2005-04-17 02:20:36 +04:00
/*
* Netlink event notifications for SELinux .
*
* Author : James Morris < jmorris @ redhat . com >
*
* Copyright ( C ) 2004 Red Hat , Inc . , James Morris < jmorris @ redhat . com >
*
* This program is free software ; you can redistribute it and / or modify
* it under the terms of the GNU General Public License version 2 ,
* as published by the Free Software Foundation .
*/
# include <linux/init.h>
# include <linux/types.h>
# include <linux/stddef.h>
# include <linux/kernel.h>
# include <linux/list.h>
# include <linux/skbuff.h>
# include <linux/netlink.h>
# include <linux/selinux_netlink.h>
2007-09-12 15:05:38 +04:00
# include <net/net_namespace.h>
2005-04-17 02:20:36 +04:00
static struct sock * selnl ;
static int selnl_msglen ( int msgtype )
{
int ret = 0 ;
2008-04-19 01:38:24 +04:00
2005-04-17 02:20:36 +04:00
switch ( msgtype ) {
case SELNL_MSG_SETENFORCE :
ret = sizeof ( struct selnl_msg_setenforce ) ;
break ;
2008-04-19 01:38:24 +04:00
2005-04-17 02:20:36 +04:00
case SELNL_MSG_POLICYLOAD :
ret = sizeof ( struct selnl_msg_policyload ) ;
break ;
2008-04-19 01:38:24 +04:00
2005-04-17 02:20:36 +04:00
default :
BUG ( ) ;
}
return ret ;
}
static void selnl_add_payload ( struct nlmsghdr * nlh , int len , int msgtype , void * data )
{
switch ( msgtype ) {
case SELNL_MSG_SETENFORCE : {
struct selnl_msg_setenforce * msg = NLMSG_DATA ( nlh ) ;
2008-04-19 01:38:24 +04:00
2005-04-17 02:20:36 +04:00
memset ( msg , 0 , len ) ;
msg - > val = * ( ( int * ) data ) ;
break ;
}
2008-04-19 01:38:24 +04:00
2005-04-17 02:20:36 +04:00
case SELNL_MSG_POLICYLOAD : {
struct selnl_msg_policyload * msg = NLMSG_DATA ( nlh ) ;
2008-04-19 01:38:24 +04:00
2005-04-17 02:20:36 +04:00
memset ( msg , 0 , len ) ;
msg - > seqno = * ( ( u32 * ) data ) ;
break ;
}
default :
BUG ( ) ;
}
}
static void selnl_notify ( int msgtype , void * data )
{
int len ;
2007-04-20 07:29:13 +04:00
sk_buff_data_t tmp ;
2005-04-17 02:20:36 +04:00
struct sk_buff * skb ;
struct nlmsghdr * nlh ;
2008-04-19 01:38:24 +04:00
2005-04-17 02:20:36 +04:00
len = selnl_msglen ( msgtype ) ;
2008-04-19 01:38:24 +04:00
2005-04-17 02:20:36 +04:00
skb = alloc_skb ( NLMSG_SPACE ( len ) , GFP_USER ) ;
if ( ! skb )
goto oom ;
tmp = skb - > tail ;
nlh = NLMSG_PUT ( skb , 0 , 0 , msgtype , len ) ;
selnl_add_payload ( nlh , len , msgtype , data ) ;
nlh - > nlmsg_len = skb - > tail - tmp ;
2005-08-15 06:29:52 +04:00
NETLINK_CB ( skb ) . dst_group = SELNLGRP_AVC ;
netlink_broadcast ( selnl , skb , 0 , SELNLGRP_AVC , GFP_USER ) ;
2005-04-17 02:20:36 +04:00
out :
return ;
2008-04-19 01:38:24 +04:00
2005-04-17 02:20:36 +04:00
nlmsg_failure :
kfree_skb ( skb ) ;
oom :
2008-03-06 02:03:59 +03:00
printk ( KERN_ERR " SELinux: OOM in %s \n " , __func__ ) ;
2005-04-17 02:20:36 +04:00
goto out ;
}
void selnl_notify_setenforce ( int val )
{
selnl_notify ( SELNL_MSG_SETENFORCE , & val ) ;
}
void selnl_notify_policyload ( u32 seqno )
{
selnl_notify ( SELNL_MSG_POLICYLOAD , & seqno ) ;
}
static int __init selnl_init ( void )
{
2007-09-12 15:05:38 +04:00
selnl = netlink_kernel_create ( & init_net , NETLINK_SELINUX ,
SELNLGRP_MAX , NULL , NULL , THIS_MODULE ) ;
2005-04-17 02:20:36 +04:00
if ( selnl = = NULL )
panic ( " SELinux: Cannot create netlink socket. " ) ;
2008-04-19 01:38:24 +04:00
netlink_set_nonroot ( NETLINK_SELINUX , NL_NONROOT_RECV ) ;
2005-04-17 02:20:36 +04:00
return 0 ;
}
__initcall ( selnl_init ) ;