Commit ca0b7df3 authored by Tetsuo Handa's avatar Tetsuo Handa Committed by James Morris

TOMOYO: Reduce lines by using common path for addition and deletion.

Since the codes for adding an entry and removing an entry are similar, we can
save some lines by using "if (is_delete) { ... } else { ... }" branches.
Signed-off-by: default avatarTetsuo Handa <penguin-kernel@I-love.SAKURA.ne.jp>
Acked-by: default avatarSerge Hallyn <serue@us.ibm.com>
Signed-off-by: default avatarJames Morris <jmorris@namei.org>
parent 8007f102
...@@ -1103,10 +1103,10 @@ static LIST_HEAD(tomoyo_policy_manager_list); ...@@ -1103,10 +1103,10 @@ static LIST_HEAD(tomoyo_policy_manager_list);
static int tomoyo_update_manager_entry(const char *manager, static int tomoyo_update_manager_entry(const char *manager,
const bool is_delete) const bool is_delete)
{ {
struct tomoyo_policy_manager_entry *new_entry; struct tomoyo_policy_manager_entry *entry = NULL;
struct tomoyo_policy_manager_entry *ptr; struct tomoyo_policy_manager_entry *ptr;
const struct tomoyo_path_info *saved_manager; const struct tomoyo_path_info *saved_manager;
int error = -ENOMEM; int error = is_delete ? -ENOENT : -ENOMEM;
bool is_domain = false; bool is_domain = false;
if (tomoyo_is_domain_def(manager)) { if (tomoyo_is_domain_def(manager)) {
...@@ -1120,29 +1120,25 @@ static int tomoyo_update_manager_entry(const char *manager, ...@@ -1120,29 +1120,25 @@ static int tomoyo_update_manager_entry(const char *manager,
saved_manager = tomoyo_save_name(manager); saved_manager = tomoyo_save_name(manager);
if (!saved_manager) if (!saved_manager)
return -ENOMEM; return -ENOMEM;
new_entry = kmalloc(sizeof(*new_entry), GFP_KERNEL); if (!is_delete)
entry = kmalloc(sizeof(*entry), GFP_KERNEL);
mutex_lock(&tomoyo_policy_lock); mutex_lock(&tomoyo_policy_lock);
list_for_each_entry_rcu(ptr, &tomoyo_policy_manager_list, list) { list_for_each_entry_rcu(ptr, &tomoyo_policy_manager_list, list) {
if (ptr->manager != saved_manager) if (ptr->manager != saved_manager)
continue; continue;
ptr->is_deleted = is_delete; ptr->is_deleted = is_delete;
error = 0; error = 0;
goto out; break;
}
if (is_delete) {
error = -ENOENT;
goto out;
} }
if (!tomoyo_memory_ok(new_entry)) if (!is_delete && error && tomoyo_memory_ok(entry)) {
goto out; entry->manager = saved_manager;
new_entry->manager = saved_manager; entry->is_domain = is_domain;
new_entry->is_domain = is_domain; list_add_tail_rcu(&entry->list, &tomoyo_policy_manager_list);
list_add_tail_rcu(&new_entry->list, &tomoyo_policy_manager_list); entry = NULL;
new_entry = NULL;
error = 0; error = 0;
out: }
mutex_unlock(&tomoyo_policy_lock); mutex_unlock(&tomoyo_policy_lock);
kfree(new_entry); kfree(entry);
return error; return error;
} }
......
