projects / linux-2.6-block.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
Revert "serial: imx: remove unbalanced clk_prepare"
[linux-2.6-block.git] / drivers / tty / tty_io.c
CommitLineData
1da177e4 1/*
1da177e4
LT		 2 * Copyright (C) 1991, 1992 Linus Torvalds
3 */
4
5/*
6 * 'tty_io.c' gives an orthogonal feeling to tty's, be they consoles
7 * or rs-channels. It also implements echoing, cooked mode etc.
8 *
9 * Kill-line thanks to John T Kohl, who also corrected VMIN = VTIME = 0.
10 *
11 * Modified by Theodore Ts'o, 9/14/92, to dynamically allocate the
12 * tty_struct and tty_queue structures. Previously there was an array
13 * of 256 tty_struct's which was statically allocated, and the
14 * tty_queue structures were allocated at boot time. Both are now
15 * dynamically allocated only when the tty is open.
16 *
17 * Also restructured routines so that there is more of a separation
18 * between the high-level tty routines (tty_io.c and tty_ioctl.c) and
19 * the low-level tty routines (serial.c, pty.c, console.c). This
37bdfb07 20 * makes for cleaner and more compact code. -TYT, 9/17/92
1da177e4
LT		 21 *
22 * Modified by Fred N. van Kempen, 01/29/93, to add line disciplines
23 * which can be dynamically activated and de-activated by the line
24 * discipline handling modules (like SLIP).
25 *
26 * NOTE: pay no attention to the line discipline code (yet); its
27 * interface is still subject to change in this version...
28 * -- TYT, 1/31/92
29 *
30 * Added functionality to the OPOST tty handling. No delays, but all
31 * other bits should be there.
32 * -- Nick Holloway <alfie@dcs.warwick.ac.uk>, 27th May 1993.
33 *
34 * Rewrote canonical mode and added more termios flags.
35 * -- julian@uhunix.uhcc.hawaii.edu (J. Cowley), 13Jan94
36 *
37 * Reorganized FASYNC support so mouse code can share it.
38 * -- ctm@ardi.com, 9Sep95
39 *
40 * New TIOCLINUX variants added.
41 * -- mj@k332.feld.cvut.cz, 19-Nov-95
37bdfb07 42 *
1da177e4
LT		 43 * Restrict vt switching via ioctl()
44 * -- grif@cs.ucr.edu, 5-Dec-95
45 *
46 * Move console and virtual terminal code to more appropriate files,
47 * implement CONFIG_VT and generalize console device interface.
48 * -- Marko Kohtala <Marko.Kohtala@hut.fi>, March 97
49 *
d81ed103 50 * Rewrote tty_init_dev and tty_release_dev to eliminate races.
1da177e4
LT		 51 * -- Bill Hawes <whawes@star.net>, June 97
52 *
53 * Added devfs support.
54 * -- C. Scott Ananian <cananian@alumni.princeton.edu>, 13-Jan-1998
55 *
56 * Added support for a Unix98-style ptmx device.
57 * -- C. Scott Ananian <cananian@alumni.princeton.edu>, 14-Jan-1998
58 *
59 * Reduced memory usage for older ARM systems
60 * -- Russell King <rmk@arm.linux.org.uk>
61 *
62 * Move do_SAK() into process context. Less stack use in devfs functions.
