[linux.git] / ipc / ipc_sysctl.c

/*
 *  Copyright (C) 2007
 *
 *  Author: Eric Biederman <[email protected]>
 *
 *  This program is free software; you can redistribute it and/or
 *  modify it under the terms of the GNU General Public License as
 *  published by the Free Software Foundation, version 2 of the
 *  License.
 */

#include <linux/module.h>
#include <linux/ipc.h>
#include <linux/nsproxy.h>
#include <linux/sysctl.h>
#include <linux/uaccess.h>
#include <linux/ipc_namespace.h>
#include <linux/msg.h>
#include "util.h"

static void *get_ipc(struct ctl_table *table)
{
	char *which = table->data;
	struct ipc_namespace *ipc_ns = current->nsproxy->ipc_ns;
	which = (which - (char *)&init_ipc_ns) + (char *)ipc_ns;
	return which;
}

#ifdef CONFIG_PROC_SYSCTL
static int proc_ipc_dointvec(struct ctl_table *table, int write,
	void __user *buffer, size_t *lenp, loff_t *ppos)
{
	struct ctl_table ipc_table;

	memcpy(&ipc_table, table, sizeof(ipc_table));
	ipc_table.data = get_ipc(table);

	return proc_dointvec(&ipc_table, write, buffer, lenp, ppos);
}

static int proc_ipc_dointvec_minmax(struct ctl_table *table, int write,
	void __user *buffer, size_t *lenp, loff_t *ppos)
{
	struct ctl_table ipc_table;

	memcpy(&ipc_table, table, sizeof(ipc_table));
	ipc_table.data = get_ipc(table);

	return proc_dointvec_minmax(&ipc_table, write, buffer, lenp, ppos);
}

static int proc_ipc_dointvec_minmax_orphans(struct ctl_table *table, int write,
	void __user *buffer, size_t *lenp, loff_t *ppos)
{
	struct ipc_namespace *ns = current->nsproxy->ipc_ns;
	int err = proc_ipc_dointvec_minmax(table, write, buffer, lenp, ppos);

	if (err < 0)
		return err;
	if (ns->shm_rmid_forced)
		shm_destroy_orphaned(ns);
	return err;
}

static int proc_ipc_doulongvec_minmax(struct ctl_table *table, int write,
	void __user *buffer, size_t *lenp, loff_t *ppos)
{
	struct ctl_table ipc_table;
	memcpy(&ipc_table, table, sizeof(ipc_table));
	ipc_table.data = get_ipc(table);

	return proc_doulongvec_minmax(&ipc_table, write, buffer,
					lenp, ppos);
}

static int proc_ipc_auto_msgmni(struct ctl_table *table, int write,
	void __user *buffer, size_t *lenp, loff_t *ppos)
{
	struct ctl_table ipc_table;
	int dummy = 0;

	memcpy(&ipc_table, table, sizeof(ipc_table));
	ipc_table.data = &dummy;

	if (write)
		pr_info_once("writing to auto_msgmni has no effect");

	return proc_dointvec_minmax(&ipc_table, write, buffer, lenp, ppos);
}

static int proc_ipc_sem_dointvec(struct ctl_table *table, int write,
	void __user *buffer, size_t *lenp, loff_t *ppos)
{
	int ret, semmni;
	struct ipc_namespace *ns = current->nsproxy->ipc_ns;

	semmni = ns->sem_ctls[3];
	ret = proc_ipc_dointvec(table, write, buffer, lenp, ppos);

	if (!ret)
		ret = sem_check_semmni(current->nsproxy->ipc_ns);

	/*
	 * Reset the semmni value if an error happens.
	 */
	if (ret)
		ns->sem_ctls[3] = semmni;
	return ret;
}

