sys/kern/sysv_shm.c

50477Speter/* $FreeBSD: head/sys/kern/sysv_shm.c 69449 2000-12-01 08:57:47Z alfred $ */
2729Sdfr/*	$NetBSD: sysv_shm.c,v 1.23 1994/07/04 23:25:12 glass Exp $	*/
2729Sdfr
2729Sdfr/*
2729Sdfr * Copyright (c) 1994 Adam Glass and Charles Hannum.  All rights reserved.
2729Sdfr *
2729Sdfr * Redistribution and use in source and binary forms, with or without
2729Sdfr * modification, are permitted provided that the following conditions
2729Sdfr * are met:
2729Sdfr * 1. Redistributions of source code must retain the above copyright
2729Sdfr *    notice, this list of conditions and the following disclaimer.
2729Sdfr * 2. Redistributions in binary form must reproduce the above copyright
2729Sdfr *    notice, this list of conditions and the following disclaimer in the
2729Sdfr *    documentation and/or other materials provided with the distribution.
2729Sdfr * 3. All advertising materials mentioning features or use of this software
2729Sdfr *    must display the following acknowledgement:
2729Sdfr *	This product includes software developed by Adam Glass and Charles
2729Sdfr *	Hannum.
2729Sdfr * 4. The names of the authors may not be used to endorse or promote products
2729Sdfr *    derived from this software without specific prior written permission.
2729Sdfr *
2729Sdfr * THIS SOFTWARE IS PROVIDED BY THE AUTHORS ``AS IS'' AND ANY EXPRESS OR
2729Sdfr * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
2729Sdfr * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
2729Sdfr * IN NO EVENT SHALL THE AUTHORS BE LIABLE FOR ANY DIRECT, INDIRECT,
2729Sdfr * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
2729Sdfr * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
2729Sdfr * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
2729Sdfr * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
2729Sdfr * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
2729Sdfr * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
2729Sdfr */
2729Sdfr
31778Seivind#include "opt_compat.h"
20821Sjoerg#include "opt_rlimit.h"
58820Speter#include "opt_sysvipc.h"
13255Swollman
2729Sdfr#include <sys/param.h>
11626Sbde#include <sys/systm.h>
11626Sbde#include <sys/sysproto.h>
2729Sdfr#include <sys/kernel.h>
58820Speter#include <sys/sysctl.h>
2729Sdfr#include <sys/shm.h>
2729Sdfr#include <sys/proc.h>
2729Sdfr#include <sys/malloc.h>
2729Sdfr#include <sys/mman.h>
2729Sdfr#include <sys/stat.h>
69449Salfred#include <sys/syscall.h>
11626Sbde#include <sys/sysent.h>
68024Srwatson#include <sys/jail.h>
2729Sdfr
2729Sdfr#include <vm/vm.h>
12662Sdg#include <vm/vm_param.h>
22521Sdyson#include <sys/lock.h>
12662Sdg#include <vm/pmap.h>
18098Sdyson#include <vm/vm_object.h>
2729Sdfr#include <vm/vm_map.h>
42957Sdillon#include <vm/vm_page.h>
18199Sdyson#include <vm/vm_pager.h>
2729Sdfr
30354Sphkstatic MALLOC_DEFINE(M_SHM, "shm", "SVID compatible shared memory segments");
30309Sphk
11626Sbdestruct oshmctl_args;
30994Sphkstatic int oshmctl __P((struct proc *p, struct oshmctl_args *uap));
58820Speter
30994Sphkstatic int shmget_allocate_segment __P((struct proc *p, struct shmget_args *uap, int mode));
30994Sphkstatic int shmget_existing __P((struct proc *p, struct shmget_args *uap, int mode, int segnum));
8876Srgrimes
11626Sbde/* XXX casting to (sy_call_t *) is bogus, as usual. */
33181Seivindstatic sy_call_t *shmcalls[] = {
11626Sbde	(sy_call_t *)shmat, (sy_call_t *)oshmctl,
