]> git.saurik.com Git - apple/xnu.git/blame - osfmk/ipc/ipc_object.c
projects / apple / xnu.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
xnu-344.34.tar.gz
[apple/xnu.git] / osfmk / ipc / ipc_object.c
CommitLineData
1c79356b
A		 1/*
2 * Copyright (c) 2000 Apple Computer, Inc. All rights reserved.
3 *
4 * @APPLE_LICENSE_HEADER_START@
5 *
de355530
A		 6 * The contents of this file constitute Original Code as defined in and
7 * are subject to the Apple Public Source License Version 1.1 (the
8 * "License"). You may not use this file except in compliance with the
9 * License. Please obtain a copy of the License at
10 * http://www.apple.com/publicsource and read it before using this file.
1c79356b 11 *
de355530
A		 12 * This Original Code and all software distributed under the License are
13 * distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY KIND, EITHER
1c79356b
A		 14 * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
15 * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
de355530
A		 16 * FITNESS FOR A PARTICULAR PURPOSE OR NON-INFRINGEMENT. Please see the
17 * License for the specific language governing rights and limitations
18 * under the License.
1c79356b
A		 19 *
20 * @APPLE_LICENSE_HEADER_END@
21 */
22/*
23 * @OSF_COPYRIGHT@
24 */
25/*
26 * Mach Operating System
27 * Copyright (c) 1991,1990,1989 Carnegie Mellon University
28 * All Rights Reserved.
29 *
30 * Permission to use, copy, modify and distribute this software and its
31 * documentation is hereby granted, provided that both the copyright
32 * notice and this permission notice appear in all copies of the
33 * software, derivative works or modified versions, and any portions
34 * thereof, and that both notices appear in supporting documentation.
35 *
36 * CARNEGIE MELLON ALLOWS FREE USE OF THIS SOFTWARE IN ITS "AS IS"
37 * CONDITION. CARNEGIE MELLON DISCLAIMS ANY LIABILITY OF ANY KIND FOR
38 * ANY DAMAGES WHATSOEVER RESULTING FROM THE USE OF THIS SOFTWARE.
39 *
40 * Carnegie Mellon requests users of this software to return to
41 *
42 * Software Distribution Coordinator or Software.Distribution@CS.CMU.EDU
43 * School of Computer Science
44 * Carnegie Mellon University
45 * Pittsburgh PA 15213-3890
46 *
47 * any improvements or extensions that they make and grant Carnegie Mellon
48 * the rights to redistribute these changes.
49 */
50/*
51 */
52/*
53 * File: ipc/ipc_object.c
54 * Author: Rich Draves
55 * Date: 1989
56 *
57 * Functions to manipulate IPC objects.
58 */
59
60#include <mach_rt.h>
61
62#include <mach/boolean.h>
63#include <mach/kern_return.h>
64#include <mach/port.h>
65#include <mach/message.h>
66#include <kern/misc_protos.h>
67#include <ipc/port.h>
68#include <ipc/ipc_space.h>
69#include <ipc/ipc_entry.h>
70#include <ipc/ipc_object.h>
71#include <ipc/ipc_hash.h>
72#include <ipc/ipc_right.h>
73#include <ipc/ipc_notify.h>
74#include <ipc/ipc_pset.h>
75
76zone_t ipc_object_zones[IOT_NUMBER];
77
78/*
79 * Routine: ipc_object_reference
80 * Purpose:
81 * Take a reference to an object.
82 */
83
84void
85ipc_object_reference(
86 ipc_object_t object)
87{
88 io_lock(object);
89 assert(object->io_references > 0);
90 io_reference(object);
91 io_unlock(object);
92}
93
94/*
95 * Routine: ipc_object_release
96 * Purpose:
97 * Release a reference to an object.
98 */
99
100void
101ipc_object_release(
102 ipc_object_t object)
103{
104 io_lock(object);
105 assert(object->io_references > 0);
106 io_release(object);
107 io_check_unlock(object);
108}
109
110/*
111 * Routine: ipc_object_translate
112 * Purpose:
113 * Look up an object in a space.
114 * Conditions:
115 * Nothing locked before. If successful, the object
116 * is returned locked. The caller doesn't get a ref.
117 * Returns:
118 * KERN_SUCCESS Object returned locked.
119 * KERN_INVALID_TASK The space is dead.
120 * KERN_INVALID_NAME The name doesn't denote a right.
121 * KERN_INVALID_RIGHT Name doesn't denote the correct right.
