Acasă Explorează Ajutor
Autentificare
GfA
/
linux_kernel
5
0
Bifurcare 0
Fisiere Probleme 0 Trageți solicitările 0 Wiki
Arbore: 19fd08b85b
Ramuri Etichete
linux_kernel
/
drivers
/
infiniband
/
core
/
security.c

security.c 18 KB
Istoric Crud

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755 
  1. /*
    2. 

  2.  * Copyright (c) 2016 Mellanox Technologies Ltd.  All rights reserved.
    3. 

  3.  *
    4. 

  4.  * This software is available to you under a choice of one of two
    5. 

  5.  * licenses.  You may choose to be licensed under the terms of the GNU
    6. 

  6.  * General Public License (GPL) Version 2, available from the file
    7. 

  7.  * COPYING in the main directory of this source tree, or the
    8. 

  8.  * OpenIB.org BSD license below:
    9. 

  9.  *
    10. 

  10.  *     Redistribution and use in source and binary forms, with or
    11. 

  11.  *     without modification, are permitted provided that the following
    12. 

  12.  *     conditions are met:
    13. 

  13.  *
    14. 

  14.  *      - Redistributions of source code must retain the above
    15. 

  15.  *        copyright notice, this list of conditions and the following
    16. 

  16.  *        disclaimer.
    17. 

  17.  *
    18. 

  18.  *      - Redistributions in binary form must reproduce the above
    19. 

  19.  *        copyright notice, this list of conditions and the following
    20. 

  20.  *        disclaimer in the documentation and/or other materials
    21. 

  21.  *        provided with the distribution.
    22. 

  22.  *
    23. 

  23.  * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
    24. 

  24.  * EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
    25. 

  25.  * MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
    26. 

  26.  * NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS
    27. 

  27.  * BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN
    28. 

  28.  * ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN
    29. 

  29.  * CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
    30. 

  30.  * SOFTWARE.
    31. 

  31.  */
    32. 

  32. 

  33. #ifdef CONFIG_SECURITY_INFINIBAND
    34. 

  34. 

  35. #include <linux/security.h>
    36. 

  36. #include <linux/completion.h>
    37. 

  37. #include <linux/list.h>
    38. 

  38. 

  39. #include <rdma/ib_verbs.h>
    40. 

  40. #include <rdma/ib_cache.h>
    41. 

  41. #include "core_priv.h"
    42. 

  42. #include "mad_priv.h"
    43. 

  43. 

  44. static struct pkey_index_qp_list *get_pkey_idx_qp_list(struct ib_port_pkey *pp)
    45. 

  45. {
    46. 

  46. 	struct pkey_index_qp_list *pkey = NULL;
    47. 

  47. 	struct pkey_index_qp_list *tmp_pkey;
    48. 

  48. 	struct ib_device *dev = pp->sec->dev;
    49. 

  49. 

  50. 	spin_lock(&dev->port_pkey_list[pp->port_num].list_lock);
    51. 

  51. 	list_for_each_entry(tmp_pkey,
    52. 

  52. 			    &dev->port_pkey_list[pp->port_num].pkey_list,
    53. 

  53. 			    pkey_index_list) {
    54. 

  54. 		if (tmp_pkey->pkey_index == pp->pkey_index) {
    55. 

  55. 			pkey = tmp_pkey;
    56. 

  56. 			break;
    57. 

  57. 		}
    58. 

  58. 	}
    59. 

  59. 	spin_unlock(&dev->port_pkey_list[pp->port_num].list_lock);
    60. 

  60. 	return pkey;
    61. 

  61. }
    62. 

  62. 

  63. static int get_pkey_and_subnet_prefix(struct ib_port_pkey *pp,
    64. 

  64. 				      u16 *pkey,
    65. 

  65. 				      u64 *subnet_prefix)
    66. 

  66. {
    67. 

  67. 	struct ib_device *dev = pp->sec->dev;
    68. 

  68. 	int ret;
    69. 

  69. 

  70. 	ret = ib_get_cached_pkey(dev, pp->port_num, pp->pkey_index, pkey);
    71. 

  71. 	if (ret)
    72. 

  72. 		return ret;
    73. 

  73. 

  74. 	ret = ib_get_cached_subnet_prefix(dev, pp->port_num, subnet_prefix);
    75. 

  75. 

  76. 	return ret;
    77. 

  77. }
    78. 

  78. 

  79. static int enforce_qp_pkey_security(u16 pkey,
    80. 

  80. 				    u64 subnet_prefix,
    81. 

  81. 				    struct ib_qp_security *qp_sec)
    82. 

  82. {
    83. 

  83. 	struct ib_qp_security *shared_qp_sec;
    84. 

  84. 	int ret;
    85. 

  85. 

  86. 	ret = security_ib_pkey_access(qp_sec->security, subnet_prefix, pkey);
    87. 

  87. 	if (ret)
    88. 

  88. 		return ret;
    89. 

  89. 

  90. 	list_for_each_entry(shared_qp_sec,
    91. 

  91. 			    &qp_sec->shared_qp_list,
    92. 

  92. 			    shared_qp_list) {
    93. 

  93. 		ret = security_ib_pkey_access(shared_qp_sec->security,
    94. 

  94. 					      subnet_prefix,
    95. 

  95. 					      pkey);
    96. 

  96. 		if (ret)
    97. 

  97. 			return ret;
    98. 

  98. 	}
    99. 

  99. 	return 0;
    100. 

  100. }
    101. 

  101. 

  102. /* The caller of this function must hold the QP security
    103. 

  103.  * mutex of the QP of the security structure in *pps.
    104. 

  104.  *
    105. 

  105.  * It takes separate ports_pkeys and security structure
    106. 

  106.  * because in some cases the pps will be for a new settings
    107. 

  107.  * or the pps will be for the real QP and security structure
    108. 

  108.  * will be for a shared QP.
    109. 

  109.  */
    110. 

  110. static int check_qp_port_pkey_settings(struct ib_ports_pkeys *pps,
    111. 

  111. 				       struct ib_qp_security *sec)
    112. 

  112. {
    113. 

  113. 	u64 subnet_prefix;
    114. 

  114. 	u16 pkey;
    115. 

  115. 	int ret = 0;
    116. 

  116. 

  117. 	if (!pps)
    118. 

  118. 		return 0;
    119. 

  119. 

  120. 	if (pps->main.state != IB_PORT_PKEY_NOT_VALID) {
    121. 

  121. 		ret = get_pkey_and_subnet_prefix(&pps->main,
    122. 

  122. 						 &pkey,
    123. 

  123. 						 &subnet_prefix);
    124. 

  124. 		if (ret)
    125. 

  125. 			return ret;
    126. 

  126. 

  127. 		ret = enforce_qp_pkey_security(pkey,
    128. 

  128. 					       subnet_prefix,
    129. 

  129. 					       sec);
    130. 

  130. 		if (ret)
    131. 

  131. 			return ret;
    132. 

  132. 	}
    133. 

  133. 

  134. 	if (pps->alt.state != IB_PORT_PKEY_NOT_VALID) {
    135. 

  135. 		ret = get_pkey_and_subnet_prefix(&pps->alt,
    136. 

  136. 						 &pkey,
    137. 

  137. 						 &subnet_prefix);
    138. 

  138. 		if (ret)
    139. 

  139. 			return ret;
    140. 

  140. 

  141. 		ret = enforce_qp_pkey_security(pkey,
    142. 

  142. 					       subnet_prefix,
    143. 

  143. 					       sec);
    144. 

  144. 	}
    145. 

  145. 

  146. 	return ret;
    147. 

  147. }
    148. 

  148. 

  149. /* The caller of this function must hold the QP security
    150. 

  150.  * mutex.
    151. 

  151.  */
    152. 

  152. static void qp_to_error(struct ib_qp_security *sec)
    153. 

  153. {
    154. 

  154. 	struct ib_qp_security *shared_qp_sec;
    155. 

  155. 	struct ib_qp_attr attr = {
    156. 

  156. 		.qp_state = IB_QPS_ERR
    157. 

  157. 	};
    158. 

  158. 	struct ib_event event = {
    159. 

  159. 		.event = IB_EVENT_QP_FATAL
    160. 

  160. 	};
    161. 

  161. 

  162. 	/* If the QP is in the process of being destroyed
    163. 

  163. 	 * the qp pointer in the security structure is
    164. 

  164. 	 * undefined.  It cannot be modified now.
    165. 

  165. 	 */
    166. 

  166. 	if (sec->destroying)
    167. 

  167. 		return;
    168. 

  168. 

  169. 	ib_modify_qp(sec->qp,
    170. 

  170. 		     &attr,
    171. 

  171. 		     IB_QP_STATE);
    172. 

  172. 

  173. 	if (sec->qp->event_handler && sec->qp->qp_context) {
    174. 

  174. 		event.element.qp = sec->qp;
    175. 

  175. 		sec->qp->event_handler(&event,
    176. 

  176. 				       sec->qp->qp_context);
    177. 

  177. 	}
    178. 

  178. 

  179. 	list_for_each_entry(shared_qp_sec,
    180. 

  180. 			    &sec->shared_qp_list,
    181. 

  181. 			    shared_qp_list) {
    182. 

  182. 		struct ib_qp *qp = shared_qp_sec->qp;
    183. 

  183. 

  184. 		if (qp->event_handler && qp->qp_context) {
    185. 

  185. 			event.element.qp = qp;
    186. 

  186. 			event.device = qp->device;
    187. 

  187. 			qp->event_handler(&event,
    188. 

  188. 					  qp->qp_context);
    189. 

  189. 		}
    190. 

  190. 	}
    191. 

  191. }
    192. 

  192. 

