2 #include <linux/keyctl.h>
4 typedef int32_t key_serial_t;
6 static const struct xlat key_spec[] = {
7 XLAT(KEY_SPEC_THREAD_KEYRING),
8 XLAT(KEY_SPEC_PROCESS_KEYRING),
9 XLAT(KEY_SPEC_SESSION_KEYRING),
10 XLAT(KEY_SPEC_USER_KEYRING),
11 XLAT(KEY_SPEC_USER_SESSION_KEYRING),
12 XLAT(KEY_SPEC_GROUP_KEYRING),
13 XLAT(KEY_SPEC_REQKEY_AUTH_KEY),
14 XLAT(KEY_SPEC_REQUESTOR_KEYRING),
19 print_keyring_serial_number(key_serial_t id)
21 const char *str = xlookup(key_spec, id);
30 sys_add_key(struct tcb *tcp)
34 printstr(tcp, tcp->u_arg[0], -1);
37 printstr(tcp, tcp->u_arg[1], -1);
40 printstr(tcp, tcp->u_arg[2], tcp->u_arg[3]);
42 tprintf(", %lu, ", tcp->u_arg[3]);
43 /* keyring serial number */
44 print_keyring_serial_number(tcp->u_arg[4]);
50 sys_request_key(struct tcb *tcp)
54 printstr(tcp, tcp->u_arg[0], -1);
57 printstr(tcp, tcp->u_arg[1], -1);
60 printstr(tcp, tcp->u_arg[2], -1);
61 /* keyring serial number */
63 print_keyring_serial_number(tcp->u_arg[3]);
69 keyctl_get_keyring_id(struct tcb *tcp, key_serial_t id, int create)
73 print_keyring_serial_number(id);
74 tprintf(", %d", create);
80 keyctl_join_session_keyring(struct tcb *tcp, long addr)
84 printstr(tcp, addr, -1);
90 keyctl_update_key(struct tcb *tcp, key_serial_t id, long addr, long len)
94 print_keyring_serial_number(id);
96 printstr(tcp, addr, len);
97 tprintf(", %lu", len);
103 keyctl_handle_key(struct tcb *tcp, key_serial_t id)
107 print_keyring_serial_number(id);
113 keyctl_handle_key_key(struct tcb *tcp, key_serial_t id1, key_serial_t id2)
117 print_keyring_serial_number(id1);
119 print_keyring_serial_number(id2);
125 keyctl_read_key(struct tcb *tcp, key_serial_t id, long addr, long len)
129 print_keyring_serial_number(id);
132 if (addr && syserror(tcp))
133 tprintf("%#lx", addr);
135 long rval = tcp->u_rval > len ?
136 len : (tcp->u_rval ? -1 : 0);
137 printstr(tcp, addr, rval);
139 tprintf(", %lu", len);
145 keyctl_keyring_search(struct tcb *tcp, key_serial_t id1, long addr1,
146 long addr2, key_serial_t id2)
150 print_keyring_serial_number(id1);
152 printstr(tcp, addr1, -1);
154 printstr(tcp, addr2, -1);
156 print_keyring_serial_number(id2);
162 keyctl_chown_key(struct tcb *tcp, key_serial_t id, int user, int group)
166 print_keyring_serial_number(id);
167 tprintf(", %d, %d", user, group);
173 keyctl_instantiate_key(struct tcb *tcp, key_serial_t id1, long addr,
174 long len, key_serial_t id2)
178 print_keyring_serial_number(id1);
180 printstr(tcp, addr, len);
181 tprintf(", %lu, ", len);
182 print_keyring_serial_number(id2);
188 keyctl_instantiate_key_iov(struct tcb *tcp, key_serial_t id1,
