TOMOYO: Use RCU primitives for list operation

 *

 * @domainname: The domainname to find.

 *

 * Caller must call down_read(&tomoyo_domain_list_lock); or

 * down_write(&tomoyo_domain_list_lock); .

 *

 * Returns pointer to "struct tomoyo_domain_info" if found, NULL otherwise.

 *

 * Caller holds tomoyo_read_lock().

 */

struct tomoyo_domain_info *tomoyo_find_domain(const char *domainname)

{

	name.name = domainname;

	tomoyo_fill_path_info(&name);

	list_for_each_entry(domain, &tomoyo_domain_list, list) {

	list_for_each_entry_rcu(domain, &tomoyo_domain_list, list) {

		if (!domain->is_deleted &&

		    !tomoyo_pathcmp(&name, domain->domainname))

			return domain;

 * @domain: Pointer to "struct tomoyo_domain_info".

 *

 * Returns true if the domain is not exceeded quota, false otherwise.

 *

 * Caller holds tomoyo_read_lock().

 */

bool tomoyo_domain_quota_is_ok(struct tomoyo_domain_info * const domain)

{

	if (!domain)

		return true;

	down_read(&tomoyo_domain_acl_info_list_lock);

	list_for_each_entry(ptr, &domain->acl_info_list, list) {

	list_for_each_entry_rcu(ptr, &domain->acl_info_list, list) {

		if (ptr->type & TOMOYO_ACL_DELETED)

			continue;

		switch (tomoyo_acl_type2(ptr)) {

			break;

		}

	}

	up_read(&tomoyo_domain_acl_info_list_lock);

	if (count < tomoyo_check_flags(domain, TOMOYO_MAX_ACCEPT_ENTRY))

		return true;

	if (!domain->quota_warned) {

 * @is_delete: True if it is a delete request.

 *

 * Returns 0 on success, negative value otherwise.

 *

 * Caller holds tomoyo_read_lock().

 */

static int tomoyo_update_manager_entry(const char *manager,

				       const bool is_delete)

	if (!saved_manager)

		return -ENOMEM;

	down_write(&tomoyo_policy_manager_list_lock);

	list_for_each_entry(ptr, &tomoyo_policy_manager_list, list) {

	list_for_each_entry_rcu(ptr, &tomoyo_policy_manager_list, list) {

		if (ptr->manager != saved_manager)

			continue;

		ptr->is_deleted = is_delete;

		goto out;

	new_entry->manager = saved_manager;

	new_entry->is_domain = is_domain;

	list_add_tail(&new_entry->list, &tomoyo_policy_manager_list);

	list_add_tail_rcu(&new_entry->list, &tomoyo_policy_manager_list);

	error = 0;

 out:

	up_write(&tomoyo_policy_manager_list_lock);

 * @head: Pointer to "struct tomoyo_io_buffer".

 *

 * Returns 0 on success, negative value otherwise.

 *

 * Caller holds tomoyo_read_lock().

 */

static int tomoyo_write_manager_policy(struct tomoyo_io_buffer *head)

{

 * @head: Pointer to "struct tomoyo_io_buffer".

 *

 * Returns 0.

 *

 * Caller holds tomoyo_read_lock().

 */

static int tomoyo_read_manager_policy(struct tomoyo_io_buffer *head)

{

	if (head->read_eof)

		return 0;

	down_read(&tomoyo_policy_manager_list_lock);

	list_for_each_cookie(pos, head->read_var2,

			     &tomoyo_policy_manager_list) {

		struct tomoyo_policy_manager_entry *ptr;

		if (!done)

			break;

	}

	up_read(&tomoyo_policy_manager_list_lock);

	head->read_eof = done;

	return 0;

}

 *

 * Returns true if the current process is permitted to modify policy

 * via /sys/kernel/security/tomoyo/ interface.

 *

 * Caller holds tomoyo_read_lock().