37bdfb07
AC		 63 * alloc_tty_struct() always uses kmalloc()
64 * -- Andrew Morton <andrewm@uow.edu.eu> 17Mar01
1da177e4
LT		 65 */
66
1da177e4
LT		 67#include <linux/types.h>
68#include <linux/major.h>
69#include <linux/errno.h>
70#include <linux/signal.h>
71#include <linux/fcntl.h>
72#include <linux/sched.h>
73#include <linux/interrupt.h>
74#include <linux/tty.h>
75#include <linux/tty_driver.h>
76#include <linux/tty_flip.h>
77#include <linux/devpts_fs.h>
78#include <linux/file.h>
9f3acc31 79#include <linux/fdtable.h>
1da177e4
LT		 80#include <linux/console.h>
81#include <linux/timer.h>
82#include <linux/ctype.h>
83#include <linux/kd.h>
84#include <linux/mm.h>
85#include <linux/string.h>
86#include <linux/slab.h>
87#include <linux/poll.h>
88#include <linux/proc_fs.h>
89#include <linux/init.h>
90#include <linux/module.h>
1da177e4 91#include <linux/device.h>
1da177e4
LT		 92#include <linux/wait.h>
93#include <linux/bitops.h>
b20f3ae5 94#include <linux/delay.h>
a352def2 95#include <linux/seq_file.h>
d281da7f 96#include <linux/serial.h>
5a3c6b25 97#include <linux/ratelimit.h>
1da177e4 98
a352def2 99#include <linux/uaccess.h>
1da177e4
LT		 100
101#include <linux/kbd_kern.h>
102#include <linux/vt_kern.h>
103#include <linux/selection.h>
1da177e4
LT		 104
105#include <linux/kmod.h>
b488893a 106#include <linux/nsproxy.h>
1da177e4
LT		 107
108#undef TTY_DEBUG_HANGUP
accff793
PH		 109#ifdef TTY_DEBUG_HANGUP
110# define tty_debug_hangup(tty, f, args...) tty_debug(tty, f, ##args)
111#else
112# define tty_debug_hangup(tty, f, args...) do { } while (0)
113#endif
1da177e4
LT		 114
115#define TTY_PARANOIA_CHECK 1
116#define CHECK_TTY_COUNT 1
117
edc6afc5 118struct ktermios tty_std_termios = { /* for the benefit of tty drivers */
1da177e4
LT		 119 .c_iflag = ICRNL | IXON,
120 .c_oflag = OPOST | ONLCR,
121 .c_cflag = B38400 | CS8 | CREAD | HUPCL,
122 .c_lflag = ISIG | ICANON | ECHO | ECHOE | ECHOK |
123 ECHOCTL | ECHOKE | IEXTEN,
edc6afc5
AC		 124 .c_cc = INIT_C_CC,
125 .c_ispeed = 38400,
126 .c_ospeed = 38400
1da177e4
LT		 127};
128
129EXPORT_SYMBOL(tty_std_termios);
130
131/* This list gets poked at by procfs and various bits of boot up code. This
132 could do with some rationalisation such as pulling the tty proc function
133 into this file */
37bdfb07 134
1da177e4
LT		 135LIST_HEAD(tty_drivers); /* linked list of tty drivers */
136
24ec839c 137/* Mutex to protect creating and releasing a tty. This is shared with
1da177e4 138 vt.c for deeply disgusting hack reasons */
70522e12 139DEFINE_MUTEX(tty_mutex);
de2a84f2 140EXPORT_SYMBOL(tty_mutex);
1da177e4 141
ee2ffa0d
NP		 142/* Spinlock to protect the tty->tty_files list */
143DEFINE_SPINLOCK(tty_files_lock);
144
1da177e4
LT		 145static ssize_t tty_read(struct file *, char __user *, size_t, loff_t *);
146static ssize_t tty_write(struct file *, const char __user *, size_t, loff_t *);
37bdfb07
AC		 147ssize_t redirected_tty_write(struct file *, const char __user *,
148 size_t, loff_t *);
1da177e4
LT		 149static unsigned int tty_poll(struct file *, poll_table *);
150static int tty_open(struct inode *, struct file *);
04f378b1 151long tty_ioctl(struct file *file, unsigned int cmd, unsigned long arg);
e10cc1df 152#ifdef CONFIG_COMPAT
37bdfb07 153static long tty_compat_ioctl(struct file *file, unsigned int cmd,
e10cc1df
PF		 154 unsigned long arg);
155#else
156#define tty_compat_ioctl NULL
157#endif
ec79d605 158static int __tty_fasync(int fd, struct file *filp, int on);
37bdfb07 159static int tty_fasync(int fd, struct file *filp, int on);
d5698c28 160static void release_tty(struct tty_struct *tty, int idx);
1da177e4 161
af9b897e
AC		 162/**
163 * free_tty_struct - free a disused tty
164 * @tty: tty struct to free
165 *
166 * Free the write buffers, tty queue and tty memory itself.
