Gitiles
Code Review Sign In
review.shift-gmbh.com / SHIFTPHONES / mainline / linux / e1fd316fbae104f96cc9c36073fe102d298f8576 / . / security / tomoyo / gc.c
blob: e22bea811c574b990af47fa583d4fc8a071cb35b [file] [log] [blame]
Greg Kroah-Hartmanb2441312017-11-01 15:07:57 +0100[diff] [blame]1// SPDX-License-Identifier: GPL-2.0
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]2/*
3 * security/tomoyo/gc.c
4 *
Tetsuo Handa0f2a55d2011-07-14 14:46:51 +0900[diff] [blame]5 * Copyright (C) 2005-2011 NTT DATA CORPORATION
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]6 */
7
8#include "common.h"
9#include <linux/kthread.h>
Tejun Heo5a0e3ad2010-03-24 17:04:11 +0900[diff] [blame]10#include <linux/slab.h>
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]11
Tetsuo Handaa427fd12011-09-25 17:51:06 +0900[diff] [blame]12/**
13 * tomoyo_memory_free - Free memory for elements.
14 *
15 * @ptr: Pointer to allocated memory.
16 *
17 * Returns nothing.
18 *
19 * Caller holds tomoyo_policy_lock mutex.
20 */
21static inline void tomoyo_memory_free(void *ptr)
22{
23 tomoyo_memory_used[TOMOYO_MEMORY_POLICY] -= ksize(ptr);
24 kfree(ptr);
25}
26
Tetsuo Handa2e503bb2011-06-26 23:20:55 +0900[diff] [blame]27/* The list for "struct tomoyo_io_buffer". */
28static LIST_HEAD(tomoyo_io_buffer_list);
29/* Lock for protecting tomoyo_io_buffer_list. */
30static DEFINE_SPINLOCK(tomoyo_io_buffer_list_lock);
31
Tetsuo Handa2e503bb2011-06-26 23:20:55 +0900[diff] [blame]32/**
33 * tomoyo_struct_used_by_io_buffer - Check whether the list element is used by /sys/kernel/security/tomoyo/ users or not.
34 *
35 * @element: Pointer to "struct list_head".
36 *
37 * Returns true if @element is used by /sys/kernel/security/tomoyo/ users,
38 * false otherwise.
39 */
40static bool tomoyo_struct_used_by_io_buffer(const struct list_head *element)
41{
42 struct tomoyo_io_buffer *head;
43 bool in_use = false;
44
45 spin_lock(&tomoyo_io_buffer_list_lock);
46 list_for_each_entry(head, &tomoyo_io_buffer_list, list) {
47 head->users++;
48 spin_unlock(&tomoyo_io_buffer_list_lock);
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]49 mutex_lock(&head->io_sem);
Tetsuo Handa2e503bb2011-06-26 23:20:55 +0900[diff] [blame]50 if (head->r.domain == element || head->r.group == element ||
51 head->r.acl == element || &head->w.domain->list == element)
52 in_use = true;
53 mutex_unlock(&head->io_sem);
Tetsuo Handa2e503bb2011-06-26 23:20:55 +0900[diff] [blame]54 spin_lock(&tomoyo_io_buffer_list_lock);
55 head->users--;
56 if (in_use)
57 break;
58 }
59 spin_unlock(&tomoyo_io_buffer_list_lock);
60 return in_use;
61}
62
63/**
64 * tomoyo_name_used_by_io_buffer - Check whether the string is used by /sys/kernel/security/tomoyo/ users or not.
65 *
66 * @string: String to check.
Tetsuo Handa2e503bb2011-06-26 23:20:55 +0900[diff] [blame]67 *
68 * Returns true if @string is used by /sys/kernel/security/tomoyo/ users,
69 * false otherwise.
