Blame view
kernel/sys.c
40.9 KB
1da177e4c Linux-2.6.12-rc2 |
1 2 3 4 5 |
/* * linux/kernel/sys.c * * Copyright (C) 1991, 1992 Linus Torvalds */ |
1da177e4c Linux-2.6.12-rc2 |
6 7 8 9 |
#include <linux/module.h> #include <linux/mm.h> #include <linux/utsname.h> #include <linux/mman.h> |
1da177e4c Linux-2.6.12-rc2 |
10 11 12 |
#include <linux/notifier.h> #include <linux/reboot.h> #include <linux/prctl.h> |
1da177e4c Linux-2.6.12-rc2 |
13 14 |
#include <linux/highuid.h> #include <linux/fs.h> |
cdd6c482c perf: Do the big ... |
15 |
#include <linux/perf_event.h> |
3e88c553d use defines in sy... |
16 |
#include <linux/resource.h> |
dc009d924 [PATCH] kexec: ad... |
17 18 |
#include <linux/kernel.h> #include <linux/kexec.h> |
1da177e4c Linux-2.6.12-rc2 |
19 |
#include <linux/workqueue.h> |
c59ede7b7 [PATCH] move capa... |
20 |
#include <linux/capability.h> |
1da177e4c Linux-2.6.12-rc2 |
21 22 23 24 25 26 27 28 |
#include <linux/device.h> #include <linux/key.h> #include <linux/times.h> #include <linux/posix-timers.h> #include <linux/security.h> #include <linux/dcookies.h> #include <linux/suspend.h> #include <linux/tty.h> |
7ed20e1ad [PATCH] convert t... |
29 |
#include <linux/signal.h> |
9f46080c4 [PATCH] Process E... |
30 |
#include <linux/cn_proc.h> |
3cfc348bf [PATCH] x86: Add ... |
31 |
#include <linux/getcpu.h> |
6eaeeaba3 getrusage(): fill... |
32 |
#include <linux/task_io_accounting_ops.h> |
1d9d02fee move seccomp from... |
33 |
#include <linux/seccomp.h> |
4047727e5 Fix SMP poweroff ... |
34 |
#include <linux/cpu.h> |
e28cbf229 improve sys_newun... |
35 |
#include <linux/personality.h> |
e3d5a27d5 Allow times and t... |
36 |
#include <linux/ptrace.h> |
5ad4e53bd Get rid of indire... |
37 |
#include <linux/fs_struct.h> |
5a0e3ad6a include cleanup: ... |
38 |
#include <linux/gfp.h> |
1da177e4c Linux-2.6.12-rc2 |
39 40 41 |
#include <linux/compat.h> #include <linux/syscalls.h> |
00d7c05ab [PATCH] kprobes: ... |
42 |
#include <linux/kprobes.h> |
acce292c8 user namespace: a... |
43 |
#include <linux/user_namespace.h> |
1da177e4c Linux-2.6.12-rc2 |
44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 |
#include <asm/uaccess.h> #include <asm/io.h> #include <asm/unistd.h> #ifndef SET_UNALIGN_CTL # define SET_UNALIGN_CTL(a,b) (-EINVAL) #endif #ifndef GET_UNALIGN_CTL # define GET_UNALIGN_CTL(a,b) (-EINVAL) #endif #ifndef SET_FPEMU_CTL # define SET_FPEMU_CTL(a,b) (-EINVAL) #endif #ifndef GET_FPEMU_CTL # define GET_FPEMU_CTL(a,b) (-EINVAL) #endif #ifndef SET_FPEXC_CTL # define SET_FPEXC_CTL(a,b) (-EINVAL) #endif #ifndef GET_FPEXC_CTL # define GET_FPEXC_CTL(a,b) (-EINVAL) #endif |
651d765d0 [PATCH] Add a prc... |
67 68 69 70 71 72 |
#ifndef GET_ENDIAN # define GET_ENDIAN(a,b) (-EINVAL) #endif #ifndef SET_ENDIAN # define SET_ENDIAN(a,b) (-EINVAL) #endif |
8fb402bcc generic, x86: add... |
73 74 75 76 77 78 |
#ifndef GET_TSC_CTL # define GET_TSC_CTL(a) (-EINVAL) #endif #ifndef SET_TSC_CTL # define SET_TSC_CTL(a) (-EINVAL) #endif |
1da177e4c Linux-2.6.12-rc2 |
79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 |
/* * this is where the system-wide overflow UID and GID are defined, for * architectures that now have 32-bit UID/GID but didn't in the past */ int overflowuid = DEFAULT_OVERFLOWUID; int overflowgid = DEFAULT_OVERFLOWGID; #ifdef CONFIG_UID16 EXPORT_SYMBOL(overflowuid); EXPORT_SYMBOL(overflowgid); #endif /* * the same as above, but for filesystems which can only store a 16-bit * UID and GID. as such, this is needed on all architectures */ int fs_overflowuid = DEFAULT_FS_OVERFLOWUID; int fs_overflowgid = DEFAULT_FS_OVERFLOWUID; EXPORT_SYMBOL(fs_overflowuid); EXPORT_SYMBOL(fs_overflowgid); /* * this indicates whether you can reboot with ctrl-alt-del: the default is yes */ int C_A_D = 1; |
9ec52099e [PATCH] replace c... |
109 110 |
struct pid *cad_pid; EXPORT_SYMBOL(cad_pid); |
1da177e4c Linux-2.6.12-rc2 |
111 112 |
/* |
bd804eba1 PM: Introduce pm_... |
113 114 115 116 |
* If set, this is used for preparing the system to power off. */ void (*pm_power_off_prepare)(void); |
bd804eba1 PM: Introduce pm_... |
117 |
|
c69e8d9c0 CRED: Use RCU to ... |
118 119 120 121 |
/* * set the priority of a task * - the caller must hold the RCU read lock */ |
1da177e4c Linux-2.6.12-rc2 |
122 123 |
static int set_one_prio(struct task_struct *p, int niceval, int error) { |
c69e8d9c0 CRED: Use RCU to ... |
124 |
const struct cred *cred = current_cred(), *pcred = __task_cred(p); |
1da177e4c Linux-2.6.12-rc2 |
125 |
int no_nice; |
c69e8d9c0 CRED: Use RCU to ... |
126 127 |
if (pcred->uid != cred->euid && pcred->euid != cred->euid && !capable(CAP_SYS_NICE)) { |
1da177e4c Linux-2.6.12-rc2 |
128 129 130 |
error = -EPERM; goto out; } |
e43379f10 [PATCH] nice and ... |
131 |
if (niceval < task_nice(p) && !can_nice(p, niceval)) { |
1da177e4c Linux-2.6.12-rc2 |
132 133 134 135 136 137 138 139 140 141 142 143 144 145 |
error = -EACCES; goto out; } no_nice = security_task_setnice(p, niceval); if (no_nice) { error = no_nice; goto out; } if (error == -ESRCH) error = 0; set_user_nice(p, niceval); out: return error; } |
754fe8d29 [CVE-2009-0029] S... |
146 |
SYSCALL_DEFINE3(setpriority, int, which, int, who, int, niceval) |
1da177e4c Linux-2.6.12-rc2 |
147 148 149 |
{ struct task_struct *g, *p; struct user_struct *user; |
86a264abe CRED: Wrap curren... |
150 |
const struct cred *cred = current_cred(); |
1da177e4c Linux-2.6.12-rc2 |
151 |
int error = -EINVAL; |
41487c65b [PATCH] pid: repl... |
152 |
struct pid *pgrp; |
1da177e4c Linux-2.6.12-rc2 |
153 |
|
3e88c553d use defines in sy... |
154 |
if (which > PRIO_USER || which < PRIO_PROCESS) |
1da177e4c Linux-2.6.12-rc2 |
155 156 157 158 159 160 161 162 |
goto out; /* normalize: avoid signed division (rounding problems) */ error = -ESRCH; if (niceval < -20) niceval = -20; if (niceval > 19) niceval = 19; |
d4581a239 sys: Fix missing ... |
163 |
rcu_read_lock(); |
1da177e4c Linux-2.6.12-rc2 |
164 165 166 |
read_lock(&tasklist_lock); switch (which) { case PRIO_PROCESS: |
41487c65b [PATCH] pid: repl... |
167 |
if (who) |
228ebcbe6 Uninline find_tas... |
168 |
p = find_task_by_vpid(who); |
41487c65b [PATCH] pid: repl... |
169 170 |
else p = current; |
1da177e4c Linux-2.6.12-rc2 |
171 172 173 174 |
if (p) error = set_one_prio(p, niceval, error); break; case PRIO_PGRP: |
41487c65b [PATCH] pid: repl... |
175 |
if (who) |
b488893a3 pid namespaces: c... |
176 |
pgrp = find_vpid(who); |
41487c65b [PATCH] pid: repl... |
177 178 |
else pgrp = task_pgrp(current); |
2d70b68d4 fix setpriority(P... |
179 |
do_each_pid_thread(pgrp, PIDTYPE_PGID, p) { |
1da177e4c Linux-2.6.12-rc2 |
180 |
error = set_one_prio(p, niceval, error); |
2d70b68d4 fix setpriority(P... |
181 |
} while_each_pid_thread(pgrp, PIDTYPE_PGID, p); |
1da177e4c Linux-2.6.12-rc2 |
182 183 |
break; case PRIO_USER: |
d84f4f992 CRED: Inaugurate ... |
184 |
user = (struct user_struct *) cred->user; |
1da177e4c Linux-2.6.12-rc2 |
185 |
if (!who) |
86a264abe CRED: Wrap curren... |
186 187 188 189 |
who = cred->uid; else if ((who != cred->uid) && !(user = find_user(who))) goto out_unlock; /* No processes for this user */ |
1da177e4c Linux-2.6.12-rc2 |
190 |
|
dfc6a736d kernel/sys.c: fix... |
191 |
do_each_thread(g, p) { |
86a264abe CRED: Wrap curren... |
192 |
if (__task_cred(p)->uid == who) |
1da177e4c Linux-2.6.12-rc2 |
193 |
error = set_one_prio(p, niceval, error); |
dfc6a736d kernel/sys.c: fix... |
194 |
} while_each_thread(g, p); |
86a264abe CRED: Wrap curren... |
195 |
if (who != cred->uid) |
1da177e4c Linux-2.6.12-rc2 |
196 197 198 199 200 |
free_uid(user); /* For find_user() */ break; } out_unlock: read_unlock(&tasklist_lock); |
d4581a239 sys: Fix missing ... |
201 |
rcu_read_unlock(); |
1da177e4c Linux-2.6.12-rc2 |
202 203 204 205 206 207 208 209 210 211 |
out: return error; } /* * Ugh. To avoid negative return values, "getpriority()" will * not return the normal nice-value, but a negated value that * has been offset by 20 (ie it returns 40..1 instead of -20..19) * to stay compatible. */ |
754fe8d29 [CVE-2009-0029] S... |
212 |
SYSCALL_DEFINE2(getpriority, int, which, int, who) |
1da177e4c Linux-2.6.12-rc2 |
213 214 215 |
{ struct task_struct *g, *p; struct user_struct *user; |
86a264abe CRED: Wrap curren... |
216 |
const struct cred *cred = current_cred(); |
1da177e4c Linux-2.6.12-rc2 |
217 |
long niceval, retval = -ESRCH; |
41487c65b [PATCH] pid: repl... |
218 |
struct pid *pgrp; |
1da177e4c Linux-2.6.12-rc2 |
219 |
|
3e88c553d use defines in sy... |
220 |
if (which > PRIO_USER || which < PRIO_PROCESS) |
1da177e4c Linux-2.6.12-rc2 |
221 |
return -EINVAL; |
701188374 kernel/sys.c: fix... |
222 |
rcu_read_lock(); |
1da177e4c Linux-2.6.12-rc2 |
223 224 225 |
read_lock(&tasklist_lock); switch (which) { case PRIO_PROCESS: |