122 */
123
124kern_return_t
125ipc_object_translate(
126 ipc_space_t space,
127 mach_port_name_t name,
128 mach_port_right_t right,
129 ipc_object_t *objectp)
130{
131 ipc_entry_t entry;
132 ipc_object_t object;
133 kern_return_t kr;
134
135 kr = ipc_right_lookup_read(space, name, &entry);
136 if (kr != KERN_SUCCESS)
137 return kr;
138 /* space is read-locked and active */
139
140 if ((entry->ie_bits & MACH_PORT_TYPE(right)) == MACH_PORT_TYPE_NONE) {
141 is_read_unlock(space);
142 return KERN_INVALID_RIGHT;
143 }
144
145 object = entry->ie_object;
146 assert(object != IO_NULL);
147
148 io_lock(object);
149 is_read_unlock(space);
150
151 *objectp = object;
152 return KERN_SUCCESS;
153}
154
155/*
156 * Routine: ipc_object_translate_two
157 * Purpose:
158 * Look up two objects in a space.
159 * Conditions:
160 * Nothing locked before. If successful, the objects
161 * are returned locked. The caller doesn't get a ref.
162 * Returns:
163 * KERN_SUCCESS Objects returned locked.
164 * KERN_INVALID_TASK The space is dead.
165 * KERN_INVALID_NAME A name doesn't denote a right.
166 * KERN_INVALID_RIGHT A name doesn't denote the correct right.
167 */
168
169kern_return_t
170ipc_object_translate_two(
171 ipc_space_t space,
172 mach_port_name_t name1,
173 mach_port_right_t right1,
174 ipc_object_t *objectp1,
175 mach_port_name_t name2,
176 mach_port_right_t right2,
177 ipc_object_t *objectp2)
178{
179 ipc_entry_t entry1;
180 ipc_entry_t entry2;
181 ipc_object_t object;
182 kern_return_t kr;
183
184 kr = ipc_right_lookup_two_read(space, name1, &entry1, name2, &entry2);
185 if (kr != KERN_SUCCESS)
186 return kr;
187 /* space is read-locked and active */
188
189 if ((entry1->ie_bits & MACH_PORT_TYPE(right1)) == MACH_PORT_TYPE_NONE) {
190 is_read_unlock(space);
191 return KERN_INVALID_RIGHT;
192 }
193
194 if ((entry2->ie_bits & MACH_PORT_TYPE(right2)) == MACH_PORT_TYPE_NONE) {
195 is_read_unlock(space);
196 return KERN_INVALID_RIGHT;
197 }
198
199 object = entry1->ie_object;
200 assert(object != IO_NULL);
201 io_lock(object);
202 *objectp1 = object;
203
204 object = entry2->ie_object;
205 assert(object != IO_NULL);
206 io_lock(object);
207 *objectp2 = object;
208
209 is_read_unlock(space);
210 return KERN_SUCCESS;
211}
212
213/*
214 * Routine: ipc_object_alloc_dead
215 * Purpose:
216 * Allocate a dead-name entry.
217 * Conditions:
218 * Nothing locked.
219 * Returns:
220 * KERN_SUCCESS The dead name is allocated.
221 * KERN_INVALID_TASK The space is dead.
222 * KERN_NO_SPACE No room for an entry in the space.
223 * KERN_RESOURCE_SHORTAGE Couldn't allocate memory.
224 */
225
226kern_return_t
227ipc_object_alloc_dead(
228 ipc_space_t space,
229 mach_port_name_t *namep)
230{
231 ipc_entry_t entry;
232 kern_return_t kr;
233
234 int i;
235
236
237 kr = ipc_entry_alloc(space, namep, &entry);
238 if (kr != KERN_SUCCESS)
239 return kr;
240 /* space is write-locked */
241
242 /* null object, MACH_PORT_TYPE_DEAD_NAME, 1 uref */
243
244 assert(entry->ie_object == IO_NULL);
245 entry->ie_bits |= MACH_PORT_TYPE_DEAD_NAME | 1;
246
247 is_write_unlock(space);
248 return KERN_SUCCESS;
249}
250
251/*
252 * Routine: ipc_object_alloc_dead_name
253 * Purpose:
254 * Allocate a dead-name entry, with a specific name.
255 * Conditions:
256 * Nothing locked.
257 * Returns:
258 * KERN_SUCCESS The dead name is allocated.
259 * KERN_INVALID_TASK The space is dead.
260 * KERN_NAME_EXISTS The name already denotes a right.