70 */
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]71static bool tomoyo_name_used_by_io_buffer(const char *string)
Tetsuo Handa2e503bb2011-06-26 23:20:55 +0900[diff] [blame]72{
73 struct tomoyo_io_buffer *head;
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]74 const size_t size = strlen(string) + 1;
Tetsuo Handa2e503bb2011-06-26 23:20:55 +0900[diff] [blame]75 bool in_use = false;
76
77 spin_lock(&tomoyo_io_buffer_list_lock);
78 list_for_each_entry(head, &tomoyo_io_buffer_list, list) {
79 int i;
80 head->users++;
81 spin_unlock(&tomoyo_io_buffer_list_lock);
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]82 mutex_lock(&head->io_sem);
Tetsuo Handa2e503bb2011-06-26 23:20:55 +0900[diff] [blame]83 for (i = 0; i < TOMOYO_MAX_IO_READ_QUEUE; i++) {
84 const char *w = head->r.w[i];
85 if (w < string || w > string + size)
86 continue;
87 in_use = true;
88 break;
89 }
90 mutex_unlock(&head->io_sem);
Tetsuo Handa2e503bb2011-06-26 23:20:55 +0900[diff] [blame]91 spin_lock(&tomoyo_io_buffer_list_lock);
92 head->users--;
93 if (in_use)
94 break;
95 }
96 spin_unlock(&tomoyo_io_buffer_list_lock);
97 return in_use;
98}
99
Tetsuo Handa0df7e8b2011-06-26 23:16:36 +0900[diff] [blame]100/**
101 * tomoyo_del_transition_control - Delete members in "struct tomoyo_transition_control".
102 *
103 * @element: Pointer to "struct list_head".
104 *
105 * Returns nothing.
106 */
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]107static inline void tomoyo_del_transition_control(struct list_head *element)
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]108{
Tetsuo Handa5448ec42010-06-21 11:14:39 +0900[diff] [blame]109 struct tomoyo_transition_control *ptr =
Tetsuo Handae79acf02010-06-16 16:31:50 +0900[diff] [blame]110 container_of(element, typeof(*ptr), head.list);
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]111 tomoyo_put_name(ptr->domainname);
112 tomoyo_put_name(ptr->program);
113}
114
Tetsuo Handa0df7e8b2011-06-26 23:16:36 +0900[diff] [blame]115/**
116 * tomoyo_del_aggregator - Delete members in "struct tomoyo_aggregator".
117 *
118 * @element: Pointer to "struct list_head".
119 *
120 * Returns nothing.
121 */
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]122static inline void tomoyo_del_aggregator(struct list_head *element)
Tetsuo Handa10843072010-06-03 20:38:03 +0900[diff] [blame]123{
Tetsuo Handae2bf6902010-06-25 11:16:00 +0900[diff] [blame]124 struct tomoyo_aggregator *ptr =
Tetsuo Handae79acf02010-06-16 16:31:50 +0900[diff] [blame]125 container_of(element, typeof(*ptr), head.list);
Tetsuo Handa10843072010-06-03 20:38:03 +0900[diff] [blame]126 tomoyo_put_name(ptr->original_name);
127 tomoyo_put_name(ptr->aggregated_name);
128}
129
Tetsuo Handa0df7e8b2011-06-26 23:16:36 +0900[diff] [blame]130/**
131 * tomoyo_del_manager - Delete members in "struct tomoyo_manager".
132 *
133 * @element: Pointer to "struct list_head".
134 *
135 * Returns nothing.
136 */
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]137static inline void tomoyo_del_manager(struct list_head *element)
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]138{
Tetsuo Handae2bf6902010-06-25 11:16:00 +0900[diff] [blame]139 struct tomoyo_manager *ptr =
Tetsuo Handae79acf02010-06-16 16:31:50 +0900[diff] [blame]140 container_of(element, typeof(*ptr), head.list);
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]141 tomoyo_put_name(ptr->manager);
142}
143
Tetsuo Handa0df7e8b2011-06-26 23:16:36 +0900[diff] [blame]144/**
145 * tomoyo_del_acl - Delete members in "struct tomoyo_acl_info".
146 *
147 * @element: Pointer to "struct list_head".
148 *
149 * Returns nothing.