11626Sbde	(sy_call_t *)shmdt, (sy_call_t *)shmget,
11626Sbde	(sy_call_t *)shmctl
11626Sbde};
11626Sbde
2729Sdfr#define	SHMSEG_FREE     	0x0200
2729Sdfr#define	SHMSEG_REMOVED  	0x0400
2729Sdfr#define	SHMSEG_ALLOCATED	0x0800
2729Sdfr#define	SHMSEG_WANTED		0x1000
2729Sdfr
58820Speterstatic int shm_last_free, shm_nused, shm_committed, shmalloced;
58820Speterstatic struct shmid_ds	*shmsegs;
2729Sdfr
2729Sdfrstruct shm_handle {
18098Sdyson	/* vm_offset_t kva; */
18098Sdyson	vm_object_t shm_object;
2729Sdfr};
2729Sdfr
2729Sdfrstruct shmmap_state {
2729Sdfr	vm_offset_t va;
2729Sdfr	int shmid;
2729Sdfr};
2729Sdfr
2729Sdfrstatic void shm_deallocate_segment __P((struct shmid_ds *));
2729Sdfrstatic int shm_find_segment_by_key __P((key_t));
2729Sdfrstatic struct shmid_ds *shm_find_segment_by_shmid __P((int));
2729Sdfrstatic int shm_delete_mapping __P((struct proc *, struct shmmap_state *));
58820Speterstatic void shmrealloc __P((void));
69449Salfredstatic void shminit __P((void));
69449Salfredstatic int sysvshm_modload __P((struct module *, int, void *));
69449Salfredstatic int shmunload __P((void));
69449Salfredstatic void shmexit_myhook __P((struct proc *p));
69449Salfredstatic void shmfork_myhook __P((struct proc *p1, struct proc *p2));
2729Sdfr
58820Speter/*
58820Speter * Tuneable values
58820Speter */
58820Speter#ifndef SHMMAXPGS
58820Speter#define	SHMMAXPGS	1024	/* XXX increase this, it's not in kva! */
58820Speter#endif
58820Speter#ifndef SHMMAX
58820Speter#define	SHMMAX	(SHMMAXPGS*PAGE_SIZE)
58820Speter#endif
58820Speter#ifndef SHMMIN
58820Speter#define	SHMMIN	1
58820Speter#endif
58820Speter#ifndef SHMMNI
58820Speter#define	SHMMNI	96
58820Speter#endif
58820Speter#ifndef SHMSEG
58820Speter#define	SHMSEG	64
58820Speter#endif
58820Speter#ifndef SHMALL
58820Speter#define	SHMALL	(SHMMAXPGS)
58820Speter#endif
58820Speter
58820Speterstruct	shminfo shminfo = {
58820Speter	SHMMAX,
58820Speter	SHMMIN,
58820Speter	SHMMNI,
58820Speter	SHMSEG,
58820Speter	SHMALL
58820Speter};
58820Speter
61081Sdillonstatic int shm_use_phys;
61081Sdillon
58820SpeterSYSCTL_DECL(_kern_ipc);
58820SpeterSYSCTL_INT(_kern_ipc, OID_AUTO, shmmax, CTLFLAG_RW, &shminfo.shmmax, 0, "");
58820SpeterSYSCTL_INT(_kern_ipc, OID_AUTO, shmmin, CTLFLAG_RW, &shminfo.shmmin, 0, "");
58820SpeterSYSCTL_INT(_kern_ipc, OID_AUTO, shmmni, CTLFLAG_RD, &shminfo.shmmni, 0, "");
58820SpeterSYSCTL_INT(_kern_ipc, OID_AUTO, shmseg, CTLFLAG_RW, &shminfo.shmseg, 0, "");
58820SpeterSYSCTL_INT(_kern_ipc, OID_AUTO, shmall, CTLFLAG_RW, &shminfo.shmall, 0, "");
61081SdillonSYSCTL_INT(_kern_ipc, OID_AUTO, shm_use_phys, CTLFLAG_RW, &shm_use_phys, 0, "");
58820Speter
2729Sdfrstatic int
2729Sdfrshm_find_segment_by_key(key)
2729Sdfr	key_t key;
2729Sdfr{
2729Sdfr	int i;
2729Sdfr
58820Speter	for (i = 0; i < shmalloced; i++)
2729Sdfr		if ((shmsegs[i].shm_perm.mode & SHMSEG_ALLOCATED) &&
2729Sdfr		    shmsegs[i].shm_perm.key == key)
2729Sdfr			return i;
2729Sdfr	return -1;
2729Sdfr}
2729Sdfr
2729Sdfrstatic struct shmid_ds *
2729Sdfrshm_find_segment_by_shmid(shmid)
2729Sdfr	int shmid;
2729Sdfr{
2729Sdfr	int segnum;
2729Sdfr	struct shmid_ds *shmseg;
2729Sdfr
2729Sdfr	segnum = IPCID_TO_IX(shmid);
58820Speter	if (segnum < 0 || segnum >= shmalloced)
2729Sdfr		return NULL;
2729Sdfr	shmseg = &shmsegs[segnum];
2729Sdfr	if ((shmseg->shm_perm.mode & (SHMSEG_ALLOCATED | SHMSEG_REMOVED))
