3 * Copyright (C) 1992 Krishna Balasubramanian
5 * Sep 1997 - Call suser() last after "normal" permission checks so we
6 * get BSD style process accounting right.
7 * Occurs in several places in the IPC code.
8 * Chris Evans, <chris@ferret.lmh.ox.ac.uk>
9 * Nov 1999 - ipc helper functions, unified SMP locking
10 * Manfred Spraul <manfred@colorfullife.com>
11 * Oct 2002 - One lock per IPC id. RCU ipc_free for lock-free grow_ary().
12 * Mingming Cao <cmm@us.ibm.com>
13 * Mar 2006 - support for audit of ipc object properties
14 * Dustin Kirkland <dustin.kirkland@us.ibm.com>
15 * Jun 2006 - namespaces ssupport
17 * Pavel Emelianov <xemul@openvz.org>
21 #include <linux/shm.h>
22 #include <linux/init.h>
23 #include <linux/msg.h>
24 #include <linux/smp_lock.h>
25 #include <linux/vmalloc.h>
26 #include <linux/slab.h>
27 #include <linux/capability.h>
28 #include <linux/highuid.h>
29 #include <linux/security.h>
30 #include <linux/rcupdate.h>
31 #include <linux/workqueue.h>
32 #include <linux/seq_file.h>
33 #include <linux/proc_fs.h>
34 #include <linux/audit.h>
35 #include <linux/nsproxy.h>
36 #include <linux/vs_base.h>
37 #include <linux/vserver/global.h>
39 #include <asm/unistd.h>
43 struct ipc_proc_iface {
47 int (*show)(struct seq_file *, void *);
50 struct ipc_namespace init_ipc_ns = {
52 .refcount = ATOMIC_INIT(2),
57 static struct ipc_namespace *clone_ipc_ns(struct ipc_namespace *old_ns)
60 struct ipc_namespace *ns;
63 ns = kmalloc(sizeof(struct ipc_namespace), GFP_KERNEL);
67 err = sem_init_ns(ns);
70 err = msg_init_ns(ns);
73 err = shm_init_ns(ns);
78 atomic_inc(&vs_global_ipc_ns);
91 int unshare_ipcs(unsigned long unshare_flags, struct ipc_namespace **new_ipc)
93 struct ipc_namespace *new;
95 if (unshare_flags & CLONE_NEWIPC) {
96 if (!capable(CAP_SYS_ADMIN))
99 new = clone_ipc_ns(current->nsproxy->ipc_ns);
109 int copy_ipcs(unsigned long flags, struct task_struct *tsk)
111 struct ipc_namespace *old_ns = tsk->nsproxy->ipc_ns;
112 struct ipc_namespace *new_ns;
120 if (!(flags & CLONE_NEWIPC))
123 if (!capable(CAP_SYS_ADMIN)) {
128 new_ns = clone_ipc_ns(old_ns);
134 tsk->nsproxy->ipc_ns = new_ns;
140 void free_ipc_ns(struct kref *kref)
142 struct ipc_namespace *ns;
144 ns = container_of(kref, struct ipc_namespace, kref);
148 atomic_dec(&vs_global_ipc_ns);
154 * ipc_init - initialise IPC subsystem
156 * The various system5 IPC resources (semaphores, messages and shared
157 * memory are initialised
160 static int __init ipc_init(void)
167 __initcall(ipc_init);
170 * ipc_init_ids - initialise IPC identifiers
171 * @ids: Identifier set
172 * @size: Number of identifiers
174 * Given a size for the ipc identifier range (limited below IPCMNI)
175 * set up the sequence range to use then allocate and initialise the
179 void __ipc_init ipc_init_ids(struct ipc_ids* ids, int size)
183 mutex_init(&ids->mutex);
191 int seq_limit = INT_MAX/SEQ_MULTIPLIER;
192 if(seq_limit > USHRT_MAX)
193 ids->seq_max = USHRT_MAX;
195 ids->seq_max = seq_limit;
198 ids->entries = ipc_rcu_alloc(sizeof(struct kern_ipc_perm *)*size +
199 sizeof(struct ipc_id_ary));
201 if(ids->entries == NULL) {
202 printk(KERN_ERR "ipc_init_ids() failed, ipc service disabled.\n");
204 ids->entries = &ids->nullentry;
206 ids->entries->size = size;
208 ids->entries->p[i] = NULL;
211 #ifdef CONFIG_PROC_FS
212 static struct file_operations sysvipc_proc_fops;
214 * ipc_init_proc_interface - Create a proc interface for sysipc types
215 * using a seq_file interface.
