Halaman utama Jelajahi Bantuan
Masuk
GfA
/
linux_kernel
5
0
Fork 0
Berkas Masalah 0 Permintaan Tarik 0 Wiki
Pohon: da19a102ce
Ranting Tag
linux_kernel
/
drivers
/
infiniband
/
core
/
security.c

security.c 18 KB
Riwayat Mentahan

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750 
  1. /*
    2. 

  2.  * Copyright (c) 2016 Mellanox Technologies Ltd.  All rights reserved.
    3. 

  3.  *
    4. 

  4.  * This software is available to you under a choice of one of two
    5. 

  5.  * licenses.  You may choose to be licensed under the terms of the GNU
    6. 

  6.  * General Public License (GPL) Version 2, available from the file
    7. 

  7.  * COPYING in the main directory of this source tree, or the
    8. 

  8.  * OpenIB.org BSD license below:
    9. 

  9.  *
    10. 

  10.  *     Redistribution and use in source and binary forms, with or
    11. 

  11.  *     without modification, are permitted provided that the following
    12. 

  12.  *     conditions are met:
    13. 

  13.  *
    14. 

  14.  *      - Redistributions of source code must retain the above
    15. 

  15.  *        copyright notice, this list of conditions and the following
    16. 

  16.  *        disclaimer.
    17. 

  17.  *
    18. 

  18.  *      - Redistributions in binary form must reproduce the above
    19. 

  19.  *        copyright notice, this list of conditions and the following
    20. 

  20.  *        disclaimer in the documentation and/or other materials
    21. 

  21.  *        provided with the distribution.
    22. 

  22.  *
    23. 

  23.  * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
    24. 

  24.  * EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
    25. 

  25.  * MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
    26. 

  26.  * NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS
    27. 

  27.  * BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN
    28. 

  28.  * ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN
    29. 

  29.  * CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
    30. 

  30.  * SOFTWARE.
    31. 

  31.  */
    32. 

  32. 

  33. #include <linux/security.h>
    34. 

  34. #include <linux/completion.h>
    35. 

  35. #include <linux/list.h>
    36. 

  36. 

  37. #include <rdma/ib_verbs.h>
    38. 

  38. #include <rdma/ib_cache.h>
    39. 

  39. #include "core_priv.h"
    40. 

  40. #include "mad_priv.h"
    41. 

  41. 

  42. static struct pkey_index_qp_list *get_pkey_idx_qp_list(struct ib_port_pkey *pp)
    43. 

  43. {
    44. 

  44. 	struct pkey_index_qp_list *pkey = NULL;
    45. 

  45. 	struct pkey_index_qp_list *tmp_pkey;
    46. 

  46. 	struct ib_device *dev = pp->sec->dev;
    47. 

  47. 

  48. 	spin_lock(&dev->port_pkey_list[pp->port_num].list_lock);
    49. 

  49. 	list_for_each_entry(tmp_pkey,
    50. 

  50. 			    &dev->port_pkey_list[pp->port_num].pkey_list,
    51. 

  51. 			    pkey_index_list) {
    52. 

  52. 		if (tmp_pkey->pkey_index == pp->pkey_index) {
    53. 

  53. 			pkey = tmp_pkey;
    54. 

  54. 			break;
    55. 

  55. 		}
    56. 

  56. 	}
    57. 

  57. 	spin_unlock(&dev->port_pkey_list[pp->port_num].list_lock);
    58. 

  58. 	return pkey;
    59. 

  59. }
    60. 

  60. 

  61. static int get_pkey_and_subnet_prefix(struct ib_port_pkey *pp,
    62. 

  62. 				      u16 *pkey,
    63. 

  63. 				      u64 *subnet_prefix)
    64. 

  64. {
    65. 

  65. 	struct ib_device *dev = pp->sec->dev;
    66. 

  66. 	int ret;
    67. 

  67. 

  68. 	ret = ib_get_cached_pkey(dev, pp->port_num, pp->pkey_index, pkey);
    69. 

  69. 	if (ret)
    70. 

  70. 		return ret;
    71. 

  71. 

  72. 	ret = ib_get_cached_subnet_prefix(dev, pp->port_num, subnet_prefix);
    73. 

  73. 

  74. 	return ret;
    75. 

  75. }
    76. 

  76. 

  77. static int enforce_qp_pkey_security(u16 pkey,
    78. 

  78. 				    u64 subnet_prefix,
    79. 

  79. 				    struct ib_qp_security *qp_sec)
    80. 

  80. {
    81. 

  81. 	struct ib_qp_security *shared_qp_sec;
    82. 

  82. 	int ret;
    83. 

  83. 

  84. 	ret = security_ib_pkey_access(qp_sec->security, subnet_prefix, pkey);
    85. 

  85. 	if (ret)
    86. 

  86. 		return ret;
    87. 

  87. 

  88. 	list_for_each_entry(shared_qp_sec,
    89. 

