1*4882a593Smuzhiyun // SPDX-License-Identifier: GPL-2.0-only
2*4882a593Smuzhiyun /*
3*4882a593Smuzhiyun * Copyright (C) 2007
4*4882a593Smuzhiyun *
5*4882a593Smuzhiyun * Author: Eric Biederman <ebiederm@xmision.com>
6*4882a593Smuzhiyun */
7*4882a593Smuzhiyun
8*4882a593Smuzhiyun #include <linux/module.h>
9*4882a593Smuzhiyun #include <linux/ipc.h>
10*4882a593Smuzhiyun #include <linux/nsproxy.h>
11*4882a593Smuzhiyun #include <linux/sysctl.h>
12*4882a593Smuzhiyun #include <linux/uaccess.h>
13*4882a593Smuzhiyun #include <linux/ipc_namespace.h>
14*4882a593Smuzhiyun #include <linux/msg.h>
15*4882a593Smuzhiyun #include "util.h"
16*4882a593Smuzhiyun
get_ipc(struct ctl_table * table)17*4882a593Smuzhiyun static void *get_ipc(struct ctl_table *table)
18*4882a593Smuzhiyun {
19*4882a593Smuzhiyun char *which = table->data;
20*4882a593Smuzhiyun struct ipc_namespace *ipc_ns = current->nsproxy->ipc_ns;
21*4882a593Smuzhiyun which = (which - (char *)&init_ipc_ns) + (char *)ipc_ns;
22*4882a593Smuzhiyun return which;
23*4882a593Smuzhiyun }
24*4882a593Smuzhiyun
25*4882a593Smuzhiyun #ifdef CONFIG_PROC_SYSCTL
proc_ipc_dointvec(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)26*4882a593Smuzhiyun static int proc_ipc_dointvec(struct ctl_table *table, int write,
27*4882a593Smuzhiyun void *buffer, size_t *lenp, loff_t *ppos)
28*4882a593Smuzhiyun {
29*4882a593Smuzhiyun struct ctl_table ipc_table;
30*4882a593Smuzhiyun
31*4882a593Smuzhiyun memcpy(&ipc_table, table, sizeof(ipc_table));
32*4882a593Smuzhiyun ipc_table.data = get_ipc(table);
33*4882a593Smuzhiyun
34*4882a593Smuzhiyun return proc_dointvec(&ipc_table, write, buffer, lenp, ppos);
35*4882a593Smuzhiyun }
36*4882a593Smuzhiyun
proc_ipc_dointvec_minmax(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)37*4882a593Smuzhiyun static int proc_ipc_dointvec_minmax(struct ctl_table *table, int write,
38*4882a593Smuzhiyun void *buffer, size_t *lenp, loff_t *ppos)
39*4882a593Smuzhiyun {
40*4882a593Smuzhiyun struct ctl_table ipc_table;
41*4882a593Smuzhiyun
42*4882a593Smuzhiyun memcpy(&ipc_table, table, sizeof(ipc_table));
43*4882a593Smuzhiyun ipc_table.data = get_ipc(table);
44*4882a593Smuzhiyun
45*4882a593Smuzhiyun return proc_dointvec_minmax(&ipc_table, write, buffer, lenp, ppos);
46*4882a593Smuzhiyun }
47*4882a593Smuzhiyun
proc_ipc_dointvec_minmax_orphans(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)48*4882a593Smuzhiyun static int proc_ipc_dointvec_minmax_orphans(struct ctl_table *table, int write,
49*4882a593Smuzhiyun void *buffer, size_t *lenp, loff_t *ppos)
50*4882a593Smuzhiyun {
51*4882a593Smuzhiyun struct ipc_namespace *ns = current->nsproxy->ipc_ns;
52*4882a593Smuzhiyun int err = proc_ipc_dointvec_minmax(table, write, buffer, lenp, ppos);
53*4882a593Smuzhiyun
54*4882a593Smuzhiyun if (err < 0)
55*4882a593Smuzhiyun return err;
56*4882a593Smuzhiyun if (ns->shm_rmid_forced)
57*4882a593Smuzhiyun shm_destroy_orphaned(ns);
58*4882a593Smuzhiyun return err;
59*4882a593Smuzhiyun }