189 long addr, long len, key_serial_t id2)
193 print_keyring_serial_number(id1);
195 tprint_iov(tcp, len, addr, 1);
196 tprintf(", %lu, ", len);
197 print_keyring_serial_number(id2);
203 keyctl_negate_key(struct tcb *tcp, key_serial_t id1, unsigned timeout,
208 print_keyring_serial_number(id1);
209 tprintf(", %u, ", timeout);
210 print_keyring_serial_number(id2);
216 keyctl_reject_key(struct tcb *tcp, key_serial_t id1, unsigned timeout,
217 unsigned error, key_serial_t id2)
221 print_keyring_serial_number(id1);
222 tprintf(", %u, %u, ", timeout, error);
223 print_keyring_serial_number(id2);
229 keyctl_set_timeout(struct tcb *tcp, key_serial_t id, unsigned timeout)
233 print_keyring_serial_number(id);
234 tprintf(", %u", timeout);
240 keyctl_get_persistent(struct tcb *tcp, int uid, key_serial_t id)
243 tprintf(", %d, ", uid);
244 print_keyring_serial_number(id);
249 #define KEY_POS_VIEW 0x01000000
250 #define KEY_POS_READ 0x02000000
251 #define KEY_POS_WRITE 0x04000000
252 #define KEY_POS_SEARCH 0x08000000
253 #define KEY_POS_LINK 0x10000000
254 #define KEY_POS_SETATTR 0x20000000
255 #define KEY_POS_ALL 0x3f000000
256 #define KEY_USR_VIEW 0x00010000
257 #define KEY_USR_READ 0x00020000
258 #define KEY_USR_WRITE 0x00040000
259 #define KEY_USR_SEARCH 0x00080000
260 #define KEY_USR_LINK 0x00100000
261 #define KEY_USR_SETATTR 0x00200000
262 #define KEY_USR_ALL 0x003f0000
263 #define KEY_GRP_VIEW 0x00000100
264 #define KEY_GRP_READ 0x00000200
265 #define KEY_GRP_WRITE 0x00000400
266 #define KEY_GRP_SEARCH 0x00000800
267 #define KEY_GRP_LINK 0x00001000
268 #define KEY_GRP_SETATTR 0x00002000
269 #define KEY_GRP_ALL 0x00003f00
270 #define KEY_OTH_VIEW 0x00000001
271 #define KEY_OTH_READ 0x00000002
272 #define KEY_OTH_WRITE 0x00000004
273 #define KEY_OTH_SEARCH 0x00000008
274 #define KEY_OTH_LINK 0x00000010
275 #define KEY_OTH_SETATTR 0x00000020
276 #define KEY_OTH_ALL 0x0000003f
278 static const struct xlat key_perms[] = {
282 XLAT(KEY_POS_SEARCH),
284 XLAT(KEY_POS_SETATTR),
289 XLAT(KEY_USR_SEARCH),
291 XLAT(KEY_USR_SETATTR),
296 XLAT(KEY_GRP_SEARCH),
298 XLAT(KEY_GRP_SETATTR),
303 XLAT(KEY_OTH_SEARCH),
305 XLAT(KEY_OTH_SETATTR),
311 keyctl_setperm_key(struct tcb *tcp, key_serial_t id, uint32_t perm)
315 print_keyring_serial_number(id);
317 printflags(key_perms, perm, "KEY_???");
322 static const struct xlat key_reqkeys[] = {
323 XLAT(KEY_REQKEY_DEFL_NO_CHANGE),
324 XLAT(KEY_REQKEY_DEFL_DEFAULT),
325 XLAT(KEY_REQKEY_DEFL_THREAD_KEYRING),
326 XLAT(KEY_REQKEY_DEFL_PROCESS_KEYRING),
327 XLAT(KEY_REQKEY_DEFL_SESSION_KEYRING),
328 XLAT(KEY_REQKEY_DEFL_USER_KEYRING),
