From: "Mickaël Salaün" <mic@digikod.net>
To: Tetsuo Handa <penguin-kernel@i-love.sakura.ne.jp>
Cc: Christian Brauner <brauner@kernel.org>,
Paul Moore <paul@paul-moore.com>,
linux-fsdevel@vger.kernel.org, linux-nfs@vger.kernel.org,
linux-security-module@vger.kernel.org, audit@vger.kernel.org,
Kentaro Takeda <takedakn@nttdata.co.jp>
Subject: Re: [PATCH] tomoyo: use u64 for handling numeric values
Date: Mon, 14 Oct 2024 15:59:52 +0200 [thread overview]
Message-ID: <20241014.Peequ3quaf0u@digikod.net> (raw)
In-Reply-To: <ac5fc4b8-2e7e-4951-9ab4-499bf38bf2af@I-love.SAKURA.ne.jp>
On Sat, Oct 12, 2024 at 04:35:54PM +0900, Tetsuo Handa wrote:
> TOMOYO was using "unsigned long" for handling numeric values because all
> possible value range fits in "unsigned long". Since Mickaël Salaün is
> about to replace "ino_t" with "u64", possible value range no longer fits
> in architecture-dependent "unsigned long". Therefore, replace "unsigned
> long" and "ino_t" with "u64".
>
> Signed-off-by: Tetsuo Handa <penguin-kernel@I-love.SAKURA.ne.jp>
> ---
> Please include this patch before your patch.
Thanks, I'll merge the two patches to get a more consistent one in the
next series.
>
> security/tomoyo/audit.c | 10 ++++------
> security/tomoyo/common.c | 14 +++++++-------
> security/tomoyo/common.h | 17 ++++++++---------
> security/tomoyo/condition.c | 8 ++++----
> security/tomoyo/file.c | 6 +++---
> security/tomoyo/group.c | 3 +--
> security/tomoyo/util.c | 28 ++++++++++++++--------------
> 7 files changed, 41 insertions(+), 45 deletions(-)
>
> diff --git a/security/tomoyo/audit.c b/security/tomoyo/audit.c
> index 610c1536cf70..36c9e63651b5 100644
> --- a/security/tomoyo/audit.c
> +++ b/security/tomoyo/audit.c
> @@ -195,21 +195,19 @@ static char *tomoyo_print_header(struct tomoyo_request_info *r)
> if (i & 1) {
> pos += snprintf(buffer + pos,
> tomoyo_buffer_len - 1 - pos,
> - " path%u.parent={ uid=%u gid=%u ino=%lu perm=0%o }",
> + " path%u.parent={ uid=%u gid=%u ino=%llu perm=0%o }",
> (i >> 1) + 1,
> from_kuid(&init_user_ns, stat->uid),
> from_kgid(&init_user_ns, stat->gid),
> - (unsigned long)stat->ino,
> - stat->mode & S_IALLUGO);
> + stat->ino, stat->mode & S_IALLUGO);
> continue;
> }
> pos += snprintf(buffer + pos, tomoyo_buffer_len - 1 - pos,
> - " path%u={ uid=%u gid=%u ino=%lu major=%u minor=%u perm=0%o type=%s",
> + " path%u={ uid=%u gid=%u ino=%llu major=%u minor=%u perm=0%o type=%s",
> (i >> 1) + 1,
> from_kuid(&init_user_ns, stat->uid),
> from_kgid(&init_user_ns, stat->gid),
> - (unsigned long)stat->ino,
> - MAJOR(dev), MINOR(dev),
> + stat->ino, MAJOR(dev), MINOR(dev),
> mode & S_IALLUGO, tomoyo_filetype(mode));
> if (S_ISCHR(mode) || S_ISBLK(mode)) {
> dev = stat->rdev;
> diff --git a/security/tomoyo/common.c b/security/tomoyo/common.c
> index 5c7b059a332a..528b96c917e5 100644
> --- a/security/tomoyo/common.c
> +++ b/security/tomoyo/common.c
> @@ -424,8 +424,8 @@ static void tomoyo_print_number_union_nospace
> tomoyo_set_string(head, ptr->group->group_name->name);
> } else {
> int i;
> - unsigned long min = ptr->values[0];
> - const unsigned long max = ptr->values[1];
> + u64 min = ptr->values[0];
> + const u64 max = ptr->values[1];
> u8 min_type = ptr->value_type[0];
> const u8 max_type = ptr->value_type[1];
> char buffer[128];
> @@ -435,15 +435,15 @@ static void tomoyo_print_number_union_nospace
> switch (min_type) {
> case TOMOYO_VALUE_TYPE_HEXADECIMAL:
> tomoyo_addprintf(buffer, sizeof(buffer),
> - "0x%lX", min);
> + "0x%llX", min);
