Git Browser for ODROID
Code Review Sign In
git.odroid.com / linux / 822ad64d7e46a8e2c8b8a796738d7b657cbb146d / . / security / keys / request_key_auth.c
blob: afc304e8b61e199074da076f1a4052d7d6f03067 [file] [log] [blame]
David Howells973c9f42011-01-20 16:38:33 +0000[diff] [blame]1/* Request key authorisation token key definition.
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]2 *
3 * Copyright (C) 2005 Red Hat, Inc. All Rights Reserved.
4 * Written by David Howells (dhowells@redhat.com)
5 *
6 * This program is free software; you can redistribute it and/or
7 * modify it under the terms of the GNU General Public License
8 * as published by the Free Software Foundation; either version
9 * 2 of the License, or (at your option) any later version.
David Howellsf1a9bad2005-10-07 15:04:52 +0100[diff] [blame]10 *
Kees Cook3db38ed2017-05-13 04:51:52 -0700[diff] [blame]11 * See Documentation/security/keys/request-key.rst
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]12 */
13
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]14#include <linux/sched.h>
15#include <linux/err.h>
16#include <linux/seq_file.h>
Robert P. J. Dayfdb89bc2008-04-29 01:01:32 -0700[diff] [blame]17#include <linux/slab.h>
Linus Torvalds7c0f6ba2016-12-24 11:46:01 -0800[diff] [blame]18#include <linux/uaccess.h>
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]19#include "internal.h"
David Howells822ad642019-02-14 16:20:25 +0000[diff] [blame^]20#include <keys/request_key_auth-type.h>
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]21
David Howellsf1dcde92014-07-18 18:56:36 +0100[diff] [blame]22static int request_key_auth_preparse(struct key_preparsed_payload *);
23static void request_key_auth_free_preparse(struct key_preparsed_payload *);
David Howellscf7f6012012-09-13 13:06:29 +0100[diff] [blame]24static int request_key_auth_instantiate(struct key *,
25 struct key_preparsed_payload *);
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]26static void request_key_auth_describe(const struct key *, struct seq_file *);
David Howells04c567d2006-06-22 14:47:18 -0700[diff] [blame]27static void request_key_auth_revoke(struct key *);
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]28static void request_key_auth_destroy(struct key *);
David Howellsb5f545c2006-01-08 01:02:47 -0800[diff] [blame]29static long request_key_auth_read(const struct key *, char __user *, size_t);
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]30
31/*
David Howells973c9f42011-01-20 16:38:33 +0000[diff] [blame]32 * The request-key authorisation key type definition.
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]33 */
34struct key_type key_type_request_key_auth = {
35 .name = ".request_key_auth",
36 .def_datalen = sizeof(struct request_key_auth),
David Howellsf1dcde92014-07-18 18:56:36 +0100[diff] [blame]37 .preparse = request_key_auth_preparse,
38 .free_preparse = request_key_auth_free_preparse,
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]39 .instantiate = request_key_auth_instantiate,
40 .describe = request_key_auth_describe,
David Howells04c567d2006-06-22 14:47:18 -0700[diff] [blame]41 .revoke = request_key_auth_revoke,
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]42 .destroy = request_key_auth_destroy,
David Howellsb5f545c2006-01-08 01:02:47 -0800[diff] [blame]43 .read = request_key_auth_read,
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]44};
45
David Howells8da79b62014-09-16 17:07:07 +0100[diff] [blame]46static int request_key_auth_preparse(struct key_preparsed_payload *prep)
David Howellsf1dcde92014-07-18 18:56:36 +0100[diff] [blame]47{
48 return 0;
49}
50
David Howells8da79b62014-09-16 17:07:07 +0100[diff] [blame]51static void request_key_auth_free_preparse(struct key_preparsed_payload *prep)
David Howellsf1dcde92014-07-18 18:56:36 +0100[diff] [blame]52{
53}
54
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]55/*
David Howells973c9f42011-01-20 16:38:33 +0000[diff] [blame]56 * Instantiate a request-key authorisation key.
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]57 */
58static int request_key_auth_instantiate(struct key *key,
David Howellscf7f6012012-09-13 13:06:29 +0100[diff] [blame]59 struct key_preparsed_payload *prep)
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]60{
David Howells146aa8b2015-10-21 14:04:48 +0100[diff] [blame]61 key->payload.data[0] = (struct request_key_auth *)prep->data;
David Howellsb5f545c2006-01-08 01:02:47 -0800[diff] [blame]62 return 0;
David Howellsa8b17ed2011-01-20 16:38:27 +0000[diff] [blame]63}
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]64
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]65/*
David Howells973c9f42011-01-20 16:38:33 +0000[diff] [blame]66 * Describe an authorisation token.
