1 files changed, 44 insertions, 2 deletions
diff --git a/security/selinux/ss/avtab.c b/security/selinux/ss/avtab.c
index 929480c6c430..a3dd9faa19c0 100644
--- a/security/selinux/ss/avtab.c
+++ b/security/selinux/ss/avtab.c
@@ -266,8 +266,8 @@ int avtab_alloc(struct avtab *h, u32 nrules)
        if (shift > 2)
                shift = shift - 2;
        nslot = 1 << shift;
-        if (nslot > MAX_AVTAB_SIZE)
+        if (nslot > MAX_AVTAB_HASH_BUCKETS)
-                nslot = MAX_AVTAB_SIZE;
+                nslot = MAX_AVTAB_HASH_BUCKETS;
        mask = nslot - 1;
        h->htable = kcalloc(nslot, sizeof(*(h->htable)), GFP_KERNEL);
@@ -501,6 +501,48 @@ bad:
        goto out;
 }
+int avtab_write_item(struct policydb *p, struct avtab_node *cur, void *fp)
+{
+        __le16 buf16[4];
+        __le32 buf32[1];
+        int rc;
+        buf16[0] = cpu_to_le16(cur->key.source_type);
+        buf16[1] = cpu_to_le16(cur->key.target_type);
+        buf16[2] = cpu_to_le16(cur->key.target_class);
+        buf16[3] = cpu_to_le16(cur->key.specified);
+        rc = put_entry(buf16, sizeof(u16), 4, fp);
+        if (rc)
+                return rc;
+        buf32[0] = cpu_to_le32(cur->datum.data);
+        rc = put_entry(buf32, sizeof(u32), 1, fp);
+        if (rc)
+                return rc;
+        return 0;
+}
+int avtab_write(struct policydb *p, struct avtab *a, void *fp)
+{
+        unsigned int i;
+        int rc = 0;
+        struct avtab_node *cur;
+        __le32 buf[1];
+        buf[0] = cpu_to_le32(a->nel);
+        rc = put_entry(buf, sizeof(u32), 1, fp);
+        if (rc)
+                return rc;
+        for (i = 0; i < a->nslot; i++) {
+                for (cur = a->htable[i]; cur; cur = cur->next) {
+                        rc = avtab_write_item(p, cur, fp);
+                        if (rc)
+                                return rc;
+                }
+        }
+        return rc;
+}
 void avtab_cache_init(void)
 {
        avtab_node_cachep = kmem_cache_create("avtab_node",

diff --git a/security/selinux/ss/avtab.c b/security/selinux/ss/avtab.c index 929480c6c430..a3dd9faa19c0 100644 --- a/security/selinux/ss/avtab.c +++ b/security/selinux/ss/avtab.c
@@ -266,8 +266,8 @@ int avtab_alloc(struct avtab *h, u32 nrules)
266	if (shift > 2)	266	if (shift > 2)
267	shift = shift - 2;	267	shift = shift - 2;
268	nslot = 1 << shift;	268	nslot = 1 << shift;
269	if (nslot > MAX_AVTAB_SIZE)	269	if (nslot > MAX_AVTAB_HASH_BUCKETS)
270	nslot = MAX_AVTAB_SIZE;	270	nslot = MAX_AVTAB_HASH_BUCKETS;
271	mask = nslot - 1;	271	mask = nslot - 1;
272		272
273	h->htable = kcalloc(nslot, sizeof(*(h->htable)), GFP_KERNEL);	273	h->htable = kcalloc(nslot, sizeof(*(h->htable)), GFP_KERNEL);
@@ -501,6 +501,48 @@ bad:
501	goto out;	501	goto out;
502	}	502	}
503		503
		504	int avtab_write_item(struct policydb p, struct avtab_node cur, void *fp)
		505	{
		506	__le16 buf16[4];
		507	__le32 buf32[1];
		508	int rc;
		509
		510	buf16[0] = cpu_to_le16(cur->key.source_type);
		511	buf16[1] = cpu_to_le16(cur->key.target_type);
		512	buf16[2] = cpu_to_le16(cur->key.target_class);
		513	buf16[3] = cpu_to_le16(cur->key.specified);
		514	rc = put_entry(buf16, sizeof(u16), 4, fp);
		515	if (rc)
		516	return rc;
		517	buf32[0] = cpu_to_le32(cur->datum.data);
		518	rc = put_entry(buf32, sizeof(u32), 1, fp);
		519	if (rc)
		520	return rc;
		521	return 0;
		522	}
		523
		524	int avtab_write(struct policydb p, struct avtab a, void *fp)
		525	{
		526	unsigned int i;
		527	int rc = 0;
		528	struct avtab_node *cur;
		529	__le32 buf[1];
		530
		531	buf[0] = cpu_to_le32(a->nel);
		532	rc = put_entry(buf, sizeof(u32), 1, fp);
		533	if (rc)
		534	return rc;
		535
		536	for (i = 0; i < a->nslot; i++) {
		537	for (cur = a->htable[i]; cur; cur = cur->next) {
		538	rc = avtab_write_item(p, cur, fp);
		539	if (rc)
		540	return rc;
		541	}
		542	}
		543
		544	return rc;
		545	}
504	void avtab_cache_init(void)	546	void avtab_cache_init(void)
505	{	547	{
506	avtab_node_cachep = kmem_cache_create("avtab_node",	548	avtab_node_cachep = kmem_cache_create("avtab_node",