2006-08-04 03:48:37 +04:00
/*
* NetLabel Management Support
*
* This file defines the management functions for the NetLabel system . The
* NetLabel system manages static and dynamic label mappings for network
* protocols such as CIPSO and RIPSO .
*
* Author : Paul Moore < paul . moore @ hp . com >
*
*/
/*
* ( c ) Copyright Hewlett - Packard Development Company , L . P . , 2006
*
* This program is free software ; you can redistribute it and / or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation ; either version 2 of the License , or
* ( at your option ) any later version .
*
* This program is distributed in the hope that it will be useful ,
* but WITHOUT ANY WARRANTY ; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE . See
* the GNU General Public License for more details .
*
* You should have received a copy of the GNU General Public License
* along with this program ; if not , write to the Free Software
* Foundation , Inc . , 59 Temple Place , Suite 330 , Boston , MA 02111 - 1307 USA
*
*/
# include <linux/types.h>
# include <linux/socket.h>
# include <linux/string.h>
# include <linux/skbuff.h>
# include <net/sock.h>
# include <net/netlink.h>
# include <net/genetlink.h>
# include <net/netlabel.h>
# include <net/cipso_ipv4.h>
# include "netlabel_domainhash.h"
# include "netlabel_user.h"
# include "netlabel_mgmt.h"
2007-07-18 20:28:45 +04:00
/* NetLabel configured protocol count */
static DEFINE_SPINLOCK ( netlabel_mgmt_protocount_lock ) ;
static u32 netlabel_mgmt_protocount = 0 ;
2006-09-26 02:56:37 +04:00
/* Argument struct for netlbl_domhsh_walk() */
struct netlbl_domhsh_walk_arg {
struct netlink_callback * nl_cb ;
struct sk_buff * skb ;
u32 seq ;
} ;
2006-08-04 03:48:37 +04:00
/* NetLabel Generic NETLINK CIPSOv4 family */
static struct genl_family netlbl_mgmt_gnl_family = {
. id = GENL_ID_GENERATE ,
. hdrsize = 0 ,
. name = NETLBL_NLTYPE_MGMT_NAME ,
. version = NETLBL_PROTO_VERSION ,
2006-09-26 02:56:37 +04:00
. maxattr = NLBL_MGMT_A_MAX ,
2006-08-04 03:48:37 +04:00
} ;
2006-09-26 02:56:37 +04:00
/* NetLabel Netlink attribute policy */
2007-06-05 23:38:30 +04:00
static const struct nla_policy netlbl_mgmt_genl_policy [ NLBL_MGMT_A_MAX + 1 ] = {
2006-09-26 02:56:37 +04:00
[ NLBL_MGMT_A_DOMAIN ] = { . type = NLA_NUL_STRING } ,
[ NLBL_MGMT_A_PROTOCOL ] = { . type = NLA_U32 } ,
[ NLBL_MGMT_A_VERSION ] = { . type = NLA_U32 } ,
[ NLBL_MGMT_A_CV4DOI ] = { . type = NLA_U32 } ,
} ;
2006-08-04 03:48:37 +04:00
2007-07-18 20:28:45 +04:00
/*
2007-12-21 01:03:11 +03:00
* NetLabel Misc Management Functions
2007-07-18 20:28:45 +04:00
*/
/**
* netlbl_mgmt_protocount_inc - Increment the configured labeled protocol count
*
* Description :
* Increment the number of labeled protocol configurations in the current
* NetLabel configuration . Keep track of this for use in determining if
* NetLabel label enforcement should be active / enabled or not in the LSM .
*
*/
void netlbl_mgmt_protocount_inc ( void )
{
spin_lock ( & netlabel_mgmt_protocount_lock ) ;
netlabel_mgmt_protocount + + ;
spin_unlock ( & netlabel_mgmt_protocount_lock ) ;
}
/**
* netlbl_mgmt_protocount_dec - Decrement the configured labeled protocol count
*
* Description :
* Decrement the number of labeled protocol configurations in the current
* NetLabel configuration . Keep track of this for use in determining if
* NetLabel label enforcement should be active / enabled or not in the LSM .