216 * @path: Path in procfs
217 * @header: Banner to be printed at the beginning of the file.
218 * @ids: ipc id table to iterate.
219 * @show: show routine.
221 void __init ipc_init_proc_interface(const char *path, const char *header,
222 int ids, int (*show)(struct seq_file *, void *))
224 struct proc_dir_entry *pde;
225 struct ipc_proc_iface *iface;
227 iface = kmalloc(sizeof(*iface), GFP_KERNEL);
231 iface->header = header;
235 pde = create_proc_entry(path,
236 S_IRUGO, /* world readable */
237 NULL /* parent dir */);
240 pde->proc_fops = &sysvipc_proc_fops;
248 * ipc_findkey - find a key in an ipc identifier set
249 * @ids: Identifier set
250 * @key: The key to find
252 * Requires ipc_ids.mutex locked.
253 * Returns the identifier if found or -1 if not.
256 int ipc_findkey(struct ipc_ids* ids, key_t key)
259 struct kern_ipc_perm* p;
260 int max_id = ids->max_id;
263 * rcu_dereference() is not needed here
264 * since ipc_ids.mutex is held
266 for (id = 0; id <= max_id; id++) {
267 p = ids->entries->p[id];
277 * Requires ipc_ids.mutex locked
279 static int grow_ary(struct ipc_ids* ids, int newsize)
281 struct ipc_id_ary* new;
282 struct ipc_id_ary* old;
284 int size = ids->entries->size;
291 new = ipc_rcu_alloc(sizeof(struct kern_ipc_perm *)*newsize +
292 sizeof(struct ipc_id_ary));
296 memcpy(new->p, ids->entries->p, sizeof(struct kern_ipc_perm *)*size);
297 for(i=size;i<newsize;i++) {
303 * Use rcu_assign_pointer() to make sure the memcpyed contents
304 * of the new array are visible before the new array becomes visible.
306 rcu_assign_pointer(ids->entries, new);
308 __ipc_fini_ids(ids, old);
313 * ipc_addid - add an IPC identifier
314 * @ids: IPC identifier set
315 * @new: new IPC permission set
316 * @size: new size limit for the id array
318 * Add an entry 'new' to the IPC arrays. The permissions object is
319 * initialised and the first free entry is set up and the id assigned
320 * is returned. The list is returned in a locked state on success.
321 * On failure the list is not locked and -1 is returned.
323 * Called with ipc_ids.mutex held.
326 int ipc_addid(struct ipc_ids* ids, struct kern_ipc_perm* new, int size)
330 size = grow_ary(ids,size);
333 * rcu_dereference()() is not needed here since
334 * ipc_ids.mutex is held
336 for (id = 0; id < size; id++) {
337 if(ids->entries->p[id] == NULL)
343 if (id > ids->max_id)
346 new->cuid = new->uid = current->euid;
347 new->gid = new->cgid = current->egid;
349 new->seq = ids->seq++;
350 if(ids->seq > ids->seq_max)
353 spin_lock_init(&new->lock);
356 spin_lock(&new->lock);
357 ids->entries->p[id] = new;
362 * ipc_rmid - remove an IPC identifier
363 * @ids: identifier set
364 * @id: Identifier to remove
366 * The identifier must be valid, and in use. The kernel will panic if
367 * fed an invalid identifier. The entry is removed and internal
368 * variables recomputed. The object associated with the identifier
370 * ipc_ids.mutex and the spinlock for this ID is hold before this function
371 * is called, and remain locked on the exit.
374 struct kern_ipc_perm* ipc_rmid(struct ipc_ids* ids, int id)
376 struct kern_ipc_perm* p;
377 int lid = id % SEQ_MULTIPLIER;
378 BUG_ON(lid >= ids->entries->size);
381 * do not need a rcu_dereference()() here to force ordering
382 * on Alpha, since the ipc_ids.mutex is held.
