selinux: do not allocate hashtabs dynamically

	return nel == 0 ? 0 : roundup_pow_of_two(nel);

}

struct hashtab *hashtab_create(u32 (*hash_value)(struct hashtab *h, const void *key),

			       int (*keycmp)(struct hashtab *h, const void *key1, const void *key2),

int hashtab_init(struct hashtab *h,

		 u32 (*hash_value)(struct hashtab *h, const void *key),

		 int (*keycmp)(struct hashtab *h, const void *key1,

			       const void *key2),

		 u32 nel_hint)

{

	struct hashtab *p;

	u32 i, size = hashtab_compute_size(nel_hint);

	p = kzalloc(sizeof(*p), GFP_KERNEL);

	if (!p)

		return p;

	p->size = size;

	p->nel = 0;

	p->hash_value = hash_value;

	p->keycmp = keycmp;

	if (!size)

		return p;

	p->htable = kmalloc_array(size, sizeof(*p->htable), GFP_KERNEL);

	if (!p->htable) {

		kfree(p);

		return NULL;

	}

	for (i = 0; i < size; i++)

		p->htable[i] = NULL;

	h->size = hashtab_compute_size(nel_hint);

	h->nel = 0;

	h->hash_value = hash_value;

	h->keycmp = keycmp;

	if (!h->size)

		return 0;

	return p;

	h->htable = kcalloc(h->size, sizeof(*h->htable), GFP_KERNEL);

	return h->htable ? 0 : -ENOMEM;

}

int hashtab_insert(struct hashtab *h, void *key, void *datum)

	cond_resched();

	if (!h || !h->size || h->nel == HASHTAB_MAX_NODES)

	if (!h->size || h->nel == HASHTAB_MAX_NODES)

		return -EINVAL;

	hvalue = h->hash_value(h, key);

	u32 hvalue;

	struct hashtab_node *cur;

	if (!h || !h->size)

	if (!h->size)

		return NULL;

	hvalue = h->hash_value(h, key);

	u32 i;

	struct hashtab_node *cur, *temp;

	if (!h)

		return;

	for (i = 0; i < h->size; i++) {

		cur = h->htable[i];

		while (cur) {

	kfree(h->htable);

	h->htable = NULL;

	kfree(h);

}

int hashtab_map(struct hashtab *h,

	int ret;

	struct hashtab_node *cur;

	if (!h)

		return 0;

	for (i = 0; i < h->size; i++) {

		cur = h->htable[i];

		while (cur) {

};

/*

 * Creates a new hash table with the specified characteristics.

 * Initializes a new hash table with the specified characteristics.

 *

 * Returns NULL if insufficent space is available or

 * the new hash table otherwise.

 * Returns -ENOMEM if insufficient space is available or 0 otherwise.

 */

struct hashtab *hashtab_create(u32 (*hash_value)(struct hashtab *h, const void *key),

			       int (*keycmp)(struct hashtab *h, const void *key1, const void *key2),

int hashtab_init(struct hashtab *h,

		 u32 (*hash_value)(struct hashtab *h, const void *key),

		 int (*keycmp)(struct hashtab *h, const void *key1,

			       const void *key2),

		 u32 nel_hint);

/*

	if (!l->sens || l->sens > p->p_levels.nprim)

		return 0;

	levdatum = hashtab_search(p->p_levels.table,

	levdatum = hashtab_search(&p->p_levels.table,

				  sym_name(p, SYM_LEVELS, l->sens - 1));

	if (!levdatum)

		return 0;

			*(next_cat++) = '\0';

		/* Parse sensitivity. */

		levdatum = hashtab_search(pol->p_levels.table, sensitivity);

		levdatum = hashtab_search(&pol->p_levels.table, sensitivity);

		if (!levdatum)

			return -EINVAL;

		context->range.level[l].sens = levdatum->level->sens;

				*rngptr++ = '\0';

			}

			catdatum = hashtab_search(pol->p_cats.table, cur_cat);

			catdatum = hashtab_search(&pol->p_cats.table, cur_cat);

			if (!catdatum)

				return -EINVAL;

			if (rngptr == NULL)

				continue;

			rngdatum = hashtab_search(pol->p_cats.table, rngptr);

			rngdatum = hashtab_search(&pol->p_cats.table, rngptr);

			if (!rngdatum)

				return -EINVAL;

		return 0;

	for (l = 0; l < 2; l++) {

		levdatum = hashtab_search(newp->p_levels.table,

		levdatum = hashtab_search(&newp->p_levels.table,

					  sym_name(oldp, SYM_LEVELS,

						   oldc->range.level[l].sens - 1));

					      node, i) {

			int rc;

			catdatum = hashtab_search(newp->p_cats.table,

			catdatum = hashtab_search(&newp->p_cats.table,

						  sym_name(oldp, SYM_CATS, i));

			if (!catdatum)

				return -EINVAL;

		rtr.source_type = scontext->type;

		rtr.target_type = tcontext->type;

		rtr.target_class = tclass;

		r = hashtab_search(p->range_tr, &rtr);

		r = hashtab_search(&p->range_tr, &rtr);

		if (r)

			return mls_range_set(newcontext, r);

	kfree(key);

	if (datum) {

		comdatum = datum;

		hashtab_map(comdatum->permissions.table, perm_destroy, NULL);

		hashtab_destroy(comdatum->permissions.table);

		hashtab_map(&comdatum->permissions.table, perm_destroy, NULL);

		hashtab_destroy(&comdatum->permissions.table);

	}

	kfree(datum);

	return 0;

	kfree(key);

	if (datum) {

		cladatum = datum;

		hashtab_map(cladatum->permissions.table, perm_destroy, NULL);

		hashtab_destroy(cladatum->permissions.table);

		hashtab_map(&cladatum->permissions.table, perm_destroy, NULL);

		hashtab_destroy(&cladatum->permissions.table);

		constraint = cladatum->constraints;

		while (constraint) {

			e = constraint->expr;

	if (!key)

		goto out;

	rc = hashtab_insert(p->p_roles.table, key, role);

	rc = hashtab_insert(&p->p_roles.table, key, role);

	if (rc)

		goto out;

	int i;

	for (i = 0; i < SYM_NUM; i++)

		hash_eval(s[i].table, symtab_name[i]);

		hash_eval(&s[i].table, symtab_name[i]);

}

#else

		if (!p->sym_val_to_name[i])

			return -ENOMEM;

		rc = hashtab_map(p->symtab[i].table, index_f[i], p);

		rc = hashtab_map(&p->symtab[i].table, index_f[i], p);

		if (rc)

			goto out;

	}

	for (i = 0; i < SYM_NUM; i++) {

		cond_resched();

		hashtab_map(p->symtab[i].table, destroy_f[i], NULL);

		hashtab_destroy(p->symtab[i].table);

		hashtab_map(&p->symtab[i].table, destroy_f[i], NULL);

		hashtab_destroy(&p->symtab[i].table);

	}

	for (i = 0; i < SYM_NUM; i++)

	cond_policydb_destroy(p);

	hashtab_map(p->role_tr, role_tr_destroy, NULL);

	hashtab_destroy(p->role_tr);

	hashtab_map(&p->role_tr, role_tr_destroy, NULL);

	hashtab_destroy(&p->role_tr);

	for (ra = p->role_allow; ra; ra = ra->next) {

		cond_resched();

	}

	kfree(lra);

	hashtab_map(p->filename_trans, filenametr_destroy, NULL);

	hashtab_destroy(p->filename_trans);

	hashtab_map(&p->filename_trans, filenametr_destroy, NULL);

	hashtab_destroy(&p->filename_trans);

	hashtab_map(p->range_tr, range_tr_destroy, NULL);

	hashtab_destroy(p->range_tr);

	hashtab_map(&p->range_tr, range_tr_destroy, NULL);

	hashtab_destroy(&p->range_tr);

	if (p->type_attr_map_array) {

		for (i = 0; i < p->p_types.nprim; i++)

		goto bad;

	for (i = 0; i < nel; i++) {

		rc = perm_read(p, comdatum->permissions.table, fp);

		rc = perm_read(p, &comdatum->permissions.table, fp);

		if (rc)

			goto bad;

	}

			goto bad;

		rc = -EINVAL;

		cladatum->comdatum = hashtab_search(p->p_commons.table, cladatum->comkey);

		cladatum->comdatum = hashtab_search(&p->p_commons.table,

						    cladatum->comkey);

		if (!cladatum->comdatum) {

			pr_err("SELinux:  unknown common %s\n",

			       cladatum->comkey);

		}

	}

	for (i = 0; i < nel; i++) {

		rc = perm_read(p, cladatum->permissions.table, fp);

		rc = perm_read(p, &cladatum->permissions.table, fp);

		if (rc)

			goto bad;

	}

	if (p->policyvers < POLICYDB_VERSION_BOUNDARY)

		return 0;

	rc = hashtab_map(p->p_users.table,

			 user_bounds_sanity_check, p);

	rc = hashtab_map(&p->p_users.table, user_bounds_sanity_check, p);

	if (rc)

		return rc;

	rc = hashtab_map(p->p_roles.table,

			 role_bounds_sanity_check, p);

	rc = hashtab_map(&p->p_roles.table, role_bounds_sanity_check, p);

	if (rc)

		return rc;

	rc = hashtab_map(p->p_types.table,

			 type_bounds_sanity_check, p);

	rc = hashtab_map(&p->p_types.table, type_bounds_sanity_check, p);

	if (rc)

		return rc;

{

	struct class_datum *cladatum;

	cladatum = hashtab_search(p->p_classes.table, name);

	cladatum = hashtab_search(&p->p_classes.table, name);

	if (!cladatum)

		return 0;

	cladatum = p->class_val_to_struct[tclass-1];

	comdatum = cladatum->comdatum;

	if (comdatum)

		perdatum = hashtab_search(comdatum->permissions.table,

					  name);

		perdatum = hashtab_search(&comdatum->permissions.table, name);

	if (!perdatum)

		perdatum = hashtab_search(cladatum->permissions.table,

					  name);

		perdatum = hashtab_search(&cladatum->permissions.table, name);

	if (!perdatum)

		return 0;

	nel = le32_to_cpu(buf[0]);

	p->range_tr = hashtab_create(rangetr_hash, rangetr_cmp, nel);

	if (!p->range_tr)

		return -ENOMEM;

	rc = hashtab_init(&p->range_tr, rangetr_hash, rangetr_cmp, nel);

	if (rc)

		return rc;

	for (i = 0; i < nel; i++) {

		rc = -ENOMEM;

			goto out;

		}

		rc = hashtab_insert(p->range_tr, rt, r);

		rc = hashtab_insert(&p->range_tr, rt, r);

		if (rc)

			goto out;

		rt = NULL;

		r = NULL;

	}

	hash_eval(p->range_tr, "rangetr");

	hash_eval(&p->range_tr, "rangetr");

	rc = 0;

out:

	kfree(rt);

	otype = le32_to_cpu(buf[3]);

	last = NULL;

	datum = hashtab_search(p->filename_trans, &key);

	datum = hashtab_search(&p->filename_trans, &key);

	while (datum) {

		if (unlikely(ebitmap_get_bit(&datum->stypes, stype - 1))) {

			/* conflicting/duplicate rules are ignored */

			if (!ft)

				goto out;

			rc = hashtab_insert(p->filename_trans, ft, datum);

			rc = hashtab_insert(&p->filename_trans, ft, datum);

			if (rc)

				goto out;

			name = NULL;

	ft->tclass = tclass;

	ft->name = name;

	rc = hashtab_insert(p->filename_trans, ft, first);

	rc = hashtab_insert(&p->filename_trans, ft, first);

	if (rc == -EEXIST)

		pr_err("SELinux:  Duplicate filename transition key\n");

	if (rc)

	if (p->policyvers < POLICYDB_VERSION_COMP_FTRANS) {

		p->compat_filename_trans_count = nel;

		p->filename_trans = hashtab_create(filenametr_hash,

		rc = hashtab_init(&p->filename_trans, filenametr_hash,

				  filenametr_cmp, (1 << 11));

		if (!p->filename_trans)

			return -ENOMEM;

		if (rc)

			return rc;

		for (i = 0; i < nel; i++) {

			rc = filename_trans_read_helper_compat(p, fp);

				return rc;