...@@ -201,11 +201,11 @@ static int tomoyo_update_domain_initializer_entry(const char *domainname, ...@@ -201,11 +201,11 @@ static int tomoyo_update_domain_initializer_entry(const char *domainname,
const bool is_not, const bool is_not,
const bool is_delete) const bool is_delete)
{ {
struct tomoyo_domain_initializer_entry *new_entry; struct tomoyo_domain_initializer_entry *entry = NULL;
struct tomoyo_domain_initializer_entry *ptr; struct tomoyo_domain_initializer_entry *ptr;
const struct tomoyo_path_info *saved_program; const struct tomoyo_path_info *saved_program;
const struct tomoyo_path_info *saved_domainname = NULL; const struct tomoyo_path_info *saved_domainname = NULL;
int error = -ENOMEM; int error = is_delete ? -ENOENT : -ENOMEM;
bool is_last_name = false; bool is_last_name = false;
if (!tomoyo_is_correct_path(program, 1, -1, -1, __func__)) if (!tomoyo_is_correct_path(program, 1, -1, -1, __func__))
...@@ -218,12 +218,13 @@ static int tomoyo_update_domain_initializer_entry(const char *domainname, ...@@ -218,12 +218,13 @@ static int tomoyo_update_domain_initializer_entry(const char *domainname,
return -EINVAL; return -EINVAL;
saved_domainname = tomoyo_save_name(domainname); saved_domainname = tomoyo_save_name(domainname);
if (!saved_domainname) if (!saved_domainname)
return -ENOMEM; goto out;
} }
saved_program = tomoyo_save_name(program); saved_program = tomoyo_save_name(program);
if (!saved_program) if (!saved_program)
return -ENOMEM; goto out;
new_entry = kmalloc(sizeof(*new_entry), GFP_KERNEL); if (!is_delete)
entry = kmalloc(sizeof(*entry), GFP_KERNEL);
mutex_lock(&tomoyo_policy_lock); mutex_lock(&tomoyo_policy_lock);
list_for_each_entry_rcu(ptr, &tomoyo_domain_initializer_list, list) { list_for_each_entry_rcu(ptr, &tomoyo_domain_initializer_list, list) {
if (ptr->is_not != is_not || if (ptr->is_not != is_not ||
...@@ -232,24 +233,21 @@ static int tomoyo_update_domain_initializer_entry(const char *domainname, ...@@ -232,24 +233,21 @@ static int tomoyo_update_domain_initializer_entry(const char *domainname,
continue; continue;
ptr->is_deleted = is_delete; ptr->is_deleted = is_delete;
error = 0; error = 0;
goto out; break;
}
if (is_delete) {
error = -ENOENT;
goto out;
} }
if (!tomoyo_memory_ok(new_entry)) if (!is_delete && error && tomoyo_memory_ok(entry)) {
goto out; entry->domainname = saved_domainname;
new_entry->domainname = saved_domainname; entry->program = saved_program;
new_entry->program = saved_program; entry->is_not = is_not;
new_entry->is_not = is_not; entry->is_last_name = is_last_name;
new_entry->is_last_name = is_last_name; list_add_tail_rcu(&entry->list,
list_add_tail_rcu(&new_entry->list, &tomoyo_domain_initializer_list); &tomoyo_domain_initializer_list);
new_entry = NULL; entry = NULL;
error = 0; error = 0;
out: }
mutex_unlock(&tomoyo_policy_lock); mutex_unlock(&tomoyo_policy_lock);
kfree(new_entry); out:
kfree(entry);
return error; return error;
} }
...@@ -419,11 +417,11 @@ static int tomoyo_update_domain_keeper_entry(const char *domainname, ...@@ -419,11 +417,11 @@ static int tomoyo_update_domain_keeper_entry(const char *domainname,
const bool is_not, const bool is_not,
const bool is_delete) const bool is_delete)
{ {
struct tomoyo_domain_keeper_entry *new_entry; struct tomoyo_domain_keeper_entry *entry = NULL;
struct tomoyo_domain_keeper_entry *ptr; struct tomoyo_domain_keeper_entry *ptr;
const struct tomoyo_path_info *saved_domainname; const struct tomoyo_path_info *saved_domainname;
