Donate to e Foundation | Murena handsets with /e/OS | Own a part of Murena! Learn more

Commit 923f7f31 authored by Tiger Yang's avatar Tiger Yang Committed by Mark Fasheh
Browse files

ocfs2: add security xattr API 



This patch add security xattr set/get/list APIs to
support security attributes in Ocfs2.

Signed-off-by: default avatarTiger Yang <tiger.yang@oracle.com>
Signed-off-by: default avatarMark Fasheh <mfasheh@suse.com>
parent 6c3faba4

fs/ocfs2/xattr.c

+47 −0
Original line number Diff line number Diff line
@@ -35,6 +35,7 @@ 
#include <linux/init.h>

#include <linux/module.h>

#include <linux/string.h>

#include <linux/security.h>



#define MLOG_MASK_PREFIX ML_XATTR

#include <cluster/masklog.h>
@@ -88,12 +89,14 @@ static struct ocfs2_xattr_def_value_root def_xv = { 
struct xattr_handler *ocfs2_xattr_handlers[] = {

	&ocfs2_xattr_user_handler,

	&ocfs2_xattr_trusted_handler,

	&ocfs2_xattr_security_handler,

	NULL

};



static struct xattr_handler *ocfs2_xattr_handler_map[OCFS2_XATTR_MAX] = {

	[OCFS2_XATTR_INDEX_USER]	= &ocfs2_xattr_user_handler,

	[OCFS2_XATTR_INDEX_TRUSTED]	= &ocfs2_xattr_trusted_handler,

	[OCFS2_XATTR_INDEX_SECURITY]	= &ocfs2_xattr_security_handler,

};



struct ocfs2_xattr_info {
@@ -4976,6 +4979,50 @@ out: 
	return ret;

}



/*

 * 'security' attributes support

 */

static size_t ocfs2_xattr_security_list(struct inode *inode, char *list,

					size_t list_size, const char *name,

					size_t name_len)

{

	const size_t prefix_len = XATTR_SECURITY_PREFIX_LEN;

	const size_t total_len = prefix_len + name_len + 1;



	if (list && total_len <= list_size) {

		memcpy(list, XATTR_SECURITY_PREFIX, prefix_len);

		memcpy(list + prefix_len, name, name_len);

		list[prefix_len + name_len] = '\0';

	}

	return total_len;

}



static int ocfs2_xattr_security_get(struct inode *inode, const char *name,

				    void *buffer, size_t size)

{

	if (strcmp(name, "") == 0)

		return -EINVAL;

	return ocfs2_xattr_get(inode, OCFS2_XATTR_INDEX_SECURITY, name,

			       buffer, size);

}



static int ocfs2_xattr_security_set(struct inode *inode, const char *name,

				    const void *value, size_t size, int flags)

{

	if (strcmp(name, "") == 0)

		return -EINVAL;



	return ocfs2_xattr_set(inode, OCFS2_XATTR_INDEX_SECURITY, name, value,

			       size, flags);

}



struct xattr_handler ocfs2_xattr_security_handler = {

	.prefix	= XATTR_SECURITY_PREFIX,

	.list	= ocfs2_xattr_security_list,

	.get	= ocfs2_xattr_security_get,

	.set	= ocfs2_xattr_security_set,

};



/*

 * 'trusted' attributes support

 */

fs/ocfs2/xattr.h

+1 −0
Original line number Diff line number Diff line
@@ -32,6 +32,7 @@ enum ocfs2_xattr_type { 


extern struct xattr_handler ocfs2_xattr_user_handler;

extern struct xattr_handler ocfs2_xattr_trusted_handler;

extern struct xattr_handler ocfs2_xattr_security_handler;

extern struct xattr_handler *ocfs2_xattr_handlers[];



ssize_t ocfs2_listxattr(struct dentry *, char *, size_t);