> break;
> case TOMOYO_VALUE_TYPE_OCTAL:
> tomoyo_addprintf(buffer, sizeof(buffer),
> - "0%lo", min);
> + "0%llo", min);
> break;
> default:
> - tomoyo_addprintf(buffer, sizeof(buffer), "%lu",
> - min);
> + tomoyo_addprintf(buffer, sizeof(buffer),
> + "%llu", min);
> break;
> }
> if (min == max && min_type == max_type)
> @@ -1287,7 +1287,7 @@ static bool tomoyo_print_condition(struct tomoyo_io_buffer *head,
> switch (left) {
> case TOMOYO_ARGV_ENTRY:
> tomoyo_io_printf(head,
> - "exec.argv[%lu]%s=\"",
> + "exec.argv[%llu]%s=\"",
> argv->index, argv->is_not ? "!" : "");
> tomoyo_set_string(head,
> argv->value->name);
> diff --git a/security/tomoyo/common.h b/security/tomoyo/common.h
> index 0e8e2e959aef..bdbb4f0ae751 100644
> --- a/security/tomoyo/common.h
> +++ b/security/tomoyo/common.h
> @@ -524,7 +524,7 @@ struct tomoyo_name_union {
>
> /* Structure for holding a number. */
> struct tomoyo_number_union {
> - unsigned long values[2];
> + u64 values[2];
> struct tomoyo_group *group; /* Maybe NULL. */
> /* One of values in "enum tomoyo_value_type". */
> u8 value_type[2];
> @@ -567,7 +567,7 @@ struct tomoyo_address_group {
> struct tomoyo_mini_stat {
> kuid_t uid;
> kgid_t gid;
> - ino_t ino;
> + u64 ino;
> umode_t mode;
> dev_t dev;
> dev_t rdev;
> @@ -605,7 +605,7 @@ struct tomoyo_obj_info {
>
> /* Structure for argv[]. */
> struct tomoyo_argv {
> - unsigned long index;
> + u64 index;
> const struct tomoyo_path_info *value;
> bool is_not;
> };
> @@ -926,7 +926,7 @@ struct tomoyo_task {
>
> bool tomoyo_address_matches_group(const bool is_ipv6, const __be32 *address,
> const struct tomoyo_group *group);
> -bool tomoyo_compare_number_union(const unsigned long value,
> +bool tomoyo_compare_number_union(const u64 value,
> const struct tomoyo_number_union *ptr);
> bool tomoyo_condition(struct tomoyo_request_info *r,
> const struct tomoyo_condition *cond);
> @@ -938,8 +938,7 @@ bool tomoyo_domain_quota_is_ok(struct tomoyo_request_info *r);
> bool tomoyo_dump_page(struct linux_binprm *bprm, unsigned long pos,
> struct tomoyo_page_dump *dump);
> bool tomoyo_memory_ok(void *ptr);
> -bool tomoyo_number_matches_group(const unsigned long min,
> - const unsigned long max,
> +bool tomoyo_number_matches_group(const u64 min, const u64 max,
> const struct tomoyo_group *group);
> bool tomoyo_parse_ipaddr_union(struct tomoyo_acl_param *param,
> struct tomoyo_ipaddr_union *ptr);
> @@ -1037,7 +1036,7 @@ struct tomoyo_policy_namespace *tomoyo_assign_namespace
> (const char *domainname);
> struct tomoyo_profile *tomoyo_profile(const struct tomoyo_policy_namespace *ns,
> const u8 profile);
> -u8 tomoyo_parse_ulong(unsigned long *result, char **str);
> +u8 tomoyo_parse_u64(u64 *result, char **str);
> void *tomoyo_commit_ok(void *data, const unsigned int size);
> void __init tomoyo_load_builtin_policy(void);
> void __init tomoyo_mm_init(void);
> @@ -1055,8 +1054,8 @@ void tomoyo_normalize_line(unsigned char *buffer);
> void tomoyo_notify_gc(struct tomoyo_io_buffer *head, const bool is_register);
> void tomoyo_print_ip(char *buf, const unsigned int size,
> const struct tomoyo_ipaddr_union *ptr);
> -void tomoyo_print_ulong(char *buffer, const int buffer_len,
> - const unsigned long value, const u8 type);
> +void tomoyo_print_u64(char *buffer, const int buffer_len,
> + const u64 value, const u8 type);
> void tomoyo_put_name_union(struct tomoyo_name_union *ptr);
> void tomoyo_put_number_union(struct tomoyo_number_union *ptr);