const struct tomoyo_path_info *saved_program = NULL; const struct tomoyo_path_info *saved_program = NULL;
int error = -ENOMEM; int error = is_delete ? -ENOENT : -ENOMEM;
bool is_last_name = false; bool is_last_name = false;
if (!tomoyo_is_domain_def(domainname) && if (!tomoyo_is_domain_def(domainname) &&
...@@ -436,12 +434,13 @@ static int tomoyo_update_domain_keeper_entry(const char *domainname, ...@@ -436,12 +434,13 @@ static int tomoyo_update_domain_keeper_entry(const char *domainname,
return -EINVAL; return -EINVAL;
saved_program = tomoyo_save_name(program); saved_program = tomoyo_save_name(program);
if (!saved_program) if (!saved_program)
return -ENOMEM; goto out;
} }
saved_domainname = tomoyo_save_name(domainname); saved_domainname = tomoyo_save_name(domainname);
if (!saved_domainname) if (!saved_domainname)
return -ENOMEM; goto out;
new_entry = kmalloc(sizeof(*new_entry), GFP_KERNEL); if (!is_delete)
entry = kmalloc(sizeof(*entry), GFP_KERNEL);
mutex_lock(&tomoyo_policy_lock); mutex_lock(&tomoyo_policy_lock);
list_for_each_entry_rcu(ptr, &tomoyo_domain_keeper_list, list) { list_for_each_entry_rcu(ptr, &tomoyo_domain_keeper_list, list) {
if (ptr->is_not != is_not || if (ptr->is_not != is_not ||
...@@ -450,24 +449,20 @@ static int tomoyo_update_domain_keeper_entry(const char *domainname, ...@@ -450,24 +449,20 @@ static int tomoyo_update_domain_keeper_entry(const char *domainname,
continue; continue;
ptr->is_deleted = is_delete; ptr->is_deleted = is_delete;
error = 0; error = 0;
goto out; break;
}
if (is_delete) {
error = -ENOENT;
goto out;
} }
if (!tomoyo_memory_ok(new_entry)) if (!is_delete && error && tomoyo_memory_ok(entry)) {
goto out; entry->domainname = saved_domainname;
new_entry->domainname = saved_domainname; entry->program = saved_program;
new_entry->program = saved_program; entry->is_not = is_not;
new_entry->is_not = is_not; entry->is_last_name = is_last_name;
new_entry->is_last_name = is_last_name; list_add_tail_rcu(&entry->list, &tomoyo_domain_keeper_list);
list_add_tail_rcu(&new_entry->list, &tomoyo_domain_keeper_list); entry = NULL;
new_entry = NULL;
error = 0; error = 0;
out: }
mutex_unlock(&tomoyo_policy_lock); mutex_unlock(&tomoyo_policy_lock);
kfree(new_entry); out:
kfree(entry);
return error; return error;
} }
...@@ -619,11 +614,11 @@ static int tomoyo_update_alias_entry(const char *original_name, ...@@ -619,11 +614,11 @@ static int tomoyo_update_alias_entry(const char *original_name,
const char *aliased_name, const char *aliased_name,
const bool is_delete) const bool is_delete)
{ {
struct tomoyo_alias_entry *new_entry; struct tomoyo_alias_entry *entry = NULL;
struct tomoyo_alias_entry *ptr; struct tomoyo_alias_entry *ptr;
const struct tomoyo_path_info *saved_original_name; const struct tomoyo_path_info *saved_original_name;
const struct tomoyo_path_info *saved_aliased_name; const struct tomoyo_path_info *saved_aliased_name;
int error = -ENOMEM; int error = is_delete ? -ENOENT : -ENOMEM;
if (!tomoyo_is_correct_path(original_name, 1, -1, -1, __func__) || if (!tomoyo_is_correct_path(original_name, 1, -1, -1, __func__) ||
!tomoyo_is_correct_path(aliased_name, 1, -1, -1, __func__)) !tomoyo_is_correct_path(aliased_name, 1, -1, -1, __func__))
...@@ -631,8 +626,9 @@ static int tomoyo_update_alias_entry(const char *original_name, ...@@ -631,8 +626,9 @@ static int tomoyo_update_alias_entry(const char *original_name,
saved_original_name = tomoyo_save_name(original_name); saved_original_name = tomoyo_save_name(original_name);
