Blame view
fs/ecryptfs/messaging.c
13.9 KB
88b4a07e6
|
1 2 3 |
/** * eCryptfs: Linux filesystem encryption layer * |
f66e883eb
|
4 |
* Copyright (C) 2004-2008 International Business Machines Corp. |
88b4a07e6
|
5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 |
* Author(s): Michael A. Halcrow <mhalcrow@us.ibm.com> * Tyler Hicks <tyhicks@ou.edu> * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU General Public License version * 2 as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program; if not, write to the Free Software * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA * 02111-1307, USA. */ |
e8edc6e03
|
22 |
#include <linux/sched.h> |
5a0e3ad6a
|
23 |
#include <linux/slab.h> |
6a3fd92e7
|
24 25 |
#include <linux/user_namespace.h> #include <linux/nsproxy.h> |
88b4a07e6
|
26 |
#include "ecryptfs_kernel.h" |
dd2a3b7ad
|
27 28 29 |
static LIST_HEAD(ecryptfs_msg_ctx_free_list); static LIST_HEAD(ecryptfs_msg_ctx_alloc_list); static struct mutex ecryptfs_msg_ctx_lists_mux; |
88b4a07e6
|
30 |
|
f66e883eb
|
31 32 |
static struct hlist_head *ecryptfs_daemon_hash; struct mutex ecryptfs_daemon_hash_mux; |
a6f80fb7b
|
33 |
static int ecryptfs_hash_bits; |
2ecaf55db
|
34 |
#define ecryptfs_current_euid_hash(uid) \ |
cdf8c58a3
|
35 |
hash_long((unsigned long)from_kuid(&init_user_ns, current_euid()), ecryptfs_hash_bits) |
88b4a07e6
|
36 |
|
f66e883eb
|
37 |
static u32 ecryptfs_msg_counter; |
dd2a3b7ad
|
38 |
static struct ecryptfs_msg_ctx *ecryptfs_msg_ctx_arr; |
88b4a07e6
|
39 40 41 42 43 44 |
/** * ecryptfs_acquire_free_msg_ctx * @msg_ctx: The context that was acquired from the free list * * Acquires a context element from the free list and locks the mutex |
f66e883eb
|
45 46 47 48 |
* on the context. Sets the msg_ctx task to current. Returns zero on * success; non-zero on error or upon failure to acquire a free * context element. Must be called with ecryptfs_msg_ctx_lists_mux * held. |
88b4a07e6
|
49 50 51 52 53 54 55 |
*/ static int ecryptfs_acquire_free_msg_ctx(struct ecryptfs_msg_ctx **msg_ctx) { struct list_head *p; int rc; if (list_empty(&ecryptfs_msg_ctx_free_list)) { |
f66e883eb
|
56 57 58 59 60 61 |
printk(KERN_WARNING "%s: The eCryptfs free " "context list is empty. It may be helpful to " "specify the ecryptfs_message_buf_len " "parameter to be greater than the current " "value of [%d] ", __func__, ecryptfs_message_buf_len); |
88b4a07e6
|
62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 |
rc = -ENOMEM; goto out; } list_for_each(p, &ecryptfs_msg_ctx_free_list) { *msg_ctx = list_entry(p, struct ecryptfs_msg_ctx, node); if (mutex_trylock(&(*msg_ctx)->mux)) { (*msg_ctx)->task = current; rc = 0; goto out; } } rc = -ENOMEM; out: return rc; } /** * ecryptfs_msg_ctx_free_to_alloc * @msg_ctx: The context to move from the free list to the alloc list * |
f66e883eb
|
82 |
* Must be called with ecryptfs_msg_ctx_lists_mux held. |
