linux_uid16.c revision 302229
1/*- 2 * Copyright (c) 2001 The FreeBSD Project 3 * All rights reserved. 4 * 5 * Redistribution and use in source and binary forms, with or without 6 * modification, are permitted provided that the following conditions 7 * are met: 8 * 1. Redistributions of source code must retain the above copyright 9 * notice, this list of conditions and the following disclaimer. 10 * 2. Redistributions in binary form must reproduce the above copyright 11 * notice, this list of conditions and the following disclaimer in the 12 * documentation and/or other materials provided with the distribution. 13 * 14 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND 15 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 16 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 17 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE 18 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 19 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 20 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 21 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 22 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 23 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 24 * SUCH DAMAGE. 25 */ 26 27#include <sys/cdefs.h> 28__FBSDID("$FreeBSD: stable/10/sys/compat/linux/linux_uid16.c 302229 2016-06-27 21:25:01Z bdrewery $"); 29 30#include "opt_compat.h" 31#include "opt_kdtrace.h" 32 33#include <sys/fcntl.h> 34#include <sys/param.h> 35#include <sys/kernel.h> 36#include <sys/lock.h> 37#include <sys/malloc.h> 38#include <sys/mutex.h> 39#include <sys/priv.h> 40#include <sys/proc.h> 41#include <sys/sdt.h> 42#include <sys/syscallsubr.h> 43#include <sys/sysproto.h> 44#include <sys/systm.h> 45 46#ifdef COMPAT_LINUX32 47#include <machine/../linux32/linux.h> 48#include <machine/../linux32/linux32_proto.h> 49#else 50#include <machine/../linux/linux.h> 51#include <machine/../linux/linux_proto.h> 52#endif 53 54#include <compat/linux/linux_dtrace.h> 55#include <compat/linux/linux_util.h> 56 57/* DTrace init */ 58LIN_SDT_PROVIDER_DECLARE(LINUX_DTRACE); 59 60/** 61 * DTrace probes in this module. 62 */ 63LIN_SDT_PROBE_DEFINE3(uid16, linux_chown16, entry, "char *", "l_uid16_t", 64 "l_gid16_t"); 65LIN_SDT_PROBE_DEFINE1(uid16, linux_chown16, conv_path, "char *"); 66LIN_SDT_PROBE_DEFINE1(uid16, linux_chown16, return, "int"); 67LIN_SDT_PROBE_DEFINE3(uid16, linux_lchown16, entry, "char *", "l_uid16_t", 68 "l_gid16_t"); 69LIN_SDT_PROBE_DEFINE1(uid16, linux_lchown16, conv_path, "char *"); 70LIN_SDT_PROBE_DEFINE1(uid16, linux_lchown16, return, "int"); 71LIN_SDT_PROBE_DEFINE2(uid16, linux_setgroups16, entry, "l_uint", "l_gid16_t *"); 72LIN_SDT_PROBE_DEFINE1(uid16, linux_setgroups16, copyin_error, "int"); 73LIN_SDT_PROBE_DEFINE1(uid16, linux_setgroups16, priv_check_cred_error, "int"); 74LIN_SDT_PROBE_DEFINE1(uid16, linux_setgroups16, return, "int"); 75LIN_SDT_PROBE_DEFINE2(uid16, linux_getgroups16, entry, "l_uint", "l_gid16_t *"); 76LIN_SDT_PROBE_DEFINE1(uid16, linux_getgroups16, copyout_error, "int"); 77LIN_SDT_PROBE_DEFINE1(uid16, linux_getgroups16, return, "int"); 78LIN_SDT_PROBE_DEFINE0(uid16, linux_getgid16, entry); 79LIN_SDT_PROBE_DEFINE1(uid16, linux_getgid16, return, "int"); 80LIN_SDT_PROBE_DEFINE0(uid16, linux_getuid16, entry); 81LIN_SDT_PROBE_DEFINE1(uid16, linux_getuid16, return, "int"); 