saved_aliased_name = tomoyo_save_name(aliased_name); saved_aliased_name = tomoyo_save_name(aliased_name);
if (!saved_original_name || !saved_aliased_name) if (!saved_original_name || !saved_aliased_name)
return -ENOMEM; goto out;
new_entry = kmalloc(sizeof(*new_entry), GFP_KERNEL); if (!is_delete)
entry = kmalloc(sizeof(*entry), GFP_KERNEL);
mutex_lock(&tomoyo_policy_lock); mutex_lock(&tomoyo_policy_lock);
list_for_each_entry_rcu(ptr, &tomoyo_alias_list, list) { list_for_each_entry_rcu(ptr, &tomoyo_alias_list, list) {
if (ptr->original_name != saved_original_name || if (ptr->original_name != saved_original_name ||
...@@ -640,22 +636,18 @@ static int tomoyo_update_alias_entry(const char *original_name, ...@@ -640,22 +636,18 @@ static int tomoyo_update_alias_entry(const char *original_name,
continue; continue;
ptr->is_deleted = is_delete; ptr->is_deleted = is_delete;
error = 0; error = 0;
goto out; break;
}
if (is_delete) {
error = -ENOENT;
goto out;
} }
if (!tomoyo_memory_ok(new_entry)) if (!is_delete && error && tomoyo_memory_ok(entry)) {
goto out; entry->original_name = saved_original_name;
new_entry->original_name = saved_original_name; entry->aliased_name = saved_aliased_name;
new_entry->aliased_name = saved_aliased_name; list_add_tail_rcu(&entry->list, &tomoyo_alias_list);
list_add_tail_rcu(&new_entry->list, &tomoyo_alias_list); entry = NULL;
new_entry = NULL;
error = 0; error = 0;
out: }
mutex_unlock(&tomoyo_policy_lock); mutex_unlock(&tomoyo_policy_lock);
kfree(new_entry); out:
kfree(entry);
return error; return error;
} }
...@@ -722,32 +714,37 @@ struct tomoyo_domain_info *tomoyo_find_or_assign_new_domain(const char * ...@@ -722,32 +714,37 @@ struct tomoyo_domain_info *tomoyo_find_or_assign_new_domain(const char *
domainname, domainname,
const u8 profile) const u8 profile)
{ {
struct tomoyo_domain_info *entry;
struct tomoyo_domain_info *domain; struct tomoyo_domain_info *domain;
const struct tomoyo_path_info *saved_domainname; const struct tomoyo_path_info *saved_domainname;
bool found = false;
mutex_lock(&tomoyo_policy_lock);
domain = tomoyo_find_domain(domainname);
if (domain)
goto out;
if (!tomoyo_is_correct_domain(domainname, __func__)) if (!tomoyo_is_correct_domain(domainname, __func__))
goto out; return NULL;
saved_domainname = tomoyo_save_name(domainname); saved_domainname = tomoyo_save_name(domainname);
if (!saved_domainname) if (!saved_domainname)
goto out; return NULL;
domain = kmalloc(sizeof(*domain), GFP_KERNEL); entry = kzalloc(sizeof(*entry), GFP_KERNEL);
if (tomoyo_memory_ok(domain)) { mutex_lock(&tomoyo_policy_lock);
INIT_LIST_HEAD(&domain->acl_info_list); list_for_each_entry_rcu(domain, &tomoyo_domain_list, list) {
domain->domainname = saved_domainname; if (domain->is_deleted ||
domain->profile = profile; tomoyo_pathcmp(saved_domainname, domain->domainname))
list_add_tail_rcu(&domain->list, &tomoyo_domain_list); continue;
} else { found = true;
kfree(domain); break;
domain = NULL; }
if (!found && tomoyo_memory_ok(entry)) {
INIT_LIST_HEAD(&entry->acl_info_list);
entry->domainname = saved_domainname;
entry->profile = profile;
list_add_tail_rcu(&entry->list, &tomoyo_domain_list);
domain = entry;
entry = NULL;
found = true;
} }
out:
mutex_unlock(&tomoyo_policy_lock); mutex_unlock(&tomoyo_policy_lock);
return domain; kfree(entry);
return found ? domain : NULL;
} }
/** /**
......
This diff is collapsed.
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment