipso
814 * file_operations
815 */
816 static int smk_open_cipso(struct inode *inode, struct file *file)
817 {
818 return seq_open(file, &cipso_seq_ops);
819 }
820
821 /**
822 * smk_set_cipso - do the work for write() for cipso and cipso2
823 * @file: file pointer, not actually used
824 * @buf: where to get the data from
825 * @count: bytes sent
826 * @ppos: where to start
827 * @format: /smack/cipso or /smack/cipso2
828 *
829 * Accepts only one cipso rule per write call.
830 * Returns number of bytes written or error code, as appropriate
831 */
832 static ssize_t smk_set_cipso(struct file *file, const char __user *buf,
833 size_t count, loff_t *ppos, int format)
834 {
835 struct smack_known *skp;
836 struct netlbl_lsm_secattr ncats;
837 char mapcatset[SMK_CIPSOLEN];
838 int maplevel;
839 unsigned int cat;
840 int catlen;
841 ssize_t rc = -EINVAL;
842 char *data = NULL;
843 char *rule;
844 int ret;
845 int i;
846
847 /*
848 * Must have privilege.
849 * No partial writes.
850 * Enough data must be present.
851 */
852 if (!smack_privileged(CAP_MAC_ADMIN))
853 return -EPERM;
854 if (*ppos != 0)
855 return -EINVAL;
856 if (format == SMK_FIXED24_FMT &&
857 (count < SMK_CIPSOMIN || count > SMK_CIPSOMAX))
858 return -EINVAL;
859
860 data = kzalloc(count + 1, GFP_KERNEL);
861 if (data == NULL)
862 return -ENOMEM;
863
864 if (copy_from_user(data, buf, count) != 0) {
865 rc = -EFAULT;
866 goto unlockedout;
867 }
868
869 data[count] = '\0';
870 rule = data;
871 /*
872 * Only allow one writer at a time. Writes should be
873 * quite rare and small in any case.
874 */
875 mutex_lock(&smack_cipso_lock);
876
877 skp = smk_import_entry(rule, 0);
878 if (skp == NULL)
879 goto out;
880
881 if (format == SMK_FIXED24_FMT)
882 rule += SMK_LABELLEN;
883 else
884 rule += strlen(skp->smk_known) + 1;
885
886 ret = sscanf(rule, "%d", &maplevel);
887 if (ret != 1 || maplevel > SMACK_CIPSO_MAXLEVEL)
888 goto out;
889
890 rule += SMK_DIGITLEN;
891 ret = sscanf(rule, "%d", &catlen);
892 if (ret != 1 || catlen > SMACK_CIPSO_MAXCATNUM)
893 goto out;
894
895 if (format == SMK_FIXED24_FMT &&
896 count != (SMK_CIPSOMIN + catlen * SMK_DIGITLEN))
897 goto out;
898
899 memset(mapcatset, 0, sizeof(mapcatset));
900
901 for (i = 0; i < catlen; i++) {
902 rule += SMK_DIGITLEN;
903 ret = sscanf(rule, "%u", &cat);
904 if (ret != 1 || cat > SMACK_CIPSO_MAXCATVAL)
905 goto out;
906
907 smack_catset_bit(cat, mapcatset);
908 }
909
910 rc = smk_netlbl_mls(maplevel, mapcatset, &ncats, SMK_CIPSOLEN);
911 if (rc >= 0) {
912 netlbl_secattr_catmap_free(skp->smk_netlabel.attr.mls.cat);
913 skp->smk_netlabel.attr.mls.cat = ncats.attr.mls.cat;
914 skp->smk_netlabel.attr.mls.lvl = ncats.attr.mls.lvl;
915 rc = count;
916 }
917
918 out:
919 mutex_unlock(&smack_cipso_lock);
920 unlockedout:
921 kfree(data);
922 return rc;
923 }
924
925 /**
926 * smk_write_cipso - write() for /smack/cipso
927 * @file: file pointer, not actually used
928 * @buf: where to get the data from
929 * @count: bytes sent
930 * @ppos: where to start
931 *
932 * Accepts only one cipso rule per write call.
933 * Returns number of bytes written or error code, as appropriate
934 */
935 static ssize_t smk_write_cipso(struct file *file, const char __user *buf,
936 size_t count, loff_t *ppos)
937 {
938 return smk_set_cipso(file, buf, count, ppos, SMK_FIXED24_FMT);
939 }
940
941 static const struct file_operations smk_cipso_ops = {
942 .open = smk_open_cipso,
943 .read = seq_read,
944 .llseek = seq_lseek,
945 .write = smk_write_cipso,
946 .release = seq_release,
947 };
948
949 /*
950 * Seq_file read operations for /smack/cipso2
951 */
952
953 /*
954 * Print cipso labels in format:
955 * label level[/cat[,cat]]
956 */
957 static int cipso2_seq_show(struct seq_file *s, void *v)
958 {
959 struct list_head *list = v;
960 struct smack_known *skp =
961 list_entry(list, struct smack_known, list);
962 struct netlbl_lsm_secattr_catmap *cmp = skp->smk_netlabel.attr.mls.cat;
963 char sep = '/';
964 int i;
965
966 seq_printf(s, "%s %3d", skp->smk_known, skp->smk_netlabel.attr.mls.lvl);
967
968 for (i = netlbl_secattr_catmap_walk(cmp, 0); i >= 0;
969 i = netlbl_secattr_catmap_walk(cmp, i + 1)) {
970 seq_printf(s, "%c%d", sep, i);
971 sep = ',';
972 }
973
974 seq_putc(s, '\n');
975
976 return 0;
977 }
978
979 static const struct seq_operations cipso2_seq_ops = {
980 .start = cipso_seq_start,
981 .next = cipso_seq_next,
982 .show = cipso2_seq_show,
983 .stop = smk_seq_stop,
984 };
985
986 /**
987 * smk_open_cipso2 - open() for /smack/cipso2
988 * @inode: inode structure representing file
989 * @file: "cipso2" file pointer
990 *
991 * Connect our cipso_seq_* operations with /smack/cipso2
992 * file_operations
993 */
994 static int smk_open_cipso2(struct inode *inode, struct file *file)
995 {
996 return seq_open(file, &cipso2_seq_ops);
997 }
998
999 /**
1000 * smk_write_cipso2 - write() for /smack/cipso2
1001 * @file: file pointer, not actually used
1002 * @buf: where to get the data from
1003 * @count: bytes sent
1004 * @ppos: where to start
1005 *
1006 * Accepts only one cipso rule per write call.
