1 /*
2 * GPL HEADER START
3 *
4 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
5 *
6 * This program is free software; you can redistribute it and/or modify
7 * it under the terms of the GNU General Public License version 2 only,
8 * as published by the Free Software Foundation.
9 *
10 * This program is distributed in the hope that it will be useful, but
11 * WITHOUT ANY WARRANTY; without even the implied warranty of
12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
13 * General Public License version 2 for more details (a copy is included
14 * in the LICENSE file that accompanied this code).
15 *
16 * You should have received a copy of the GNU General Public License
17 * version 2 along with this program; If not, see
18 * http://www.gnu.org/licenses/gpl-2.0.html
19 *
20 * GPL HEADER END
21 */
22 /*
23 * Copyright (c) 2008, 2010, Oracle and/or its affiliates. All rights reserved.
24 * Use is subject to license terms.
25 *
26 * Copyright (c) 2012, Intel Corporation.
27 */
28 /*
29 * This file is part of Lustre, http://www.lustre.org/
30 * Lustre is a trademark of Sun Microsystems, Inc.
31 */
32
33 #define DEBUG_SUBSYSTEM S_LNET
34
35 #include "../../../include/linux/libcfs/libcfs.h"
36
37 #define LNET_MINOR 240
38
libcfs_ioctl_packlen(struct libcfs_ioctl_data * data)39 static inline size_t libcfs_ioctl_packlen(struct libcfs_ioctl_data *data)
40 {
41 size_t len = sizeof(*data);
42
43 len += cfs_size_round(data->ioc_inllen1);
44 len += cfs_size_round(data->ioc_inllen2);
45 return len;
46 }
47
libcfs_ioctl_is_invalid(struct libcfs_ioctl_data * data)48 static inline bool libcfs_ioctl_is_invalid(struct libcfs_ioctl_data *data)
49 {
50 if (data->ioc_hdr.ioc_len > BIT(30)) {
51 CERROR("LIBCFS ioctl: ioc_len larger than 1<<30\n");
52 return true;
53 }
54 if (data->ioc_inllen1 > BIT(30)) {
55 CERROR("LIBCFS ioctl: ioc_inllen1 larger than 1<<30\n");
56 return true;
57 }
58 if (data->ioc_inllen2 > BIT(30)) {
59 CERROR("LIBCFS ioctl: ioc_inllen2 larger than 1<<30\n");
60 return true;
61 }
62 if (data->ioc_inlbuf1 && !data->ioc_inllen1) {
63 CERROR("LIBCFS ioctl: inlbuf1 pointer but 0 length\n");
64 return true;
65 }
66 if (data->ioc_inlbuf2 && !data->ioc_inllen2) {
67 CERROR("LIBCFS ioctl: inlbuf2 pointer but 0 length\n");
68 return true;
69 }
70 if (data->ioc_pbuf1 && !data->ioc_plen1) {
71 CERROR("LIBCFS ioctl: pbuf1 pointer but 0 length\n");
72 return true;
73 }
74 if (data->ioc_pbuf2 && !data->ioc_plen2) {
75 CERROR("LIBCFS ioctl: pbuf2 pointer but 0 length\n");
76 return true;
77 }
78 if (data->ioc_plen1 && !data->ioc_pbuf1) {
79 CERROR("LIBCFS ioctl: plen1 nonzero but no pbuf1 pointer\n");
80 return true;
81 }
82 if (data->ioc_plen2 && !data->ioc_pbuf2) {
83 CERROR("LIBCFS ioctl: plen2 nonzero but no pbuf2 pointer\n");
84 return true;
85 }
86 if ((__u32)libcfs_ioctl_packlen(data) != data->ioc_hdr.ioc_len) {