88b4a07e6
|
83 84 85 86 87 88 89 90 91 92 93 94 |
*/ static void ecryptfs_msg_ctx_free_to_alloc(struct ecryptfs_msg_ctx *msg_ctx) { list_move(&msg_ctx->node, &ecryptfs_msg_ctx_alloc_list); msg_ctx->state = ECRYPTFS_MSG_CTX_STATE_PENDING; msg_ctx->counter = ++ecryptfs_msg_counter; } /** * ecryptfs_msg_ctx_alloc_to_free * @msg_ctx: The context to move from the alloc list to the free list * |
f66e883eb
|
95 |
* Must be called with ecryptfs_msg_ctx_lists_mux held. |
88b4a07e6
|
96 |
*/ |
f66e883eb
|
97 |
void ecryptfs_msg_ctx_alloc_to_free(struct ecryptfs_msg_ctx *msg_ctx) |
88b4a07e6
|
98 99 |
{ list_move(&(msg_ctx->node), &ecryptfs_msg_ctx_free_list); |
1101d5866
|
100 |
kfree(msg_ctx->msg); |
f66e883eb
|
101 |
msg_ctx->msg = NULL; |
88b4a07e6
|
102 103 104 105 |
msg_ctx->state = ECRYPTFS_MSG_CTX_STATE_FREE; } /** |
f66e883eb
|
106 |
* ecryptfs_find_daemon_by_euid |
f66e883eb
|
107 |
* @daemon: If return value is zero, points to the desired daemon pointer |
88b4a07e6
|
108 |
* |
f66e883eb
|
109 110 |
* Must be called with ecryptfs_daemon_hash_mux held. * |
2ecaf55db
|
111 |
* Search the hash list for the current effective user id. |
f66e883eb
|
112 113 |
* * Returns zero if the user id exists in the list; non-zero otherwise. |
88b4a07e6
|
114 |
*/ |
2ecaf55db
|
115 |
int ecryptfs_find_daemon_by_euid(struct ecryptfs_daemon **daemon) |
88b4a07e6
|
116 |
{ |
88b4a07e6
|
117 |
int rc; |
b67bfe0d4
|
118 |
hlist_for_each_entry(*daemon, |
2ecaf55db
|
119 120 |
&ecryptfs_daemon_hash[ecryptfs_current_euid_hash()], euid_chain) { |
cdf8c58a3
|
121 |
if (uid_eq((*daemon)->file->f_cred->euid, current_euid())) { |
88b4a07e6
|
122 123 124 125 126 127 128 129 |
rc = 0; goto out; } } rc = -EINVAL; out: return rc; } |
f66e883eb
|
130 131 132 |
/** * ecryptfs_spawn_daemon - Create and initialize a new daemon struct * @daemon: Pointer to set to newly allocated daemon struct |
2ecaf55db
|
133 |
* @file: File used when opening /dev/ecryptfs |
f66e883eb
|
134 135 136 137 138 139 140 |
* * Must be called ceremoniously while in possession of * ecryptfs_sacred_daemon_hash_mux * * Returns zero on success; non-zero otherwise */ int |
2ecaf55db
|
141 |
ecryptfs_spawn_daemon(struct ecryptfs_daemon **daemon, struct file *file) |
f66e883eb
|
142 143 144 145 146 147 |
{ int rc = 0; (*daemon) = kzalloc(sizeof(**daemon), GFP_KERNEL); if (!(*daemon)) { rc = -ENOMEM; |
df261c52a
|
148 |
printk(KERN_ERR "%s: Failed to allocate [%zd] bytes of " |
f66e883eb
|
149 150 151 152 |
"GFP_KERNEL memory ", __func__, sizeof(**daemon)); goto out; } |
2ecaf55db
|
153 |
(*daemon)->file = file; |
f66e883eb
|
154 155 156 157 158 |
mutex_init(&(*daemon)->mux); INIT_LIST_HEAD(&(*daemon)->msg_ctx_out_queue); init_waitqueue_head(&(*daemon)->wait); (*daemon)->num_queued_msg_ctx = 0; hlist_add_head(&(*daemon)->euid_chain, |
2ecaf55db
|
159 |
&ecryptfs_daemon_hash[ecryptfs_current_euid_hash()]); |
f66e883eb
|
160 |
out: |
88b4a07e6
|
161 162 163 164 |
return rc; } /** |
f66e883eb
|
165 166 167 168 169 170 171 172 173 174 175 176 177 178 |
* ecryptfs_exorcise_daemon - Destroy the daemon struct * * Must be called ceremoniously while in possession of * ecryptfs_daemon_hash_mux and the daemon's own mux. */ int ecryptfs_exorcise_daemon(struct ecryptfs_daemon *daemon) { struct ecryptfs_msg_ctx *msg_ctx, *msg_ctx_tmp; int rc = 0; mutex_lock(&daemon->mux); if ((daemon->flags & ECRYPTFS_DAEMON_IN_READ) || (daemon->flags & ECRYPTFS_DAEMON_IN_POLL)) { rc = -EBUSY; |
f66e883eb
|
179 180 181 182 183 184 185 186 187 188 189 190 191 |
mutex_unlock(&daemon->mux); goto out; } list_for_each_entry_safe(msg_ctx, msg_ctx_tmp, &daemon->msg_ctx_out_queue, daemon_out_list) { list_del(&msg_ctx->daemon_out_list); daemon->num_queued_msg_ctx--; printk(KERN_WARNING "%s: Warning: dropping message that is in " "the out queue of a dying daemon ", __func__); ecryptfs_msg_ctx_alloc_to_free(msg_ctx); } hlist_del(&daemon->euid_chain); |
f66e883eb
|
192 |
mutex_unlock(&daemon->mux); |
00fcf2cb6
|
193 |
kzfree(daemon); |
f66e883eb
|
194 |
out: |
88b4a07e6
|
195 196 197 198 |
return rc; } /** |
88b4a07e6
|
199 200 |
* ecryptfs_process_reponse * @msg: The ecryptfs message received; the caller should sanity check |
f66e883eb
|
201 |
* msg->data_len and free the memory |
f66e883eb
|
202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 |
* @seq: The sequence number of the message; must match the sequence * number for the existing message context waiting for this * response * * Processes a response message after sending an operation request to * userspace. Some other process is awaiting this response. Before * sending out its first communications, the other process allocated a * msg_ctx from the ecryptfs_msg_ctx_arr at a particular index. The * response message contains this index so that we can copy over the * response message into the msg_ctx that the process holds a * reference to. The other process is going to wake up, check to see * that msg_ctx->state == ECRYPTFS_MSG_CTX_STATE_DONE, and then * proceed to read off and process the response message. Returns zero * upon delivery to desired context element; non-zero upon delivery * failure or error. |
88b4a07e6
|
217 |
* |
f66e883eb
|
218 |
* Returns zero on success; non-zero otherwise |
88b4a07e6
|
219 |
*/ |
2ecaf55db
|
220 221 |
int ecryptfs_process_response(struct ecryptfs_daemon *daemon, struct ecryptfs_message *msg, u32 seq) |
88b4a07e6
|
222 |
{ |
88b4a07e6
|
223 |
struct ecryptfs_msg_ctx *msg_ctx; |
f66e883eb
|
224 |
size_t msg_size; |
88b4a07e6
|
225 226 227 228 |
int rc; if (msg->index >= ecryptfs_message_buf_len) { rc = -EINVAL; |
f66e883eb
|
229 230 231 232 233 |
printk(KERN_ERR "%s: Attempt to reference " "context buffer at index [%d]; maximum " "allowable is [%d] ", __func__, msg->index, (ecryptfs_message_buf_len - 1)); |