384 p = ids->entries->p[lid];
385 ids->entries->p[lid] = NULL;
389 if (lid == ids->max_id) {
394 } while (ids->entries->p[lid] == NULL);
402 * ipc_alloc - allocate ipc space
403 * @size: size desired
405 * Allocate memory from the appropriate pools and return a pointer to it.
406 * NULL is returned if the allocation fails
409 void* ipc_alloc(int size)
415 out = kmalloc(size, GFP_KERNEL);
420 * ipc_free - free ipc space
421 * @ptr: pointer returned by ipc_alloc
422 * @size: size of block
424 * Free a block created with ipc_alloc. The caller must know the size
425 * used in the allocation call.
428 void ipc_free(void* ptr, int size)
438 * There are three headers that are prepended to the actual allocation:
439 * - during use: ipc_rcu_hdr.
440 * - during the rcu grace period: ipc_rcu_grace.
441 * - [only if vmalloc]: ipc_rcu_sched.
442 * Their lifetime doesn't overlap, thus the headers share the same memory.
443 * Unlike a normal union, they are right-aligned, thus some container_of
444 * forward/backward casting is necessary:
457 /* "void *" makes sure alignment of following data is sane. */
463 struct work_struct work;
464 /* "void *" makes sure alignment of following data is sane. */
468 #define HDRLEN_KMALLOC (sizeof(struct ipc_rcu_grace) > sizeof(struct ipc_rcu_hdr) ? \
469 sizeof(struct ipc_rcu_grace) : sizeof(struct ipc_rcu_hdr))
470 #define HDRLEN_VMALLOC (sizeof(struct ipc_rcu_sched) > HDRLEN_KMALLOC ? \
471 sizeof(struct ipc_rcu_sched) : HDRLEN_KMALLOC)
473 static inline int rcu_use_vmalloc(int size)
475 /* Too big for a single page? */
476 if (HDRLEN_KMALLOC + size > PAGE_SIZE)
482 * ipc_rcu_alloc - allocate ipc and rcu space
483 * @size: size desired
485 * Allocate memory for the rcu header structure + the object.
486 * Returns the pointer to the object.
487 * NULL is returned if the allocation fails.
490 void* ipc_rcu_alloc(int size)
494 * We prepend the allocation with the rcu struct, and
495 * workqueue if necessary (for vmalloc).
497 if (rcu_use_vmalloc(size)) {
498 out = vmalloc(HDRLEN_VMALLOC + size);
500 out += HDRLEN_VMALLOC;
501 container_of(out, struct ipc_rcu_hdr, data)->is_vmalloc = 1;
502 container_of(out, struct ipc_rcu_hdr, data)->refcount = 1;
505 out = kmalloc(HDRLEN_KMALLOC + size, GFP_KERNEL);
507 out += HDRLEN_KMALLOC;
508 container_of(out, struct ipc_rcu_hdr, data)->is_vmalloc = 0;
509 container_of(out, struct ipc_rcu_hdr, data)->refcount = 1;
516 void ipc_rcu_getref(void *ptr)
518 container_of(ptr, struct ipc_rcu_hdr, data)->refcount++;
521 static void ipc_do_vfree(struct work_struct *work)
523 vfree(container_of(work, struct ipc_rcu_sched, work));
527 * ipc_schedule_free - free ipc + rcu space
528 * @head: RCU callback structure for queued work
530 * Since RCU callback function is called in bh,
531 * we need to defer the vfree to schedule_work
533 static void ipc_schedule_free(struct rcu_head *head)
535 struct ipc_rcu_grace *grace =
536 container_of(head, struct ipc_rcu_grace, rcu);
537 struct ipc_rcu_sched *sched =
538 container_of(&(grace->data[0]), struct ipc_rcu_sched, data[0]);
540 INIT_WORK(&sched->work, ipc_do_vfree);
541 schedule_work(&sched->work);
545 * ipc_immediate_free - free ipc + rcu space
546 * @head: RCU callback structure that contains pointer to be freed
548 * Free from the RCU callback context
550 static void ipc_immediate_free(struct rcu_head *head)
552 struct ipc_rcu_grace *free =
553 container_of(head, struct ipc_rcu_grace, rcu);
557 void ipc_rcu_putref(void *ptr)
559 if (--container_of(ptr, struct ipc_rcu_hdr, data)->refcount > 0)
562 if (container_of(ptr, struct ipc_rcu_hdr, data)->is_vmalloc) {
563 call_rcu(&container_of(ptr, struct ipc_rcu_grace, data)->rcu,
566 call_rcu(&container_of(ptr, struct ipc_rcu_grace, data)->rcu,
572 * ipcperms - check IPC permissions
573 * @ipcp: IPC permission set
574 * @flag: desired permission set.