*
*/
void netlbl_mgmt_protocount_dec ( void )
{
spin_lock ( & netlabel_mgmt_protocount_lock ) ;
if ( netlabel_mgmt_protocount > 0 )
netlabel_mgmt_protocount - - ;
spin_unlock ( & netlabel_mgmt_protocount_lock ) ;
}
/**
* netlbl_mgmt_protocount_value - Return the number of configured protocols
*
* Description :
* Return the number of labeled protocols in the current NetLabel
* configuration . This value is useful in determining if NetLabel label
* enforcement should be active / enabled or not in the LSM .
*
*/
u32 netlbl_mgmt_protocount_value ( void )
{
u32 val ;
rcu_read_lock ( ) ;
val = netlabel_mgmt_protocount ;
rcu_read_unlock ( ) ;
return val ;
}
2006-08-04 03:48:37 +04:00
/*
* NetLabel Command Handlers
*/
/**
* netlbl_mgmt_add - Handle an ADD message
* @ skb : the NETLINK buffer
* @ info : the Generic NETLINK info block
*
* Description :
* Process a user generated ADD message and add the domains from the message
* to the hash table . See netlabel . h for a description of the message format .
* Returns zero on success , negative values on failure .
*
*/
static int netlbl_mgmt_add ( struct sk_buff * skb , struct genl_info * info )
{
int ret_val = - EINVAL ;
struct netlbl_dom_map * entry = NULL ;
2006-09-26 02:56:37 +04:00
size_t tmp_size ;
2006-08-04 03:48:37 +04:00
u32 tmp_val ;
2006-09-30 04:05:05 +04:00
struct netlbl_audit audit_info ;
2006-08-04 03:48:37 +04:00
2006-09-26 02:56:37 +04:00
if ( ! info - > attrs [ NLBL_MGMT_A_DOMAIN ] | |
! info - > attrs [ NLBL_MGMT_A_PROTOCOL ] )
2006-08-04 03:48:37 +04:00
goto add_failure ;
2006-09-30 04:05:05 +04:00
netlbl_netlink_auditinfo ( skb , & audit_info ) ;
2006-09-26 02:56:37 +04:00
entry = kzalloc ( sizeof ( * entry ) , GFP_KERNEL ) ;
if ( entry = = NULL ) {
ret_val = - ENOMEM ;
goto add_failure ;
}
tmp_size = nla_len ( info - > attrs [ NLBL_MGMT_A_DOMAIN ] ) ;
entry - > domain = kmalloc ( tmp_size , GFP_KERNEL ) ;
if ( entry - > domain = = NULL ) {
ret_val = - ENOMEM ;
2006-08-04 03:48:37 +04:00
goto add_failure ;
2006-09-26 02:56:37 +04:00
}
entry - > type = nla_get_u32 ( info - > attrs [ NLBL_MGMT_A_PROTOCOL ] ) ;
nla_strlcpy ( entry - > domain , info - > attrs [ NLBL_MGMT_A_DOMAIN ] , tmp_size ) ;
2006-08-04 03:48:37 +04:00
2006-09-26 02:56:37 +04:00
switch ( entry - > type ) {
case NETLBL_NLTYPE_UNLABELED :
2006-09-30 04:05:05 +04:00
ret_val = netlbl_domhsh_add ( entry , & audit_info ) ;
2006-09-26 02:56:37 +04:00
break ;
case NETLBL_NLTYPE_CIPSOV4 :
if ( ! info - > attrs [ NLBL_MGMT_A_CV4DOI ] )
2006-08-04 03:48:37 +04:00
goto add_failure ;
2006-09-26 02:56:37 +04:00
tmp_val = nla_get_u32 ( info - > attrs [ NLBL_MGMT_A_CV4DOI ] ) ;
/* We should be holding a rcu_read_lock() here while we hold
* the result but since the entry will always be deleted when
* the CIPSO DOI is deleted we aren ' t going to keep the
* lock . */
rcu_read_lock ( ) ;
entry - > type_def . cipsov4 = cipso_v4_doi_getdef ( tmp_val ) ;
if ( entry - > type_def . cipsov4 = = NULL ) {
2006-08-04 03:48:37 +04:00
rcu_read_unlock ( ) ;
goto add_failure ;
2006-09-26 02:56:37 +04:00
}
2006-09-30 04:05:05 +04:00
ret_val = netlbl_domhsh_add ( entry , & audit_info ) ;
2006-09-26 02:56:37 +04:00
rcu_read_unlock ( ) ;
break ;
default :
goto add_failure ;
2006-08-04 03:48:37 +04:00