41487c65b [PATCH] pid: repl... |
226 |
if (who) |
228ebcbe6 Uninline find_tas... |
227 |
p = find_task_by_vpid(who); |
41487c65b [PATCH] pid: repl... |
228 229 |
else p = current; |
1da177e4c Linux-2.6.12-rc2 |
230 231 232 233 234 235 236 |
if (p) { niceval = 20 - task_nice(p); if (niceval > retval) retval = niceval; } break; case PRIO_PGRP: |
41487c65b [PATCH] pid: repl... |
237 |
if (who) |
b488893a3 pid namespaces: c... |
238 |
pgrp = find_vpid(who); |
41487c65b [PATCH] pid: repl... |
239 240 |
else pgrp = task_pgrp(current); |
2d70b68d4 fix setpriority(P... |
241 |
do_each_pid_thread(pgrp, PIDTYPE_PGID, p) { |
1da177e4c Linux-2.6.12-rc2 |
242 243 244 |
niceval = 20 - task_nice(p); if (niceval > retval) retval = niceval; |
2d70b68d4 fix setpriority(P... |
245 |
} while_each_pid_thread(pgrp, PIDTYPE_PGID, p); |
1da177e4c Linux-2.6.12-rc2 |
246 247 |
break; case PRIO_USER: |
86a264abe CRED: Wrap curren... |
248 |
user = (struct user_struct *) cred->user; |
1da177e4c Linux-2.6.12-rc2 |
249 |
if (!who) |
86a264abe CRED: Wrap curren... |
250 251 252 253 |
who = cred->uid; else if ((who != cred->uid) && !(user = find_user(who))) goto out_unlock; /* No processes for this user */ |
1da177e4c Linux-2.6.12-rc2 |
254 |
|
dfc6a736d kernel/sys.c: fix... |
255 |
do_each_thread(g, p) { |
86a264abe CRED: Wrap curren... |
256 |
if (__task_cred(p)->uid == who) { |
1da177e4c Linux-2.6.12-rc2 |
257 258 259 260 |
niceval = 20 - task_nice(p); if (niceval > retval) retval = niceval; } |
dfc6a736d kernel/sys.c: fix... |
261 |
} while_each_thread(g, p); |
86a264abe CRED: Wrap curren... |
262 |
if (who != cred->uid) |
1da177e4c Linux-2.6.12-rc2 |
263 264 265 266 267 |
free_uid(user); /* for find_user() */ break; } out_unlock: read_unlock(&tasklist_lock); |
701188374 kernel/sys.c: fix... |
268 |
rcu_read_unlock(); |
1da177e4c Linux-2.6.12-rc2 |
269 270 271 |
return retval; } |
e4c94330e [PATCH] reboot: c... |
272 273 274 275 276 277 278 279 |
/** * emergency_restart - reboot the system * * Without shutting down any hardware or taking any locks * reboot the system. This is called when we know we are in * trouble so this is our best effort to reboot. This is * safe to call in interrupt context. */ |
7c9034735 [PATCH] Add emerg... |
280 281 282 283 284 |
void emergency_restart(void) { machine_emergency_restart(); } EXPORT_SYMBOL_GPL(emergency_restart); |
ca195b7f6 kexec jump: remov... |
285 |
void kernel_restart_prepare(char *cmd) |
4a00ea1e1 [PATCH] Refactor ... |
286 |
{ |
e041c6834 [PATCH] Notifier ... |
287 |
blocking_notifier_call_chain(&reboot_notifier_list, SYS_RESTART, cmd); |
4a00ea1e1 [PATCH] Refactor ... |
288 |
system_state = SYSTEM_RESTART; |
4a00ea1e1 [PATCH] Refactor ... |
289 |
device_shutdown(); |
58b3b71df Fix ThinkPad T42 ... |
290 |
sysdev_shutdown(); |
e4c94330e [PATCH] reboot: c... |
291 |
} |
1e5d53314 [PATCH] more kern... |
292 293 294 295 |
/** * kernel_restart - reboot the system * @cmd: pointer to buffer containing command to execute for restart |
b8887e6e8 [PATCH] kernel-do... |
296 |
* or %NULL |
1e5d53314 [PATCH] more kern... |
297 298 299 300 |
* * Shutdown everything and perform a clean reboot. * This is not safe to call in interrupt context. */ |
e4c94330e [PATCH] reboot: c... |
301 302 303 |
void kernel_restart(char *cmd) { kernel_restart_prepare(cmd); |
756184b7d [PATCH] CodingSty... |
304 |
if (!cmd) |
4a00ea1e1 [PATCH] Refactor ... |
305 306 |
printk(KERN_EMERG "Restarting system. "); |
756184b7d [PATCH] CodingSty... |
307 |
else |
4a00ea1e1 [PATCH] Refactor ... |
308 309 |
printk(KERN_EMERG "Restarting system with command '%s'. ", cmd); |
4a00ea1e1 [PATCH] Refactor ... |
310 311 312 |
machine_restart(cmd); } EXPORT_SYMBOL_GPL(kernel_restart); |
4ef7229ff make kernel_shutd... |
313 |
static void kernel_shutdown_prepare(enum system_states state) |
729b4d4ce [ACPI] fix reboot... |
314 |
{ |
e041c6834 [PATCH] Notifier ... |
315 |
blocking_notifier_call_chain(&reboot_notifier_list, |
729b4d4ce [ACPI] fix reboot... |
316 317 318 319 |
(state == SYSTEM_HALT)?SYS_HALT:SYS_POWER_OFF, NULL); system_state = state; device_shutdown(); } |
e4c94330e [PATCH] reboot: c... |
320 321 322 323 324 |
/** * kernel_halt - halt the system * * Shutdown everything and perform a clean system halt. */ |
e4c94330e [PATCH] reboot: c... |
325 326 |
void kernel_halt(void) { |
729b4d4ce [ACPI] fix reboot... |
327 |
kernel_shutdown_prepare(SYSTEM_HALT); |
58b3b71df Fix ThinkPad T42 ... |
328 |
sysdev_shutdown(); |
4a00ea1e1 [PATCH] Refactor ... |
329 330 331 332 |
printk(KERN_EMERG "System halted. "); machine_halt(); } |
729b4d4ce [ACPI] fix reboot... |
333 |
|
4a00ea1e1 [PATCH] Refactor ... |
334 |
EXPORT_SYMBOL_GPL(kernel_halt); |
e4c94330e [PATCH] reboot: c... |
335 336 337 338 339 |
/** * kernel_power_off - power_off the system * * Shutdown everything and perform a clean system power_off. */ |
e4c94330e [PATCH] reboot: c... |
340 341 |
void kernel_power_off(void) { |
729b4d4ce [ACPI] fix reboot... |
342 |
kernel_shutdown_prepare(SYSTEM_POWER_OFF); |
bd804eba1 PM: Introduce pm_... |
343 344 |
if (pm_power_off_prepare) pm_power_off_prepare(); |
4047727e5 Fix SMP poweroff ... |
345 |
disable_nonboot_cpus(); |
58b3b71df Fix ThinkPad T42 ... |
346 |
sysdev_shutdown(); |
4a00ea1e1 [PATCH] Refactor ... |
347 348 349 350 351 |
printk(KERN_EMERG "Power down. "); machine_power_off(); } EXPORT_SYMBOL_GPL(kernel_power_off); |
6f15fa500 sys: Remove BKL f... |
352 353 |
static DEFINE_MUTEX(reboot_mutex); |
1da177e4c Linux-2.6.12-rc2 |
354 355 356 357 358 359 360 361 |
/* * Reboot system call: for obvious reasons only root may call it, * and even root needs to set up some magic numbers in the registers * so that some mistake won't make this reboot the whole machine. * You can also set the meaning of the ctrl-alt-del-key here. * * reboot doesn't sync: do that yourself before calling this. */ |
754fe8d29 [CVE-2009-0029] S... |
362 363 |
SYSCALL_DEFINE4(reboot, int, magic1, int, magic2, unsigned int, cmd, void __user *, arg) |
1da177e4c Linux-2.6.12-rc2 |
364 365 |
{ char buffer[256]; |
3d26dcf76 kernel/sys.c: cle... |
366 |
int ret = 0; |
1da177e4c Linux-2.6.12-rc2 |
367 368 369 370 371 372 373 374 375 376 377 378 |
/* We only trust the superuser with rebooting the system. */ if (!capable(CAP_SYS_BOOT)) return -EPERM; /* For safety, we require "magic" arguments. */ if (magic1 != LINUX_REBOOT_MAGIC1 || (magic2 != LINUX_REBOOT_MAGIC2 && magic2 != LINUX_REBOOT_MAGIC2A && magic2 != LINUX_REBOOT_MAGIC2B && magic2 != LINUX_REBOOT_MAGIC2C)) return -EINVAL; |
5e38291d8 [PATCH] Don't att... |
379 380 381 382 383 |
/* Instead of trying to make the power_off code look like * halt when pm_power_off is not set do it the easy way. */ if ((cmd == LINUX_REBOOT_CMD_POWER_OFF) && !pm_power_off) cmd = LINUX_REBOOT_CMD_HALT; |
6f15fa500 sys: Remove BKL f... |
384 |
mutex_lock(&reboot_mutex); |
1da177e4c Linux-2.6.12-rc2 |
385 386 |
switch (cmd) { case LINUX_REBOOT_CMD_RESTART: |
4a00ea1e1 [PATCH] Refactor ... |
387 |
kernel_restart(NULL); |
1da177e4c Linux-2.6.12-rc2 |
388 389 390 391 392 393 394 395 396 397 398 |
break; case LINUX_REBOOT_CMD_CAD_ON: C_A_D = 1; break; case LINUX_REBOOT_CMD_CAD_OFF: C_A_D = 0; break; case LINUX_REBOOT_CMD_HALT: |
4a00ea1e1 [PATCH] Refactor ... |
399 |
kernel_halt(); |
1da177e4c Linux-2.6.12-rc2 |
400 |
do_exit(0); |
3d26dcf76 kernel/sys.c: cle... |
401 |
panic("cannot halt"); |
1da177e4c Linux-2.6.12-rc2 |
402 403 |
case LINUX_REBOOT_CMD_POWER_OFF: |
4a00ea1e1 [PATCH] Refactor ... |
404 |
kernel_power_off(); |
1da177e4c Linux-2.6.12-rc2 |
405 406 407 408 409 |
do_exit(0); break; case LINUX_REBOOT_CMD_RESTART2: if (strncpy_from_user(&buffer[0], arg, sizeof(buffer) - 1) < 0) { |
6f15fa500 sys: Remove BKL f... |
410 411 |
ret = -EFAULT; break; |
1da177e4c Linux-2.6.12-rc2 |
412 413 |
} buffer[sizeof(buffer) - 1] = '\0'; |
4a00ea1e1 [PATCH] Refactor ... |
414 |
kernel_restart(buffer); |
1da177e4c Linux-2.6.12-rc2 |
415 |
break; |
3ab835213 kexec jump |
416 |
#ifdef CONFIG_KEXEC |
dc009d924 [PATCH] kexec: ad... |
417 |
case LINUX_REBOOT_CMD_KEXEC: |
3d26dcf76 kernel/sys.c: cle... |
418 419 |
ret = kernel_kexec(); break; |
3ab835213 kexec jump |
420 |
#endif |
4a00ea1e1 [PATCH] Refactor ... |
421 |
|
b0cb1a19d Replace CONFIG_SO... |
422 |
#ifdef CONFIG_HIBERNATION |
1da177e4c Linux-2.6.12-rc2 |
423 |
case LINUX_REBOOT_CMD_SW_SUSPEND: |
3d26dcf76 kernel/sys.c: cle... |
424 425 |
ret = hibernate(); break; |
1da177e4c Linux-2.6.12-rc2 |
426 427 428 |
#endif default: |
3d26dcf76 kernel/sys.c: cle... |
429 430 |
ret = -EINVAL; break; |
1da177e4c Linux-2.6.12-rc2 |
431 |
} |
6f15fa500 sys: Remove BKL f... |
432 |
mutex_unlock(&reboot_mutex); |
3d26dcf76 kernel/sys.c: cle... |
433 |
return ret; |
