Lines Matching +full:user +full:- +full:level
1 /* SPDX-License-Identifier: GPL-2.0 */
6 * externally represented as variable-length strings
7 * that can be interpreted by a user or application
24 * A security context consists of an authenticated user
28 u32 user; member
38 memset(&c->range, 0, sizeof(c->range)); in mls_context_init()
45 dst->range.level[0].sens = src->range.level[0].sens; in mls_context_cpy()
46 rc = ebitmap_cpy(&dst->range.level[0].cat, &src->range.level[0].cat); in mls_context_cpy()
50 dst->range.level[1].sens = src->range.level[1].sens; in mls_context_cpy()
51 rc = ebitmap_cpy(&dst->range.level[1].cat, &src->range.level[1].cat); in mls_context_cpy()
53 ebitmap_destroy(&dst->range.level[0].cat); in mls_context_cpy()
59 * Sets both levels in the MLS range of 'dst' to the low level of 'src'.
65 dst->range.level[0].sens = src->range.level[0].sens; in mls_context_cpy_low()
66 rc = ebitmap_cpy(&dst->range.level[0].cat, &src->range.level[0].cat); in mls_context_cpy_low()
70 dst->range.level[1].sens = src->range.level[0].sens; in mls_context_cpy_low()
71 rc = ebitmap_cpy(&dst->range.level[1].cat, &src->range.level[0].cat); in mls_context_cpy_low()
73 ebitmap_destroy(&dst->range.level[0].cat); in mls_context_cpy_low()
79 * Sets both levels in the MLS range of 'dst' to the high level of 'src'.
85 dst->range.level[0].sens = src->range.level[1].sens; in mls_context_cpy_high()
86 rc = ebitmap_cpy(&dst->range.level[0].cat, &src->range.level[1].cat); in mls_context_cpy_high()
90 dst->range.level[1].sens = src->range.level[1].sens; in mls_context_cpy_high()
91 rc = ebitmap_cpy(&dst->range.level[1].cat, &src->range.level[1].cat); in mls_context_cpy_high()
93 ebitmap_destroy(&dst->range.level[0].cat); in mls_context_cpy_high()
102 struct mls_range *dr = &dst->range, *r1 = &c1->range, *r2 = &c2->range; in mls_context_glblub()
105 if (r1->level[1].sens < r2->level[0].sens || in mls_context_glblub()
106 r2->level[1].sens < r1->level[0].sens) in mls_context_glblub()
108 return -EINVAL; in mls_context_glblub()
111 dr->level[0].sens = max(r1->level[0].sens, r2->level[0].sens); in mls_context_glblub()
114 dr->level[1].sens = min(r1->level[1].sens, r2->level[1].sens); in mls_context_glblub()
116 rc = ebitmap_and(&dr->level[0].cat, in mls_context_glblub()
117 &r1->level[0].cat, &r2->level[0].cat); in mls_context_glblub()
121 rc = ebitmap_and(&dr->level[1].cat, in mls_context_glblub()
122 &r1->level[1].cat, &r2->level[1].cat); in mls_context_glblub()
132 return ((c1->range.level[0].sens == c2->range.level[0].sens) && in mls_context_cmp()
133 ebitmap_cmp(&c1->range.level[0].cat, &c2->range.level[0].cat) && in mls_context_cmp()
134 (c1->range.level[1].sens == c2->range.level[1].sens) && in mls_context_cmp()
135 ebitmap_cmp(&c1->range.level[1].cat, &c2->range.level[1].cat)); in mls_context_cmp()
140 ebitmap_destroy(&c->range.level[0].cat); in mls_context_destroy()
141 ebitmap_destroy(&c->range.level[1].cat); in mls_context_destroy()
154 dst->user = src->user; in context_cpy()
155 dst->role = src->role; in context_cpy()
156 dst->type = src->type; in context_cpy()
157 if (src->str) { in context_cpy()
158 dst->str = kstrdup(src->str, GFP_ATOMIC); in context_cpy()
159 if (!dst->str) in context_cpy()
160 return -ENOMEM; in context_cpy()
161 dst->len = src->len; in context_cpy()
163 dst->str = NULL; in context_cpy()
164 dst->len = 0; in context_cpy()
168 kfree(dst->str); in context_cpy()
176 c->user = c->role = c->type = 0; in context_destroy()
177 kfree(c->str); in context_destroy()
178 c->str = NULL; in context_destroy()
179 c->len = 0; in context_destroy()
185 if (c1->len && c2->len) in context_cmp()
186 return (c1->len == c2->len && !strcmp(c1->str, c2->str)); in context_cmp()
187 if (c1->len || c2->len) in context_cmp()
189 return ((c1->user == c2->user) && in context_cmp()
190 (c1->role == c2->role) && in context_cmp()
191 (c1->type == c2->type) && in context_cmp()