  193. static inline void check_pkey_qps(struct pkey_index_qp_list *pkey,
    194. 

  194. 				  struct ib_device *device,
    195. 

  195. 				  u8 port_num,
    196. 

  196. 				  u64 subnet_prefix)
    197. 

  197. {
    198. 

  198. 	struct ib_port_pkey *pp, *tmp_pp;
    199. 

  199. 	bool comp;
    200. 

  200. 	LIST_HEAD(to_error_list);
    201. 

  201. 	u16 pkey_val;
    202. 

  202. 

  203. 	if (!ib_get_cached_pkey(device,
    204. 

  204. 				port_num,
    205. 

  205. 				pkey->pkey_index,
    206. 

  206. 				&pkey_val)) {
    207. 

  207. 		spin_lock(&pkey->qp_list_lock);
    208. 

  208. 		list_for_each_entry(pp, &pkey->qp_list, qp_list) {
    209. 

  209. 			if (atomic_read(&pp->sec->error_list_count))
    210. 

  210. 				continue;
    211. 

  211. 

  212. 			if (enforce_qp_pkey_security(pkey_val,
    213. 

  213. 						     subnet_prefix,
    214. 

  214. 						     pp->sec)) {
    215. 

  215. 				atomic_inc(&pp->sec->error_list_count);
    216. 

  216. 				list_add(&pp->to_error_list,
    217. 

  217. 					 &to_error_list);
    218. 

  218. 			}
    219. 

  219. 		}
    220. 

  220. 		spin_unlock(&pkey->qp_list_lock);
    221. 

  221. 	}
    222. 

  222. 

  223. 	list_for_each_entry_safe(pp,
    224. 

  224. 				 tmp_pp,
    225. 

  225. 				 &to_error_list,
    226. 

  226. 				 to_error_list) {
    227. 

  227. 		mutex_lock(&pp->sec->mutex);
    228. 

  228. 		qp_to_error(pp->sec);
    229. 

  229. 		list_del(&pp->to_error_list);
    230. 

  230. 		atomic_dec(&pp->sec->error_list_count);
    231. 

  231. 		comp = pp->sec->destroying;
    232. 

  232. 		mutex_unlock(&pp->sec->mutex);
    233. 

  233. 

  234. 		if (comp)
    235. 

  235. 			complete(&pp->sec->error_complete);
    236. 

  236. 	}
    237. 

  237. }
    238. 

  238. 

  239. /* The caller of this function must hold the QP security
    240. 

  240.  * mutex.
    241. 

  241.  */
    242. 

  242. static int port_pkey_list_insert(struct ib_port_pkey *pp)
    243. 

  243. {
    244. 

  244. 	struct pkey_index_qp_list *tmp_pkey;
    245. 

  245. 	struct pkey_index_qp_list *pkey;
    246. 

  246. 	struct ib_device *dev;
    247. 

  247. 	u8 port_num = pp->port_num;
    248. 

  248. 	int ret = 0;
    249. 

  249. 

  250. 	if (pp->state != IB_PORT_PKEY_VALID)
    251. 

  251. 		return 0;
    252. 

  252. 

  253. 	dev = pp->sec->dev;
    254. 

  254. 

  255. 	pkey = get_pkey_idx_qp_list(pp);
    256. 

  256. 

  257. 	if (!pkey) {
    258. 

  258. 		bool found = false;
    259. 

  259. 

  260. 		pkey = kzalloc(sizeof(*pkey), GFP_KERNEL);
    261. 

  261. 		if (!pkey)
    262. 

  262. 			return -ENOMEM;
    263. 

  263. 

  264. 		spin_lock(&dev->port_pkey_list[port_num].list_lock);
    265. 

  265. 		/* Check for the PKey again.  A racing process may
    266. 

  266. 		 * have created it.
    267. 

  267. 		 */
    268. 

  268. 		list_for_each_entry(tmp_pkey,
    269. 

  269. 				    &dev->port_pkey_list[port_num].pkey_list,
    270. 

  270. 				    pkey_index_list) {
    271. 

  271. 			if (tmp_pkey->pkey_index == pp->pkey_index) {
    272. 

  272. 				kfree(pkey);
    273. 

  273. 				pkey = tmp_pkey;
    274. 

  274. 				found = true;
    275. 

  275. 				break;
    276. 

  276. 			}
    277. 

  277. 		}
    278. 

  278. 

  279. 		if (!found) {
    280. 

  280. 			pkey->pkey_index = pp->pkey_index;
    281. 

  281. 			spin_lock_init(&pkey->qp_list_lock);
    282. 

  282. 			INIT_LIST_HEAD(&pkey->qp_list);
    283. 

  283. 			list_add(&pkey->pkey_index_list,
    284. 

  284. 				 &dev->port_pkey_list[port_num].pkey_list);
    285. 

  285. 		}
    286. 

  286. 		spin_unlock(&dev->port_pkey_list[port_num].list_lock);
    287. 