1da177e4c Linux-2.6.12-rc2 |
434 |
} |
65f27f384 WorkStruct: Pass ... |
435 |
static void deferred_cad(struct work_struct *dummy) |
1da177e4c Linux-2.6.12-rc2 |
436 |
{ |
abcd9e51f [PATCH] Make ctrl... |
437 |
kernel_restart(NULL); |
1da177e4c Linux-2.6.12-rc2 |
438 439 440 441 442 443 444 445 446 |
} /* * This function gets called by ctrl-alt-del - ie the keyboard interrupt. * As it's called within an interrupt, it may NOT sync: the only choice * is whether to reboot at once, or just ignore the ctrl-alt-del. */ void ctrl_alt_del(void) { |
65f27f384 WorkStruct: Pass ... |
447 |
static DECLARE_WORK(cad_work, deferred_cad); |
1da177e4c Linux-2.6.12-rc2 |
448 449 450 451 |
if (C_A_D) schedule_work(&cad_work); else |
9ec52099e [PATCH] replace c... |
452 |
kill_cad_pid(SIGINT, 1); |
1da177e4c Linux-2.6.12-rc2 |
453 454 |
} |
1da177e4c Linux-2.6.12-rc2 |
455 456 457 458 459 460 461 462 463 464 465 466 467 468 469 470 471 472 |
/* * Unprivileged users may change the real gid to the effective gid * or vice versa. (BSD-style) * * If you set the real gid at all, or set the effective gid to a value not * equal to the real gid, then the saved gid is set to the new effective gid. * * This makes it possible for a setgid program to completely drop its * privileges, which is often a useful assertion to make when you are doing * a security audit over a program. * * The general idea is that a program which uses just setregid() will be * 100% compatible with BSD. A program which uses just setgid() will be * 100% compatible with POSIX with saved IDs. * * SMP: There are not races, the GIDs are checked only by filesystem * operations (as far as semantic preservation is concerned). */ |
ae1251ab7 [CVE-2009-0029] S... |
473 |
SYSCALL_DEFINE2(setregid, gid_t, rgid, gid_t, egid) |
1da177e4c Linux-2.6.12-rc2 |
474 |
{ |
d84f4f992 CRED: Inaugurate ... |
475 476 |
const struct cred *old; struct cred *new; |
1da177e4c Linux-2.6.12-rc2 |
477 |
int retval; |
d84f4f992 CRED: Inaugurate ... |
478 479 480 481 |
new = prepare_creds(); if (!new) return -ENOMEM; old = current_cred(); |
d84f4f992 CRED: Inaugurate ... |
482 |
retval = -EPERM; |
1da177e4c Linux-2.6.12-rc2 |
483 |
if (rgid != (gid_t) -1) { |
d84f4f992 CRED: Inaugurate ... |
484 485 |
if (old->gid == rgid || old->egid == rgid || |
1da177e4c Linux-2.6.12-rc2 |
486 |
capable(CAP_SETGID)) |
d84f4f992 CRED: Inaugurate ... |
487 |
new->gid = rgid; |
1da177e4c Linux-2.6.12-rc2 |
488 |
else |
d84f4f992 CRED: Inaugurate ... |
489 |
goto error; |
1da177e4c Linux-2.6.12-rc2 |
490 491 |
} if (egid != (gid_t) -1) { |
d84f4f992 CRED: Inaugurate ... |
492 493 494 |
if (old->gid == egid || old->egid == egid || old->sgid == egid || |
1da177e4c Linux-2.6.12-rc2 |
495 |
capable(CAP_SETGID)) |
d84f4f992 CRED: Inaugurate ... |
496 |
new->egid = egid; |
756184b7d [PATCH] CodingSty... |
497 |
else |
d84f4f992 CRED: Inaugurate ... |
498 |
goto error; |
1da177e4c Linux-2.6.12-rc2 |
499 |
} |
d84f4f992 CRED: Inaugurate ... |
500 |
|
1da177e4c Linux-2.6.12-rc2 |
501 |
if (rgid != (gid_t) -1 || |
d84f4f992 CRED: Inaugurate ... |
502 503 504 505 506 507 508 509 510 |
(egid != (gid_t) -1 && egid != old->gid)) new->sgid = new->egid; new->fsgid = new->egid; return commit_creds(new); error: abort_creds(new); return retval; |
1da177e4c Linux-2.6.12-rc2 |
511 512 513 514 515 516 517 |
} /* * setgid() is implemented like SysV w/ SAVED_IDS * * SMP: Same implicit races as above. */ |
ae1251ab7 [CVE-2009-0029] S... |
518 |
SYSCALL_DEFINE1(setgid, gid_t, gid) |
1da177e4c Linux-2.6.12-rc2 |
519 |
{ |
d84f4f992 CRED: Inaugurate ... |
520 521 |
const struct cred *old; struct cred *new; |
1da177e4c Linux-2.6.12-rc2 |
522 |
int retval; |
d84f4f992 CRED: Inaugurate ... |
523 524 525 526 |
new = prepare_creds(); if (!new) return -ENOMEM; old = current_cred(); |
d84f4f992 CRED: Inaugurate ... |
527 528 529 530 531 |
retval = -EPERM; if (capable(CAP_SETGID)) new->gid = new->egid = new->sgid = new->fsgid = gid; else if (gid == old->gid || gid == old->sgid) new->egid = new->fsgid = gid; |
1da177e4c Linux-2.6.12-rc2 |
532 |
else |
d84f4f992 CRED: Inaugurate ... |
533 |
goto error; |
1da177e4c Linux-2.6.12-rc2 |
534 |
|
d84f4f992 CRED: Inaugurate ... |
535 536 537 538 539 |
return commit_creds(new); error: abort_creds(new); return retval; |
1da177e4c Linux-2.6.12-rc2 |
540 |
} |
54e991242 sched: don't allo... |
541 |
|
d84f4f992 CRED: Inaugurate ... |
542 543 544 545 |
/* * change the user struct in a credentials set to match the new UID */ static int set_user(struct cred *new) |
1da177e4c Linux-2.6.12-rc2 |
546 547 |
{ struct user_struct *new_user; |
18b6e0414 User namespaces: ... |
548 |
new_user = alloc_uid(current_user_ns(), new->uid); |
1da177e4c Linux-2.6.12-rc2 |
549 550 |
if (!new_user) return -EAGAIN; |
78d7d407b kernel core: use ... |
551 |
if (atomic_read(&new_user->processes) >= rlimit(RLIMIT_NPROC) && |
18b6e0414 User namespaces: ... |
552 |
new_user != INIT_USER) { |
1da177e4c Linux-2.6.12-rc2 |
553 554 555 |
free_uid(new_user); return -EAGAIN; } |
d84f4f992 CRED: Inaugurate ... |
556 557 |
free_uid(new->user); new->user = new_user; |
1da177e4c Linux-2.6.12-rc2 |
558 559 560 561 562 563 564 565 566 567 568 569 570 571 572 573 574 575 |
return 0; } /* * Unprivileged users may change the real uid to the effective uid * or vice versa. (BSD-style) * * If you set the real uid at all, or set the effective uid to a value not * equal to the real uid, then the saved uid is set to the new effective uid. * * This makes it possible for a setuid program to completely drop its * privileges, which is often a useful assertion to make when you are doing * a security audit over a program. * * The general idea is that a program which uses just setreuid() will be * 100% compatible with BSD. A program which uses just setuid() will be * 100% compatible with POSIX with saved IDs. */ |
ae1251ab7 [CVE-2009-0029] S... |
576 |
SYSCALL_DEFINE2(setreuid, uid_t, ruid, uid_t, euid) |
1da177e4c Linux-2.6.12-rc2 |
577 |
{ |
d84f4f992 CRED: Inaugurate ... |
578 579 |
const struct cred *old; struct cred *new; |
1da177e4c Linux-2.6.12-rc2 |
580 |
int retval; |
d84f4f992 CRED: Inaugurate ... |
581 582 583 584 |
new = prepare_creds(); if (!new) return -ENOMEM; old = current_cred(); |
d84f4f992 CRED: Inaugurate ... |
585 |
retval = -EPERM; |
1da177e4c Linux-2.6.12-rc2 |
586 |
if (ruid != (uid_t) -1) { |
d84f4f992 CRED: Inaugurate ... |
587 588 589 |
new->uid = ruid; if (old->uid != ruid && old->euid != ruid && |
1da177e4c Linux-2.6.12-rc2 |
590 |
!capable(CAP_SETUID)) |
d84f4f992 CRED: Inaugurate ... |
591 |
goto error; |
1da177e4c Linux-2.6.12-rc2 |
592 593 594 |
} if (euid != (uid_t) -1) { |
d84f4f992 CRED: Inaugurate ... |
595 596 597 598 |
new->euid = euid; if (old->uid != euid && old->euid != euid && old->suid != euid && |
1da177e4c Linux-2.6.12-rc2 |
599 |
!capable(CAP_SETUID)) |
d84f4f992 CRED: Inaugurate ... |
600 |
goto error; |
1da177e4c Linux-2.6.12-rc2 |
601 |
} |
54e991242 sched: don't allo... |
602 603 604 605 606 |
if (new->uid != old->uid) { retval = set_user(new); if (retval < 0) goto error; } |
1da177e4c Linux-2.6.12-rc2 |
607 |
if (ruid != (uid_t) -1 || |
d84f4f992 CRED: Inaugurate ... |
608 609 610 |
(euid != (uid_t) -1 && euid != old->uid)) new->suid = new->euid; new->fsuid = new->euid; |
1da177e4c Linux-2.6.12-rc2 |
611 |
|
d84f4f992 CRED: Inaugurate ... |
612 613 614 |
retval = security_task_fix_setuid(new, old, LSM_SETID_RE); if (retval < 0) goto error; |
1da177e4c Linux-2.6.12-rc2 |
615 |
|
d84f4f992 CRED: Inaugurate ... |
616 |
return commit_creds(new); |
1da177e4c Linux-2.6.12-rc2 |
617 |
|
d84f4f992 CRED: Inaugurate ... |
618 619 620 621 |
error: abort_creds(new); return retval; } |
1da177e4c Linux-2.6.12-rc2 |
622 623 624 625 626 627 628 629 630 631 632 633 |
/* * setuid() is implemented like SysV with SAVED_IDS * * Note that SAVED_ID's is deficient in that a setuid root program * like sendmail, for example, cannot set its uid to be a normal * user and then switch back, because if you're root, setuid() sets * the saved uid too. If you don't like this, blame the bright people * in the POSIX committee and/or USG. Note that the BSD-style setreuid() * will allow a root program to temporarily drop privileges and be able to * regain them by swapping the real and effective uid. */ |
ae1251ab7 [CVE-2009-0029] S... |
634 |
SYSCALL_DEFINE1(setuid, uid_t, uid) |
1da177e4c Linux-2.6.12-rc2 |
635 |
{ |
d84f4f992 CRED: Inaugurate ... |
636 637 |
const struct cred *old; struct cred *new; |
1da177e4c Linux-2.6.12-rc2 |
638 |
int retval; |
d84f4f992 CRED: Inaugurate ... |
639 640 641 642 |
new = prepare_creds(); if (!new) return -ENOMEM; old = current_cred(); |
d84f4f992 CRED: Inaugurate ... |
643 |
retval = -EPERM; |