#else
#define proc_ipc_doulongvec_minmax NULL
#define proc_ipc_dointvec	   NULL
#define proc_ipc_dointvec_minmax   NULL
#define proc_ipc_dointvec_minmax_orphans   NULL
#define proc_ipc_auto_msgmni	   NULL
#define proc_ipc_sem_dointvec	   NULL
#endif

static int zero;
static int one = 1;
static int int_max = INT_MAX;
static int ipc_mni = IPCMNI;

static struct ctl_table ipc_kern_table[] = {
	{
		.procname	= "shmmax",
		.data		= &init_ipc_ns.shm_ctlmax,
		.maxlen		= sizeof(init_ipc_ns.shm_ctlmax),
		.mode		= 0644,
		.proc_handler	= proc_ipc_doulongvec_minmax,
	},
	{
		.procname	= "shmall",
		.data		= &init_ipc_ns.shm_ctlall,
		.maxlen		= sizeof(init_ipc_ns.shm_ctlall),
		.mode		= 0644,
		.proc_handler	= proc_ipc_doulongvec_minmax,
	},
	{
		.procname	= "shmmni",
		.data		= &init_ipc_ns.shm_ctlmni,
		.maxlen		= sizeof(init_ipc_ns.shm_ctlmni),
		.mode		= 0644,
		.proc_handler	= proc_ipc_dointvec_minmax,
		.extra1		= &zero,
		.extra2		= &ipc_mni,
	},
	{
		.procname	= "shm_rmid_forced",
		.data		= &init_ipc_ns.shm_rmid_forced,
		.maxlen		= sizeof(init_ipc_ns.shm_rmid_forced),
		.mode		= 0644,
		.proc_handler	= proc_ipc_dointvec_minmax_orphans,
		.extra1		= &zero,
		.extra2		= &one,
	},
	{
		.procname	= "msgmax",
		.data		= &init_ipc_ns.msg_ctlmax,
		.maxlen		= sizeof(init_ipc_ns.msg_ctlmax),
		.mode		= 0644,
		.proc_handler	= proc_ipc_dointvec_minmax,
		.extra1		= &zero,
		.extra2		= &int_max,
	},
	{
		.procname	= "msgmni",
		.data		= &init_ipc_ns.msg_ctlmni,
		.maxlen		= sizeof(init_ipc_ns.msg_ctlmni),
		.mode		= 0644,
		.proc_handler	= proc_ipc_dointvec_minmax,
		.extra1		= &zero,
		.extra2		= &ipc_mni,
	},
	{
		.procname	= "auto_msgmni",
		.data		= NULL,
		.maxlen		= sizeof(int),
		.mode		= 0644,
		.proc_handler	= proc_ipc_auto_msgmni,
		.extra1		= &zero,
		.extra2		= &one,
	},
	{
		.procname	=  "msgmnb",
		.data		= &init_ipc_ns.msg_ctlmnb,
		.maxlen		= sizeof(init_ipc_ns.msg_ctlmnb),
		.mode		= 0644,
		.proc_handler	= proc_ipc_dointvec_minmax,
		.extra1		= &zero,
		.extra2		= &int_max,
	},
	{
		.procname	= "sem",
		.data		= &init_ipc_ns.sem_ctls,
		.maxlen		= 4*sizeof(int),
		.mode		= 0644,
		.proc_handler	= proc_ipc_sem_dointvec,
	},
#ifdef CONFIG_CHECKPOINT_RESTORE
	{
		.procname	= "sem_next_id",
		.data		= &init_ipc_ns.ids[IPC_SEM_IDS].next_id,
		.maxlen		= sizeof(init_ipc_ns.ids[IPC_SEM_IDS].next_id),
		.mode		= 0644,
		.proc_handler	= proc_ipc_dointvec_minmax,
		.extra1		= &zero,
		.extra2		= &int_max,
	},
	{
		.procname	= "msg_next_id",
		.data		= &init_ipc_ns.ids[IPC_MSG_IDS].next_id,
		.maxlen		= sizeof(init_ipc_ns.ids[IPC_MSG_IDS].next_id),
		.mode		= 0644,
		.proc_handler	= proc_ipc_dointvec_minmax,
		.extra1		= &zero,
		.extra2		= &int_max,
	},
	{
		.procname	= "shm_next_id",
		.data		= &init_ipc_ns.ids[IPC_SHM_IDS].next_id,
		.maxlen		= sizeof(init_ipc_ns.ids[IPC_SHM_IDS].next_id),
		.mode		= 0644,
		.proc_handler	= proc_ipc_dointvec_minmax,
		.extra1		= &zero,
		.extra2		= &int_max,
	},
#endif
	{}
};

