1
2
3
4
5
6
7
8
9
10
11#include <linux/init.h>
12#include <linux/sched.h>
13#include <linux/slab.h>
14#include <linux/bitops.h>
15#include <linux/key.h>
16#include <linux/interrupt.h>
17#include <linux/module.h>
18#include <linux/user_namespace.h>
19
20
21
22
23
24
25#define UIDHASH_MASK (UIDHASH_SZ - 1)
26#define __uidhashfn(uid) (((uid >> UIDHASH_BITS) + uid) & UIDHASH_MASK)
27#define uidhashentry(ns, uid) ((ns)->uidhash_table + __uidhashfn((uid)))
28
29static struct kmem_cache *uid_cachep;
30
31
32
33
34
35
36
37
38
39
40static DEFINE_SPINLOCK(uidhash_lock);
41
42struct user_struct root_user = {
43 .__count = ATOMIC_INIT(1),
44 .processes = ATOMIC_INIT(1),
45 .files = ATOMIC_INIT(0),
46 .sigpending = ATOMIC_INIT(0),
47 .locked_shm = 0,
48#ifdef CONFIG_KEYS
49 .uid_keyring = &root_user_keyring,
50 .session_keyring = &root_session_keyring,
51#endif
52#ifdef CONFIG_FAIR_USER_SCHED
53 .tg = &init_task_group,
54#endif
55};
56
57
58
59
60static void uid_hash_insert(struct user_struct *up, struct hlist_head *hashent)
61{
62 hlist_add_head(&up->uidhash_node, hashent);
63}
64
65static void uid_hash_remove(struct user_struct *up)
66{
67 hlist_del_init(&up->uidhash_node);
68}
69
70static struct user_struct *uid_hash_find(uid_t uid, struct hlist_head *hashent)
71{
72 struct user_struct *user;
73 struct hlist_node *h;
74
75 hlist_for_each_entry(user, h, hashent, uidhash_node) {
76 if (user->uid == uid) {
77 atomic_inc(&user->__count);
78 return user;
79 }
80 }
81
82 return NULL;
83}
84
85#ifdef CONFIG_FAIR_USER_SCHED
86
87static void sched_destroy_user(struct user_struct *up)
88{
89 sched_destroy_group(up->tg);
90}
91
92static int sched_create_user(struct user_struct *up)
93{
94 int rc = 0;
95
96 up->tg = sched_create_group();
97 if (IS_ERR(up->tg))
98 rc = -ENOMEM;
99
100 return rc;
101}
102
103static void sched_switch_user(struct task_struct *p)
104{
105 sched_move_task(p);
106}
107
108#else
109
110static void sched_destroy_user(struct user_struct *up) { }
111static int sched_create_user(struct user_struct *up) { return 0; }
112static void sched_switch_user(struct task_struct *p) { }
113
114#endif
115
116#if defined(CONFIG_FAIR_USER_SCHED) && defined(CONFIG_SYSFS)
117
118static struct kobject uids_kobject;
119static DEFINE_MUTEX(uids_mutex);
120
121static inline void uids_mutex_lock(void)
122{
123 mutex_lock(&uids_mutex);
124}
125
126static inline void uids_mutex_unlock(void)
127{
128 mutex_unlock(&uids_mutex);
129}
130
131
132static ssize_t cpu_shares_show(struct kset *kset, char *buffer)
133{
134 struct user_struct *up = container_of(kset, struct user_struct, kset);
135
136 return sprintf(buffer, "%lu\n", sched_group_shares(up->tg));
137}
138
139
140static ssize_t cpu_shares_store(struct kset *kset, const char *buffer,
141 size_t size)
142{
143 struct user_struct *up = container_of(kset, struct user_struct, kset);
144 unsigned long shares;
145 int rc;
146
147 sscanf(buffer, "%lu", &shares);
148
149 rc = sched_group_set_shares(up->tg, shares);
150
151 return (rc ? rc : size);
152}
153
154static void user_attr_init(struct subsys_attribute *sa, char *name, int mode)
155{
156 sa->attr.name = name;
157 sa->attr.mode = mode;
158 sa->show = cpu_shares_show;
159 sa->store = cpu_shares_store;
160}
161
