1b2441318SGreg Kroah-Hartman // SPDX-License-Identifier: GPL-2.0
2a147faa9SKees Cook #define _GNU_SOURCE
33a665531SStanislav Kinsbursky #include <stdlib.h>
43a665531SStanislav Kinsbursky #include <stdio.h>
53a665531SStanislav Kinsbursky #include <string.h>
63a665531SStanislav Kinsbursky #include <errno.h>
7a147faa9SKees Cook #include <sys/msg.h>
83a665531SStanislav Kinsbursky #include <fcntl.h>
93a665531SStanislav Kinsbursky
1056661564SShuah Khan #include "../kselftest.h"
1156661564SShuah Khan
123a665531SStanislav Kinsbursky #define MAX_MSG_SIZE 32
133a665531SStanislav Kinsbursky
143a665531SStanislav Kinsbursky struct msg1 {
153a665531SStanislav Kinsbursky int msize;
163a665531SStanislav Kinsbursky long mtype;
173a665531SStanislav Kinsbursky char mtext[MAX_MSG_SIZE];
183a665531SStanislav Kinsbursky };
193a665531SStanislav Kinsbursky
203a665531SStanislav Kinsbursky #define TEST_STRING "Test sysv5 msg"
213a665531SStanislav Kinsbursky #define MSG_TYPE 1
223a665531SStanislav Kinsbursky
233a665531SStanislav Kinsbursky #define ANOTHER_TEST_STRING "Yet another test sysv5 msg"
243a665531SStanislav Kinsbursky #define ANOTHER_MSG_TYPE 26538
253a665531SStanislav Kinsbursky
263a665531SStanislav Kinsbursky struct msgque_data {
273a665531SStanislav Kinsbursky key_t key;
283a665531SStanislav Kinsbursky int msq_id;
293a665531SStanislav Kinsbursky int qbytes;
303a665531SStanislav Kinsbursky int qnum;
313a665531SStanislav Kinsbursky int mode;
323a665531SStanislav Kinsbursky struct msg1 *messages;
333a665531SStanislav Kinsbursky };
343a665531SStanislav Kinsbursky
restore_queue(struct msgque_data * msgque)353a665531SStanislav Kinsbursky int restore_queue(struct msgque_data *msgque)
363a665531SStanislav Kinsbursky {
373a665531SStanislav Kinsbursky int fd, ret, id, i;
383a665531SStanislav Kinsbursky char buf[32];
393a665531SStanislav Kinsbursky
403a665531SStanislav Kinsbursky fd = open("/proc/sys/kernel/msg_next_id", O_WRONLY);
413a665531SStanislav Kinsbursky if (fd == -1) {
423a665531SStanislav Kinsbursky printf("Failed to open /proc/sys/kernel/msg_next_id\n");
433a665531SStanislav Kinsbursky return -errno;
443a665531SStanislav Kinsbursky }
453a665531SStanislav Kinsbursky sprintf(buf, "%d", msgque->msq_id);
463a665531SStanislav Kinsbursky
473a665531SStanislav Kinsbursky ret = write(fd, buf, strlen(buf));
483a665531SStanislav Kinsbursky if (ret != strlen(buf)) {
493a665531SStanislav Kinsbursky printf("Failed to write to /proc/sys/kernel/msg_next_id\n");
503a665531SStanislav Kinsbursky return -errno;
513a665531SStanislav Kinsbursky }
523a665531SStanislav Kinsbursky
533a665531SStanislav Kinsbursky id = msgget(msgque->key, msgque->mode | IPC_CREAT | IPC_EXCL);
543a665531SStanislav Kinsbursky if (id == -1) {
553a665531SStanislav Kinsbursky printf("Failed to create queue\n");
563a665531SStanislav Kinsbursky return -errno;
573a665531SStanislav Kinsbursky }
583a665531SStanislav Kinsbursky
593a665531SStanislav Kinsbursky if (id != msgque->msq_id) {
603a665531SStanislav Kinsbursky printf("Restored queue has wrong id (%d instead of %d)\n",
613a665531SStanislav Kinsbursky id, msgque->msq_id);
623a665531SStanislav Kinsbursky ret = -EFAULT;
633a665531SStanislav Kinsbursky goto destroy;
643a665531SStanislav Kinsbursky }
653a665531SStanislav Kinsbursky
663a665531SStanislav Kinsbursky for (i = 0; i < msgque->qnum; i++) {