167 *
168 * Locking: none. Must be called after tty is definitely unused
169 */
170
bf970ee4 171void free_tty_struct(struct tty_struct *tty)
1da177e4 172{
dc6802a7
DC		 173 if (!tty)
174 return;
a211b1af 175 put_device(tty->dev);
1da177e4 176 kfree(tty->write_buf);
89c8d91e 177 tty->magic = 0xDEADDEAD;
1da177e4
LT		 178 kfree(tty);
179}
180
d996b62a
NP		 181static inline struct tty_struct *file_tty(struct file *file)
182{
183 return ((struct tty_file_private *)file->private_data)->tty;
184}
185
fa90e1c9 186int tty_alloc_file(struct file *file)
d996b62a
NP		 187{
188 struct tty_file_private *priv;
189
f573bd17
PE		 190 priv = kmalloc(sizeof(*priv), GFP_KERNEL);
191 if (!priv)
192 return -ENOMEM;
d996b62a 193
fa90e1c9
JS		 194 file->private_data = priv;
195
196 return 0;
197}
198
199/* Associate a new file with the tty structure */
200void tty_add_file(struct tty_struct *tty, struct file *file)
201{
202 struct tty_file_private *priv = file->private_data;
203
d996b62a
NP		 204 priv->tty = tty;
205 priv->file = file;
d996b62a
NP		 206
207 spin_lock(&tty_files_lock);
208 list_add(&priv->list, &tty->tty_files);
209 spin_unlock(&tty_files_lock);
fa90e1c9 210}
f573bd17 211
fa90e1c9
JS		 212/**
213 * tty_free_file - free file->private_data
214 *
215 * This shall be used only for fail path handling when tty_add_file was not
216 * called yet.
217 */
218void tty_free_file(struct file *file)
219{
220 struct tty_file_private *priv = file->private_data;
221
222 file->private_data = NULL;
223 kfree(priv);
d996b62a
NP		 224}
225
226/* Delete file from its tty */
2520e274 227static void tty_del_file(struct file *file)
d996b62a
NP		 228{
229 struct tty_file_private *priv = file->private_data;
230
231 spin_lock(&tty_files_lock);
232 list_del(&priv->list);
233 spin_unlock(&tty_files_lock);
fa90e1c9 234 tty_free_file(file);
d996b62a
NP		 235}
236
237
1da177e4
LT		 238#define TTY_NUMBER(tty) ((tty)->index + (tty)->driver->name_base)
239
af9b897e
AC		 240/**
241 * tty_name - return tty naming
242 * @tty: tty structure
af9b897e
AC		 243 *
244 * Convert a tty structure into a name. The name reflects the kernel
245 * naming policy and if udev is in use may not reflect user space
246 *
247 * Locking: none
248 */
249
429b4749 250const char *tty_name(const struct tty_struct *tty)
1da177e4
LT		 251{
252 if (!tty) /* Hmm. NULL pointer. That's fun. */
917162c9
RV		 253 return "NULL tty";
254 return tty->name;
1da177e4
LT		 255}
256
257EXPORT_SYMBOL(tty_name);
258
d769a669 259int tty_paranoia_check(struct tty_struct *tty, struct inode *inode,
1da177e4
LT		 260 const char *routine)
261{
262#ifdef TTY_PARANOIA_CHECK
263 if (!tty) {
264 printk(KERN_WARNING
265 "null TTY for (%d:%d) in %s\n",
266 imajor(inode), iminor(inode), routine);
267 return 1;
268 }
269 if (tty->magic != TTY_MAGIC) {
270 printk(KERN_WARNING
271 "bad magic number for tty struct (%d:%d) in %s\n",
272 imajor(inode), iminor(inode), routine);
273 return 1;
274 }
275#endif
276 return 0;
277}
278
deb287e7 279/* Caller must hold tty_lock */
1da177e4
LT		 280static int check_tty_count(struct tty_struct *tty, const char *routine)
281{
282#ifdef CHECK_TTY_COUNT
283 struct list_head *p;
284 int count = 0;
37bdfb07 285
ee2ffa0d 286 spin_lock(&tty_files_lock);
1da177e4
LT		 287 list_for_each(p, &tty->tty_files) {
288 count++;
289 }
ee2ffa0d 290 spin_unlock(&tty_files_lock);
1da177e4
LT		 291 if (tty->driver->type == TTY_DRIVER_TYPE_PTY &&
292 tty->driver->subtype == PTY_TYPE_SLAVE &&
293 tty->link && tty->link->count)
294 count++;
295 if (tty->count != count) {
296 printk(KERN_WARNING "Warning: dev (%s) tty->count(%d) "
297 "!= #fd's(%d) in %s\n",
298 tty->name, tty->count, count, routine);
299 return count;
24ec839c 300 }
1da177e4
LT		 301#endif
302 return 0;
303}
304
af9b897e
AC		 305/**
306 * get_tty_driver - find device of a tty
307 * @dev_t: device identifier
308 * @index: returns the index of the tty
309 *
310 * This routine returns a tty driver structure, given a device number
311 * and also passes back the index number.