60*4882a593Smuzhiyun
proc_ipc_doulongvec_minmax(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)61*4882a593Smuzhiyun static int proc_ipc_doulongvec_minmax(struct ctl_table *table, int write,
62*4882a593Smuzhiyun void *buffer, size_t *lenp, loff_t *ppos)
63*4882a593Smuzhiyun {
64*4882a593Smuzhiyun struct ctl_table ipc_table;
65*4882a593Smuzhiyun memcpy(&ipc_table, table, sizeof(ipc_table));
66*4882a593Smuzhiyun ipc_table.data = get_ipc(table);
67*4882a593Smuzhiyun
68*4882a593Smuzhiyun return proc_doulongvec_minmax(&ipc_table, write, buffer,
69*4882a593Smuzhiyun lenp, ppos);
70*4882a593Smuzhiyun }
71*4882a593Smuzhiyun
proc_ipc_auto_msgmni(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)72*4882a593Smuzhiyun static int proc_ipc_auto_msgmni(struct ctl_table *table, int write,
73*4882a593Smuzhiyun void *buffer, size_t *lenp, loff_t *ppos)
74*4882a593Smuzhiyun {
75*4882a593Smuzhiyun struct ctl_table ipc_table;
76*4882a593Smuzhiyun int dummy = 0;
77*4882a593Smuzhiyun
78*4882a593Smuzhiyun memcpy(&ipc_table, table, sizeof(ipc_table));
79*4882a593Smuzhiyun ipc_table.data = &dummy;
80*4882a593Smuzhiyun
81*4882a593Smuzhiyun if (write)
82*4882a593Smuzhiyun pr_info_once("writing to auto_msgmni has no effect");
83*4882a593Smuzhiyun
84*4882a593Smuzhiyun return proc_dointvec_minmax(&ipc_table, write, buffer, lenp, ppos);
85*4882a593Smuzhiyun }
86*4882a593Smuzhiyun
proc_ipc_sem_dointvec(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)87*4882a593Smuzhiyun static int proc_ipc_sem_dointvec(struct ctl_table *table, int write,
88*4882a593Smuzhiyun void *buffer, size_t *lenp, loff_t *ppos)
89*4882a593Smuzhiyun {
90*4882a593Smuzhiyun int ret, semmni;
91*4882a593Smuzhiyun struct ipc_namespace *ns = current->nsproxy->ipc_ns;
92*4882a593Smuzhiyun
93*4882a593Smuzhiyun semmni = ns->sem_ctls[3];
94*4882a593Smuzhiyun ret = proc_ipc_dointvec(table, write, buffer, lenp, ppos);
95*4882a593Smuzhiyun
96*4882a593Smuzhiyun if (!ret)
97*4882a593Smuzhiyun ret = sem_check_semmni(current->nsproxy->ipc_ns);
98*4882a593Smuzhiyun
99*4882a593Smuzhiyun /*
100*4882a593Smuzhiyun * Reset the semmni value if an error happens.
101*4882a593Smuzhiyun */
102*4882a593Smuzhiyun if (ret)
103*4882a593Smuzhiyun ns->sem_ctls[3] = semmni;
104*4882a593Smuzhiyun return ret;
105*4882a593Smuzhiyun }
106*4882a593Smuzhiyun
107*4882a593Smuzhiyun #else
108*4882a593Smuzhiyun #define proc_ipc_doulongvec_minmax NULL
109*4882a593Smuzhiyun #define proc_ipc_dointvec NULL
110*4882a593Smuzhiyun #define proc_ipc_dointvec_minmax NULL
111*4882a593Smuzhiyun #define proc_ipc_dointvec_minmax_orphans NULL
112*4882a593Smuzhiyun #define proc_ipc_auto_msgmni NULL
113*4882a593Smuzhiyun #define proc_ipc_sem_dointvec NULL
114*4882a593Smuzhiyun #endif
115*4882a593Smuzhiyun
116*4882a593Smuzhiyun int ipc_mni = IPCMNI;
117*4882a593Smuzhiyun int ipc_mni_shift = IPCMNI_SHIFT;
118*4882a593Smuzhiyun int ipc_min_cycle = RADIX_TREE_MAP_SIZE;
119*4882a593Smuzhiyun
120*4882a593Smuzhiyun static struct ctl_table ipc_kern_table[] = {
