1 files changed, 135 insertions, 33 deletions
diff --git a/ipc/util.h b/ipc/util.h
index 333e891bcaca..9ffea40457ce 100644
--- a/ipc/util.h
+++ b/ipc/util.h
@@ -10,6 +10,9 @@
 #ifndef _IPC_UTIL_H
 #define _IPC_UTIL_H
+#include <linux/idr.h>
+#include <linux/err.h>
 #define USHRT_MAX 0xffff
 #define SEQ_MULTIPLIER  (IPCMNI)
@@ -25,24 +28,46 @@ void sem_exit_ns(struct ipc_namespace *ns);
 void msg_exit_ns(struct ipc_namespace *ns);
 void shm_exit_ns(struct ipc_namespace *ns);
-struct ipc_id_ary {
-        int size;
-        struct kern_ipc_perm *p[0];
-};
 struct ipc_ids {
        int in_use;
-        int max_id;
        unsigned short seq;
        unsigned short seq_max;
-        struct mutex mutex;
+        struct rw_semaphore rw_mutex;
-        struct ipc_id_ary nullentry;
+        struct idr ipcs_idr;
-        struct ipc_id_ary* entries;
+};
+/*
+ * Structure that holds the parameters needed by the ipc operations
+ * (see after)
+ */
+struct ipc_params {
+        key_t key;
+        int flg;
+        union {
+                size_t size;    /* for shared memories */
+                int nsems;      /* for semaphores */
+        } u;                    /* holds the getnew() specific param */
+};
+/*
+ * Structure that holds some ipc operations. This structure is used to unify
+ * the calls to sys_msgget(), sys_semget(), sys_shmget()
+ *      . routine to call to create a new ipc object. Can be one of newque,
+ *        newary, newseg
+ *      . routine to call to check permissions for a new ipc object.
+ *        Can be one of security_msg_associate, security_sem_associate,
+ *        security_shm_associate
+ *      . routine to call for an extra check if needed
+ */
+struct ipc_ops {
+        int (*getnew) (struct ipc_namespace *, struct ipc_params *);
+        int (*associate) (struct kern_ipc_perm *, int);
+        int (*more_checks) (struct kern_ipc_perm *, struct ipc_params *);
 };
 struct seq_file;
-void ipc_init_ids(struct ipc_ids *ids, int size);
+void ipc_init_ids(struct ipc_ids *);
 #ifdef CONFIG_PROC_FS
 void __init ipc_init_proc_interface(const char *path, const char *header,
                int ids, int (*show)(struct seq_file *, void *));
@@ -54,14 +79,19 @@ void __init ipc_init_proc_interface(const char *path, const char *header,
 #define IPC_MSG_IDS     1
 #define IPC_SHM_IDS     2
-/* must be called with ids->mutex acquired.*/
+#define ipcid_to_idx(id) ((id) % SEQ_MULTIPLIER)
-int ipc_findkey(struct ipc_ids* ids, key_t key);
-int ipc_addid(struct ipc_ids* ids, struct kern_ipc_perm* new, int size);
+/* must be called with ids->rw_mutex acquired for writing */
+int ipc_addid(struct ipc_ids *, struct kern_ipc_perm *, int);
+/* must be called with ids->rw_mutex acquired for reading */
+int ipc_get_maxid(struct ipc_ids *);
 /* must be called with both locks acquired. */
-struct kern_ipc_perm* ipc_rmid(struct ipc_ids* ids, int id);
+void ipc_rmid(struct ipc_ids *, struct kern_ipc_perm *);
-int ipcperms (struct kern_ipc_perm *ipcp, short flg);
+/* must be called with ipcp locked */
+int ipcperms(struct kern_ipc_perm *ipcp, short flg);
 /* for rare, potentially huge allocations.
 * both function can sleep
@@ -79,24 +109,12 @@ void* ipc_rcu_alloc(int size);
 void ipc_rcu_getref(void *ptr);
 void ipc_rcu_putref(void *ptr);
-static inline void __ipc_fini_ids(struct ipc_ids *ids,
+/*
-                struct ipc_id_ary *entries)
+ * ipc_lock_down: called with rw_mutex held
-{
+ * ipc_lock: called without that lock held
-        if (entries != &ids->nullentry)
+ */
-                ipc_rcu_putref(entries);
+struct kern_ipc_perm *ipc_lock_down(struct ipc_ids *, int);
-}
+struct kern_ipc_perm *ipc_lock(struct ipc_ids *, int);
-static inline void ipc_fini_ids(struct ipc_ids *ids)
-{
-        __ipc_fini_ids(ids, ids->entries);
-}
-struct kern_ipc_perm* ipc_get(struct ipc_ids* ids, int id);
-struct kern_ipc_perm* ipc_lock(struct ipc_ids* ids, int id);
-void ipc_lock_by_ptr(struct kern_ipc_perm *ipcp);
-void ipc_unlock(struct kern_ipc_perm* perm);
-int ipc_buildid(struct ipc_ids* ids, int id, int seq);
-int ipc_checkid(struct ipc_ids* ids, struct kern_ipc_perm* ipcp, int uid);
 void kernel_to_ipc64_perm(struct kern_ipc_perm *in, struct ipc64_perm *out);
 void ipc64_perm_to_ipc_perm(struct ipc64_perm *in, struct ipc_perm *out);
@@ -111,5 +129,89 @@ int ipc_parse_version (int *cmd);
 extern void free_msg(struct msg_msg *msg);
 extern struct msg_msg *load_msg(const void __user *src, int len);
 extern int store_msg(void __user *dest, struct msg_msg *msg, int len);
+extern int ipcget_new(struct ipc_namespace *, struct ipc_ids *,
+                        struct ipc_ops *, struct ipc_params *);
+extern int ipcget_public(struct ipc_namespace *, struct ipc_ids *,
+                        struct ipc_ops *, struct ipc_params *);
+static inline int ipc_buildid(int id, int seq)
+{
+        return SEQ_MULTIPLIER * seq + id;
+}
+/*
+ * Must be called with ipcp locked
+ */
+static inline int ipc_checkid(struct kern_ipc_perm *ipcp, int uid)
+{
+        if (uid / SEQ_MULTIPLIER != ipcp->seq)
+                return 1;
+        return 0;
+}
+static inline void ipc_lock_by_ptr(struct kern_ipc_perm *perm)
+{
+        rcu_read_lock();
+        spin_lock(&perm->lock);
+}
+static inline void ipc_unlock(struct kern_ipc_perm *perm)
+{
+        spin_unlock(&perm->lock);
+        rcu_read_unlock();
+}
+static inline struct kern_ipc_perm *ipc_lock_check_down(struct ipc_ids *ids,
+                                                int id)
+{
+        struct kern_ipc_perm *out;
+        out = ipc_lock_down(ids, id);
+        if (IS_ERR(out))
+                return out;
+        if (ipc_checkid(out, id)) {
+                ipc_unlock(out);
+                return ERR_PTR(-EIDRM);
+        }
+        return out;
+}
+static inline struct kern_ipc_perm *ipc_lock_check(struct ipc_ids *ids,
+                                                int id)
+{
+        struct kern_ipc_perm *out;
+        out = ipc_lock(ids, id);
+        if (IS_ERR(out))
+                return out;
+        if (ipc_checkid(out, id)) {
+                ipc_unlock(out);
+                return ERR_PTR(-EIDRM);
+        }
+        return out;
+}
+/**
+ * ipcget - Common sys_*get() code
+ * @ns : namsepace
+ * @ids : IPC identifier set
+ * @ops : operations to be called on ipc object creation, permission checks
+ *        and further checks
+ * @params : the parameters needed by the previous operations.
+ *
+ * Common routine called by sys_msgget(), sys_semget() and sys_shmget().