162
163
164
165static int user_kobject_create(struct user_struct *up)
166{
167 struct kset *kset = &up->kset;
168 struct kobject *kobj = &kset->kobj;
169 int error;
170
171 memset(kset, 0, sizeof(struct kset));
172 kobj->parent = &uids_kobject;
173 kobject_set_name(kobj, "%d", up->uid);
174 kset_init(kset);
175 user_attr_init(&up->user_attr, "cpu_share", 0644);
176
177 error = kobject_add(kobj);
178 if (error)
179 goto done;
180
181 error = sysfs_create_file(kobj, &up->user_attr.attr);
182 if (error)
183 kobject_del(kobj);
184
185 kobject_uevent(kobj, KOBJ_ADD);
186
187done:
188 return error;
189}
190
191
192
193
194
195
196int __init uids_kobject_init(void)
197{
198 int error;
199
200
201 uids_kobject.parent = &kernel_subsys.kobj;
202 uids_kobject.kset = &kernel_subsys;
203 kobject_set_name(&uids_kobject, "uids");
204 kobject_init(&uids_kobject);
205
206 error = kobject_add(&uids_kobject);
207 if (!error)
208 error = user_kobject_create(&root_user);
209
210 return error;
211}
212
213
214
215
216static void remove_user_sysfs_dir(struct work_struct *w)
217{
218 struct user_struct *up = container_of(w, struct user_struct, work);
219 struct kobject *kobj = &up->kset.kobj;
220 unsigned long flags;
221 int remove_user = 0;
222
223
224
225
226 uids_mutex_lock();
227
228 local_irq_save(flags);
229
230 if (atomic_dec_and_lock(&up->__count, &uidhash_lock)) {
231 uid_hash_remove(up);
232 remove_user = 1;
233 spin_unlock_irqrestore(&uidhash_lock, flags);
234 } else {
235 local_irq_restore(flags);
236 }
237
238 if (!remove_user)
239 goto done;
240
241 sysfs_remove_file(kobj, &up->user_attr.attr);
242 kobject_uevent(kobj, KOBJ_REMOVE);
243 kobject_del(kobj);
244
245 sched_destroy_user(up);
246 key_put(up->uid_keyring);
247 key_put(up->session_keyring);
248 kmem_cache_free(uid_cachep, up);
249
250done:
251 uids_mutex_unlock();
252}
253
254
255
256
257
258static inline void free_user(struct user_struct *up, unsigned long flags)
259{
260
261 atomic_inc(&up->__count);
262 spin_unlock_irqrestore(&uidhash_lock, flags);
263
264 INIT_WORK(&up->work, remove_user_sysfs_dir);
265 schedule_work(&up->work);
266}
267
268#else
269
270static inline int user_kobject_create(struct user_struct *up) { return 0; }
271static inline void uids_mutex_lock(void) { }
272static inline void uids_mutex_unlock(void) { }
273
274
275
276
277
278static inline void free_user(struct user_struct *up, unsigned long flags)
279{
280 uid_hash_remove(up);
281 spin_unlock_irqrestore(&uidhash_lock, flags);
282 sched_destroy_user(up);
283 key_put(up->uid_keyring);
284 key_put(up->session_keyring);
285 kmem_cache_free(uid_cachep, up);
286}
287
288#endif
289
290
291
292
293
294
295
296struct user_struct *find_user(uid_t uid)
297{
298 struct user_struct *ret;
299 unsigned long flags;
300 struct user_namespace *ns = current->nsproxy->user_ns;
301
302 spin_lock_irqsave(&uidhash_lock, flags);
303 ret = uid_hash_find(uid, uidhashentry(ns, uid));
304 spin_unlock_irqrestore(&uidhash_lock, flags);
305 return ret;
306}
307
308void free_uid(struct user_struct *up)
309{
310 unsigned long flags;
311
312 if (!up)
313 return;
314
315 local_irq_save(flags);
316 if (atomic_dec_and_lock(&up->__count, &uidhash_lock))
317 free_user(up, flags);
318 else