88b4a07e6
|
234 235 236 237 |
goto out; } msg_ctx = &ecryptfs_msg_ctx_arr[msg->index]; mutex_lock(&msg_ctx->mux); |
88b4a07e6
|
238 239 |
if (msg_ctx->state != ECRYPTFS_MSG_CTX_STATE_PENDING) { rc = -EINVAL; |
f66e883eb
|
240 241 242 |
printk(KERN_WARNING "%s: Desired context element is not " "pending a response ", __func__); |
88b4a07e6
|
243 244 245 |
goto unlock; } else if (msg_ctx->counter != seq) { rc = -EINVAL; |
f66e883eb
|
246 247 248 249 |
printk(KERN_WARNING "%s: Invalid message sequence; " "expected [%d]; received [%d] ", __func__, msg_ctx->counter, seq); |
88b4a07e6
|
250 251 |
goto unlock; } |
f66e883eb
|
252 |
msg_size = (sizeof(*msg) + msg->data_len); |
fc8b14d33
|
253 |
msg_ctx->msg = kmemdup(msg, msg_size, GFP_KERNEL); |
88b4a07e6
|
254 255 |
if (!msg_ctx->msg) { rc = -ENOMEM; |
df261c52a
|
256 |
printk(KERN_ERR "%s: Failed to allocate [%zd] bytes of " |
f66e883eb
|
257 258 |
"GFP_KERNEL memory ", __func__, msg_size); |
88b4a07e6
|
259 260 |
goto unlock; } |
88b4a07e6
|
261 |
msg_ctx->state = ECRYPTFS_MSG_CTX_STATE_DONE; |
88b4a07e6
|
262 |
wake_up_process(msg_ctx->task); |
2ecaf55db
|
263 |
rc = 0; |
88b4a07e6
|
264 265 266 267 268 269 270 |
unlock: mutex_unlock(&msg_ctx->mux); out: return rc; } /** |
f66e883eb
|
271 |
* ecryptfs_send_message_locked |
88b4a07e6
|
272 273 274 |
* @data: The data to send * @data_len: The length of data * @msg_ctx: The message context allocated for the send |
f66e883eb
|
275 276 277 278 |
* * Must be called with ecryptfs_daemon_hash_mux held. * * Returns zero on success; non-zero otherwise |
88b4a07e6
|
279 |
*/ |
f66e883eb
|
280 |
static int |
624ae5284
|
281 282 |
ecryptfs_send_message_locked(char *data, int data_len, u8 msg_type, struct ecryptfs_msg_ctx **msg_ctx) |
88b4a07e6
|
283 |
{ |
f66e883eb
|
284 |
struct ecryptfs_daemon *daemon; |
88b4a07e6
|
285 |
int rc; |
2ecaf55db
|
286 |
rc = ecryptfs_find_daemon_by_euid(&daemon); |
1111eae90
|
287 |
if (rc) { |
88b4a07e6
|
288 |
rc = -ENOTCONN; |
88b4a07e6
|
289 290 |
goto out; } |
88b4a07e6
|
291 292 293 294 |
mutex_lock(&ecryptfs_msg_ctx_lists_mux); rc = ecryptfs_acquire_free_msg_ctx(msg_ctx); if (rc) { mutex_unlock(&ecryptfs_msg_ctx_lists_mux); |
f66e883eb
|
295 296 297 |
printk(KERN_WARNING "%s: Could not claim a free " "context element ", __func__); |
88b4a07e6
|
298 299 300 301 302 |
goto out; } ecryptfs_msg_ctx_free_to_alloc(*msg_ctx); mutex_unlock(&(*msg_ctx)->mux); mutex_unlock(&ecryptfs_msg_ctx_lists_mux); |
624ae5284
|
303 304 |
rc = ecryptfs_send_miscdev(data, data_len, *msg_ctx, msg_type, 0, daemon); |
f66e883eb
|
305 306 307 308 |
if (rc) printk(KERN_ERR "%s: Error attempting to send message to " "userspace daemon; rc = [%d] ", __func__, rc); |
88b4a07e6
|
309 310 311 312 313 |
out: return rc; } /** |
f66e883eb
|
314 |
* ecryptfs_send_message |
f66e883eb
|
315 316 317 318 319 320 321 322 |