576 * Check user, group, other permissions for access
577 * to ipc resources. return 0 if allowed
580 int ipcperms (struct kern_ipc_perm *ipcp, short flag)
581 { /* flag will most probably be 0 or S_...UGO from <linux/stat.h> */
582 int requested_mode, granted_mode, err;
584 if (unlikely((err = audit_ipc_obj(ipcp))))
586 requested_mode = (flag >> 6) | (flag >> 3) | flag;
587 granted_mode = ipcp->mode;
588 if (current->euid == ipcp->cuid || current->euid == ipcp->uid)
590 else if (in_group_p(ipcp->cgid) || in_group_p(ipcp->gid))
592 /* is there some bit set in requested_mode but not in granted_mode? */
593 if ((requested_mode & ~granted_mode & 0007) &&
594 !capable(CAP_IPC_OWNER))
597 return security_ipc_permission(ipcp, flag);
601 * Functions to convert between the kern_ipc_perm structure and the
602 * old/new ipc_perm structures
606 * kernel_to_ipc64_perm - convert kernel ipc permissions to user
607 * @in: kernel permissions
608 * @out: new style IPC permissions
610 * Turn the kernel object 'in' into a set of permissions descriptions
611 * for returning to userspace (out).
615 void kernel_to_ipc64_perm (struct kern_ipc_perm *in, struct ipc64_perm *out)
620 out->cuid = in->cuid;
621 out->cgid = in->cgid;
622 out->mode = in->mode;
627 * ipc64_perm_to_ipc_perm - convert old ipc permissions to new
628 * @in: new style IPC permissions
629 * @out: old style IPC permissions
631 * Turn the new style permissions object in into a compatibility
632 * object and store it into the 'out' pointer.
635 void ipc64_perm_to_ipc_perm (struct ipc64_perm *in, struct ipc_perm *out)
638 SET_UID(out->uid, in->uid);
639 SET_GID(out->gid, in->gid);
640 SET_UID(out->cuid, in->cuid);
641 SET_GID(out->cgid, in->cgid);
642 out->mode = in->mode;
647 * So far only shm_get_stat() calls ipc_get() via shm_get(), so ipc_get()
648 * is called with shm_ids.mutex locked. Since grow_ary() is also called with
649 * shm_ids.mutex down(for Shared Memory), there is no need to add read
650 * barriers here to gurantee the writes in grow_ary() are seen in order
653 * However ipc_get() itself does not necessary require ipc_ids.mutex down. So
654 * if in the future ipc_get() is used by other places without ipc_ids.mutex
655 * down, then ipc_get() needs read memery barriers as ipc_lock() does.
