xref: /illumos-gate/usr/src/test/nvme-tests/tests/ioctl/general-errors.c (revision f5f0964ce91892f7482efc86903b0ec7c7b6ba66) 
1*f5f0964cSRobert Mustacchi /*
2*f5f0964cSRobert Mustacchi  * This file and its contents are supplied under the terms of the
3*f5f0964cSRobert Mustacchi  * Common Development and Distribution License ("CDDL"), version 1.0.
4*f5f0964cSRobert Mustacchi  * You may only use this file in accordance with the terms of version
5*f5f0964cSRobert Mustacchi  * 1.0 of the CDDL.
6*f5f0964cSRobert Mustacchi  *
7*f5f0964cSRobert Mustacchi  * A full copy of the text of the CDDL should have accompanied this
8*f5f0964cSRobert Mustacchi  * source.  A copy of the CDDL is also available via the Internet at
9*f5f0964cSRobert Mustacchi  * http://www.illumos.org/license/CDDL.
10*f5f0964cSRobert Mustacchi  */
11*f5f0964cSRobert Mustacchi 
12*f5f0964cSRobert Mustacchi /*
13*f5f0964cSRobert Mustacchi  * Copyright 2025 Oxide Computer Company
14*f5f0964cSRobert Mustacchi  */
15*f5f0964cSRobert Mustacchi 
16*f5f0964cSRobert Mustacchi /*
17*f5f0964cSRobert Mustacchi  * This test iterates over every NVMe ioctl and tries to trigger various errors
18*f5f0964cSRobert Mustacchi  * that are generic across all of them. In particular:
19*f5f0964cSRobert Mustacchi  *
20*f5f0964cSRobert Mustacchi  *  - Invalid buffer (EFAULT)
21*f5f0964cSRobert Mustacchi  *  - Bad file descriptor mode (EBADF)
22*f5f0964cSRobert Mustacchi  *  - Missing privileges (EPERM)
23*f5f0964cSRobert Mustacchi  *
24*f5f0964cSRobert Mustacchi  * This is considered a destructive test as a side effect from some of these
25*f5f0964cSRobert Mustacchi  * would be bad. This performs all of these cases on just the controller fd at
26*f5f0964cSRobert Mustacchi  * this time. This test starts from the device-reset profile.
27*f5f0964cSRobert Mustacchi  */
28*f5f0964cSRobert Mustacchi 
29*f5f0964cSRobert Mustacchi #include <err.h>
30*f5f0964cSRobert Mustacchi #include <stdlib.h>
31*f5f0964cSRobert Mustacchi #include <unistd.h>
32*f5f0964cSRobert Mustacchi #include <sys/debug.h>
33*f5f0964cSRobert Mustacchi #include <sys/sysmacros.h>
34*f5f0964cSRobert Mustacchi #include <sys/mman.h>
35*f5f0964cSRobert Mustacchi #include <priv.h>
36*f5f0964cSRobert Mustacchi #include <errno.h>
37*f5f0964cSRobert Mustacchi #include <string.h>
38*f5f0964cSRobert Mustacchi #include <fcntl.h>
39*f5f0964cSRobert Mustacchi 
40*f5f0964cSRobert Mustacchi #include "nvme_ioctl_util.h"
41*f5f0964cSRobert Mustacchi 
42*f5f0964cSRobert Mustacchi #if NVME_IOC_MAX != NVME_IOC_NS_DELETE
43*f5f0964cSRobert Mustacchi #error	"NVME_IOC_MAX has grown, update this test!"