150 */
Tetsuo Handae79acf02010-06-16 16:31:50 +0900[diff] [blame]151static void tomoyo_del_acl(struct list_head *element)
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]152{
Tetsuo Handae79acf02010-06-16 16:31:50 +0900[diff] [blame]153 struct tomoyo_acl_info *acl =
154 container_of(element, typeof(*acl), list);
Tetsuo Handa2066a362011-07-08 13:21:37 +0900[diff] [blame]155 tomoyo_put_condition(acl->cond);
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]156 switch (acl->type) {
Tetsuo Handa7ef61232010-02-16 08:03:30 +0900[diff] [blame]157 case TOMOYO_TYPE_PATH_ACL:
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]158 {
Tetsuo Handa7ef61232010-02-16 08:03:30 +0900[diff] [blame]159 struct tomoyo_path_acl *entry
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]160 = container_of(acl, typeof(*entry), head);
Tetsuo Handa7762fbf2010-05-10 17:30:26 +0900[diff] [blame]161 tomoyo_put_name_union(&entry->name);
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]162 }
163 break;
Tetsuo Handa7ef61232010-02-16 08:03:30 +0900[diff] [blame]164 case TOMOYO_TYPE_PATH2_ACL:
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]165 {
Tetsuo Handa7ef61232010-02-16 08:03:30 +0900[diff] [blame]166 struct tomoyo_path2_acl *entry
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]167 = container_of(acl, typeof(*entry), head);
Tetsuo Handa7762fbf2010-05-10 17:30:26 +0900[diff] [blame]168 tomoyo_put_name_union(&entry->name1);
169 tomoyo_put_name_union(&entry->name2);
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]170 }
171 break;
Tetsuo Handaa1f9bb62010-05-17 10:09:15 +0900[diff] [blame]172 case TOMOYO_TYPE_PATH_NUMBER_ACL:
173 {
174 struct tomoyo_path_number_acl *entry
175 = container_of(acl, typeof(*entry), head);
176 tomoyo_put_name_union(&entry->name);
177 tomoyo_put_number_union(&entry->number);
178 }
179 break;
Tetsuo Handa75093152010-06-16 16:23:55 +0900[diff] [blame]180 case TOMOYO_TYPE_MKDEV_ACL:
Tetsuo Handaa1f9bb62010-05-17 10:09:15 +0900[diff] [blame]181 {
Tetsuo Handa75093152010-06-16 16:23:55 +0900[diff] [blame]182 struct tomoyo_mkdev_acl *entry
Tetsuo Handaa1f9bb62010-05-17 10:09:15 +0900[diff] [blame]183 = container_of(acl, typeof(*entry), head);
184 tomoyo_put_name_union(&entry->name);
185 tomoyo_put_number_union(&entry->mode);
186 tomoyo_put_number_union(&entry->major);
187 tomoyo_put_number_union(&entry->minor);
188 }
189 break;
Tetsuo Handa2106ccd2010-05-17 10:10:31 +0900[diff] [blame]190 case TOMOYO_TYPE_MOUNT_ACL:
191 {
192 struct tomoyo_mount_acl *entry
193 = container_of(acl, typeof(*entry), head);
194 tomoyo_put_name_union(&entry->dev_name);
195 tomoyo_put_name_union(&entry->dir_name);
196 tomoyo_put_name_union(&entry->fs_type);
197 tomoyo_put_number_union(&entry->flags);
198 }
199 break;
Tetsuo Handad58e0da2011-09-10 15:22:48 +0900[diff] [blame]200 case TOMOYO_TYPE_ENV_ACL:
201 {
202 struct tomoyo_env_acl *entry =
203 container_of(acl, typeof(*entry), head);
204
205 tomoyo_put_name(entry->env);
206 }
207 break;
Tetsuo Handa059d84d2011-09-10 15:23:54 +0900[diff] [blame]208 case TOMOYO_TYPE_INET_ACL:
209 {
210 struct tomoyo_inet_acl *entry =
211 container_of(acl, typeof(*entry), head);
212
213 tomoyo_put_group(entry->address.group);
214 tomoyo_put_number_union(&entry->port);
215 }
216 break;
217 case TOMOYO_TYPE_UNIX_ACL:
218 {
219 struct tomoyo_unix_acl *entry =
220 container_of(acl, typeof(*entry), head);
221
222 tomoyo_put_name_union(&entry->name);
223 }
224 break;
Tetsuo Handa545a7262011-10-11 14:06:41 +0900[diff] [blame]225 case TOMOYO_TYPE_MANUAL_TASK_ACL:
226 {
227 struct tomoyo_task_acl *entry =
228 container_of(acl, typeof(*entry), head);
229 tomoyo_put_name(entry->domainname);
230 }
231 break;
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]232 }
233}
234
Tetsuo Handa2e503bb2011-06-26 23:20:55 +0900[diff] [blame]235/**
236 * tomoyo_del_domain - Delete members in "struct tomoyo_domain_info".
237 *
238 * @element: Pointer to "struct list_head".
239 *
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]240 * Returns nothing.
Tetsuo Handaa427fd12011-09-25 17:51:06 +0900[diff] [blame]241 *
242 * Caller holds tomoyo_policy_lock mutex.
