tomoyo: Coding style fix.

	int argv_count = bprm->argc;

	int envp_count = bprm->envc;

	bool truncated = false;

	if (!buffer)

		return NULL;

	len = snprintf(buffer, tomoyo_buffer_len - 1, "argv[]={ ");

		while (offset < PAGE_SIZE) {

			const char *kaddr = dump->data;

			const unsigned char c = kaddr[offset++];

			if (cp == last_start)

				*cp++ = '"';

			if (cp >= buffer + tomoyo_buffer_len - 32) {

	char *buffer = kmalloc(tomoyo_buffer_len, GFP_NOFS);

	int pos;

	u8 i;

	if (!buffer)

		return NULL;

	tomoyo_convert_time(ktime_get_real_seconds(), &stamp);

	pos = snprintf(buffer, tomoyo_buffer_len - 1,

		       "#%04u/%02u/%02u %02u:%02u:%02u# profile=%u mode=%s "

		       "granted=%s (global-pid=%u) task={ pid=%u ppid=%u "

		       "uid=%u gid=%u euid=%u egid=%u suid=%u sgid=%u "

		       "fsuid=%u fsgid=%u }", stamp.year, stamp.month,

		       stamp.day, stamp.hour, stamp.min, stamp.sec, r->profile,

		       tomoyo_mode[r->mode], tomoyo_yesno(r->granted), gpid,

		       tomoyo_sys_getpid(), tomoyo_sys_getppid(),

		       "#%04u/%02u/%02u %02u:%02u:%02u# profile=%u mode=%s granted=%s (global-pid=%u) task={ pid=%u ppid=%u uid=%u gid=%u euid=%u egid=%u suid=%u sgid=%u fsuid=%u fsgid=%u }",

		       stamp.year, stamp.month, stamp.day, stamp.hour,

		       stamp.min, stamp.sec, r->profile, tomoyo_mode[r->mode],

		       tomoyo_yesno(r->granted), gpid, tomoyo_sys_getpid(),

		       tomoyo_sys_getppid(),

		       from_kuid(&init_user_ns, current_uid()),

		       from_kgid(&init_user_ns, current_gid()),

		       from_kuid(&init_user_ns, current_euid()),

		struct tomoyo_mini_stat *stat;

		unsigned int dev;

		umode_t mode;

		if (!obj->stat_valid[i])

			continue;

		stat = &obj->stat[i];

		if (i & 1) {

			pos += snprintf(buffer + pos,

					tomoyo_buffer_len - 1 - pos,

					" path%u.parent={ uid=%u gid=%u "

					"ino=%lu perm=0%o }", (i >> 1) + 1,

					" path%u.parent={ uid=%u gid=%u ino=%lu perm=0%o }",

					(i >> 1) + 1,

					from_kuid(&init_user_ns, stat->uid),

					from_kgid(&init_user_ns, stat->gid),

					(unsigned long)stat->ino,

			continue;

		}

		pos += snprintf(buffer + pos, tomoyo_buffer_len - 1 - pos,

				" path%u={ uid=%u gid=%u ino=%lu major=%u"

				" minor=%u perm=0%o type=%s", (i >> 1) + 1,

				" path%u={ uid=%u gid=%u ino=%lu major=%u minor=%u perm=0%o type=%s",

				(i >> 1) + 1,

				from_kuid(&init_user_ns, stat->uid),

				from_kgid(&init_user_ns, stat->gid),

				(unsigned long)stat->ino,

	const char *symlink = NULL;

	int pos;

	const char *domainname = r->domain->domainname->name;

	header = tomoyo_print_header(r);

	if (!header)

		return NULL;

	len += strlen(domainname) + strlen(header) + 10;

	if (r->ee) {

		struct file *file = r->ee->bprm->file;

		realpath = tomoyo_realpath_from_path(&file->f_path);

		bprm_info = tomoyo_print_bprm(r->ee->bprm, &r->ee->dump);