* @data: The data to send * @data_len: The length of data * @msg_ctx: The message context allocated for the send * * Grabs ecryptfs_daemon_hash_mux. * * Returns zero on success; non-zero otherwise */ |
624ae5284
|
323 |
int ecryptfs_send_message(char *data, int data_len, |
f66e883eb
|
324 325 326 327 328 |
struct ecryptfs_msg_ctx **msg_ctx) { int rc; mutex_lock(&ecryptfs_daemon_hash_mux); |
624ae5284
|
329 330 |
rc = ecryptfs_send_message_locked(data, data_len, ECRYPTFS_MSG_REQUEST, msg_ctx); |
f66e883eb
|
331 332 333 334 335 |
mutex_unlock(&ecryptfs_daemon_hash_mux); return rc; } /** |
88b4a07e6
|
336 337 338 339 340 341 342 343 |
* ecryptfs_wait_for_response * @msg_ctx: The context that was assigned when sending a message * @msg: The incoming message from userspace; not set if rc != 0 * * Sleeps until awaken by ecryptfs_receive_message or until the amount * of time exceeds ecryptfs_message_wait_timeout. If zero is * returned, msg will point to a valid message from userspace; a * non-zero value is returned upon failure to receive a message or an |
f66e883eb
|
344 |
* error occurs. Callee must free @msg on success. |
88b4a07e6
|
345 346 347 348 349 350 351 352 353 354 355 356 357 358 359 360 361 362 363 364 365 366 367 368 369 370 371 |
*/ int ecryptfs_wait_for_response(struct ecryptfs_msg_ctx *msg_ctx, struct ecryptfs_message **msg) { signed long timeout = ecryptfs_message_wait_timeout * HZ; int rc = 0; sleep: timeout = schedule_timeout_interruptible(timeout); mutex_lock(&ecryptfs_msg_ctx_lists_mux); mutex_lock(&msg_ctx->mux); if (msg_ctx->state != ECRYPTFS_MSG_CTX_STATE_DONE) { if (timeout) { mutex_unlock(&msg_ctx->mux); mutex_unlock(&ecryptfs_msg_ctx_lists_mux); goto sleep; } rc = -ENOMSG; } else { *msg = msg_ctx->msg; msg_ctx->msg = NULL; } ecryptfs_msg_ctx_alloc_to_free(msg_ctx); mutex_unlock(&msg_ctx->mux); mutex_unlock(&ecryptfs_msg_ctx_lists_mux); return rc; } |
7371a3820
|
372 |
int __init ecryptfs_init_messaging(void) |
88b4a07e6
|
373 374 375 376 377 378 |
{ int i; int rc = 0; if (ecryptfs_number_of_users > ECRYPTFS_MAX_NUM_USERS) { ecryptfs_number_of_users = ECRYPTFS_MAX_NUM_USERS; |
f66e883eb
|
379 380 381 382 |
printk(KERN_WARNING "%s: Specified number of users is " "too large, defaulting to [%d] users ", __func__, ecryptfs_number_of_users); |
88b4a07e6
|
383 |
} |
f66e883eb
|
384 385 |
mutex_init(&ecryptfs_daemon_hash_mux); mutex_lock(&ecryptfs_daemon_hash_mux); |
a6f80fb7b
|
386 387 388 |
ecryptfs_hash_bits = 1; while (ecryptfs_number_of_users >> ecryptfs_hash_bits) ecryptfs_hash_bits++; |
f66e883eb
|
389 |
ecryptfs_daemon_hash = kmalloc((sizeof(struct hlist_head) |
a6f80fb7b
|
390 391 |
* (1 << ecryptfs_hash_bits)), GFP_KERNEL); |
f66e883eb
|
392 |
if (!ecryptfs_daemon_hash) { |
88b4a07e6
|
393 |
rc = -ENOMEM; |
f66e883eb
|
394 395 396 |
printk(KERN_ERR "%s: Failed to allocate memory ", __func__); mutex_unlock(&ecryptfs_daemon_hash_mux); |