}
2006-09-26 02:56:37 +04:00
if ( ret_val ! = 0 )
goto add_failure ;
2006-08-04 03:48:37 +04:00
return 0 ;
add_failure :
if ( entry )
kfree ( entry - > domain ) ;
kfree ( entry ) ;
return ret_val ;
}
/**
* netlbl_mgmt_remove - Handle a REMOVE message
* @ skb : the NETLINK buffer
* @ info : the Generic NETLINK info block
*
* Description :
* Process a user generated REMOVE message and remove the specified domain
* mappings . Returns zero on success , negative values on failure .
*
*/
static int netlbl_mgmt_remove ( struct sk_buff * skb , struct genl_info * info )
{
2006-09-26 02:56:37 +04:00
char * domain ;
2006-09-30 04:05:05 +04:00
struct netlbl_audit audit_info ;
2006-08-04 03:48:37 +04:00
2006-09-26 02:56:37 +04:00
if ( ! info - > attrs [ NLBL_MGMT_A_DOMAIN ] )
return - EINVAL ;
2006-08-04 03:48:37 +04:00
2006-09-30 04:05:05 +04:00
netlbl_netlink_auditinfo ( skb , & audit_info ) ;
2006-09-26 02:56:37 +04:00
domain = nla_data ( info - > attrs [ NLBL_MGMT_A_DOMAIN ] ) ;
2006-09-30 04:05:05 +04:00
return netlbl_domhsh_remove ( domain , & audit_info ) ;
2006-09-26 02:56:37 +04:00
}
/**
* netlbl_mgmt_listall_cb - netlbl_domhsh_walk ( ) callback for LISTALL
* @ entry : the domain mapping hash table entry
* @ arg : the netlbl_domhsh_walk_arg structure
*
* Description :
* This function is designed to be used as a callback to the
* netlbl_domhsh_walk ( ) function for use in generating a response for a LISTALL
* message . Returns the size of the message on success , negative values on
* failure .
*
*/
static int netlbl_mgmt_listall_cb ( struct netlbl_dom_map * entry , void * arg )
{
int ret_val = - ENOMEM ;
struct netlbl_domhsh_walk_arg * cb_arg = arg ;
void * data ;
2006-11-15 06:46:02 +03:00
data = genlmsg_put ( cb_arg - > skb , NETLINK_CB ( cb_arg - > nl_cb - > skb ) . pid ,
cb_arg - > seq , & netlbl_mgmt_gnl_family ,
NLM_F_MULTI , NLBL_MGMT_C_LISTALL ) ;
2006-09-26 02:56:37 +04:00
if ( data = = NULL )
goto listall_cb_failure ;
ret_val = nla_put_string ( cb_arg - > skb ,
NLBL_MGMT_A_DOMAIN ,
entry - > domain ) ;
if ( ret_val ! = 0 )
goto listall_cb_failure ;
ret_val = nla_put_u32 ( cb_arg - > skb , NLBL_MGMT_A_PROTOCOL , entry - > type ) ;
if ( ret_val ! = 0 )
goto listall_cb_failure ;
switch ( entry - > type ) {
case NETLBL_NLTYPE_CIPSOV4 :
ret_val = nla_put_u32 ( cb_arg - > skb ,
NLBL_MGMT_A_CV4DOI ,
entry - > type_def . cipsov4 - > doi ) ;
2006-08-04 03:48:37 +04:00
if ( ret_val ! = 0 )
2006-09-26 02:56:37 +04:00
goto listall_cb_failure ;
break ;
2006-08-04 03:48:37 +04:00
}
2006-09-26 02:56:37 +04:00
cb_arg - > seq + + ;
return genlmsg_end ( cb_arg - > skb , data ) ;
2006-08-04 03:48:37 +04:00
2006-09-26 02:56:37 +04:00
listall_cb_failure :
genlmsg_cancel ( cb_arg - > skb , data ) ;
2006-08-04 03:48:37 +04:00
return ret_val ;
}
/**
2006-09-26 02:56:37 +04:00
* netlbl_mgmt_listall - Handle a LISTALL message
2006-08-04 03:48:37 +04:00
* @ skb : the NETLINK buffer
2006-09-26 02:56:37 +04:00
* @ cb : the NETLINK callback
2006-08-04 03:48:37 +04:00
*
* Description :
2006-09-26 02:56:37 +04:00
* Process a user generated LISTALL message and dumps the domain hash table in
* a form suitable for use in a kernel generated LISTALL message . Returns zero
* on success , negative values on failure .
2006-08-04 03:48:37 +04:00
*
*/
2006-09-26 02:56:37 +04:00
static int netlbl_mgmt_listall ( struct sk_buff * skb ,
struct netlink_callback * cb )
2006-08-04 03:48:37 +04:00
{
2006-09-26 02:56:37 +04:00
struct netlbl_domhsh_walk_arg cb_arg ;
u32 skip_bkt = cb - > args [ 0 ] ;
u32 skip_chain = cb - > args [ 1 ] ;
cb_arg . nl_cb = cb ;
cb_arg . skb = skb ;
cb_arg . seq = cb - > nlh - > nlmsg_seq ;
netlbl_domhsh_walk ( & skip_bkt ,
& skip_chain ,
netlbl_mgmt_listall_cb ,
& cb_arg ) ;
cb - > args [ 0 ] = skip_bkt ;
cb - > args [ 1 ] = skip_chain ;
return skb - > len ;
2006-08-04 03:48:37 +04:00
}
/**
* netlbl_mgmt_adddef - Handle an ADDDEF message
* @ skb : the NETLINK buffer
* @ info : the Generic NETLINK info block
*
* Description :
* Process a user generated ADDDEF message and respond accordingly . Returns
* zero on success , negative values on failure .
*
*/
static int netlbl_mgmt_adddef ( struct sk_buff * skb , struct genl_info * info )
{
int ret_val = - EINVAL ;
struct netlbl_dom_map * entry = NULL ;
u32 tmp_val ;
2006-09-30 04:05:05 +04:00
struct netlbl_audit audit_info ;
2006-08-04 03:48:37 +04:00
2006-09-26 02:56:37 +04:00
if ( ! info - > attrs [ NLBL_MGMT_A_PROTOCOL ] )
2006-08-04 03:48:37 +04:00
goto adddef_failure ;
2006-09-30 04:05:05 +04:00
netlbl_netlink_auditinfo ( skb , & audit_info ) ;
2006-08-04 03:48:37 +04:00
entry = kzalloc ( sizeof ( * entry ) , GFP_KERNEL ) ;
if ( entry = = NULL ) {
ret_val = - ENOMEM ;
goto adddef_failure ;
}
2006-09-26 02:56:37 +04:00
entry - > type = nla_get_u32 ( info - > attrs [ NLBL_MGMT_A_PROTOCOL ] ) ;
2006-08-04 03:48:37 +04:00
switch ( entry - > type ) {
case NETLBL_NLTYPE_UNLABELED :
2006-09-30 04:05:05 +04:00
ret_val = netlbl_domhsh_add_default ( entry , & audit_info ) ;
2006-08-04 03:48:37 +04:00
break ;
case NETLBL_NLTYPE_CIPSOV4 :
2006-09-26 02:56:37 +04:00
if ( ! info - > attrs [ NLBL_MGMT_A_CV4DOI ] )
2006-08-04 03:48:37 +04:00
goto adddef_failure ;
2006-09-26 02:56:37 +04:00
tmp_val = nla_get_u32 ( info - > attrs [ NLBL_MGMT_A_CV4DOI ] ) ;
/* We should be holding a rcu_read_lock() here while we hold
* the result but since the entry will always be deleted when
* the CIPSO DOI is deleted we aren ' t going to keep the
* lock . */
2006-08-04 03:48:37 +04:00
rcu_read_lock ( ) ;
entry - > type_def . cipsov4 = cipso_v4_doi_getdef ( tmp_val ) ;
if ( entry - > type_def . cipsov4 = = NULL ) {
rcu_read_unlock ( ) ;
goto adddef_failure ;
}
2006-09-30 04:05:05 +04:00
ret_val = netlbl_domhsh_add_default ( entry , & audit_info ) ;
2006-08-04 03:48:37 +04:00
rcu_read_unlock ( ) ;
break ;
default :
2006-09-26 02:56:37 +04:00
goto adddef_failure ;