261 * KERN_RESOURCE_SHORTAGE Couldn't allocate memory.
262 */
263
264kern_return_t
265ipc_object_alloc_dead_name(
266 ipc_space_t space,
267 mach_port_name_t name)
268{
269 ipc_entry_t entry;
270 kern_return_t kr;
271
272 int i;
273
274
275 kr = ipc_entry_alloc_name(space, name, &entry);
276 if (kr != KERN_SUCCESS)
277 return kr;
278 /* space is write-locked */
279
280 if (ipc_right_inuse(space, name, entry))
281 return KERN_NAME_EXISTS;
282
283 /* null object, MACH_PORT_TYPE_DEAD_NAME, 1 uref */
284
285 assert(entry->ie_object == IO_NULL);
286 entry->ie_bits |= MACH_PORT_TYPE_DEAD_NAME | 1;
287
288 is_write_unlock(space);
289 return KERN_SUCCESS;
290}
291
292/*
293 * Routine: ipc_object_alloc
294 * Purpose:
295 * Allocate an object.
296 * Conditions:
297 * Nothing locked. If successful, the object is returned locked.
298 * The caller doesn't get a reference for the object.
299 * Returns:
300 * KERN_SUCCESS The object is allocated.
301 * KERN_INVALID_TASK The space is dead.
302 * KERN_NO_SPACE No room for an entry in the space.
303 * KERN_RESOURCE_SHORTAGE Couldn't allocate memory.
304 */
305
306kern_return_t
307ipc_object_alloc(
308 ipc_space_t space,
309 ipc_object_type_t otype,
310 mach_port_type_t type,
311 mach_port_urefs_t urefs,
312 mach_port_name_t *namep,
313 ipc_object_t *objectp)
314{
315 ipc_object_t object;
316 ipc_entry_t entry;
317 kern_return_t kr;
318
319 assert(otype < IOT_NUMBER);
320 assert((type & MACH_PORT_TYPE_ALL_RIGHTS) == type);
321 assert(type != MACH_PORT_TYPE_NONE);
322 assert(urefs <= MACH_PORT_UREFS_MAX);
323
324 object = io_alloc(otype);
325 if (object == IO_NULL)
326 return KERN_RESOURCE_SHORTAGE;
327
328 if (otype == IOT_PORT) {
329 ipc_port_t port = (ipc_port_t)object;
330
331 bzero((char *)port, sizeof(*port));
332 } else if (otype == IOT_PORT_SET) {
333 ipc_pset_t pset = (ipc_pset_t)object;
334
335 bzero((char *)pset, sizeof(*pset));
336 }
337
338 io_lock_init(object);
339 *namep = (mach_port_name_t)object;
340 kr = ipc_entry_alloc(space, namep, &entry);
341 if (kr != KERN_SUCCESS) {
342 io_free(otype, object);
343 return kr;
344 }
345 /* space is write-locked */
346
347 entry->ie_bits |= type | urefs;
348 entry->ie_object = object;
349
350 io_lock(object);
351 is_write_unlock(space);
352
353 object->io_references = 1; /* for entry, not caller */
354 object->io_bits = io_makebits(TRUE, otype, 0);
355
356 *objectp = object;
357 return KERN_SUCCESS;
358}
359
360/*
361 * Routine: ipc_object_alloc_name
362 * Purpose:
363 * Allocate an object, with a specific name.
364 * Conditions:
365 * Nothing locked. If successful, the object is returned locked.
366 * The caller doesn't get a reference for the object.
367 * Returns:
368 * KERN_SUCCESS The object is allocated.
369 * KERN_INVALID_TASK The space is dead.
370 * KERN_NAME_EXISTS The name already denotes a right.
371 * KERN_RESOURCE_SHORTAGE Couldn't allocate memory.