1007 * Returns number of bytes written or error code, as appropriate
1008 */
1009 static ssize_t smk_write_cipso2(struct file *file, const char __user *buf,
1010 size_t count, loff_t *ppos)
1011 {
1012 return smk_set_cipso(file, buf, count, ppos, SMK_LONG_FMT);
1013 }
1014
1015 static const struct file_operations smk_cipso2_ops = {
1016 .open = smk_open_cipso2,
1017 .read = seq_read,
1018 .llseek = seq_lseek,
1019 .write = smk_write_cipso2,
1020 .release = seq_release,
1021 };
1022
1023 /*
1024 * Seq_file read operations for /smack/netlabel
1025 */
1026
1027 static void *netlbladdr_seq_start(struct seq_file *s, loff_t *pos)
1028 {
1029 return smk_seq_start(s, pos, &smk_netlbladdr_list);
1030 }
1031
1032 static void *netlbladdr_seq_next(struct seq_file *s, void *v, loff_t *pos)
1033 {
1034 return smk_seq_next(s, v, pos, &smk_netlbladdr_list);
1035 }
1036 #define BEBITS (sizeof(__be32) * 8)
1037
1038 /*
1039 * Print host/label pairs
1040 */
1041 static int netlbladdr_seq_show(struct seq_file *s, void *v)
1042 {
1043 struct list_head *list = v;
1044 struct smk_netlbladdr *skp =
1045 list_entry(list, struct smk_netlbladdr, list);
1046 unsigned char *hp = (char *) &skp->smk_host.sin_addr.s_addr;
1047 int maskn;
1048 u32 temp_mask = be32_to_cpu(skp->smk_mask.s_addr);
1049
1050 for (maskn = 0; temp_mask; temp_mask <<= 1, maskn++);
1051
1052 seq_printf(s, "%u.%u.%u.%u/%d %s\n",
1053 hp[0], hp[1], hp[2], hp[3], maskn, skp->smk_label);
1054
1055 return 0;
1056 }
1057
1058 static const struct seq_operations netlbladdr_seq_ops = {
1059 .start = netlbladdr_seq_start,
1060 .next = netlbladdr_seq_next,
1061 .show = netlbladdr_seq_show,
1062 .stop = smk_seq_stop,
1063 };
1064
1065 /**
1066 * smk_open_netlbladdr - open() for /smack/netlabel
1067 * @inode: inode structure representing file
1068 * @file: "netlabel" file pointer
1069 *
1070 * Connect our netlbladdr_seq_* operations with /smack/netlabel
1071 * file_operations
1072 */
1073 static int smk_open_netlbladdr(struct inode *inode, struct file *file)
1074 {
1075 return seq_open(file, &netlbladdr_seq_ops);
1076 }
1077
1078 /**
1079 * smk_netlbladdr_insert
1080 * @new : netlabel to insert
1081 *
1082 * This helper insert netlabel in the smack_netlbladdrs list
1083 * sorted by netmask length (longest to smallest)
1084 * locked by &smk_netlbladdr_lock in smk_write_netlbladdr
1085 *
1086 */
1087 static void smk_netlbladdr_insert(struct smk_netlbladdr *new)
1088 {
1089 struct smk_netlbladdr *m, *m_next;
1090
1091 if (list_empty(&smk_netlbladdr_list)) {
1092 list_add_rcu(&new->list, &smk_netlbladdr_list);
1093 return;
1094 }
1095
1096 m = list_entry_rcu(smk_netlbladdr_list.next,
1097 struct smk_netlbladdr, list);
1098
1099 /* the comparison '>' is a bit hacky, but works */
1100 if (new->smk_mask.s_addr > m->smk_mask.s_addr) {
1101 list_add_rcu(&new->list, &smk_netlbladdr_list);
1102 return;
1103 }
1104
1105 list_for_each_entry_rcu(m, &smk_netlbladdr_list, list) {
1106 if (list_is_last(&m->list, &smk_netlbladdr_list)) {
1107 list_add_rcu(&new->list, &m->list);
1108 return;
1109 }
1110 m_next = list_entry_rcu(m->list.next,
1111 struct smk_netlbladdr, list);
1112 if (new->smk_mask.s_addr > m_next->smk_mask.s_addr) {
1113 list_add_rcu(&new->list, &m->list);
1114 return;
1115 }
1116 }
1117 }
1118
1119
1120 /**
1121 * smk_write_netlbladdr - write() for /smack/netlabel
1122 * @file: file pointer, not actually used
1123 * @buf: where to get the data from
1124 * @count: bytes sent
1125 * @ppos: where to start
1126 *
1127 * Accepts only one netlbladdr per write call.
1128 * Returns number of bytes written or error code, as appropriate
1129 */
1130 static ssize_t smk_write_netlbladdr(struct file *file, const char __user *buf,
1131 size_t count, loff_t *ppos)
1132 {
1133 struct smk_netlbladdr *skp;
1134 struct sockaddr_in newname;
1135 char *smack;
1136 char *sp;
1137 char *data;
1138 char *host = (char *)&newname.sin_addr.s_addr;
1139 int rc;
1140 struct netlbl_audit audit_info;
1141 struct in_addr mask;
1142 unsigned int m;
1143 int found;
1144 u32 mask_bits = (1<<31);
1145 __be32 nsa;
1146 u32 temp_mask;
1147
1148 /*
1149 * Must have privilege.
1150 * No partial writes.
1151 * Enough data must be present.