		if (!realpath || !bprm_info)

	pos = snprintf(buf, len, "%s", header);

	if (realpath) {

		struct linux_binprm *bprm = r->ee->bprm;

		pos += snprintf(buf + pos, len - pos,

				" exec={ realpath=\"%s\" argc=%d envc=%d %s }",

				realpath, bprm->argc, bprm->envc, bprm_info);

	const u8 category = tomoyo_index2category[index] +

		TOMOYO_MAX_MAC_INDEX;

	struct tomoyo_profile *p;

	if (!tomoyo_policy_loaded)

		return false;

	p = tomoyo_profile(ns, profile);

	char *buf;

	struct tomoyo_log *entry;

	bool quota_exceeded = false;

	if (!tomoyo_get_audit(r->domain->ns, r->profile, r->type,

			      r->matched_acl, r->granted))

		goto out;

{

	va_list args;

	int len;

	va_start(args, fmt);

	len = vsnprintf((char *) &len, 1, fmt, args) + 1;

	va_end(args);

void tomoyo_read_log(struct tomoyo_io_buffer *head)

{

	struct tomoyo_log *ptr = NULL;

	if (head->r.w_pos)

		return;

	kfree(head->read_buf);

{

	va_list args;

	const int pos = strlen(buffer);

	va_start(args, fmt);

	vsnprintf(buffer + pos, len - pos - 1, fmt, args);

	va_end(args);

	while (head->r.w_pos) {

		const char *w = head->r.w[0];

		size_t len = strlen(w);

		if (len) {

			if (len > head->read_user_buf_avail)

				len = head->read_user_buf_avail;

	size_t len;

	size_t pos = head->r.avail;

	int size = head->readbuf_size - pos;

	if (size <= 0)

		return;

	va_start(args, fmt);

void tomoyo_init_policy_namespace(struct tomoyo_policy_namespace *ns)

{

	unsigned int idx;

	for (idx = 0; idx < TOMOYO_MAX_ACL_GROUPS; idx++)

		INIT_LIST_HEAD(&ns->acl_group[idx]);

	for (idx = 0; idx < TOMOYO_MAX_GROUP; idx++)

		u8 min_type = ptr->value_type[0];

		const u8 max_type = ptr->value_type[1];

		char buffer[128];

		buffer[0] = '\0';

		for (i = 0; i < 2; i++) {

			switch (min_type) {

{

	struct tomoyo_profile *ptr;

	struct tomoyo_profile *entry;

	if (profile >= TOMOYO_MAX_PROFILES)

		return NULL;

	ptr = ns->profile_ptr[profile];

{

	static struct tomoyo_profile tomoyo_null_profile;

	struct tomoyo_profile *ptr = ns->profile_ptr[profile];

	if (!ptr)

		ptr = &tomoyo_null_profile;

	return ptr;

static s8 tomoyo_find_yesno(const char *string, const char *find)

{

	const char *cp = strstr(string, find);

	if (cp) {

		cp += strlen(find);

		if (!strncmp(cp, "=yes", 4))

			    const char *find)

{

	const char *cp = strstr(string, find);

	if (cp)

		sscanf(cp + strlen(find), "=%u", i);

}

{

	u8 i;

	u8 config;

	if (!strcmp(name, "CONFIG")) {

		i = TOMOYO_MAX_MAC_INDEX + TOMOYO_MAX_MAC_CATEGORY_INDEX;

		config = profile->default_config;

		for (i = 0; i < TOMOYO_MAX_MAC_INDEX

			     + TOMOYO_MAX_MAC_CATEGORY_INDEX; i++) {

			int len = 0;

			if (i < TOMOYO_MAX_MAC_INDEX) {

				const u8 c = tomoyo_index2category[i];

				const char *category =

					tomoyo_category_keywords[c];

				len = strlen(category);

				if (strncmp(name, category, len) ||

				    name[len++] != ':' || name[len++] != ':')

		config = TOMOYO_CONFIG_USE_DEFAULT;

	} else {

		u8 mode;

		for (mode = 0; mode < 4; mode++)

			if (strstr(value, tomoyo_mode[mode]))

				/*

	unsigned int i;

	char *cp;

	struct tomoyo_profile *profile;

	if (sscanf(data, "PROFILE_VERSION=%u", &head->w.ns->profile_version)

	    == 1)

		return 0;

		const struct tomoyo_path_info *new_comment

			= tomoyo_get_name(cp);

		const struct tomoyo_path_info *old_comment;

		if (!new_comment)

			return -ENOMEM;

		spin_lock(&lock);

	struct tomoyo_policy_namespace *ns =

		container_of(head->r.ns, typeof(*ns), namespace_list);

	const struct tomoyo_profile *profile;

	if (head->r.eof)

		return;

 next:

			u8 i;

			const struct tomoyo_path_info *comment =

				profile->comment;

			tomoyo_print_namespace(head);

			tomoyo_io_printf(head, "%u-COMMENT=", index);

			tomoyo_set_string(head, comment ? comment->name : "");

			      + TOMOYO_MAX_MAC_CATEGORY_INDEX; head->r.bit++) {

			const u8 i = head->r.bit;

			const u8 config = profile->config[i];

			if (config == TOMOYO_CONFIG_USE_DEFAULT)

				continue;

			tomoyo_print_namespace(head);

	struct tomoyo_acl_param param = {

		/* .ns = &tomoyo_kernel_namespace, */

		.is_delete = is_delete,

		.list = &tomoyo_kernel_namespace.

		policy_list[TOMOYO_ID_MANAGER],

		.list = &tomoyo_kernel_namespace.policy_list[TOMOYO_ID_MANAGER],

	};

	int error = is_delete ? -ENOENT : -ENOMEM;

	if (!tomoyo_correct_domain(manager) &&

	    !tomoyo_correct_word(manager))

		return -EINVAL;

{

	if (head->r.eof)

		return;

	list_for_each_cookie(head->r.acl, &tomoyo_kernel_namespace.

			     policy_list[TOMOYO_ID_MANAGER]) {

	list_for_each_cookie(head->r.acl, &tomoyo_kernel_namespace.policy_list[TOMOYO_ID_MANAGER]) {

		struct tomoyo_manager *ptr =

			list_entry(head->r.acl, typeof(*ptr), head.list);

		if (ptr->head.is_deleted)

			continue;

		if (!tomoyo_flush(head))

	exe = tomoyo_get_exe();

	if (!exe)

		return false;

	list_for_each_entry_rcu(ptr, &tomoyo_kernel_namespace.

				policy_list[TOMOYO_ID_MANAGER], head.list) {

	list_for_each_entry_rcu(ptr, &tomoyo_kernel_namespace.policy_list[TOMOYO_ID_MANAGER], head.list) {

		if (!ptr->head.is_deleted &&

		    (!tomoyo_pathcmp(domainname, ptr->manager) ||

		     !strcmp(exe, ptr->manager->name))) {

	if (!found) { /* Reduce error messages. */

		static pid_t last_pid;

		const pid_t pid = current->pid;

		if (last_pid != pid) {

			printk(KERN_WARNING "%s ( %s ) is not permitted to "

			       "update policies.\n", domainname->name, exe);

			pr_warn("%s ( %s ) is not permitted to update policies.\n",

				domainname->name, exe);

			last_pid = pid;

		}

	}

	unsigned int pid;

	struct tomoyo_domain_info *domain = NULL;

	bool global_pid = false;

	if (strncmp(data, "select ", 7))

		return false;

	data += 7;

	if (sscanf(data, "pid=%u", &pid) == 1 ||

	    (global_pid = true, sscanf(data, "global-pid=%u", &pid) == 1)) {

		struct task_struct *p;

		rcu_read_lock();

		if (global_pid)

			p = find_task_by_pid_ns(pid, &init_pid_ns);