  89. 			    &qp_sec->shared_qp_list,
    90. 

  90. 			    shared_qp_list) {
    91. 

  91. 		ret = security_ib_pkey_access(shared_qp_sec->security,
    92. 

  92. 					      subnet_prefix,
    93. 

  93. 					      pkey);
    94. 

  94. 		if (ret)
    95. 

  95. 			return ret;
    96. 

  96. 	}
    97. 

  97. 	return 0;
    98. 

  98. }
    99. 

  99. 

  100. /* The caller of this function must hold the QP security
    101. 

  101.  * mutex of the QP of the security structure in *pps.
    102. 

  102.  *
    103. 

  103.  * It takes separate ports_pkeys and security structure
    104. 

  104.  * because in some cases the pps will be for a new settings
    105. 

  105.  * or the pps will be for the real QP and security structure
    106. 

  106.  * will be for a shared QP.
    107. 

  107.  */
    108. 

  108. static int check_qp_port_pkey_settings(struct ib_ports_pkeys *pps,
    109. 

  109. 				       struct ib_qp_security *sec)
    110. 

  110. {
    111. 

  111. 	u64 subnet_prefix;
    112. 

  112. 	u16 pkey;
    113. 

  113. 	int ret = 0;
    114. 

  114. 

  115. 	if (!pps)
    116. 

  116. 		return 0;
    117. 

  117. 

  118. 	if (pps->main.state != IB_PORT_PKEY_NOT_VALID) {
    119. 

  119. 		ret = get_pkey_and_subnet_prefix(&pps->main,
    120. 

  120. 						 &pkey,
    121. 

  121. 						 &subnet_prefix);
    122. 

  122. 		if (ret)
    123. 

  123. 			return ret;
    124. 

  124. 

  125. 		ret = enforce_qp_pkey_security(pkey,
    126. 

  126. 					       subnet_prefix,
    127. 

  127. 					       sec);
    128. 

  128. 		if (ret)
    129. 

  129. 			return ret;
    130. 

  130. 	}
    131. 

  131. 

  132. 	if (pps->alt.state != IB_PORT_PKEY_NOT_VALID) {
    133. 

  133. 		ret = get_pkey_and_subnet_prefix(&pps->alt,
    134. 

  134. 						 &pkey,
    135. 

  135. 						 &subnet_prefix);
    136. 

  136. 		if (ret)
    137. 

  137. 			return ret;
    138. 

  138. 

  139. 		ret = enforce_qp_pkey_security(pkey,
    140. 

  140. 					       subnet_prefix,
    141. 

  141. 					       sec);
    142. 

  142. 	}
    143. 

  143. 

  144. 	return ret;
    145. 

  145. }
    146. 

  146. 

  147. /* The caller of this function must hold the QP security
    148. 

  148.  * mutex.
    149. 

  149.  */
    150. 

  150. static void qp_to_error(struct ib_qp_security *sec)
    151. 

  151. {
    152. 

  152. 	struct ib_qp_security *shared_qp_sec;
    153. 

  153. 	struct ib_qp_attr attr = {
    154. 

  154. 		.qp_state = IB_QPS_ERR
    155. 

  155. 	};
    156. 

  156. 	struct ib_event event = {
    157. 

  157. 		.event = IB_EVENT_QP_FATAL
    158. 

  158. 	};
    159. 

  159. 

  160. 	/* If the QP is in the process of being destroyed
    161. 

  161. 	 * the qp pointer in the security structure is
    162. 

  162. 	 * undefined.  It cannot be modified now.
    163. 

  163. 	 */
    164. 

  164. 	if (sec->destroying)
    165. 

  165. 		return;
    166. 

  166. 

  167. 	ib_modify_qp(sec->qp,
    168. 

  168. 		     &attr,
    169. 

  169. 		     IB_QP_STATE);
    170. 

  170. 

  171. 	if (sec->qp->event_handler && sec->qp->qp_context) {
    172. 

  172. 		event.element.qp = sec->qp;
    173. 

  173. 		sec->qp->event_handler(&event,
    174. 

  174. 				       sec->qp->qp_context);
    175. 

  175. 	}
    176. 

  176. 

  177. 	list_for_each_entry(shared_qp_sec,
    178. 

  178. 			    &sec->shared_qp_list,
    179. 

  179. 			    shared_qp_list) {
    180. 

  180. 		struct ib_qp *qp = shared_qp_sec->qp;
    181. 

  181. 

  182. 		if (qp->event_handler && qp->qp_context) {
    183. 

  183. 			event.element.qp = qp;
    184. 

  184. 			event.device = qp->device;
    185. 

  185. 			qp->event_handler(&event,
    186. 

  186. 					  qp->qp_context);
    187. 

  187. 		}
    188. 

  188. 	}
    189. 

  189. }
    190. 

  190. 

  191. static inline void check_pkey_qps(struct pkey_index_qp_list *pkey,
    192. 