1152 * "<addr/mask, as a.b.c.d/e><space><label>"
1153 * "<addr, as a.b.c.d><space><label>"
1154 */
1155 if (!smack_privileged(CAP_MAC_ADMIN))
1156 return -EPERM;
1157 if (*ppos != 0)
1158 return -EINVAL;
1159 if (count < SMK_NETLBLADDRMIN)
1160 return -EINVAL;
1161
1162 data = kzalloc(count + 1, GFP_KERNEL);
1163 if (data == NULL)
1164 return -ENOMEM;
1165
1166 if (copy_from_user(data, buf, count) != 0) {
1167 rc = -EFAULT;
1168 goto free_data_out;
1169 }
1170
1171 smack = kzalloc(count + 1, GFP_KERNEL);
1172 if (smack == NULL) {
1173 rc = -ENOMEM;
1174 goto free_data_out;
1175 }
1176
1177 data[count] = '\0';
1178
1179 rc = sscanf(data, "%hhd.%hhd.%hhd.%hhd/%d %s",
1180 &host[0], &host[1], &host[2], &host[3], &m, smack);
1181 if (rc != 6) {
1182 rc = sscanf(data, "%hhd.%hhd.%hhd.%hhd %s",
1183 &host[0], &host[1], &host[2], &host[3], smack);
1184 if (rc != 5) {
1185 rc = -EINVAL;
1186 goto free_out;
1187 }
1188 m = BEBITS;
1189 }
1190 if (m > BEBITS) {
1191 rc = -EINVAL;
1192 goto free_out;
1193 }
1194
1195 /*
1196 * If smack begins with '-', it is an option, don't import it
1197 */
1198 if (smack[0] != '-') {
1199 sp = smk_import(smack, 0);
1200 if (sp == NULL) {
1201 rc = -EINVAL;
1202 goto free_out;
1203 }
1204 } else {
1205 /* check known options */
1206 if (strcmp(smack, smack_cipso_option) == 0)
1207 sp = (char *)smack_cipso_option;
1208 else {
1209 rc = -EINVAL;
1210 goto free_out;
1211 }
1212 }
1213
1214 for (temp_mask = 0; m > 0; m--) {
1215 temp_mask |= mask_bits;
1216 mask_bits >>= 1;
1217 }
1218 mask.s_addr = cpu_to_be32(temp_mask);
1219
1220 newname.sin_addr.s_addr &= mask.s_addr;
1221 /*
1222 * Only allow one writer at a time. Writes should be
1223 * quite rare and small in any case.
1224 */
1225 mutex_lock(&smk_netlbladdr_lock);
1226
1227 nsa = newname.sin_addr.s_addr;
1228 /* try to find if the prefix is already in the list */
1229 found = 0;
1230 list_for_each_entry_rcu(skp, &smk_netlbladdr_list, list) {
1231 if (skp->smk_host.sin_addr.s_addr == nsa &&
1232 skp->smk_mask.s_addr == mask.s_addr) {
1233 found = 1;
1234 break;
1235 }
1236 }
1237 smk_netlabel_audit_set(&audit_info);
1238
1239 if (found == 0) {
1240 skp = kzalloc(sizeof(*skp), GFP_KERNEL);
1241 if (skp == NULL)
1242 rc = -ENOMEM;
1243 else {
1244 rc = 0;
1245 skp->smk_host.sin_addr.s_addr = newname.sin_addr.s_addr;
1246 skp->smk_mask.s_addr = mask.s_addr;
1247 skp->smk_label = sp;
1248 smk_netlbladdr_insert(skp);
1249 }
1250 } else {
1251 /* we delete the unlabeled entry, only if the previous label
1252 * wasn't the special CIPSO option */
1253 if (skp->smk_label != smack_cipso_option)
1254 rc = netlbl_cfg_unlbl_static_del(&init_net, NULL,
1255 &skp->smk_host.sin_addr, &skp->smk_mask,
1256 PF_INET, &audit_info);
1257 else
1258 rc = 0;
1259 skp->smk_label = sp;
1260 }
1261
1262 /*
1263 * Now tell netlabel about the single label nature of
1264 * this host so that incoming packets get labeled.
1265 * but only if we didn't get the special CIPSO option
1266 */
1267 if (rc == 0 && sp != smack_cipso_option)
1268 rc = netlbl_cfg_unlbl_static_add(&init_net, NULL,
1269 &skp->smk_host.sin_addr, &skp->smk_mask, PF_INET,
1270 smack_to_secid(skp->smk_label), &audit_info);
1271
1272 if (rc == 0)
1273 rc = count;
1274
1275 mutex_unlock(&smk_netlbladdr_lock);
1276
1277 free_out:
1278 kfree(smack);
1279 free_data_out:
1280 kfree(data);
1281
1282 return rc;
1283 }
1284
1285 static const struct file_operations smk_netlbladdr_ops = {
1286 .open = smk_open_netlbladdr,
1287 .read = seq_read,
1288 .llseek = seq_lseek,
1289 .write = smk_write_netlbladdr,
1290 .release = seq_release,
1291 };
1292
1293 /**
1294 * smk_read_doi - read() for /smack/doi
1295 * @filp: file pointer, not actually used
1296 * @buf: where to put the result
1297 * @count: maximum to send along
1298 * @ppos: where to start
1299 *
1300 * Returns number of bytes read or error code, as appropriate
1301 */
1302 static ssize_t smk_read_doi(struct file *filp, char __user *buf,
1303 size_t count, loff_t *ppos)
1304 {
1305 char temp[80];
1306 ssize_t rc;
1307
1308 if (*ppos != 0)
1309 return 0;
1310
1311 sprintf(temp, "%d", smk_cipso_doi_value);
1312 rc = simple_read_from_buffer(buf, count, ppos, temp, strlen(temp));
1313
1314 return rc;
1315 }
1316
1317 /**
1318 * smk_write_doi - write() for /smack/doi
1319 * @file: file pointer, not actually used
1320 * @buf: where to get the data from
1321 * @count: bytes sent
1322 * @ppos: where to start
1323 *
1324 * Returns number of bytes written or error code, as appropriate
1325 */
1326 static ssize_t smk_write_doi(struct file *file, const char __user *buf,
1327 size_t count, loff_t *ppos)
1328 {
1329 char temp[80];
1330 int i;
1331
1332 if (!smack_privileged(CAP_MAC_ADMIN))
1333 return -EPERM;
1334
1335 if (count >= sizeof(temp) || count == 0)
1336 return -EINVAL;
1337
1338 if (copy_from_user(temp, buf, count) != 0)
1339 return -EFAULT;
1340
1341 temp[count] = '\0';
1342
1343 if (sscanf(temp, "%d", &i) != 1)
1344 return -EINVAL;
1345
1346 smk_cipso_doi_value = i;
1347
1348 smk_cipso_doi();
1349
1350 return count;
1351 }
1352
1353 static const struct file_operations smk_doi_ops = {
1354 .read = smk_read_doi,
1355 .write = smk_write_doi,
1356 .llseek = default_llseek,
1357 };
1358
1359 /**
1360 * smk_read_direct - read() for /smack/direct
1361 * @filp: file pointer, not actually used
1362 * @buf: where to put the result
1363 * @count: maximum to send along
1364 * @ppos: where to start
1365 *
1366 * Returns number of bytes read or error code, as appropriate
1367 */
1368 static ssize_t smk_read_direct(struct file *filp, char __user *buf,
1369 size_t count, loff_t *ppos)
1370 {
1371 char temp[80];
1372 ssize_t rc;
1373
1374 if (*ppos != 0)
1375 return 0;
1376
1377 sprintf(temp, "%d", smack_cipso_direct);
1378 rc = simple_read_from_buffer(buf, count, ppos, temp, strlen(temp));
1379
1380 return rc;
1381 }
1382
1383 /**
1384 * smk_write_direct - write() for /smack/direct
1385 * @file: file pointer, not actually used
1386 * @buf: where to get the data from
1387 * @count: bytes sent
1388 * @ppos: where to start
1389 *
1390 * Returns number of bytes written or error code, as appropriate
1391 */
1392 static ssize_t smk_write_direct(struct file *file, const char __user *buf,
1393 size_t count, loff_t *ppos)
1394 {
1395 struct smack_known *skp;
1396 char temp[80];
1397 int i;
1398
1399 if (!smack_privileged(CAP_MAC_ADMIN))
1400 return -EPERM;
1401
1402 if (count >= sizeof(temp) || count == 0)
1403 return -EINVAL;
1404
1405 if (copy_from_user(temp, buf, count) != 0)
1406 return -EFAULT;
1407
1408 temp[count] = '\0';
1409
1410 if (sscanf(temp, "%d", &i) != 1)
1411 return -EINVAL;
1412
1413 /*
1414 * Don't do anything if the value hasn't actually changed.
