1*49cdfc7eSAndroid Build Coastguard Worker // SPDX-License-Identifier: GPL-2.0-or-later
2*49cdfc7eSAndroid Build Coastguard Worker /*
3*49cdfc7eSAndroid Build Coastguard Worker * Copyright (c) 2019 Richard Palethorpe <[email protected]>
4*49cdfc7eSAndroid Build Coastguard Worker */
5*49cdfc7eSAndroid Build Coastguard Worker
6*49cdfc7eSAndroid Build Coastguard Worker #include <string.h>
7*49cdfc7eSAndroid Build Coastguard Worker
8*49cdfc7eSAndroid Build Coastguard Worker #define TST_NO_DEFAULT_MAIN
9*49cdfc7eSAndroid Build Coastguard Worker #include "tst_test.h"
10*49cdfc7eSAndroid Build Coastguard Worker #include "tst_capability.h"
11*49cdfc7eSAndroid Build Coastguard Worker
12*49cdfc7eSAndroid Build Coastguard Worker #include "lapi/syscalls.h"
13*49cdfc7eSAndroid Build Coastguard Worker
tst_capget(struct tst_cap_user_header * hdr,struct tst_cap_user_data * data)14*49cdfc7eSAndroid Build Coastguard Worker int tst_capget(struct tst_cap_user_header *hdr,
15*49cdfc7eSAndroid Build Coastguard Worker struct tst_cap_user_data *data)
16*49cdfc7eSAndroid Build Coastguard Worker {
17*49cdfc7eSAndroid Build Coastguard Worker return tst_syscall(__NR_capget, hdr, data);
18*49cdfc7eSAndroid Build Coastguard Worker }
19*49cdfc7eSAndroid Build Coastguard Worker
tst_capset(struct tst_cap_user_header * hdr,const struct tst_cap_user_data * data)20*49cdfc7eSAndroid Build Coastguard Worker int tst_capset(struct tst_cap_user_header *hdr,
21*49cdfc7eSAndroid Build Coastguard Worker const struct tst_cap_user_data *data)
22*49cdfc7eSAndroid Build Coastguard Worker {
23*49cdfc7eSAndroid Build Coastguard Worker return tst_syscall(__NR_capset, hdr, data);
24*49cdfc7eSAndroid Build Coastguard Worker }
25*49cdfc7eSAndroid Build Coastguard Worker
do_cap_drop(uint32_t * set,uint32_t mask,const struct tst_cap * cap)26*49cdfc7eSAndroid Build Coastguard Worker static void do_cap_drop(uint32_t *set, uint32_t mask, const struct tst_cap *cap)
27*49cdfc7eSAndroid Build Coastguard Worker {
28*49cdfc7eSAndroid Build Coastguard Worker if (*set & mask) {
29*49cdfc7eSAndroid Build Coastguard Worker tst_res(TINFO, "Dropping %s(%d)", cap->name, cap->id);
30*49cdfc7eSAndroid Build Coastguard Worker *set &= ~mask;
31*49cdfc7eSAndroid Build Coastguard Worker }
32*49cdfc7eSAndroid Build Coastguard Worker }
33*49cdfc7eSAndroid Build Coastguard Worker
do_cap_req(uint32_t * permitted,uint32_t * effective,uint32_t mask,const struct tst_cap * cap)34*49cdfc7eSAndroid Build Coastguard Worker static void do_cap_req(uint32_t *permitted, uint32_t *effective, uint32_t mask,
35*49cdfc7eSAndroid Build Coastguard Worker const struct tst_cap *cap)
36*49cdfc7eSAndroid Build Coastguard Worker {
37*49cdfc7eSAndroid Build Coastguard Worker if (!(*permitted & mask))
38*49cdfc7eSAndroid Build Coastguard Worker tst_brk(TCONF, "Need %s(%d)", cap->name, cap->id);
39*49cdfc7eSAndroid Build Coastguard Worker
40*49cdfc7eSAndroid Build Coastguard Worker if (!(*effective & mask)) {
41*49cdfc7eSAndroid Build Coastguard Worker tst_res(TINFO, "Permitting %s(%d)", cap->name, cap->id);
42*49cdfc7eSAndroid Build Coastguard Worker *effective |= mask;
43*49cdfc7eSAndroid Build Coastguard Worker }