Tetsuo Handa2e503bb2011-06-26 23:20:55 +0900[diff] [blame]243 */
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]244static inline void tomoyo_del_domain(struct list_head *element)
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]245{
Tetsuo Handae79acf02010-06-16 16:31:50 +0900[diff] [blame]246 struct tomoyo_domain_info *domain =
247 container_of(element, typeof(*domain), list);
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]248 struct tomoyo_acl_info *acl;
249 struct tomoyo_acl_info *tmp;
250 /*
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]251 * Since this domain is referenced from neither
252 * "struct tomoyo_io_buffer" nor "struct cred"->security, we can delete
253 * elements without checking for is_deleted flag.
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]254 */
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]255 list_for_each_entry_safe(acl, tmp, &domain->acl_info_list, list) {
Tetsuo Handae79acf02010-06-16 16:31:50 +0900[diff] [blame]256 tomoyo_del_acl(&acl->list);
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]257 tomoyo_memory_free(acl);
258 }
259 tomoyo_put_name(domain->domainname);
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]260}
261
Tetsuo Handa2066a362011-07-08 13:21:37 +0900[diff] [blame]262/**
263 * tomoyo_del_condition - Delete members in "struct tomoyo_condition".
264 *
265 * @element: Pointer to "struct list_head".
266 *
267 * Returns nothing.
268 */
269void tomoyo_del_condition(struct list_head *element)
270{
271 struct tomoyo_condition *cond = container_of(element, typeof(*cond),
272 head.list);
273 const u16 condc = cond->condc;
274 const u16 numbers_count = cond->numbers_count;
Tetsuo Handa2ca9bf42011-07-08 13:23:44 +0900[diff] [blame]275 const u16 names_count = cond->names_count;
Tetsuo Handa5b636852011-07-08 13:24:54 +0900[diff] [blame]276 const u16 argc = cond->argc;
277 const u16 envc = cond->envc;
Tetsuo Handa2066a362011-07-08 13:21:37 +0900[diff] [blame]278 unsigned int i;
279 const struct tomoyo_condition_element *condp
280 = (const struct tomoyo_condition_element *) (cond + 1);
281 struct tomoyo_number_union *numbers_p
282 = (struct tomoyo_number_union *) (condp + condc);
Tetsuo Handa2ca9bf42011-07-08 13:23:44 +0900[diff] [blame]283 struct tomoyo_name_union *names_p
284 = (struct tomoyo_name_union *) (numbers_p + numbers_count);
Tetsuo Handa5b636852011-07-08 13:24:54 +0900[diff] [blame]285 const struct tomoyo_argv *argv
286 = (const struct tomoyo_argv *) (names_p + names_count);
287 const struct tomoyo_envp *envp
288 = (const struct tomoyo_envp *) (argv + argc);
Tetsuo Handa2066a362011-07-08 13:21:37 +0900[diff] [blame]289 for (i = 0; i < numbers_count; i++)
290 tomoyo_put_number_union(numbers_p++);
Tetsuo Handa2ca9bf42011-07-08 13:23:44 +0900[diff] [blame]291 for (i = 0; i < names_count; i++)
292 tomoyo_put_name_union(names_p++);
Tetsuo Handa5b636852011-07-08 13:24:54 +0900[diff] [blame]293 for (i = 0; i < argc; argv++, i++)
294 tomoyo_put_name(argv->value);
295 for (i = 0; i < envc; envp++, i++) {
296 tomoyo_put_name(envp->name);
297 tomoyo_put_name(envp->value);
298 }
Tetsuo Handa2066a362011-07-08 13:21:37 +0900[diff] [blame]299}
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]300
Tetsuo Handa0df7e8b2011-06-26 23:16:36 +0900[diff] [blame]301/**
302 * tomoyo_del_name - Delete members in "struct tomoyo_name".
303 *
304 * @element: Pointer to "struct list_head".
305 *
306 * Returns nothing.
307 */
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]308static inline void tomoyo_del_name(struct list_head *element)
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]309{
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]310 /* Nothing to do. */
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]311}
312
Tetsuo Handa0df7e8b2011-06-26 23:16:36 +0900[diff] [blame]313/**
314 * tomoyo_del_path_group - Delete members in "struct tomoyo_path_group".
315 *
316 * @element: Pointer to "struct list_head".
317 *
318 * Returns nothing.
319 */
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]320static inline void tomoyo_del_path_group(struct list_head *element)
Tetsuo Handa7762fbf2010-05-10 17:30:26 +0900[diff] [blame]321{
Tetsuo Handaa98aa4d2010-06-17 16:52:29 +0900[diff] [blame]322 struct tomoyo_path_group *member =
Tetsuo Handae79acf02010-06-16 16:31:50 +0900[diff] [blame]323 container_of(element, typeof(*member), head.list);
Tetsuo Handa7762fbf2010-05-10 17:30:26 +0900[diff] [blame]324 tomoyo_put_name(member->member_name);
325}
326
Tetsuo Handa0df7e8b2011-06-26 23:16:36 +0900[diff] [blame]327/**
328 * tomoyo_del_group - Delete "struct tomoyo_group".
329 *
330 * @element: Pointer to "struct list_head".
331 *
332 * Returns nothing.
333 */
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]334static inline void tomoyo_del_group(struct list_head *element)
Tetsuo Handa7762fbf2010-05-10 17:30:26 +0900[diff] [blame]335{
Tetsuo Handaa98aa4d2010-06-17 16:52:29 +0900[diff] [blame]336 struct tomoyo_group *group =
Tetsuo Handa0df7e8b2011-06-26 23:16:36 +0900[diff] [blame]337 container_of(element, typeof(*group), head.list);
Tetsuo Handa7762fbf2010-05-10 17:30:26 +0900[diff] [blame]338 tomoyo_put_name(group->group_name);
339}
340
Tetsuo Handa0df7e8b2011-06-26 23:16:36 +0900[diff] [blame]341/**
Tetsuo Handa059d84d2011-09-10 15:23:54 +0900[diff] [blame]342 * tomoyo_del_address_group - Delete members in "struct tomoyo_address_group".
343 *
344 * @element: Pointer to "struct list_head".
345 *
346 * Returns nothing.
347 */
348static inline void tomoyo_del_address_group(struct list_head *element)
349{
350 /* Nothing to do. */
351}
352
353/**
Tetsuo Handa0df7e8b2011-06-26 23:16:36 +0900[diff] [blame]354 * tomoyo_del_number_group - Delete members in "struct tomoyo_number_group".
355 *
356 * @element: Pointer to "struct list_head".
357 *
358 * Returns nothing.
359 */
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]360static inline void tomoyo_del_number_group(struct list_head *element)
Tetsuo Handa4c3e9e22010-05-17 10:06:58 +0900[diff] [blame]361{
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]362 /* Nothing to do. */
363}
364
365/**
366 * tomoyo_try_to_gc - Try to kfree() an entry.
367 *
368 * @type: One of values in "enum tomoyo_policy_id".
369 * @element: Pointer to "struct list_head".
370 *
371 * Returns nothing.
372 *
373 * Caller holds tomoyo_policy_lock mutex.
374 */
375static void tomoyo_try_to_gc(const enum tomoyo_policy_id type,
376 struct list_head *element)
377{
378 /*
379 * __list_del_entry() guarantees that the list element became no longer
380 * reachable from the list which the element was originally on (e.g.
381 * tomoyo_domain_list). Also, synchronize_srcu() guarantees that the
382 * list element became no longer referenced by syscall users.
383 */
384 __list_del_entry(element);
385 mutex_unlock(&tomoyo_policy_lock);
386 synchronize_srcu(&tomoyo_ss);
387 /*
388 * However, there are two users which may still be using the list
389 * element. We need to defer until both users forget this element.
390 *
391 * Don't kfree() until "struct tomoyo_io_buffer"->r.{domain,group,acl}
392 * and "struct tomoyo_io_buffer"->w.domain forget this element.
393 */
394 if (tomoyo_struct_used_by_io_buffer(element))
395 goto reinject;
396 switch (type) {
397 case TOMOYO_ID_TRANSITION_CONTROL:
398 tomoyo_del_transition_control(element);
399 break;
400 case TOMOYO_ID_MANAGER:
401 tomoyo_del_manager(element);
402 break;
403 case TOMOYO_ID_AGGREGATOR:
404 tomoyo_del_aggregator(element);
405 break;
406 case TOMOYO_ID_GROUP:
407 tomoyo_del_group(element);
408 break;
409 case TOMOYO_ID_PATH_GROUP:
410 tomoyo_del_path_group(element);
411 break;
412 case TOMOYO_ID_ADDRESS_GROUP:
413 tomoyo_del_address_group(element);
414 break;
415 case TOMOYO_ID_NUMBER_GROUP:
416 tomoyo_del_number_group(element);
417 break;
418 case TOMOYO_ID_CONDITION:
419 tomoyo_del_condition(element);
420 break;
421 case TOMOYO_ID_NAME:
422 /*
423 * Don't kfree() until all "struct tomoyo_io_buffer"->r.w[]
424 * forget this element.