319 local_irq_restore(flags);
320}
321
322struct user_struct * alloc_uid(struct user_namespace *ns, uid_t uid)
323{
324 struct hlist_head *hashent = uidhashentry(ns, uid);
325 struct user_struct *up;
326
327
328
329
330 uids_mutex_lock();
331
332 spin_lock_irq(&uidhash_lock);
333 up = uid_hash_find(uid, hashent);
334 spin_unlock_irq(&uidhash_lock);
335
336 if (!up) {
337 struct user_struct *new;
338
339 new = kmem_cache_alloc(uid_cachep, GFP_KERNEL);
340 if (!new) {
341 uids_mutex_unlock();
342 return NULL;
343 }
344
345 new->uid = uid;
346 atomic_set(&new->__count, 1);
347 atomic_set(&new->processes, 0);
348 atomic_set(&new->files, 0);
349 atomic_set(&new->sigpending, 0);
350#ifdef CONFIG_INOTIFY_USER
351 atomic_set(&new->inotify_watches, 0);
352 atomic_set(&new->inotify_devs, 0);
353#endif
354#ifdef CONFIG_POSIX_MQUEUE
355 new->mq_bytes = 0;
356#endif
357 new->locked_shm = 0;
358
359 if (alloc_uid_keyring(new, current) < 0) {
360 kmem_cache_free(uid_cachep, new);
361 uids_mutex_unlock();
362 return NULL;
363 }
364
365 if (sched_create_user(new) < 0) {
366 key_put(new->uid_keyring);
367 key_put(new->session_keyring);
368 kmem_cache_free(uid_cachep, new);
369 uids_mutex_unlock();
370 return NULL;
371 }
372
373 if (user_kobject_create(new)) {
374 sched_destroy_user(new);
375 key_put(new->uid_keyring);
376 key_put(new->session_keyring);
377 kmem_cache_free(uid_cachep, new);
378 uids_mutex_unlock();
379 return NULL;
380 }
381
382
383
384
385
386 spin_lock_irq(&uidhash_lock);
387 up = uid_hash_find(uid, hashent);
388 if (up) {
389
390
391
392
393
394 key_put(new->uid_keyring);
395 key_put(new->session_keyring);
396 kmem_cache_free(uid_cachep, new);
397 } else {
398 uid_hash_insert(new, hashent);
399 up = new;
400 }
401 spin_unlock_irq(&uidhash_lock);
402
403 }
404
405 uids_mutex_unlock();
406
407 return up;
408}
409
410void switch_uid(struct user_struct *new_user)
411{
412 struct user_struct *old_user;
413
414
415
416
417
418
419 old_user = current->user;
420 atomic_inc(&new_user->processes);
421 atomic_dec(&old_user->processes);
422 switch_uid_keyring(new_user);
423 current->user = new_user;
424 sched_switch_user(current);
425
426
427
428
429
430
431
432
433 smp_mb();
434 spin_unlock_wait(¤t->sighand->siglock);
435
436 free_uid(old_user);
437 suid_keys(current);
438}
439
440void release_uids(struct user_namespace *ns)
441{
442 int i;
443 unsigned long flags;
444 struct hlist_head *head;
445 struct hlist_node *nd;
446
447 spin_lock_irqsave(&uidhash_lock, flags);
448
449
450
451
452
453 for (i = 0; i < UIDHASH_SZ; i++) {
454 head = ns->uidhash_table + i;
455 while (!hlist_empty(head)) {
456 nd = head->first;
457 hlist_del_init(nd);
458 }
459 }
460 spin_unlock_irqrestore(&uidhash_lock, flags);
461
462 free_uid(ns->root_user);
463}
464
465static int __init uid_cache_init(void)
466{
467 int n;
468
469 uid_cachep = kmem_cache_create("uid_cache", sizeof(struct user_struct),
470 0, SLAB_HWCACHE_ALIGN|SLAB_PANIC, NULL);
471
472 for(n = 0; n < UIDHASH_SZ; ++n)
473 INIT_HLIST_HEAD(init_user_ns.uidhash_table + n);
474
475
476 spin_lock_irq(&uidhash_lock);
477 uid_hash_insert(&root_user, uidhashentry(&init_user_ns, 0));
478 spin_unlock_irq(&uidhash_lock);
479
480 return 0;
481}
482
483module_init(uid_cache_init);
484