{

	const struct tomoyo_task_acl *p1 = container_of(a, typeof(*p1), head);

	const struct tomoyo_task_acl *p2 = container_of(b, typeof(*p2), head);

	return p1->domainname == p2->domainname;

}

static int tomoyo_write_task(struct tomoyo_acl_param *param)

{

	int error = -EINVAL;

	if (tomoyo_str_starts(&param->data, "manual_domain_transition ")) {

		struct tomoyo_task_acl e = {

			.head.type = TOMOYO_TYPE_MANUAL_TASK_ACL,

			.domainname = tomoyo_get_domainname(param),

		};

		if (e.domainname)

			error = tomoyo_update_domain(&e.head, sizeof(e), param,

						     tomoyo_same_task_acl,

	};

	static const struct {

		const char *keyword;

		int (*write) (struct tomoyo_acl_param *);

		int (*write)(struct tomoyo_acl_param *param);

	} tomoyo_callback[5] = {

		{ "file ", tomoyo_write_file },

		{ "network inet ", tomoyo_write_inet_network },

	const bool is_delete = head->w.is_delete;

	bool is_select = !is_delete && tomoyo_str_starts(&data, "select ");

	unsigned int profile;

	if (*data == '<') {

		int ret = 0;

		domain = NULL;

		if (is_delete)

			ret = tomoyo_delete_domain(data);

	}

	for (profile = 0; profile < TOMOYO_MAX_DOMAIN_INFO_FLAGS; profile++) {

		const char *cp = tomoyo_dif[profile];

		if (strncmp(data, cp, strlen(cp) - 1))

			continue;

		domain->flags[profile] = !is_delete;

			const struct tomoyo_envp *envp =

				(typeof(envp)) (argv + cond->argc);

			u16 skip;

			for (skip = 0; skip < head->r.cond_index; skip++) {

				const u8 left = condp->left;

				const u8 right = condp->right;

				condp++;

				switch (left) {

				case TOMOYO_ARGV_ENTRY:

				const u8 match = condp->equals;

				const u8 left = condp->left;

				const u8 right = condp->right;

				if (!tomoyo_flush(head))

					return false;

				condp++;

				case TOMOYO_ARGV_ENTRY:

					tomoyo_io_printf(head,

							 "exec.argv[%lu]%s=\"",

							 argv->index, argv->

							 is_not ? "!" : "");

							 argv->index, argv->is_not ? "!" : "");

					tomoyo_set_string(head,

							  argv->value->name);

					tomoyo_set_string(head, "\"");

							  "exec.envp[\"");

					tomoyo_set_string(head,

							  envp->name->name);

					tomoyo_io_printf(head, "\"]%s=", envp->

							 is_not ? "!" : "");

					tomoyo_io_printf(head, "\"]%s=", envp->is_not ? "!" : "");

					if (envp->value) {

						tomoyo_set_string(head, "\"");

						tomoyo_set_string(head, envp->

								  value->name);

						tomoyo_set_string(head, envp->value->name);

						tomoyo_set_string(head, "\"");

					} else {

						tomoyo_set_string(head,

		struct tomoyo_path_acl *ptr =

			container_of(acl, typeof(*ptr), head);

		const u16 perm = ptr->perm;

		for (bit = 0; bit < TOMOYO_MAX_PATH_OPERATION; bit++) {

			if (!(perm & (1 << bit)))

				continue;