> void tomoyo_read_log(struct tomoyo_io_buffer *head);
> diff --git a/security/tomoyo/condition.c b/security/tomoyo/condition.c
> index f8bcc083bb0d..4a27fbf4588b 100644
> --- a/security/tomoyo/condition.c
> +++ b/security/tomoyo/condition.c
> @@ -299,7 +299,7 @@ static bool tomoyo_parse_name_union_quoted(struct tomoyo_acl_param *param,
> static bool tomoyo_parse_argv(char *left, char *right,
> struct tomoyo_argv *argv)
> {
> - if (tomoyo_parse_ulong(&argv->index, &left) !=
> + if (tomoyo_parse_u64(&argv->index, &left) !=
> TOMOYO_VALUE_TYPE_DECIMAL || *left++ != ']' || *left)
> return false;
> argv->value = tomoyo_get_dqword(right);
> @@ -766,8 +766,8 @@ bool tomoyo_condition(struct tomoyo_request_info *r,
> const struct tomoyo_condition *cond)
> {
> u32 i;
> - unsigned long min_v[2] = { 0, 0 };
> - unsigned long max_v[2] = { 0, 0 };
> + u64 min_v[2] = { 0, 0 };
> + u64 max_v[2] = { 0, 0 };
> const struct tomoyo_condition_element *condp;
> const struct tomoyo_number_union *numbers_p;
> const struct tomoyo_name_union *names_p;
> @@ -834,7 +834,7 @@ bool tomoyo_condition(struct tomoyo_request_info *r,
> /* Check numeric or bit-op expressions. */
> for (j = 0; j < 2; j++) {
> const u8 index = j ? right : left;
> - unsigned long value = 0;
> + u64 value = 0;
>
> switch (index) {
> case TOMOYO_TASK_UID:
> diff --git a/security/tomoyo/file.c b/security/tomoyo/file.c
> index 8f3b90b6e03d..4fa58abf5975 100644
> --- a/security/tomoyo/file.c
> +++ b/security/tomoyo/file.c
> @@ -109,7 +109,7 @@ void tomoyo_put_number_union(struct tomoyo_number_union *ptr)
> *
> * Returns true if @value matches @ptr, false otherwise.
> */
> -bool tomoyo_compare_number_union(const unsigned long value,
> +bool tomoyo_compare_number_union(const u64 value,
> const struct tomoyo_number_union *ptr)
> {
> if (ptr->group)
> @@ -230,8 +230,8 @@ static int tomoyo_audit_path_number_log(struct tomoyo_request_info *r)
> radix = TOMOYO_VALUE_TYPE_DECIMAL;
> break;
> }
> - tomoyo_print_ulong(buffer, sizeof(buffer), r->param.path_number.number,
> - radix);
> + tomoyo_print_u64(buffer, sizeof(buffer), r->param.path_number.number,
> + radix);
> return tomoyo_supervisor(r, "file %s %s %s\n", tomoyo_mac_keywords
> [tomoyo_pn2mac[type]],
> r->param.path_number.filename->name, buffer);
> diff --git a/security/tomoyo/group.c b/security/tomoyo/group.c
> index 1cecdd797597..dc650eaedba3 100644
> --- a/security/tomoyo/group.c
> +++ b/security/tomoyo/group.c
> @@ -155,8 +155,7 @@ tomoyo_path_matches_group(const struct tomoyo_path_info *pathname,
> *
> * Caller holds tomoyo_read_lock().
> */
> -bool tomoyo_number_matches_group(const unsigned long min,
> - const unsigned long max,
> +bool tomoyo_number_matches_group(const u64 min, const u64 max,
> const struct tomoyo_group *group)
> {
> struct tomoyo_number_group *member;
> diff --git a/security/tomoyo/util.c b/security/tomoyo/util.c
> index 6799b1122c9d..ac9535b4bdcd 100644
> --- a/security/tomoyo/util.c
> +++ b/security/tomoyo/util.c
> @@ -172,9 +172,9 @@ const struct tomoyo_path_info *tomoyo_get_domainname
> }
>
> /**
> - * tomoyo_parse_ulong - Parse an "unsigned long" value.
> + * tomoyo_parse_u64 - Parse a u64 value.
> *
> - * @result: Pointer to "unsigned long".
> + * @result: Pointer to u64.
> * @str: Pointer to string to parse.
> *
> * Returns one of values in "enum tomoyo_value_type".
> @@ -182,7 +182,7 @@ const struct tomoyo_path_info *tomoyo_get_domainname
> * The @src is updated to point the first character after the value
> * on success.