2729Sdfr	    != SHMSEG_ALLOCATED ||
2729Sdfr	    shmseg->shm_perm.seq != IPCID_TO_SEQ(shmid))
2729Sdfr		return NULL;
2729Sdfr	return shmseg;
2729Sdfr}
2729Sdfr
2729Sdfrstatic void
2729Sdfrshm_deallocate_segment(shmseg)
2729Sdfr	struct shmid_ds *shmseg;
2729Sdfr{
2729Sdfr	struct shm_handle *shm_handle;
2729Sdfr	size_t size;
2729Sdfr
2729Sdfr	shm_handle = shmseg->shm_internal;
18098Sdyson	vm_object_deallocate(shm_handle->shm_object);
2729Sdfr	free((caddr_t)shm_handle, M_SHM);
2729Sdfr	shmseg->shm_internal = NULL;
18098Sdyson	size = round_page(shmseg->shm_segsz);
2729Sdfr	shm_committed -= btoc(size);
2729Sdfr	shm_nused--;
2729Sdfr	shmseg->shm_perm.mode = SHMSEG_FREE;
2729Sdfr}
2729Sdfr
2729Sdfrstatic int
2729Sdfrshm_delete_mapping(p, shmmap_s)
2729Sdfr	struct proc *p;
2729Sdfr	struct shmmap_state *shmmap_s;
2729Sdfr{
2729Sdfr	struct shmid_ds *shmseg;
2729Sdfr	int segnum, result;
2729Sdfr	size_t size;
8876Srgrimes
2729Sdfr	segnum = IPCID_TO_IX(shmmap_s->shmid);
2729Sdfr	shmseg = &shmsegs[segnum];
15583Sphk	size = round_page(shmseg->shm_segsz);
6579Sdg	result = vm_map_remove(&p->p_vmspace->vm_map, shmmap_s->va, shmmap_s->va + size);
2729Sdfr	if (result != KERN_SUCCESS)
2729Sdfr		return EINVAL;
2729Sdfr	shmmap_s->shmid = -1;
34961Sphk	shmseg->shm_dtime = time_second;
2729Sdfr	if ((--shmseg->shm_nattch <= 0) &&
2729Sdfr	    (shmseg->shm_perm.mode & SHMSEG_REMOVED)) {
2729Sdfr		shm_deallocate_segment(shmseg);
2729Sdfr		shm_last_free = segnum;
2729Sdfr	}
2729Sdfr	return 0;
2729Sdfr}
2729Sdfr
12866Speter#ifndef _SYS_SYSPROTO_H_
2729Sdfrstruct shmdt_args {
2729Sdfr	void *shmaddr;
2729Sdfr};
12866Speter#endif
12866Speter
2729Sdfrint
30994Sphkshmdt(p, uap)
2729Sdfr	struct proc *p;
2729Sdfr	struct shmdt_args *uap;
2729Sdfr{
2729Sdfr	struct shmmap_state *shmmap_s;
2729Sdfr	int i;
2729Sdfr
68024Srwatson	if (!jail_sysvipc_allowed && p->p_prison != NULL)
68024Srwatson		return (ENOSYS);
68024Srwatson
2729Sdfr	shmmap_s = (struct shmmap_state *)p->p_vmspace->vm_shm;
12613Sjkh 	if (shmmap_s == NULL)
12613Sjkh 	    return EINVAL;
2729Sdfr	for (i = 0; i < shminfo.shmseg; i++, shmmap_s++)
2729Sdfr		if (shmmap_s->shmid != -1 &&
2729Sdfr		    shmmap_s->va == (vm_offset_t)uap->shmaddr)
2729Sdfr			break;
2729Sdfr	if (i == shminfo.shmseg)
2729Sdfr		return EINVAL;
2729Sdfr	return shm_delete_mapping(p, shmmap_s);
2729Sdfr}
2729Sdfr
12866Speter#ifndef _SYS_SYSPROTO_H_
2729Sdfrstruct shmat_args {
2729Sdfr	int shmid;
2729Sdfr	void *shmaddr;
2729Sdfr	int shmflg;
2729Sdfr};
12866Speter#endif
12866Speter
2729Sdfrint
30994Sphkshmat(p, uap)
2729Sdfr	struct proc *p;
2729Sdfr	struct shmat_args *uap;
2729Sdfr{
2729Sdfr	int error, i, flags;
2729Sdfr	struct shmid_ds *shmseg;
2729Sdfr	struct shmmap_state *shmmap_s = NULL;
18098Sdyson	struct shm_handle *shm_handle;
2729Sdfr	vm_offset_t attach_va;
2729Sdfr	vm_prot_t prot;
2729Sdfr	vm_size_t size;
18098Sdyson	int rv;
2729Sdfr
68024Srwatson	if (!jail_sysvipc_allowed && p->p_prison != NULL)
68024Srwatson		return (ENOSYS);
68024Srwatson
2729Sdfr	shmmap_s = (struct shmmap_state *)p->p_vmspace->vm_shm;
2729Sdfr	if (shmmap_s == NULL) {
2729Sdfr		size = shminfo.shmseg * sizeof(struct shmmap_state);
2729Sdfr		shmmap_s = malloc(size, M_SHM, M_WAITOK);
2729Sdfr		for (i = 0; i < shminfo.shmseg; i++)
2729Sdfr			shmmap_s[i].shmid = -1;
2729Sdfr		p->p_vmspace->vm_shm = (caddr_t)shmmap_s;
2729Sdfr	}
2729Sdfr	shmseg = shm_find_segment_by_shmid(uap->shmid);