312 *
313 * Locking: caller must hold tty_mutex
1da177e4 314 */
af9b897e 315
1da177e4
LT		 316static struct tty_driver *get_tty_driver(dev_t device, int *index)
317{
318 struct tty_driver *p;
319
320 list_for_each_entry(p, &tty_drivers, tty_drivers) {
321 dev_t base = MKDEV(p->major, p->minor_start);
322 if (device < base || device >= base + p->num)
323 continue;
324 *index = device - base;
7d7b93c1 325 return tty_driver_kref_get(p);
1da177e4
LT		 326 }
327 return NULL;
328}
329
f2d937f3
JW		 330#ifdef CONFIG_CONSOLE_POLL
331
332/**
333 * tty_find_polling_driver - find device of a polled tty
334 * @name: name string to match
335 * @line: pointer to resulting tty line nr
336 *
337 * This routine returns a tty driver structure, given a name
338 * and the condition that the tty driver is capable of polled
339 * operation.
340 */
341struct tty_driver *tty_find_polling_driver(char *name, int *line)
342{
343 struct tty_driver *p, *res = NULL;
344 int tty_line = 0;
0dca0fd2 345 int len;
5f0878ac 346 char *str, *stp;
f2d937f3 347
0dca0fd2
JW		 348 for (str = name; *str; str++)
349 if ((*str >= '0' && *str <= '9') || *str == ',')
350 break;
351 if (!*str)
352 return NULL;
353
354 len = str - name;
355 tty_line = simple_strtoul(str, &str, 10);
356
f2d937f3
JW		 357 mutex_lock(&tty_mutex);
358 /* Search through the tty devices to look for a match */
359 list_for_each_entry(p, &tty_drivers, tty_drivers) {
0dca0fd2
JW		 360 if (strncmp(name, p->name, len) != 0)
361 continue;
5f0878ac
AC		 362 stp = str;
363 if (*stp == ',')
364 stp++;
365 if (*stp == '\0')
366 stp = NULL;
f2d937f3 367
6eb68d6f 368 if (tty_line >= 0 && tty_line < p->num && p->ops &&
5f0878ac 369 p->ops->poll_init && !p->ops->poll_init(p, tty_line, stp)) {
7d7b93c1 370 res = tty_driver_kref_get(p);
f2d937f3
JW		 371 *line = tty_line;
372 break;
373 }
374 }
375 mutex_unlock(&tty_mutex);
376
377 return res;
378}
379EXPORT_SYMBOL_GPL(tty_find_polling_driver);
380#endif
381
af9b897e
AC		 382/**
383 * tty_check_change - check for POSIX terminal changes
384 * @tty: tty to check
385 *
386 * If we try to write to, or set the state of, a terminal and we're
387 * not in the foreground, send a SIGTTOU. If the signal is blocked or
388 * ignored, go ahead and perform the operation. (POSIX 7.2)
389 *
978e595f 390 * Locking: ctrl_lock
1da177e4 391 */
af9b897e 392
37bdfb07 393int tty_check_change(struct tty_struct *tty)
1da177e4 394{
47f86834 395 unsigned long flags;
6719693c 396 struct pid *pgrp;
47f86834
AC		 397 int ret = 0;
398
1da177e4
LT		 399 if (current->signal->tty != tty)
400 return 0;
47f86834 401
6719693c
PD		 402 rcu_read_lock();
403 pgrp = task_pgrp(current);
404
47f86834
AC		 405 spin_lock_irqsave(&tty->ctrl_lock, flags);
406
ab521dc0
EB		 407 if (!tty->pgrp) {
408 printk(KERN_WARNING "tty_check_change: tty->pgrp == NULL!\n");
9ffee4cb 409 goto out_unlock;
1da177e4 410 }
6719693c 411 if (pgrp == tty->pgrp)
9ffee4cb