> */
> -u8 tomoyo_parse_ulong(unsigned long *result, char **str)
> +u8 tomoyo_parse_u64(u64 *result, char **str)
> {
> const char *cp = *str;
> char *ep;
> @@ -199,7 +199,7 @@ u8 tomoyo_parse_ulong(unsigned long *result, char **str)
> cp++;
> }
> }
> - *result = simple_strtoul(cp, &ep, base);
> + *result = (u64) simple_strtoull(cp, &ep, base);
> if (cp == ep)
> return TOMOYO_VALUE_TYPE_INVALID;
> *str = ep;
> @@ -214,24 +214,24 @@ u8 tomoyo_parse_ulong(unsigned long *result, char **str)
> }
>
> /**
> - * tomoyo_print_ulong - Print an "unsigned long" value.
> + * tomoyo_print_u64 - Print a u64 value.
> *
> * @buffer: Pointer to buffer.
> * @buffer_len: Size of @buffer.
> - * @value: An "unsigned long" value.
> + * @value: A u64 value.
> * @type: Type of @value.
> *
> * Returns nothing.
> */
> -void tomoyo_print_ulong(char *buffer, const int buffer_len,
> - const unsigned long value, const u8 type)
> +void tomoyo_print_u64(char *buffer, const int buffer_len,
> + const u64 value, const u8 type)
> {
> if (type == TOMOYO_VALUE_TYPE_DECIMAL)
> - snprintf(buffer, buffer_len, "%lu", value);
> + snprintf(buffer, buffer_len, "%llu", value);
> else if (type == TOMOYO_VALUE_TYPE_OCTAL)
> - snprintf(buffer, buffer_len, "0%lo", value);
> + snprintf(buffer, buffer_len, "0%llo", value);
> else if (type == TOMOYO_VALUE_TYPE_HEXADECIMAL)
> - snprintf(buffer, buffer_len, "0x%lX", value);
> + snprintf(buffer, buffer_len, "0x%llX", value);
> else
> snprintf(buffer, buffer_len, "type(%u)", type);
> }
> @@ -274,7 +274,7 @@ bool tomoyo_parse_number_union(struct tomoyo_acl_param *param,
> {
> char *data;
> u8 type;
> - unsigned long v;
> + u64 v;
>
> memset(ptr, 0, sizeof(*ptr));
> if (param->data[0] == '@') {
> @@ -283,7 +283,7 @@ bool tomoyo_parse_number_union(struct tomoyo_acl_param *param,
> return ptr->group != NULL;
> }
> data = tomoyo_read_token(param);
> - type = tomoyo_parse_ulong(&v, &data);
> + type = tomoyo_parse_u64(&v, &data);
> if (type == TOMOYO_VALUE_TYPE_INVALID)
> return false;
> ptr->values[0] = v;
> @@ -295,7 +295,7 @@ bool tomoyo_parse_number_union(struct tomoyo_acl_param *param,
> }
> if (*data++ != '-')
> return false;
> - type = tomoyo_parse_ulong(&v, &data);
> + type = tomoyo_parse_u64(&v, &data);
> if (type == TOMOYO_VALUE_TYPE_INVALID || *data || ptr->values[0] > v)
> return false;
> ptr->values[1] = v;
> --
> 2.43.5
>
>
next prev parent reply other threads:[~2024-10-14 14:00 UTC|newest]
Thread overview: 81+ messages / expand[flat|nested] mbox.gz Atom feed top
2024-10-10 15:26 [RFC PATCH v1 1/7] fs: Add inode_get_ino() and implement get_ino() for NFS Mickaël Salaün
2024-10-10 15:26 ` [RFC PATCH v1 2/7] audit: Fix inode numbers Mickaël Salaün
2024-10-11 1:20 ` [PATCH RFC " Paul Moore
2024-10-11 1:38 ` Paul Moore
2024-10-11 21:34 ` [RFC PATCH " Paul Moore
2024-10-14 13:30 ` Mickaël Salaün
2024-10-14 23:36 ` Paul Moore
2024-10-10 15:26 ` [RFC PATCH v1 3/7] selinux: Fix inode numbers in error messages Mickaël Salaün
2024-10-11 1:20 ` [PATCH RFC " Paul Moore
2024-10-10 15:26 ` [RFC PATCH v1 4/7] integrity: Fix inode numbers in audit records Mickaël Salaün
2024-10-11 1:20 ` [PATCH RFC " Paul Moore