2729Sdfr	if (shmseg == NULL)
2729Sdfr		return EINVAL;
46116Sphk	error = ipcperm(p, &shmseg->shm_perm,
3308Sphk	    (uap->shmflg & SHM_RDONLY) ? IPC_R : IPC_R|IPC_W);
3308Sphk	if (error)
2729Sdfr		return error;
2729Sdfr	for (i = 0; i < shminfo.shmseg; i++) {
2729Sdfr		if (shmmap_s->shmid == -1)
2729Sdfr			break;
2729Sdfr		shmmap_s++;
2729Sdfr	}
2729Sdfr	if (i >= shminfo.shmseg)
2729Sdfr		return EMFILE;
15583Sphk	size = round_page(shmseg->shm_segsz);
57884Salc#ifdef VM_PROT_READ_IS_EXEC
57884Salc	prot = VM_PROT_READ | VM_PROT_EXECUTE;
57884Salc#else
2729Sdfr	prot = VM_PROT_READ;
57884Salc#endif
2729Sdfr	if ((uap->shmflg & SHM_RDONLY) == 0)
2729Sdfr		prot |= VM_PROT_WRITE;
2729Sdfr	flags = MAP_ANON | MAP_SHARED;
2729Sdfr	if (uap->shmaddr) {
2729Sdfr		flags |= MAP_FIXED;
8876Srgrimes		if (uap->shmflg & SHM_RND)
2729Sdfr			attach_va = (vm_offset_t)uap->shmaddr & ~(SHMLBA-1);
2729Sdfr		else if (((vm_offset_t)uap->shmaddr & (SHMLBA-1)) == 0)
2729Sdfr			attach_va = (vm_offset_t)uap->shmaddr;
2729Sdfr		else
2729Sdfr			return EINVAL;
2729Sdfr	} else {
18098Sdyson		/* This is just a hint to vm_map_find() about where to put it. */
40286Sdg		attach_va = round_page((vm_offset_t)p->p_vmspace->vm_taddr + MAXTSIZ + MAXDSIZ);
2729Sdfr	}
18098Sdyson
18098Sdyson	shm_handle = shmseg->shm_internal;
18098Sdyson	vm_object_reference(shm_handle->shm_object);
18098Sdyson	rv = vm_map_find(&p->p_vmspace->vm_map, shm_handle->shm_object,
18098Sdyson		0, &attach_va, size, (flags & MAP_FIXED)?0:1, prot, prot, 0);
18098Sdyson	if (rv != KERN_SUCCESS) {
18098Sdyson		return ENOMEM;
18098Sdyson	}
18231Sdyson	vm_map_inherit(&p->p_vmspace->vm_map,
18231Sdyson		attach_va, attach_va + size, VM_INHERIT_SHARE);
18231Sdyson
2729Sdfr	shmmap_s->va = attach_va;
2729Sdfr	shmmap_s->shmid = uap->shmid;
2729Sdfr	shmseg->shm_lpid = p->p_pid;
34961Sphk	shmseg->shm_atime = time_second;
2729Sdfr	shmseg->shm_nattch++;
30994Sphk	p->p_retval[0] = attach_va;
2729Sdfr	return 0;
2729Sdfr}
2729Sdfr
2828Sdfrstruct oshmid_ds {
2828Sdfr	struct	ipc_perm shm_perm;	/* operation perms */
2828Sdfr	int	shm_segsz;		/* size of segment (bytes) */
2828Sdfr	ushort	shm_cpid;		/* pid, creator */
2828Sdfr	ushort	shm_lpid;		/* pid, last operation */
2828Sdfr	short	shm_nattch;		/* no. of current attaches */
2828Sdfr	time_t	shm_atime;		/* last attach time */
2828Sdfr	time_t	shm_dtime;		/* last detach time */
2828Sdfr	time_t	shm_ctime;		/* last change time */
2828Sdfr	void	*shm_handle;		/* internal handle for shm segment */
2828Sdfr};
2828Sdfr
2828Sdfrstruct oshmctl_args {
2828Sdfr	int shmid;
2828Sdfr	int cmd;
2828Sdfr	struct oshmid_ds *ubuf;
2828Sdfr};
2828Sdfr
12819Sphkstatic int
30994Sphkoshmctl(p, uap)
2828Sdfr	struct proc *p;
2828Sdfr	struct oshmctl_args *uap;
2828Sdfr{
2828Sdfr#ifdef COMPAT_43
3308Sphk	int error;
2828Sdfr	struct shmid_ds *shmseg;
2828Sdfr	struct oshmid_ds outbuf;
2828Sdfr
68024Srwatson	if (!jail_sysvipc_allowed && p->p_prison != NULL)
68024Srwatson		return (ENOSYS);
68024Srwatson
2828Sdfr	shmseg = shm_find_segment_by_shmid(uap->shmid);
2828Sdfr	if (shmseg == NULL)
2828Sdfr		return EINVAL;
2828Sdfr	switch (uap->cmd) {
2828Sdfr	case IPC_STAT:
46116Sphk		error = ipcperm(p, &shmseg->shm_perm, IPC_R);
3308Sphk		if (error)
2828Sdfr			return error;
2828Sdfr		outbuf.shm_perm = shmseg->shm_perm;
2828Sdfr		outbuf.shm_segsz = shmseg->shm_segsz;
2828Sdfr		outbuf.shm_cpid = shmseg->shm_cpid;