  287. 	}
    288. 

  288. 

  289. 	spin_lock(&pkey->qp_list_lock);
    290. 

  290. 	list_add(&pp->qp_list, &pkey->qp_list);
    291. 

  291. 	spin_unlock(&pkey->qp_list_lock);
    292. 

  292. 

  293. 	pp->state = IB_PORT_PKEY_LISTED;
    294. 

  294. 

  295. 	return ret;
    296. 

  296. }
    297. 

  297. 

  298. /* The caller of this function must hold the QP security
    299. 

  299.  * mutex.
    300. 

  300.  */
    301. 

  301. static void port_pkey_list_remove(struct ib_port_pkey *pp)
    302. 

  302. {
    303. 

  303. 	struct pkey_index_qp_list *pkey;
    304. 

  304. 

  305. 	if (pp->state != IB_PORT_PKEY_LISTED)
    306. 

  306. 		return;
    307. 

  307. 

  308. 	pkey = get_pkey_idx_qp_list(pp);
    309. 

  309. 

  310. 	spin_lock(&pkey->qp_list_lock);
    311. 

  311. 	list_del(&pp->qp_list);
    312. 

  312. 	spin_unlock(&pkey->qp_list_lock);
    313. 

  313. 

  314. 	/* The setting may still be valid, i.e. after
    315. 

  315. 	 * a destroy has failed for example.
    316. 

  316. 	 */
    317. 

  317. 	pp->state = IB_PORT_PKEY_VALID;
    318. 

  318. }
    319. 

  319. 

  320. static void destroy_qp_security(struct ib_qp_security *sec)
    321. 

  321. {
    322. 

  322. 	security_ib_free_security(sec->security);
    323. 

  323. 	kfree(sec->ports_pkeys);
    324. 

  324. 	kfree(sec);
    325. 

  325. }
    326. 

  326. 

  327. /* The caller of this function must hold the QP security
    328. 

  328.  * mutex.
    329. 

  329.  */
    330. 

  330. static struct ib_ports_pkeys *get_new_pps(const struct ib_qp *qp,
    331. 

  331. 					  const struct ib_qp_attr *qp_attr,
    332. 

  332. 					  int qp_attr_mask)
    333. 

  333. {
    334. 

  334. 	struct ib_ports_pkeys *new_pps;
    335. 

  335. 	struct ib_ports_pkeys *qp_pps = qp->qp_sec->ports_pkeys;
    336. 

  336. 

  337. 	new_pps = kzalloc(sizeof(*new_pps), GFP_KERNEL);
    338. 

  338. 	if (!new_pps)
    339. 

  339. 		return NULL;
    340. 

  340. 

  341. 	if (qp_attr_mask & (IB_QP_PKEY_INDEX | IB_QP_PORT)) {
    342. 

  342. 		if (!qp_pps) {
    343. 

  343. 			new_pps->main.port_num = qp_attr->port_num;
    344. 

  344. 			new_pps->main.pkey_index = qp_attr->pkey_index;
    345. 

  345. 		} else {
    346. 

  346. 			new_pps->main.port_num = (qp_attr_mask & IB_QP_PORT) ?
    347. 

  347. 						  qp_attr->port_num :
    348. 

  348. 						  qp_pps->main.port_num;
    349. 

  349. 

  350. 			new_pps->main.pkey_index =
    351. 

  351. 					(qp_attr_mask & IB_QP_PKEY_INDEX) ?
    352. 

  352. 					 qp_attr->pkey_index :
    353. 

  353. 					 qp_pps->main.pkey_index;
    354. 

  354. 		}
    355. 

  355. 		new_pps->main.state = IB_PORT_PKEY_VALID;
    356. 

  356. 	} else if (qp_pps) {
    357. 

  357. 		new_pps->main.port_num = qp_pps->main.port_num;
    358. 

  358. 		new_pps->main.pkey_index = qp_pps->main.pkey_index;
    359. 

  359. 		if (qp_pps->main.state != IB_PORT_PKEY_NOT_VALID)
    360. 

  360. 			new_pps->main.state = IB_PORT_PKEY_VALID;
    361. 

  361. 	}
    362. 

  362. 

  363. 	if (qp_attr_mask & IB_QP_ALT_PATH) {
    364. 

  364. 		new_pps->alt.port_num = qp_attr->alt_port_num;
    365. 

  365. 		new_pps->alt.pkey_index = qp_attr->alt_pkey_index;
    366. 

  366. 		new_pps->alt.state = IB_PORT_PKEY_VALID;
    367. 

  367. 	} else if (qp_pps) {
    368. 

  368. 		new_pps->alt.port_num = qp_pps->alt.port_num;
    369. 

  369. 		new_pps->alt.pkey_index = qp_pps->alt.pkey_index;
    370. 

  370. 		if (qp_pps->alt.state != IB_PORT_PKEY_NOT_VALID)
    371. 