425 */
426 if (tomoyo_name_used_by_io_buffer
427 (container_of(element, typeof(struct tomoyo_name),
428 head.list)->entry.name))
429 goto reinject;
430 tomoyo_del_name(element);
431 break;
432 case TOMOYO_ID_ACL:
433 tomoyo_del_acl(element);
434 break;
435 case TOMOYO_ID_DOMAIN:
436 /*
437 * Don't kfree() until all "struct cred"->security forget this
438 * element.
439 */
440 if (atomic_read(&container_of
441 (element, typeof(struct tomoyo_domain_info),
442 list)->users))
443 goto reinject;
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]444 break;
445 case TOMOYO_MAX_POLICY:
446 break;
447 }
448 mutex_lock(&tomoyo_policy_lock);
Tetsuo Handaa427fd12011-09-25 17:51:06 +0900[diff] [blame]449 if (type == TOMOYO_ID_DOMAIN)
450 tomoyo_del_domain(element);
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]451 tomoyo_memory_free(element);
452 return;
453reinject:
454 /*
455 * We can safely reinject this element here bacause
456 * (1) Appending list elements and removing list elements are protected
457 * by tomoyo_policy_lock mutex.
458 * (2) Only this function removes list elements and this function is
459 * exclusively executed by tomoyo_gc_mutex mutex.
460 * are true.
461 */
462 mutex_lock(&tomoyo_policy_lock);
463 list_add_rcu(element, element->prev);
Tetsuo Handa4c3e9e22010-05-17 10:06:58 +0900[diff] [blame]464}
465
Tetsuo Handa0df7e8b2011-06-26 23:16:36 +0900[diff] [blame]466/**
467 * tomoyo_collect_member - Delete elements with "struct tomoyo_acl_head".
468 *
469 * @id: One of values in "enum tomoyo_policy_id".
470 * @member_list: Pointer to "struct list_head".
471 *
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]472 * Returns nothing.
Tetsuo Handa0df7e8b2011-06-26 23:16:36 +0900[diff] [blame]473 */
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]474static void tomoyo_collect_member(const enum tomoyo_policy_id id,
Tetsuo Handa0df7e8b2011-06-26 23:16:36 +0900[diff] [blame]475 struct list_head *member_list)
Tetsuo Handad2f8b232010-06-15 10:10:37 +0900[diff] [blame]476{
477 struct tomoyo_acl_head *member;
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]478 struct tomoyo_acl_head *tmp;
479 list_for_each_entry_safe(member, tmp, member_list, list) {
Tetsuo Handad2f8b232010-06-15 10:10:37 +0900[diff] [blame]480 if (!member->is_deleted)
481 continue;
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]482 member->is_deleted = TOMOYO_GC_IN_PROGRESS;
483 tomoyo_try_to_gc(id, &member->list);
Tetsuo Handad2f8b232010-06-15 10:10:37 +0900[diff] [blame]484 }
Tetsuo Handad2f8b232010-06-15 10:10:37 +0900[diff] [blame]485}
486
Tetsuo Handa32997142011-06-26 23:19:28 +0900[diff] [blame]487/**
488 * tomoyo_collect_acl - Delete elements in "struct tomoyo_domain_info".
489 *
490 * @list: Pointer to "struct list_head".
491 *
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]492 * Returns nothing.
Tetsuo Handa32997142011-06-26 23:19:28 +0900[diff] [blame]493 */
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]494static void tomoyo_collect_acl(struct list_head *list)
Tetsuo Handad2f8b232010-06-15 10:10:37 +0900[diff] [blame]495{
496 struct tomoyo_acl_info *acl;
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]497 struct tomoyo_acl_info *tmp;
498 list_for_each_entry_safe(acl, tmp, list, list) {
Tetsuo Handad2f8b232010-06-15 10:10:37 +0900[diff] [blame]499 if (!acl->is_deleted)
500 continue;
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]501 acl->is_deleted = TOMOYO_GC_IN_PROGRESS;
502 tomoyo_try_to_gc(TOMOYO_ID_ACL, &acl->list);
Tetsuo Handad2f8b232010-06-15 10:10:37 +0900[diff] [blame]503 }
Tetsuo Handad2f8b232010-06-15 10:10:37 +0900[diff] [blame]504}
505
Tetsuo Handa0df7e8b2011-06-26 23:16:36 +0900[diff] [blame]506/**
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]507 * tomoyo_collect_entry - Try to kfree() deleted elements.