	} else if (acl_type == TOMOYO_TYPE_MANUAL_TASK_ACL) {

		struct tomoyo_task_acl *ptr =

			container_of(acl, typeof(*ptr), head);

		tomoyo_set_group(head, "task ");

		tomoyo_set_string(head, "manual_domain_transition ");

		tomoyo_set_string(head, ptr->domainname->name);

		struct tomoyo_path2_acl *ptr =

			container_of(acl, typeof(*ptr), head);

		const u8 perm = ptr->perm;

		for (bit = 0; bit < TOMOYO_MAX_PATH2_OPERATION; bit++) {

			if (!(perm & (1 << bit)))

				continue;

		struct tomoyo_path_number_acl *ptr =

			container_of(acl, typeof(*ptr), head);

		const u8 perm = ptr->perm;

		for (bit = 0; bit < TOMOYO_MAX_PATH_NUMBER_OPERATION; bit++) {

			if (!(perm & (1 << bit)))

				continue;

		struct tomoyo_mkdev_acl *ptr =

			container_of(acl, typeof(*ptr), head);

		const u8 perm = ptr->perm;

		for (bit = 0; bit < TOMOYO_MAX_MKDEV_OPERATION; bit++) {

			if (!(perm & (1 << bit)))

				continue;

					  ->name);

		} else {

			char buf[128];

			tomoyo_print_ip(buf, sizeof(buf), &ptr->address);

			tomoyo_io_printf(head, "%s", buf);

		}

	} else if (acl_type == TOMOYO_TYPE_MOUNT_ACL) {

		struct tomoyo_mount_acl *ptr =

			container_of(acl, typeof(*ptr), head);

		tomoyo_set_group(head, "file mount");

		tomoyo_print_name_union(head, &ptr->dev_name);

		tomoyo_print_name_union(head, &ptr->dir_name);

	list_for_each_cookie(head->r.acl, list) {

		struct tomoyo_acl_info *ptr =

			list_entry(head->r.acl, typeof(*ptr), list);

		if (!tomoyo_print_entry(head, ptr))

			return false;

	}

	list_for_each_cookie(head->r.domain, &tomoyo_domain_list) {

		struct tomoyo_domain_info *domain =

			list_entry(head->r.domain, typeof(*domain), list);

		switch (head->r.step) {

		u8 i;

		switch (head->r.step) {

		case 0:

			if (domain->is_deleted &&

			    !head->r.print_this_domain_only)

		.data = head->write_buf,

	};

	u8 i;

	if (tomoyo_str_starts(&param.data, "aggregator "))

		return tomoyo_write_aggregator(&param);

	for (i = 0; i < TOMOYO_MAX_TRANSITION_TYPE; i++)

	if (tomoyo_str_starts(&param.data, "acl_group ")) {

		unsigned int group;

		char *data;

		group = simple_strtoul(param.data, &data, 10);

		if (group < TOMOYO_MAX_ACL_GROUPS && *data++ == ' ')

			return tomoyo_write_domain2

	struct tomoyo_policy_namespace *ns =

		container_of(head->r.ns, typeof(*ns), namespace_list);

	struct list_head *list = &ns->group_list[idx];

	list_for_each_cookie(head->r.group, list) {

		struct tomoyo_group *group =

			list_entry(head->r.group, typeof(*group), head.list);

		list_for_each_cookie(head->r.acl, &group->member_list) {

			struct tomoyo_acl_head *ptr =

				list_entry(head->r.acl, typeof(*ptr), list);

			if (ptr->is_deleted)

				continue;

			if (!tomoyo_flush(head))

							   head)->number);

			} else if (idx == TOMOYO_ADDRESS_GROUP) {

				char buffer[128];

				struct tomoyo_address_group *member =

					container_of(ptr, typeof(*member),

						     head);

				tomoyo_print_ip(buffer, sizeof(buffer),

						&member->address);

				tomoyo_io_printf(head, " %s", buffer);

	struct tomoyo_policy_namespace *ns =

		container_of(head->r.ns, typeof(*ns), namespace_list);

	struct list_head *list = &ns->policy_list[idx];

	list_for_each_cookie(head->r.acl, list) {

		struct tomoyo_acl_head *acl =

			container_of(head->r.acl, typeof(*acl), list);