88b4a07e6
|
397 398 |
goto out; } |
a6f80fb7b
|
399 |
for (i = 0; i < (1 << ecryptfs_hash_bits); i++) |
f66e883eb
|
400 401 |
INIT_HLIST_HEAD(&ecryptfs_daemon_hash[i]); mutex_unlock(&ecryptfs_daemon_hash_mux); |
88b4a07e6
|
402 |
ecryptfs_msg_ctx_arr = kmalloc((sizeof(struct ecryptfs_msg_ctx) |
f66e883eb
|
403 404 |
* ecryptfs_message_buf_len), GFP_KERNEL); |
88b4a07e6
|
405 406 |
if (!ecryptfs_msg_ctx_arr) { rc = -ENOMEM; |
f66e883eb
|
407 408 |
printk(KERN_ERR "%s: Failed to allocate memory ", __func__); |
88b4a07e6
|
409 410 411 412 413 414 415 |
goto out; } mutex_init(&ecryptfs_msg_ctx_lists_mux); mutex_lock(&ecryptfs_msg_ctx_lists_mux); ecryptfs_msg_counter = 0; for (i = 0; i < ecryptfs_message_buf_len; i++) { INIT_LIST_HEAD(&ecryptfs_msg_ctx_arr[i].node); |
f66e883eb
|
416 |
INIT_LIST_HEAD(&ecryptfs_msg_ctx_arr[i].daemon_out_list); |
88b4a07e6
|
417 418 419 420 421 422 423 424 425 426 427 428 |
mutex_init(&ecryptfs_msg_ctx_arr[i].mux); mutex_lock(&ecryptfs_msg_ctx_arr[i].mux); ecryptfs_msg_ctx_arr[i].index = i; ecryptfs_msg_ctx_arr[i].state = ECRYPTFS_MSG_CTX_STATE_FREE; ecryptfs_msg_ctx_arr[i].counter = 0; ecryptfs_msg_ctx_arr[i].task = NULL; ecryptfs_msg_ctx_arr[i].msg = NULL; list_add_tail(&ecryptfs_msg_ctx_arr[i].node, &ecryptfs_msg_ctx_free_list); mutex_unlock(&ecryptfs_msg_ctx_arr[i].mux); } mutex_unlock(&ecryptfs_msg_ctx_lists_mux); |
624ae5284
|
429 430 431 |
rc = ecryptfs_init_ecryptfs_miscdev(); if (rc) ecryptfs_release_messaging(); |
88b4a07e6
|
432 433 434 |
out: return rc; } |
624ae5284
|
435 |
void ecryptfs_release_messaging(void) |
88b4a07e6
|
436 437 438 439 440 441 442 |
{ if (ecryptfs_msg_ctx_arr) { int i; mutex_lock(&ecryptfs_msg_ctx_lists_mux); for (i = 0; i < ecryptfs_message_buf_len; i++) { mutex_lock(&ecryptfs_msg_ctx_arr[i].mux); |
3db593e8a
|
443 |
kfree(ecryptfs_msg_ctx_arr[i].msg); |
88b4a07e6
|
444 445 446 447 448 |
mutex_unlock(&ecryptfs_msg_ctx_arr[i].mux); } kfree(ecryptfs_msg_ctx_arr); mutex_unlock(&ecryptfs_msg_ctx_lists_mux); } |
f66e883eb
|
449 |
if (ecryptfs_daemon_hash) { |
f66e883eb
|
450 |
struct ecryptfs_daemon *daemon; |
88b4a07e6
|
451 |
int i; |
f66e883eb
|
452 |
mutex_lock(&ecryptfs_daemon_hash_mux); |
a6f80fb7b
|
453 |
for (i = 0; i < (1 << ecryptfs_hash_bits); i++) { |
f66e883eb
|
454 |
int rc; |
b67bfe0d4
|
455 |
hlist_for_each_entry(daemon, |
f66e883eb
|
456 457 458 459 460 461 462 463 464 465 |
&ecryptfs_daemon_hash[i], euid_chain) { rc = ecryptfs_exorcise_daemon(daemon); if (rc) printk(KERN_ERR "%s: Error whilst " "attempting to destroy daemon; " "rc = [%d]. Dazed and confused, " "but trying to continue. ", __func__, rc); |
88b4a07e6
|
466 467 |
} } |
f66e883eb
|
468 469 |
kfree(ecryptfs_daemon_hash); mutex_unlock(&ecryptfs_daemon_hash_mux); |
88b4a07e6
|
470 |
} |
624ae5284
|
471 |
ecryptfs_destroy_ecryptfs_miscdev(); |
88b4a07e6
|
472 473 |
return; } |