2828Sdfr		outbuf.shm_lpid = shmseg->shm_lpid;
2828Sdfr		outbuf.shm_nattch = shmseg->shm_nattch;
2828Sdfr		outbuf.shm_atime = shmseg->shm_atime;
2828Sdfr		outbuf.shm_dtime = shmseg->shm_dtime;
2828Sdfr		outbuf.shm_ctime = shmseg->shm_ctime;
2828Sdfr		outbuf.shm_handle = shmseg->shm_internal;
3308Sphk		error = copyout((caddr_t)&outbuf, uap->ubuf, sizeof(outbuf));
3308Sphk		if (error)
2828Sdfr			return error;
2828Sdfr		break;
2828Sdfr	default:
11626Sbde		/* XXX casting to (sy_call_t *) is bogus, as usual. */
30994Sphk		return ((sy_call_t *)shmctl)(p, uap);
2828Sdfr	}
2828Sdfr	return 0;
2828Sdfr#else
2828Sdfr	return EINVAL;
2828Sdfr#endif
8876Srgrimes}
2828Sdfr
12866Speter#ifndef _SYS_SYSPROTO_H_
2729Sdfrstruct shmctl_args {
2729Sdfr	int shmid;
2729Sdfr	int cmd;
12866Speter	struct shmid_ds *buf;
2729Sdfr};
12866Speter#endif
12866Speter
2729Sdfrint
30994Sphkshmctl(p, uap)
2729Sdfr	struct proc *p;
2729Sdfr	struct shmctl_args *uap;
2729Sdfr{
3308Sphk	int error;
2729Sdfr	struct shmid_ds inbuf;
2729Sdfr	struct shmid_ds *shmseg;
2729Sdfr
68024Srwatson	if (!jail_sysvipc_allowed && p->p_prison != NULL)
68024Srwatson		return (ENOSYS);
68024Srwatson
2729Sdfr	shmseg = shm_find_segment_by_shmid(uap->shmid);
2729Sdfr	if (shmseg == NULL)
2729Sdfr		return EINVAL;
2729Sdfr	switch (uap->cmd) {
2729Sdfr	case IPC_STAT:
46116Sphk		error = ipcperm(p, &shmseg->shm_perm, IPC_R);
3308Sphk		if (error)
2729Sdfr			return error;
12866Speter		error = copyout((caddr_t)shmseg, uap->buf, sizeof(inbuf));
3308Sphk		if (error)
2729Sdfr			return error;
2729Sdfr		break;
2729Sdfr	case IPC_SET:
46116Sphk		error = ipcperm(p, &shmseg->shm_perm, IPC_M);
3308Sphk		if (error)
2729Sdfr			return error;
12866Speter		error = copyin(uap->buf, (caddr_t)&inbuf, sizeof(inbuf));
3308Sphk		if (error)
2729Sdfr			return error;
2729Sdfr		shmseg->shm_perm.uid = inbuf.shm_perm.uid;
2729Sdfr		shmseg->shm_perm.gid = inbuf.shm_perm.gid;
2729Sdfr		shmseg->shm_perm.mode =
2729Sdfr		    (shmseg->shm_perm.mode & ~ACCESSPERMS) |
2729Sdfr		    (inbuf.shm_perm.mode & ACCESSPERMS);
34961Sphk		shmseg->shm_ctime = time_second;
2729Sdfr		break;
2729Sdfr	case IPC_RMID:
46116Sphk		error = ipcperm(p, &shmseg->shm_perm, IPC_M);
3308Sphk		if (error)
2729Sdfr			return error;
2729Sdfr		shmseg->shm_perm.key = IPC_PRIVATE;
2729Sdfr		shmseg->shm_perm.mode |= SHMSEG_REMOVED;
2729Sdfr		if (shmseg->shm_nattch <= 0) {
2729Sdfr			shm_deallocate_segment(shmseg);
2729Sdfr			shm_last_free = IPCID_TO_IX(uap->shmid);
2729Sdfr		}
2729Sdfr		break;
2729Sdfr#if 0
2729Sdfr	case SHM_LOCK:
2729Sdfr	case SHM_UNLOCK:
2729Sdfr#endif
2729Sdfr	default:
2729Sdfr		return EINVAL;
2729Sdfr	}
2729Sdfr	return 0;
2729Sdfr}
2729Sdfr
12866Speter#ifndef _SYS_SYSPROTO_H_
2729Sdfrstruct shmget_args {
2729Sdfr	key_t key;
2729Sdfr	size_t size;
2729Sdfr	int shmflg;
2729Sdfr};
12866Speter#endif
12866Speter
2729Sdfrstatic int
30994Sphkshmget_existing(p, uap, mode, segnum)
2729Sdfr	struct proc *p;
2729Sdfr	struct shmget_args *uap;
2729Sdfr	int mode;
2729Sdfr	int segnum;
2729Sdfr{
2729Sdfr	struct shmid_ds *shmseg;
2729Sdfr	int error;
2729Sdfr
2729Sdfr	shmseg = &shmsegs[segnum];
2729Sdfr	if (shmseg->shm_perm.mode & SHMSEG_REMOVED) {
2729Sdfr		/*
2729Sdfr		 * This segment is in the process of being allocated.  Wait
2729Sdfr		 * until it's done, and look the key up again (in case the
2729Sdfr		 * allocation failed or it was freed).