2006-08-04 03:48:37 +04:00
}
if ( ret_val ! = 0 )
goto adddef_failure ;
return 0 ;
adddef_failure :
kfree ( entry ) ;
return ret_val ;
}
/**
* netlbl_mgmt_removedef - Handle a REMOVEDEF message
* @ skb : the NETLINK buffer
* @ info : the Generic NETLINK info block
*
* Description :
* Process a user generated REMOVEDEF message and remove the default domain
* mapping . Returns zero on success , negative values on failure .
*
*/
static int netlbl_mgmt_removedef ( struct sk_buff * skb , struct genl_info * info )
{
2006-09-30 04:05:05 +04:00
struct netlbl_audit audit_info ;
netlbl_netlink_auditinfo ( skb , & audit_info ) ;
return netlbl_domhsh_remove_default ( & audit_info ) ;
2006-08-04 03:48:37 +04:00
}
/**
* netlbl_mgmt_listdef - Handle a LISTDEF message
* @ skb : the NETLINK buffer
* @ info : the Generic NETLINK info block
*
* Description :
* Process a user generated LISTDEF message and dumps the default domain
* mapping in a form suitable for use in a kernel generated LISTDEF message .
* Returns zero on success , negative values on failure .
*
*/
static int netlbl_mgmt_listdef ( struct sk_buff * skb , struct genl_info * info )
{
int ret_val = - ENOMEM ;
2006-09-26 02:56:37 +04:00
struct sk_buff * ans_skb = NULL ;
void * data ;
struct netlbl_dom_map * entry ;
2006-08-04 03:48:37 +04:00
2006-11-11 01:10:15 +03:00
ans_skb = nlmsg_new ( NLMSG_DEFAULT_SIZE , GFP_KERNEL ) ;
2006-08-04 03:48:37 +04:00
if ( ans_skb = = NULL )
2006-09-26 02:56:37 +04:00
return - ENOMEM ;
2006-11-15 06:46:02 +03:00
data = genlmsg_put_reply ( ans_skb , info , & netlbl_mgmt_gnl_family ,
0 , NLBL_MGMT_C_LISTDEF ) ;
2006-09-26 02:56:37 +04:00
if ( data = = NULL )
2006-08-04 03:48:37 +04:00
goto listdef_failure ;
2006-09-26 02:56:37 +04:00
rcu_read_lock ( ) ;
entry = netlbl_domhsh_getentry ( NULL ) ;
if ( entry = = NULL ) {
ret_val = - ENOENT ;
goto listdef_failure_lock ;
}
ret_val = nla_put_u32 ( ans_skb , NLBL_MGMT_A_PROTOCOL , entry - > type ) ;
2006-08-04 03:48:37 +04:00
if ( ret_val ! = 0 )
2006-09-26 02:56:37 +04:00
goto listdef_failure_lock ;
switch ( entry - > type ) {
case NETLBL_NLTYPE_CIPSOV4 :
ret_val = nla_put_u32 ( ans_skb ,
NLBL_MGMT_A_CV4DOI ,
entry - > type_def . cipsov4 - > doi ) ;
if ( ret_val ! = 0 )
goto listdef_failure_lock ;
break ;
}
rcu_read_unlock ( ) ;
2006-08-04 03:48:37 +04:00
2006-09-26 02:56:37 +04:00
genlmsg_end ( ans_skb , data ) ;
2006-11-15 06:45:27 +03:00
ret_val = genlmsg_reply ( ans_skb , info ) ;
2006-09-26 02:56:37 +04:00
if ( ret_val ! = 0 )
goto listdef_failure ;
2006-08-04 03:48:37 +04:00
return 0 ;
2006-09-26 02:56:37 +04:00
listdef_failure_lock :
rcu_read_unlock ( ) ;