121*4882a593Smuzhiyun {
122*4882a593Smuzhiyun .procname = "shmmax",
123*4882a593Smuzhiyun .data = &init_ipc_ns.shm_ctlmax,
124*4882a593Smuzhiyun .maxlen = sizeof(init_ipc_ns.shm_ctlmax),
125*4882a593Smuzhiyun .mode = 0644,
126*4882a593Smuzhiyun .proc_handler = proc_ipc_doulongvec_minmax,
127*4882a593Smuzhiyun },
128*4882a593Smuzhiyun {
129*4882a593Smuzhiyun .procname = "shmall",
130*4882a593Smuzhiyun .data = &init_ipc_ns.shm_ctlall,
131*4882a593Smuzhiyun .maxlen = sizeof(init_ipc_ns.shm_ctlall),
132*4882a593Smuzhiyun .mode = 0644,
133*4882a593Smuzhiyun .proc_handler = proc_ipc_doulongvec_minmax,
134*4882a593Smuzhiyun },
135*4882a593Smuzhiyun {
136*4882a593Smuzhiyun .procname = "shmmni",
137*4882a593Smuzhiyun .data = &init_ipc_ns.shm_ctlmni,
138*4882a593Smuzhiyun .maxlen = sizeof(init_ipc_ns.shm_ctlmni),
139*4882a593Smuzhiyun .mode = 0644,
140*4882a593Smuzhiyun .proc_handler = proc_ipc_dointvec_minmax,
141*4882a593Smuzhiyun .extra1 = SYSCTL_ZERO,
142*4882a593Smuzhiyun .extra2 = &ipc_mni,
143*4882a593Smuzhiyun },
144*4882a593Smuzhiyun {
145*4882a593Smuzhiyun .procname = "shm_rmid_forced",
146*4882a593Smuzhiyun .data = &init_ipc_ns.shm_rmid_forced,
147*4882a593Smuzhiyun .maxlen = sizeof(init_ipc_ns.shm_rmid_forced),
148*4882a593Smuzhiyun .mode = 0644,
149*4882a593Smuzhiyun .proc_handler = proc_ipc_dointvec_minmax_orphans,
150*4882a593Smuzhiyun .extra1 = SYSCTL_ZERO,
151*4882a593Smuzhiyun .extra2 = SYSCTL_ONE,
152*4882a593Smuzhiyun },
153*4882a593Smuzhiyun {
154*4882a593Smuzhiyun .procname = "msgmax",
155*4882a593Smuzhiyun .data = &init_ipc_ns.msg_ctlmax,
156*4882a593Smuzhiyun .maxlen = sizeof(init_ipc_ns.msg_ctlmax),
157*4882a593Smuzhiyun .mode = 0644,
158*4882a593Smuzhiyun .proc_handler = proc_ipc_dointvec_minmax,
159*4882a593Smuzhiyun .extra1 = SYSCTL_ZERO,
160*4882a593Smuzhiyun .extra2 = SYSCTL_INT_MAX,
161*4882a593Smuzhiyun },
162*4882a593Smuzhiyun {
163*4882a593Smuzhiyun .procname = "msgmni",
164*4882a593Smuzhiyun .data = &init_ipc_ns.msg_ctlmni,
165*4882a593Smuzhiyun .maxlen = sizeof(init_ipc_ns.msg_ctlmni),
166*4882a593Smuzhiyun .mode = 0644,
167*4882a593Smuzhiyun .proc_handler = proc_ipc_dointvec_minmax,
168*4882a593Smuzhiyun .extra1 = SYSCTL_ZERO,
169*4882a593Smuzhiyun .extra2 = &ipc_mni,
170*4882a593Smuzhiyun },
171*4882a593Smuzhiyun {
172*4882a593Smuzhiyun .procname = "auto_msgmni",
173*4882a593Smuzhiyun .data = NULL,
174*4882a593Smuzhiyun .maxlen = sizeof(int),
175*4882a593Smuzhiyun .mode = 0644,
176*4882a593Smuzhiyun .proc_handler = proc_ipc_auto_msgmni,
177*4882a593Smuzhiyun .extra1 = SYSCTL_ZERO,
178*4882a593Smuzhiyun .extra2 = SYSCTL_ONE,
179*4882a593Smuzhiyun },
180*4882a593Smuzhiyun {
181*4882a593Smuzhiyun .procname = "msgmnb",
182*4882a593Smuzhiyun .data = &init_ipc_ns.msg_ctlmnb,
183*4882a593Smuzhiyun .maxlen = sizeof(init_ipc_ns.msg_ctlmnb),
184*4882a593Smuzhiyun .mode = 0644,
185*4882a593Smuzhiyun .proc_handler = proc_ipc_dointvec_minmax,
186*4882a593Smuzhiyun .extra1 = SYSCTL_ZERO,