2729Sdfr		 */
2729Sdfr		shmseg->shm_perm.mode |= SHMSEG_WANTED;
3308Sphk		error = tsleep((caddr_t)shmseg, PLOCK | PCATCH, "shmget", 0);
3308Sphk		if (error)
2729Sdfr			return error;
2729Sdfr		return EAGAIN;
2729Sdfr	}
48039Salc	if ((uap->shmflg & (IPC_CREAT | IPC_EXCL)) == (IPC_CREAT | IPC_EXCL))
48039Salc		return EEXIST;
46116Sphk	error = ipcperm(p, &shmseg->shm_perm, mode);
3308Sphk	if (error)
2729Sdfr		return error;
2729Sdfr	if (uap->size && uap->size > shmseg->shm_segsz)
2729Sdfr		return EINVAL;
30994Sphk	p->p_retval[0] = IXSEQ_TO_IPCID(segnum, shmseg->shm_perm);
2729Sdfr	return 0;
2729Sdfr}
2729Sdfr
2729Sdfrstatic int
30994Sphkshmget_allocate_segment(p, uap, mode)
2729Sdfr	struct proc *p;
2729Sdfr	struct shmget_args *uap;
2729Sdfr	int mode;
2729Sdfr{
18098Sdyson	int i, segnum, shmid, size;
2729Sdfr	struct ucred *cred = p->p_ucred;
2729Sdfr	struct shmid_ds *shmseg;
2729Sdfr	struct shm_handle *shm_handle;
8876Srgrimes
2729Sdfr	if (uap->size < shminfo.shmmin || uap->size > shminfo.shmmax)
2729Sdfr		return EINVAL;
2729Sdfr	if (shm_nused >= shminfo.shmmni) /* any shmids left? */
2729Sdfr		return ENOSPC;
15636Sjoerg	size = round_page(uap->size);
2729Sdfr	if (shm_committed + btoc(size) > shminfo.shmall)
2729Sdfr		return ENOMEM;
2729Sdfr	if (shm_last_free < 0) {
58820Speter		shmrealloc();	/* maybe expand the shmsegs[] array */
58820Speter		for (i = 0; i < shmalloced; i++)
2729Sdfr			if (shmsegs[i].shm_perm.mode & SHMSEG_FREE)
2729Sdfr				break;
58820Speter		if (i == shmalloced)
58820Speter			return ENOSPC;
2729Sdfr		segnum = i;
2729Sdfr	} else  {
2729Sdfr		segnum = shm_last_free;
2729Sdfr		shm_last_free = -1;
2729Sdfr	}
2729Sdfr	shmseg = &shmsegs[segnum];
2729Sdfr	/*
2729Sdfr	 * In case we sleep in malloc(), mark the segment present but deleted
2729Sdfr	 * so that noone else tries to create the same key.
2729Sdfr	 */
2729Sdfr	shmseg->shm_perm.mode = SHMSEG_ALLOCATED | SHMSEG_REMOVED;
2729Sdfr	shmseg->shm_perm.key = uap->key;
2729Sdfr	shmseg->shm_perm.seq = (shmseg->shm_perm.seq + 1) & 0x7fff;
2729Sdfr	shm_handle = (struct shm_handle *)
2729Sdfr	    malloc(sizeof(struct shm_handle), M_SHM, M_WAITOK);
2729Sdfr	shmid = IXSEQ_TO_IPCID(segnum, shmseg->shm_perm);
18098Sdyson
18199Sdyson	/*
18199Sdyson	 * We make sure that we have allocated a pager before we need
18199Sdyson	 * to.