329 XLAT(KEY_REQKEY_DEFL_USER_SESSION_KEYRING),
330 XLAT(KEY_REQKEY_DEFL_GROUP_KEYRING),
331 XLAT(KEY_REQKEY_DEFL_REQUESTOR_KEYRING),
336 keyctl_set_reqkey_keyring(struct tcb *tcp, int reqkey)
340 printxval(key_reqkeys, reqkey, "KEY_REQKEY_DEFL_???");
345 static const struct xlat keyctl_commands[] = {
346 XLAT(KEYCTL_GET_KEYRING_ID),
347 XLAT(KEYCTL_JOIN_SESSION_KEYRING),
351 XLAT(KEYCTL_SETPERM),
352 XLAT(KEYCTL_DESCRIBE),
358 XLAT(KEYCTL_INSTANTIATE),
360 XLAT(KEYCTL_SET_REQKEY_KEYRING),
361 XLAT(KEYCTL_SET_TIMEOUT),
362 XLAT(KEYCTL_ASSUME_AUTHORITY),
363 XLAT(KEYCTL_GET_SECURITY),
364 XLAT(KEYCTL_SESSION_TO_PARENT),
366 XLAT(KEYCTL_INSTANTIATE_IOV),
367 XLAT(KEYCTL_INVALIDATE),
368 XLAT(KEYCTL_GET_PERSISTENT),
373 sys_keyctl(struct tcb *tcp)
375 int cmd = tcp->u_arg[0];
378 printxval(keyctl_commands, cmd, "KEYCTL_???");
381 case KEYCTL_GET_KEYRING_ID:
382 return keyctl_get_keyring_id(tcp, tcp->u_arg[1], tcp->u_arg[2]);
384 case KEYCTL_JOIN_SESSION_KEYRING:
385 return keyctl_join_session_keyring(tcp, tcp->u_arg[1]);
388 return keyctl_update_key(tcp, tcp->u_arg[1],
389 tcp->u_arg[2], tcp->u_arg[3]);
393 case KEYCTL_INVALIDATE:
394 case KEYCTL_ASSUME_AUTHORITY:
395 return keyctl_handle_key(tcp, tcp->u_arg[1]);
399 return keyctl_handle_key_key(tcp, tcp->u_arg[1], tcp->u_arg[2]);
401 case KEYCTL_DESCRIBE:
403 case KEYCTL_GET_SECURITY:
404 return keyctl_read_key(tcp, tcp->u_arg[1],
405 tcp->u_arg[2], tcp->u_arg[3]);
408 return keyctl_keyring_search(tcp, tcp->u_arg[1], tcp->u_arg[2],
409 tcp->u_arg[3], tcp->u_arg[4]);
412 return keyctl_chown_key(tcp, tcp->u_arg[1],
413 tcp->u_arg[2], tcp->u_arg[3]);
416 return keyctl_setperm_key(tcp, tcp->u_arg[1], tcp->u_arg[2]);
418 case KEYCTL_INSTANTIATE:
419 return keyctl_instantiate_key(tcp, tcp->u_arg[1], tcp->u_arg[2],
420 tcp->u_arg[3], tcp->u_arg[4]);
423 return keyctl_negate_key(tcp, tcp->u_arg[1],
424 tcp->u_arg[2], tcp->u_arg[3]);
426 case KEYCTL_SET_REQKEY_KEYRING:
427 return keyctl_set_reqkey_keyring(tcp, tcp->u_arg[1]);
429 case KEYCTL_SET_TIMEOUT:
430 return keyctl_set_timeout(tcp, tcp->u_arg[1], tcp->u_arg[2]);
432 case KEYCTL_SESSION_TO_PARENT:
436 return keyctl_reject_key(tcp, tcp->u_arg[1], tcp->u_arg[2],
437 tcp->u_arg[3], tcp->u_arg[4]);
439 case KEYCTL_INSTANTIATE_IOV:
440 return keyctl_instantiate_key_iov(tcp, tcp->u_arg[1],
441 tcp->u_arg[2], tcp->u_arg[3],
444 case KEYCTL_GET_PERSISTENT:
445 return keyctl_get_persistent(tcp, tcp->u_arg[1], tcp->u_arg[2]);
449 tprintf(", %#lx, %#lx, %#lx, %#lx",
450 tcp->u_arg[1], tcp->u_arg[2],
451 tcp->u_arg[3], tcp->u_arg[4]);
projects / strace / blob