372 */
373
374kern_return_t
375ipc_object_alloc_name(
376 ipc_space_t space,
377 ipc_object_type_t otype,
378 mach_port_type_t type,
379 mach_port_urefs_t urefs,
380 mach_port_name_t name,
381 ipc_object_t *objectp)
382{
383 ipc_object_t object;
384 ipc_entry_t entry;
385 kern_return_t kr;
386
387 assert(otype < IOT_NUMBER);
388 assert((type & MACH_PORT_TYPE_ALL_RIGHTS) == type);
389 assert(type != MACH_PORT_TYPE_NONE);
390 assert(urefs <= MACH_PORT_UREFS_MAX);
391
392 object = io_alloc(otype);
393 if (object == IO_NULL)
394 return KERN_RESOURCE_SHORTAGE;
395
396 if (otype == IOT_PORT) {
397 ipc_port_t port = (ipc_port_t)object;
398
399 bzero((char *)port, sizeof(*port));
400 } else if (otype == IOT_PORT_SET) {
401 ipc_pset_t pset = (ipc_pset_t)object;
402
403 bzero((char *)pset, sizeof(*pset));
404 }
405
406 io_lock_init(object);
407 kr = ipc_entry_alloc_name(space, name, &entry);
408 if (kr != KERN_SUCCESS) {
409 io_free(otype, object);
410 return kr;
411 }
412 /* space is write-locked */
413
414 if (ipc_right_inuse(space, name, entry)) {
415 io_free(otype, object);
416 return KERN_NAME_EXISTS;
417 }
418
419 entry->ie_bits |= type | urefs;
420 entry->ie_object = object;
421
422 io_lock(object);
423 is_write_unlock(space);
424
425 object->io_references = 1; /* for entry, not caller */
426 object->io_bits = io_makebits(TRUE, otype, 0);
427
428 *objectp = object;
429 return KERN_SUCCESS;
430}
431
432/*
433 * Routine: ipc_object_copyin_type
434 * Purpose:
435 * Convert a send type name to a received type name.
436 */
437
438mach_msg_type_name_t
439ipc_object_copyin_type(
440 mach_msg_type_name_t msgt_name)
441{
442 switch (msgt_name) {
443
444 case MACH_MSG_TYPE_MOVE_RECEIVE:
445 case MACH_MSG_TYPE_COPY_RECEIVE:
446 return MACH_MSG_TYPE_PORT_RECEIVE;
447
448 case MACH_MSG_TYPE_MOVE_SEND_ONCE:
449 case MACH_MSG_TYPE_MAKE_SEND_ONCE:
450 return MACH_MSG_TYPE_PORT_SEND_ONCE;
451
452 case MACH_MSG_TYPE_MOVE_SEND:
453 case MACH_MSG_TYPE_MAKE_SEND:
454 case MACH_MSG_TYPE_COPY_SEND:
455 return MACH_MSG_TYPE_PORT_SEND;
456
457 default:
458 return MACH_MSG_TYPE_PORT_NONE;
459 }
460}
461
462/*
463 * Routine: ipc_object_copyin
464 * Purpose:
465 * Copyin a capability from a space.
466 * If successful, the caller gets a ref
467 * for the resulting object, unless it is IO_DEAD.
468 * Conditions:
469 * Nothing locked.
470 * Returns:
471 * KERN_SUCCESS Acquired an object, possibly IO_DEAD.
472 * KERN_INVALID_TASK The space is dead.
473 * KERN_INVALID_NAME Name doesn't exist in space.
474 * KERN_INVALID_RIGHT Name doesn't denote correct right.
475 */
476
477kern_return_t
478ipc_object_copyin(
479 ipc_space_t space,
480 mach_port_name_t name,
481 mach_msg_type_name_t msgt_name,
482 ipc_object_t *objectp)
483{
484 ipc_entry_t entry;
485 ipc_port_t soright;
486 kern_return_t kr;
487
488 int i;
489
490 /*
491 * Could first try a read lock when doing
492 * MACH_MSG_TYPE_COPY_SEND, MACH_MSG_TYPE_MAKE_SEND,
493 * and MACH_MSG_TYPE_MAKE_SEND_ONCE.
494 */
495
496 kr = ipc_right_lookup_write(space, name, &entry);
497 if (kr != KERN_SUCCESS)
498 return kr;
499 /* space is write-locked and active */
500
501 kr = ipc_right_copyin(space, name, entry,
502 msgt_name, TRUE,
503 objectp, &soright);
504 if (IE_BITS_TYPE(entry->ie_bits) == MACH_PORT_TYPE_NONE)
505 ipc_entry_dealloc(space, name, entry);
506 is_write_unlock(space);
507
508 if ((kr == KERN_SUCCESS) && (soright != IP_NULL))
509 ipc_notify_port_deleted(soright, name);
510
511 return kr;
512}
513
514/*
515 * Routine: ipc_object_copyin_from_kernel
516 * Purpose:
517 * Copyin a naked capability from the kernel.
518 *
519 * MACH_MSG_TYPE_MOVE_RECEIVE
520 * The receiver must be ipc_space_kernel.
521 * Consumes the naked receive right.