Tetsuo Handa0df7e8b2011-06-26 23:16:36 +0900[diff] [blame]508 *
509 * Returns nothing.
510 */
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]511static void tomoyo_collect_entry(void)
512{
Tetsuo Handad2f8b232010-06-15 10:10:37 +0900[diff] [blame]513 int i;
Tetsuo Handabd03a3e2011-06-26 23:19:52 +0900[diff] [blame]514 enum tomoyo_policy_id id;
515 struct tomoyo_policy_namespace *ns;
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]516 mutex_lock(&tomoyo_policy_lock);
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]517 {
518 struct tomoyo_domain_info *domain;
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]519 struct tomoyo_domain_info *tmp;
520 list_for_each_entry_safe(domain, tmp, &tomoyo_domain_list,
521 list) {
522 tomoyo_collect_acl(&domain->acl_info_list);
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]523 if (!domain->is_deleted || atomic_read(&domain->users))
524 continue;
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]525 tomoyo_try_to_gc(TOMOYO_ID_DOMAIN, &domain->list);
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]526 }
527 }
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]528 list_for_each_entry(ns, &tomoyo_namespace_list, namespace_list) {
Tetsuo Handabd03a3e2011-06-26 23:19:52 +0900[diff] [blame]529 for (id = 0; id < TOMOYO_MAX_POLICY; id++)
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]530 tomoyo_collect_member(id, &ns->policy_list[id]);
Tetsuo Handabd03a3e2011-06-26 23:19:52 +0900[diff] [blame]531 for (i = 0; i < TOMOYO_MAX_ACL_GROUPS; i++)
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]532 tomoyo_collect_acl(&ns->acl_group[i]);
533 }
534 {
535 struct tomoyo_shared_acl_head *ptr;
536 struct tomoyo_shared_acl_head *tmp;
537 list_for_each_entry_safe(ptr, tmp, &tomoyo_condition_list,
538 list) {
539 if (atomic_read(&ptr->users) > 0)
540 continue;
541 atomic_set(&ptr->users, TOMOYO_GC_IN_PROGRESS);
542 tomoyo_try_to_gc(TOMOYO_ID_CONDITION, &ptr->list);
543 }
544 }
545 list_for_each_entry(ns, &tomoyo_namespace_list, namespace_list) {
Tetsuo Handabd03a3e2011-06-26 23:19:52 +0900[diff] [blame]546 for (i = 0; i < TOMOYO_MAX_GROUP; i++) {
547 struct list_head *list = &ns->group_list[i];
548 struct tomoyo_group *group;
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]549 struct tomoyo_group *tmp;
Tetsuo Handabd03a3e2011-06-26 23:19:52 +0900[diff] [blame]550 switch (i) {
551 case 0:
552 id = TOMOYO_ID_PATH_GROUP;
553 break;
Tetsuo Handa059d84d2011-09-10 15:23:54 +0900[diff] [blame]554 case 1:
Tetsuo Handabd03a3e2011-06-26 23:19:52 +0900[diff] [blame]555 id = TOMOYO_ID_NUMBER_GROUP;
556 break;
Tetsuo Handa059d84d2011-09-10 15:23:54 +0900[diff] [blame]557 default:
558 id = TOMOYO_ID_ADDRESS_GROUP;
559 break;
Tetsuo Handabd03a3e2011-06-26 23:19:52 +0900[diff] [blame]560 }
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]561 list_for_each_entry_safe(group, tmp, list, head.list) {
562 tomoyo_collect_member(id, &group->member_list);
Tetsuo Handabd03a3e2011-06-26 23:19:52 +0900[diff] [blame]563 if (!list_empty(&group->member_list) ||
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]564 atomic_read(&group->head.users) > 0)
Tetsuo Handabd03a3e2011-06-26 23:19:52 +0900[diff] [blame]565 continue;
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]566 atomic_set(&group->head.users,
567 TOMOYO_GC_IN_PROGRESS);
568 tomoyo_try_to_gc(TOMOYO_ID_GROUP,
569 &group->head.list);
Tetsuo Handabd03a3e2011-06-26 23:19:52 +0900[diff] [blame]570 }
571 }
572 }
