1 // SPDX-License-Identifier: GPL-2.0
3 * Implementation of the extensible bitmap type.
5 * Author : Stephen Smalley, <sds@tycho.nsa.gov>
8 * Updated: Hewlett-Packard <paul@paul-moore.com>
10 * Added support to import/export the NetLabel category bitmap
12 * (c) Copyright Hewlett-Packard Development Company, L.P., 2006
15 * Updated: KaiGai Kohei <kaigai@ak.jp.nec.com>
16 * Applied standard bit operations to improve bitmap scanning.
19 #include <linux/kernel.h>
20 #include <linux/slab.h>
21 #include <linux/errno.h>
22 #include <net/netlabel.h>
26 #define BITS_PER_U64 (sizeof(u64) * 8)
28 static struct kmem_cache *ebitmap_node_cachep;
30 int ebitmap_cmp(struct ebitmap *e1, struct ebitmap *e2)
32 struct ebitmap_node *n1, *n2;
34 if (e1->highbit != e2->highbit)
40 (n1->startbit == n2->startbit) &&
41 !memcmp(n1->maps, n2->maps, EBITMAP_SIZE / 8)) {
52 int ebitmap_cpy(struct ebitmap *dst, struct ebitmap *src)
54 struct ebitmap_node *n, *new, *prev;
60 new = kmem_cache_zalloc(ebitmap_node_cachep, GFP_ATOMIC);
65 new->startbit = n->startbit;
66 memcpy(new->maps, n->maps, EBITMAP_SIZE / 8);
76 dst->highbit = src->highbit;
80 #ifdef CONFIG_NETLABEL
82 * ebitmap_netlbl_export - Export an ebitmap into a NetLabel category bitmap
83 * @ebmap: the ebitmap to export
84 * @catmap: the NetLabel category bitmap
87 * Export a SELinux extensibile bitmap into a NetLabel category bitmap.
88 * Returns zero on success, negative values on error.
91 int ebitmap_netlbl_export(struct ebitmap *ebmap,
92 struct netlbl_lsm_catmap **catmap)
94 struct ebitmap_node *e_iter = ebmap->node;
100 if (e_iter == NULL) {
106 netlbl_catmap_free(*catmap);
110 offset = e_iter->startbit;
111 for (iter = 0; iter < EBITMAP_UNIT_NUMS; iter++) {
112 e_map = e_iter->maps[iter];
114 rc = netlbl_catmap_setlong(catmap,
119 goto netlbl_export_failure;
121 offset += EBITMAP_UNIT_SIZE;
123 e_iter = e_iter->next;
128 netlbl_export_failure:
129 netlbl_catmap_free(*catmap);
134 * ebitmap_netlbl_import - Import a NetLabel category bitmap into an ebitmap
135 * @ebmap: the ebitmap to import
136 * @catmap: the NetLabel category bitmap
139 * Import a NetLabel category bitmap into a SELinux extensibile bitmap.
140 * Returns zero on success, negative values on error.
143 int ebitmap_netlbl_import(struct ebitmap *ebmap,
144 struct netlbl_lsm_catmap *catmap)
147 struct ebitmap_node *e_iter = NULL;
148 struct ebitmap_node *e_prev = NULL;
150 unsigned long bitmap;
153 rc = netlbl_catmap_getlong(catmap, &offset, &bitmap);
155 goto netlbl_import_failure;
156 if (offset == (u32)-1)
159 /* don't waste ebitmap space if the netlabel bitmap is empty */
161 offset += EBITMAP_UNIT_SIZE;
165 if (e_iter == NULL ||
166 offset >= e_iter->startbit + EBITMAP_SIZE) {
168 e_iter = kmem_cache_zalloc(ebitmap_node_cachep, GFP_ATOMIC);
170 goto netlbl_import_failure;
171 e_iter->startbit = offset - (offset % EBITMAP_SIZE);
173 ebmap->node = e_iter;
175 e_prev->next = e_iter;
176 ebmap->highbit = e_iter->startbit + EBITMAP_SIZE;
179 /* offset will always be aligned to an unsigned long */
180 idx = EBITMAP_NODE_INDEX(e_iter, offset);
181 e_iter->maps[idx] = bitmap;
184 offset += EBITMAP_UNIT_SIZE;
187 /* NOTE: we should never reach this return */
190 netlbl_import_failure:
191 ebitmap_destroy(ebmap);
194 #endif /* CONFIG_NETLABEL */
197 * Check to see if all the bits set in e2 are also set in e1. Optionally,
198 * if last_e2bit is non-zero, the highest set bit in e2 cannot exceed
201 int ebitmap_contains(struct ebitmap *e1, struct ebitmap *e2, u32 last_e2bit)
203 struct ebitmap_node *n1, *n2;
206 if (e1->highbit < e2->highbit)
212 while (n1 && n2 && (n1->startbit <= n2->startbit)) {
213 if (n1->startbit < n2->startbit) {
217 for (i = EBITMAP_UNIT_NUMS - 1; (i >= 0) && !n2->maps[i]; )
218 i--; /* Skip trailing NULL map entries */
219 if (last_e2bit && (i >= 0)) {
220 u32 lastsetbit = n2->startbit + i * EBITMAP_UNIT_SIZE +
222 if (lastsetbit > last_e2bit)
227 if ((n1->maps[i] & n2->maps[i]) != n2->maps[i])
242 int ebitmap_get_bit(struct ebitmap *e, unsigned long bit)
244 struct ebitmap_node *n;
246 if (e->highbit < bit)
250 while (n && (n->startbit <= bit)) {
251 if ((n->startbit + EBITMAP_SIZE) > bit)
252 return ebitmap_node_get_bit(n, bit);
259 int ebitmap_set_bit(struct ebitmap *e, unsigned long bit, int value)
261 struct ebitmap_node *n, *prev, *new;
265 while (n && n->startbit <= bit) {
266 if ((n->startbit + EBITMAP_SIZE) > bit) {
268 ebitmap_node_set_bit(n, bit);
272 ebitmap_node_clr_bit(n, bit);
274 s = find_first_bit(n->maps, EBITMAP_SIZE);
275 if (s < EBITMAP_SIZE)
278 /* drop this node from the bitmap */
281 * this was the highest map
285 e->highbit = prev->startbit
291 prev->next = n->next;
294 kmem_cache_free(ebitmap_node_cachep, n);
305 new = kmem_cache_zalloc(ebitmap_node_cachep, GFP_ATOMIC);
309 new->startbit = bit - (bit % EBITMAP_SIZE);
310 ebitmap_node_set_bit(new, bit);
313 /* this node will be the highest map within the bitmap */
314 e->highbit = new->startbit + EBITMAP_SIZE;
317 new->next = prev->next;
327 void ebitmap_destroy(struct ebitmap *e)
329 struct ebitmap_node *n, *temp;
338 kmem_cache_free(ebitmap_node_cachep, temp);
346 int ebitmap_read(struct ebitmap *e, void *fp)
348 struct ebitmap_node *n = NULL;
349 u32 mapunit, count, startbit, index;
356 rc = next_entry(buf, fp, sizeof buf);
360 mapunit = le32_to_cpu(buf[0]);
361 e->highbit = le32_to_cpu(buf[1]);
362 count = le32_to_cpu(buf[2]);
364 if (mapunit != BITS_PER_U64) {
365 printk(KERN_ERR "SELinux: ebitmap: map size %u does not "
366 "match my size %zd (high bit was %d)\n",
367 mapunit, BITS_PER_U64, e->highbit);
371 /* round up e->highbit */
372 e->highbit += EBITMAP_SIZE - 1;
373 e->highbit -= (e->highbit % EBITMAP_SIZE);
380 if (e->highbit && !count)
383 for (i = 0; i < count; i++) {
384 rc = next_entry(&startbit, fp, sizeof(u32));
386 printk(KERN_ERR "SELinux: ebitmap: truncated map\n");
389 startbit = le32_to_cpu(startbit);
391 if (startbit & (mapunit - 1)) {
392 printk(KERN_ERR "SELinux: ebitmap start bit (%d) is "
393 "not a multiple of the map unit size (%u)\n",
397 if (startbit > e->highbit - mapunit) {
398 printk(KERN_ERR "SELinux: ebitmap start bit (%d) is "
399 "beyond the end of the bitmap (%u)\n",
400 startbit, (e->highbit - mapunit));
404 if (!n || startbit >= n->startbit + EBITMAP_SIZE) {
405 struct ebitmap_node *tmp;
406 tmp = kmem_cache_zalloc(ebitmap_node_cachep, GFP_KERNEL);
409 "SELinux: ebitmap: out of memory\n");
414 tmp->startbit = startbit - (startbit % EBITMAP_SIZE);
420 } else if (startbit <= n->startbit) {
421 printk(KERN_ERR "SELinux: ebitmap: start bit %d"
422 " comes after start bit %d\n",
423 startbit, n->startbit);
427 rc = next_entry(&map, fp, sizeof(u64));
429 printk(KERN_ERR "SELinux: ebitmap: truncated map\n");
432 map = le64_to_cpu(map);
434 index = (startbit - n->startbit) / EBITMAP_UNIT_SIZE;
436 n->maps[index++] = map & (-1UL);
437 map = EBITMAP_SHIFT_UNIT_SIZE(map);
451 int ebitmap_write(struct ebitmap *e, void *fp)
453 struct ebitmap_node *n;
457 int bit, last_bit, last_startbit, rc;
459 buf[0] = cpu_to_le32(BITS_PER_U64);
464 ebitmap_for_each_positive_bit(e, n, bit) {
465 if (rounddown(bit, (int)BITS_PER_U64) > last_startbit) {
467 last_startbit = rounddown(bit, BITS_PER_U64);
469 last_bit = roundup(bit + 1, BITS_PER_U64);
471 buf[1] = cpu_to_le32(last_bit);
472 buf[2] = cpu_to_le32(count);
474 rc = put_entry(buf, sizeof(u32), 3, fp);
479 last_startbit = INT_MIN;
480 ebitmap_for_each_positive_bit(e, n, bit) {
481 if (rounddown(bit, (int)BITS_PER_U64) > last_startbit) {
484 /* this is the very first bit */
486 last_startbit = rounddown(bit, BITS_PER_U64);
487 map = (u64)1 << (bit - last_startbit);
491 /* write the last node */
492 buf[0] = cpu_to_le32(last_startbit);
493 rc = put_entry(buf, sizeof(u32), 1, fp);
497 buf64[0] = cpu_to_le64(map);
498 rc = put_entry(buf64, sizeof(u64), 1, fp);
502 /* set up for the next node */
504 last_startbit = rounddown(bit, BITS_PER_U64);
506 map |= (u64)1 << (bit - last_startbit);
508 /* write the last node */
512 /* write the last node */
513 buf[0] = cpu_to_le32(last_startbit);
514 rc = put_entry(buf, sizeof(u32), 1, fp);
518 buf64[0] = cpu_to_le64(map);
519 rc = put_entry(buf64, sizeof(u64), 1, fp);
526 void ebitmap_cache_init(void)
528 ebitmap_node_cachep = kmem_cache_create("ebitmap_node",
529 sizeof(struct ebitmap_node),
530 0, SLAB_PANIC, NULL);
533 void ebitmap_cache_destroy(void)
535 kmem_cache_destroy(ebitmap_node_cachep);
projects / releases.git / blob