522 * MACH_MSG_TYPE_COPY_SEND
523 * A naked send right must be supplied.
524 * The port gains a reference, and a send right
525 * if the port is still active.
526 * MACH_MSG_TYPE_MAKE_SEND
527 * The receiver must be ipc_space_kernel.
528 * The port gains a reference and a send right.
529 * MACH_MSG_TYPE_MOVE_SEND
530 * Consumes a naked send right.
531 * MACH_MSG_TYPE_MAKE_SEND_ONCE
532 * The port gains a reference and a send-once right.
533 * Receiver also be the caller of device subsystem,
534 * so no assertion.
535 * MACH_MSG_TYPE_MOVE_SEND_ONCE
536 * Consumes a naked send-once right.
537 * Conditions:
538 * Nothing locked.
539 */
540
541void
542ipc_object_copyin_from_kernel(
543 ipc_object_t object,
544 mach_msg_type_name_t msgt_name)
545{
546 assert(IO_VALID(object));
547
548 switch (msgt_name) {
549 case MACH_MSG_TYPE_MOVE_RECEIVE: {
550 ipc_port_t port = (ipc_port_t) object;
551
552 ip_lock(port);
553 assert(ip_active(port));
554 assert(port->ip_receiver_name != MACH_PORT_NULL);
555 assert(port->ip_receiver == ipc_space_kernel);
556
557 /* relevant part of ipc_port_clear_receiver */
558 ipc_port_set_mscount(port, 0);
559
560 port->ip_receiver_name = MACH_PORT_NULL;
561 port->ip_destination = IP_NULL;
562 ip_unlock(port);
563 break;
564 }
565
566 case MACH_MSG_TYPE_COPY_SEND: {
567 ipc_port_t port = (ipc_port_t) object;
568
569 ip_lock(port);
570 if (ip_active(port)) {
571 assert(port->ip_srights > 0);
572 port->ip_srights++;
573 }
574 ip_reference(port);
575 ip_unlock(port);
576 break;
577 }
578
579 case MACH_MSG_TYPE_MAKE_SEND: {
580 ipc_port_t port = (ipc_port_t) object;
581
582 ip_lock(port);
583 assert(ip_active(port));
584 assert(port->ip_receiver_name != MACH_PORT_NULL);
585 assert(port->ip_receiver == ipc_space_kernel);
586
587 ip_reference(port);
588 port->ip_mscount++;
589 port->ip_srights++;
590 ip_unlock(port);
591 break;
592 }
593
594 case MACH_MSG_TYPE_MOVE_SEND:
595 /* move naked send right into the message */
596 break;
597
598 case MACH_MSG_TYPE_MAKE_SEND_ONCE: {
599 ipc_port_t port = (ipc_port_t) object;
600
601 ip_lock(port);
602 assert(ip_active(port));
603 assert(port->ip_receiver_name != MACH_PORT_NULL);
604
605 ip_reference(port);
606 port->ip_sorights++;
607 ip_unlock(port);
608 break;
609 }
610
611 case MACH_MSG_TYPE_MOVE_SEND_ONCE:
612 /* move naked send-once right into the message */
613 break;
614
615 default:
616 panic("ipc_object_copyin_from_kernel: strange rights");
617 }
618}
619
620/*
621 * Routine: ipc_object_destroy
622 * Purpose:
623 * Destroys a naked capability.
624 * Consumes a ref for the object.
625 *
626 * A receive right should be in limbo or in transit.
627 * Conditions:
628 * Nothing locked.
629 */
630
631void
632ipc_object_destroy(
633 ipc_object_t object,
634 mach_msg_type_name_t msgt_name)
635{
636 assert(IO_VALID(object));
637 assert(io_otype(object) == IOT_PORT);
638
639 switch (msgt_name) {
640 case MACH_MSG_TYPE_PORT_SEND:
641 ipc_port_release_send((ipc_port_t) object);
642 break;
643
644 case MACH_MSG_TYPE_PORT_SEND_ONCE:
645 ipc_notify_send_once((ipc_port_t) object);
646 break;
647
648 case MACH_MSG_TYPE_PORT_RECEIVE:
649 ipc_port_release_receive((ipc_port_t) object);
650 break;
651
652 default:
653 panic("ipc_object_destroy: strange rights");
654 }
655}
656
657/*
658 * Routine: ipc_object_copyout
659 * Purpose:
660 * Copyout a capability, placing it into a space.
661 * If successful, consumes a ref for the object.