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]67 */
68static void request_key_auth_describe(const struct key *key,
69 struct seq_file *m)
70{
David Howells822ad642019-02-14 16:20:25 +0000[diff] [blame^]71 struct request_key_auth *rka = get_request_key_auth(key);
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]72
73 seq_puts(m, "key:");
74 seq_puts(m, key->description);
David Howells363b02d2017-10-04 16:43:25 +0100[diff] [blame]75 if (key_is_positive(key))
David Howells78b72802011-03-11 17:57:23 +0000[diff] [blame]76 seq_printf(m, " pid:%d ci:%zu", rka->pid, rka->callout_len);
David Howellsa8b17ed2011-01-20 16:38:27 +0000[diff] [blame]77}
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]78
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]79/*
David Howells973c9f42011-01-20 16:38:33 +0000[diff] [blame]80 * Read the callout_info data (retrieves the callout information).
David Howellsb5f545c2006-01-08 01:02:47 -0800[diff] [blame]81 * - the key's semaphore is read-locked
82 */
83static long request_key_auth_read(const struct key *key,
84 char __user *buffer, size_t buflen)
85{
David Howells822ad642019-02-14 16:20:25 +0000[diff] [blame^]86 struct request_key_auth *rka = get_request_key_auth(key);
David Howellsb5f545c2006-01-08 01:02:47 -0800[diff] [blame]87 size_t datalen;
88 long ret;
89
David Howells4a38e122008-04-29 01:01:24 -0700[diff] [blame]90 datalen = rka->callout_len;
David Howellsb5f545c2006-01-08 01:02:47 -0800[diff] [blame]91 ret = datalen;
92
93 /* we can return the data as is */
94 if (buffer && buflen > 0) {
95 if (buflen > datalen)
96 buflen = datalen;
97
98 if (copy_to_user(buffer, rka->callout_info, buflen) != 0)
99 ret = -EFAULT;
100 }
101
102 return ret;
David Howellsa8b17ed2011-01-20 16:38:27 +0000[diff] [blame]103}
David Howellsb5f545c2006-01-08 01:02:47 -0800[diff] [blame]104
David Howellsb5f545c2006-01-08 01:02:47 -0800[diff] [blame]105/*
David Howells973c9f42011-01-20 16:38:33 +0000[diff] [blame]106 * Handle revocation of an authorisation token key.
107 *
108 * Called with the key sem write-locked.
David Howells04c567d2006-06-22 14:47:18 -0700[diff] [blame]109 */
110static void request_key_auth_revoke(struct key *key)
111{
David Howells822ad642019-02-14 16:20:25 +0000[diff] [blame^]112 struct request_key_auth *rka = get_request_key_auth(key);
David Howells04c567d2006-06-22 14:47:18 -0700[diff] [blame]113
114 kenter("{%d}", key->serial);
115
David Howellsd84f4f92008-11-14 10:39:23 +1100[diff] [blame]116 if (rka->cred) {
117 put_cred(rka->cred);
118 rka->cred = NULL;
David Howells04c567d2006-06-22 14:47:18 -0700[diff] [blame]119 }
David Howellsa8b17ed2011-01-20 16:38:27 +0000[diff] [blame]120}
David Howells04c567d2006-06-22 14:47:18 -0700[diff] [blame]121
Eric Biggers44d81432017-09-21 13:57:40 -0700[diff] [blame]122static void free_request_key_auth(struct request_key_auth *rka)
123{
124 if (!rka)
125 return;
126 key_put(rka->target_key);
127 key_put(rka->dest_keyring);
128 if (rka->cred)
129 put_cred(rka->cred);
130 kfree(rka->callout_info);
131 kfree(rka);
132}
133
David Howells04c567d2006-06-22 14:47:18 -0700[diff] [blame]134/*
David Howells973c9f42011-01-20 16:38:33 +0000[diff] [blame]135 * Destroy an instantiation authorisation token key.
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]136 */
137static void request_key_auth_destroy(struct key *key)
138{
David Howells822ad642019-02-14 16:20:25 +0000[diff] [blame^]139 struct request_key_auth *rka = get_request_key_auth(key);
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]140
141 kenter("{%d}", key->serial);
142
Eric Biggers44d81432017-09-21 13:57:40 -0700[diff] [blame]143 free_request_key_auth(rka);
David Howellsa8b17ed2011-01-20 16:38:27 +0000[diff] [blame]144}
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]145
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]146/*
David Howells973c9f42011-01-20 16:38:33 +0000[diff] [blame]147 * Create an authorisation token for /sbin/request-key or whoever to gain
148 * access to the caller's security data.