673a665531SStanislav Kinsbursky if (msgsnd(msgque->msq_id, &msgque->messages[i].mtype,
683a665531SStanislav Kinsbursky msgque->messages[i].msize, IPC_NOWAIT) != 0) {
693a665531SStanislav Kinsbursky printf("msgsnd failed (%m)\n");
703a665531SStanislav Kinsbursky ret = -errno;
713a665531SStanislav Kinsbursky goto destroy;
728a94b4eaSYang Li }
733a665531SStanislav Kinsbursky }
743a665531SStanislav Kinsbursky return 0;
753a665531SStanislav Kinsbursky
763a665531SStanislav Kinsbursky destroy:
77a147faa9SKees Cook if (msgctl(id, IPC_RMID, NULL))
783a665531SStanislav Kinsbursky printf("Failed to destroy queue: %d\n", -errno);
793a665531SStanislav Kinsbursky return ret;
803a665531SStanislav Kinsbursky }
813a665531SStanislav Kinsbursky
check_and_destroy_queue(struct msgque_data * msgque)823a665531SStanislav Kinsbursky int check_and_destroy_queue(struct msgque_data *msgque)
833a665531SStanislav Kinsbursky {
843a665531SStanislav Kinsbursky struct msg1 message;
853a665531SStanislav Kinsbursky int cnt = 0, ret;
863a665531SStanislav Kinsbursky
873a665531SStanislav Kinsbursky while (1) {
883a665531SStanislav Kinsbursky ret = msgrcv(msgque->msq_id, &message.mtype, MAX_MSG_SIZE,
893a665531SStanislav Kinsbursky 0, IPC_NOWAIT);
903a665531SStanislav Kinsbursky if (ret < 0) {
913a665531SStanislav Kinsbursky if (errno == ENOMSG)
923a665531SStanislav Kinsbursky break;
933a665531SStanislav Kinsbursky printf("Failed to read IPC message: %m\n");
943a665531SStanislav Kinsbursky ret = -errno;
953a665531SStanislav Kinsbursky goto err;
963a665531SStanislav Kinsbursky }
973a665531SStanislav Kinsbursky if (ret != msgque->messages[cnt].msize) {
983a665531SStanislav Kinsbursky printf("Wrong message size: %d (expected %d)\n", ret,
993a665531SStanislav Kinsbursky msgque->messages[cnt].msize);
1003a665531SStanislav Kinsbursky ret = -EINVAL;
1013a665531SStanislav Kinsbursky goto err;
1023a665531SStanislav Kinsbursky }
1033a665531SStanislav Kinsbursky if (message.mtype != msgque->messages[cnt].mtype) {
1043a665531SStanislav Kinsbursky printf("Wrong message type\n");
1053a665531SStanislav Kinsbursky ret = -EINVAL;
1063a665531SStanislav Kinsbursky goto err;
1073a665531SStanislav Kinsbursky }
1083a665531SStanislav Kinsbursky if (memcmp(message.mtext, msgque->messages[cnt].mtext, ret)) {
1093a665531SStanislav Kinsbursky printf("Wrong message content\n");
1103a665531SStanislav Kinsbursky ret = -EINVAL;
1113a665531SStanislav Kinsbursky goto err;
1123a665531SStanislav Kinsbursky }
1133a665531SStanislav Kinsbursky cnt++;
1143a665531SStanislav Kinsbursky }
1153a665531SStanislav Kinsbursky
1163a665531SStanislav Kinsbursky if (cnt != msgque->qnum) {
1173a665531SStanislav Kinsbursky printf("Wrong message number\n");
1183a665531SStanislav Kinsbursky ret = -EINVAL;
1193a665531SStanislav Kinsbursky goto err;
1203a665531SStanislav Kinsbursky }
1213a665531SStanislav Kinsbursky
1223a665531SStanislav Kinsbursky ret = 0;
1233a665531SStanislav Kinsbursky err:
124a147faa9SKees Cook if (msgctl(msgque->msq_id, IPC_RMID, NULL)) {
1253a665531SStanislav Kinsbursky printf("Failed to destroy queue: %d\n", -errno);
1263a665531SStanislav Kinsbursky return -errno;
1273a665531SStanislav Kinsbursky }
1283a665531SStanislav Kinsbursky return ret;
1293a665531SStanislav Kinsbursky }
1303a665531SStanislav Kinsbursky