2006-08-04 03:48:37 +04:00
listdef_failure :
2006-09-26 02:56:37 +04:00
kfree_skb ( ans_skb ) ;
2006-08-04 03:48:37 +04:00
return ret_val ;
}
/**
2006-09-26 02:56:37 +04:00
* netlbl_mgmt_protocols_cb - Write an individual PROTOCOL message response
* @ skb : the skb to write to
* @ seq : the NETLINK sequence number
* @ cb : the NETLINK callback
* @ protocol : the NetLabel protocol to use in the message
2006-08-04 03:48:37 +04:00
*
* Description :
2006-09-26 02:56:37 +04:00
* This function is to be used in conjunction with netlbl_mgmt_protocols ( ) to
* answer a application ' s PROTOCOLS message . Returns the size of the message
* on success , negative values on failure .
2006-08-04 03:48:37 +04:00
*
*/
2006-09-26 02:56:37 +04:00
static int netlbl_mgmt_protocols_cb ( struct sk_buff * skb ,
struct netlink_callback * cb ,
u32 protocol )
2006-08-04 03:48:37 +04:00
{
int ret_val = - ENOMEM ;
2006-09-26 02:56:37 +04:00
void * data ;
2006-11-15 06:46:02 +03:00
data = genlmsg_put ( skb , NETLINK_CB ( cb - > skb ) . pid , cb - > nlh - > nlmsg_seq ,
& netlbl_mgmt_gnl_family , NLM_F_MULTI ,
NLBL_MGMT_C_PROTOCOLS ) ;
2006-09-26 02:56:37 +04:00
if ( data = = NULL )
goto protocols_cb_failure ;
ret_val = nla_put_u32 ( skb , NLBL_MGMT_A_PROTOCOL , protocol ) ;
2006-08-04 03:48:37 +04:00
if ( ret_val ! = 0 )
2006-09-26 02:56:37 +04:00
goto protocols_cb_failure ;
2006-08-04 03:48:37 +04:00
2006-09-26 02:56:37 +04:00
return genlmsg_end ( skb , data ) ;
2006-08-04 03:48:37 +04:00
2006-09-26 02:56:37 +04:00
protocols_cb_failure :
genlmsg_cancel ( skb , data ) ;
2006-08-04 03:48:37 +04:00
return ret_val ;
}
2006-09-26 02:56:37 +04:00
/**
* netlbl_mgmt_protocols - Handle a PROTOCOLS message
* @ skb : the NETLINK buffer
* @ cb : the NETLINK callback
*
* Description :
* Process a user generated PROTOCOLS message and respond accordingly .
*
*/
static int netlbl_mgmt_protocols ( struct sk_buff * skb ,
struct netlink_callback * cb )
{
u32 protos_sent = cb - > args [ 0 ] ;
if ( protos_sent = = 0 ) {
if ( netlbl_mgmt_protocols_cb ( skb ,
cb ,
NETLBL_NLTYPE_UNLABELED ) < 0 )
goto protocols_return ;
protos_sent + + ;
}
if ( protos_sent = = 1 ) {
if ( netlbl_mgmt_protocols_cb ( skb ,
cb ,
NETLBL_NLTYPE_CIPSOV4 ) < 0 )
goto protocols_return ;
protos_sent + + ;
}
protocols_return :
cb - > args [ 0 ] = protos_sent ;
return skb - > len ;
}
2006-08-04 03:48:37 +04:00
/**
* netlbl_mgmt_version - Handle a VERSION message
* @ skb : the NETLINK buffer
* @ info : the Generic NETLINK info block
*
* Description :
* Process a user generated VERSION message and respond accordingly . Returns
* zero on success , negative values on failure .
*
*/
static int netlbl_mgmt_version ( struct sk_buff * skb , struct genl_info * info )
{
int ret_val = - ENOMEM ;
struct sk_buff * ans_skb = NULL ;
2006-09-26 02:56:37 +04:00
void * data ;
2006-08-04 03:48:37 +04:00
2006-11-11 01:10:15 +03:00
ans_skb = nlmsg_new ( NLMSG_DEFAULT_SIZE , GFP_KERNEL ) ;
2006-08-04 03:48:37 +04:00
if ( ans_skb = = NULL )
2006-09-26 02:56:37 +04:00
return - ENOMEM ;
2006-11-15 06:46:02 +03:00
data = genlmsg_put_reply ( ans_skb , info , & netlbl_mgmt_gnl_family ,
0 , NLBL_MGMT_C_VERSION ) ;
2006-09-26 02:56:37 +04:00
if ( data = = NULL )
2006-08-04 03:48:37 +04:00
goto version_failure ;
2006-09-26 02:56:37 +04:00
ret_val = nla_put_u32 ( ans_skb ,
NLBL_MGMT_A_VERSION ,
NETLBL_PROTO_VERSION ) ;
2006-08-04 03:48:37 +04:00
if ( ret_val ! = 0 )
goto version_failure ;
2006-09-26 02:56:37 +04:00
genlmsg_end ( ans_skb , data ) ;
2006-11-15 06:45:27 +03:00
ret_val = genlmsg_reply ( ans_skb , info ) ;
2006-08-04 03:48:37 +04:00
if ( ret_val ! = 0 )
goto version_failure ;
return 0 ;
version_failure :
kfree_skb ( ans_skb ) ;
return ret_val ;
}
/*
* NetLabel Generic NETLINK Command Definitions
*/
static struct genl_ops netlbl_mgmt_genl_c_add = {
. cmd = NLBL_MGMT_C_ADD ,
2006-09-26 02:56:37 +04:00
. flags = GENL_ADMIN_PERM ,
. policy = netlbl_mgmt_genl_policy ,
2006-08-04 03:48:37 +04:00
. doit = netlbl_mgmt_add ,
. dumpit = NULL ,
} ;
static struct genl_ops netlbl_mgmt_genl_c_remove = {
. cmd = NLBL_MGMT_C_REMOVE ,
2006-09-26 02:56:37 +04:00
. flags = GENL_ADMIN_PERM ,
. policy = netlbl_mgmt_genl_policy ,
2006-08-04 03:48:37 +04:00
. doit = netlbl_mgmt_remove ,
. dumpit = NULL ,
} ;
2006-09-26 02:56:37 +04:00
static struct genl_ops netlbl_mgmt_genl_c_listall = {
. cmd = NLBL_MGMT_C_LISTALL ,
2006-08-04 03:48:37 +04:00
. flags = 0 ,
2006-09-26 02:56:37 +04:00
. policy = netlbl_mgmt_genl_policy ,
. doit = NULL ,
. dumpit = netlbl_mgmt_listall ,
2006-08-04 03:48:37 +04:00
} ;
static struct genl_ops netlbl_mgmt_genl_c_adddef = {
. cmd = NLBL_MGMT_C_ADDDEF ,
2006-09-26 02:56:37 +04:00
. flags = GENL_ADMIN_PERM ,
. policy = netlbl_mgmt_genl_policy ,
2006-08-04 03:48:37 +04:00
. doit = netlbl_mgmt_adddef ,
. dumpit = NULL ,
} ;
static struct genl_ops netlbl_mgmt_genl_c_removedef = {
. cmd = NLBL_MGMT_C_REMOVEDEF ,
2006-09-26 02:56:37 +04:00
. flags = GENL_ADMIN_PERM ,
. policy = netlbl_mgmt_genl_policy ,
2006-08-04 03:48:37 +04:00
. doit = netlbl_mgmt_removedef ,