  192. 				  struct ib_device *device,
    193. 

  193. 				  u8 port_num,
    194. 

  194. 				  u64 subnet_prefix)
    195. 

  195. {
    196. 

  196. 	struct ib_port_pkey *pp, *tmp_pp;
    197. 

  197. 	bool comp;
    198. 

  198. 	LIST_HEAD(to_error_list);
    199. 

  199. 	u16 pkey_val;
    200. 

  200. 

  201. 	if (!ib_get_cached_pkey(device,
    202. 

  202. 				port_num,
    203. 

  203. 				pkey->pkey_index,
    204. 

  204. 				&pkey_val)) {
    205. 

  205. 		spin_lock(&pkey->qp_list_lock);
    206. 

  206. 		list_for_each_entry(pp, &pkey->qp_list, qp_list) {
    207. 

  207. 			if (atomic_read(&pp->sec->error_list_count))
    208. 

  208. 				continue;
    209. 

  209. 

  210. 			if (enforce_qp_pkey_security(pkey_val,
    211. 

  211. 						     subnet_prefix,
    212. 

  212. 						     pp->sec)) {
    213. 

  213. 				atomic_inc(&pp->sec->error_list_count);
    214. 

  214. 				list_add(&pp->to_error_list,
    215. 

  215. 					 &to_error_list);
    216. 

  216. 			}
    217. 

  217. 		}
    218. 

  218. 		spin_unlock(&pkey->qp_list_lock);
    219. 

  219. 	}
    220. 

  220. 

  221. 	list_for_each_entry_safe(pp,
    222. 

  222. 				 tmp_pp,
    223. 

  223. 				 &to_error_list,
    224. 

  224. 				 to_error_list) {
    225. 

  225. 		mutex_lock(&pp->sec->mutex);
    226. 

  226. 		qp_to_error(pp->sec);
    227. 

  227. 		list_del(&pp->to_error_list);
    228. 

  228. 		atomic_dec(&pp->sec->error_list_count);
    229. 

  229. 		comp = pp->sec->destroying;
    230. 

  230. 		mutex_unlock(&pp->sec->mutex);
    231. 

  231. 

  232. 		if (comp)
    233. 

  233. 			complete(&pp->sec->error_complete);
    234. 

  234. 	}
    235. 

  235. }
    236. 

  236. 

  237. /* The caller of this function must hold the QP security
    238. 

  238.  * mutex.
    239. 

  239.  */
    240. 

  240. static int port_pkey_list_insert(struct ib_port_pkey *pp)
    241. 

  241. {
    242. 

  242. 	struct pkey_index_qp_list *tmp_pkey;
    243. 

  243. 	struct pkey_index_qp_list *pkey;
    244. 

  244. 	struct ib_device *dev;
    245. 

  245. 	u8 port_num = pp->port_num;
    246. 

  246. 	int ret = 0;
    247. 

  247. 

  248. 	if (pp->state != IB_PORT_PKEY_VALID)
    249. 

  249. 		return 0;
    250. 

  250. 

  251. 	dev = pp->sec->dev;
    252. 

  252. 

  253. 	pkey = get_pkey_idx_qp_list(pp);
    254. 

  254. 

  255. 	if (!pkey) {
    256. 

  256. 		bool found = false;
    257. 

  257. 

  258. 		pkey = kzalloc(sizeof(*pkey), GFP_KERNEL);
    259. 

  259. 		if (!pkey)
    260. 

  260. 			return -ENOMEM;
    261. 

  261. 

  262. 		spin_lock(&dev->port_pkey_list[port_num].list_lock);
    263. 

  263. 		/* Check for the PKey again.  A racing process may
    264. 

  264. 		 * have created it.
    265. 

  265. 		 */
    266. 

  266. 		list_for_each_entry(tmp_pkey,
    267. 

  267. 				    &dev->port_pkey_list[port_num].pkey_list,
    268. 

  268. 				    pkey_index_list) {
    269. 

  269. 			if (tmp_pkey->pkey_index == pp->pkey_index) {
    270. 

  270. 				kfree(pkey);
    271. 

  271. 				pkey = tmp_pkey;
    272. 

  272. 				found = true;
    273. 

  273. 				break;
    274. 

  274. 			}
    275. 

  275. 		}
    276. 

  276. 

  277. 		if (!found) {
    278. 

  278. 			pkey->pkey_index = pp->pkey_index;
    279. 

  279. 			spin_lock_init(&pkey->qp_list_lock);
    280. 

  280. 			INIT_LIST_HEAD(&pkey->qp_list);
    281. 

  281. 			list_add(&pkey->pkey_index_list,
    282. 

  282. 				 &dev->port_pkey_list[port_num].pkey_list);
    283. 

  283. 		}
    284. 

  284. 		spin_unlock(&dev->port_pkey_list[port_num].list_lock);
    285. 