dump_queue(struct msgque_data * msgque)1313a665531SStanislav Kinsbursky int dump_queue(struct msgque_data *msgque)
1323a665531SStanislav Kinsbursky {
133a147faa9SKees Cook struct msqid_ds ds;
1343a665531SStanislav Kinsbursky int kern_id;
1353a665531SStanislav Kinsbursky int i, ret;
1363a665531SStanislav Kinsbursky
1373a665531SStanislav Kinsbursky for (kern_id = 0; kern_id < 256; kern_id++) {
1383a665531SStanislav Kinsbursky ret = msgctl(kern_id, MSG_STAT, &ds);
1393a665531SStanislav Kinsbursky if (ret < 0) {
140b87080eaSTyler Hicks if (errno == EINVAL)
1413a665531SStanislav Kinsbursky continue;
1423a665531SStanislav Kinsbursky printf("Failed to get stats for IPC queue with id %d\n",
1433a665531SStanislav Kinsbursky kern_id);
1443a665531SStanislav Kinsbursky return -errno;
1453a665531SStanislav Kinsbursky }
1463a665531SStanislav Kinsbursky
1473a665531SStanislav Kinsbursky if (ret == msgque->msq_id)
1483a665531SStanislav Kinsbursky break;
1493a665531SStanislav Kinsbursky }
1503a665531SStanislav Kinsbursky
1513a665531SStanislav Kinsbursky msgque->messages = malloc(sizeof(struct msg1) * ds.msg_qnum);
1523a665531SStanislav Kinsbursky if (msgque->messages == NULL) {
1533a665531SStanislav Kinsbursky printf("Failed to get stats for IPC queue\n");
1543a665531SStanislav Kinsbursky return -ENOMEM;
1553a665531SStanislav Kinsbursky }
1563a665531SStanislav Kinsbursky
1573a665531SStanislav Kinsbursky msgque->qnum = ds.msg_qnum;
1583a665531SStanislav Kinsbursky msgque->mode = ds.msg_perm.mode;
1593a665531SStanislav Kinsbursky msgque->qbytes = ds.msg_qbytes;
1603a665531SStanislav Kinsbursky
1613a665531SStanislav Kinsbursky for (i = 0; i < msgque->qnum; i++) {
1623a665531SStanislav Kinsbursky ret = msgrcv(msgque->msq_id, &msgque->messages[i].mtype,
1633a665531SStanislav Kinsbursky MAX_MSG_SIZE, i, IPC_NOWAIT | MSG_COPY);
1643a665531SStanislav Kinsbursky if (ret < 0) {
1653a665531SStanislav Kinsbursky printf("Failed to copy IPC message: %m (%d)\n", errno);
1663a665531SStanislav Kinsbursky return -errno;
1673a665531SStanislav Kinsbursky }
1683a665531SStanislav Kinsbursky msgque->messages[i].msize = ret;
1693a665531SStanislav Kinsbursky }
1703a665531SStanislav Kinsbursky return 0;
1713a665531SStanislav Kinsbursky }
1723a665531SStanislav Kinsbursky
fill_msgque(struct msgque_data * msgque)1733a665531SStanislav Kinsbursky int fill_msgque(struct msgque_data *msgque)
1743a665531SStanislav Kinsbursky {
1753a665531SStanislav Kinsbursky struct msg1 msgbuf;
1763a665531SStanislav Kinsbursky
1773a665531SStanislav Kinsbursky msgbuf.mtype = MSG_TYPE;
1783a665531SStanislav Kinsbursky memcpy(msgbuf.mtext, TEST_STRING, sizeof(TEST_STRING));
1793a665531SStanislav Kinsbursky if (msgsnd(msgque->msq_id, &msgbuf.mtype, sizeof(TEST_STRING),
1803a665531SStanislav Kinsbursky IPC_NOWAIT) != 0) {
1813a665531SStanislav Kinsbursky printf("First message send failed (%m)\n");
1823a665531SStanislav Kinsbursky return -errno;
1838a94b4eaSYang Li }
1843a665531SStanislav Kinsbursky
1853a665531SStanislav Kinsbursky msgbuf.mtype = ANOTHER_MSG_TYPE;
1863a665531SStanislav Kinsbursky memcpy(msgbuf.mtext, ANOTHER_TEST_STRING, sizeof(ANOTHER_TEST_STRING));
1873a665531SStanislav Kinsbursky if (msgsnd(msgque->msq_id, &msgbuf.mtype, sizeof(ANOTHER_TEST_STRING),
1883a665531SStanislav Kinsbursky IPC_NOWAIT) != 0) {