. dumpit = NULL ,
} ;
static struct genl_ops netlbl_mgmt_genl_c_listdef = {
. cmd = NLBL_MGMT_C_LISTDEF ,
. flags = 0 ,
2006-09-26 02:56:37 +04:00
. policy = netlbl_mgmt_genl_policy ,
2006-08-04 03:48:37 +04:00
. doit = netlbl_mgmt_listdef ,
. dumpit = NULL ,
} ;
2006-09-26 02:56:37 +04:00
static struct genl_ops netlbl_mgmt_genl_c_protocols = {
. cmd = NLBL_MGMT_C_PROTOCOLS ,
2006-08-04 03:48:37 +04:00
. flags = 0 ,
2006-09-26 02:56:37 +04:00
. policy = netlbl_mgmt_genl_policy ,
. doit = NULL ,
. dumpit = netlbl_mgmt_protocols ,
2006-08-04 03:48:37 +04:00
} ;
static struct genl_ops netlbl_mgmt_genl_c_version = {
. cmd = NLBL_MGMT_C_VERSION ,
. flags = 0 ,
2006-09-26 02:56:37 +04:00
. policy = netlbl_mgmt_genl_policy ,
2006-08-04 03:48:37 +04:00
. doit = netlbl_mgmt_version ,
. dumpit = NULL ,
} ;
/*
* NetLabel Generic NETLINK Protocol Functions
*/
/**
* netlbl_mgmt_genl_init - Register the NetLabel management component
*
* Description :
* Register the NetLabel management component with the Generic NETLINK
* mechanism . Returns zero on success , negative values on failure .
*
*/
int netlbl_mgmt_genl_init ( void )
{
int ret_val ;
ret_val = genl_register_family ( & netlbl_mgmt_gnl_family ) ;
if ( ret_val ! = 0 )
return ret_val ;
ret_val = genl_register_ops ( & netlbl_mgmt_gnl_family ,
& netlbl_mgmt_genl_c_add ) ;
if ( ret_val ! = 0 )
return ret_val ;
ret_val = genl_register_ops ( & netlbl_mgmt_gnl_family ,
& netlbl_mgmt_genl_c_remove ) ;
if ( ret_val ! = 0 )
return ret_val ;
ret_val = genl_register_ops ( & netlbl_mgmt_gnl_family ,
2006-09-26 02:56:37 +04:00
& netlbl_mgmt_genl_c_listall ) ;
2006-08-04 03:48:37 +04:00
if ( ret_val ! = 0 )
return ret_val ;
ret_val = genl_register_ops ( & netlbl_mgmt_gnl_family ,
& netlbl_mgmt_genl_c_adddef ) ;
if ( ret_val ! = 0 )
return ret_val ;
ret_val = genl_register_ops ( & netlbl_mgmt_gnl_family ,
& netlbl_mgmt_genl_c_removedef ) ;
if ( ret_val ! = 0 )
return ret_val ;
ret_val = genl_register_ops ( & netlbl_mgmt_gnl_family ,
& netlbl_mgmt_genl_c_listdef ) ;
if ( ret_val ! = 0 )
return ret_val ;
ret_val = genl_register_ops ( & netlbl_mgmt_gnl_family ,
2006-09-26 02:56:37 +04:00
& netlbl_mgmt_genl_c_protocols ) ;
2006-08-04 03:48:37 +04:00
if ( ret_val ! = 0 )
return ret_val ;
ret_val = genl_register_ops ( & netlbl_mgmt_gnl_family ,
& netlbl_mgmt_genl_c_version ) ;
if ( ret_val ! = 0 )
return ret_val ;
return 0 ;
}