18199Sdyson	 */
61081Sdillon	if (shm_use_phys) {
61081Sdillon		shm_handle->shm_object =
61081Sdillon		    vm_pager_allocate(OBJT_PHYS, 0, size, VM_PROT_DEFAULT, 0);
61081Sdillon	} else {
61081Sdillon		shm_handle->shm_object =
61081Sdillon		    vm_pager_allocate(OBJT_SWAP, 0, size, VM_PROT_DEFAULT, 0);
61081Sdillon	}
38517Sdfr	vm_object_clear_flag(shm_handle->shm_object, OBJ_ONEMAPPING);
38517Sdfr	vm_object_set_flag(shm_handle->shm_object, OBJ_NOSPLIT);
35669Sdyson
2729Sdfr	shmseg->shm_internal = shm_handle;
2729Sdfr	shmseg->shm_perm.cuid = shmseg->shm_perm.uid = cred->cr_uid;
2729Sdfr	shmseg->shm_perm.cgid = shmseg->shm_perm.gid = cred->cr_gid;
2729Sdfr	shmseg->shm_perm.mode = (shmseg->shm_perm.mode & SHMSEG_WANTED) |
2729Sdfr	    (mode & ACCESSPERMS) | SHMSEG_ALLOCATED;
2729Sdfr	shmseg->shm_segsz = uap->size;
2729Sdfr	shmseg->shm_cpid = p->p_pid;
2729Sdfr	shmseg->shm_lpid = shmseg->shm_nattch = 0;
2729Sdfr	shmseg->shm_atime = shmseg->shm_dtime = 0;
34961Sphk	shmseg->shm_ctime = time_second;
2729Sdfr	shm_committed += btoc(size);
2729Sdfr	shm_nused++;
2729Sdfr	if (shmseg->shm_perm.mode & SHMSEG_WANTED) {
2729Sdfr		/*
2729Sdfr		 * Somebody else wanted this key while we were asleep.  Wake
2729Sdfr		 * them up now.
2729Sdfr		 */
2729Sdfr		shmseg->shm_perm.mode &= ~SHMSEG_WANTED;
2729Sdfr		wakeup((caddr_t)shmseg);
2729Sdfr	}
30994Sphk	p->p_retval[0] = shmid;
2729Sdfr	return 0;
2729Sdfr}
2729Sdfr
2729Sdfrint
30994Sphkshmget(p, uap)
2729Sdfr	struct proc *p;
2729Sdfr	struct shmget_args *uap;
2729Sdfr{
2729Sdfr	int segnum, mode, error;
2729Sdfr
68024Srwatson	if (!jail_sysvipc_allowed && p->p_prison != NULL)
68024Srwatson		return (ENOSYS);
68024Srwatson
2729Sdfr	mode = uap->shmflg & ACCESSPERMS;
2729Sdfr	if (uap->key != IPC_PRIVATE) {
2729Sdfr	again:
2729Sdfr		segnum = shm_find_segment_by_key(uap->key);
2729Sdfr		if (segnum >= 0) {
30994Sphk			error = shmget_existing(p, uap, mode, segnum);
2729Sdfr			if (error == EAGAIN)
2729Sdfr				goto again;
2729Sdfr			return error;
2729Sdfr		}
8876Srgrimes		if ((uap->shmflg & IPC_CREAT) == 0)
2729Sdfr			return ENOENT;
2729Sdfr	}
30994Sphk	return shmget_allocate_segment(p, uap, mode);
2729Sdfr}
2729Sdfr
2729Sdfrint
30994Sphkshmsys(p, uap)
2729Sdfr	struct proc *p;
11626Sbde	/* XXX actually varargs. */
11626Sbde	struct shmsys_args /* {
11626Sbde		u_int	which;
11626Sbde		int	a2;
11626Sbde		int	a3;
11626Sbde		int	a4;
11626Sbde	} */ *uap;
2729Sdfr{
2729Sdfr
68024Srwatson	if (!jail_sysvipc_allowed && p->p_prison != NULL)
68024Srwatson		return (ENOSYS);
68024Srwatson
2729Sdfr	if (uap->which >= sizeof(shmcalls)/sizeof(shmcalls[0]))
2729Sdfr		return EINVAL;
30994Sphk	return ((*shmcalls[uap->which])(p, &uap->a2));
2729Sdfr}
2729Sdfr
69449Salfredstatic void
69449Salfredshmfork_myhook(p1, p2)
2729Sdfr	struct proc *p1, *p2;
2729Sdfr{
2729Sdfr	struct shmmap_state *shmmap_s;
2729Sdfr	size_t size;
2729Sdfr	int i;
2729Sdfr
2729Sdfr	size = shminfo.shmseg * sizeof(struct shmmap_state);
2729Sdfr	shmmap_s = malloc(size, M_SHM, M_WAITOK);
2729Sdfr	bcopy((caddr_t)p1->p_vmspace->vm_shm, (caddr_t)shmmap_s, size);
2729Sdfr	p2->p_vmspace->vm_shm = (caddr_t)shmmap_s;
2729Sdfr	for (i = 0; i < shminfo.shmseg; i++, shmmap_s++)
2729Sdfr		if (shmmap_s->shmid != -1)
2729Sdfr			shmsegs[IPCID_TO_IX(shmmap_s->shmid)].shm_nattch++;