1893a665531SStanislav Kinsbursky printf("Second message send failed (%m)\n");
1903a665531SStanislav Kinsbursky return -errno;
1918a94b4eaSYang Li }
1923a665531SStanislav Kinsbursky return 0;
1933a665531SStanislav Kinsbursky }
1943a665531SStanislav Kinsbursky
main(int argc,char ** argv)1953a665531SStanislav Kinsbursky int main(int argc, char **argv)
1963a665531SStanislav Kinsbursky {
197*eed8ecdfSzhang jiao int err;
1983a665531SStanislav Kinsbursky struct msgque_data msgque;
1993a665531SStanislav Kinsbursky
2006004881fSShuah Khan (Samsung OSG) if (getuid() != 0)
201e84b354eSNathan Chancellor ksft_exit_skip("Please run the test as root - Exiting.\n");
202e84f1ab3SShuah Khan
2033a665531SStanislav Kinsbursky msgque.key = ftok(argv[0], 822155650);
2043a665531SStanislav Kinsbursky if (msgque.key == -1) {
20556661564SShuah Khan printf("Can't make key: %d\n", -errno);
206e84b354eSNathan Chancellor ksft_exit_fail();
2073a665531SStanislav Kinsbursky }
2083a665531SStanislav Kinsbursky
2093a665531SStanislav Kinsbursky msgque.msq_id = msgget(msgque.key, IPC_CREAT | IPC_EXCL | 0666);
2103a665531SStanislav Kinsbursky if (msgque.msq_id == -1) {
21153942232SColin Ian King err = -errno;
21256661564SShuah Khan printf("Can't create queue: %d\n", err);
2133a665531SStanislav Kinsbursky goto err_out;
2143a665531SStanislav Kinsbursky }
2153a665531SStanislav Kinsbursky
2163a665531SStanislav Kinsbursky err = fill_msgque(&msgque);
2173a665531SStanislav Kinsbursky if (err) {
21856661564SShuah Khan printf("Failed to fill queue: %d\n", err);
2193a665531SStanislav Kinsbursky goto err_destroy;
2203a665531SStanislav Kinsbursky }
2213a665531SStanislav Kinsbursky
2223a665531SStanislav Kinsbursky err = dump_queue(&msgque);
2233a665531SStanislav Kinsbursky if (err) {
22456661564SShuah Khan printf("Failed to dump queue: %d\n", err);
2253a665531SStanislav Kinsbursky goto err_destroy;
2263a665531SStanislav Kinsbursky }
2273a665531SStanislav Kinsbursky
2283a665531SStanislav Kinsbursky err = check_and_destroy_queue(&msgque);
2293a665531SStanislav Kinsbursky if (err) {
23056661564SShuah Khan printf("Failed to check and destroy queue: %d\n", err);
2313a665531SStanislav Kinsbursky goto err_out;
2323a665531SStanislav Kinsbursky }
2333a665531SStanislav Kinsbursky
2343a665531SStanislav Kinsbursky err = restore_queue(&msgque);
2353a665531SStanislav Kinsbursky if (err) {
23656661564SShuah Khan printf("Failed to restore queue: %d\n", err);
2373a665531SStanislav Kinsbursky goto err_destroy;
2383a665531SStanislav Kinsbursky }
2393a665531SStanislav Kinsbursky
2403a665531SStanislav Kinsbursky err = check_and_destroy_queue(&msgque);
2413a665531SStanislav Kinsbursky if (err) {
24256661564SShuah Khan printf("Failed to test queue: %d\n", err);
2433a665531SStanislav Kinsbursky goto err_out;
2443a665531SStanislav Kinsbursky }
245e84b354eSNathan Chancellor ksft_exit_pass();
2463a665531SStanislav Kinsbursky
2473a665531SStanislav Kinsbursky err_destroy:
248a147faa9SKees Cook if (msgctl(msgque.msq_id, IPC_RMID, NULL)) {
2493a665531SStanislav Kinsbursky printf("Failed to destroy queue: %d\n", -errno);
250e84b354eSNathan Chancellor ksft_exit_fail();
2513a665531SStanislav Kinsbursky }
2523a665531SStanislav Kinsbursky err_out:
253e84b354eSNathan Chancellor ksft_exit_fail();
2543a665531SStanislav Kinsbursky }
255