1da177e4c Linux-2.6.12-rc2 |
644 |
if (capable(CAP_SETUID)) { |
d84f4f992 CRED: Inaugurate ... |
645 |
new->suid = new->uid = uid; |
54e991242 sched: don't allo... |
646 647 648 649 |
if (uid != old->uid) { retval = set_user(new); if (retval < 0) goto error; |
d84f4f992 CRED: Inaugurate ... |
650 651 652 |
} } else if (uid != old->uid && uid != new->suid) { goto error; |
1da177e4c Linux-2.6.12-rc2 |
653 |
} |
1da177e4c Linux-2.6.12-rc2 |
654 |
|
d84f4f992 CRED: Inaugurate ... |
655 656 657 658 659 |
new->fsuid = new->euid = uid; retval = security_task_fix_setuid(new, old, LSM_SETID_ID); if (retval < 0) goto error; |
1da177e4c Linux-2.6.12-rc2 |
660 |
|
d84f4f992 CRED: Inaugurate ... |
661 |
return commit_creds(new); |
1da177e4c Linux-2.6.12-rc2 |
662 |
|
d84f4f992 CRED: Inaugurate ... |
663 664 665 |
error: abort_creds(new); return retval; |
1da177e4c Linux-2.6.12-rc2 |
666 667 668 669 670 671 672 |
} /* * This function implements a generic ability to update ruid, euid, * and suid. This allows you to implement the 4.4 compatible seteuid(). */ |
ae1251ab7 [CVE-2009-0029] S... |
673 |
SYSCALL_DEFINE3(setresuid, uid_t, ruid, uid_t, euid, uid_t, suid) |
1da177e4c Linux-2.6.12-rc2 |
674 |
{ |
d84f4f992 CRED: Inaugurate ... |
675 676 |
const struct cred *old; struct cred *new; |
1da177e4c Linux-2.6.12-rc2 |
677 |
int retval; |
d84f4f992 CRED: Inaugurate ... |
678 679 680 |
new = prepare_creds(); if (!new) return -ENOMEM; |
d84f4f992 CRED: Inaugurate ... |
681 |
old = current_cred(); |
1da177e4c Linux-2.6.12-rc2 |
682 |
|
d84f4f992 CRED: Inaugurate ... |
683 |
retval = -EPERM; |
1da177e4c Linux-2.6.12-rc2 |
684 |
if (!capable(CAP_SETUID)) { |
d84f4f992 CRED: Inaugurate ... |
685 686 687 688 689 690 691 692 693 |
if (ruid != (uid_t) -1 && ruid != old->uid && ruid != old->euid && ruid != old->suid) goto error; if (euid != (uid_t) -1 && euid != old->uid && euid != old->euid && euid != old->suid) goto error; if (suid != (uid_t) -1 && suid != old->uid && suid != old->euid && suid != old->suid) goto error; |
1da177e4c Linux-2.6.12-rc2 |
694 |
} |
d84f4f992 CRED: Inaugurate ... |
695 |
|
1da177e4c Linux-2.6.12-rc2 |
696 |
if (ruid != (uid_t) -1) { |
d84f4f992 CRED: Inaugurate ... |
697 |
new->uid = ruid; |
54e991242 sched: don't allo... |
698 699 700 701 702 |
if (ruid != old->uid) { retval = set_user(new); if (retval < 0) goto error; } |
1da177e4c Linux-2.6.12-rc2 |
703 |
} |
d84f4f992 CRED: Inaugurate ... |
704 705 |
if (euid != (uid_t) -1) new->euid = euid; |
1da177e4c Linux-2.6.12-rc2 |
706 |
if (suid != (uid_t) -1) |
d84f4f992 CRED: Inaugurate ... |
707 708 |
new->suid = suid; new->fsuid = new->euid; |
1da177e4c Linux-2.6.12-rc2 |
709 |
|
d84f4f992 CRED: Inaugurate ... |
710 711 712 |
retval = security_task_fix_setuid(new, old, LSM_SETID_RES); if (retval < 0) goto error; |
1da177e4c Linux-2.6.12-rc2 |
713 |
|
d84f4f992 CRED: Inaugurate ... |
714 |
return commit_creds(new); |
1da177e4c Linux-2.6.12-rc2 |
715 |
|
d84f4f992 CRED: Inaugurate ... |
716 717 718 |
error: abort_creds(new); return retval; |
1da177e4c Linux-2.6.12-rc2 |
719 |
} |
dbf040d9d [CVE-2009-0029] S... |
720 |
SYSCALL_DEFINE3(getresuid, uid_t __user *, ruid, uid_t __user *, euid, uid_t __user *, suid) |
1da177e4c Linux-2.6.12-rc2 |
721 |
{ |
86a264abe CRED: Wrap curren... |
722 |
const struct cred *cred = current_cred(); |
1da177e4c Linux-2.6.12-rc2 |
723 |
int retval; |
86a264abe CRED: Wrap curren... |
724 725 |
if (!(retval = put_user(cred->uid, ruid)) && !(retval = put_user(cred->euid, euid))) |
b6dff3ec5 CRED: Separate ta... |
726 |
retval = put_user(cred->suid, suid); |
1da177e4c Linux-2.6.12-rc2 |
727 728 729 730 731 732 733 |
return retval; } /* * Same as above, but for rgid, egid, sgid. */ |
ae1251ab7 [CVE-2009-0029] S... |
734 |
SYSCALL_DEFINE3(setresgid, gid_t, rgid, gid_t, egid, gid_t, sgid) |
1da177e4c Linux-2.6.12-rc2 |
735 |
{ |
d84f4f992 CRED: Inaugurate ... |
736 737 |
const struct cred *old; struct cred *new; |
1da177e4c Linux-2.6.12-rc2 |
738 |
int retval; |
d84f4f992 CRED: Inaugurate ... |
739 740 741 742 |
new = prepare_creds(); if (!new) return -ENOMEM; old = current_cred(); |
d84f4f992 CRED: Inaugurate ... |
743 |
retval = -EPERM; |
1da177e4c Linux-2.6.12-rc2 |
744 |
if (!capable(CAP_SETGID)) { |
d84f4f992 CRED: Inaugurate ... |
745 746 747 748 749 750 751 752 753 |
if (rgid != (gid_t) -1 && rgid != old->gid && rgid != old->egid && rgid != old->sgid) goto error; if (egid != (gid_t) -1 && egid != old->gid && egid != old->egid && egid != old->sgid) goto error; if (sgid != (gid_t) -1 && sgid != old->gid && sgid != old->egid && sgid != old->sgid) goto error; |
1da177e4c Linux-2.6.12-rc2 |
754 |
} |
d84f4f992 CRED: Inaugurate ... |
755 |
|
1da177e4c Linux-2.6.12-rc2 |
756 |
if (rgid != (gid_t) -1) |
d84f4f992 CRED: Inaugurate ... |
757 758 759 |
new->gid = rgid; if (egid != (gid_t) -1) new->egid = egid; |
1da177e4c Linux-2.6.12-rc2 |
760 |
if (sgid != (gid_t) -1) |
d84f4f992 CRED: Inaugurate ... |
761 762 |
new->sgid = sgid; new->fsgid = new->egid; |
1da177e4c Linux-2.6.12-rc2 |
763 |
|
d84f4f992 CRED: Inaugurate ... |
764 765 766 767 768 |
return commit_creds(new); error: abort_creds(new); return retval; |
1da177e4c Linux-2.6.12-rc2 |
769 |
} |
dbf040d9d [CVE-2009-0029] S... |
770 |
SYSCALL_DEFINE3(getresgid, gid_t __user *, rgid, gid_t __user *, egid, gid_t __user *, sgid) |
1da177e4c Linux-2.6.12-rc2 |
771 |
{ |
86a264abe CRED: Wrap curren... |
772 |
const struct cred *cred = current_cred(); |
1da177e4c Linux-2.6.12-rc2 |
773 |
int retval; |
86a264abe CRED: Wrap curren... |
774 775 |
if (!(retval = put_user(cred->gid, rgid)) && !(retval = put_user(cred->egid, egid))) |
b6dff3ec5 CRED: Separate ta... |
776 |
retval = put_user(cred->sgid, sgid); |
1da177e4c Linux-2.6.12-rc2 |
777 778 779 780 781 782 783 784 785 786 787 |
return retval; } /* * "setfsuid()" sets the fsuid - the uid used for filesystem checks. This * is used for "access()" and for the NFS daemon (letting nfsd stay at * whatever uid it wants to). It normally shadows "euid", except when * explicitly set by setfsuid() or for access.. */ |
ae1251ab7 [CVE-2009-0029] S... |
788 |
SYSCALL_DEFINE1(setfsuid, uid_t, uid) |
1da177e4c Linux-2.6.12-rc2 |
789 |
{ |
d84f4f992 CRED: Inaugurate ... |
790 791 792 |
const struct cred *old; struct cred *new; uid_t old_fsuid; |
1da177e4c Linux-2.6.12-rc2 |
793 |
|
d84f4f992 CRED: Inaugurate ... |
794 795 796 797 798 |
new = prepare_creds(); if (!new) return current_fsuid(); old = current_cred(); old_fsuid = old->fsuid; |
1da177e4c Linux-2.6.12-rc2 |
799 |
|
d84f4f992 CRED: Inaugurate ... |
800 801 |
if (uid == old->uid || uid == old->euid || uid == old->suid || uid == old->fsuid || |
756184b7d [PATCH] CodingSty... |
802 803 |
capable(CAP_SETUID)) { if (uid != old_fsuid) { |
d84f4f992 CRED: Inaugurate ... |
804 805 806 |
new->fsuid = uid; if (security_task_fix_setuid(new, old, LSM_SETID_FS) == 0) goto change_okay; |
1da177e4c Linux-2.6.12-rc2 |
807 |
} |
1da177e4c Linux-2.6.12-rc2 |
808 |
} |
d84f4f992 CRED: Inaugurate ... |
809 810 |
abort_creds(new); return old_fsuid; |
1da177e4c Linux-2.6.12-rc2 |
811 |
|
d84f4f992 CRED: Inaugurate ... |
812 813 |
change_okay: commit_creds(new); |
1da177e4c Linux-2.6.12-rc2 |
814 815 816 817 |
return old_fsuid; } /* |
f42df9e65 general: convert ... |
818 |
* Samma på svenska.. |
1da177e4c Linux-2.6.12-rc2 |
819 |
*/ |
ae1251ab7 [CVE-2009-0029] S... |
820 |
SYSCALL_DEFINE1(setfsgid, gid_t, gid) |
1da177e4c Linux-2.6.12-rc2 |
821 |
{ |
d84f4f992 CRED: Inaugurate ... |
822 823 824 825 826 827 828 829 830 |
const struct cred *old; struct cred *new; gid_t old_fsgid; new = prepare_creds(); if (!new) return current_fsgid(); old = current_cred(); old_fsgid = old->fsgid; |
1da177e4c Linux-2.6.12-rc2 |
831 |
|
d84f4f992 CRED: Inaugurate ... |
832 833 |
if (gid == old->gid || gid == old->egid || gid == old->sgid || gid == old->fsgid || |
756184b7d [PATCH] CodingSty... |
834 835 |
capable(CAP_SETGID)) { if (gid != old_fsgid) { |
d84f4f992 CRED: Inaugurate ... |
836 837 |
new->fsgid = gid; goto change_okay; |
1da177e4c Linux-2.6.12-rc2 |
838 |
} |
1da177e4c Linux-2.6.12-rc2 |
839 |
} |
d84f4f992 CRED: Inaugurate ... |
840 |
|
d84f4f992 CRED: Inaugurate ... |
841 842 843 844 845 |
abort_creds(new); return old_fsgid; change_okay: commit_creds(new); |
1da177e4c Linux-2.6.12-rc2 |
846 847 |
return old_fsgid; } |
f06febc96 timers: fix itime... |
848 849 |
void do_sys_times(struct tms *tms) { |
0cf55e1ec sched, cputime: I... |
850 |
cputime_t tgutime, tgstime, cutime, cstime; |
f06febc96 timers: fix itime... |
851 |
|
2b5fe6de5 thread_group_cput... |
852 |
spin_lock_irq(¤t->sighand->siglock); |
0cf55e1ec sched, cputime: I... |
853 |
thread_group_times(current, &tgutime, &tgstime); |