1415 * If it is changing reset the level on entries that were
1416 * set up to be direct when they were created.
1417 */
1418 if (smack_cipso_direct != i) {
1419 mutex_lock(&smack_known_lock);
1420 list_for_each_entry_rcu(skp, &smack_known_list, list)
1421 if (skp->smk_netlabel.attr.mls.lvl ==
1422 smack_cipso_direct)
1423 skp->smk_netlabel.attr.mls.lvl = i;
1424 smack_cipso_direct = i;
1425 mutex_unlock(&smack_known_lock);
1426 }
1427
1428 return count;
1429 }
1430
1431 static const struct file_operations smk_direct_ops = {
1432 .read = smk_read_direct,
1433 .write = smk_write_direct,
1434 .llseek = default_llseek,
1435 };
1436
1437 /**
1438 * smk_read_mapped - read() for /smack/mapped
1439 * @filp: file pointer, not actually used
1440 * @buf: where to put the result
1441 * @count: maximum to send along
1442 * @ppos: where to start
1443 *
1444 * Returns number of bytes read or error code, as appropriate
1445 */
1446 static ssize_t smk_read_mapped(struct file *filp, char __user *buf,
1447 size_t count, loff_t *ppos)
1448 {
1449 char temp[80];
1450 ssize_t rc;
1451
1452 if (*ppos != 0)
1453 return 0;
1454
1455 sprintf(temp, "%d", smack_cipso_mapped);
1456 rc = simple_read_from_buffer(buf, count, ppos, temp, strlen(temp));
1457
1458 return rc;
1459 }
1460
1461 /**
1462 * smk_write_mapped - write() for /smack/mapped
1463 * @file: file pointer, not actually used
1464 * @buf: where to get the data from
1465 * @count: bytes sent
1466 * @ppos: where to start
1467 *
1468 * Returns number of bytes written or error code, as appropriate
1469 */
1470 static ssize_t smk_write_mapped(struct file *file, const char __user *buf,
1471 size_t count, loff_t *ppos)
1472 {
1473 struct smack_known *skp;
1474 char temp[80];
1475 int i;
1476
1477 if (!smack_privileged(CAP_MAC_ADMIN))
1478 return -EPERM;
1479
1480 if (count >= sizeof(temp) || count == 0)
1481 return -EINVAL;
1482
1483 if (copy_from_user(temp, buf, count) != 0)
1484 return -EFAULT;
1485
1486 temp[count] = '\0';
1487
1488 if (sscanf(temp, "%d", &i) != 1)
1489 return -EINVAL;
1490
1491 /*
1492 * Don't do anything if the value hasn't actually changed.
1493 * If it is changing reset the level on entries that were
1494 * set up to be mapped when they were created.
1495 */
1496 if (smack_cipso_mapped != i) {
1497 mutex_lock(&smack_known_lock);
1498 list_for_each_entry_rcu(skp, &smack_known_list, list)
1499 if (skp->smk_netlabel.attr.mls.lvl ==
1500 smack_cipso_mapped)
1501 skp->smk_netlabel.attr.mls.lvl = i;
1502 smack_cipso_mapped = i;
1503 mutex_unlock(&smack_known_lock);
1504 }
1505
1506 return count;
1507 }
1508
1509 static const struct file_operations smk_mapped_ops = {
1510 .read = smk_read_mapped,
1511 .write = smk_write_mapped,
1512 .llseek = default_llseek,
1513 };
1514
1515 /**
1516 * smk_read_ambient - read() for /smack/ambient
1517 * @filp: file pointer, not actually used
1518 * @buf: where to put the result
1519 * @cn: maximum to send along
1520 * @ppos: where to start
1521 *
1522 * Returns number of bytes read or error code, as appropriate
1523 */
1524 static ssize_t smk_read_ambient(struct file *filp, char __user *buf,
1525 size_t cn, loff_t *ppos)
1526 {
1527 ssize_t rc;
1528 int asize;
1529
1530 if (*ppos != 0)
1531 return 0;
1532 /*
1533 * Being careful to avoid a problem in the case where
1534 * smack_net_ambient gets changed in midstream.