 */

static bool tomoyo_is_policy_manager(void)

{

		return true;

	if (!tomoyo_manage_by_non_root && (task->cred->uid || task->cred->euid))

		return false;

	down_read(&tomoyo_policy_manager_list_lock);

	list_for_each_entry(ptr, &tomoyo_policy_manager_list, list) {

	list_for_each_entry_rcu(ptr, &tomoyo_policy_manager_list, list) {

		if (!ptr->is_deleted && ptr->is_domain

		    && !tomoyo_pathcmp(domainname, ptr->manager)) {

			found = true;

			break;

		}

	}

	up_read(&tomoyo_policy_manager_list_lock);

	if (found)

		return true;

	exe = tomoyo_get_exe();

	if (!exe)

		return false;

	down_read(&tomoyo_policy_manager_list_lock);

	list_for_each_entry(ptr, &tomoyo_policy_manager_list, list) {

	list_for_each_entry_rcu(ptr, &tomoyo_policy_manager_list, list) {

		if (!ptr->is_deleted && !ptr->is_domain

		    && !strcmp(exe, ptr->manager->name)) {

			found = true;

			break;

		}

	}

	up_read(&tomoyo_policy_manager_list_lock);

	if (!found) { /* Reduce error messages. */

		static pid_t last_pid;

		const pid_t pid = current->pid;

 * @data: String to parse.

 *

 * Returns true on success, false otherwise.

 *

 * Caller holds tomoyo_read_lock().

 */

static bool tomoyo_is_select_one(struct tomoyo_io_buffer *head,

				 const char *data)

			domain = tomoyo_real_domain(p);

		read_unlock(&tasklist_lock);

	} else if (!strncmp(data, "domain=", 7)) {

		if (tomoyo_is_domain_def(data + 7)) {

			down_read(&tomoyo_domain_list_lock);

		if (tomoyo_is_domain_def(data + 7))

			domain = tomoyo_find_domain(data + 7);

			up_read(&tomoyo_domain_list_lock);

		}

	} else

		return false;

	head->write_var1 = domain;

	if (domain) {

		struct tomoyo_domain_info *d;

		head->read_var1 = NULL;

		down_read(&tomoyo_domain_list_lock);

		list_for_each_entry(d, &tomoyo_domain_list, list) {

		list_for_each_entry_rcu(d, &tomoyo_domain_list, list) {

			if (d == domain)

				break;

			head->read_var1 = &d->list;

		}

		up_read(&tomoyo_domain_list_lock);

		head->read_var2 = NULL;

		head->read_bit = 0;

		head->read_step = 0;

 * @domainname: The name of domain.

 *

 * Returns 0.

 *

 * Caller holds tomoyo_read_lock().

 */

static int tomoyo_delete_domain(char *domainname)

{

	tomoyo_fill_path_info(&name);

	down_write(&tomoyo_domain_list_lock);

	/* Is there an active domain? */

	list_for_each_entry(domain, &tomoyo_domain_list, list) {

	list_for_each_entry_rcu(domain, &tomoyo_domain_list, list) {

		/* Never delete tomoyo_kernel_domain */

		if (domain == &tomoyo_kernel_domain)

			continue;

 * @head: Pointer to "struct tomoyo_io_buffer".

 *

 * Returns 0 on success, negative value otherwise.

 *

 * Caller holds tomoyo_read_lock().

 */

static int tomoyo_write_domain_policy(struct tomoyo_io_buffer *head)

{

		domain = NULL;

		if (is_delete)

			tomoyo_delete_domain(data);

		else if (is_select) {

			down_read(&tomoyo_domain_list_lock);

		else if (is_select)

			domain = tomoyo_find_domain(data);

			up_read(&tomoyo_domain_list_lock);

		} else

		else

			domain = tomoyo_find_or_assign_new_domain(data, 0);

		head->write_var1 = domain;

		return 0;

 * @head: Pointer to "struct tomoyo_io_buffer".

 *

 * Returns 0.

 *

 * Caller holds tomoyo_read_lock().

 */

static int tomoyo_read_domain_policy(struct tomoyo_io_buffer *head)

{

		return 0;

	if (head->read_step == 0)

		head->read_step = 1;

	down_read(&tomoyo_domain_list_lock);

	list_for_each_cookie(dpos, head->read_var1, &tomoyo_domain_list) {

		struct tomoyo_domain_info *domain;

		const char *quota_exceeded = "";

		if (head->read_step == 3)

			goto tail_mark;

		/* Print ACL entries in the domain. */

		down_read(&tomoyo_domain_acl_info_list_lock);

		list_for_each_cookie(apos, head->read_var2,

				     &domain->acl_info_list) {

			struct tomoyo_acl_info *ptr

			if (!done)

				break;

		}

		up_read(&tomoyo_domain_acl_info_list_lock);

		if (!done)

			break;

		head->read_step = 3;

		if (head->read_single_domain)

			break;

	}

	up_read(&tomoyo_domain_list_lock);

	head->read_eof = done;

	return 0;

}

 *

 *     ( echo "select " $domainname; echo "use_profile " $profile ) |

 *     /usr/lib/ccs/loadpolicy -d

 *

 * Caller holds tomoyo_read_lock().