f06febc96 timers: fix itime... |
854 855 856 |
cutime = current->signal->cutime; cstime = current->signal->cstime; spin_unlock_irq(¤t->sighand->siglock); |
0cf55e1ec sched, cputime: I... |
857 858 |
tms->tms_utime = cputime_to_clock_t(tgutime); tms->tms_stime = cputime_to_clock_t(tgstime); |
f06febc96 timers: fix itime... |
859 860 861 |
tms->tms_cutime = cputime_to_clock_t(cutime); tms->tms_cstime = cputime_to_clock_t(cstime); } |
58fd3aa28 [CVE-2009-0029] S... |
862 |
SYSCALL_DEFINE1(times, struct tms __user *, tbuf) |
1da177e4c Linux-2.6.12-rc2 |
863 |
{ |
1da177e4c Linux-2.6.12-rc2 |
864 865 |
if (tbuf) { struct tms tmp; |
f06febc96 timers: fix itime... |
866 867 |
do_sys_times(&tmp); |
1da177e4c Linux-2.6.12-rc2 |
868 869 870 |
if (copy_to_user(tbuf, &tmp, sizeof(struct tms))) return -EFAULT; } |
e3d5a27d5 Allow times and t... |
871 |
force_successful_syscall_return(); |
1da177e4c Linux-2.6.12-rc2 |
872 873 874 875 876 877 878 879 880 881 882 883 884 885 886 |
return (long) jiffies_64_to_clock_t(get_jiffies_64()); } /* * This needs some heavy checking ... * I just haven't the stomach for it. I also don't fully * understand sessions/pgrp etc. Let somebody who does explain it. * * OK, I think I have the protection semantics right.... this is really * only important on a multi-user system anyway, to make sure one user * can't send a signal to a process owned by another. -TYT, 12/12/91 * * Auch. Had to add the 'did_exec' flag to conform completely to POSIX. * LBT 04.03.94 */ |
b290ebe2c [CVE-2009-0029] S... |
887 |
SYSCALL_DEFINE2(setpgid, pid_t, pid, pid_t, pgid) |
1da177e4c Linux-2.6.12-rc2 |
888 889 |
{ struct task_struct *p; |
ee0acf90d [PATCH] setpgid: ... |
890 |
struct task_struct *group_leader = current->group_leader; |
4e021306c sys_setpgid(): si... |
891 892 |
struct pid *pgrp; int err; |
1da177e4c Linux-2.6.12-rc2 |
893 894 |
if (!pid) |
b488893a3 pid namespaces: c... |
895 |
pid = task_pid_vnr(group_leader); |
1da177e4c Linux-2.6.12-rc2 |
896 897 898 899 |
if (!pgid) pgid = pid; if (pgid < 0) return -EINVAL; |
950eaaca6 pid: make setpgid... |
900 |
rcu_read_lock(); |
1da177e4c Linux-2.6.12-rc2 |
901 902 903 904 905 906 907 |
/* From this point forward we keep holding onto the tasklist lock * so that our parent does not change from under us. -DaveM */ write_lock_irq(&tasklist_lock); err = -ESRCH; |
4e021306c sys_setpgid(): si... |
908 |
p = find_task_by_vpid(pid); |
1da177e4c Linux-2.6.12-rc2 |
909 910 911 912 913 914 |
if (!p) goto out; err = -EINVAL; if (!thread_group_leader(p)) goto out; |
4e021306c sys_setpgid(): si... |
915 |
if (same_thread_group(p->real_parent, group_leader)) { |
1da177e4c Linux-2.6.12-rc2 |
916 |
err = -EPERM; |
41487c65b [PATCH] pid: repl... |
917 |
if (task_session(p) != task_session(group_leader)) |
1da177e4c Linux-2.6.12-rc2 |
918 919 920 921 922 923 |
goto out; err = -EACCES; if (p->did_exec) goto out; } else { err = -ESRCH; |
ee0acf90d [PATCH] setpgid: ... |
924 |
if (p != group_leader) |
1da177e4c Linux-2.6.12-rc2 |
925 926 927 928 929 930 |
goto out; } err = -EPERM; if (p->signal->leader) goto out; |
4e021306c sys_setpgid(): si... |
931 |
pgrp = task_pid(p); |
1da177e4c Linux-2.6.12-rc2 |
932 |
if (pgid != pid) { |
b488893a3 pid namespaces: c... |
933 |
struct task_struct *g; |
1da177e4c Linux-2.6.12-rc2 |
934 |
|
4e021306c sys_setpgid(): si... |
935 936 |
pgrp = find_vpid(pgid); g = pid_task(pgrp, PIDTYPE_PGID); |
41487c65b [PATCH] pid: repl... |
937 |
if (!g || task_session(g) != task_session(group_leader)) |
f020bc468 [PATCH] sys_setpg... |
938 |
goto out; |
1da177e4c Linux-2.6.12-rc2 |
939 |
} |
1da177e4c Linux-2.6.12-rc2 |
940 941 942 |
err = security_task_setpgid(p, pgid); if (err) goto out; |
1b0f7ffd0 pids: kill signal... |
943 |
if (task_pgrp(p) != pgrp) |
83beaf3c6 pids: sys_setpgid... |
944 |
change_pid(p, PIDTYPE_PGID, pgrp); |
1da177e4c Linux-2.6.12-rc2 |
945 946 947 948 949 |
err = 0; out: /* All paths lead to here, thus we are safe. -DaveM */ write_unlock_irq(&tasklist_lock); |
950eaaca6 pid: make setpgid... |
950 |
rcu_read_unlock(); |
1da177e4c Linux-2.6.12-rc2 |
951 952 |
return err; } |
dbf040d9d [CVE-2009-0029] S... |
953 |
SYSCALL_DEFINE1(getpgid, pid_t, pid) |
1da177e4c Linux-2.6.12-rc2 |
954 |
{ |
12a3de0a9 pids: sys_getpgid... |
955 956 957 958 959 |
struct task_struct *p; struct pid *grp; int retval; rcu_read_lock(); |
756184b7d [PATCH] CodingSty... |
960 |
if (!pid) |
12a3de0a9 pids: sys_getpgid... |
961 |
grp = task_pgrp(current); |
756184b7d [PATCH] CodingSty... |
962 |
else { |
1da177e4c Linux-2.6.12-rc2 |
963 |
retval = -ESRCH; |
12a3de0a9 pids: sys_getpgid... |
964 965 966 967 968 969 970 971 972 973 |
p = find_task_by_vpid(pid); if (!p) goto out; grp = task_pgrp(p); if (!grp) goto out; retval = security_task_getpgid(p); if (retval) goto out; |
1da177e4c Linux-2.6.12-rc2 |
974 |
} |
12a3de0a9 pids: sys_getpgid... |
975 976 977 978 |
retval = pid_vnr(grp); out: rcu_read_unlock(); return retval; |
1da177e4c Linux-2.6.12-rc2 |
979 980 981 |
} #ifdef __ARCH_WANT_SYS_GETPGRP |
dbf040d9d [CVE-2009-0029] S... |
982 |
SYSCALL_DEFINE0(getpgrp) |
1da177e4c Linux-2.6.12-rc2 |
983 |
{ |
12a3de0a9 pids: sys_getpgid... |
984 |
return sys_getpgid(0); |
1da177e4c Linux-2.6.12-rc2 |
985 986 987 |
} #endif |
dbf040d9d [CVE-2009-0029] S... |
988 |
SYSCALL_DEFINE1(getsid, pid_t, pid) |
1da177e4c Linux-2.6.12-rc2 |
989 |
{ |
1dd768c08 pids: sys_getsid:... |
990 991 992 993 994 |
struct task_struct *p; struct pid *sid; int retval; rcu_read_lock(); |
756184b7d [PATCH] CodingSty... |
995 |
if (!pid) |
1dd768c08 pids: sys_getsid:... |
996 |
sid = task_session(current); |
756184b7d [PATCH] CodingSty... |
997 |
else { |
1da177e4c Linux-2.6.12-rc2 |
998 |
retval = -ESRCH; |
1dd768c08 pids: sys_getsid:... |
999 1000 1001 1002 1003 1004 1005 1006 1007 1008 |
p = find_task_by_vpid(pid); if (!p) goto out; sid = task_session(p); if (!sid) goto out; retval = security_task_getsid(p); if (retval) goto out; |
1da177e4c Linux-2.6.12-rc2 |
1009 |
} |
1dd768c08 pids: sys_getsid:... |
1010 1011 1012 1013 |
retval = pid_vnr(sid); out: rcu_read_unlock(); return retval; |
1da177e4c Linux-2.6.12-rc2 |
1014 |
} |
b290ebe2c [CVE-2009-0029] S... |
1015 |
SYSCALL_DEFINE0(setsid) |
1da177e4c Linux-2.6.12-rc2 |
1016 |
{ |
e19f247a3 [PATCH] setpgid: ... |
1017 |
struct task_struct *group_leader = current->group_leader; |
e4cc0a9c8 fix setsid() for ... |
1018 1019 |
struct pid *sid = task_pid(group_leader); pid_t session = pid_vnr(sid); |
1da177e4c Linux-2.6.12-rc2 |
1020 |
int err = -EPERM; |
1da177e4c Linux-2.6.12-rc2 |
1021 |
write_lock_irq(&tasklist_lock); |
390e2ff07 [PATCH] Make sets... |
1022 1023 1024 |
/* Fail if I am already a session leader */ if (group_leader->signal->leader) goto out; |
430c62312 start the global ... |
1025 1026 |
/* Fail if a process group id already exists that equals the * proposed session id. |
390e2ff07 [PATCH] Make sets... |
1027 |
*/ |
6806aac6d sys_setsid: remov... |
1028 |
if (pid_task(sid, PIDTYPE_PGID)) |
1da177e4c Linux-2.6.12-rc2 |
1029 |
goto out; |
e19f247a3 [PATCH] setpgid: ... |
1030 |
group_leader->signal->leader = 1; |
8520d7c7f teach set_special... |
1031 |
__set_special_pids(sid); |
24ec839c4 [PATCH] tty: ->si... |
1032 |
|
9c9f4ded9 tty: Add a kref c... |
1033 |
proc_clear_tty(group_leader); |
24ec839c4 [PATCH] tty: ->si... |
1034 |
|
e4cc0a9c8 fix setsid() for ... |
1035 |
err = session; |
1da177e4c Linux-2.6.12-rc2 |
1036 1037 |
out: write_unlock_irq(&tasklist_lock); |
0d0df599f connector: fix re... |
1038 1039 |
if (err > 0) proc_sid_connector(group_leader); |
1da177e4c Linux-2.6.12-rc2 |
1040 1041 |
return err; } |
1da177e4c Linux-2.6.12-rc2 |
1042 |
DECLARE_RWSEM(uts_sem); |
e28cbf229 improve sys_newun... |
1043 1044 |
#ifdef COMPAT_UTS_MACHINE #define override_architecture(name) \ |
46da27664 kernel/sys.c: fix... |
1045 |
(personality(current->personality) == PER_LINUX32 && \ |
e28cbf229 improve sys_newun... |
1046 1047 1048 1049 1050 |
copy_to_user(name->machine, COMPAT_UTS_MACHINE, \ sizeof(COMPAT_UTS_MACHINE))) #else #define override_architecture(name) 0 #endif |
e48fbb699 [CVE-2009-0029] S... |
1051 |
SYSCALL_DEFINE1(newuname, struct new_utsname __user *, name) |
1da177e4c Linux-2.6.12-rc2 |
1052 1053 1054 1055 |
{ int errno = 0; down_read(&uts_sem); |
e9ff3990f [PATCH] namespace... |
1056 |
if (copy_to_user(name, utsname(), sizeof *name)) |
1da177e4c Linux-2.6.12-rc2 |
1057 1058 |
errno = -EFAULT; up_read(&uts_sem); |
e28cbf229 improve sys_newun... |
1059 1060 1061 |
if (!errno && override_architecture(name)) errno = -EFAULT; |
1da177e4c Linux-2.6.12-rc2 |
1062 1063 |
return errno; } |
5cacdb4ad Add generic sys_o... |
1064 1065 1066 1067 1068 1069 1070 1071 1072 1073 1074 1075 1076 1077 1078 1079 1080 1081 1082 1083 1084 1085 1086 1087 1088 1089 1090 1091 1092 1093 1094 1095 1096 1097 1098 1099 1100 1101 1102 1103 1104 1105 1106 1107 1108 1109 1110 1111 1112 1113 1114 1115 1116 |
#ifdef __ARCH_WANT_SYS_OLD_UNAME /* * Old cruft */ SYSCALL_DEFINE1(uname, struct old_utsname __user *, name) { int error = 0; if (!name) return -EFAULT; down_read(&uts_sem); if (copy_to_user(name, utsname(), sizeof(*name))) error = -EFAULT; up_read(&uts_sem); if (!error && override_architecture(name)) error = -EFAULT; return error; } SYSCALL_DEFINE1(olduname, struct oldold_utsname __user *, name) { int error; if (!name) return -EFAULT; if (!access_ok(VERIFY_WRITE, name, sizeof(struct oldold_utsname))) return -EFAULT; down_read(&uts_sem); error = __copy_to_user(&name->sysname, &utsname()->sysname, __OLD_UTS_LEN); error |= __put_user(0, name->sysname + __OLD_UTS_LEN); error |= __copy_to_user(&name->nodename, &utsname()->nodename, __OLD_UTS_LEN); error |= __put_user(0, name->nodename + __OLD_UTS_LEN); error |= __copy_to_user(&name->release, &utsname()->release, __OLD_UTS_LEN); error |= __put_user(0, name->release + __OLD_UTS_LEN); error |= __copy_to_user(&name->version, &utsname()->version, __OLD_UTS_LEN); error |= __put_user(0, name->version + __OLD_UTS_LEN); error |= __copy_to_user(&name->machine, &utsname()->machine, __OLD_UTS_LEN); error |= __put_user(0, name->machine + __OLD_UTS_LEN); up_read(&uts_sem); if (!error && override_architecture(name)) error = -EFAULT; return error ? -EFAULT : 0; } #endif |
5a8a82b1d [CVE-2009-0029] S... |
1117 |
SYSCALL_DEFINE2(sethostname, char __user *, name, int, len) |
1da177e4c Linux-2.6.12-rc2 |
1118 1119 1120 1121 1122 1123 1124 1125 1126 1127 1128 |
{ int errno; char tmp[__NEW_UTS_LEN]; if (!capable(CAP_SYS_ADMIN)) return -EPERM; if (len < 0 || len > __NEW_UTS_LEN) return -EINVAL; down_write(&uts_sem); errno = -EFAULT; if (!copy_from_user(tmp, name, len)) { |
9679e4dd6 kernel/sys.c: imp... |
1129 1130 1131 1132 |
struct new_utsname *u = utsname(); memcpy(u->nodename, tmp, len); memset(u->nodename + len, 0, sizeof(u->nodename) - len); |
1da177e4c Linux-2.6.12-rc2 |
1133 1134 1135 1136 1137 1138 1139 |
errno = 0; } up_write(&uts_sem); return errno; } #ifdef __ARCH_WANT_SYS_GETHOSTNAME |
5a8a82b1d [CVE-2009-0029] S... |
1140 |
SYSCALL_DEFINE2(gethostname, char __user *, name, int, len) |
1da177e4c Linux-2.6.12-rc2 |
1141 1142 |
{ int i, errno; |
9679e4dd6 kernel/sys.c: imp... |
1143 |
struct new_utsname *u; |
1da177e4c Linux-2.6.12-rc2 |
1144 1145 1146 1147 |
if (len < 0) return -EINVAL; down_read(&uts_sem); |
9679e4dd6 kernel/sys.c: imp... |
1148 1149 |
u = utsname(); i = 1 + strlen(u->nodename); |
1da177e4c Linux-2.6.12-rc2 |
1150 1151 1152 |
if (i > len) i = len; errno = 0; |
9679e4dd6 kernel/sys.c: imp... |
1153 |
if (copy_to_user(name, u->nodename, i)) |
1da177e4c Linux-2.6.12-rc2 |
1154 1155 1156 1157 1158 1159 1160 1161 1162 1163 1164 |
errno = -EFAULT; up_read(&uts_sem); return errno; } #endif /* * Only setdomainname; getdomainname can be implemented by calling * uname() */ |
5a8a82b1d [CVE-2009-0029] S... |
1165 |
SYSCALL_DEFINE2(setdomainname, char __user *, name, int, len) |
1da177e4c Linux-2.6.12-rc2 |
1166 1167 1168 1169 1170 1171 1172 1173 1174 1175 1176 1177 |
{ int errno; char tmp[__NEW_UTS_LEN]; if (!capable(CAP_SYS_ADMIN)) return -EPERM; if (len < 0 || len > __NEW_UTS_LEN) return -EINVAL; down_write(&uts_sem); errno = -EFAULT; if (!copy_from_user(tmp, name, len)) { |
9679e4dd6 kernel/sys.c: imp... |
1178 1179 1180 1181 |
struct new_utsname *u = utsname(); memcpy(u->domainname, tmp, len); memset(u->domainname + len, 0, sizeof(u->domainname) - len); |
1da177e4c Linux-2.6.12-rc2 |
1182 1183 1184 1185 1186 |
errno = 0; } up_write(&uts_sem); return errno; } |
e48fbb699 [CVE-2009-0029] S... |
1187 |
SYSCALL_DEFINE2(getrlimit, unsigned int, resource, struct rlimit __user *, rlim) |
1da177e4c Linux-2.6.12-rc2 |
1188 |
{ |
b95183453 rlimits: switch m... |
1189 1190 1191 1192 1193 1194 1195 1196 |
struct rlimit value; int ret; ret = do_prlimit(current, resource, NULL, &value); if (!ret) ret = copy_to_user(rlim, &value, sizeof(*rlim)) ? -EFAULT : 0; return ret; |
1da177e4c Linux-2.6.12-rc2 |
1197 1198 1199 1200 1201 1202 1203 1204 |
} #ifdef __ARCH_WANT_SYS_OLD_GETRLIMIT /* * Back compatibility for getrlimit. Needed for some apps. */ |
e48fbb699 [CVE-2009-0029] S... |
1205 1206 |
SYSCALL_DEFINE2(old_getrlimit, unsigned int, resource, struct rlimit __user *, rlim) |
1da177e4c Linux-2.6.12-rc2 |
1207 1208 1209 1210 1211 1212 1213 1214 |
{ struct rlimit x; if (resource >= RLIM_NLIMITS) return -EINVAL; task_lock(current->group_leader); x = current->signal->rlim[resource]; task_unlock(current->group_leader); |
756184b7d [PATCH] CodingSty... |
1215 |
if (x.rlim_cur > 0x7FFFFFFF) |
1da177e4c Linux-2.6.12-rc2 |
1216 |
x.rlim_cur = 0x7FFFFFFF; |
756184b7d [PATCH] CodingSty... |
1217 |
if (x.rlim_max > 0x7FFFFFFF) |
1da177e4c Linux-2.6.12-rc2 |
1218 1219 1220 1221 1222 |
x.rlim_max = 0x7FFFFFFF; return copy_to_user(rlim, &x, sizeof(x))?-EFAULT:0; } #endif |
c022a0aca rlimits: implemen... |
1223 1224 1225 1226 1227 1228 1229 1230 1231 1232 1233 1234 1235 1236 1237 1238 1239 1240 1241 1242 1243 1244 1245 1246 1247 1248 1249 1250 1251 1252 1253 1254 |
static inline bool rlim64_is_infinity(__u64 rlim64) { #if BITS_PER_LONG < 64 return rlim64 >= ULONG_MAX; #else return rlim64 == RLIM64_INFINITY; #endif } static void rlim_to_rlim64(const struct rlimit *rlim, struct rlimit64 *rlim64) { if (rlim->rlim_cur == RLIM_INFINITY) rlim64->rlim_cur = RLIM64_INFINITY; else rlim64->rlim_cur = rlim->rlim_cur; if (rlim->rlim_max == RLIM_INFINITY) rlim64->rlim_max = RLIM64_INFINITY; else rlim64->rlim_max = rlim->rlim_max; } static void rlim64_to_rlim(const struct rlimit64 *rlim64, struct rlimit *rlim) { if (rlim64_is_infinity(rlim64->rlim_cur)) rlim->rlim_cur = RLIM_INFINITY; else rlim->rlim_cur = (unsigned long)rlim64->rlim_cur; if (rlim64_is_infinity(rlim64->rlim_max)) rlim->rlim_max = RLIM_INFINITY; else rlim->rlim_max = (unsigned long)rlim64->rlim_max; } |
1c1e618dd rlimits: allow se... |
1255 |
/* make sure you are allowed to change @tsk limits before calling this */ |
5b41535aa rlimits: redo do_... |
1256 1257 |
int do_prlimit(struct task_struct *tsk, unsigned int resource, struct rlimit *new_rlim, struct rlimit *old_rlim) |
1da177e4c Linux-2.6.12-rc2 |
1258 |
{ |
5b41535aa rlimits: redo do_... |
1259 |
struct rlimit *rlim; |
86f162f4c rlimits: do secur... |
1260 |
int retval = 0; |
1da177e4c Linux-2.6.12-rc2 |
1261 1262 1263 |
if (resource >= RLIM_NLIMITS) return -EINVAL; |
5b41535aa rlimits: redo do_... |
1264 1265 1266 1267 1268 1269 1270 |
if (new_rlim) { if (new_rlim->rlim_cur > new_rlim->rlim_max) return -EINVAL; if (resource == RLIMIT_NOFILE && new_rlim->rlim_max > sysctl_nr_open) return -EPERM; } |
1da177e4c Linux-2.6.12-rc2 |
1271 |
|
1c1e618dd rlimits: allow se... |
1272 1273 1274 1275 1276 1277 |
/* protect tsk->signal and tsk->sighand from disappearing */ read_lock(&tasklist_lock); if (!tsk->sighand) { retval = -ESRCH; goto out; } |
5b41535aa rlimits: redo do_... |
1278 |
rlim = tsk->signal->rlim + resource; |
86f162f4c rlimits: do secur... |
1279 |
task_lock(tsk->group_leader); |
5b41535aa rlimits: redo do_... |
1280 1281 1282 1283 1284 1285 1286 1287 1288 1289 1290 1291 1292 1293 1294 1295 1296 1297 1298 1299 1300 1301 |
if (new_rlim) { if (new_rlim->rlim_max > rlim->rlim_max && !capable(CAP_SYS_RESOURCE)) retval = -EPERM; if (!retval) retval = security_task_setrlimit(tsk->group_leader, resource, new_rlim); if (resource == RLIMIT_CPU && new_rlim->rlim_cur == 0) { /* * The caller is asking for an immediate RLIMIT_CPU * expiry. But we use the zero value to mean "it was * never set". So let's cheat and make it one second * instead */ new_rlim->rlim_cur = 1; } } if (!retval) { if (old_rlim) *old_rlim = *rlim; if (new_rlim) *rlim = *new_rlim; |
9926e4c74 CPU time limit pa... |
1302 |
} |
7855c35da rlimits: split sy... |
1303 |
task_unlock(tsk->group_leader); |
1da177e4c Linux-2.6.12-rc2 |
1304 |
|
d3561f78f [PATCH] RLIMIT_CP... |
1305 1306 1307 1308 1309 1310 |
/* * RLIMIT_CPU handling. Note that the kernel fails to return an error * code if it rejected the user's attempt to set RLIMIT_CPU. This is a * very long-standing error, and fixing it now risks breakage of * applications, so we live with it */ |
5b41535aa rlimits: redo do_... |
1311 1312 1313 |
if (!retval && new_rlim && resource == RLIMIT_CPU && new_rlim->rlim_cur != RLIM_INFINITY) update_rlimit_cpu(tsk, new_rlim->rlim_cur); |
ec9e16bac [PATCH] sys_setrl... |
1314 |
out: |
1c1e618dd rlimits: allow se... |
1315 |
read_unlock(&tasklist_lock); |
2fb9d2689 rlimits: make sur... |
1316 |
return retval; |
