[people/ms/linux.git] / fs / proc / fd.c

// SPDX-License-Identifier: GPL-2.0
#include <linux/sched/signal.h>
#include <linux/errno.h>
#include <linux/dcache.h>
#include <linux/path.h>
#include <linux/fdtable.h>
#include <linux/namei.h>
#include <linux/pid.h>
#include <linux/security.h>
#include <linux/file.h>
#include <linux/seq_file.h>
#include <linux/fs.h>

#include <linux/proc_fs.h>

#include "../mount.h"
#include "internal.h"
#include "fd.h"

static int seq_show(struct seq_file *m, void *v)
{
	struct files_struct *files = NULL;
	int f_flags = 0, ret = -ENOENT;
	struct file *file = NULL;
	struct task_struct *task;

	task = get_proc_task(m->private);
	if (!task)
		return -ENOENT;

	files = get_files_struct(task);
	put_task_struct(task);

	if (files) {
		unsigned int fd = proc_fd(m->private);

		spin_lock(&files->file_lock);
		file = fcheck_files(files, fd);
		if (file) {
			struct fdtable *fdt = files_fdtable(files);

			f_flags = file->f_flags;
			if (close_on_exec(fd, fdt))
				f_flags |= O_CLOEXEC;

			get_file(file);
			ret = 0;
		}
		spin_unlock(&files->file_lock);
		put_files_struct(files);
	}

	if (ret)
		return ret;

	seq_printf(m, "pos:\t%lli\nflags:\t0%o\nmnt_id:\t%i\n",
		   (long long)file->f_pos, f_flags,
		   real_mount(file->f_path.mnt)->mnt_id);

	show_fd_locks(m, file, files);
	if (seq_has_overflowed(m))
		goto out;

	if (file->f_op->show_fdinfo)
		file->f_op->show_fdinfo(m, file);

out:
	fput(file);
	return 0;
}

static int seq_fdinfo_open(struct inode *inode, struct file *file)
{
	return single_open(file, seq_show, inode);
}

static const struct file_operations proc_fdinfo_file_operations = {
	.open		= seq_fdinfo_open,
	.read		= seq_read,
	.llseek		= seq_lseek,
	.release	= single_release,
};

static bool tid_fd_mode(struct task_struct *task, unsigned fd, fmode_t *mode)
{
	struct files_struct *files = get_files_struct(task);
	struct file *file;

	if (!files)
		return false;

	rcu_read_lock();
	file = fcheck_files(files, fd);
	if (file)
		*mode = file->f_mode;
	rcu_read_unlock();
	put_files_struct(files);
	return !!file;
}

static int tid_fd_revalidate(struct dentry *dentry, unsigned int flags)
{
	struct task_struct *task;
	struct inode *inode;
	unsigned int fd;
	fmode_t f_mode;

	if (flags & LOOKUP_RCU)
		return -ECHILD;

	inode = d_inode(dentry);
	task = get_proc_task(inode);
	fd = proc_fd(inode);

	if (task) {
		if (tid_fd_mode(task, fd, &f_mode)) {
			task_dump_owner(task, 0, &inode->i_uid, &inode->i_gid);

			if (S_ISLNK(inode->i_mode)) {
				unsigned i_mode = S_IFLNK;
				if (f_mode & FMODE_READ)
					i_mode |= S_IRUSR | S_IXUSR;
				if (f_mode & FMODE_WRITE)
					i_mode |= S_IWUSR | S_IXUSR;
				inode->i_mode = i_mode;
			}
			security_task_to_inode(task, inode);
			put_task_struct(task);
			return 1;
		}
		put_task_struct(task);
	}
	return 0;
}

static const struct dentry_operations tid_fd_dentry_operations = {
	.d_revalidate	= tid_fd_revalidate,
	.d_delete	= pid_delete_dentry,
};

static int proc_fd_link(struct dentry *dentry, struct path *path)
{
	struct files_struct *files = NULL;
	struct task_struct *task;
	int ret = -ENOENT;

	task = get_proc_task(d_inode(dentry));
	if (task) {
		files = get_files_struct(task);
		put_task_struct(task);
	}

	if (files) {
		unsigned int fd = proc_fd(d_inode(dentry));
		struct file *fd_file;

		spin_lock(&files->file_lock);
		fd_file = fcheck_files(files, fd);
		if (fd_file) {
			*path = fd_file->f_path;
			path_get(&fd_file->f_path);
			ret = 0;
		}
		spin_unlock(&files->file_lock);
		put_files_struct(files);
	}

	return ret;
}

static int
proc_fd_instantiate(struct inode *dir, struct dentry *dentry,
		    struct task_struct *task, const void *ptr)
{
	unsigned fd = (unsigned long)ptr;
	struct proc_inode *ei;
	struct inode *inode;

	inode = proc_pid_make_inode(dir->i_sb, task, S_IFLNK);
	if (!inode)
		goto out;

	ei = PROC_I(inode);
	ei->fd = fd;

	inode->i_op = &proc_pid_link_inode_operations;
	inode->i_size = 64;

	ei->op.proc_get_link = proc_fd_link;

	d_set_d_op(dentry, &tid_fd_dentry_operations);
	d_add(dentry, inode);

	/* Close the race of the process dying before we return the dentry */
	if (tid_fd_revalidate(dentry, 0))
		return 0;
 out:
	return -ENOENT;
}

static struct dentry *proc_lookupfd_common(struct inode *dir,
					   struct dentry *dentry,
					   instantiate_t instantiate)
{
	struct task_struct *task = get_proc_task(dir);
	int result = -ENOENT;
	unsigned fd = name_to_int(&dentry->d_name);
	fmode_t f_mode;

	if (!task)
		goto out_no_task;
	if (fd == ~0U)
		goto out;
	if (!tid_fd_mode(task, fd, &f_mode))
		goto out;

	result = instantiate(dir, dentry, task, (void *)(unsigned long)fd);
out:
	put_task_struct(task);
out_no_task:
	return ERR_PTR(result);
}

static int proc_readfd_common(struct file *file, struct dir_context *ctx,
			      instantiate_t instantiate)
{
	struct task_struct *p = get_proc_task(file_inode(file));
	struct files_struct *files;
	unsigned int fd;

	if (!p)
		return -ENOENT;

	if (!dir_emit_dots(file, ctx))
		goto out;
	files = get_files_struct(p);
	if (!files)
		goto out;

	rcu_read_lock();
	for (fd = ctx->pos - 2;
	     fd < files_fdtable(files)->max_fds;
	     fd++, ctx->pos++) {
		char name[10 + 1];
		int len;

		if (!fcheck_files(files, fd))
			continue;
		rcu_read_unlock();

		len = snprintf(name, sizeof(name), "%u", fd);
		if (!proc_fill_cache(file, ctx,
				     name, len, instantiate, p,
				     (void *)(unsigned long)fd))
			goto out_fd_loop;
		cond_resched();
		rcu_read_lock();
	}
	rcu_read_unlock();
out_fd_loop:
	put_files_struct(files);
out:
	put_task_struct(p);
	return 0;
}

static int proc_readfd(struct file *file, struct dir_context *ctx)
{
	return proc_readfd_common(file, ctx, proc_fd_instantiate);
}

const struct file_operations proc_fd_operations = {
	.read		= generic_read_dir,
	.iterate_shared	= proc_readfd,
	.llseek		= generic_file_llseek,
};

static struct dentry *proc_lookupfd(struct inode *dir, struct dentry *dentry,
				    unsigned int flags)
{
	return proc_lookupfd_common(dir, dentry, proc_fd_instantiate);
}

/*
 * /proc/pid/fd needs a special permission handler so that a process can still
 * access /proc/self/fd after it has executed a setuid().
 */
int proc_fd_permission(struct inode *inode, int mask)
{
	struct task_struct *p;
	int rv;

	rv = generic_permission(inode, mask);
	if (rv == 0)
		return rv;

	rcu_read_lock();
	p = pid_task(proc_pid(inode), PIDTYPE_PID);
	if (p && same_thread_group(p, current))
		rv = 0;
	rcu_read_unlock();

	return rv;
}

const struct inode_operations proc_fd_inode_operations = {
	.lookup		= proc_lookupfd,
	.permission	= proc_fd_permission,
	.setattr	= proc_setattr,
};

static int
proc_fdinfo_instantiate(struct inode *dir, struct dentry *dentry,
			struct task_struct *task, const void *ptr)
{
	unsigned fd = (unsigned long)ptr;
	struct proc_inode *ei;
	struct inode *inode;

	inode = proc_pid_make_inode(dir->i_sb, task, S_IFREG | S_IRUSR);
	if (!inode)
		goto out;

	ei = PROC_I(inode);
	ei->fd = fd;

	inode->i_fop = &proc_fdinfo_file_operations;

	d_set_d_op(dentry, &tid_fd_dentry_operations);
	d_add(dentry, inode);

	/* Close the race of the process dying before we return the dentry */
	if (tid_fd_revalidate(dentry, 0))
		return 0;
 out:
	return -ENOENT;
}

static struct dentry *
proc_lookupfdinfo(struct inode *dir, struct dentry *dentry, unsigned int flags)
{
	return proc_lookupfd_common(dir, dentry, proc_fdinfo_instantiate);
}

static int proc_readfdinfo(struct file *file, struct dir_context *ctx)
{
	return proc_readfd_common(file, ctx,
				  proc_fdinfo_instantiate);
}

const struct inode_operations proc_fdinfo_inode_operations = {
	.lookup		= proc_lookupfdinfo,
	.setattr	= proc_setattr,
};

const struct file_operations proc_fdinfo_operations = {
	.read		= generic_read_dir,
	.iterate_shared	= proc_readfdinfo,
	.llseek		= generic_file_llseek,
};
Commit	Line	Data
b2441318	1	// SPDX-License-Identifier: GPL-2.0
3f07c014	2	#include <linux/sched/signal.h>
faf60af1 CG	3	#include <linux/errno.h>
	4	#include <linux/dcache.h>
	5	#include <linux/path.h>
	6	#include <linux/fdtable.h>
	7	#include <linux/namei.h>
	8	#include <linux/pid.h>
	9	#include <linux/security.h>
ddd3e077 CG	10	#include <linux/file.h>
ddd3e077 CG	11	#include <linux/seq_file.h>
6c8c9031	12	#include <linux/fs.h>
faf60af1 CG	13
	14	#include <linux/proc_fs.h>
	15
49d063cb	16	#include "../mount.h"
faf60af1 CG	17	#include "internal.h"
	18	#include "fd.h"
	19
ddd3e077	20	static int seq_show(struct seq_file m, void v)
faf60af1	21	{
faf60af1	22	struct files_struct *files = NULL;
ddd3e077 CG	23	int f_flags = 0, ret = -ENOENT;
	24	struct file *file = NULL;
	25	struct task_struct *task;
	26
	27	task = get_proc_task(m->private);
	28	if (!task)
	29	return -ENOENT;
	30
	31	files = get_files_struct(task);
	32	put_task_struct(task);
faf60af1	33
faf60af1	34	if (files) {
771187d6	35	unsigned int fd = proc_fd(m->private);
ddd3e077	36
faf60af1 CG	37	spin_lock(&files->file_lock);
	38	file = fcheck_files(files, fd);
	39	if (file) {
ddd3e077	40	struct fdtable *fdt = files_fdtable(files);
faf60af1	41
c6f3d811	42	f_flags = file->f_flags;
faf60af1 CG	43	if (close_on_exec(fd, fdt))
	44	f_flags \|= O_CLOEXEC;
	45
ddd3e077 CG	46	get_file(file);
ddd3e077 CG	47	ret = 0;
faf60af1 CG	48	}
	49	spin_unlock(&files->file_lock);
	50	put_files_struct(files);
	51	}
ddd3e077	52
6c8c9031 AV	53	if (ret)
	54	return ret;
	55
	56	seq_printf(m, "pos:\t%lli\nflags:\t0%o\nmnt_id:\t%i\n",
	57	(long long)file->f_pos, f_flags,
	58	real_mount(file->f_path.mnt)->mnt_id);
	59
	60	show_fd_locks(m, file, files);
	61	if (seq_has_overflowed(m))
	62	goto out;
	63
	64	if (file->f_op->show_fdinfo)
	65	file->f_op->show_fdinfo(m, file);
ddd3e077	66
6c8c9031 AV	67	out:
	68	fput(file);
	69	return 0;
faf60af1 CG	70	}
faf60af1 CG	71
ddd3e077 CG	72	static int seq_fdinfo_open(struct inode inode, struct file file)
	73	{
	74	return single_open(file, seq_show, inode);
	75	}
	76
	77	static const struct file_operations proc_fdinfo_file_operations = {
	78	.open = seq_fdinfo_open,
	79	.read = seq_read,
	80	.llseek = seq_lseek,
	81	.release = single_release,
	82	};
	83
1ae9bd8b AV	84	static bool tid_fd_mode(struct task_struct task, unsigned fd, fmode_t mode)
	85	{
	86	struct files_struct *files = get_files_struct(task);
	87	struct file *file;
	88
	89	if (!files)
	90	return false;
	91
	92	rcu_read_lock();
	93	file = fcheck_files(files, fd);
	94	if (file)
	95	*mode = file->f_mode;
	96	rcu_read_unlock();
	97	put_files_struct(files);
	98	return !!file;
	99	}
	100
faf60af1 CG	101	static int tid_fd_revalidate(struct dentry *dentry, unsigned int flags)
faf60af1 CG	102	{
faf60af1	103	struct task_struct *task;
faf60af1	104	struct inode *inode;
771187d6	105	unsigned int fd;
1ae9bd8b	106	fmode_t f_mode;
faf60af1 CG	107
	108	if (flags & LOOKUP_RCU)
	109	return -ECHILD;
	110
2b0143b5	111	inode = d_inode(dentry);
faf60af1 CG	112	task = get_proc_task(inode);
	113	fd = proc_fd(inode);
	114
	115	if (task) {
1ae9bd8b AV	116	if (tid_fd_mode(task, fd, &f_mode)) {
	117	task_dump_owner(task, 0, &inode->i_uid, &inode->i_gid);
	118
	119	if (S_ISLNK(inode->i_mode)) {
	120	unsigned i_mode = S_IFLNK;
	121	if (f_mode & FMODE_READ)
	122	i_mode \|= S_IRUSR \| S_IXUSR;
	123	if (f_mode & FMODE_WRITE)
	124	i_mode \|= S_IWUSR \| S_IXUSR;
	125	inode->i_mode = i_mode;
faf60af1	126	}
1ae9bd8b AV	127	security_task_to_inode(task, inode);
	128	put_task_struct(task);
	129	return 1;
faf60af1 CG	130	}
	131	put_task_struct(task);
	132	}
faf60af1 CG	133	return 0;
	134	}
	135
	136	static const struct dentry_operations tid_fd_dentry_operations = {
	137	.d_revalidate = tid_fd_revalidate,
	138	.d_delete = pid_delete_dentry,
	139	};
	140
	141	static int proc_fd_link(struct dentry dentry, struct path path)
	142	{
ddd3e077 CG	143	struct files_struct *files = NULL;
	144	struct task_struct *task;
	145	int ret = -ENOENT;
	146
2b0143b5	147	task = get_proc_task(d_inode(dentry));
ddd3e077 CG	148	if (task) {
	149	files = get_files_struct(task);
	150	put_task_struct(task);
	151	}
	152
	153	if (files) {
771187d6	154	unsigned int fd = proc_fd(d_inode(dentry));
ddd3e077 CG	155	struct file *fd_file;
	156
	157	spin_lock(&files->file_lock);
	158	fd_file = fcheck_files(files, fd);
	159	if (fd_file) {
	160	*path = fd_file->f_path;
	161	path_get(&fd_file->f_path);
	162	ret = 0;
	163	}
	164	spin_unlock(&files->file_lock);
	165	put_files_struct(files);
	166	}
	167
	168	return ret;
faf60af1 CG	169	}
faf60af1 CG	170
c52a47ac	171	static int
faf60af1 CG	172	proc_fd_instantiate(struct inode dir, struct dentry dentry,
	173	struct task_struct task, const void ptr)
	174	{
faf60af1 CG	175	unsigned fd = (unsigned long)ptr;
	176	struct proc_inode *ei;
	177	struct inode *inode;
	178
db978da8	179	inode = proc_pid_make_inode(dir->i_sb, task, S_IFLNK);
faf60af1 CG	180	if (!inode)
	181	goto out;
	182
	183	ei = PROC_I(inode);
	184	ei->fd = fd;
	185
faf60af1 CG	186	inode->i_op = &proc_pid_link_inode_operations;
	187	inode->i_size = 64;
	188
	189	ei->op.proc_get_link = proc_fd_link;
	190
	191	d_set_d_op(dentry, &tid_fd_dentry_operations);
	192	d_add(dentry, inode);
	193
	194	/* Close the race of the process dying before we return the dentry */
	195	if (tid_fd_revalidate(dentry, 0))
c52a47ac	196	return 0;
faf60af1	197	out:
c52a47ac	198	return -ENOENT;
faf60af1 CG	199	}
	200
	201	static struct dentry proc_lookupfd_common(struct inode dir,
	202	struct dentry *dentry,
	203	instantiate_t instantiate)
	204	{
	205	struct task_struct *task = get_proc_task(dir);
c52a47ac	206	int result = -ENOENT;
dbcdb504	207	unsigned fd = name_to_int(&dentry->d_name);
1ae9bd8b	208	fmode_t f_mode;
faf60af1 CG	209
	210	if (!task)
	211	goto out_no_task;
	212	if (fd == ~0U)
	213	goto out;
1ae9bd8b AV	214	if (!tid_fd_mode(task, fd, &f_mode))
1ae9bd8b AV	215	goto out;
faf60af1 CG	216
	217	result = instantiate(dir, dentry, task, (void *)(unsigned long)fd);
	218	out:
	219	put_task_struct(task);
	220	out_no_task:
c52a47ac	221	return ERR_PTR(result);
faf60af1 CG	222	}
faf60af1 CG	223
f0c3b509 AV	224	static int proc_readfd_common(struct file file, struct dir_context ctx,
f0c3b509 AV	225	instantiate_t instantiate)
faf60af1	226	{
f0c3b509	227	struct task_struct *p = get_proc_task(file_inode(file));
faf60af1	228	struct files_struct *files;
f0c3b509	229	unsigned int fd;
faf60af1	230
faf60af1	231	if (!p)
f0c3b509	232	return -ENOENT;
faf60af1	233
f0c3b509 AV	234	if (!dir_emit_dots(file, ctx))
	235	goto out;
	236	files = get_files_struct(p);
	237	if (!files)
	238	goto out;
	239
	240	rcu_read_lock();
	241	for (fd = ctx->pos - 2;
	242	fd < files_fdtable(files)->max_fds;
	243	fd++, ctx->pos++) {
e3912ac3	244	char name[10 + 1];
f0c3b509 AV	245	int len;
	246
	247	if (!fcheck_files(files, fd))
	248	continue;
	249	rcu_read_unlock();
	250
771187d6	251	len = snprintf(name, sizeof(name), "%u", fd);
f0c3b509 AV	252	if (!proc_fill_cache(file, ctx,
	253	name, len, instantiate, p,
	254	(void *)(unsigned long)fd))
	255	goto out_fd_loop;
3cc4a84e	256	cond_resched();
f0c3b509	257	rcu_read_lock();
faf60af1	258	}
f0c3b509 AV	259	rcu_read_unlock();
	260	out_fd_loop:
	261	put_files_struct(files);
faf60af1 CG	262	out:
faf60af1 CG	263	put_task_struct(p);
f0c3b509	264	return 0;
faf60af1 CG	265	}
faf60af1 CG	266
f0c3b509	267	static int proc_readfd(struct file file, struct dir_context ctx)
faf60af1	268	{
f0c3b509	269	return proc_readfd_common(file, ctx, proc_fd_instantiate);
faf60af1 CG	270	}
	271
	272	const struct file_operations proc_fd_operations = {
	273	.read = generic_read_dir,
f50752ea AV	274	.iterate_shared = proc_readfd,
f50752ea AV	275	.llseek = generic_file_llseek,
faf60af1 CG	276	};
	277
	278	static struct dentry proc_lookupfd(struct inode dir, struct dentry *dentry,
	279	unsigned int flags)
	280	{
	281	return proc_lookupfd_common(dir, dentry, proc_fd_instantiate);
	282	}
	283
	284	/*
	285	* /proc/pid/fd needs a special permission handler so that a process can still
	286	* access /proc/self/fd after it has executed a setuid().
	287	*/
	288	int proc_fd_permission(struct inode *inode, int mask)
	289	{
54708d28 ON	290	struct task_struct *p;
	291	int rv;
	292
	293	rv = generic_permission(inode, mask);
faf60af1	294	if (rv == 0)
54708d28 ON	295	return rv;
	296
	297	rcu_read_lock();
	298	p = pid_task(proc_pid(inode), PIDTYPE_PID);
	299	if (p && same_thread_group(p, current))
faf60af1	300	rv = 0;
54708d28 ON	301	rcu_read_unlock();
54708d28 ON	302
faf60af1 CG	303	return rv;
	304	}
	305
	306	const struct inode_operations proc_fd_inode_operations = {
	307	.lookup = proc_lookupfd,
	308	.permission = proc_fd_permission,
	309	.setattr = proc_setattr,
	310	};
	311
c52a47ac	312	static int
faf60af1 CG	313	proc_fdinfo_instantiate(struct inode dir, struct dentry dentry,
	314	struct task_struct task, const void ptr)
	315	{
faf60af1 CG	316	unsigned fd = (unsigned long)ptr;
	317	struct proc_inode *ei;
	318	struct inode *inode;
	319
db978da8	320	inode = proc_pid_make_inode(dir->i_sb, task, S_IFREG \| S_IRUSR);
faf60af1 CG	321	if (!inode)
	322	goto out;
	323
	324	ei = PROC_I(inode);
	325	ei->fd = fd;
	326
faf60af1 CG	327	inode->i_fop = &proc_fdinfo_file_operations;
	328
	329	d_set_d_op(dentry, &tid_fd_dentry_operations);
	330	d_add(dentry, inode);
	331
	332	/* Close the race of the process dying before we return the dentry */
	333	if (tid_fd_revalidate(dentry, 0))
c52a47ac	334	return 0;
faf60af1	335	out:
c52a47ac	336	return -ENOENT;
faf60af1 CG	337	}
	338
	339	static struct dentry *
	340	proc_lookupfdinfo(struct inode dir, struct dentry dentry, unsigned int flags)
	341	{
	342	return proc_lookupfd_common(dir, dentry, proc_fdinfo_instantiate);
	343	}
	344
f0c3b509	345	static int proc_readfdinfo(struct file file, struct dir_context ctx)
faf60af1	346	{
f0c3b509	347	return proc_readfd_common(file, ctx,
faf60af1 CG	348	proc_fdinfo_instantiate);
	349	}
	350
	351	const struct inode_operations proc_fdinfo_inode_operations = {
	352	.lookup = proc_lookupfdinfo,
	353	.setattr = proc_setattr,
	354	};
	355
	356	const struct file_operations proc_fdinfo_operations = {
	357	.read = generic_read_dir,
f50752ea AV	358	.iterate_shared = proc_readfdinfo,
f50752ea AV	359	.llseek = generic_file_llseek,
faf60af1	360	};