		}

	} else {

		p->filename_trans = hashtab_create(filenametr_hash,

		rc = hashtab_init(&p->filename_trans, filenametr_hash,

				  filenametr_cmp, nel);

		if (!p->filename_trans)

			return -ENOMEM;

		if (rc)

			return rc;

		for (i = 0; i < nel; i++) {

			rc = filename_trans_read_helper(p, fp);

				return rc;

		}

	}

	hash_eval(p->filename_trans, "filenametr");

	hash_eval(&p->filename_trans, "filenametr");

	return 0;

}

		}

		for (j = 0; j < nel; j++) {

			rc = read_f[i](p, p->symtab[i].table, fp);

			rc = read_f[i](p, &p->symtab[i].table, fp);

			if (rc)

				goto bad;

		}

		goto bad;

	nel = le32_to_cpu(buf[0]);

	rc = -ENOMEM;

	p->role_tr = hashtab_create(role_trans_hash, role_trans_cmp, nel);

	if (!p->role_tr)

	rc = hashtab_init(&p->role_tr, role_trans_hash, role_trans_cmp, nel);

	if (rc)

		goto bad;

	for (i = 0; i < nel; i++) {

		rc = -ENOMEM;

		    !policydb_role_isvalid(p, rtd->new_role))

			goto bad;

		rc = hashtab_insert(p->role_tr, rtk, rtd);

		rc = hashtab_insert(&p->role_tr, rtk, rtd);

		if (rc)

			goto bad;

	__le32 buf[1];

	int rc;

	buf[0] = cpu_to_le32(p->role_tr->nel);

	buf[0] = cpu_to_le32(p->role_tr.nel);

	rc = put_entry(buf, sizeof(u32), 1, fp);

	if (rc)

		return rc;

	return hashtab_map(p->role_tr, role_trans_write_one, &pd);

	return hashtab_map(&p->role_tr, role_trans_write_one, &pd);

}

static int role_allow_write(struct role_allow *r, void *fp)

	buf[0] = cpu_to_le32(len);

	buf[1] = cpu_to_le32(comdatum->value);

	buf[2] = cpu_to_le32(comdatum->permissions.nprim);

	buf[3] = cpu_to_le32(comdatum->permissions.table->nel);

	buf[3] = cpu_to_le32(comdatum->permissions.table.nel);

	rc = put_entry(buf, sizeof(u32), 4, fp);

	if (rc)

		return rc;

	if (rc)

		return rc;

	rc = hashtab_map(comdatum->permissions.table, perm_write, fp);

	rc = hashtab_map(&comdatum->permissions.table, perm_write, fp);

	if (rc)

		return rc;

	buf[1] = cpu_to_le32(len2);

	buf[2] = cpu_to_le32(cladatum->value);

	buf[3] = cpu_to_le32(cladatum->permissions.nprim);

	if (cladatum->permissions.table)

		buf[4] = cpu_to_le32(cladatum->permissions.table->nel);

	else

		buf[4] = 0;

	buf[4] = cpu_to_le32(cladatum->permissions.table.nel);

	buf[5] = cpu_to_le32(ncons);

	rc = put_entry(buf, sizeof(u32), 6, fp);

	if (rc)

			return rc;

	}

	rc = hashtab_map(cladatum->permissions.table, perm_write, fp);

	rc = hashtab_map(&cladatum->permissions.table, perm_write, fp);

	if (rc)

		return rc;

	pd.p = p;

	pd.fp = fp;

	buf[0] = cpu_to_le32(p->range_tr->nel);

	buf[0] = cpu_to_le32(p->range_tr.nel);

	rc = put_entry(buf, sizeof(u32), 1, fp);

	if (rc)

		return rc;

	/* actually write all of the entries */

	rc = hashtab_map(p->range_tr, range_write_helper, &pd);

	rc = hashtab_map(&p->range_tr, range_write_helper, &pd);

	if (rc)

		return rc;

		if (rc)

			return rc;

		rc = hashtab_map(p->filename_trans,

		rc = hashtab_map(&p->filename_trans,

				 filename_write_helper_compat, fp);

	} else {

		buf[0] = cpu_to_le32(p->filename_trans->nel);

		buf[0] = cpu_to_le32(p->filename_trans.nel);

		rc = put_entry(buf, sizeof(u32), 1, fp);

		if (rc)

			return rc;