static struct ctl_table ipc_root_table[] = {
	{
		.procname	= "kernel",
		.mode		= 0555,
		.child		= ipc_kern_table,
	},
	{}
};

static int __init ipc_sysctl_init(void)
{
	register_sysctl_table(ipc_root_table);
	return 0;
}

device_initcall(ipc_sysctl_init);
Commit	Line	Data
a5494dcd EB	1	/*
	2	* Copyright (C) 2007
	3	*
	4	* Author: Eric Biederman <[email protected]>
	5	*
	6	* This program is free software; you can redistribute it and/or
	7	* modify it under the terms of the GNU General Public License as
	8	* published by the Free Software Foundation, version 2 of the
	9	* License.
	10	*/
	11
	12	#include <linux/module.h>
	13	#include <linux/ipc.h>
	14	#include <linux/nsproxy.h>
	15	#include <linux/sysctl.h>
	16	#include <linux/uaccess.h>
ae5e1b22	17	#include <linux/ipc_namespace.h>
6546bc42 ND	18	#include <linux/msg.h>
6546bc42 ND	19	#include "util.h"
a5494dcd	20
a5c5928b	21	static void get_ipc(struct ctl_table table)
a5494dcd EB	22	{
	23	char *which = table->data;
	24	struct ipc_namespace *ipc_ns = current->nsproxy->ipc_ns;
	25	which = (which - (char )&init_ipc_ns) + (char )ipc_ns;
	26	return which;
	27	}
a5494dcd	28
11dea190	29	#ifdef CONFIG_PROC_SYSCTL
a5c5928b	30	static int proc_ipc_dointvec(struct ctl_table *table, int write,
a5494dcd EB	31	void __user buffer, size_t lenp, loff_t *ppos)
	32	{
	33	struct ctl_table ipc_table;
b34a6b1d	34
a5494dcd EB	35	memcpy(&ipc_table, table, sizeof(ipc_table));
	36	ipc_table.data = get_ipc(table);
	37
8d65af78	38	return proc_dointvec(&ipc_table, write, buffer, lenp, ppos);
a5494dcd EB	39	}
a5494dcd EB	40
a5c5928b	41	static int proc_ipc_dointvec_minmax(struct ctl_table *table, int write,
b34a6b1d VK	42	void __user buffer, size_t lenp, loff_t *ppos)
	43	{
	44	struct ctl_table ipc_table;
	45
	46	memcpy(&ipc_table, table, sizeof(ipc_table));
	47	ipc_table.data = get_ipc(table);
	48
	49	return proc_dointvec_minmax(&ipc_table, write, buffer, lenp, ppos);
	50	}
	51
a5c5928b	52	static int proc_ipc_dointvec_minmax_orphans(struct ctl_table *table, int write,
b34a6b1d VK	53	void __user buffer, size_t lenp, loff_t *ppos)
	54	{
	55	struct ipc_namespace *ns = current->nsproxy->ipc_ns;
	56	int err = proc_ipc_dointvec_minmax(table, write, buffer, lenp, ppos);
	57
	58	if (err < 0)
	59	return err;
	60	if (ns->shm_rmid_forced)
	61	shm_destroy_orphaned(ns);
	62	return err;
	63	}
	64
a5c5928b	65	static int proc_ipc_doulongvec_minmax(struct ctl_table *table, int write,
8d65af78	66	void __user buffer, size_t lenp, loff_t *ppos)
a5494dcd EB	67	{
	68	struct ctl_table ipc_table;
	69	memcpy(&ipc_table, table, sizeof(ipc_table));
	70	ipc_table.data = get_ipc(table);
	71
8d65af78	72	return proc_doulongvec_minmax(&ipc_table, write, buffer,
a5494dcd EB	73	lenp, ppos);