662 * Conditions:
663 * Nothing locked.
664 * Returns:
665 * KERN_SUCCESS Copied out object, consumed ref.
666 * KERN_INVALID_TASK The space is dead.
667 * KERN_INVALID_CAPABILITY The object is dead.
668 * KERN_NO_SPACE No room in space for another right.
669 * KERN_RESOURCE_SHORTAGE No memory available.
670 * KERN_UREFS_OVERFLOW Urefs limit exceeded
671 * and overflow wasn't specified.
672 */
673
674kern_return_t
675ipc_object_copyout(
676 ipc_space_t space,
677 ipc_object_t object,
678 mach_msg_type_name_t msgt_name,
679 boolean_t overflow,
680 mach_port_name_t *namep)
681{
682 mach_port_name_t name;
683 ipc_entry_t entry;
684 kern_return_t kr;
685
686 assert(IO_VALID(object));
687 assert(io_otype(object) == IOT_PORT);
688
689 is_write_lock(space);
690
691 for (;;) {
692 if (!space->is_active) {
693 is_write_unlock(space);
694 return KERN_INVALID_TASK;
695 }
696
697 if ((msgt_name != MACH_MSG_TYPE_PORT_SEND_ONCE) &&
698 ipc_right_reverse(space, object, &name, &entry)) {
699 /* object is locked and active */
700
701 assert(entry->ie_bits & MACH_PORT_TYPE_SEND_RECEIVE);
702 break;
703 }
704
705 name = (mach_port_name_t)object;
706 kr = ipc_entry_get(space, &name, &entry);
707 if (kr != KERN_SUCCESS) {
708 /* unlocks/locks space, so must start again */
709
710 kr = ipc_entry_grow_table(space, ITS_SIZE_NONE);
711 if (kr != KERN_SUCCESS)
712 return kr; /* space is unlocked */
713
714 continue;
715 }
716
717 assert(IE_BITS_TYPE(entry->ie_bits) == MACH_PORT_TYPE_NONE);
718 assert(entry->ie_object == IO_NULL);
719
720 io_lock(object);
721 if (!io_active(object)) {
722 io_unlock(object);
723 ipc_entry_dealloc(space, name, entry);
724 is_write_unlock(space);
725 return KERN_INVALID_CAPABILITY;
726 }
727
728 entry->ie_object = object;
729 break;
730 }
731
732 /* space is write-locked and active, object is locked and active */
733
734 kr = ipc_right_copyout(space, name, entry,
735 msgt_name, overflow, object);
736 /* object is unlocked */
737 is_write_unlock(space);
738
739 if (kr == KERN_SUCCESS)
740 *namep = name;
741 return kr;
742}
743
744/*
745 * Routine: ipc_object_copyout_name
746 * Purpose:
747 * Copyout a capability, placing it into a space.
748 * The specified name is used for the capability.
749 * If successful, consumes a ref for the object.
750 * Conditions:
751 * Nothing locked.
752 * Returns:
753 * KERN_SUCCESS Copied out object, consumed ref.
754 * KERN_INVALID_TASK The space is dead.
755 * KERN_INVALID_CAPABILITY The object is dead.
756 * KERN_RESOURCE_SHORTAGE No memory available.
757 * KERN_UREFS_OVERFLOW Urefs limit exceeded
758 * and overflow wasn't specified.
759 * KERN_RIGHT_EXISTS Space has rights under another name.
760 * KERN_NAME_EXISTS Name is already used.