187*4882a593Smuzhiyun .extra2 = SYSCTL_INT_MAX,
188*4882a593Smuzhiyun },
189*4882a593Smuzhiyun {
190*4882a593Smuzhiyun .procname = "sem",
191*4882a593Smuzhiyun .data = &init_ipc_ns.sem_ctls,
192*4882a593Smuzhiyun .maxlen = 4*sizeof(int),
193*4882a593Smuzhiyun .mode = 0644,
194*4882a593Smuzhiyun .proc_handler = proc_ipc_sem_dointvec,
195*4882a593Smuzhiyun },
196*4882a593Smuzhiyun #ifdef CONFIG_CHECKPOINT_RESTORE
197*4882a593Smuzhiyun {
198*4882a593Smuzhiyun .procname = "sem_next_id",
199*4882a593Smuzhiyun .data = &init_ipc_ns.ids[IPC_SEM_IDS].next_id,
200*4882a593Smuzhiyun .maxlen = sizeof(init_ipc_ns.ids[IPC_SEM_IDS].next_id),
201*4882a593Smuzhiyun .mode = 0644,
202*4882a593Smuzhiyun .proc_handler = proc_ipc_dointvec_minmax,
203*4882a593Smuzhiyun .extra1 = SYSCTL_ZERO,
204*4882a593Smuzhiyun .extra2 = SYSCTL_INT_MAX,
205*4882a593Smuzhiyun },
206*4882a593Smuzhiyun {
207*4882a593Smuzhiyun .procname = "msg_next_id",
208*4882a593Smuzhiyun .data = &init_ipc_ns.ids[IPC_MSG_IDS].next_id,
209*4882a593Smuzhiyun .maxlen = sizeof(init_ipc_ns.ids[IPC_MSG_IDS].next_id),
210*4882a593Smuzhiyun .mode = 0644,
211*4882a593Smuzhiyun .proc_handler = proc_ipc_dointvec_minmax,
212*4882a593Smuzhiyun .extra1 = SYSCTL_ZERO,
213*4882a593Smuzhiyun .extra2 = SYSCTL_INT_MAX,
214*4882a593Smuzhiyun },
215*4882a593Smuzhiyun {
216*4882a593Smuzhiyun .procname = "shm_next_id",
217*4882a593Smuzhiyun .data = &init_ipc_ns.ids[IPC_SHM_IDS].next_id,
218*4882a593Smuzhiyun .maxlen = sizeof(init_ipc_ns.ids[IPC_SHM_IDS].next_id),
219*4882a593Smuzhiyun .mode = 0644,
220*4882a593Smuzhiyun .proc_handler = proc_ipc_dointvec_minmax,
221*4882a593Smuzhiyun .extra1 = SYSCTL_ZERO,
222*4882a593Smuzhiyun .extra2 = SYSCTL_INT_MAX,
223*4882a593Smuzhiyun },
224*4882a593Smuzhiyun #endif
225*4882a593Smuzhiyun {}
226*4882a593Smuzhiyun };
227*4882a593Smuzhiyun
228*4882a593Smuzhiyun static struct ctl_table ipc_root_table[] = {
229*4882a593Smuzhiyun {
230*4882a593Smuzhiyun .procname = "kernel",
231*4882a593Smuzhiyun .mode = 0555,
232*4882a593Smuzhiyun .child = ipc_kern_table,
233*4882a593Smuzhiyun },
234*4882a593Smuzhiyun {}
235*4882a593Smuzhiyun };
236*4882a593Smuzhiyun
ipc_sysctl_init(void)237*4882a593Smuzhiyun static int __init ipc_sysctl_init(void)
238*4882a593Smuzhiyun {
239*4882a593Smuzhiyun register_sysctl_table(ipc_root_table);
240*4882a593Smuzhiyun return 0;
241*4882a593Smuzhiyun }
242*4882a593Smuzhiyun
243*4882a593Smuzhiyun device_initcall(ipc_sysctl_init);
244*4882a593Smuzhiyun
ipc_mni_extend(char * str)245*4882a593Smuzhiyun static int __init ipc_mni_extend(char *str)
246*4882a593Smuzhiyun {
247*4882a593Smuzhiyun ipc_mni = IPCMNI_EXTEND;
248*4882a593Smuzhiyun ipc_mni_shift = IPCMNI_EXTEND_SHIFT;
249*4882a593Smuzhiyun ipc_min_cycle = IPCMNI_EXTEND_MIN_CYCLE;
250*4882a593Smuzhiyun pr_info("IPCMNI extended to %d.\n", ipc_mni);
251*4882a593Smuzhiyun return 0;
252*4882a593Smuzhiyun }
253*4882a593Smuzhiyun early_param("ipcmni_extend", ipc_mni_extend);
254