	74	}
	75
0050ee05	76	static int proc_ipc_auto_msgmni(struct ctl_table *table, int write,
8d65af78	77	void __user buffer, size_t lenp, loff_t *ppos)
9eefe520 ND	78	{
9eefe520 ND	79	struct ctl_table ipc_table;
0050ee05	80	int dummy = 0;
9eefe520 ND	81
9eefe520 ND	82	memcpy(&ipc_table, table, sizeof(ipc_table));
0050ee05 MS	83	ipc_table.data = &dummy;
	84
	85	if (write)
	86	pr_info_once("writing to auto_msgmni has no effect");
	87
	88	return proc_dointvec_minmax(&ipc_table, write, buffer, lenp, ppos);
9eefe520 ND	89	}
9eefe520 ND	90
8c81ddd2 WL	91	static int proc_ipc_sem_dointvec(struct ctl_table *table, int write,
	92	void __user buffer, size_t lenp, loff_t *ppos)
	93	{
	94	int ret, semmni;
	95	struct ipc_namespace *ns = current->nsproxy->ipc_ns;
	96
	97	semmni = ns->sem_ctls[3];
	98	ret = proc_ipc_dointvec(table, write, buffer, lenp, ppos);
	99
	100	if (!ret)
	101	ret = sem_check_semmni(current->nsproxy->ipc_ns);
	102
	103	/*
	104	* Reset the semmni value if an error happens.
	105	*/
	106	if (ret)
	107	ns->sem_ctls[3] = semmni;
	108	return ret;
	109	}
	110
a5494dcd EB	111	#else
	112	#define proc_ipc_doulongvec_minmax NULL
	113	#define proc_ipc_dointvec NULL
b34a6b1d VK	114	#define proc_ipc_dointvec_minmax NULL
b34a6b1d VK	115	#define proc_ipc_dointvec_minmax_orphans NULL
0050ee05	116	#define proc_ipc_auto_msgmni NULL
8c81ddd2	117	#define proc_ipc_sem_dointvec NULL
a5494dcd EB	118	#endif
a5494dcd EB	119
9eefe520 ND	120	static int zero;
9eefe520 ND	121	static int one = 1;
03f59566	122	static int int_max = INT_MAX;
6730e658	123	static int ipc_mni = IPCMNI;
9eefe520	124
a5494dcd EB	125	static struct ctl_table ipc_kern_table[] = {
a5494dcd EB	126	{
a5494dcd EB	127	.procname = "shmmax",
a5494dcd EB	128	.data = &init_ipc_ns.shm_ctlmax,
239521f3	129	.maxlen = sizeof(init_ipc_ns.shm_ctlmax),
a5494dcd EB	130	.mode = 0644,
a5494dcd EB	131	.proc_handler = proc_ipc_doulongvec_minmax,
a5494dcd EB	132	},
a5494dcd EB	133	{
a5494dcd EB	134	.procname = "shmall",
a5494dcd EB	135	.data = &init_ipc_ns.shm_ctlall,
239521f3	136	.maxlen = sizeof(init_ipc_ns.shm_ctlall),
a5494dcd EB	137	.mode = 0644,
a5494dcd EB	138	.proc_handler = proc_ipc_doulongvec_minmax,
a5494dcd EB	139	},
a5494dcd EB	140	{
a5494dcd EB	141	.procname = "shmmni",
a5494dcd EB	142	.data = &init_ipc_ns.shm_ctlmni,
239521f3	143	.maxlen = sizeof(init_ipc_ns.shm_ctlmni),
a5494dcd	144	.mode = 0644,
6730e658 WL	145	.proc_handler = proc_ipc_dointvec_minmax,
	146	.extra1 = &zero,
	147	.extra2 = &ipc_mni,
a5494dcd	148	},
b34a6b1d VK	149	{
	150	.procname = "shm_rmid_forced",
	151	.data = &init_ipc_ns.shm_rmid_forced,
	152	.maxlen = sizeof(init_ipc_ns.shm_rmid_forced),
	153	.mode = 0644,
	154	.proc_handler = proc_ipc_dointvec_minmax_orphans,
