Blame - include/net/scm.h - kernel/msm-4.9

blob: 17d9d2e75ff186e5716dd0e4d452ae822afe9ebd [file] [log] [blame]

Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1	#ifndef __LINUX_NET_SCM_H
				2	#define __LINUX_NET_SCM_H
				3
				4	#include <linux/limits.h>
				5	#include <linux/net.h>
Catherine Zhang	dc49c1f	2006-08-02 14:12:06 -0700	[diff] [blame]	6	#include <linux/security.h>
Pavel Emelyanov	b488893	2007-10-18 23:40:14 -0700	[diff] [blame]	7	#include <linux/pid.h>
				8	#include <linux/nsproxy.h>
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	9
				10	/* Well, we should have at least one descriptor open
				11	* to accept passed FDs 8)
				12	*/
Roland McGrath	c09edd6	2007-07-17 04:03:48 -0700	[diff] [blame]	13	#define SCM_MAX_FD 255
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	14
Eric Dumazet	fd2c3ef	2009-11-03 03:26:03 +0000	[diff] [blame]	15	struct scm_fp_list {
David Miller	f8d570a	2008-11-06 00:37:40 -0800	[diff] [blame]	16	struct list_head list;
				17	int count;
				18	struct file *fp[SCM_MAX_FD];
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	19	};
				20
Eric Dumazet	fd2c3ef	2009-11-03 03:26:03 +0000	[diff] [blame]	21	struct scm_cookie {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	22	struct scm_fp_list fp; / Passed files */
Eric W. Biederman	812e876	2010-06-13 03:27:04 +0000	[diff] [blame^]	23	struct ucred creds; /* Skb credentials */
Catherine Zhang	877ce7c	2006-06-29 12:27:47 -0700	[diff] [blame]	24	#ifdef CONFIG_SECURITY_NETWORK
Catherine Zhang	dc49c1f	2006-08-02 14:12:06 -0700	[diff] [blame]	25	u32 secid; /* Passed security ID */
Catherine Zhang	877ce7c	2006-06-29 12:27:47 -0700	[diff] [blame]	26	#endif
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	27	};
				28
				29	extern void scm_detach_fds(struct msghdr msg, struct scm_cookie scm);
				30	extern void scm_detach_fds_compat(struct msghdr msg, struct scm_cookie scm);
				31	extern int __scm_send(struct socket sock, struct msghdr msg, struct scm_cookie *scm);
				32	extern void __scm_destroy(struct scm_cookie *scm);
				33	extern struct scm_fp_list * scm_fp_dup(struct scm_fp_list *fpl);
				34
Catherine Zhang	dc49c1f	2006-08-02 14:12:06 -0700	[diff] [blame]	35	#ifdef CONFIG_SECURITY_NETWORK
				36	static __inline__ void unix_get_peersec_dgram(struct socket sock, struct scm_cookie scm)
				37	{
				38	security_socket_getpeersec_dgram(sock, NULL, &scm->secid);
				39	}
				40	#else
				41	static __inline__ void unix_get_peersec_dgram(struct socket sock, struct scm_cookie scm)
				42	{ }
				43	#endif /* CONFIG_SECURITY_NETWORK */
				44
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	45	static __inline__ void scm_destroy(struct scm_cookie *scm)
				46	{
				47	if (scm && scm->fp)
				48	__scm_destroy(scm);
				49	}
				50
				51	static __inline__ int scm_send(struct socket sock, struct msghdr msg,
				52	struct scm_cookie *scm)
				53	{
Benjamin LaHaise	1d541dd	2006-03-20 21:31:51 -0800	[diff] [blame]	54	struct task_struct *p = current;
David Howells	8192b0c	2008-11-14 10:39:10 +1100	[diff] [blame]	55	scm->creds.uid = current_uid();
				56	scm->creds.gid = current_gid();
Pavel Emelyanov	b488893	2007-10-18 23:40:14 -0700	[diff] [blame]	57	scm->creds.pid = task_tgid_vnr(p);
Benjamin LaHaise	1d541dd	2006-03-20 21:31:51 -0800	[diff] [blame]	58	scm->fp = NULL;
Catherine Zhang	dc49c1f	2006-08-02 14:12:06 -0700	[diff] [blame]	59	unix_get_peersec_dgram(sock, scm);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	60	if (msg->msg_controllen <= 0)
				61	return 0;
				62	return __scm_send(sock, msg, scm);
				63	}
				64
Catherine Zhang	877ce7c	2006-06-29 12:27:47 -0700	[diff] [blame]	65	#ifdef CONFIG_SECURITY_NETWORK
				66	static inline void scm_passec(struct socket sock, struct msghdr msg, struct scm_cookie *scm)
				67	{
Catherine Zhang	dc49c1f	2006-08-02 14:12:06 -0700	[diff] [blame]	68	char *secdata;
				69	u32 seclen;
				70	int err;
				71
				72	if (test_bit(SOCK_PASSSEC, &sock->flags)) {
				73	err = security_secid_to_secctx(scm->secid, &secdata, &seclen);
				74
				75	if (!err) {
				76	put_cmsg(msg, SOL_SOCKET, SCM_SECURITY, seclen, secdata);
				77	security_release_secctx(secdata, seclen);
				78	}
				79	}
Catherine Zhang	877ce7c	2006-06-29 12:27:47 -0700	[diff] [blame]	80	}
				81	#else
				82	static inline void scm_passec(struct socket sock, struct msghdr msg, struct scm_cookie *scm)
				83	{ }
				84	#endif /* CONFIG_SECURITY_NETWORK */
				85
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	86	static __inline__ void scm_recv(struct socket sock, struct msghdr msg,
				87	struct scm_cookie *scm, int flags)
				88	{
Eric Dumazet	fd2c3ef	2009-11-03 03:26:03 +0000	[diff] [blame]	89	if (!msg->msg_control) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	90	if (test_bit(SOCK_PASSCRED, &sock->flags) \|\| scm->fp)
				91	msg->msg_flags \|= MSG_CTRUNC;
				92	scm_destroy(scm);
				93	return;
				94	}
				95
				96	if (test_bit(SOCK_PASSCRED, &sock->flags))
				97	put_cmsg(msg, SOL_SOCKET, SCM_CREDENTIALS, sizeof(scm->creds), &scm->creds);
				98
Catherine Zhang	877ce7c	2006-06-29 12:27:47 -0700	[diff] [blame]	99	scm_passec(sock, msg, scm);
				100
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	101	if (!scm->fp)
				102	return;
				103
				104	scm_detach_fds(msg, scm);
				105	}
				106
				107
				108	#endif /* __LINUX_NET_SCM_H */
				109