87 CERROR("LIBCFS ioctl: packlen != ioc_len\n");
88 return true;
89 }
90 if (data->ioc_inllen1 &&
91 data->ioc_bulk[data->ioc_inllen1 - 1] != '\0') {
92 CERROR("LIBCFS ioctl: inlbuf1 not 0 terminated\n");
93 return true;
94 }
95 if (data->ioc_inllen2 &&
96 data->ioc_bulk[cfs_size_round(data->ioc_inllen1) +
97 data->ioc_inllen2 - 1] != '\0') {
98 CERROR("LIBCFS ioctl: inlbuf2 not 0 terminated\n");
99 return true;
100 }
101 return false;
102 }
103
libcfs_ioctl_data_adjust(struct libcfs_ioctl_data * data)104 int libcfs_ioctl_data_adjust(struct libcfs_ioctl_data *data)
105 {
106 if (libcfs_ioctl_is_invalid(data)) {
107 CERROR("libcfs ioctl: parameter not correctly formatted\n");
108 return -EINVAL;
109 }
110
111 if (data->ioc_inllen1)
112 data->ioc_inlbuf1 = &data->ioc_bulk[0];
113
114 if (data->ioc_inllen2)
115 data->ioc_inlbuf2 = &data->ioc_bulk[0] +
116 cfs_size_round(data->ioc_inllen1);
117
118 return 0;
119 }
120
libcfs_ioctl_getdata(struct libcfs_ioctl_hdr ** hdr_pp,const struct libcfs_ioctl_hdr __user * uhdr)121 int libcfs_ioctl_getdata(struct libcfs_ioctl_hdr **hdr_pp,
122 const struct libcfs_ioctl_hdr __user *uhdr)
123 {
124 struct libcfs_ioctl_hdr hdr;
125 int err = 0;
126
127 if (copy_from_user(&hdr, uhdr, sizeof(hdr)))
128 return -EFAULT;
129
130 if (hdr.ioc_version != LIBCFS_IOCTL_VERSION &&
131 hdr.ioc_version != LIBCFS_IOCTL_VERSION2) {
132 CERROR("libcfs ioctl: version mismatch expected %#x, got %#x\n",
133 LIBCFS_IOCTL_VERSION, hdr.ioc_version);
134 return -EINVAL;
135 }
136
137 if (hdr.ioc_len < sizeof(struct libcfs_ioctl_data)) {
138 CERROR("libcfs ioctl: user buffer too small for ioctl\n");
139 return -EINVAL;
140 }
141
142 if (hdr.ioc_len > LIBCFS_IOC_DATA_MAX) {
143 CERROR("libcfs ioctl: user buffer is too large %d/%d\n",
144 hdr.ioc_len, LIBCFS_IOC_DATA_MAX);
145 return -EINVAL;
146 }
147
148 LIBCFS_ALLOC(*hdr_pp, hdr.ioc_len);
149 if (!*hdr_pp)
150 return -ENOMEM;
151
152 if (copy_from_user(*hdr_pp, uhdr, hdr.ioc_len)) {
153 LIBCFS_FREE(*hdr_pp, hdr.ioc_len);
154 err = -EFAULT;
155 }
156 return err;
157 }
158
159 static long
libcfs_psdev_ioctl(struct file * file,unsigned int cmd,unsigned long arg)160 libcfs_psdev_ioctl(struct file *file, unsigned int cmd, unsigned long arg)
161 {
162 if (!capable(CAP_SYS_ADMIN))
163 return -EACCES;
164
165 if (_IOC_TYPE(cmd) != IOC_LIBCFS_TYPE ||
166 _IOC_NR(cmd) < IOC_LIBCFS_MIN_NR ||
167 _IOC_NR(cmd) > IOC_LIBCFS_MAX_NR) {
168 CDEBUG(D_IOCTL, "invalid ioctl ( type %d, nr %d, size %d )\n",
169 _IOC_TYPE(cmd), _IOC_NR(cmd), _IOC_SIZE(cmd));
170 return -EINVAL;
171 }
172
173 return libcfs_ioctl(cmd, (void __user *)arg);
174 }
175
176 static const struct file_operations libcfs_fops = {
177 .owner = THIS_MODULE,
178 .unlocked_ioctl = libcfs_psdev_ioctl,
179 };
180
181 struct miscdevice libcfs_dev = {
182 .minor = LNET_MINOR,
183 .name = "lnet",
184 .fops = &libcfs_fops,
185 };
186