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]573 for (i = 0; i < TOMOYO_MAX_HASH; i++) {
574 struct list_head *list = &tomoyo_name_list[i];
Tetsuo Handabd03a3e2011-06-26 23:19:52 +0900[diff] [blame]575 struct tomoyo_shared_acl_head *ptr;
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]576 struct tomoyo_shared_acl_head *tmp;
577 list_for_each_entry_safe(ptr, tmp, list, list) {
578 if (atomic_read(&ptr->users) > 0)
Tetsuo Handad2f8b232010-06-15 10:10:37 +0900[diff] [blame]579 continue;
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]580 atomic_set(&ptr->users, TOMOYO_GC_IN_PROGRESS);
581 tomoyo_try_to_gc(TOMOYO_ID_NAME, &ptr->list);
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]582 }
583 }
Tetsuo Handa29282382010-05-06 00:18:15 +0900[diff] [blame]584 mutex_unlock(&tomoyo_policy_lock);
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]585}
586
Tetsuo Handa2e503bb2011-06-26 23:20:55 +0900[diff] [blame]587/**
Tetsuo Handa0df7e8b2011-06-26 23:16:36 +0900[diff] [blame]588 * tomoyo_gc_thread - Garbage collector thread function.
589 *
590 * @unused: Unused.
591 *
Tetsuo Handa0df7e8b2011-06-26 23:16:36 +0900[diff] [blame]592 * Returns 0.
593 */
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]594static int tomoyo_gc_thread(void *unused)
595{
Tetsuo Handa2e503bb2011-06-26 23:20:55 +0900[diff] [blame]596 /* Garbage collector thread is exclusive. */
597 static DEFINE_MUTEX(tomoyo_gc_mutex);
598 if (!mutex_trylock(&tomoyo_gc_mutex))
599 goto out;
Tetsuo Handaf9732ea2011-09-25 17:50:23 +0900[diff] [blame]600 tomoyo_collect_entry();
Tetsuo Handa2e503bb2011-06-26 23:20:55 +0900[diff] [blame]601 {
602 struct tomoyo_io_buffer *head;
603 struct tomoyo_io_buffer *tmp;
604
605 spin_lock(&tomoyo_io_buffer_list_lock);
606 list_for_each_entry_safe(head, tmp, &tomoyo_io_buffer_list,
607 list) {
608 if (head->users)
609 continue;
610 list_del(&head->list);
611 kfree(head->read_buf);
612 kfree(head->write_buf);
613 kfree(head);
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]614 }
Tetsuo Handa2e503bb2011-06-26 23:20:55 +0900[diff] [blame]615 spin_unlock(&tomoyo_io_buffer_list_lock);
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]616 }
Tetsuo Handa2e503bb2011-06-26 23:20:55 +0900[diff] [blame]617 mutex_unlock(&tomoyo_gc_mutex);
618out:
619 /* This acts as do_exit(0). */
620 return 0;
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]621}
622
Tetsuo Handa2e503bb2011-06-26 23:20:55 +0900[diff] [blame]623/**
624 * tomoyo_notify_gc - Register/unregister /sys/kernel/security/tomoyo/ users.
625 *
626 * @head: Pointer to "struct tomoyo_io_buffer".
627 * @is_register: True if register, false if unregister.
628 *
629 * Returns nothing.
630 */
631void tomoyo_notify_gc(struct tomoyo_io_buffer *head, const bool is_register)
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]632{
Tetsuo Handa2e503bb2011-06-26 23:20:55 +0900[diff] [blame]633 bool is_write = false;
634
635 spin_lock(&tomoyo_io_buffer_list_lock);
636 if (is_register) {
637 head->users = 1;
638 list_add(&head->list, &tomoyo_io_buffer_list);
639 } else {
640 is_write = head->write_buf != NULL;
641 if (!--head->users) {
642 list_del(&head->list);
643 kfree(head->read_buf);
644 kfree(head->write_buf);
645 kfree(head);
646 }
647 }
648 spin_unlock(&tomoyo_io_buffer_list_lock);
Mike Danese40d27372016-05-19 21:37:53 -0700[diff] [blame]649 if (is_write)
650 kthread_run(tomoyo_gc_thread, NULL, "GC for TOMOYO");
Tetsuo Handa847b1732010-02-11 09:43:54 +0900[diff] [blame]651}