  285. 	}
    286. 

  286. 

  287. 	spin_lock(&pkey->qp_list_lock);
    288. 

  288. 	list_add(&pp->qp_list, &pkey->qp_list);
    289. 

  289. 	spin_unlock(&pkey->qp_list_lock);
    290. 

  290. 

  291. 	pp->state = IB_PORT_PKEY_LISTED;
    292. 

  292. 

  293. 	return ret;
    294. 

  294. }
    295. 

  295. 

  296. /* The caller of this function must hold the QP security
    297. 

  297.  * mutex.
    298. 

  298.  */
    299. 

  299. static void port_pkey_list_remove(struct ib_port_pkey *pp)
    300. 

  300. {
    301. 

  301. 	struct pkey_index_qp_list *pkey;
    302. 

  302. 

  303. 	if (pp->state != IB_PORT_PKEY_LISTED)
    304. 

  304. 		return;
    305. 

  305. 

  306. 	pkey = get_pkey_idx_qp_list(pp);
    307. 

  307. 

  308. 	spin_lock(&pkey->qp_list_lock);
    309. 

  309. 	list_del(&pp->qp_list);
    310. 

  310. 	spin_unlock(&pkey->qp_list_lock);
    311. 

  311. 

  312. 	/* The setting may still be valid, i.e. after
    313. 

  313. 	 * a destroy has failed for example.
    314. 

  314. 	 */
    315. 

  315. 	pp->state = IB_PORT_PKEY_VALID;
    316. 

  316. }
    317. 

  317. 

  318. static void destroy_qp_security(struct ib_qp_security *sec)
    319. 

  319. {
    320. 

  320. 	security_ib_free_security(sec->security);
    321. 

  321. 	kfree(sec->ports_pkeys);
    322. 

  322. 	kfree(sec);
    323. 

  323. }
    324. 

  324. 

  325. /* The caller of this function must hold the QP security
    326. 

  326.  * mutex.
    327. 

  327.  */
    328. 

  328. static struct ib_ports_pkeys *get_new_pps(const struct ib_qp *qp,
    329. 

  329. 					  const struct ib_qp_attr *qp_attr,
    330. 

  330. 					  int qp_attr_mask)
    331. 

  331. {
    332. 

  332. 	struct ib_ports_pkeys *new_pps;
    333. 

  333. 	struct ib_ports_pkeys *qp_pps = qp->qp_sec->ports_pkeys;
    334. 

  334. 

  335. 	new_pps = kzalloc(sizeof(*new_pps), GFP_KERNEL);
    336. 

  336. 	if (!new_pps)
    337. 

  337. 		return NULL;
    338. 

  338. 

  339. 	if (qp_attr_mask & (IB_QP_PKEY_INDEX | IB_QP_PORT)) {
    340. 

  340. 		if (!qp_pps) {
    341. 

  341. 			new_pps->main.port_num = qp_attr->port_num;
    342. 

  342. 			new_pps->main.pkey_index = qp_attr->pkey_index;
    343. 

  343. 		} else {
    344. 

  344. 			new_pps->main.port_num = (qp_attr_mask & IB_QP_PORT) ?
    345. 

  345. 						  qp_attr->port_num :
    346. 

  346. 						  qp_pps->main.port_num;
    347. 

  347. 

  348. 			new_pps->main.pkey_index =
    349. 

  349. 					(qp_attr_mask & IB_QP_PKEY_INDEX) ?
    350. 

  350. 					 qp_attr->pkey_index :
    351. 

  351. 					 qp_pps->main.pkey_index;
    352. 

  352. 		}
    353. 

  353. 		new_pps->main.state = IB_PORT_PKEY_VALID;
    354. 

  354. 	} else if (qp_pps) {
    355. 

  355. 		new_pps->main.port_num = qp_pps->main.port_num;
    356. 

  356. 		new_pps->main.pkey_index = qp_pps->main.pkey_index;
    357. 

  357. 		if (qp_pps->main.state != IB_PORT_PKEY_NOT_VALID)
    358. 

  358. 			new_pps->main.state = IB_PORT_PKEY_VALID;
    359. 

  359. 	}
    360. 

  360. 

  361. 	if (qp_attr_mask & IB_QP_ALT_PATH) {
    362. 

  362. 		new_pps->alt.port_num = qp_attr->alt_port_num;
    363. 

  363. 		new_pps->alt.pkey_index = qp_attr->alt_pkey_index;
    364. 

  364. 		new_pps->alt.state = IB_PORT_PKEY_VALID;
    365. 

  365. 	} else if (qp_pps) {
    366. 

  366. 		new_pps->alt.port_num = qp_pps->alt.port_num;
    367. 

  367. 		new_pps->alt.pkey_index = qp_pps->alt.pkey_index;
    368. 

  368. 		if (qp_pps->alt.state != IB_PORT_PKEY_NOT_VALID)
    369. 

  369. 			new_pps->alt.state = IB_PORT_PKEY_VALID;
    370. 

  370. 	}
    371. 

  371. 

  372. 	new_pps->main.sec = qp->qp_sec;
    373. 

  373. 	new_pps->alt.sec = qp->qp_sec;
    374. 

  374. 	return new_pps;
    375. 

  375. }
    376. 

  376. 

  377. int ib_open_shared_qp_security(struct ib_qp *qp, struct ib_device *dev)
    378. 

  378. {
    379. 

  379. 	struct ib_qp *real_qp = qp->real_qp;
    380. 

  380. 	int ret;
    381. 

  381. 

  382. 	ret = ib_create_qp_security(qp, dev);
    383. 

  383. 

  384. 	if (ret)
    385. 

  385. 		return ret;
    386. 

  386. 

  387. 	if (!qp->qp_sec)
    388. 

  388. 		return 0;
    389. 

  389. 

  390. 	mutex_lock(&real_qp->qp_sec->mutex);
    391. 

  391. 	ret = check_qp_port_pkey_settings(real_qp->qp_sec->ports_pkeys,
    392. 

  392. 					  qp->qp_sec);
    393. 

  393. 

  394. 	if (ret)
    395. 

  395. 		goto ret;
    396. 

  396. 

  397. 	if (qp != real_qp)
    398. 

  398. 		list_add(&qp->qp_sec->shared_qp_list,
    399. 

  399. 			 &real_qp->qp_sec->shared_qp_list);
    400. 

  400. ret:
    401. 

  401. 	mutex_unlock(&real_qp->qp_sec->mutex);
    402. 

  402. 	if (ret)
    403. 

  403. 		destroy_qp_security(qp->qp_sec);
    404. 

  404. 

  405. 	return ret;
    406. 

  406. }
    407. 

  407. 

  408. void ib_close_shared_qp_security(struct ib_qp_security *sec)
    409. 

  409. {
    410. 

  410. 	struct ib_qp *real_qp = sec->qp->real_qp;
    411. 

  411. 

  412. 	mutex_lock(&real_qp->qp_sec->mutex);
    413. 

  413. 	list_del(&sec->shared_qp_list);
    414. 

  414. 	mutex_unlock(&real_qp->qp_sec->mutex);
    415. 

  415. 

  416. 	destroy_qp_security(sec);
    417. 

  417. }
    418. 

  418. 

  419. int ib_create_qp_security(struct ib_qp *qp, struct ib_device *dev)
    420. 

  420. {
    421. 

  421. 	u8 i = rdma_start_port(dev);
    422. 

  422. 	bool is_ib = false;
    423. 

  423. 	int ret;
    424. 

  424. 

  425. 	while (i <= rdma_end_port(dev) && !is_ib)
    426. 

  426. 		is_ib = rdma_protocol_ib(dev, i++);
    427. 

  427. 

  428. 	/* If this isn't an IB device don't create the security context */
    429. 

  429. 	if (!is_ib)
    430. 

  430. 		return 0;
    431. 

  431. 

  432. 	qp->qp_sec = kzalloc(sizeof(*qp->qp_sec), GFP_KERNEL);
    433. 

  433. 	if (!qp->qp_sec)
    434. 

  434. 		return -ENOMEM;
    435. 

  435. 

  436. 	qp->qp_sec->qp = qp;
    437. 

  437. 	qp->qp_sec->dev = dev;
    438. 

  438. 	mutex_init(&qp->qp_sec->mutex);
    439. 

  439. 	INIT_LIST_HEAD(&qp->qp_sec->shared_qp_list);
    440. 

  440. 	atomic_set(&qp->qp_sec->error_list_count, 0);
    441. 

  441. 	init_completion(&qp->qp_sec->error_complete);
    442. 

  442. 	ret = security_ib_alloc_security(&qp->qp_sec->security);
    443. 

  443. 	if (ret) {
    444. 

  444. 		kfree(qp->qp_sec);
    445. 

  445. 		qp->qp_sec = NULL;
    446. 

  446. 	}
    447. 

  447. 

  448. 	return ret;
    449. 

  449. }
    450. 

  450. EXPORT_SYMBOL(ib_create_qp_security);
    451. 

  451. 

  452. void ib_destroy_qp_security_begin(struct ib_qp_security *sec)
    453. 

  453. {
    454. 

  454. 	/* Return if not IB */
    455. 

  455. 	if (!sec)
    456. 

  456. 		return;
    457. 

  457. 

  458. 	mutex_lock(&sec->mutex);
    459. 

  459. 

  460. 	/* Remove the QP from the lists so it won't get added to
    461. 

  461. 	 * a to_error_list during the destroy process.
    462. 

  462. 	 */
    463. 

  463. 	if (sec->ports_pkeys) {
    464. 

  464. 		port_pkey_list_remove(&sec->ports_pkeys->main);
    465. 

  465. 		port_pkey_list_remove(&sec->ports_pkeys->alt);
    466. 

  466. 	}
    467. 

  467. 

  468. 	/* If the QP is already in one or more of those lists
    469. 

  469. 	 * the destroying flag will ensure the to error flow
    470. 

  470. 	 * doesn't operate on an undefined QP.
    471. 

  471. 	 */
    472. 

  472. 	sec->destroying = true;
    473. 

  473. 

  474. 	/* Record the error list count to know how many completions
    475. 

  475. 	 * to wait for.
    476. 

  476. 	 */
    477. 

  477. 	sec->error_comps_pending = atomic_read(&sec->error_list_count);
    478. 

  478. 

  479. 	mutex_unlock(&sec->mutex);
    480. 

  480. }
    481. 

  481. 

  482. void ib_destroy_qp_security_abort(struct ib_qp_security *sec)
    483. 

  483. {
    484. 

  484. 	int ret;
    485. 

  485. 	int i;
    486. 

  486. 

  487. 	/* Return if not IB */
    488. 

  488. 	if (!sec)
    489. 

  489. 		return;
    490. 

  490. 

  491. 	/* If a concurrent cache update is in progress this
    492. 

  492. 	 * QP security could be marked for an error state
    493. 

  493. 	 * transition.  Wait for this to complete.
    494. 

  494. 	 */
    495. 

  495. 	for (i = 0; i < sec->error_comps_pending; i++)
    496. 

  496. 		wait_for_completion(&sec->error_complete);
    497. 

  497. 

  498. 	mutex_lock(&sec->mutex);
    499. 

  499. 	sec->destroying = false;
    500. 

  500. 

  501. 	/* Restore the position in the lists and verify
    502. 

  502. 	 * access is still allowed in case a cache update
    503. 

  503. 	 * occurred while attempting to destroy.
    504. 

  504. 	 *
    505. 

  505. 	 * Because these setting were listed already
    506. 

  506. 	 * and removed during ib_destroy_qp_security_begin
    507. 

  507. 	 * we know the pkey_index_qp_list for the PKey
    508. 

  508. 	 * already exists so port_pkey_list_insert won't fail.
    509. 

  509. 	 */
    510. 

  510. 	if (sec->ports_pkeys) {
    511. 

  511. 		port_pkey_list_insert(&sec->ports_pkeys->main);
    512. 

  512. 		port_pkey_list_insert(&sec->ports_pkeys->alt);
    513. 

  513. 	}
    514. 

  514. 

  515. 	ret = check_qp_port_pkey_settings(sec->ports_pkeys, sec);
    516. 

  516. 	if (ret)
    517. 

  517. 		qp_to_error(sec);
    518. 

  518. 

  519. 	mutex_unlock(&sec->mutex);
    520. 

  520. }
    521. 

  521. 

  522. void ib_destroy_qp_security_end(struct ib_qp_security *sec)
    523. 

  523. {
    524. 

  524. 	int i;
    525. 

  525. 

  526. 	/* Return if not IB */
    527. 

  527. 	if (!sec)
    528. 

  528. 		return;
    529. 

  529. 

  530. 	/* If a concurrent cache update is occurring we must
    531. 

  531. 	 * wait until this QP security structure is processed
    532. 

  532. 	 * in the QP to error flow before destroying it because
    533. 

  533. 	 * the to_error_list is in use.
    534. 

  534. 	 */
    535. 

  535. 	for (i = 0; i < sec->error_comps_pending; i++)
    536. 

  536. 		wait_for_completion(&sec->error_complete);
    537. 

  537. 

  538. 	destroy_qp_security(sec);
    539. 

  539. }
    540. 

  540. 

  541. void ib_security_cache_change(struct ib_device *device,
    542. 

  542. 			      u8 port_num,
    543. 

  543. 			      u64 subnet_prefix)
    544. 

  544. {
    545. 

  545. 	struct pkey_index_qp_list *pkey;
    546. 

  546. 

  547. 	list_for_each_entry(pkey,
    548. 

  548. 			    &device->port_pkey_list[port_num].pkey_list,
    549. 

  549. 			    pkey_index_list) {
    550. 

  550. 		check_pkey_qps(pkey,
    551. 

  551. 			       device,
    552. 

  552. 			       port_num,
    553. 

  553. 			       subnet_prefix);
    554. 

  554. 	}
    555. 

  555. }
    556. 

  556. 

  557. void ib_security_destroy_port_pkey_list(struct ib_device *device)
    558. 

  558. {
    559. 

  559. 	struct pkey_index_qp_list *pkey, *tmp_pkey;
    560. 

  560. 	int i;
    561. 

  561. 

  562. 	for (i = rdma_start_port(device); i <= rdma_end_port(device); i++) {
    563. 

  563. 		spin_lock(&device->port_pkey_list[i].list_lock);
    564. 

  564. 		list_for_each_entry_safe(pkey,
    565. 

  565. 					 tmp_pkey,
    566. 

  566. 					 &device->port_pkey_list[i].pkey_list,
    567. 

  567. 					 pkey_index_list) {
    568. 

  568. 			list_del(&pkey->pkey_index_list);
    569. 

  569. 			kfree(pkey);
    570. 

  570. 		}
    571. 

  571. 		spin_unlock(&device->port_pkey_list[i].list_lock);
    572. 

  572. 	}
    573. 

  573. }
    574. 

  574. 

  575. int ib_security_modify_qp(struct ib_qp *qp,
    576. 

  576. 			  struct ib_qp_attr *qp_attr,
    577. 

  577. 			  int qp_attr_mask,
    578. 

  578. 			  struct ib_udata *udata)
    579. 

  579. {
    580. 

  580. 	int ret = 0;
    581. 

  581. 	struct ib_ports_pkeys *tmp_pps;
    582. 

  582. 	struct ib_ports_pkeys *new_pps = NULL;
    583. 

  583. 	struct ib_qp *real_qp = qp->real_qp;
    584. 

  584. 	bool special_qp = (real_qp->qp_type == IB_QPT_SMI ||
    585. 

  585. 			   real_qp->qp_type == IB_QPT_GSI ||
    586. 

  586. 			   real_qp->qp_type >= IB_QPT_RESERVED1);
    587. 

  587. 	bool pps_change = ((qp_attr_mask & (IB_QP_PKEY_INDEX | IB_QP_PORT)) ||
    588. 

  588. 			   (qp_attr_mask & IB_QP_ALT_PATH));
    589. 

  589. 

  590. 	WARN_ONCE((qp_attr_mask & IB_QP_PORT &&
    591. 

  591. 		   rdma_protocol_ib(real_qp->device, qp_attr->port_num) &&
    592. 

  592. 		   !real_qp->qp_sec),
    593. 

  593. 		   "%s: QP security is not initialized for IB QP: %d\n",
    594. 

  594. 		   __func__, real_qp->qp_num);
    595. 

  595. 

  596. 	/* The port/pkey settings are maintained only for the real QP. Open
    597. 

  597. 	 * handles on the real QP will be in the shared_qp_list. When
    598. 

  598. 	 * enforcing security on the real QP all the shared QPs will be
    599. 

  599. 	 * checked as well.
    600. 

  600. 	 */
    601. 

  601. 

  602. 	if (pps_change && !special_qp && real_qp->qp_sec) {
    603. 

  603. 		mutex_lock(&real_qp->qp_sec->mutex);
    604. 

  604. 		new_pps = get_new_pps(real_qp,
    605. 

  605. 				      qp_attr,
    606. 

  606. 				      qp_attr_mask);
    607. 

  607. 		if (!new_pps) {
    608. 

  608. 			mutex_unlock(&real_qp->qp_sec->mutex);
    609. 

  609. 			return -ENOMEM;
    610. 

  610. 		}
    611. 

  611. 		/* Add this QP to the lists for the new port
    612. 

  612. 		 * and pkey settings before checking for permission
    613. 

  613. 		 * in case there is a concurrent cache update
    614. 

  614. 		 * occurring.  Walking the list for a cache change
    615. 

  615. 		 * doesn't acquire the security mutex unless it's
    616. 

  616. 		 * sending the QP to error.
    617. 

  617. 		 */
    618. 

  618. 		ret = port_pkey_list_insert(&new_pps->main);
    619. 

  619. 

  620. 		if (!ret)
    621. 

  621. 			ret = port_pkey_list_insert(&new_pps->alt);
    622. 

  622. 

  623. 		if (!ret)
    624. 

  624. 			ret = check_qp_port_pkey_settings(new_pps,
    625. 

  625. 							  real_qp->qp_sec);
    626. 

  626. 	}
    627. 

  627. 

  628. 	if (!ret)
    629. 

  629. 		ret = real_qp->device->modify_qp(real_qp,
    630. 

  630. 						 qp_attr,
    631. 

  631. 						 qp_attr_mask,
    632. 

  632. 						 udata);
    633. 

  633. 

  634. 	if (new_pps) {
    635. 

  635. 		/* Clean up the lists and free the appropriate
    636. 

  636. 		 * ports_pkeys structure.
    637. 

  637. 		 */
    638. 

  638. 		if (ret) {
    639. 

  639. 			tmp_pps = new_pps;
    640. 

  640. 		} else {
    641. 

  641. 			tmp_pps = real_qp->qp_sec->ports_pkeys;
    642. 

  642. 			real_qp->qp_sec->ports_pkeys = new_pps;
    643. 

  643. 		}
    644. 

  644. 

  645. 		if (tmp_pps) {
    646. 

  646. 			port_pkey_list_remove(&tmp_pps->main);
    647. 

  647. 			port_pkey_list_remove(&tmp_pps->alt);
    648. 