82LIN_SDT_PROBE_DEFINE0(uid16, linux_getegid16, entry); 83LIN_SDT_PROBE_DEFINE1(uid16, linux_getegid16, return, "int"); 84LIN_SDT_PROBE_DEFINE0(uid16, linux_geteuid16, entry); 85LIN_SDT_PROBE_DEFINE1(uid16, linux_geteuid16, return, "int"); 86LIN_SDT_PROBE_DEFINE1(uid16, linux_setgid16, entry, "l_gid16_t"); 87LIN_SDT_PROBE_DEFINE1(uid16, linux_setgid16, return, "int"); 88LIN_SDT_PROBE_DEFINE1(uid16, linux_setuid16, entry, "l_uid16_t"); 89LIN_SDT_PROBE_DEFINE1(uid16, linux_setuid16, return, "int"); 90LIN_SDT_PROBE_DEFINE2(uid16, linux_setregid16, entry, "l_gid16_t", "l_gid16_t"); 91LIN_SDT_PROBE_DEFINE1(uid16, linux_setregid16, return, "int"); 92LIN_SDT_PROBE_DEFINE2(uid16, linux_setreuid16, entry, "l_uid16_t", "l_uid16_t"); 93LIN_SDT_PROBE_DEFINE1(uid16, linux_setreuid16, return, "int"); 94LIN_SDT_PROBE_DEFINE3(uid16, linux_setresgid16, entry, "l_gid16_t", "l_gid16_t", 95 "l_gid16_t"); 96LIN_SDT_PROBE_DEFINE1(uid16, linux_setresgid16, return, "int"); 97LIN_SDT_PROBE_DEFINE3(uid16, linux_setresuid16, entry, "l_uid16_t", "l_uid16_t", 98 "l_uid16_t"); 99LIN_SDT_PROBE_DEFINE1(uid16, linux_setresuid16, return, "int"); 100 101DUMMY(setfsuid16); 102DUMMY(setfsgid16); 103DUMMY(getresuid16); 104DUMMY(getresgid16); 105 106#define CAST_NOCHG(x) ((x == 0xFFFF) ? -1 : x) 107 108int 109linux_chown16(struct thread *td, struct linux_chown16_args *args) 110{ 111 char *path; 112 int error; 113 114 LCONVPATHEXIST(td, args->path, &path); 115 116 /* 117 * The DTrace probes have to be after the LCONVPATHEXIST, as 118 * LCONVPATHEXIST may return on its own and we do not want to 119 * have a stray entry without the corresponding return. 120 */ 121 LIN_SDT_PROBE3(uid16, linux_chown16, entry, args->path, args->uid, 122 args->gid); 123 LIN_SDT_PROBE1(uid16, linux_chown16, conv_path, path); 124 125 error = kern_chown(td, path, UIO_SYSSPACE, CAST_NOCHG(args->uid), 126 CAST_NOCHG(args->gid)); 127 LFREEPATH(path); 128 129 LIN_SDT_PROBE1(uid16, linux_chown16, return, error); 130 return (error); 131} 132 133int 134linux_lchown16(struct thread *td, struct linux_lchown16_args *args) 135{ 136 char *path; 137 int error; 138 139 LCONVPATHEXIST(td, args->path, &path); 140 141 /* 142 * The DTrace probes have to be after the LCONVPATHEXIST, as 143 * LCONVPATHEXIST may return on its own and we do not want to 144 * have a stray entry without the corresponding return. 145 */ 146 LIN_SDT_PROBE3(uid16, linux_lchown16, entry, args->path, args->uid, 147 args->gid); 148 LIN_SDT_PROBE1(uid16, linux_lchown16, conv_path, path); 149 150 error = kern_lchown(td, path, UIO_SYSSPACE, CAST_NOCHG(args->uid), 151 CAST_NOCHG(args->gid)); 152 LFREEPATH(path); 153 154 LIN_SDT_PROBE1(uid16, linux_lchown16, return, error); 155 return (error); 156} 157 158int 159linux_setgroups16(struct thread *td, struct linux_setgroups16_args *args) 160{ 161 struct ucred *newcred, *oldcred; 162 l_gid16_t *linux_gidset; 163 gid_t *bsd_gidset; 164 int ngrp, error; 165 struct proc *p; 166 167 LIN_SDT_PROBE2(uid16, linux_setgroups16, entry, args->gidsetsize, 168 args->gidset); 169 170 ngrp = args->gidsetsize; 171 if (ngrp < 0 || ngrp >= ngroups_max + 1) { 172 LIN_SDT_PROBE1(uid16, linux_setgroups16, return, EINVAL); 173 return (EINVAL); 174 } 175 linux_gidset = malloc(ngrp * sizeof(*linux_gidset), M_LINUX, M_WAITOK); 176 error = copyin(args->gidset, linux_gidset, ngrp * sizeof(l_gid16_t)); 177 if (error) { 178 LIN_SDT_PROBE1(uid16, linux_setgroups16, copyin_error, error); 179 LIN_SDT_PROBE1(uid16, linux_setgroups16, return, error); 180 free(linux_gidset, M_LINUX); 181 return (error); 182 } 183 newcred = crget(); 184 p = td->td_proc; 185 PROC_LOCK(p); 186 oldcred = crcopysafe(p, newcred); 187 188 /* 189 * cr_groups[0] holds egid. Setting the whole set from 190 * the supplied set will cause egid to be changed too. 191 * Keep cr_groups[0] unchanged to prevent that. 192 */ 193 194 if ((error = priv_check_cred(oldcred, PRIV_CRED_SETGROUPS, 0)) != 0) { 195 PROC_UNLOCK(p); 196 crfree(newcred); 197 198 LIN_SDT_PROBE1(uid16, linux_setgroups16, priv_check_cred_error, 199 error); 200 goto out; 201 } 202 203 if (ngrp > 0) { 204 newcred->cr_ngroups = ngrp + 1; 205 206 bsd_gidset = newcred->cr_groups; 207 ngrp--; 208 while (ngrp >= 0) { 209 bsd_gidset[ngrp + 1] = linux_gidset[ngrp]; 210 ngrp--; 211 } 212 } 213 else 214 newcred->cr_ngroups = 1; 215 216 setsugid(td->td_proc); 217 proc_set_cred(p, newcred); 218 PROC_UNLOCK(p); 219 crfree(oldcred); 220 error = 0; 221out: 222 free(linux_gidset, M_LINUX); 223 224 LIN_SDT_PROBE1(uid16, linux_setgroups16, return, error); 225 return (error); 226} 227 228int 229linux_getgroups16(struct thread *td, struct linux_getgroups16_args *args) 230{ 231 struct ucred *cred; 232 l_gid16_t *linux_gidset; 233 gid_t *bsd_gidset; 234 int bsd_gidsetsz, ngrp, error; 235 236 LIN_SDT_PROBE2(uid16, linux_getgroups16, entry, args->gidsetsize, 237 args->gidset); 238 239 cred = td->td_ucred; 240 bsd_gidset = cred->cr_groups; 241 bsd_gidsetsz = cred->cr_ngroups - 1; 242 243 /* 244 * cr_groups[0] holds egid. Returning the whole set 245 * here will cause a duplicate. Exclude cr_groups[0] 246 * to prevent that. 247 */ 248 249 if ((ngrp = args->gidsetsize) == 0) { 250 td->td_retval[0] = bsd_gidsetsz; 251 252 LIN_SDT_PROBE1(uid16, linux_getgroups16, return, 0); 253 return (0); 254 } 255 256 if (ngrp < bsd_gidsetsz) { 257 LIN_SDT_PROBE1(uid16, linux_getgroups16, return, EINVAL); 258 return (EINVAL); 259 } 260 261 ngrp = 0; 262 linux_gidset = malloc(bsd_gidsetsz * sizeof(*linux_gidset), 263 M_LINUX, M_WAITOK); 264 while (ngrp < bsd_gidsetsz) { 265 linux_gidset[ngrp] = bsd_gidset[ngrp + 1]; 266 ngrp++; 267 } 268 269 error = copyout(linux_gidset, args->gidset, ngrp * sizeof(l_gid16_t)); 270 free(linux_gidset, M_LINUX); 271 if (error) { 272 LIN_SDT_PROBE1(uid16, linux_getgroups16, copyout_error, error); 273 LIN_SDT_PROBE1(uid16, linux_getgroups16, return, error); 274 return (error); 275 } 276 277 td->td_retval[0] = ngrp; 278 279 LIN_SDT_PROBE1(uid16, linux_getgroups16, return, 0); 280 return (0); 281} 282 283/* 284 * The FreeBSD native getgid(2) and getuid(2) also modify td->td_retval[1] 285 * when COMPAT_43 is defined. This clobbers registers that are assumed to 286 * be preserved. The following lightweight syscalls fixes this. See also 287 * linux_getpid(2), linux_getgid(2) and linux_getuid(2) in linux_misc.c 288 * 289 * linux_getgid16() - MP SAFE 290 * linux_getuid16() - MP SAFE 291 */ 292 293int 294linux_getgid16(struct thread *td, struct linux_getgid16_args *args) 295{ 296 297 LIN_SDT_PROBE0(uid16, linux_getgid16, entry); 298 299 td->td_retval[0] = td->td_ucred->cr_rgid; 300 301 LIN_SDT_PROBE1(uid16, linux_getgid16, return, 0); 302 return (0); 303} 304 305int 306linux_getuid16(struct thread *td, struct linux_getuid16_args *args) 307{ 308 309 LIN_SDT_PROBE0(uid16, linux_getuid16, entry); 310 311 td->td_retval[0] = td->td_ucred->cr_ruid; 312 313 LIN_SDT_PROBE1(uid16, linux_getuid16, return, 0); 314 return (0); 315} 316 317int 318linux_getegid16(struct thread *td, struct linux_getegid16_args *args) 319{ 320 struct getegid_args bsd; 321 int error; 322 323 LIN_SDT_PROBE0(uid16, linux_getegid16, entry); 324 325 error = sys_getegid(td, &bsd); 326 327 LIN_SDT_PROBE1(uid16, linux_getegid16, return, error); 328 return (error); 329} 330 331int 332linux_geteuid16(struct thread *td, struct linux_geteuid16_args *args) 333{ 334 struct geteuid_args bsd; 335 int error; 336 337 LIN_SDT_PROBE0(uid16, linux_geteuid16, entry); 338 339 error = sys_geteuid(td, &bsd); 340 341 LIN_SDT_PROBE1(uid16, linux_geteuid16, return, error); 342 return (error); 343} 344 345int 346linux_setgid16(struct thread *td, struct linux_setgid16_args *args) 347{ 348 struct setgid_args bsd; 349 int error; 350 351 LIN_SDT_PROBE1(uid16, linux_setgid16, entry, args->gid); 352 353 bsd.gid = args->gid; 354 error = sys_setgid(td, &bsd); 355 356 LIN_SDT_PROBE1(uid16, linux_setgid16, return, error); 357 return (error); 358} 359 360int 361linux_setuid16(struct thread *td, struct linux_setuid16_args *args) 362{ 363 struct setuid_args bsd; 364 int error; 365 366 LIN_SDT_PROBE1(uid16, linux_setuid16, entry, args->uid); 367 368 bsd.uid = args->uid; 369 error = sys_setuid(td, &bsd); 370 371 LIN_SDT_PROBE1(uid16, linux_setuid16, return, error); 372 return (error); 373} 374 375int 376linux_setregid16(struct thread *td, struct linux_setregid16_args *args) 377{ 378 struct setregid_args bsd; 379 int error; 380 381 LIN_SDT_PROBE2(uid16, linux_setregid16, entry, args->rgid, args->egid); 382 383 bsd.rgid = CAST_NOCHG(args->rgid); 384 bsd.egid = CAST_NOCHG(args->egid); 385 error = sys_setregid(td, &bsd); 386 387 LIN_SDT_PROBE1(uid16, linux_setregid16, return, error); 388 return (error); 389} 390 391int 392linux_setreuid16(struct thread *td, struct linux_setreuid16_args *args) 393{ 394 struct setreuid_args bsd; 395 int error; 396 397 LIN_SDT_PROBE2(uid16, linux_setreuid16, entry, args->ruid, args->euid); 398 399 bsd.ruid = CAST_NOCHG(args->ruid); 400 bsd.euid = CAST_NOCHG(args->euid); 401 error = sys_setreuid(td, &bsd); 402 403 LIN_SDT_PROBE1(uid16, linux_setreuid16, return, error); 404 return (error); 405} 406 407int 408linux_setresgid16(struct thread *td, struct linux_setresgid16_args *args) 409{ 410 struct setresgid_args bsd; 411 int error; 412 413 LIN_SDT_PROBE3(uid16, linux_setresgid16, entry, args->rgid, args->egid, 414 args->sgid); 415 416 bsd.rgid = CAST_NOCHG(args->rgid); 417 bsd.egid = CAST_NOCHG(args->egid); 418 bsd.sgid = CAST_NOCHG(args->sgid); 419 error = sys_setresgid(td, &bsd); 420 421 LIN_SDT_PROBE1(uid16, linux_setresgid16, return, error); 422 return (error); 423} 424 425int 426linux_setresuid16(struct thread *td, struct linux_setresuid16_args *args) 427{ 428 struct setresuid_args bsd; 429 int error; 430 431 LIN_SDT_PROBE3(uid16, linux_setresuid16, entry, args->ruid, args->euid, 432 args->suid); 433 434 bsd.ruid = CAST_NOCHG(args->ruid); 435 bsd.euid = CAST_NOCHG(args->euid); 436 bsd.suid = CAST_NOCHG(args->suid); 437 error = sys_setresuid(td, &bsd); 438 439 LIN_SDT_PROBE1(uid16, linux_setresuid16, return, error); 440 return (error); 441} 442