2024-10-11 10:15 ` Mickaël Salaün
2024-10-11 11:34 ` Roberto Sassu
2024-10-11 12:38 ` Mickaël Salaün
2024-10-11 12:45 ` Roberto Sassu
2024-10-10 15:26 ` [RFC PATCH v1 5/7] ipe: " Mickaël Salaün
2024-10-10 17:44 ` Fan Wu
2024-10-10 15:26 ` [RFC PATCH v1 6/7] smack: Fix inode numbers in logs Mickaël Salaün
2024-10-10 17:18 ` Casey Schaufler
2024-10-10 15:26 ` [RFC PATCH v1 7/7] tomoyo: " Mickaël Salaün
2024-10-12 7:35 ` [PATCH] tomoyo: use u64 for handling numeric values Tetsuo Handa
2024-10-14 13:59 ` Mickaël Salaün [this message]
2024-10-10 18:07 ` [RFC PATCH v1 1/7] fs: Add inode_get_ino() and implement get_ino() for NFS Anna Schumaker
2024-10-11 10:14 ` Mickaël Salaün
2024-10-10 19:28 ` Trond Myklebust
2024-10-11 10:15 ` Mickaël Salaün
2024-10-11 12:22 ` Trond Myklebust
2024-10-11 12:38 ` Mickaël Salaün
2024-10-11 12:43 ` Mickaël Salaün
2024-10-11 10:12 ` Tetsuo Handa
2024-10-11 10:54 ` Tetsuo Handa
2024-10-11 11:10 ` Mickaël Salaün
2024-10-11 11:04 ` Mickaël Salaün
2024-10-11 14:27 ` Tetsuo Handa
2024-10-11 15:13 ` Christoph Hellwig
2024-10-11 15:26 ` Mickaël Salaün
2024-10-11 12:30 ` Christoph Hellwig
2024-10-11 12:47 ` Mickaël Salaün
2024-10-11 12:54 ` Christoph Hellwig
2024-10-11 13:20 ` Mickaël Salaün
2024-10-11 13:23 ` Christoph Hellwig
2024-10-11 13:52 ` Mickaël Salaün
2024-10-11 14:39 ` Christoph Hellwig
2024-10-11 15:30 ` Mickaël Salaün
2024-10-11 15:34 ` Christoph Hellwig
2024-10-14 14:35 ` Christian Brauner
2024-10-14 14:36 ` Christoph Hellwig
2024-10-13 10:17 ` Jeff Layton
2024-10-14 8:40 ` Burn Alting
2024-10-14 9:02 ` Christoph Hellwig
2024-10-14 12:12 ` Burn Alting
2024-10-14 12:17 ` Christoph Hellwig
2024-10-14 13:13 ` Mickaël Salaün
[not found] ` <9c3bc3b7-2e79-4423-b8eb-f9f6249ee5bf@iinet.net.au>
2024-10-14 10:22 ` Jeff Layton
2024-10-14 14:45 ` Christian Brauner
2024-10-14 15:27 ` Mickaël Salaün
2024-10-16 0:15 ` Paul Moore
2024-10-14 8:40 ` kernel test robot
2024-10-14 10:02 ` kernel test robot
2024-10-14 14:47 ` Christian Brauner
2024-10-14 17:51 ` Mickaël Salaün
2024-10-16 14:23 ` Christian Brauner
2024-10-16 23:05 ` Paul Moore
2024-10-17 14:30 ` Trond Myklebust
2024-10-17 14:54 ` Paul Moore
2024-10-17 14:58 ` Christoph Hellwig
2024-10-17 15:15 ` Paul Moore
2024-10-17 15:25 ` Christoph Hellwig
2024-10-17 16:43 ` Jan Kara
2024-10-18 5:15 ` Christoph Hellwig
2024-10-21 13:17 ` Christian Brauner
2024-10-17 17:05 ` Jeff Layton
2024-10-17 17:09 ` Trond Myklebust
2024-10-17 17:59 ` Jeff Layton
2024-10-17 21:06 ` Trond Myklebust
2024-10-18 5:18 ` hch
2024-10-17 20:21 ` Paul Moore
2024-10-18 12:25 ` Jan Kara
2024-10-21 13:13 ` Christian Brauner
2024-10-21 14:04 ` Christian Brauner
2024-10-17 14:56 ` Christoph Hellwig
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20241014.Peequ3quaf0u@digikod.net \
--to=mic@digikod.net \
--cc=audit@vger.kernel.org \
--cc=brauner@kernel.org \
--cc=linux-fsdevel@vger.kernel.org \
--cc=linux-nfs@vger.kernel.org \
--cc=linux-security-module@vger.kernel.org \
--cc=paul@paul-moore.com \
--cc=penguin-kernel@i-love.sakura.ne.jp \
--cc=takedakn@nttdata.co.jp \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.