  371. 			new_pps->alt.state = IB_PORT_PKEY_VALID;
    372. 

  372. 	}
    373. 

  373. 

  374. 	new_pps->main.sec = qp->qp_sec;
    375. 

  375. 	new_pps->alt.sec = qp->qp_sec;
    376. 

  376. 	return new_pps;
    377. 

  377. }
    378. 

  378. 

  379. int ib_open_shared_qp_security(struct ib_qp *qp, struct ib_device *dev)
    380. 

  380. {
    381. 

  381. 	struct ib_qp *real_qp = qp->real_qp;
    382. 

  382. 	int ret;
    383. 

  383. 

  384. 	ret = ib_create_qp_security(qp, dev);
    385. 

  385. 

  386. 	if (ret)
    387. 

  387. 		return ret;
    388. 

  388. 

  389. 	if (!qp->qp_sec)
    390. 

  390. 		return 0;
    391. 

  391. 

  392. 	mutex_lock(&real_qp->qp_sec->mutex);
    393. 

  393. 	ret = check_qp_port_pkey_settings(real_qp->qp_sec->ports_pkeys,
    394. 

  394. 					  qp->qp_sec);
    395. 

  395. 

  396. 	if (ret)
    397. 

  397. 		goto ret;
    398. 

  398. 

  399. 	if (qp != real_qp)
    400. 

  400. 		list_add(&qp->qp_sec->shared_qp_list,
    401. 

  401. 			 &real_qp->qp_sec->shared_qp_list);
    402. 

  402. ret:
    403. 

  403. 	mutex_unlock(&real_qp->qp_sec->mutex);
    404. 

  404. 	if (ret)
    405. 

  405. 		destroy_qp_security(qp->qp_sec);
    406. 

  406. 

  407. 	return ret;
    408. 

  408. }
    409. 

  409. 

  410. void ib_close_shared_qp_security(struct ib_qp_security *sec)
    411. 

  411. {
    412. 

  412. 	struct ib_qp *real_qp = sec->qp->real_qp;
    413. 

  413. 

  414. 	mutex_lock(&real_qp->qp_sec->mutex);
    415. 

  415. 	list_del(&sec->shared_qp_list);
    416. 

  416. 	mutex_unlock(&real_qp->qp_sec->mutex);
    417. 

  417. 

  418. 	destroy_qp_security(sec);
    419. 

  419. }
    420. 

  420. 

  421. int ib_create_qp_security(struct ib_qp *qp, struct ib_device *dev)
    422. 

  422. {
    423. 

  423. 	u8 i = rdma_start_port(dev);
    424. 

  424. 	bool is_ib = false;
    425. 

  425. 	int ret;
    426. 

  426. 

  427. 	while (i <= rdma_end_port(dev) && !is_ib)
    428. 

  428. 		is_ib = rdma_protocol_ib(dev, i++);
    429. 

  429. 

  430. 	/* If this isn't an IB device don't create the security context */
    431. 

  431. 	if (!is_ib)
    432. 

  432. 		return 0;
    433. 

  433. 

  434. 	qp->qp_sec = kzalloc(sizeof(*qp->qp_sec), GFP_KERNEL);
    435. 

  435. 	if (!qp->qp_sec)
    436. 

  436. 		return -ENOMEM;
    437. 

  437. 

  438. 	qp->qp_sec->qp = qp;
    439. 

  439. 	qp->qp_sec->dev = dev;
    440. 

  440. 	mutex_init(&qp->qp_sec->mutex);
    441. 

  441. 	INIT_LIST_HEAD(&qp->qp_sec->shared_qp_list);
    442. 

  442. 	atomic_set(&qp->qp_sec->error_list_count, 0);
    443. 

  443. 	init_completion(&qp->qp_sec->error_complete);
    444. 

  444. 	ret = security_ib_alloc_security(&qp->qp_sec->security);
    445. 

  445. 	if (ret) {
    446. 

  446. 		kfree(qp->qp_sec);
    447. 

  447. 		qp->qp_sec = NULL;
    448. 

  448. 	}
    449. 

  449. 

  450. 	return ret;
    451. 

  451. }
    452. 

  452. EXPORT_SYMBOL(ib_create_qp_security);
    453. 

  453. 

  454. void ib_destroy_qp_security_begin(struct ib_qp_security *sec)
    455. 

  455. {
    456. 

  456. 	/* Return if not IB */
    457. 

  457. 	if (!sec)
    458. 

  458. 		return;
    459. 

  459. 

  460. 	mutex_lock(&sec->mutex);
    461. 

  461. 

  462. 	/* Remove the QP from the lists so it won't get added to
    463. 

  463. 	 * a to_error_list during the destroy process.
    464. 

  464. 	 */
    465. 

  465. 	if (sec->ports_pkeys) {
    466. 

  466. 		port_pkey_list_remove(&sec->ports_pkeys->main);
    467. 

  467. 		port_pkey_list_remove(&sec->ports_pkeys->alt);
    468. 