657 struct kern_ipc_perm* ipc_get(struct ipc_ids* ids, int id)
659 struct kern_ipc_perm* out;
660 int lid = id % SEQ_MULTIPLIER;
661 if(lid >= ids->entries->size)
663 out = ids->entries->p[lid];
667 struct kern_ipc_perm* ipc_lock(struct ipc_ids* ids, int id)
669 struct kern_ipc_perm* out;
670 int lid = id % SEQ_MULTIPLIER;
671 struct ipc_id_ary* entries;
674 entries = rcu_dereference(ids->entries);
675 if(lid >= entries->size) {
679 out = entries->p[lid];
684 spin_lock(&out->lock);
686 /* ipc_rmid() may have already freed the ID while ipc_lock
687 * was spinning: here verify that the structure is still valid
690 spin_unlock(&out->lock);
697 void ipc_lock_by_ptr(struct kern_ipc_perm *perm)
700 spin_lock(&perm->lock);
703 void ipc_unlock(struct kern_ipc_perm* perm)
705 spin_unlock(&perm->lock);
709 int ipc_buildid(struct ipc_ids* ids, int id, int seq)
711 return SEQ_MULTIPLIER*seq + id;
714 int ipc_checkid(struct ipc_ids* ids, struct kern_ipc_perm* ipcp, int uid)
716 if(uid/SEQ_MULTIPLIER != ipcp->seq)
721 #ifdef __ARCH_WANT_IPC_PARSE_VERSION
725 * ipc_parse_version - IPC call version
726 * @cmd: pointer to command
728 * Return IPC_64 for new style IPC and IPC_OLD for old style IPC.
729 * The cmd value is turned from an encoding command and version into
730 * just the command code.
733 int ipc_parse_version (int *cmd)
743 #endif /* __ARCH_WANT_IPC_PARSE_VERSION */
745 #ifdef CONFIG_PROC_FS
746 static void *sysvipc_proc_next(struct seq_file *s, void *it, loff_t *pos)
748 struct ipc_proc_iface *iface = s->private;
749 struct kern_ipc_perm *ipc = it;
753 ids = current->nsproxy->ipc_ns->ids[iface->ids];
755 /* If we had an ipc id locked before, unlock it */
756 if (ipc && ipc != SEQ_START_TOKEN)
760 * p = *pos - 1 (because id 0 starts at position 1)
761 * + 1 (because we increment the position by one)
763 for (p = *pos; p <= ids->max_id; p++) {
764 if ((ipc = ipc_lock(ids, p)) != NULL) {
770 /* Out of range - return NULL to terminate iteration */
775 * File positions: pos 0 -> header, pos n -> ipc id + 1.
776 * SeqFile iterator: iterator value locked shp or SEQ_TOKEN_START.
778 static void *sysvipc_proc_start(struct seq_file *s, loff_t *pos)
780 struct ipc_proc_iface *iface = s->private;
781 struct kern_ipc_perm *ipc;
785 ids = current->nsproxy->ipc_ns->ids[iface->ids];
788 * Take the lock - this will be released by the corresponding
791 mutex_lock(&ids->mutex);
793 /* pos < 0 is invalid */
797 /* pos == 0 means header */
799 return SEQ_START_TOKEN;
801 /* Find the (pos-1)th ipc */
802 for (p = *pos - 1; p <= ids->max_id; p++) {
803 if ((ipc = ipc_lock(ids, p)) != NULL) {
811 static void sysvipc_proc_stop(struct seq_file *s, void *it)
813 struct kern_ipc_perm *ipc = it;
814 struct ipc_proc_iface *iface = s->private;
817 /* If we had a locked segment, release it */
818 if (ipc && ipc != SEQ_START_TOKEN)
821 ids = current->nsproxy->ipc_ns->ids[iface->ids];
822 /* Release the lock we took in start() */
823 mutex_unlock(&ids->mutex);
826 static int sysvipc_proc_show(struct seq_file *s, void *it)
828 struct ipc_proc_iface *iface = s->private;
830 if (it == SEQ_START_TOKEN)
831 return seq_puts(s, iface->header);
833 return iface->show(s, it);
836 static struct seq_operations sysvipc_proc_seqops = {
837 .start = sysvipc_proc_start,
838 .stop = sysvipc_proc_stop,
839 .next = sysvipc_proc_next,
840 .show = sysvipc_proc_show,
843 static int sysvipc_proc_open(struct inode *inode, struct file *file) {
845 struct seq_file *seq;
847 ret = seq_open(file, &sysvipc_proc_seqops);
849 seq = file->private_data;
850 seq->private = PDE(inode)->data;
855 static struct file_operations sysvipc_proc_fops = {
856 .open = sysvipc_proc_open,
859 .release = seq_release,
861 #endif /* CONFIG_PROC_FS */
git://git.onelab.eu / linux-2.6.git / blob