1535 */
1536 mutex_lock(&smack_ambient_lock);
1537
1538 asize = strlen(smack_net_ambient->smk_known) + 1;
1539
1540 if (cn >= asize)
1541 rc = simple_read_from_buffer(buf, cn, ppos,
1542 smack_net_ambient->smk_known,
1543 asize);
1544 else
1545 rc = -EINVAL;
1546
1547 mutex_unlock(&smack_ambient_lock);
1548
1549 return rc;
1550 }
1551
1552 /**
1553 * smk_write_ambient - write() for /smack/ambient
1554 * @file: file pointer, not actually used
1555 * @buf: where to get the data from
1556 * @count: bytes sent
1557 * @ppos: where to start
1558 *
1559 * Returns number of bytes written or error code, as appropriate
1560 */
1561 static ssize_t smk_write_ambient(struct file *file, const char __user *buf,
1562 size_t count, loff_t *ppos)
1563 {
1564 struct smack_known *skp;
1565 char *oldambient;
1566 char *data;
1567 int rc = count;
1568
1569 if (!smack_privileged(CAP_MAC_ADMIN))
1570 return -EPERM;
1571
1572 data = kzalloc(count + 1, GFP_KERNEL);
1573 if (data == NULL)
1574 return -ENOMEM;
1575
1576 if (copy_from_user(data, buf, count) != 0) {
1577 rc = -EFAULT;
1578 goto out;
1579 }
1580
1581 skp = smk_import_entry(data, count);
1582 if (skp == NULL) {
1583 rc = -EINVAL;
1584 goto out;
1585 }
1586
1587 mutex_lock(&smack_ambient_lock);
1588
1589 oldambient = smack_net_ambient->smk_known;
1590 smack_net_ambient = skp;
1591 smk_unlbl_ambient(oldambient);
1592
1593 mutex_unlock(&smack_ambient_lock);
1594
1595 out:
1596 kfree(data);
1597 return rc;
1598 }
1599
1600 static const struct file_operations smk_ambient_ops = {
1601 .read = smk_read_ambient,
1602 .write = smk_write_ambient,
1603 .llseek = default_llseek,
1604 };
1605
1606 /**
1607 * smk_read_onlycap - read() for /smack/onlycap
1608 * @filp: file pointer, not actually used
1609 * @buf: where to put the result
1610 * @cn: maximum to send along
1611 * @ppos: where to start
1612 *
1613 * Returns number of bytes read or error code, as appropriate
1614 */
1615 static ssize_t smk_read_onlycap(struct file *filp, char __user *buf,
1616 size_t cn, loff_t *ppos)
1617 {
1618 char *smack = "";
1619 ssize_t rc = -EINVAL;
1620 int asize;
1621
1622 if (*ppos != 0)
1623 return 0;
1624
1625 if (smack_onlycap != NULL)
1626 smack = smack_onlycap;
1627
1628 asize = strlen(smack) + 1;
1629
1630 if (cn >= asize)
1631 rc = simple_read_from_buffer(buf, cn, ppos, smack, asize);
1632
1633 return rc;
1634 }
1635
1636 /**
1637 * smk_write_onlycap - write() for /smack/onlycap
1638 * @file: file pointer, not actually used
1639 * @buf: where to get the data from
1640 * @count: bytes sent
1641 * @ppos: where to start
1642 *
1643 * Returns number of bytes written or error code, as appropriate
1644 */
1645 static ssize_t smk_write_onlycap(struct file *file, const char __user *buf,
1646 size_t count, loff_t *ppos)
1647 {
1648 char *data;
1649 struct smack_known *skp = smk_of_task(current->cred->security);
1650 int rc = count;
1651
1652 if (!smack_privileged(CAP_MAC_ADMIN))
1653 return -EPERM;
1654
1655 /*
1656 * This can be done using smk_access() but is done
1657 * explicitly for clarity. The smk_access() implementation
1658 * would use smk_access(smack_onlycap, MAY_WRITE)
1659 */
1660 if (smack_onlycap != NULL && smack_onlycap != skp->smk_known)
1661 return -EPERM;
1662
1663 data = kzalloc(count, GFP_KERNEL);
1664 if (data == NULL)
1665 return -ENOMEM;
1666
1667 /*
1668 * Should the null string be passed in unset the onlycap value.
1669 * This seems like something to be careful with as usually
1670 * smk_import only expects to return NULL for errors. It
1671 * is usually the case that a nullstring or "\n" would be
1672 * bad to pass to smk_import but in fact this is useful here.
1673 *
1674 * smk_import will also reject a label beginning with '-',
1675 * so "-usecapabilities" will also work.
1676 */
1677 if (copy_from_user(data, buf, count) != 0)
1678 rc = -EFAULT;
1679 else
1680 smack_onlycap = smk_import(data, count);
1681
1682 kfree(data);
1683 return rc;
1684 }
1685
1686 static const struct file_operations smk_onlycap_ops = {
1687 .read = smk_read_onlycap,
1688 .write = smk_write_onlycap,
1689 .llseek = default_llseek,
1690 };
1691
1692 /**
1693 * smk_read_logging - read() for /smack/logging
1694 * @filp: file pointer, not actually used
1695 * @buf: where to put the result
1696 * @cn: maximum to send along
1697 * @ppos: where to start
1698 *
1699 * Returns number of bytes read or error code, as appropriate
1700 */
1701 static ssize_t smk_read_logging(struct file *filp, char __user *buf,
1702 size_t count, loff_t *ppos)
1703 {
1704 char temp[32];
1705 ssize_t rc;
1706
1707 if (*ppos != 0)
1708 return 0;
1709
1710 sprintf(temp, "%d\n", log_policy);
1711 rc = simple_read_from_buffer(buf, count, ppos, temp, strlen(temp));
1712 return rc;
1713 }
1714
1715 /**
1716 * smk_write_logging - write() for /smack/logging
1717 * @file: file pointer, not actually used
1718 * @buf: where to get the data from
1719 * @count: bytes sent
1720 * @ppos: where to start
1721 *
1722 * Returns number of bytes written or error code, as appropriate
1723 */
1724 static ssize_t smk_write_logging(struct file *file, const char __user *buf,
1725 size_t count, loff_t *ppos)
1726 {
1727 char temp[32];
1728 int i;
1729
1730 if (!smack_privileged(CAP_MAC_ADMIN))
1731 return -EPERM;
1732
1733 if (count >= sizeof(temp) || count == 0)
1734 return -EINVAL;
1735
1736 if (copy_from_user(temp, buf, count) != 0)
1737 return -EFAULT;
1738
1739 temp[count] = '\0';
1740
1741 if (sscanf(temp, "%d", &i) != 1)
1742 return -EINVAL;
1743 if (i < 0 || i > 3)
1744 return -EINVAL;
1745 log_policy = i;
1746 return count;
1747 }
1748
1749
1750
1751 static const struct file_operations smk_logging_ops = {
1752 .read = smk_read_logging,
1753 .write = smk_write_logging,
1754 .llseek = default_llseek,
1755 };
1756
1757 /*
1758 * Seq_file read operations for /smack/load-self
1759 */
1760
1761 static void *load_self_seq_start(struct seq_file *s, loff_t *pos)
1762 {
1763 struct task_smack *tsp = current_security();
1764
1765 return smk_seq_start(s, pos, &tsp->smk_rules);
1766 }
1767
1768 static void *load_self_seq_next(struct seq_file *s, void *v, loff_t *pos)
1769 {
1770 struct task_smack *tsp = current_security();
1771
1772 return smk_seq_next(s, v, pos, &tsp->smk_rules);
1773 }
1774
1775 static int load_self_seq_show(struct seq_file *s, void *v)
1776 {
1777 struct list_head *list = v;
1778 struct smack_rule *srp =
1779 list_entry(list, struct smack_rule, list);
1780
1781 smk_rule_show(s, srp, SMK_LABELLEN);
1782
1783 return 0;
1784 }
1785
1786 static const struct seq_operations load_self_seq_ops = {
1787 .start = load_self_seq_start,
1788 .next = load_self_seq_next,
1789 .show = load_self_seq_show,
1790 .stop = smk_seq_stop,
1791 };
1792
1793
1794 /**
1795 * smk_open_load_self - open() for /smack/load-self2
1796 * @inode: inode structure representing file
1797 * @file: "load" file pointer
1798 *
1799 * For reading, use load_seq_* seq_file reading operations.
1800 */
1801 static int smk_open_load_self(struct inode *inode, struct file *file)
1802 {
1803 return seq_open(file, &load_self_seq_ops);
1804 }
1805
1806 /**
1807 * smk_write_load_self - write() for /smack/load-self
1808 * @file: file pointer, not actually used
1809 * @buf: where to get the data from
1810 * @count: bytes sent
1811 * @ppos: where to start - must be 0
1812 *
1813 */
1814 static ssize_t smk_write_load_self(struct file *file, const char __user *buf,
1815 size_t count, loff_t *ppos)
1816 {
1817 struct task_smack *tsp = current_security();
1818
1819 return smk_write_rules_list(file, buf, count, ppos, &tsp->smk_rules,
1820 &tsp->smk_rules_lock, SMK_FIXED24_FMT);
1821 }
1822
1823 static const struct file_operations smk_load_self_ops = {
1824 .open = smk_open_load_self,
1825 .read = seq_read,
1826 .llseek = seq_lseek,
1827 .write = smk_write_load_self,
1828 .release = seq_release,
1829 };
1830
1831 /**
1832 * smk_user_access - handle access check transaction
1833 * @file: file pointer
1834 * @buf: data from user space
1835 * @count: bytes sent
1836 * @ppos: where to start - must be 0
1837 */
1838 static ssize_t smk_user_access(struct file *file, const char __user *buf,
1839 size_t count, loff_t *ppos, int format)
1840 {
1841 struct smack_parsed_rule rule;
1842 char *data;
1843 char *cod;
1844 int res;
1845
1846 data = simple_transaction_get(file, buf, count);
1847 if (IS_ERR(data))
1848 return PTR_ERR(data);
1849
1850 if (format == SMK_FIXED24_FMT) {
1851 if (count < SMK_LOADLEN)
1852 return -EINVAL;
1853 res = smk_parse_rule(data, &rule, 0);
1854 } else {
1855 /*
1856 * Copy the data to make sure the string is terminated.
1857 */
1858 cod = kzalloc(count + 1, GFP_KERNEL);
1859 if (cod == NULL)
1860 return -ENOMEM;
1861 memcpy(cod, data, count);
1862 cod[count] = '\0';
1863 res = smk_parse_long_rule(cod, &rule, 0, 0);
1864 kfree(cod);
1865 }
1866
1867 if (res)
1868 return -EINVAL;
1869
1870 res = smk_access(rule.smk_subject, rule.smk_object,
1871 rule.smk_access1, NULL);
1872 data[0] = res == 0 ? '1' : '0';
1873 data[1] = '\0';
1874
1875 simple_transaction_set(file, 2);
1876
1877 if (format == SMK_FIXED24_FMT)
1878 return SMK_LOADLEN;
1879 return count;
1880 }
1881
1882 /**
1883 * smk_write_access - handle access check transaction
1884 * @file: file pointer
1885 * @buf: data from user space
1886 * @count: bytes sent
1887 * @ppos: where to start - must be 0
1888 */
1889 static ssize_t smk_write_access(struct file *file, const char __user *buf,
1890 size_t count, loff_t *ppos)
1891 {
1892 return smk_user_access(file, buf, count, ppos, SMK_FIXED24_FMT);
1893 }
1894
1895 static const struct file_operations smk_access_ops = {
1896 .write = smk_write_access,
1897 .read = simple_transaction_read,
1898 .release = simple_transaction_release,
1899 .llseek = generic_file_llseek,
1900 };
1901
1902
1903 /*
1904 * Seq_file read operations for /smack/load2
1905 */
1906
1907 static int load2_seq_show(struct seq_file *s, void *v)
1908 {
1909 struct list_head *list = v;
1910 struct smack_master_list *smlp =
1911 list_entry(list, struct smack_master_list, list);
1912
1913 smk_rule_show(s, smlp->smk_rule, SMK_LONGLABEL);
1914
1915 return 0;
1916 }
1917
1918 static const struct seq_operations load2_seq_ops = {
1919 .start = load2_seq_start,
1920 .next = load2_seq_next,
1921 .show = load2_seq_show,
1922 .stop = smk_seq_stop,
1923 };
1924
1925 /**
1926 * smk_open_load2 - open() for /smack/load2
1927 * @inode: inode structure representing file
1928 * @file: "load2" file pointer
1929 *
1930 * For reading, use load2_seq_* seq_file reading operations.
1931 */
1932 static int smk_open_load2(struct inode *inode, struct file *file)
1933 {
1934 return seq_open(file, &load2_seq_ops);
1935 }
1936
1937 /**
1938 * smk_write_load2 - write() for /smack/load2
1939 * @file: file pointer, not actually used
1940 * @buf: where to get the data from
1941 * @count: bytes sent
1942 * @ppos: where to start - must be 0
1943 *
1944 */
1945 static ssize_t smk_write_load2(struct file *file, const char __user *buf,
1946 size_t count, loff_t *ppos)
1947 {
1948 /*
1949 * Must have privilege.