  648. 		}
    649. 

  649. 		kfree(tmp_pps);
    650. 

  650. 		mutex_unlock(&real_qp->qp_sec->mutex);
    651. 

  651. 	}
    652. 

  652. 	return ret;
    653. 

  653. }
    654. 

  654. 

  655. static int ib_security_pkey_access(struct ib_device *dev,
    656. 

  656. 				   u8 port_num,
    657. 

  657. 				   u16 pkey_index,
    658. 

  658. 				   void *sec)
    659. 

  659. {
    660. 

  660. 	u64 subnet_prefix;
    661. 

  661. 	u16 pkey;
    662. 

  662. 	int ret;
    663. 

  663. 

  664. 	if (!rdma_protocol_ib(dev, port_num))
    665. 

  665. 		return 0;
    666. 

  666. 

  667. 	ret = ib_get_cached_pkey(dev, port_num, pkey_index, &pkey);
    668. 

  668. 	if (ret)
    669. 

  669. 		return ret;
    670. 

  670. 

  671. 	ret = ib_get_cached_subnet_prefix(dev, port_num, &subnet_prefix);
    672. 

  672. 

  673. 	if (ret)
    674. 

  674. 		return ret;
    675. 

  675. 

  676. 	return security_ib_pkey_access(sec, subnet_prefix, pkey);
    677. 

  677. }
    678. 

  678. 

  679. static int ib_mad_agent_security_change(struct notifier_block *nb,
    680. 

  680. 					unsigned long event,
    681. 

  681. 					void *data)
    682. 

  682. {
    683. 

  683. 	struct ib_mad_agent *ag = container_of(nb, struct ib_mad_agent, lsm_nb);
    684. 

  684. 

  685. 	if (event != LSM_POLICY_CHANGE)
    686. 

  686. 		return NOTIFY_DONE;
    687. 

  687. 

  688. 	ag->smp_allowed = !security_ib_endport_manage_subnet(
    689. 

  689. 		ag->security, dev_name(&ag->device->dev), ag->port_num);
    690. 

  690. 

  691. 	return NOTIFY_OK;
    692. 

  692. }
    693. 

  693. 

  694. int ib_mad_agent_security_setup(struct ib_mad_agent *agent,
    695. 

  695. 				enum ib_qp_type qp_type)
    696. 

  696. {
    697. 

  697. 	int ret;
    698. 

  698. 

  699. 	if (!rdma_protocol_ib(agent->device, agent->port_num))
    700. 

  700. 		return 0;
    701. 

  701. 

  702. 	ret = security_ib_alloc_security(&agent->security);
    703. 

  703. 	if (ret)
    704. 

  704. 		return ret;
    705. 

  705. 

  706. 	if (qp_type != IB_QPT_SMI)
    707. 

  707. 		return 0;
    708. 

  708. 

  709. 	ret = security_ib_endport_manage_subnet(agent->security,
    710. 

  710. 						dev_name(&agent->device->dev),
    711. 

  711. 						agent->port_num);
    712. 

  712. 	if (ret)
    713. 

  713. 		return ret;
    714. 

  714. 

  715. 	agent->lsm_nb.notifier_call = ib_mad_agent_security_change;
    716. 

  716. 	ret = register_lsm_notifier(&agent->lsm_nb);
    717. 

  717. 	if (ret)
    718. 

  718. 		return ret;
    719. 

  719. 

  720. 	agent->smp_allowed = true;
    721. 

  721. 	agent->lsm_nb_reg = true;
    722. 

  722. 	return 0;
    723. 

  723. }
    724. 

  724. 

  725. void ib_mad_agent_security_cleanup(struct ib_mad_agent *agent)
    726. 

  726. {
    727. 

  727. 	if (!rdma_protocol_ib(agent->device, agent->port_num))
    728. 

  728. 		return;
    729. 

  729. 

  730. 	security_ib_free_security(agent->security);
    731. 

  731. 	if (agent->lsm_nb_reg)
    732. 

  732. 		unregister_lsm_notifier(&agent->lsm_nb);
    733. 

  733. }
    734. 

  734. 

  735. int ib_mad_enforce_security(struct ib_mad_agent_private *map, u16 pkey_index)
    736. 

  736. {
    737. 

  737. 	if (!rdma_protocol_ib(map->agent.device, map->agent.port_num))
    738. 

  738. 		return 0;
    739. 

  739. 

  740. 	if (map->agent.qp->qp_type == IB_QPT_SMI) {
    741. 

  741. 		if (!map->agent.smp_allowed)
    742. 

  742. 			return -EACCES;
    743. 

  743. 		return 0;
    744. 

  744. 	}
    745. 

  745. 

  746. 	return ib_security_pkey_access(map->agent.device,
    747. 

  747. 				       map->agent.port_num,
    748. 

  748. 				       pkey_index,
    749. 

  749. 				       map->agent.security);
    750. 

  750. }
    751.