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]149 */
David Howells822ad642019-02-14 16:20:25 +0000[diff] [blame^]150struct key *request_key_auth_new(struct key *target, const char *op,
151 const void *callout_info, size_t callout_len,
152 struct key *dest_keyring)
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]153{
David Howellsb5f545c2006-01-08 01:02:47 -0800[diff] [blame]154 struct request_key_auth *rka, *irka;
David Howellsd84f4f92008-11-14 10:39:23 +1100[diff] [blame]155 const struct cred *cred = current->cred;
David Howellsb5f545c2006-01-08 01:02:47 -0800[diff] [blame]156 struct key *authkey = NULL;
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]157 char desc[20];
Eric Biggers44d81432017-09-21 13:57:40 -0700[diff] [blame]158 int ret = -ENOMEM;
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]159
160 kenter("%d,", target->serial);
161
David Howellsb5f545c2006-01-08 01:02:47 -0800[diff] [blame]162 /* allocate a auth record */
Eric Biggers44d81432017-09-21 13:57:40 -0700[diff] [blame]163 rka = kzalloc(sizeof(*rka), GFP_KERNEL);
164 if (!rka)
165 goto error;
Eric Biggerse007ce92017-09-21 13:57:42 -0700[diff] [blame]166 rka->callout_info = kmemdup(callout_info, callout_len, GFP_KERNEL);
Eric Biggers44d81432017-09-21 13:57:40 -0700[diff] [blame]167 if (!rka->callout_info)
168 goto error_free_rka;
Eric Biggerse007ce92017-09-21 13:57:42 -0700[diff] [blame]169 rka->callout_len = callout_len;
David Howells822ad642019-02-14 16:20:25 +0000[diff] [blame^]170 strlcpy(rka->op, op, sizeof(rka->op));
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]171
David Howellsb5f545c2006-01-08 01:02:47 -0800[diff] [blame]172 /* see if the calling process is already servicing the key request of
173 * another process */
David Howellsd84f4f92008-11-14 10:39:23 +1100[diff] [blame]174 if (cred->request_key_auth) {
David Howellsb5f545c2006-01-08 01:02:47 -0800[diff] [blame]175 /* it is - use that instantiation context here too */
David Howellsd84f4f92008-11-14 10:39:23 +1100[diff] [blame]176 down_read(&cred->request_key_auth->sem);
David Howells04c567d2006-06-22 14:47:18 -0700[diff] [blame]177
178 /* if the auth key has been revoked, then the key we're
179 * servicing is already instantiated */
Eric Biggers44d81432017-09-21 13:57:40 -0700[diff] [blame]180 if (test_bit(KEY_FLAG_REVOKED,
181 &cred->request_key_auth->flags)) {
182 up_read(&cred->request_key_auth->sem);
183 ret = -EKEYREVOKED;
184 goto error_free_rka;
185 }
David Howells04c567d2006-06-22 14:47:18 -0700[diff] [blame]186
David Howells146aa8b2015-10-21 14:04:48 +0100[diff] [blame]187 irka = cred->request_key_auth->payload.data[0];
David Howellsd84f4f92008-11-14 10:39:23 +1100[diff] [blame]188 rka->cred = get_cred(irka->cred);
David Howellsb5f545c2006-01-08 01:02:47 -0800[diff] [blame]189 rka->pid = irka->pid;
David Howells04c567d2006-06-22 14:47:18 -0700[diff] [blame]190
David Howellsd84f4f92008-11-14 10:39:23 +1100[diff] [blame]191 up_read(&cred->request_key_auth->sem);
David Howellsb5f545c2006-01-08 01:02:47 -0800[diff] [blame]192 }
193 else {
194 /* it isn't - use this process as the context */
David Howellsd84f4f92008-11-14 10:39:23 +1100[diff] [blame]195 rka->cred = get_cred(cred);
David Howellsb5f545c2006-01-08 01:02:47 -0800[diff] [blame]196 rka->pid = current->pid;
197 }
198
199 rka->target_key = key_get(target);
David Howells8bbf49762008-11-14 10:39:14 +1100[diff] [blame]200 rka->dest_keyring = key_get(dest_keyring);
David Howellsb5f545c2006-01-08 01:02:47 -0800[diff] [blame]201
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]202 /* allocate the auth key */
203 sprintf(desc, "%x", target->serial);
204
David Howellsb5f545c2006-01-08 01:02:47 -0800[diff] [blame]205 authkey = key_alloc(&key_type_request_key_auth, desc,
David Howellsd84f4f92008-11-14 10:39:23 +1100[diff] [blame]206 cred->fsuid, cred->fsgid, cred,
David Howellsb5f545c2006-01-08 01:02:47 -0800[diff] [blame]207 KEY_POS_VIEW | KEY_POS_READ | KEY_POS_SEARCH |