 */

static int tomoyo_write_domain_profile(struct tomoyo_io_buffer *head)

{

	if (!cp)

		return -EINVAL;

	*cp = '\0';

	down_read(&tomoyo_domain_list_lock);

	domain = tomoyo_find_domain(cp + 1);

	up_read(&tomoyo_domain_list_lock);

	if (strict_strtoul(data, 10, &profile))

		return -EINVAL;

	if (domain && profile < TOMOYO_MAX_PROFILES

 *     awk ' { if ( domainname == "" ) { if ( $1 == "<kernel>" )

 *     domainname = $0; } else if ( $1 == "use_profile" ) {

 *     print $2 " " domainname; domainname = ""; } } ; '

 *

 * Caller holds tomoyo_read_lock().

 */

static int tomoyo_read_domain_profile(struct tomoyo_io_buffer *head)

{

	if (head->read_eof)

		return 0;

	down_read(&tomoyo_domain_list_lock);

	list_for_each_cookie(pos, head->read_var1, &tomoyo_domain_list) {

		struct tomoyo_domain_info *domain;

		domain = list_entry(pos, struct tomoyo_domain_info, list);

		if (!done)

			break;

	}

	up_read(&tomoyo_domain_list_lock);

	head->read_eof = done;

	return 0;

}

 * @head: Pointer to "struct tomoyo_io_buffer".

 *

 * Returns 0 on success, negative value otherwise.

 *

 * Caller holds tomoyo_read_lock().

 */

static int tomoyo_write_exception_policy(struct tomoyo_io_buffer *head)

{

 * @head: Pointer to "struct tomoyo_io_buffer".

 *

 * Returns 0 on success, -EINVAL otherwise.

 *

 * Caller holds tomoyo_read_lock().

 */

static int tomoyo_read_exception_policy(struct tomoyo_io_buffer *head)

{

	tomoyo_policy_loaded = true;

	{ /* Check all profiles currently assigned to domains are defined. */

		struct tomoyo_domain_info *domain;

		down_read(&tomoyo_domain_list_lock);

		list_for_each_entry(domain, &tomoyo_domain_list, list) {

		list_for_each_entry_rcu(domain, &tomoyo_domain_list, list) {

			const u8 profile = domain->profile;

			if (tomoyo_profile_ptr[profile])

				continue;

			panic("Profile %u (used by '%s') not defined.\n",

			      profile, domain->domainname->name);

		}

		up_read(&tomoyo_domain_list_lock);

	}

}

 * @file: Pointer to "struct file".

 *

 * Associates policy handler and returns 0 on success, -ENOMEM otherwise.

 *

 * Caller acquires tomoyo_read_lock().

 */

static int tomoyo_open_control(const u8 type, struct file *file)

{

			return -ENOMEM;

		}

	}

	head->reader_idx = tomoyo_read_lock();

	file->private_data = head;

	/*

	 * Call the handler now if the file is

 * @buffer_len: Size of @buffer.

 *

 * Returns bytes read on success, negative value otherwise.

 *

 * Caller holds tomoyo_read_lock().

 */

static int tomoyo_read_control(struct file *file, char __user *buffer,

			       const int buffer_len)

 * @buffer_len: Size of @buffer.

 *

 * Returns @buffer_len on success, negative value otherwise.

 *

 * Caller holds tomoyo_read_lock().

 */

static int tomoyo_write_control(struct file *file, const char __user *buffer,

				const int buffer_len)

 * @file: Pointer to "struct file".

 *

 * Releases memory and returns 0.

 *

 * Caller looses tomoyo_read_lock().

 */

static int tomoyo_close_control(struct file *file)

{

	struct tomoyo_io_buffer *head = file->private_data;

	tomoyo_read_unlock(head->reader_idx);

	/* Release memory used for policy I/O. */

	tomoyo_free(head->read_buf);

	head->read_buf = NULL;

	int (*write) (struct tomoyo_io_buffer *);

	/* Exclusive lock for this structure.   */

	struct mutex io_sem;

	/* Index returned by tomoyo_read_lock(). */

	int reader_idx;

	/* The position currently reading from. */

	struct list_head *read_var1;

	/* Extra variables for reading.         */

 * @cookie:     the &struct list_head to use as a cookie.