44*49cdfc7eSAndroid Build Coastguard Worker }
45*49cdfc7eSAndroid Build Coastguard Worker
tst_cap_action(struct tst_cap * cap)46*49cdfc7eSAndroid Build Coastguard Worker void tst_cap_action(struct tst_cap *cap)
47*49cdfc7eSAndroid Build Coastguard Worker {
48*49cdfc7eSAndroid Build Coastguard Worker struct tst_cap_user_header hdr = {
49*49cdfc7eSAndroid Build Coastguard Worker .version = 0x20080522,
50*49cdfc7eSAndroid Build Coastguard Worker .pid = tst_syscall(__NR_gettid),
51*49cdfc7eSAndroid Build Coastguard Worker };
52*49cdfc7eSAndroid Build Coastguard Worker struct tst_cap_user_data cur[2] = { {0} };
53*49cdfc7eSAndroid Build Coastguard Worker struct tst_cap_user_data new[2] = { {0} };
54*49cdfc7eSAndroid Build Coastguard Worker uint32_t act = cap->action;
55*49cdfc7eSAndroid Build Coastguard Worker uint32_t *pE = &new[CAP_TO_INDEX(cap->id)].effective;
56*49cdfc7eSAndroid Build Coastguard Worker uint32_t *pP = &new[CAP_TO_INDEX(cap->id)].permitted;
57*49cdfc7eSAndroid Build Coastguard Worker uint32_t mask = CAP_TO_MASK(cap->id);
58*49cdfc7eSAndroid Build Coastguard Worker
59*49cdfc7eSAndroid Build Coastguard Worker if (tst_capget(&hdr, cur))
60*49cdfc7eSAndroid Build Coastguard Worker tst_brk(TBROK | TERRNO, "tst_capget()");
61*49cdfc7eSAndroid Build Coastguard Worker
62*49cdfc7eSAndroid Build Coastguard Worker memcpy(new, cur, sizeof(new));
63*49cdfc7eSAndroid Build Coastguard Worker
64*49cdfc7eSAndroid Build Coastguard Worker switch (act) {
65*49cdfc7eSAndroid Build Coastguard Worker case TST_CAP_DROP:
66*49cdfc7eSAndroid Build Coastguard Worker do_cap_drop(pE, mask, cap);
67*49cdfc7eSAndroid Build Coastguard Worker break;
68*49cdfc7eSAndroid Build Coastguard Worker case TST_CAP_REQ:
69*49cdfc7eSAndroid Build Coastguard Worker do_cap_req(pP, pE, mask, cap);
70*49cdfc7eSAndroid Build Coastguard Worker break;
71*49cdfc7eSAndroid Build Coastguard Worker default:
72*49cdfc7eSAndroid Build Coastguard Worker tst_brk(TBROK, "Unrecognised action %d", cap->action);
73*49cdfc7eSAndroid Build Coastguard Worker }
74*49cdfc7eSAndroid Build Coastguard Worker
75*49cdfc7eSAndroid Build Coastguard Worker if (!memcmp(cur, new, sizeof(new)))
76*49cdfc7eSAndroid Build Coastguard Worker return;
77*49cdfc7eSAndroid Build Coastguard Worker
78*49cdfc7eSAndroid Build Coastguard Worker if (tst_capset(&hdr, new))
79*49cdfc7eSAndroid Build Coastguard Worker tst_brk(TBROK | TERRNO, "tst_capset(%s)", cap->name);
80*49cdfc7eSAndroid Build Coastguard Worker }
81*49cdfc7eSAndroid Build Coastguard Worker
tst_cap_setup(struct tst_cap * caps,unsigned int action_mask)82*49cdfc7eSAndroid Build Coastguard Worker void tst_cap_setup(struct tst_cap *caps, unsigned int action_mask)
83*49cdfc7eSAndroid Build Coastguard Worker {
84*49cdfc7eSAndroid Build Coastguard Worker struct tst_cap *cap;
85*49cdfc7eSAndroid Build Coastguard Worker
86*49cdfc7eSAndroid Build Coastguard Worker for (cap = caps; cap->action; cap++) {
87*49cdfc7eSAndroid Build Coastguard Worker if (cap->action & action_mask)
88*49cdfc7eSAndroid Build Coastguard Worker tst_cap_action(cap);
89*49cdfc7eSAndroid Build Coastguard Worker }
90*49cdfc7eSAndroid Build Coastguard Worker }
91