2729Sdfr}
2729Sdfr
69449Salfredstatic void
69449Salfredshmexit_myhook(p)
2729Sdfr	struct proc *p;
2729Sdfr{
2729Sdfr	struct shmmap_state *shmmap_s;
2729Sdfr	int i;
2729Sdfr
2729Sdfr	shmmap_s = (struct shmmap_state *)p->p_vmspace->vm_shm;
2729Sdfr	for (i = 0; i < shminfo.shmseg; i++, shmmap_s++)
2729Sdfr		if (shmmap_s->shmid != -1)
2729Sdfr			shm_delete_mapping(p, shmmap_s);
2729Sdfr	free((caddr_t)p->p_vmspace->vm_shm, M_SHM);
2729Sdfr	p->p_vmspace->vm_shm = NULL;
2729Sdfr}
2729Sdfr
58820Speterstatic void
58820Spetershmrealloc(void)
58820Speter{
58820Speter	int i;
58820Speter	struct shmid_ds *newsegs;
58820Speter
58820Speter	if (shmalloced >= shminfo.shmmni)
58820Speter		return;
58820Speter
58820Speter	newsegs = malloc(shminfo.shmmni * sizeof(*newsegs), M_SHM, M_WAITOK);
58820Speter	if (newsegs == NULL)
58820Speter		return;
58820Speter	for (i = 0; i < shmalloced; i++)
58820Speter		bcopy(&shmsegs[i], &newsegs[i], sizeof(newsegs[0]));
58820Speter	for (; i < shminfo.shmmni; i++) {
58820Speter		shmsegs[i].shm_perm.mode = SHMSEG_FREE;
58820Speter		shmsegs[i].shm_perm.seq = 0;
58820Speter	}
58820Speter	free(shmsegs, M_SHM);
58820Speter	shmsegs = newsegs;
58820Speter	shmalloced = shminfo.shmmni;
58820Speter}
58820Speter
58820Speterstatic void
69449Salfredshminit()
2729Sdfr{
2729Sdfr	int i;
58820Speter
58820Speter	shmalloced = shminfo.shmmni;
58820Speter	shmsegs = malloc(shmalloced * sizeof(shmsegs[0]), M_SHM, M_WAITOK);
58820Speter	if (shmsegs == NULL)
58820Speter		panic("cannot allocate initial memory for sysvshm");
58820Speter	for (i = 0; i < shmalloced; i++) {
2729Sdfr		shmsegs[i].shm_perm.mode = SHMSEG_FREE;
2729Sdfr		shmsegs[i].shm_perm.seq = 0;
2729Sdfr	}
2729Sdfr	shm_last_free = 0;
2729Sdfr	shm_nused = 0;
2729Sdfr	shm_committed = 0;
69449Salfred	shmexit_hook = &shmexit_myhook;
69449Salfred	shmfork_hook = &shmfork_myhook;
2729Sdfr}
69449Salfred
69449Salfredstatic int
69449Salfredshmunload()
69449Salfred{
69449Salfred
69449Salfred	if (shm_nused > 0)
69449Salfred		return (EBUSY);
69449Salfred
69449Salfred	free(shmsegs, M_SHM);
69449Salfred	shmexit_hook = NULL;
69449Salfred	shmfork_hook = NULL;
69449Salfred	return (0);
69449Salfred}
69449Salfred
69449Salfredstatic int
69449Salfredsysvshm_modload(struct module *module, int cmd, void *arg)
69449Salfred{
69449Salfred	int error = 0;
69449Salfred
69449Salfred	switch (cmd) {
69449Salfred	case MOD_LOAD:
69449Salfred		shminit();
69449Salfred		break;
69449Salfred	case MOD_UNLOAD:
69449Salfred		error = shmunload();
69449Salfred		break;
69449Salfred	case MOD_SHUTDOWN:
69449Salfred		break;
69449Salfred	default:
69449Salfred		error = EINVAL;
69449Salfred		break;
69449Salfred	}
69449Salfred	return (error);
69449Salfred}
69449Salfred
69449Salfredstatic moduledata_t sysvshm_moduledata = {
69449Salfred	"sysvshm_mod",
69449Salfred	&sysvshm_modload,
69449Salfred	NULL
69449Salfred};
69449Salfred
69449SalfredSYSCALL_MODULE_HELPER(shmsys, 4);
69449SalfredSYSCALL_MODULE_HELPER(shmat, 3);
69449SalfredSYSCALL_MODULE_HELPER(shmctl, 3);
69449SalfredSYSCALL_MODULE_HELPER(shmdt, 1);
69449SalfredSYSCALL_MODULE_HELPER(shmget, 3);
69449Salfred
69449SalfredDECLARE_MODULE(sysvshm_mod, sysvshm_moduledata,
69449Salfred	SI_SUB_SYSV_SHM, SI_ORDER_FIRST);