1950 */
1951 if (!smack_privileged(CAP_MAC_ADMIN))
1952 return -EPERM;
1953
1954 return smk_write_rules_list(file, buf, count, ppos, NULL, NULL,
1955 SMK_LONG_FMT);
1956 }
1957
1958 static const struct file_operations smk_load2_ops = {
1959 .open = smk_open_load2,
1960 .read = seq_read,
1961 .llseek = seq_lseek,
1962 .write = smk_write_load2,
1963 .release = seq_release,
1964 };
1965
1966 /*
1967 * Seq_file read operations for /smack/load-self2
1968 */
1969
1970 static void *load_self2_seq_start(struct seq_file *s, loff_t *pos)
1971 {
1972 struct task_smack *tsp = current_security();
1973
1974 return smk_seq_start(s, pos, &tsp->smk_rules);
1975 }
1976
1977 static void *load_self2_seq_next(struct seq_file *s, void *v, loff_t *pos)
1978 {
1979 struct task_smack *tsp = current_security();
1980
1981 return smk_seq_next(s, v, pos, &tsp->smk_rules);
1982 }
1983
1984 static int load_self2_seq_show(struct seq_file *s, void *v)
1985 {
1986 struct list_head *list = v;
1987 struct smack_rule *srp =
1988 list_entry(list, struct smack_rule, list);
1989
1990 smk_rule_show(s, srp, SMK_LONGLABEL);
1991
1992 return 0;
1993 }
1994
1995 static const struct seq_operations load_self2_seq_ops = {
1996 .start = load_self2_seq_start,
1997 .next = load_self2_seq_next,
1998 .show = load_self2_seq_show,
1999 .stop = smk_seq_stop,
2000 };
2001
2002 /**
2003 * smk_open_load_self2 - open() for /smack/load-self2
2004 * @inode: inode structure representing file
2005 * @file: "load" file pointer
2006 *
2007 * For reading, use load_seq_* seq_file reading operations.
2008 */
2009 static int smk_open_load_self2(struct inode *inode, struct file *file)
2010 {
2011 return seq_open(file, &load_self2_seq_ops);
2012 }
2013
2014 /**
2015 * smk_write_load_self2 - write() for /smack/load-self2
2016 * @file: file pointer, not actually used
2017 * @buf: where to get the data from
2018 * @count: bytes sent
2019 * @ppos: where to start - must be 0
2020 *
2021 */
2022 static ssize_t smk_write_load_self2(struct file *file, const char __user *buf,
2023 size_t count, loff_t *ppos)
2024 {
2025 struct task_smack *tsp = current_security();
2026
2027 return smk_write_rules_list(file, buf, count, ppos, &tsp->smk_rules,
2028 &tsp->smk_rules_lock, SMK_LONG_FMT);
2029 }
2030
2031 static const struct file_operations smk_load_self2_ops = {
2032 .open = smk_open_load_self2,
2033 .read = seq_read,
2034 .llseek = seq_lseek,
2035 .write = smk_write_load_self2,
2036 .release = seq_release,
2037 };
2038
2039 /**
2040 * smk_write_access2 - handle access check transaction
2041 * @file: file pointer
2042 * @buf: data from user space
2043 * @count: bytes sent
2044 * @ppos: where to start - must be 0
2045 */
2046 static ssize_t smk_write_access2(struct file *file, const char __user *buf,
2047 size_t count, loff_t *ppos)
2048 {
2049 return smk_user_access(file, buf, count, ppos, SMK_LONG_FMT);
2050 }
2051
2052 static const struct file_operations smk_access2_ops = {
2053 .write = smk_write_access2,
2054 .read = simple_transaction_read,
2055 .release = simple_transaction_release,
2056 .llseek = generic_file_llseek,
2057 };
2058
2059 /**
2060 * smk_write_revoke_subj - write() for /smack/revoke-subject
2061 * @file: file pointer
2062 * @buf: data from user space
2063 * @count: bytes sent
2064 * @ppos: where to start - must be 0
2065 */
2066 static ssize_t smk_write_revoke_subj(struct file *file, const char __user *buf,
2067 size_t count, loff_t *ppos)
2068 {
2069 char *data = NULL;
2070 const char *cp = NULL;
2071 struct smack_known *skp;
2072 struct smack_rule *sp;
2073 struct list_head *rule_list;
2074 struct mutex *rule_lock;
2075 int rc = count;
2076
2077 if (*ppos != 0)
2078 return -EINVAL;
2079
2080 if (!smack_privileged(CAP_MAC_ADMIN))
2081 return -EPERM;
2082
2083 if (count == 0 || count > SMK_LONGLABEL)
2084 return -EINVAL;
2085
2086 data = kzalloc(count, GFP_KERNEL);
2087 if (data == NULL)
2088 return -ENOMEM;
2089
2090 if (copy_from_user(data, buf, count) != 0) {
2091 rc = -EFAULT;
2092 goto free_out;
2093 }
2094
2095 cp = smk_parse_smack(data, count);
2096 if (cp == NULL) {
2097 rc = -EINVAL;
2098 goto free_out;
2099 }
2100
2101 skp = smk_find_entry(cp);
2102 if (skp == NULL)
2103 goto free_out;
2104
2105 rule_list = &skp->smk_rules;
2106 rule_lock = &skp->smk_rules_lock;
2107
2108 mutex_lock(rule_lock);
2109
2110 list_for_each_entry_rcu(sp, rule_list, list)
2111 sp->smk_access = 0;
2112
2113 mutex_unlock(rule_lock);
2114
2115 free_out:
2116 kfree(data);
2117 kfree(cp);
2118 return rc;
2119 }
2120
2121 static const struct file_operations smk_revoke_subj_ops = {
2122 .write = smk_write_revoke_subj,
2123 .read = simple_transaction_read,
2124 .release = simple_transaction_release,
2125 .llseek = generic_file_llseek,
2126 };
2127
2128 static struct kset *smackfs_kset;
2129 /**
2130 * smk_init_sysfs - initialize /sys/fs/smackfs
2131 *
2132 */
2133 static int smk_init_sysfs(void)
2134 {
2135 smackfs_kset = kset_create_and_add("smackfs", NULL, fs_kobj);
2136 if (!smackfs_kset)
2137 return -ENOMEM;
2138 return 0;
2139 }
2140
2141 /**
2142 * smk_write_change_rule - write() for /smack/change-rule
2143 * @file: file pointer
2144 * @buf: data from user space
2145 * @count: bytes sent
2146 * @ppos: where to start - must be 0
2147 */
2148 static ssize_t smk_write_change_rule(struct file *file, const char __user *buf,
2149 size_t count, loff_t *ppos)
2150 {
2151 /*
2152 * Must have privilege.