  468. 	}
    469. 

  469. 

  470. 	/* If the QP is already in one or more of those lists
    471. 

  471. 	 * the destroying flag will ensure the to error flow
    472. 

  472. 	 * doesn't operate on an undefined QP.
    473. 

  473. 	 */
    474. 

  474. 	sec->destroying = true;
    475. 

  475. 

  476. 	/* Record the error list count to know how many completions
    477. 

  477. 	 * to wait for.
    478. 

  478. 	 */
    479. 

  479. 	sec->error_comps_pending = atomic_read(&sec->error_list_count);
    480. 

  480. 

  481. 	mutex_unlock(&sec->mutex);
    482. 

  482. }
    483. 

  483. 

  484. void ib_destroy_qp_security_abort(struct ib_qp_security *sec)
    485. 

  485. {
    486. 

  486. 	int ret;
    487. 

  487. 	int i;
    488. 

  488. 

  489. 	/* Return if not IB */
    490. 

  490. 	if (!sec)
    491. 

  491. 		return;
    492. 

  492. 

  493. 	/* If a concurrent cache update is in progress this
    494. 

  494. 	 * QP security could be marked for an error state
    495. 

  495. 	 * transition.  Wait for this to complete.
    496. 

  496. 	 */
    497. 

  497. 	for (i = 0; i < sec->error_comps_pending; i++)
    498. 

  498. 		wait_for_completion(&sec->error_complete);
    499. 

  499. 

  500. 	mutex_lock(&sec->mutex);
    501. 

  501. 	sec->destroying = false;
    502. 

  502. 

  503. 	/* Restore the position in the lists and verify
    504. 

  504. 	 * access is still allowed in case a cache update
    505. 

  505. 	 * occurred while attempting to destroy.
    506. 

  506. 	 *
    507. 

  507. 	 * Because these setting were listed already
    508. 

  508. 	 * and removed during ib_destroy_qp_security_begin
    509. 

  509. 	 * we know the pkey_index_qp_list for the PKey
    510. 

  510. 	 * already exists so port_pkey_list_insert won't fail.
    511. 

  511. 	 */
    512. 

  512. 	if (sec->ports_pkeys) {
    513. 

  513. 		port_pkey_list_insert(&sec->ports_pkeys->main);
    514. 

  514. 		port_pkey_list_insert(&sec->ports_pkeys->alt);
    515. 

  515. 	}
    516. 

  516. 

  517. 	ret = check_qp_port_pkey_settings(sec->ports_pkeys, sec);
    518. 

  518. 	if (ret)
    519. 

  519. 		qp_to_error(sec);
    520. 

  520. 

  521. 	mutex_unlock(&sec->mutex);
    522. 

  522. }
    523. 

  523. 

  524. void ib_destroy_qp_security_end(struct ib_qp_security *sec)
    525. 

  525. {
    526. 

  526. 	int i;
    527. 

  527. 

  528. 	/* Return if not IB */
    529. 

  529. 	if (!sec)
    530. 

  530. 		return;
    531. 

  531. 

  532. 	/* If a concurrent cache update is occurring we must
    533. 

  533. 	 * wait until this QP security structure is processed
    534. 

  534. 	 * in the QP to error flow before destroying it because
    535. 

  535. 	 * the to_error_list is in use.
    536. 

  536. 	 */
    537. 

  537. 	for (i = 0; i < sec->error_comps_pending; i++)
    538. 

  538. 		wait_for_completion(&sec->error_complete);
    539. 

  539. 

  540. 	destroy_qp_security(sec);
    541. 

  541. }
    542. 

  542. 

  543. void ib_security_cache_change(struct ib_device *device,
    544. 

  544. 			      u8 port_num,
    545. 

  545. 			      u64 subnet_prefix)
    546. 

  546. {
    547. 

  547. 	struct pkey_index_qp_list *pkey;
    548. 

  548. 

  549. 	list_for_each_entry(pkey,
    550. 

  550. 			    &device->port_pkey_list[port_num].pkey_list,
    551. 

  551. 			    pkey_index_list) {
    552. 

  552. 		check_pkey_qps(pkey,
    553. 

  553. 			       device,
    554. 

  554. 			       port_num,
    555. 

  555. 			       subnet_prefix);
    556. 

  556. 	}
    557. 

  557. }
    558. 

  558. 

  559. void ib_security_destroy_port_pkey_list(struct ib_device *device)
    560. 

  560. {
    561. 

  561. 	struct pkey_index_qp_list *pkey, *tmp_pkey;
    562. 

  562. 	int i;
    563. 

  563. 

  564. 	for (i = rdma_start_port(device); i <= rdma_end_port(device); i++) {
    565. 

  565. 		spin_lock(&device->port_pkey_list[i].list_lock);
    566. 

  566. 		list_for_each_entry_safe(pkey,
    567. 

  567. 					 tmp_pkey,
    568. 