761 */
762
763kern_return_t
764ipc_object_copyout_name(
765 ipc_space_t space,
766 ipc_object_t object,
767 mach_msg_type_name_t msgt_name,
768 boolean_t overflow,
769 mach_port_name_t name)
770{
771 mach_port_name_t oname;
772 ipc_entry_t oentry;
773 ipc_entry_t entry;
774 kern_return_t kr;
775
776 int i;
777
778 assert(IO_VALID(object));
779 assert(io_otype(object) == IOT_PORT);
780
781 kr = ipc_entry_alloc_name(space, name, &entry);
782 if (kr != KERN_SUCCESS)
783 return kr;
784 /* space is write-locked and active */
785
786 if ((msgt_name != MACH_MSG_TYPE_PORT_SEND_ONCE) &&
787 ipc_right_reverse(space, object, &oname, &oentry)) {
788 /* object is locked and active */
789
790 if (name != oname) {
791 io_unlock(object);
792
793 if (IE_BITS_TYPE(entry->ie_bits) == MACH_PORT_TYPE_NONE)
794 ipc_entry_dealloc(space, name, entry);
795
796 is_write_unlock(space);
797 return KERN_RIGHT_EXISTS;
798 }
799
800 assert(entry == oentry);
801 assert(entry->ie_bits & MACH_PORT_TYPE_SEND_RECEIVE);
802 } else {
803 if (ipc_right_inuse(space, name, entry))
804 return KERN_NAME_EXISTS;
805
806 assert(IE_BITS_TYPE(entry->ie_bits) == MACH_PORT_TYPE_NONE);
807 assert(entry->ie_object == IO_NULL);
808
809 io_lock(object);
810 if (!io_active(object)) {
811 io_unlock(object);
812 ipc_entry_dealloc(space, name, entry);
813 is_write_unlock(space);
814 return KERN_INVALID_CAPABILITY;
815 }
816
817 entry->ie_object = object;
818 }
819
820 /* space is write-locked and active, object is locked and active */
821
822 kr = ipc_right_copyout(space, name, entry,
823 msgt_name, overflow, object);
824 /* object is unlocked */
825 is_write_unlock(space);
826 return kr;
827}
828
829/*
830 * Routine: ipc_object_copyout_dest
831 * Purpose:
832 * Translates/consumes the destination right of a message.
833 * This is unlike normal copyout because the right is consumed
834 * in a funny way instead of being given to the receiving space.
835 * The receiver gets his name for the port, if he has receive
836 * rights, otherwise MACH_PORT_NULL.
837 * Conditions:
838 * The object is locked and active. Nothing else locked.
839 * The object is unlocked and loses a reference.
840 */
841
842void
843ipc_object_copyout_dest(
844 ipc_space_t space,
845 ipc_object_t object,
846 mach_msg_type_name_t msgt_name,
847 mach_port_name_t *namep)
848{
849 mach_port_name_t name;
850
851 assert(IO_VALID(object));
852 assert(io_active(object));
853
854 io_release(object);
855
856 /*
857 * If the space is the receiver/owner of the object,
858 * then we quietly consume the right and return
859 * the space's name for the object. Otherwise
860 * we destroy the right and return MACH_PORT_NULL.
861 */
862
863 switch (msgt_name) {
864 case MACH_MSG_TYPE_PORT_SEND: {
865 ipc_port_t port = (ipc_port_t) object;
866 ipc_port_t nsrequest = IP_NULL;
867 mach_port_mscount_t mscount;
868
869 if (port->ip_receiver == space)
870 name = port->ip_receiver_name;
871 else
872 name = MACH_PORT_NULL;
873
874 assert(port->ip_srights > 0);
875 if (--port->ip_srights == 0 &&
876 port->ip_nsrequest != IP_NULL) {
877 nsrequest = port->ip_nsrequest;
878 port->ip_nsrequest = IP_NULL;
879 mscount = port->ip_mscount;
880 ip_unlock(port);
881 ipc_notify_no_senders(nsrequest, mscount);
882 } else
883 ip_unlock(port);
884 break;
885 }
886
887 case MACH_MSG_TYPE_PORT_SEND_ONCE: {
888 ipc_port_t port = (ipc_port_t) object;
889
890 assert(port->ip_sorights > 0);
891
892 if (port->ip_receiver == space) {
893 /* quietly consume the send-once right */
894
895 port->ip_sorights--;
896 name = port->ip_receiver_name;
897 ip_unlock(port);
898 } else {
899 /*
900 * A very bizarre case. The message
901 * was received, but before this copyout
902 * happened the space lost receive rights.
903 * We can't quietly consume the soright
904 * out from underneath some other task,
905 * so generate a send-once notification.
906 */
907
908 ip_reference(port); /* restore ref */
909 ip_unlock(port);
910
911 ipc_notify_send_once(port);
912 name = MACH_PORT_NULL;
913 }
914
915 break;
916 }
917
918 default:
919 panic("ipc_object_copyout_dest: strange rights");
920 }
921
922 *namep = name;
923}
924
925/*
926 * Routine: ipc_object_rename
927 * Purpose:
928 * Rename an entry in a space.
929 * Conditions:
930 * Nothing locked.
931 * Returns:
932 * KERN_SUCCESS Renamed the entry.
933 * KERN_INVALID_TASK The space was dead.
934 * KERN_INVALID_NAME oname didn't denote an entry.
935 * KERN_NAME_EXISTS nname already denoted an entry.