44*f5f0964cSRobert Mustacchi #endif
45*f5f0964cSRobert Mustacchi 
46*f5f0964cSRobert Mustacchi typedef struct {
47*f5f0964cSRobert Mustacchi 	int it_cmd;
48*f5f0964cSRobert Mustacchi 	bool it_write;
49*f5f0964cSRobert Mustacchi 	bool it_perm;
50*f5f0964cSRobert Mustacchi } ioctl_test_t;
51*f5f0964cSRobert Mustacchi 
52*f5f0964cSRobert Mustacchi static ioctl_test_t ioctl_tests[NVME_IOC_MAX - NVME_IOC + 1] = {
53*f5f0964cSRobert Mustacchi 	{ NVME_IOC_CTRL_INFO, false, false },
54*f5f0964cSRobert Mustacchi 	{ NVME_IOC_IDENTIFY, false, false },
55*f5f0964cSRobert Mustacchi 	{ NVME_IOC_GET_LOGPAGE, false, false },
56*f5f0964cSRobert Mustacchi 	{ NVME_IOC_GET_FEATURE, false, false },
57*f5f0964cSRobert Mustacchi 	{ NVME_IOC_FORMAT, true, true },
58*f5f0964cSRobert Mustacchi 	{ NVME_IOC_BD_DETACH, true, true },
59*f5f0964cSRobert Mustacchi 	{ NVME_IOC_BD_ATTACH, true, true },
60*f5f0964cSRobert Mustacchi 	{ NVME_IOC_FIRMWARE_DOWNLOAD, true, true },
61*f5f0964cSRobert Mustacchi 	{ NVME_IOC_FIRMWARE_COMMIT, true, true },
62*f5f0964cSRobert Mustacchi 	{ NVME_IOC_PASSTHRU, true, true },
63*f5f0964cSRobert Mustacchi 	{ NVME_IOC_NS_INFO, false, false },
64*f5f0964cSRobert Mustacchi 	{ NVME_IOC_LOCK, true, true },
65*f5f0964cSRobert Mustacchi 	{ NVME_IOC_UNLOCK, true, false },
66*f5f0964cSRobert Mustacchi 	{ NVME_IOC_CTRL_ATTACH, true, true },
67*f5f0964cSRobert Mustacchi 	{ NVME_IOC_CTRL_DETACH, true, true },
68*f5f0964cSRobert Mustacchi 	{ NVME_IOC_NS_CREATE, true, true },
69*f5f0964cSRobert Mustacchi 	{ NVME_IOC_NS_DELETE, true, true }
70*f5f0964cSRobert Mustacchi };
71*f5f0964cSRobert Mustacchi 
72*f5f0964cSRobert Mustacchi static bool
ioctl_test_one(int fd,const ioctl_test_t * test,void * unmap,priv_set_t * basic,priv_set_t * cur)73*f5f0964cSRobert Mustacchi ioctl_test_one(int fd, const ioctl_test_t *test, void *unmap, priv_set_t *basic,
74*f5f0964cSRobert Mustacchi     priv_set_t *cur)
75*f5f0964cSRobert Mustacchi {
76*f5f0964cSRobert Mustacchi 	int altfd;
77*f5f0964cSRobert Mustacchi 	bool ret = true;
78*f5f0964cSRobert Mustacchi 
79*f5f0964cSRobert Mustacchi 	if (ioctl(fd, test->it_cmd, unmap) == 0) {
80*f5f0964cSRobert Mustacchi 		warnx("TEST FAILED: ioctl %s (0x%x) with invalid buffer "
81*f5f0964cSRobert Mustacchi 		    "incorrectly succeeded",
82*f5f0964cSRobert Mustacchi 		    nvme_ioctl_test_cmdstr(test->it_cmd), test->it_cmd);
83*f5f0964cSRobert Mustacchi 		ret = false;
84*f5f0964cSRobert Mustacchi 	} else if (errno != EFAULT) {
85*f5f0964cSRobert Mustacchi 		int e = errno;
86*f5f0964cSRobert Mustacchi 		warnx("TEST FAILED: ioctl %s (0x%x) with invalid buffer "
87*f5f0964cSRobert Mustacchi 		    "returned %s (0x%x), not EFAULT (0x%x)",
88*f5f0964cSRobert Mustacchi 		    nvme_ioctl_test_cmdstr(test->it_cmd), test->it_cmd,
89*f5f0964cSRobert Mustacchi 		    strerrorname_np(e), e, EFAULT);
90*f5f0964cSRobert Mustacchi 		ret = false;
91*f5f0964cSRobert Mustacchi 	} else {
92*f5f0964cSRobert Mustacchi 		(void) printf("TEST PASSED: ioctl %s (0x%x) with invalid "
93*f5f0964cSRobert Mustacchi 		    "buffer returned EFAULT\n",
94*f5f0964cSRobert Mustacchi 		    nvme_ioctl_test_cmdstr(test->it_cmd), test->it_cmd);
95*f5f0964cSRobert Mustacchi 	}
96*f5f0964cSRobert Mustacchi 
97*f5f0964cSRobert Mustacchi 	altfd = nvme_ioctl_test_get_fd_flags(0, test->it_write ?
98*f5f0964cSRobert Mustacchi 	    O_RDONLY : O_WRONLY);
99*f5f0964cSRobert Mustacchi 	if (ioctl(altfd, test->it_cmd, unmap) == 0) {
100*f5f0964cSRobert Mustacchi 		warnx("TEST FAILED: ioctl %s (0x%x) with bad fd mode "
101*f5f0964cSRobert Mustacchi 		    "incorrectly succeeded",
102*f5f0964cSRobert Mustacchi 		    nvme_ioctl_test_cmdstr(test->it_cmd), test->it_cmd);
103*f5f0964cSRobert Mustacchi 		ret = false;
104*f5f0964cSRobert Mustacchi 	} else if (errno != EBADF) {
105*f5f0964cSRobert Mustacchi 		int e = errno;
106*f5f0964cSRobert Mustacchi 		warnx("TEST FAILED: ioctl %s (0x%x) with bad fd mode "
107*f5f0964cSRobert Mustacchi 		    "returned %s (0x%x), not EBADF (0x%x)",
108*f5f0964cSRobert Mustacchi 		    nvme_ioctl_test_cmdstr(test->it_cmd), test->it_cmd,
109*f5f0964cSRobert Mustacchi 		    strerrorname_np(e), e, EBADF);
110*f5f0964cSRobert Mustacchi 		ret = false;
111*f5f0964cSRobert Mustacchi 	} else {
112*f5f0964cSRobert Mustacchi 		(void) printf("TEST PASSED: ioctl %s (0x%x) with bad fd "
113*f5f0964cSRobert Mustacchi 		    "mode returned EBADF\n",
114*f5f0964cSRobert Mustacchi 		    nvme_ioctl_test_cmdstr(test->it_cmd), test->it_cmd);
115*f5f0964cSRobert Mustacchi 	}
116*f5f0964cSRobert Mustacchi 	VERIFY0(close(altfd));
117*f5f0964cSRobert Mustacchi 
118*f5f0964cSRobert Mustacchi 	if (setppriv(PRIV_SET, PRIV_EFFECTIVE, basic) != 0) {
119*f5f0964cSRobert Mustacchi 		err(EXIT_FAILURE, "failed to drop privileges");
120*f5f0964cSRobert Mustacchi 	}
121*f5f0964cSRobert Mustacchi 
122*f5f0964cSRobert Mustacchi 	/*
123*f5f0964cSRobert Mustacchi 	 * Some ioctls check privileges regardless of how one gets an fd to the
124*f5f0964cSRobert Mustacchi 	 * device, others don't. Those that don't should fail with EFAULT.
125*f5f0964cSRobert Mustacchi 	 */
126*f5f0964cSRobert Mustacchi 	int exp = test->it_perm ? EPERM : EFAULT;
127*f5f0964cSRobert Mustacchi 	if (ioctl(fd, test->it_cmd, unmap) == 0) {
128*f5f0964cSRobert Mustacchi 		warnx("TEST FAILED: ioctl %s (0x%x) without privs incorrectly "
129*f5f0964cSRobert Mustacchi 		    "succeeded", nvme_ioctl_test_cmdstr(test->it_cmd),
130*f5f0964cSRobert Mustacchi 		    test->it_cmd);
131*f5f0964cSRobert Mustacchi 		ret = false;
132*f5f0964cSRobert Mustacchi 	} else if (errno != exp) {
133*f5f0964cSRobert Mustacchi 		int e = errno;
134*f5f0964cSRobert Mustacchi 		warnx("TEST FAILED: ioctl %s (0x%x) without privs returned "
135*f5f0964cSRobert Mustacchi 		    "%s (0x%x), not %s (0x%x)",
136*f5f0964cSRobert Mustacchi 		    nvme_ioctl_test_cmdstr(test->it_cmd), test->it_cmd,
137*f5f0964cSRobert Mustacchi 		    strerrorname_np(e), e, strerrorname_np(exp), exp);
138*f5f0964cSRobert Mustacchi 		ret = false;
139*f5f0964cSRobert Mustacchi 	} else {
140*f5f0964cSRobert Mustacchi 		(void) printf("TEST PASSED: ioctl %s (0x%x) without privs "
141*f5f0964cSRobert Mustacchi 		    "returned %s\n", nvme_ioctl_test_cmdstr(test->it_cmd),
142*f5f0964cSRobert Mustacchi 		    test->it_cmd, strerrorname_np(exp));
143*f5f0964cSRobert Mustacchi 	}
144*f5f0964cSRobert Mustacchi 
145*f5f0964cSRobert Mustacchi 	if (setppriv(PRIV_SET, PRIV_EFFECTIVE, cur) != 0) {
146*f5f0964cSRobert Mustacchi 		err(EXIT_FAILURE, "failed to restore privileges");
147*f5f0964cSRobert Mustacchi 	}
148*f5f0964cSRobert Mustacchi 
149*f5f0964cSRobert Mustacchi 	return (ret);
150*f5f0964cSRobert Mustacchi }
151*f5f0964cSRobert Mustacchi 
152*f5f0964cSRobert Mustacchi int
main(void)153*f5f0964cSRobert Mustacchi main(void)
154*f5f0964cSRobert Mustacchi {
155*f5f0964cSRobert Mustacchi 	int fd = nvme_ioctl_test_get_fd(0);
156*f5f0964cSRobert Mustacchi 	int ret = EXIT_SUCCESS;
157*f5f0964cSRobert Mustacchi 	void *unmap;
158*f5f0964cSRobert Mustacchi 	priv_set_t *basic, *cur;
159*f5f0964cSRobert Mustacchi 
160*f5f0964cSRobert Mustacchi 	unmap = mmap(NULL, 1024 * 1024, PROT_NONE, MAP_PRIVATE | MAP_ANON, -1,
161*f5f0964cSRobert Mustacchi 	    0);
162*f5f0964cSRobert Mustacchi 	if (unmap == NULL) {
163*f5f0964cSRobert Mustacchi 		err(EXIT_FAILURE, "failed to mmap empty buffer");
164*f5f0964cSRobert Mustacchi 	}
165*f5f0964cSRobert Mustacchi 
166*f5f0964cSRobert Mustacchi 	basic = priv_allocset();
167*f5f0964cSRobert Mustacchi 	cur = priv_allocset();
168*f5f0964cSRobert Mustacchi 	if (basic == NULL || cur == NULL) {
169*f5f0964cSRobert Mustacchi 		err(EXIT_FAILURE, "failed to allocate privilege sets");
170*f5f0964cSRobert Mustacchi 	}
171*f5f0964cSRobert Mustacchi 	priv_basicset(basic);
172*f5f0964cSRobert Mustacchi 
173*f5f0964cSRobert Mustacchi 	if (getppriv(PRIV_EFFECTIVE, cur) != 0) {
174*f5f0964cSRobert Mustacchi 		err(EXIT_FAILURE, "failed to obtain current privilege set");
175*f5f0964cSRobert Mustacchi 	}
176*f5f0964cSRobert Mustacchi 
177*f5f0964cSRobert Mustacchi 	for (size_t i = 0; i < ARRAY_SIZE(ioctl_tests); i++) {
178*f5f0964cSRobert Mustacchi 		VERIFY3S(ioctl_tests[i].it_cmd, !=, 0);
179*f5f0964cSRobert Mustacchi 		if (!ioctl_test_one(fd, &ioctl_tests[i], unmap, basic, cur)) {
180*f5f0964cSRobert Mustacchi 			ret = EXIT_FAILURE;
181*f5f0964cSRobert Mustacchi 		}
182*f5f0964cSRobert Mustacchi 	}
183*f5f0964cSRobert Mustacchi 
184*f5f0964cSRobert Mustacchi 	VERIFY0(close(fd));
185*f5f0964cSRobert Mustacchi 
186*f5f0964cSRobert Mustacchi 	if (ret == EXIT_SUCCESS) {
187*f5f0964cSRobert Mustacchi 		(void) printf("All tests passed successfully\n");
188*f5f0964cSRobert Mustacchi 	}
189*f5f0964cSRobert Mustacchi 
190*f5f0964cSRobert Mustacchi 	return (ret);
191*f5f0964cSRobert Mustacchi }
192