2153 */
2154 if (!capable(CAP_MAC_ADMIN))
2155 return -EPERM;
2156
2157 return smk_write_rules_list(file, buf, count, ppos, NULL, NULL,
2158 SMK_CHANGE_FMT);
2159 }
2160
2161 static const struct file_operations smk_change_rule_ops = {
2162 .write = smk_write_change_rule,
2163 .read = simple_transaction_read,
2164 .release = simple_transaction_release,
2165 .llseek = generic_file_llseek,
2166 };
2167
2168 /**
2169 * smk_fill_super - fill the /smackfs superblock
2170 * @sb: the empty superblock
2171 * @data: unused
2172 * @silent: unused
2173 *
2174 * Fill in the well known entries for /smack
2175 *
2176 * Returns 0 on success, an error code on failure
2177 */
2178 static int smk_fill_super(struct super_block *sb, void *data, int silent)
2179 {
2180 int rc;
2181 struct inode *root_inode;
2182
2183 static struct tree_descr smack_files[] = {
2184 [SMK_LOAD] = {
2185 "load", &smk_load_ops, S_IRUGO|S_IWUSR},
2186 [SMK_CIPSO] = {
2187 "cipso", &smk_cipso_ops, S_IRUGO|S_IWUSR},
2188 [SMK_DOI] = {
2189 "doi", &smk_doi_ops, S_IRUGO|S_IWUSR},
2190 [SMK_DIRECT] = {
2191 "direct", &smk_direct_ops, S_IRUGO|S_IWUSR},
2192 [SMK_AMBIENT] = {
2193 "ambient", &smk_ambient_ops, S_IRUGO|S_IWUSR},
2194 [SMK_NETLBLADDR] = {
2195 "netlabel", &smk_netlbladdr_ops, S_IRUGO|S_IWUSR},
2196 [SMK_ONLYCAP] = {
2197 "onlycap", &smk_onlycap_ops, S_IRUGO|S_IWUSR},
2198 [SMK_LOGGING] = {
2199 "logging", &smk_logging_ops, S_IRUGO|S_IWUSR},
2200 [SMK_LOAD_SELF] = {
2201 "load-self", &smk_load_self_ops, S_IRUGO|S_IWUGO},
2202 [SMK_ACCESSES] = {
2203 "access", &smk_access_ops, S_IRUGO|S_IWUGO},
2204 [SMK_MAPPED] = {
2205 "mapped", &smk_mapped_ops, S_IRUGO|S_IWUSR},
2206 [SMK_LOAD2] = {
2207 "load2", &smk_load2_ops, S_IRUGO|S_IWUSR},
2208 [SMK_LOAD_SELF2] = {
2209 "load-self2", &smk_load_self2_ops, S_IRUGO|S_IWUGO},
2210 [SMK_ACCESS2] = {
2211 "access2", &smk_access2_ops, S_IRUGO|S_IWUGO},
2212 [SMK_CIPSO2] = {
2213 "cipso2", &smk_cipso2_ops, S_IRUGO|S_IWUSR},
2214 [SMK_REVOKE_SUBJ] = {
2215 "revoke-subject", &smk_revoke_subj_ops,
2216 S_IRUGO|S_IWUSR},
2217 [SMK_CHANGE_RULE] = {
2218 "change-rule", &smk_change_rule_ops, S_IRUGO|S_IWUSR},
2219 /* last one */
2220 {""}
2221 };
2222
2223 rc = simple_fill_super(sb, SMACK_MAGIC, smack_files);
2224 if (rc != 0) {
2225 printk(KERN_ERR "%s failed %d while creating inodes\n",
2226 __func__, rc);
2227 return rc;
2228 }
2229
2230 root_inode = sb->s_root->d_inode;
2231
2232 return 0;
2233 }
2234
2235 /**
2236 * smk_mount - get the smackfs superblock
2237 * @fs_type: passed along without comment
2238 * @flags: passed along without comment
2239 * @dev_name: passed along without comment
2240 * @data: passed along without comment
2241 *
2242 * Just passes everything along.
2243 *
2244 * Returns what the lower level code does.
2245 */
2246 static struct dentry *smk_mount(struct file_system_type *fs_type,
2247 int flags, const char *dev_name, void *data)
2248 {
2249 return mount_single(fs_type, flags, data, smk_fill_super);
2250 }
2251
2252 static struct file_system_type smk_fs_type = {
2253 .name = "smackfs",
2254 .mount = smk_mount,
2255 .kill_sb = kill_litter_super,
2256 };
2257
2258 static struct vfsmount *smackfs_mount;
2259
2260 static int __init smk_preset_netlabel(struct smack_known *skp)
2261 {
2262 skp->smk_netlabel.domain = skp->smk_known;
2263 skp->smk_netlabel.flags =
2264 NETLBL_SECATTR_DOMAIN | NETLBL_SECATTR_MLS_LVL;
2265 return smk_netlbl_mls(smack_cipso_direct, skp->smk_known,
2266 &skp->smk_netlabel, strlen(skp->smk_known));
2267 }
2268
2269 /**
2270 * init_smk_fs - get the smackfs superblock
2271 *
2272 * register the smackfs
2273 *
2274 * Do not register smackfs if Smack wasn't enabled
2275 * on boot. We can not put this method normally under the
2276 * smack_init() code path since the security subsystem get
2277 * initialized before the vfs caches.
2278 *
2279 * Returns true if we were not chosen on boot or if
2280 * we were chosen and filesystem registration succeeded.
2281 */
2282 static int __init init_smk_fs(void)
2283 {
2284 int err;
2285 int rc;
2286
2287 if (!security_module_enable(&smack_ops))
2288 return 0;
2289
2290 err = smk_init_sysfs();
2291 if (err)
2292 printk(KERN_ERR "smackfs: sysfs mountpoint problem.\n");
2293
2294 err = register_filesystem(&smk_fs_type);
2295 if (!err) {
2296 smackfs_mount = kern_mount(&smk_fs_type);
2297 if (IS_ERR(smackfs_mount)) {
2298 printk(KERN_ERR "smackfs: could not mount!\n");
2299 err = PTR_ERR(smackfs_mount);
2300 smackfs_mount = NULL;
2301 }
2302 }
2303
2304 smk_cipso_doi();
2305 smk_unlbl_ambient(NULL);
2306
2307 rc = smk_preset_netlabel(&smack_known_floor);
2308 if (err == 0 && rc < 0)
2309 err = rc;
2310 rc = smk_preset_netlabel(&smack_known_hat);
2311 if (err == 0 && rc < 0)
2312 err = rc;
2313 rc = smk_preset_netlabel(&smack_known_huh);
2314 if (err == 0 && rc < 0)
2315 err = rc;
2316 rc = smk_preset_netlabel(&smack_known_invalid);
2317 if (err == 0 && rc < 0)
2318 err = rc;
2319 rc = smk_preset_netlabel(&smack_known_star);
2320 if (err == 0 && rc < 0)
2321 err = rc;
2322 rc = smk_preset_netlabel(&smack_known_web);
2323 if (err == 0 && rc < 0)
2324 err = rc;
2325
2326 return err;
2327 }
2328
2329 __initcall(init_smk_fs);
Linus' kernel tree