xref: /OK3568_Linux_fs/kernel/include/linux/device_cgroup.h (revision 4882a59341e53eb6f0b4789bf948001014eff981) 
1*4882a593Smuzhiyun /* SPDX-License-Identifier: GPL-2.0 */
2*4882a593Smuzhiyun #include <linux/fs.h>
3*4882a593Smuzhiyun 
4*4882a593Smuzhiyun #define DEVCG_ACC_MKNOD 1
5*4882a593Smuzhiyun #define DEVCG_ACC_READ  2
6*4882a593Smuzhiyun #define DEVCG_ACC_WRITE 4
7*4882a593Smuzhiyun #define DEVCG_ACC_MASK (DEVCG_ACC_MKNOD | DEVCG_ACC_READ | DEVCG_ACC_WRITE)
8*4882a593Smuzhiyun 
9*4882a593Smuzhiyun #define DEVCG_DEV_BLOCK 1
10*4882a593Smuzhiyun #define DEVCG_DEV_CHAR  2
11*4882a593Smuzhiyun #define DEVCG_DEV_ALL   4  /* this represents all devices */
12*4882a593Smuzhiyun 
13*4882a593Smuzhiyun 
14*4882a593Smuzhiyun #if defined(CONFIG_CGROUP_DEVICE) || defined(CONFIG_CGROUP_BPF)
15*4882a593Smuzhiyun int devcgroup_check_permission(short type, u32 major, u32 minor,
16*4882a593Smuzhiyun 			       short access);
devcgroup_inode_permission(struct inode * inode,int mask)17*4882a593Smuzhiyun static inline int devcgroup_inode_permission(struct inode *inode, int mask)
18*4882a593Smuzhiyun {
19*4882a593Smuzhiyun 	short type, access = 0;
20*4882a593Smuzhiyun 
21*4882a593Smuzhiyun 	if (likely(!inode->i_rdev))
22*4882a593Smuzhiyun 		return 0;
23*4882a593Smuzhiyun 
24*4882a593Smuzhiyun 	if (S_ISBLK(inode->i_mode))
25*4882a593Smuzhiyun 		type = DEVCG_DEV_BLOCK;
26*4882a593Smuzhiyun 	else if (S_ISCHR(inode->i_mode))
27*4882a593Smuzhiyun 		type = DEVCG_DEV_CHAR;
28*4882a593Smuzhiyun 	else
29*4882a593Smuzhiyun 		return 0;
30*4882a593Smuzhiyun 
31*4882a593Smuzhiyun 	if (mask & MAY_WRITE)
32*4882a593Smuzhiyun 		access |= DEVCG_ACC_WRITE;
33*4882a593Smuzhiyun 	if (mask & MAY_READ)
34*4882a593Smuzhiyun 		access |= DEVCG_ACC_READ;
35*4882a593Smuzhiyun 
36*4882a593Smuzhiyun 	return devcgroup_check_permission(type, imajor(inode), iminor(inode),
37*4882a593Smuzhiyun 					  access);
38*4882a593Smuzhiyun }
39*4882a593Smuzhiyun 
devcgroup_inode_mknod(int mode,dev_t dev)40*4882a593Smuzhiyun static inline int devcgroup_inode_mknod(int mode, dev_t dev)
41*4882a593Smuzhiyun {
42*4882a593Smuzhiyun 	short type;
43*4882a593Smuzhiyun 
44*4882a593Smuzhiyun 	if (!S_ISBLK(mode) && !S_ISCHR(mode))
45*4882a593Smuzhiyun 		return 0;
46*4882a593Smuzhiyun 
47*4882a593Smuzhiyun 	if (S_ISCHR(mode) && dev == WHITEOUT_DEV)
48*4882a593Smuzhiyun 		return 0;
49*4882a593Smuzhiyun 
50*4882a593Smuzhiyun 	if (S_ISBLK(mode))
51*4882a593Smuzhiyun 		type = DEVCG_DEV_BLOCK;
52*4882a593Smuzhiyun 	else
53*4882a593Smuzhiyun 		type = DEVCG_DEV_CHAR;
54*4882a593Smuzhiyun 
55*4882a593Smuzhiyun 	return devcgroup_check_permission(type, MAJOR(dev), MINOR(dev),
56*4882a593Smuzhiyun 					  DEVCG_ACC_MKNOD);
57*4882a593Smuzhiyun }
58*4882a593Smuzhiyun 
59*4882a593Smuzhiyun #else
devcgroup_check_permission(short type,u32 major,u32 minor,short access)60*4882a593Smuzhiyun static inline int devcgroup_check_permission(short type, u32 major, u32 minor,
61*4882a593Smuzhiyun 			       short access)
62*4882a593Smuzhiyun { return 0; }
devcgroup_inode_permission(struct inode * inode,int mask)63*4882a593Smuzhiyun static inline int devcgroup_inode_permission(struct inode *inode, int mask)
64*4882a593Smuzhiyun { return 0; }
devcgroup_inode_mknod(int mode,dev_t dev)65*4882a593Smuzhiyun static inline int devcgroup_inode_mknod(int mode, dev_t dev)
66*4882a593Smuzhiyun { return 0; }
67*4882a593Smuzhiyun #endif
68