David Howells5ac7eac2016-04-06 16:14:24 +0100[diff] [blame]208 KEY_USR_VIEW, KEY_ALLOC_NOT_IN_QUOTA, NULL);
David Howellsb5f545c2006-01-08 01:02:47 -0800[diff] [blame]209 if (IS_ERR(authkey)) {
210 ret = PTR_ERR(authkey);
Eric Biggers44d81432017-09-21 13:57:40 -0700[diff] [blame]211 goto error_free_rka;
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]212 }
213
David Howellsd84f4f92008-11-14 10:39:23 +1100[diff] [blame]214 /* construct the auth key */
David Howellsb5f545c2006-01-08 01:02:47 -0800[diff] [blame]215 ret = key_instantiate_and_link(authkey, rka, 0, NULL, NULL);
216 if (ret < 0)
Eric Biggers44d81432017-09-21 13:57:40 -0700[diff] [blame]217 goto error_put_authkey;
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]218
Elena Reshetovafff29292017-03-31 15:20:48 +0300[diff] [blame]219 kleave(" = {%d,%d}", authkey->serial, refcount_read(&authkey->usage));
David Howellsb5f545c2006-01-08 01:02:47 -0800[diff] [blame]220 return authkey;
221
Eric Biggers44d81432017-09-21 13:57:40 -0700[diff] [blame]222error_put_authkey:
David Howellsb5f545c2006-01-08 01:02:47 -0800[diff] [blame]223 key_put(authkey);
Eric Biggers44d81432017-09-21 13:57:40 -0700[diff] [blame]224error_free_rka:
225 free_request_key_auth(rka);
226error:
David Howellsb5f545c2006-01-08 01:02:47 -0800[diff] [blame]227 kleave("= %d", ret);
228 return ERR_PTR(ret);
David Howellsa8b17ed2011-01-20 16:38:27 +0000[diff] [blame]229}
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]230
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]231/*
David Howells973c9f42011-01-20 16:38:33 +0000[diff] [blame]232 * Search the current process's keyrings for the authorisation key for
233 * instantiation of a key.
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]234 */
235struct key *key_get_instantiation_authkey(key_serial_t target_id)
236{
David Howellsd0a059c2013-09-24 10:35:16 +0100[diff] [blame]237 char description[16];
David Howells4bdf0bc2013-09-24 10:35:15 +0100[diff] [blame]238 struct keyring_search_context ctx = {
239 .index_key.type = &key_type_request_key_auth,
David Howellsd0a059c2013-09-24 10:35:16 +0100[diff] [blame]240 .index_key.description = description,
David Howells4bdf0bc2013-09-24 10:35:15 +0100[diff] [blame]241 .cred = current_cred(),
David Howellsc06cfb02014-09-16 17:36:06 +0100[diff] [blame]242 .match_data.cmp = key_default_cmp,
David Howells46291952014-09-16 17:36:02 +0100[diff] [blame]243 .match_data.raw_data = description,
244 .match_data.lookup_type = KEYRING_SEARCH_LOOKUP_DIRECT,
David Howells054f6182014-12-01 22:52:50 +0000[diff] [blame]245 .flags = KEYRING_SEARCH_DO_STATE_CHECK,
David Howells4bdf0bc2013-09-24 10:35:15 +0100[diff] [blame]246 };
David Howellsb5f545c2006-01-08 01:02:47 -0800[diff] [blame]247 struct key *authkey;
248 key_ref_t authkey_ref;
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]249
David Howellsd0a059c2013-09-24 10:35:16 +0100[diff] [blame]250 sprintf(description, "%x", target_id);
251
David Howells4bdf0bc2013-09-24 10:35:15 +0100[diff] [blame]252 authkey_ref = search_process_keyrings(&ctx);
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]253
David Howellsb5f545c2006-01-08 01:02:47 -0800[diff] [blame]254 if (IS_ERR(authkey_ref)) {
David Howellse231c2e2008-02-07 00:15:26 -0800[diff] [blame]255 authkey = ERR_CAST(authkey_ref);
David Howells4d674312011-06-13 22:33:52 +0100[diff] [blame]256 if (authkey == ERR_PTR(-EAGAIN))
257 authkey = ERR_PTR(-ENOKEY);
David Howellsb5f545c2006-01-08 01:02:47 -0800[diff] [blame]258 goto error;
259 }
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]260
David Howellsb5f545c2006-01-08 01:02:47 -0800[diff] [blame]261 authkey = key_ref_to_ptr(authkey_ref);
262 if (test_bit(KEY_FLAG_REVOKED, &authkey->flags)) {
263 key_put(authkey);
264 authkey = ERR_PTR(-EKEYREVOKED);
265 }
David Howells3e301482005-06-23 22:00:56 -0700[diff] [blame]266
David Howellsb5f545c2006-01-08 01:02:47 -0800[diff] [blame]267error:
268 return authkey;
David Howellsa8b17ed2011-01-20 16:38:27 +0000[diff] [blame]269}