936 * KERN_RESOURCE_SHORTAGE Couldn't allocate new entry.
937 */
938
939kern_return_t
940ipc_object_rename(
941 ipc_space_t space,
942 mach_port_name_t oname,
943 mach_port_name_t nname)
944{
945 ipc_entry_t oentry, nentry;
946 kern_return_t kr;
947
948 int i;
949
950 kr = ipc_entry_alloc_name(space, nname, &nentry);
951 if (kr != KERN_SUCCESS)
952 return kr;
953
954 /* space is write-locked and active */
955
956 if (ipc_right_inuse(space, nname, nentry)) {
957 /* space is unlocked */
958 return KERN_NAME_EXISTS;
959 }
960
961 /* don't let ipc_entry_lookup see the uninitialized new entry */
962
963 if ((oname == nname) ||
964 ((oentry = ipc_entry_lookup(space, oname)) == IE_NULL)) {
965 ipc_entry_dealloc(space, nname, nentry);
966 is_write_unlock(space);
967 return KERN_INVALID_NAME;
968 }
969
970 kr = ipc_right_rename(space, oname, oentry, nname, nentry);
971 /* space is unlocked */
972 return kr;
973}
974
975#if MACH_ASSERT
976/*
977 * Check whether the object is a port if so, free it. But
978 * keep track of that fact.
979 */
980void
981io_free(
982 unsigned int otype,
983 ipc_object_t object)
984{
985 ipc_port_t port;
986
987 if (otype == IOT_PORT) {
988 port = (ipc_port_t) object;
989#if MACH_ASSERT
990 ipc_port_track_dealloc(port);
991#endif /* MACH_ASSERT */
992 }
993 zfree(ipc_object_zones[otype], (vm_offset_t) object);
994}
995#endif /* MACH_ASSERT */
996
997#include <mach_kdb.h>
998#if MACH_KDB
999
1000#include <ddb/db_output.h>
1001
1002#define printf kdbprintf
1003
1004/*
1005 * Routine: ipc_object_print
1006 * Purpose:
1007 * Pretty-print an object for kdb.
1008 */
1009
1010char *ikot_print_array[IKOT_MAX_TYPE] = {
1011 "(NONE) ",
1012 "(THREAD) ",
1013 "(TASK) ",
1014 "(HOST) ",
1015 "(HOST_PRIV) ",
1016 "(PROCESSOR) ",
1017 "(PSET) ",
1018 "(PSET_NAME) ",
1019 "(TIMER) ",
1020 "(PAGER_REQUEST) ",
1021 "(DEVICE) ", /* 10 */
1022 "(XMM_OBJECT) ",
1023 "(XMM_PAGER) ",
1024 "(XMM_KERNEL) ",
1025 "(XMM_REPLY) ",
1026 "(NOTDEF 15) ",
1027 "(NOTDEF 16) ",
1028 "(HOST_SECURITY) ",
1029 "(LEDGER) ",
1030 "(MASTER_DEVICE) ",
1031 "(ACTIVATION) ", /* 20 */
1032 "(SUBSYSTEM) ",
1033 "(IO_DONE_QUEUE) ",
1034 "(SEMAPHORE) ",
1035 "(LOCK_SET) ",
1036 "(CLOCK) ",
1037 "(CLOCK_CTRL) ", /* 26 */
1038 "(IOKIT_SPARE) ", /* 27 */
1039 "(NAMED_MEM_ENTRY) ", /* 28 */
1040 "(IOKIT_CONNECT) ",
1041 "(IOKIT_OBJECT) ", /* 30 */
1042 "(UPL) ",
1043 /* << new entries here */
1044 "(UNKNOWN) " /* magic catchall */
1045};
1046/* Please keep in sync with kern/ipc_kobject.h */
1047
1048void
1049ipc_object_print(
1050 ipc_object_t object)
1051{
1052 int kotype;
1053
1054 iprintf("%s", io_active(object) ? "active" : "dead");
1055 printf(", refs=%d", object->io_references);
1056 printf(", otype=%d", io_otype(object));
1057 kotype = io_kotype(object);
1058 if (kotype >= 0 && kotype < IKOT_MAX_TYPE)
1059 printf(", kotype=%d %s\n", io_kotype(object),
1060 ikot_print_array[kotype]);
1061 else
1062 printf(", kotype=0x%x %s\n", io_kotype(object),
1063 ikot_print_array[IKOT_UNKNOWN]);
1064}
1065
1066#endif /* MACH_KDB */
mirror of XNU