  568. 					 &device->port_pkey_list[i].pkey_list,
    569. 

  569. 					 pkey_index_list) {
    570. 

  570. 			list_del(&pkey->pkey_index_list);
    571. 

  571. 			kfree(pkey);
    572. 

  572. 		}
    573. 

  573. 		spin_unlock(&device->port_pkey_list[i].list_lock);
    574. 

  574. 	}
    575. 

  575. }
    576. 

  576. 

  577. int ib_security_modify_qp(struct ib_qp *qp,
    578. 

  578. 			  struct ib_qp_attr *qp_attr,
    579. 

  579. 			  int qp_attr_mask,
    580. 

  580. 			  struct ib_udata *udata)
    581. 

  581. {
    582. 

  582. 	int ret = 0;
    583. 

  583. 	struct ib_ports_pkeys *tmp_pps;
    584. 

  584. 	struct ib_ports_pkeys *new_pps = NULL;
    585. 

  585. 	struct ib_qp *real_qp = qp->real_qp;
    586. 

  586. 	bool special_qp = (real_qp->qp_type == IB_QPT_SMI ||
    587. 

  587. 			   real_qp->qp_type == IB_QPT_GSI ||
    588. 

  588. 			   real_qp->qp_type >= IB_QPT_RESERVED1);
    589. 

  589. 	bool pps_change = ((qp_attr_mask & (IB_QP_PKEY_INDEX | IB_QP_PORT)) ||
    590. 

  590. 			   (qp_attr_mask & IB_QP_ALT_PATH));
    591. 

  591. 

  592. 	WARN_ONCE((qp_attr_mask & IB_QP_PORT &&
    593. 

  593. 		   rdma_protocol_ib(real_qp->device, qp_attr->port_num) &&
    594. 

  594. 		   !real_qp->qp_sec),
    595. 

  595. 		   "%s: QP security is not initialized for IB QP: %d\n",
    596. 

  596. 		   __func__, real_qp->qp_num);
    597. 

  597. 

  598. 	/* The port/pkey settings are maintained only for the real QP. Open
    599. 

  599. 	 * handles on the real QP will be in the shared_qp_list. When
    600. 

  600. 	 * enforcing security on the real QP all the shared QPs will be
    601. 

  601. 	 * checked as well.
    602. 

  602. 	 */
    603. 

  603. 

  604. 	if (pps_change && !special_qp && real_qp->qp_sec) {
    605. 

  605. 		mutex_lock(&real_qp->qp_sec->mutex);
    606. 

  606. 		new_pps = get_new_pps(real_qp,
    607. 

  607. 				      qp_attr,
    608. 

  608. 				      qp_attr_mask);
    609. 

  609. 		if (!new_pps) {
    610. 

  610. 			mutex_unlock(&real_qp->qp_sec->mutex);
    611. 

  611. 			return -ENOMEM;
    612. 

  612. 		}
    613. 

  613. 		/* Add this QP to the lists for the new port
    614. 

  614. 		 * and pkey settings before checking for permission
    615. 

  615. 		 * in case there is a concurrent cache update
    616. 

  616. 		 * occurring.  Walking the list for a cache change
    617. 

  617. 		 * doesn't acquire the security mutex unless it's
    618. 

  618. 		 * sending the QP to error.
    619. 

  619. 		 */
    620. 

  620. 		ret = port_pkey_list_insert(&new_pps->main);
    621. 

  621. 

  622. 		if (!ret)
    623. 

  623. 			ret = port_pkey_list_insert(&new_pps->alt);
    624. 

  624. 

  625. 		if (!ret)
    626. 

  626. 			ret = check_qp_port_pkey_settings(new_pps,
    627. 

  627. 							  real_qp->qp_sec);
    628. 

  628. 	}
    629. 

  629. 

  630. 	if (!ret)
    631. 

  631. 		ret = real_qp->device->modify_qp(real_qp,
    632. 

  632. 						 qp_attr,
    633. 

  633. 						 qp_attr_mask,
    634. 

  634. 						 udata);
    635. 

  635. 

  636. 	if (new_pps) {
    637. 

  637. 		/* Clean up the lists and free the appropriate
    638. 

  638. 		 * ports_pkeys structure.
    639. 

  639. 		 */
    640. 

  640. 		if (ret) {
    641. 

  641. 			tmp_pps = new_pps;
    642. 

  642. 		} else {
    643. 

  643. 			tmp_pps = real_qp->qp_sec->ports_pkeys;
    644. 

  644. 			real_qp->qp_sec->ports_pkeys = new_pps;
    645. 

  645. 		}
    646. 

  646. 

  647. 		if (tmp_pps) {
    648. 

  648. 			port_pkey_list_remove(&tmp_pps->main);
    649. 

  649. 			port_pkey_list_remove(&tmp_pps->alt);
    650. 

  650. 		}
    651. 

  651. 		kfree(tmp_pps);
    652. 

  652. 		mutex_unlock(&real_qp->qp_sec->mutex);
    653. 

  653. 	}
    654. 

  654. 	return ret;
    655. 

  655. }
    656. 

  656. 

  657. static int ib_security_pkey_access(struct ib_device *dev,
    658. 

  658. 				   u8 port_num,
    659. 

  659. 				   u16 pkey_index,
    660. 

  660. 				   void *sec)
    661. 

  661. {
    662. 

  662. 	u64 subnet_prefix;
    663. 

  663. 	u16 pkey;
    664. 

  664. 	int ret;
    665. 

  665. 

  666. 	if (!rdma_protocol_ib(dev, port_num))
    667. 

  667. 		return 0;
    668. 

  668. 

  669. 	ret = ib_get_cached_pkey(dev, port_num, pkey_index, &pkey);
    670. 

  670. 	if (ret)
    671. 

  671. 		return ret;
    672. 

  672. 

  673. 	ret = ib_get_cached_subnet_prefix(dev, port_num, &subnet_prefix);
    674. 

  674. 

  675. 	if (ret)
    676. 

  676. 		return ret;
    677. 

  677. 

  678. 	return security_ib_pkey_access(sec, subnet_prefix, pkey);
    679. 

  679. }
    680. 

  680. 

  681. static int ib_mad_agent_security_change(struct notifier_block *nb,
    682. 

  682. 					unsigned long event,
    683. 

  683. 					void *data)
    684. 

  684. {
    685. 

  685. 	struct ib_mad_agent *ag = container_of(nb, struct ib_mad_agent, lsm_nb);
    686. 

  686. 

  687. 	if (event != LSM_POLICY_CHANGE)
    688. 

  688. 		return NOTIFY_DONE;
    689. 

  689. 

  690. 	ag->smp_allowed = !security_ib_endport_manage_subnet(ag->security,
    691. 

  691. 							     ag->device->name,
    692. 

  692. 							     ag->port_num);
    693. 

  693. 

  694. 	return NOTIFY_OK;
    695. 

  695. }
    696. 

  696. 

  697. int ib_mad_agent_security_setup(struct ib_mad_agent *agent,
    698. 

  698. 				enum ib_qp_type qp_type)
    699. 

  699. {
    700. 

  700. 	int ret;
    701. 

  701. 

  702. 	if (!rdma_protocol_ib(agent->device, agent->port_num))
    703. 

  703. 		return 0;
    704. 

  704. 

  705. 	ret = security_ib_alloc_security(&agent->security);
    706. 

  706. 	if (ret)
    707. 

  707. 		return ret;
    708. 

  708. 

  709. 	if (qp_type != IB_QPT_SMI)
    710. 

  710. 		return 0;
    711. 

  711. 

  712. 	ret = security_ib_endport_manage_subnet(agent->security,
    713. 

  713. 						agent->device->name,
    714. 

  714. 						agent->port_num);
    715. 

  715. 	if (ret)
    716. 

  716. 		return ret;
    717. 

  717. 

  718. 	agent->lsm_nb.notifier_call = ib_mad_agent_security_change;
    719. 

  719. 	ret = register_lsm_notifier(&agent->lsm_nb);
    720. 

  720. 	if (ret)
    721. 

  721. 		return ret;
    722. 

  722. 

  723. 	agent->smp_allowed = true;
    724. 

  724. 	agent->lsm_nb_reg = true;
    725. 

  725. 	return 0;
    726. 

  726. }
    727. 

  727. 

  728. void ib_mad_agent_security_cleanup(struct ib_mad_agent *agent)
    729. 

  729. {
    730. 

  730. 	if (!rdma_protocol_ib(agent->device, agent->port_num))
    731. 

  731. 		return;
    732. 

  732. 

  733. 	security_ib_free_security(agent->security);
    734. 

  734. 	if (agent->lsm_nb_reg)
    735. 

  735. 		unregister_lsm_notifier(&agent->lsm_nb);
    736. 

  736. }
    737. 

  737. 

  738. int ib_mad_enforce_security(struct ib_mad_agent_private *map, u16 pkey_index)
    739. 

  739. {
    740. 

  740. 	if (!rdma_protocol_ib(map->agent.device, map->agent.port_num))
    741. 

  741. 		return 0;
    742. 

  742. 

  743. 	if (map->agent.qp->qp_type == IB_QPT_SMI) {
    744. 

  744. 		if (!map->agent.smp_allowed)
    745. 

  745. 			return -EACCES;
    746. 

  746. 		return 0;
    747. 

  747. 	}
    748. 

  748. 

  749. 	return ib_security_pkey_access(map->agent.device,
    750. 

  750. 				       map->agent.port_num,
    751. 

  751. 				       pkey_index,
    752. 

  752. 				       map->agent.security);
    753. 

  753. }
    754. 

  754. 

  755. #endif /* CONFIG_SECURITY_INFINIBAND */
    756.