	155	.extra1 = &zero,
	156	.extra2 = &one,
	157	},
a5494dcd	158	{
a5494dcd EB	159	.procname = "msgmax",
a5494dcd EB	160	.data = &init_ipc_ns.msg_ctlmax,
239521f3	161	.maxlen = sizeof(init_ipc_ns.msg_ctlmax),
a5494dcd	162	.mode = 0644,
9bf76ca3 MK	163	.proc_handler = proc_ipc_dointvec_minmax,
	164	.extra1 = &zero,
	165	.extra2 = &int_max,
a5494dcd EB	166	},
a5494dcd EB	167	{
a5494dcd EB	168	.procname = "msgmni",
a5494dcd EB	169	.data = &init_ipc_ns.msg_ctlmni,
239521f3	170	.maxlen = sizeof(init_ipc_ns.msg_ctlmni),
a5494dcd	171	.mode = 0644,
0050ee05	172	.proc_handler = proc_ipc_dointvec_minmax,
9bf76ca3	173	.extra1 = &zero,
6730e658	174	.extra2 = &ipc_mni,
a5494dcd	175	},
0050ee05 MS	176	{
	177	.procname = "auto_msgmni",
	178	.data = NULL,
	179	.maxlen = sizeof(int),
	180	.mode = 0644,
	181	.proc_handler = proc_ipc_auto_msgmni,
	182	.extra1 = &zero,
	183	.extra2 = &one,
	184	},
a5494dcd	185	{
a5494dcd EB	186	.procname = "msgmnb",
a5494dcd EB	187	.data = &init_ipc_ns.msg_ctlmnb,
239521f3	188	.maxlen = sizeof(init_ipc_ns.msg_ctlmnb),
a5494dcd	189	.mode = 0644,
9bf76ca3 MK	190	.proc_handler = proc_ipc_dointvec_minmax,
	191	.extra1 = &zero,
	192	.extra2 = &int_max,
a5494dcd EB	193	},
a5494dcd EB	194	{
a5494dcd EB	195	.procname = "sem",
a5494dcd EB	196	.data = &init_ipc_ns.sem_ctls,
239521f3	197	.maxlen = 4*sizeof(int),
a5494dcd	198	.mode = 0644,
8c81ddd2	199	.proc_handler = proc_ipc_sem_dointvec,
a5494dcd	200	},
03f59566 SK	201	#ifdef CONFIG_CHECKPOINT_RESTORE
	202	{
	203	.procname = "sem_next_id",
	204	.data = &init_ipc_ns.ids[IPC_SEM_IDS].next_id,
	205	.maxlen = sizeof(init_ipc_ns.ids[IPC_SEM_IDS].next_id),
	206	.mode = 0644,
	207	.proc_handler = proc_ipc_dointvec_minmax,
	208	.extra1 = &zero,
	209	.extra2 = &int_max,
	210	},
	211	{
	212	.procname = "msg_next_id",
	213	.data = &init_ipc_ns.ids[IPC_MSG_IDS].next_id,
	214	.maxlen = sizeof(init_ipc_ns.ids[IPC_MSG_IDS].next_id),
	215	.mode = 0644,
	216	.proc_handler = proc_ipc_dointvec_minmax,
	217	.extra1 = &zero,
	218	.extra2 = &int_max,
	219	},
	220	{
	221	.procname = "shm_next_id",
	222	.data = &init_ipc_ns.ids[IPC_SHM_IDS].next_id,
	223	.maxlen = sizeof(init_ipc_ns.ids[IPC_SHM_IDS].next_id),
	224	.mode = 0644,
	225	.proc_handler = proc_ipc_dointvec_minmax,
	226	.extra1 = &zero,
	227	.extra2 = &int_max,
	228	},
	229	#endif
a5494dcd EB	230	{}
	231	};
	232
	233	static struct ctl_table ipc_root_table[] = {
	234	{
a5494dcd EB	235	.procname = "kernel",
	236	.mode = 0555,
	237	.child = ipc_kern_table,
	238	},
	239	{}
	240	};
	241
	242	static int __init ipc_sysctl_init(void)
	243	{
0b4d4147	244	register_sysctl_table(ipc_root_table);
a5494dcd EB	245	return 0;
	246	}
	247
6d08a256	248	device_initcall(ipc_sysctl_init);