1da177e4c Linux-2.6.12-rc2 |
1317 |
} |
c022a0aca rlimits: implemen... |
1318 1319 1320 1321 1322 1323 1324 1325 1326 1327 1328 1329 1330 1331 1332 1333 1334 1335 1336 1337 1338 1339 1340 1341 1342 1343 1344 1345 1346 1347 1348 1349 1350 1351 1352 1353 1354 1355 1356 1357 1358 1359 1360 1361 1362 1363 1364 1365 1366 1367 1368 1369 1370 1371 1372 1373 1374 1375 1376 1377 |
/* rcu lock must be held */ static int check_prlimit_permission(struct task_struct *task) { const struct cred *cred = current_cred(), *tcred; tcred = __task_cred(task); if ((cred->uid != tcred->euid || cred->uid != tcred->suid || cred->uid != tcred->uid || cred->gid != tcred->egid || cred->gid != tcred->sgid || cred->gid != tcred->gid) && !capable(CAP_SYS_RESOURCE)) { return -EPERM; } return 0; } SYSCALL_DEFINE4(prlimit64, pid_t, pid, unsigned int, resource, const struct rlimit64 __user *, new_rlim, struct rlimit64 __user *, old_rlim) { struct rlimit64 old64, new64; struct rlimit old, new; struct task_struct *tsk; int ret; if (new_rlim) { if (copy_from_user(&new64, new_rlim, sizeof(new64))) return -EFAULT; rlim64_to_rlim(&new64, &new); } rcu_read_lock(); tsk = pid ? find_task_by_vpid(pid) : current; if (!tsk) { rcu_read_unlock(); return -ESRCH; } ret = check_prlimit_permission(tsk); if (ret) { rcu_read_unlock(); return ret; } get_task_struct(tsk); rcu_read_unlock(); ret = do_prlimit(tsk, resource, new_rlim ? &new : NULL, old_rlim ? &old : NULL); if (!ret && old_rlim) { rlim_to_rlim64(&old, &old64); if (copy_to_user(old_rlim, &old64, sizeof(old64))) ret = -EFAULT; } put_task_struct(tsk); return ret; } |
7855c35da rlimits: split sy... |
1378 1379 1380 1381 1382 1383 |
SYSCALL_DEFINE2(setrlimit, unsigned int, resource, struct rlimit __user *, rlim) { struct rlimit new_rlim; if (copy_from_user(&new_rlim, rlim, sizeof(*rlim))) return -EFAULT; |
5b41535aa rlimits: redo do_... |
1384 |
return do_prlimit(current, resource, &new_rlim, NULL); |
7855c35da rlimits: split sy... |
1385 |
} |
1da177e4c Linux-2.6.12-rc2 |
1386 1387 1388 1389 1390 1391 1392 1393 |
/* * It would make sense to put struct rusage in the task_struct, * except that would make the task_struct be *really big*. After * task_struct gets moved into malloc'ed memory, it would * make sense to do this. It will make moving the rest of the information * a lot simpler! (Which we're not doing right now because we're not * measuring them yet). * |
1da177e4c Linux-2.6.12-rc2 |
1394 1395 1396 1397 1398 1399 1400 |
* When sampling multiple threads for RUSAGE_SELF, under SMP we might have * races with threads incrementing their own counters. But since word * reads are atomic, we either get new values or old values and we don't * care which for the sums. We always take the siglock to protect reading * the c* fields from p->signal from races with exit.c updating those * fields when reaping, so a sample either gets all the additions of a * given child after it's reaped, or none so this sample is before reaping. |
2dd0ebcd2 [PATCH] Avoid tak... |
1401 |
* |
de047c1bc [PATCH] avoid tas... |
1402 1403 1404 1405 1406 1407 1408 1409 1410 1411 1412 1413 1414 1415 |
* Locking: * We need to take the siglock for CHILDEREN, SELF and BOTH * for the cases current multithreaded, non-current single threaded * non-current multithreaded. Thread traversal is now safe with * the siglock held. * Strictly speaking, we donot need to take the siglock if we are current and * single threaded, as no one else can take our signal_struct away, no one * else can reap the children to update signal->c* counters, and no one else * can race with the signal-> fields. If we do not take any lock, the * signal-> fields could be read out of order while another thread was just * exiting. So we should place a read memory barrier when we avoid the lock. * On the writer side, write memory barrier is implied in __exit_signal * as __exit_signal releases the siglock spinlock after updating the signal-> * fields. But we don't do this yet to keep things simple. |
2dd0ebcd2 [PATCH] Avoid tak... |
1416 |
* |
1da177e4c Linux-2.6.12-rc2 |
1417 |
*/ |
f06febc96 timers: fix itime... |
1418 |
static void accumulate_thread_rusage(struct task_struct *t, struct rusage *r) |
679c9cd4a add RUSAGE_THREAD |
1419 |
{ |
679c9cd4a add RUSAGE_THREAD |
1420 1421 1422 1423 1424 1425 1426 |
r->ru_nvcsw += t->nvcsw; r->ru_nivcsw += t->nivcsw; r->ru_minflt += t->min_flt; r->ru_majflt += t->maj_flt; r->ru_inblock += task_io_get_inblock(t); r->ru_oublock += task_io_get_oublock(t); } |
1da177e4c Linux-2.6.12-rc2 |
1427 1428 1429 1430 |
static void k_getrusage(struct task_struct *p, int who, struct rusage *r) { struct task_struct *t; unsigned long flags; |
0cf55e1ec sched, cputime: I... |
1431 |
cputime_t tgutime, tgstime, utime, stime; |
1f10206cf getrusage: fill r... |
1432 |
unsigned long maxrss = 0; |
1da177e4c Linux-2.6.12-rc2 |
1433 1434 |
memset((char *) r, 0, sizeof *r); |
2dd0ebcd2 [PATCH] Avoid tak... |
1435 |
utime = stime = cputime_zero; |
1da177e4c Linux-2.6.12-rc2 |
1436 |
|
679c9cd4a add RUSAGE_THREAD |
1437 |
if (who == RUSAGE_THREAD) { |
d180c5bcc sched: Introduce ... |
1438 |
task_times(current, &utime, &stime); |
f06febc96 timers: fix itime... |
1439 |
accumulate_thread_rusage(p, r); |
1f10206cf getrusage: fill r... |
1440 |
maxrss = p->signal->maxrss; |
679c9cd4a add RUSAGE_THREAD |
1441 1442 |
goto out; } |
d6cf723a1 k_getrusage: don'... |
1443 |
if (!lock_task_sighand(p, &flags)) |
de047c1bc [PATCH] avoid tas... |
1444 |
return; |
0f59cc4a3 [PATCH] simplify ... |
1445 |
|
1da177e4c Linux-2.6.12-rc2 |
1446 |
switch (who) { |
0f59cc4a3 [PATCH] simplify ... |
1447 |
case RUSAGE_BOTH: |
1da177e4c Linux-2.6.12-rc2 |
1448 |
case RUSAGE_CHILDREN: |
1da177e4c Linux-2.6.12-rc2 |
1449 1450 1451 1452 1453 1454 |
utime = p->signal->cutime; stime = p->signal->cstime; r->ru_nvcsw = p->signal->cnvcsw; r->ru_nivcsw = p->signal->cnivcsw; r->ru_minflt = p->signal->cmin_flt; r->ru_majflt = p->signal->cmaj_flt; |
6eaeeaba3 getrusage(): fill... |
1455 1456 |
r->ru_inblock = p->signal->cinblock; r->ru_oublock = p->signal->coublock; |
1f10206cf getrusage: fill r... |
1457 |
maxrss = p->signal->cmaxrss; |
0f59cc4a3 [PATCH] simplify ... |
1458 1459 1460 |
if (who == RUSAGE_CHILDREN) break; |
1da177e4c Linux-2.6.12-rc2 |
1461 |
case RUSAGE_SELF: |
0cf55e1ec sched, cputime: I... |
1462 1463 1464 |
thread_group_times(p, &tgutime, &tgstime); utime = cputime_add(utime, tgutime); stime = cputime_add(stime, tgstime); |
1da177e4c Linux-2.6.12-rc2 |
1465 1466 1467 1468 |
r->ru_nvcsw += p->signal->nvcsw; r->ru_nivcsw += p->signal->nivcsw; r->ru_minflt += p->signal->min_flt; r->ru_majflt += p->signal->maj_flt; |
6eaeeaba3 getrusage(): fill... |
1469 1470 |
r->ru_inblock += p->signal->inblock; r->ru_oublock += p->signal->oublock; |
1f10206cf getrusage: fill r... |
1471 1472 |
if (maxrss < p->signal->maxrss) maxrss = p->signal->maxrss; |
1da177e4c Linux-2.6.12-rc2 |
1473 1474 |
t = p; do { |
f06febc96 timers: fix itime... |
1475 |
accumulate_thread_rusage(t, r); |
1da177e4c Linux-2.6.12-rc2 |
1476 1477 |
t = next_thread(t); } while (t != p); |
1da177e4c Linux-2.6.12-rc2 |
1478 |
break; |
0f59cc4a3 [PATCH] simplify ... |
1479 |
|
1da177e4c Linux-2.6.12-rc2 |
1480 1481 1482 |
default: BUG(); } |
de047c1bc [PATCH] avoid tas... |
1483 |
unlock_task_sighand(p, &flags); |
de047c1bc [PATCH] avoid tas... |
1484 |
|
679c9cd4a add RUSAGE_THREAD |
1485 |
out: |
0f59cc4a3 [PATCH] simplify ... |
1486 1487 |
cputime_to_timeval(utime, &r->ru_utime); cputime_to_timeval(stime, &r->ru_stime); |
1f10206cf getrusage: fill r... |
1488 1489 1490 1491 1492 1493 1494 1495 1496 |
if (who != RUSAGE_CHILDREN) { struct mm_struct *mm = get_task_mm(p); if (mm) { setmax_mm_hiwater_rss(&maxrss, mm); mmput(mm); } } r->ru_maxrss = maxrss * (PAGE_SIZE / 1024); /* convert pages to KBs */ |
1da177e4c Linux-2.6.12-rc2 |
1497 1498 1499 1500 1501 |
} int getrusage(struct task_struct *p, int who, struct rusage __user *ru) { struct rusage r; |
1da177e4c Linux-2.6.12-rc2 |
1502 |
k_getrusage(p, who, &r); |
1da177e4c Linux-2.6.12-rc2 |
1503 1504 |
return copy_to_user(ru, &r, sizeof(r)) ? -EFAULT : 0; } |
e48fbb699 [CVE-2009-0029] S... |
1505 |
SYSCALL_DEFINE2(getrusage, int, who, struct rusage __user *, ru) |
1da177e4c Linux-2.6.12-rc2 |
1506 |
{ |
679c9cd4a add RUSAGE_THREAD |
1507 1508 |
if (who != RUSAGE_SELF && who != RUSAGE_CHILDREN && who != RUSAGE_THREAD) |
1da177e4c Linux-2.6.12-rc2 |
1509 1510 1511 |
return -EINVAL; return getrusage(current, who, ru); } |
e48fbb699 [CVE-2009-0029] S... |
1512 |
SYSCALL_DEFINE1(umask, int, mask) |
1da177e4c Linux-2.6.12-rc2 |
1513 1514 1515 1516 |
{ mask = xchg(¤t->fs->umask, mask & S_IRWXUGO); return mask; } |
3b7391de6 capabilities: int... |
1517 |
|
c4ea37c26 [CVE-2009-0029] S... |
1518 1519 |
SYSCALL_DEFINE5(prctl, int, option, unsigned long, arg2, unsigned long, arg3, unsigned long, arg4, unsigned long, arg5) |
1da177e4c Linux-2.6.12-rc2 |
1520 |
{ |
b6dff3ec5 CRED: Separate ta... |
1521 1522 1523 |
struct task_struct *me = current; unsigned char comm[sizeof(me->comm)]; long error; |
1da177e4c Linux-2.6.12-rc2 |
1524 |
|
d84f4f992 CRED: Inaugurate ... |
1525 1526 |
error = security_task_prctl(option, arg2, arg3, arg4, arg5); if (error != -ENOSYS) |
1da177e4c Linux-2.6.12-rc2 |
1527 |
return error; |
d84f4f992 CRED: Inaugurate ... |
1528 |
error = 0; |
1da177e4c Linux-2.6.12-rc2 |
1529 1530 |
switch (option) { case PR_SET_PDEATHSIG: |
0730ded5b [PATCH] remove a ... |
1531 |
if (!valid_signal(arg2)) { |
1da177e4c Linux-2.6.12-rc2 |
1532 1533 1534 |
error = -EINVAL; break; } |
b6dff3ec5 CRED: Separate ta... |
1535 1536 |
me->pdeath_signal = arg2; error = 0; |
1da177e4c Linux-2.6.12-rc2 |
1537 1538 |
break; case PR_GET_PDEATHSIG: |
b6dff3ec5 CRED: Separate ta... |
1539 |
error = put_user(me->pdeath_signal, (int __user *)arg2); |
1da177e4c Linux-2.6.12-rc2 |
1540 1541 |
break; case PR_GET_DUMPABLE: |
b6dff3ec5 CRED: Separate ta... |
1542 |
error = get_dumpable(me->mm); |
1da177e4c Linux-2.6.12-rc2 |
1543 1544 |
break; case PR_SET_DUMPABLE: |
abf75a503 [PATCH] Fix prctl... |
1545 |
if (arg2 < 0 || arg2 > 1) { |
1da177e4c Linux-2.6.12-rc2 |
1546 1547 1548 |
error = -EINVAL; break; } |
b6dff3ec5 CRED: Separate ta... |
1549 1550 |
set_dumpable(me->mm, arg2); error = 0; |
1da177e4c Linux-2.6.12-rc2 |
1551 1552 1553 |
break; case PR_SET_UNALIGN: |
b6dff3ec5 CRED: Separate ta... |
1554 |
error = SET_UNALIGN_CTL(me, arg2); |
1da177e4c Linux-2.6.12-rc2 |
1555 1556 |
break; case PR_GET_UNALIGN: |
b6dff3ec5 CRED: Separate ta... |
1557 |
error = GET_UNALIGN_CTL(me, arg2); |
1da177e4c Linux-2.6.12-rc2 |
1558 1559 |
break; case PR_SET_FPEMU: |
b6dff3ec5 CRED: Separate ta... |
1560 |
error = SET_FPEMU_CTL(me, arg2); |
1da177e4c Linux-2.6.12-rc2 |
1561 1562 |
break; case PR_GET_FPEMU: |
b6dff3ec5 CRED: Separate ta... |
1563 |
error = GET_FPEMU_CTL(me, arg2); |
1da177e4c Linux-2.6.12-rc2 |
1564 1565 |
break; case PR_SET_FPEXC: |
b6dff3ec5 CRED: Separate ta... |
1566 |
error = SET_FPEXC_CTL(me, arg2); |
1da177e4c Linux-2.6.12-rc2 |
1567 1568 |
break; case PR_GET_FPEXC: |
b6dff3ec5 CRED: Separate ta... |
1569 |
error = GET_FPEXC_CTL(me, arg2); |
1da177e4c Linux-2.6.12-rc2 |
1570 1571 1572 1573 1574 |
break; case PR_GET_TIMING: error = PR_TIMING_STATISTICAL; break; case PR_SET_TIMING: |
7b26655f6 sys_prctl(): fix ... |
1575 |
if (arg2 != PR_TIMING_STATISTICAL) |
1da177e4c Linux-2.6.12-rc2 |
1576 |
error = -EINVAL; |
b6dff3ec5 CRED: Separate ta... |
1577 1578 |
else error = 0; |
1da177e4c Linux-2.6.12-rc2 |
1579 |
break; |
b6dff3ec5 CRED: Separate ta... |
1580 1581 1582 1583 |
case PR_SET_NAME: comm[sizeof(me->comm)-1] = 0; if (strncpy_from_user(comm, (char __user *)arg2, sizeof(me->comm) - 1) < 0) |
1da177e4c Linux-2.6.12-rc2 |
1584 |
return -EFAULT; |
b6dff3ec5 CRED: Separate ta... |
1585 |
set_task_comm(me, comm); |
1da177e4c Linux-2.6.12-rc2 |
1586 |
return 0; |
b6dff3ec5 CRED: Separate ta... |
1587 1588 1589 1590 |
case PR_GET_NAME: get_task_comm(comm, me); if (copy_to_user((char __user *)arg2, comm, sizeof(comm))) |
1da177e4c Linux-2.6.12-rc2 |
1591 1592 |
return -EFAULT; return 0; |
651d765d0 [PATCH] Add a prc... |
1593 |
case PR_GET_ENDIAN: |
b6dff3ec5 CRED: Separate ta... |
1594 |
error = GET_ENDIAN(me, arg2); |
651d765d0 [PATCH] Add a prc... |
1595 1596 |
break; case PR_SET_ENDIAN: |
b6dff3ec5 CRED: Separate ta... |
1597 |
error = SET_ENDIAN(me, arg2); |
651d765d0 [PATCH] Add a prc... |
1598 |
break; |
1d9d02fee move seccomp from... |
1599 1600 1601 1602 1603 1604 |
case PR_GET_SECCOMP: error = prctl_get_seccomp(); break; case PR_SET_SECCOMP: error = prctl_set_seccomp(arg2); break; |
8fb402bcc generic, x86: add... |
1605 1606 1607 1608 1609 1610 |
case PR_GET_TSC: error = GET_TSC_CTL(arg2); break; case PR_SET_TSC: error = SET_TSC_CTL(arg2); break; |
cdd6c482c perf: Do the big ... |
1611 1612 |
case PR_TASK_PERF_EVENTS_DISABLE: error = perf_event_task_disable(); |
1d1c7ddbf perf counters: ad... |
1613 |
break; |
cdd6c482c perf: Do the big ... |
1614 1615 |
case PR_TASK_PERF_EVENTS_ENABLE: error = perf_event_task_enable(); |
1d1c7ddbf perf counters: ad... |
1616 |
break; |
6976675d9 hrtimer: create a... |
1617 1618 1619 1620 1621 1622 1623 1624 1625 |
case PR_GET_TIMERSLACK: error = current->timer_slack_ns; break; case PR_SET_TIMERSLACK: if (arg2 <= 0) current->timer_slack_ns = current->default_timer_slack_ns; else current->timer_slack_ns = arg2; |
b6dff3ec5 CRED: Separate ta... |
1626 |
error = 0; |
6976675d9 hrtimer: create a... |
1627 |
break; |
4db96cf07 HWPOISON: Add PR_... |
1628 1629 1630 1631 |
case PR_MCE_KILL: if (arg4 | arg5) return -EINVAL; switch (arg2) { |
1087e9b4f HWPOISON: Clean u... |
1632 |
case PR_MCE_KILL_CLEAR: |
4db96cf07 HWPOISON: Add PR_... |
1633 1634 1635 1636 |
if (arg3 != 0) return -EINVAL; current->flags &= ~PF_MCE_PROCESS; break; |
1087e9b4f HWPOISON: Clean u... |
1637 |
case PR_MCE_KILL_SET: |
4db96cf07 HWPOISON: Add PR_... |
1638 |
current->flags |= PF_MCE_PROCESS; |
1087e9b4f HWPOISON: Clean u... |
1639 |
if (arg3 == PR_MCE_KILL_EARLY) |
4db96cf07 HWPOISON: Add PR_... |
1640 |
current->flags |= PF_MCE_EARLY; |
1087e9b4f HWPOISON: Clean u... |
1641 |
else if (arg3 == PR_MCE_KILL_LATE) |
4db96cf07 HWPOISON: Add PR_... |
1642 |
current->flags &= ~PF_MCE_EARLY; |
1087e9b4f HWPOISON: Clean u... |
1643 1644 1645 1646 1647 |
else if (arg3 == PR_MCE_KILL_DEFAULT) current->flags &= ~(PF_MCE_EARLY|PF_MCE_PROCESS); else return -EINVAL; |
4db96cf07 HWPOISON: Add PR_... |
1648 1649 1650 1651 1652 1653 |
break; default: return -EINVAL; } error = 0; break; |
1087e9b4f HWPOISON: Clean u... |
1654 1655 1656 1657 1658 1659 1660 1661 1662 |
case PR_MCE_KILL_GET: if (arg2 | arg3 | arg4 | arg5) return -EINVAL; if (current->flags & PF_MCE_PROCESS) error = (current->flags & PF_MCE_EARLY) ? PR_MCE_KILL_EARLY : PR_MCE_KILL_LATE; else error = PR_MCE_KILL_DEFAULT; break; |
1da177e4c Linux-2.6.12-rc2 |
1663 1664 1665 1666 1667 1668 |
default: error = -EINVAL; break; } return error; } |
3cfc348bf [PATCH] x86: Add ... |
1669 |
|
836f92adf [CVE-2009-0029] S... |
1670 1671 |
SYSCALL_DEFINE3(getcpu, unsigned __user *, cpup, unsigned __user *, nodep, struct getcpu_cache __user *, unused) |
3cfc348bf [PATCH] x86: Add ... |
1672 1673 1674 1675 1676 1677 1678 |
{ int err = 0; int cpu = raw_smp_processor_id(); if (cpup) err |= put_user(cpu, cpup); if (nodep) err |= put_user(cpu_to_node(cpu), nodep); |
3cfc348bf [PATCH] x86: Add ... |
1679 1680 |
return err ? -EFAULT : 0; } |
10a0a8d4e Add common orderl... |
1681 1682 |
char poweroff_cmd[POWEROFF_CMD_PATH_LEN] = "/sbin/poweroff"; |
a06a4dc3a kmod: add init fu... |
1683 |
static void argv_cleanup(struct subprocess_info *info) |
10a0a8d4e Add common orderl... |
1684 |
{ |
a06a4dc3a kmod: add init fu... |
1685 |
argv_free(info->argv); |
10a0a8d4e Add common orderl... |
1686 1687 1688 1689 1690 1691 1692 1693 1694 1695 1696 1697 1698 1699 1700 1701 1702 1703 1704 1705 1706 1707 1708 1709 1710 1711 1712 |
} /** * orderly_poweroff - Trigger an orderly system poweroff * @force: force poweroff if command execution fails * * This may be called from any context to trigger a system shutdown. * If the orderly shutdown fails, it will force an immediate shutdown. */ int orderly_poweroff(bool force) { int argc; char **argv = argv_split(GFP_ATOMIC, poweroff_cmd, &argc); static char *envp[] = { "HOME=/", "PATH=/sbin:/bin:/usr/sbin:/usr/bin", NULL }; int ret = -ENOMEM; struct subprocess_info *info; if (argv == NULL) { printk(KERN_WARNING "%s failed to allocate memory for \"%s\" ", __func__, poweroff_cmd); goto out; } |
ac331d158 call_usermodehelp... |
1713 |
info = call_usermodehelper_setup(argv[0], argv, envp, GFP_ATOMIC); |
10a0a8d4e Add common orderl... |
1714 1715 1716 1717 |
if (info == NULL) { argv_free(argv); goto out; } |
a06a4dc3a kmod: add init fu... |
1718 |
call_usermodehelper_setfns(info, NULL, argv_cleanup, NULL); |
10a0a8d4e Add common orderl... |
1719 |
|
86313c488 usermodehelper: T... |
1720 |
ret = call_usermodehelper_exec(info, UMH_NO_WAIT); |
10a0a8d4e Add common orderl... |
1721 1722 1723 1724 1725 1726 1727 1728 1729 1730 1731 1732 1733 1734 1735 1736 1737 |
out: if (ret && force) { printk(KERN_WARNING "Failed to start orderly shutdown: " "forcing the issue "); /* I guess this should try to kick off some daemon to sync and poweroff asap. Or not even bother syncing if we're doing an emergency shutdown? */ emergency_sync(); kernel_power_off(); } return ret; } EXPORT_SYMBOL_GPL(orderly_poweroff); |