 * @head:       the head for your list.

 *

 * Same with list_for_each() except that this primitive uses @cookie

 * Same with list_for_each_rcu() except that this primitive uses @cookie

 * so that we can continue iteration.

 * @cookie must be NULL when iteration starts, and @cookie will become

 * NULL when iteration finishes.

#define list_for_each_cookie(pos, cookie, head)				\

	for (({ if (!cookie)						\

				     cookie = head; }),			\

	     pos = (cookie)->next;                                    \

		     pos = rcu_dereference((cookie)->next);		\

	     prefetch(pos->next), pos != (head) || ((cookie) = NULL);	\

	     (cookie) = pos, pos = pos->next)

	     (cookie) = pos, pos = rcu_dereference(pos->next))

extern struct srcu_struct tomoyo_ss;

static inline int tomoyo_read_lock(void)

{

	return srcu_read_lock(&tomoyo_ss);

}

static inline void tomoyo_read_unlock(int idx)

{

	srcu_read_unlock(&tomoyo_ss, idx);

}

#endif /* !defined(_SECURITY_TOMOYO_COMMON_H) */

 * @is_delete:  True if it is a delete request.

 *

 * Returns 0 on success, negative value otherwise.

 *

 * Caller holds tomoyo_read_lock().

 */

static int tomoyo_update_domain_initializer_entry(const char *domainname,

						  const char *program,

	if (!saved_program)

		return -ENOMEM;

	down_write(&tomoyo_domain_initializer_list_lock);

	list_for_each_entry(ptr, &tomoyo_domain_initializer_list, list) {

	list_for_each_entry_rcu(ptr, &tomoyo_domain_initializer_list, list) {

		if (ptr->is_not != is_not ||

		    ptr->domainname != saved_domainname ||

		    ptr->program != saved_program)

	new_entry->program = saved_program;

	new_entry->is_not = is_not;

	new_entry->is_last_name = is_last_name;

	list_add_tail(&new_entry->list, &tomoyo_domain_initializer_list);

	list_add_tail_rcu(&new_entry->list, &tomoyo_domain_initializer_list);

	error = 0;

 out:

	up_write(&tomoyo_domain_initializer_list_lock);

 * @head: Pointer to "struct tomoyo_io_buffer".

 *

 * Returns true on success, false otherwise.

 *

 * Caller holds tomoyo_read_lock().

 */

bool tomoyo_read_domain_initializer_policy(struct tomoyo_io_buffer *head)

{

	struct list_head *pos;

	bool done = true;

	down_read(&tomoyo_domain_initializer_list_lock);

	list_for_each_cookie(pos, head->read_var2,

			     &tomoyo_domain_initializer_list) {

		const char *no;

		if (!done)

			break;

	}

	up_read(&tomoyo_domain_initializer_list_lock);

	return done;

}

 * @is_delete: True if it is a delete request.

 *

 * Returns 0 on success, negative value otherwise.

 *

 * Caller holds tomoyo_read_lock().

 */

int tomoyo_write_domain_initializer_policy(char *data, const bool is_not,

					   const bool is_delete)

 *

 * Returns true if executing @program reinitializes domain transition,

 * false otherwise.

 *

 * Caller holds tomoyo_read_lock().

 */

static bool tomoyo_is_domain_initializer(const struct tomoyo_path_info *

					 domainname,

	struct tomoyo_domain_initializer_entry *ptr;

	bool flag = false;

	down_read(&tomoyo_domain_initializer_list_lock);

	list_for_each_entry(ptr,  &tomoyo_domain_initializer_list, list) {

	list_for_each_entry_rcu(ptr, &tomoyo_domain_initializer_list, list) {

		if (ptr->is_deleted)

			continue;

		if (ptr->domainname) {

		}

		flag = true;

	}

	up_read(&tomoyo_domain_initializer_list_lock);

	return flag;

}

 * @is_delete:  True if it is a delete request.

 *

 * Returns 0 on success, negative value otherwise.

 *

 * Caller holds tomoyo_read_lock().

