Commit dc539241 authored by Andi Kleen's avatar Andi Kleen Committed by Linus Torvalds

[PATCH] Some fixes for compat ioctl

While doing some compat_ioctl conversions I noticed a few issues in
compat_sys_ioctl:

- It is not completely compatible to old ->ioctl because the traditional
  common ioctls are not checked before it.  I added a check for those.  The
  main advantage is that the handler now works the same as a traditional
  handler even when it returns -EINVAL

- The private socket ioctl check should only apply for sockets.

- There was a security hook missing.  Drawback is that it uses the same
  hook now, and the LSM module cannot distingush between 32bit and 64bit
  clients.  But it'll have to live with that for now.
Signed-off-by: default avatarAndi Kleen <ak@muc.de>
Signed-off-by: default avatarAndrew Morton <akpm@osdl.org>
Signed-off-by: default avatarLinus Torvalds <torvalds@osdl.org>
parent ae3771d6
...@@ -25,6 +25,7 @@ ...@@ -25,6 +25,7 @@
#include <linux/file.h> #include <linux/file.h>
#include <linux/vfs.h> #include <linux/vfs.h>
#include <linux/ioctl32.h> #include <linux/ioctl32.h>
#include <linux/ioctl.h>
#include <linux/init.h> #include <linux/init.h>
#include <linux/sockios.h> /* for SIOCDEVPRIVATE */ #include <linux/sockios.h> /* for SIOCDEVPRIVATE */
#include <linux/smb.h> #include <linux/smb.h>
...@@ -47,6 +48,7 @@ ...@@ -47,6 +48,7 @@
#include <asm/uaccess.h> #include <asm/uaccess.h>
#include <asm/mmu_context.h> #include <asm/mmu_context.h>
#include <asm/ioctls.h>
/* /*
* Not all architectures have sys_utime, so implement this in terms * Not all architectures have sys_utime, so implement this in terms
...@@ -437,6 +439,27 @@ asmlinkage long compat_sys_ioctl(unsigned int fd, unsigned int cmd, ...@@ -437,6 +439,27 @@ asmlinkage long compat_sys_ioctl(unsigned int fd, unsigned int cmd,
if (!filp) if (!filp)
goto out; goto out;
/*
* To allow the compat_ioctl handlers to be self contained
* we need to check the common ioctls here first.
* Just handle them with the standard handlers below.
*/
switch (cmd) {
case FIOCLEX:
case FIONCLEX:
case FIONBIO:
case FIOASYNC:
case FIOQSIZE:
break;
case FIBMAP:
case FIGETBSZ:
case FIONREAD:
if (S_ISREG(filp->f_dentry->d_inode->i_mode))
break;
/*FALL THROUGH*/
default:
if (filp->f_op && filp->f_op->compat_ioctl) { if (filp->f_op && filp->f_op->compat_ioctl) {
error = filp->f_op->compat_ioctl(filp, cmd, arg); error = filp->f_op->compat_ioctl(filp, cmd, arg);
if (error != -ENOIOCTLCMD) if (error != -ENOIOCTLCMD)
...@@ -446,7 +469,11 @@ asmlinkage long compat_sys_ioctl(unsigned int fd, unsigned int cmd, ...@@ -446,7 +469,11 @@ asmlinkage long compat_sys_ioctl(unsigned int fd, unsigned int cmd,
if (!filp->f_op || if (!filp->f_op ||
(!filp->f_op->ioctl && !filp->f_op->unlocked_ioctl)) (!filp->f_op->ioctl && !filp->f_op->unlocked_ioctl))
goto do_ioctl; goto do_ioctl;
break;
}
/* When register_ioctl32_conversion is finally gone remove
this lock! -AK */
down_read(&ioctl32_sem); down_read(&ioctl32_sem);
for (t = ioctl32_hash_table[ioctl32_hash(cmd)]; t; t = t->next) { for (t = ioctl32_hash_table[ioctl32_hash(cmd)]; t; t = t->next) {
if (t->cmd == cmd) if (t->cmd == cmd)
...@@ -454,7 +481,8 @@ asmlinkage long compat_sys_ioctl(unsigned int fd, unsigned int cmd, ...@@ -454,7 +481,8 @@ asmlinkage long compat_sys_ioctl(unsigned int fd, unsigned int cmd,
} }
up_read(&ioctl32_sem); up_read(&ioctl32_sem);
if (cmd >= SIOCDEVPRIVATE && cmd <= (SIOCDEVPRIVATE + 15)) { if (S_ISSOCK(filp->f_dentry->d_inode->i_mode) &&
cmd >= SIOCDEVPRIVATE && cmd <= (SIOCDEVPRIVATE + 15)) {
error = siocdevprivate_ioctl(fd, cmd, arg); error = siocdevprivate_ioctl(fd, cmd, arg);
} else { } else {
static int count; static int count;
...@@ -468,6 +496,11 @@ asmlinkage long compat_sys_ioctl(unsigned int fd, unsigned int cmd, ...@@ -468,6 +496,11 @@ asmlinkage long compat_sys_ioctl(unsigned int fd, unsigned int cmd,
found_handler: found_handler:
if (t->handler) { if (t->handler) {
/* RED-PEN how should LSM module know it's handling 32bit? */
error = security_file_ioctl(filp, cmd, arg);
if (error)
goto out_fput;
lock_kernel(); lock_kernel();
error = t->handler(fd, cmd, arg, filp); error = t->handler(fd, cmd, arg, filp);
unlock_kernel(); unlock_kernel();
......
...@@ -78,6 +78,10 @@ static int file_ioctl(struct file *filp, unsigned int cmd, ...@@ -78,6 +78,10 @@ static int file_ioctl(struct file *filp, unsigned int cmd,
} }
/*
* When you add any new common ioctls to the switches above and below
* please update compat_sys_ioctl() too.
*/
asmlinkage long sys_ioctl(unsigned int fd, unsigned int cmd, unsigned long arg) asmlinkage long sys_ioctl(unsigned int fd, unsigned int cmd, unsigned long arg)
{ {
struct file * filp; struct file * filp;
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment