Inicio Explorar Ayuda
Iniciar sesión
PUBLIC_REPOS
/
ti-processor-sdk-linux
2
0
Fork 0
Archivos Incidencias 0 Pull Requests 0 Wiki
Árbol: de62de59c2
Ramas Etiquetas
ti-processor-sd...
/
security
/
apparmor
/
include
/
task.h

task.h 2.2 KB
Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990 
  1. /*
    2. 

  2.  * AppArmor security module
    3. 

  3.  *
    4. 

  4.  * This file contains AppArmor task related definitions and mediation
    5. 

  5.  *
    6. 

  6.  * Copyright 2017 Canonical Ltd.
    7. 

  7.  *
    8. 

  8.  * This program is free software; you can redistribute it and/or
    9. 

  9.  * modify it under the terms of the GNU General Public License as
    10. 

  10.  * published by the Free Software Foundation, version 2 of the
    11. 

  11.  * License.
    12. 

  12.  */
    13. 

  13. 

  14. #ifndef __AA_TASK_H
    15. 

  15. #define __AA_TASK_H
    16. 

  16. 

  17. #define task_ctx(X) ((X)->security)
    18. 

  18. 

  19. /*
    20. 

  20.  * struct aa_task_ctx - information for current task label change
    21. 

  21.  * @onexec: profile to transition to on next exec  (MAY BE NULL)
    22. 

  22.  * @previous: profile the task may return to     (MAY BE NULL)
    23. 

  23.  * @token: magic value the task must know for returning to @previous_profile
    24. 

  24.  */
    25. 

  25. struct aa_task_ctx {
    26. 

  26. 	struct aa_label *onexec;
    27. 

  27. 	struct aa_label *previous;
    28. 

  28. 	u64 token;
    29. 

  29. };
    30. 

  30. 

  31. int aa_replace_current_label(struct aa_label *label);
    32. 

  32. int aa_set_current_onexec(struct aa_label *label, bool stack);
    33. 

  33. int aa_set_current_hat(struct aa_label *label, u64 token);
    34. 

  34. int aa_restore_previous_label(u64 cookie);
    35. 

  35. struct aa_label *aa_get_task_label(struct task_struct *task);
    36. 

  36. 

  37. /**
    38. 

  38.  * aa_alloc_task_ctx - allocate a new task_ctx
    39. 

  39.  * @flags: gfp flags for allocation
    40. 

  40.  *
    41. 

  41.  * Returns: allocated buffer or NULL on failure
    42. 

  42.  */
    43. 

  43. static inline struct aa_task_ctx *aa_alloc_task_ctx(gfp_t flags)
    44. 

  44. {
    45. 

  45. 	return kzalloc(sizeof(struct aa_task_ctx), flags);
    46. 

  46. }
    47. 

  47. 

  48. /**
    49. 

  49.  * aa_free_task_ctx - free a task_ctx
    50. 

  50.  * @ctx: task_ctx to free (MAYBE NULL)
    51. 

  51.  */
    52. 

  52. static inline void aa_free_task_ctx(struct aa_task_ctx *ctx)
    53. 

  53. {
    54. 

  54. 	if (ctx) {
    55. 

  55. 		aa_put_label(ctx->previous);
    56. 

  56. 		aa_put_label(ctx->onexec);
    57. 

  57. 

  58. 		kzfree(ctx);
    59. 

  59. 	}
    60. 

  60. }
    61. 

  61. 

  62. /**
    63. 

  63.  * aa_dup_task_ctx - duplicate a task context, incrementing reference counts
    64. 

  64.  * @new: a blank task context      (NOT NULL)
    65. 

  65.  * @old: the task context to copy  (NOT NULL)
    66. 

  66.  */
    67. 

  67. static inline void aa_dup_task_ctx(struct aa_task_ctx *new,
    68. 

  68. 				   const struct aa_task_ctx *old)
    69. 

  69. {
    70. 

  70. 	*new = *old;
    71. 

  71. 	aa_get_label(new->previous);
    72. 

  72. 	aa_get_label(new->onexec);
    73. 

  73. }
    74. 

  74. 

  75. /**
    76. 

  76.  * aa_clear_task_ctx_trans - clear transition tracking info from the ctx
    77. 

  77.  * @ctx: task context to clear (NOT NULL)
    78. 

  78.  */
    79. 

  79. static inline void aa_clear_task_ctx_trans(struct aa_task_ctx *ctx)
    80. 

  80. {
    81. 

  81. 	AA_BUG(!ctx);
    82. 

  82. 

  83. 	aa_put_label(ctx->previous);
    84. 

  84. 	aa_put_label(ctx->onexec);
    85. 

  85. 	ctx->previous = NULL;
    86. 

  86. 	ctx->onexec = NULL;
    87. 

  87. 	ctx->token = 0;
    88. 

  88. }
    89. 

  89. 

  90. #endif /* __AA_TASK_H */
    91.