+ */
+static inline int ipcget(struct ipc_namespace *ns, struct ipc_ids *ids,
+                        struct ipc_ops *ops, struct ipc_params *params)
+{
+        if (params->key == IPC_PRIVATE)
+                return ipcget_new(ns, ids, ops, params);
+        else
+                return ipcget_public(ns, ids, ops, params);
+}
 #endif

diff --git a/ipc/util.h b/ipc/util.h index 333e891bcaca..9ffea40457ce 100644 --- a/ipc/util.h +++ b/ipc/util.h
@@ -10,6 +10,9 @@
10	#ifndef _IPC_UTIL_H	10	#ifndef _IPC_UTIL_H
11	#define _IPC_UTIL_H	11	#define _IPC_UTIL_H
12		12
		13	#include <linux/idr.h>
		14	#include <linux/err.h>
		15
13	#define USHRT_MAX 0xffff	16	#define USHRT_MAX 0xffff
14	#define SEQ_MULTIPLIER (IPCMNI)	17	#define SEQ_MULTIPLIER (IPCMNI)
15		18
@@ -25,24 +28,46 @@ void sem_exit_ns(struct ipc_namespace *ns);
25	void msg_exit_ns(struct ipc_namespace *ns);	28	void msg_exit_ns(struct ipc_namespace *ns);
26	void shm_exit_ns(struct ipc_namespace *ns);	29	void shm_exit_ns(struct ipc_namespace *ns);
27		30
28	struct ipc_id_ary {
29	int size;
30	struct kern_ipc_perm *p[0];
31	};
32
33	struct ipc_ids {	31	struct ipc_ids {
34	int in_use;	32	int in_use;
35	int max_id;
36	unsigned short seq;	33	unsigned short seq;
37	unsigned short seq_max;	34	unsigned short seq_max;
38	struct mutex mutex;	35	struct rw_semaphore rw_mutex;
39	struct ipc_id_ary nullentry;	36	struct idr ipcs_idr;
40	struct ipc_id_ary* entries;	37	};
		38
		39	/*
		40	* Structure that holds the parameters needed by the ipc operations
		41	* (see after)
		42	*/
		43	struct ipc_params {
		44	key_t key;
		45	int flg;
		46	union {
		47	size_t size; /* for shared memories */
		48	int nsems; /* for semaphores */
		49	} u; /* holds the getnew() specific param */
		50	};
		51
		52	/*
		53	* Structure that holds some ipc operations. This structure is used to unify
		54	* the calls to sys_msgget(), sys_semget(), sys_shmget()
		55	* . routine to call to create a new ipc object. Can be one of newque,
		56	* newary, newseg
		57	* . routine to call to check permissions for a new ipc object.
		58	* Can be one of security_msg_associate, security_sem_associate,
		59	* security_shm_associate
		60	* . routine to call for an extra check if needed
		61	*/
		62	struct ipc_ops {
		63	int (getnew) (struct ipc_namespace , struct ipc_params *);
		64	int (associate) (struct kern_ipc_perm , int);
		65	int (more_checks) (struct kern_ipc_perm , struct ipc_params *);
41	};	66	};
42		67
43	struct seq_file;	68	struct seq_file;
44		69
45	void ipc_init_ids(struct ipc_ids *ids, int size);	70	void ipc_init_ids(struct ipc_ids *);
46	#ifdef CONFIG_PROC_FS	71	#ifdef CONFIG_PROC_FS
47	void __init ipc_init_proc_interface(const char path, const char header,	72	void __init ipc_init_proc_interface(const char path, const char header,
48	int ids, int (show)(struct seq_file , void *));	73	int ids, int (show)(struct seq_file , void *));
@@ -54,14 +79,19 @@ void __init ipc_init_proc_interface(const char path, const char header,
54	#define IPC_MSG_IDS 1	79	#define IPC_MSG_IDS 1
55	#define IPC_SHM_IDS 2	80	#define IPC_SHM_IDS 2
56		81
57	/* must be called with ids->mutex acquired.*/	82	#define ipcid_to_idx(id) ((id) % SEQ_MULTIPLIER)
58	int ipc_findkey(struct ipc_ids* ids, key_t key);	83
59	int ipc_addid(struct ipc_ids* ids, struct kern_ipc_perm* new, int size);	84	/* must be called with ids->rw_mutex acquired for writing */
		85	int ipc_addid(struct ipc_ids , struct kern_ipc_perm , int);
		86
		87	/* must be called with ids->rw_mutex acquired for reading */
		88	int ipc_get_maxid(struct ipc_ids *);
60		89
61	/* must be called with both locks acquired. */	90	/* must be called with both locks acquired. */
62	struct kern_ipc_perm* ipc_rmid(struct ipc_ids* ids, int id);	91	void ipc_rmid(struct ipc_ids , struct kern_ipc_perm );
63		92
64	int ipcperms (struct kern_ipc_perm *ipcp, short flg);	93	/* must be called with ipcp locked */
		94	int ipcperms(struct kern_ipc_perm *ipcp, short flg);
65		95
66	/* for rare, potentially huge allocations.	96	/* for rare, potentially huge allocations.