 */

static int tomoyo_update_domain_keeper_entry(const char *domainname,

					     const char *program,

	if (!saved_domainname)

		return -ENOMEM;

	down_write(&tomoyo_domain_keeper_list_lock);

	list_for_each_entry(ptr, &tomoyo_domain_keeper_list, list) {

	list_for_each_entry_rcu(ptr, &tomoyo_domain_keeper_list, list) {

		if (ptr->is_not != is_not ||

		    ptr->domainname != saved_domainname ||

		    ptr->program != saved_program)

	new_entry->program = saved_program;

	new_entry->is_not = is_not;

	new_entry->is_last_name = is_last_name;

	list_add_tail(&new_entry->list, &tomoyo_domain_keeper_list);

	list_add_tail_rcu(&new_entry->list, &tomoyo_domain_keeper_list);

	error = 0;

 out:

	up_write(&tomoyo_domain_keeper_list_lock);

 * @is_not:    True if it is "no_keep_domain" entry.

 * @is_delete: True if it is a delete request.

 *

 * Caller holds tomoyo_read_lock().

 */

int tomoyo_write_domain_keeper_policy(char *data, const bool is_not,

				      const bool is_delete)

 * @head: Pointer to "struct tomoyo_io_buffer".

 *

 * Returns true on success, false otherwise.

 *

 * Caller holds tomoyo_read_lock().

 */

bool tomoyo_read_domain_keeper_policy(struct tomoyo_io_buffer *head)

{

	struct list_head *pos;

	bool done = true;

	down_read(&tomoyo_domain_keeper_list_lock);

	list_for_each_cookie(pos, head->read_var2,

			     &tomoyo_domain_keeper_list) {

		struct tomoyo_domain_keeper_entry *ptr;

		if (!done)

			break;

	}

	up_read(&tomoyo_domain_keeper_list_lock);

	return done;

}

 *

 * Returns true if executing @program supresses domain transition,

 * false otherwise.

 *

 * Caller holds tomoyo_read_lock().

 */

static bool tomoyo_is_domain_keeper(const struct tomoyo_path_info *domainname,

				    const struct tomoyo_path_info *program,

	struct tomoyo_domain_keeper_entry *ptr;

	bool flag = false;

	down_read(&tomoyo_domain_keeper_list_lock);

	list_for_each_entry(ptr, &tomoyo_domain_keeper_list, list) {

	list_for_each_entry_rcu(ptr, &tomoyo_domain_keeper_list, list) {

		if (ptr->is_deleted)

			continue;

		if (!ptr->is_last_name) {

		}

		flag = true;

	}

	up_read(&tomoyo_domain_keeper_list_lock);

	return flag;

}

 * @is_delete:     True if it is a delete request.

 *

 * Returns 0 on success, negative value otherwise.

 *

 * Caller holds tomoyo_read_lock().

 */

static int tomoyo_update_alias_entry(const char *original_name,

				     const char *aliased_name,

	if (!saved_original_name || !saved_aliased_name)

		return -ENOMEM;

	down_write(&tomoyo_alias_list_lock);

	list_for_each_entry(ptr, &tomoyo_alias_list, list) {

	list_for_each_entry_rcu(ptr, &tomoyo_alias_list, list) {

		if (ptr->original_name != saved_original_name ||

		    ptr->aliased_name != saved_aliased_name)

			continue;

		goto out;

	new_entry->original_name = saved_original_name;

	new_entry->aliased_name = saved_aliased_name;

	list_add_tail(&new_entry->list, &tomoyo_alias_list);

	list_add_tail_rcu(&new_entry->list, &tomoyo_alias_list);

	error = 0;

 out:

	up_write(&tomoyo_alias_list_lock);

 * @head: Pointer to "struct tomoyo_io_buffer".

 *

 * Returns true on success, false otherwise.

 *

 * Caller holds tomoyo_read_lock().

 */

bool tomoyo_read_alias_policy(struct tomoyo_io_buffer *head)

{

	struct list_head *pos;

	bool done = true;

	down_read(&tomoyo_alias_list_lock);

	list_for_each_cookie(pos, head->read_var2, &tomoyo_alias_list) {

		struct tomoyo_alias_entry *ptr;

		if (!done)

			break;

	}

	up_read(&tomoyo_alias_list_lock);

	return done;

}

 * @is_delete: True if it is a delete request.