67	* both function can sleep	97	* both function can sleep
@@ -79,24 +109,12 @@ void* ipc_rcu_alloc(int size);
79	void ipc_rcu_getref(void *ptr);	109	void ipc_rcu_getref(void *ptr);
80	void ipc_rcu_putref(void *ptr);	110	void ipc_rcu_putref(void *ptr);
81		111
82	static inline void __ipc_fini_ids(struct ipc_ids *ids,	112	/*
83	struct ipc_id_ary *entries)	113	* ipc_lock_down: called with rw_mutex held
84	{	114	* ipc_lock: called without that lock held
85	if (entries != &ids->nullentry)	115	*/
86	ipc_rcu_putref(entries);	116	struct kern_ipc_perm ipc_lock_down(struct ipc_ids , int);
87	}	117	struct kern_ipc_perm ipc_lock(struct ipc_ids , int);
88
89	static inline void ipc_fini_ids(struct ipc_ids *ids)
90	{
91	__ipc_fini_ids(ids, ids->entries);
92	}
93
94	struct kern_ipc_perm* ipc_get(struct ipc_ids* ids, int id);
95	struct kern_ipc_perm* ipc_lock(struct ipc_ids* ids, int id);
96	void ipc_lock_by_ptr(struct kern_ipc_perm *ipcp);
97	void ipc_unlock(struct kern_ipc_perm* perm);
98	int ipc_buildid(struct ipc_ids* ids, int id, int seq);
99	int ipc_checkid(struct ipc_ids* ids, struct kern_ipc_perm* ipcp, int uid);
100		118
101	void kernel_to_ipc64_perm(struct kern_ipc_perm in, struct ipc64_perm out);	119	void kernel_to_ipc64_perm(struct kern_ipc_perm in, struct ipc64_perm out);
102	void ipc64_perm_to_ipc_perm(struct ipc64_perm in, struct ipc_perm out);	120	void ipc64_perm_to_ipc_perm(struct ipc64_perm in, struct ipc_perm out);
@@ -111,5 +129,89 @@ int ipc_parse_version (int *cmd);
111	extern void free_msg(struct msg_msg *msg);	129	extern void free_msg(struct msg_msg *msg);
112	extern struct msg_msg load_msg(const void __user src, int len);	130	extern struct msg_msg load_msg(const void __user src, int len);
113	extern int store_msg(void __user dest, struct msg_msg msg, int len);	131	extern int store_msg(void __user dest, struct msg_msg msg, int len);
		132	extern int ipcget_new(struct ipc_namespace , struct ipc_ids ,
		133	struct ipc_ops , struct ipc_params );
		134	extern int ipcget_public(struct ipc_namespace , struct ipc_ids ,
		135	struct ipc_ops , struct ipc_params );
		136
		137	static inline int ipc_buildid(int id, int seq)
		138	{
		139	return SEQ_MULTIPLIER * seq + id;
		140	}
		141
		142	/*
		143	* Must be called with ipcp locked
		144	*/
		145	static inline int ipc_checkid(struct kern_ipc_perm *ipcp, int uid)
		146	{
		147	if (uid / SEQ_MULTIPLIER != ipcp->seq)
		148	return 1;
		149	return 0;
		150	}
		151
		152	static inline void ipc_lock_by_ptr(struct kern_ipc_perm *perm)
		153	{
		154	rcu_read_lock();
		155	spin_lock(&perm->lock);
		156	}
		157
		158	static inline void ipc_unlock(struct kern_ipc_perm *perm)
		159	{
		160	spin_unlock(&perm->lock);
		161	rcu_read_unlock();
		162	}
		163
		164	static inline struct kern_ipc_perm ipc_lock_check_down(struct ipc_ids ids,
		165	int id)
		166	{
		167	struct kern_ipc_perm *out;
		168
		169	out = ipc_lock_down(ids, id);
		170	if (IS_ERR(out))
		171	return out;
		172
		173	if (ipc_checkid(out, id)) {
		174	ipc_unlock(out);
		175	return ERR_PTR(-EIDRM);
		176	}
		177
		178	return out;
		179	}
		180
		181	static inline struct kern_ipc_perm ipc_lock_check(struct ipc_ids ids,
		182	int id)
		183	{
		184	struct kern_ipc_perm *out;
		185
		186	out = ipc_lock(ids, id);
		187	if (IS_ERR(out))
		188	return out;
		189
		190	if (ipc_checkid(out, id)) {
		191	ipc_unlock(out);
		192	return ERR_PTR(-EIDRM);
		193	}
		194
		195	return out;
		196	}
		197
		198	/**
		199	* ipcget - Common sys_*get() code
		200	* @ns : namsepace
		201	* @ids : IPC identifier set
		202	* @ops : operations to be called on ipc object creation, permission checks
		203	* and further checks
		204	* @params : the parameters needed by the previous operations.
		205	*
		206	* Common routine called by sys_msgget(), sys_semget() and sys_shmget().
		207	*/
		208	static inline int ipcget(struct ipc_namespace ns, struct ipc_ids ids,
		209	struct ipc_ops ops, struct ipc_params params)
		210	{
		211	if (params->key == IPC_PRIVATE)
		212	return ipcget_new(ns, ids, ops, params);
		213	else
		214	return ipcget_public(ns, ids, ops, params);
		215	}
114		216
115	#endif	217	#endif