AM		 412 goto out_unlock;
413 spin_unlock_irqrestore(&tty->ctrl_lock, flags);
6719693c 414
1da177e4 415 if (is_ignored(SIGTTOU))
6719693c 416 goto out_rcuunlock;
47f86834
AC		 417 if (is_current_pgrp_orphaned()) {
418 ret = -EIO;
6719693c 419 goto out_rcuunlock;
47f86834 420 }
6719693c
PD		 421 kill_pgrp(pgrp, SIGTTOU, 1);
422 rcu_read_unlock();
040b6362 423 set_thread_flag(TIF_SIGPENDING);
47f86834 424 ret = -ERESTARTSYS;
9ffee4cb
AM		 425 return ret;
426out_unlock:
47f86834 427 spin_unlock_irqrestore(&tty->ctrl_lock, flags);
6719693c
PD		 428out_rcuunlock:
429 rcu_read_unlock();
47f86834 430 return ret;
1da177e4
LT		 431}
432
433EXPORT_SYMBOL(tty_check_change);
434
37bdfb07 435static ssize_t hung_up_tty_read(struct file *file, char __user *buf,
1da177e4
LT		 436 size_t count, loff_t *ppos)
437{
438 return 0;
439}
440
37bdfb07 441static ssize_t hung_up_tty_write(struct file *file, const char __user *buf,
1da177e4
LT		 442 size_t count, loff_t *ppos)
443{
444 return -EIO;
445}
446
447/* No kernel lock held - none needed ;) */
37bdfb07 448static unsigned int hung_up_tty_poll(struct file *filp, poll_table *wait)
1da177e4
LT		 449{
450 return POLLIN | POLLOUT | POLLERR | POLLHUP | POLLRDNORM | POLLWRNORM;
451}
452
04f378b1
AC		 453static long hung_up_tty_ioctl(struct file *file, unsigned int cmd,
454 unsigned long arg)
38ad2ed0
PF		 455{
456 return cmd == TIOCSPGRP ? -ENOTTY : -EIO;
457}
458
37bdfb07 459static long hung_up_tty_compat_ioctl(struct file *file,
38ad2ed0 460 unsigned int cmd, unsigned long arg)
1da177e4
LT		 461{
462 return cmd == TIOCSPGRP ? -ENOTTY : -EIO;
463}
464
62322d25 465static const struct file_operations tty_fops = {
1da177e4
LT		 466 .llseek = no_llseek,
467 .read = tty_read,
468 .write = tty_write,
469 .poll = tty_poll,
04f378b1 470 .unlocked_ioctl = tty_ioctl,
e10cc1df 471 .compat_ioctl = tty_compat_ioctl,
1da177e4
LT		 472 .open = tty_open,
473 .release = tty_release,
474 .fasync = tty_fasync,
475};
476
62322d25 477static const struct file_operations console_fops = {
1da177e4
LT		 478 .llseek = no_llseek,
479 .read = tty_read,
480 .write = redirected_tty_write,
481 .poll = tty_poll,
04f378b1 482 .unlocked_ioctl = tty_ioctl,
e10cc1df 483 .compat_ioctl = tty_compat_ioctl,
1da177e4
LT		 484 .open = tty_open,
485 .release = tty_release,
486 .fasync = tty_fasync,
487};
488
62322d25 489static const struct file_operations hung_up_tty_fops = {
1da177e4
LT		 490 .llseek = no_llseek,
491 .read = hung_up_tty_read,
492 .write = hung_up_tty_write,
493 .poll = hung_up_tty_poll,
04f378b1 494 .unlocked_ioctl = hung_up_tty_ioctl,
38ad2ed0 495 .compat_ioctl = hung_up_tty_compat_ioctl,
1da177e4
LT		 496 .release = tty_release,
497};
498
499static DEFINE_SPINLOCK(redirect_lock);
500static struct file *redirect;
501
11d9befd
PH		 502
503void proc_clear_tty(struct task_struct *p)
504{
505 unsigned long flags;
506 struct tty_struct *tty;
507 spin_lock_irqsave(&p->sighand->siglock, flags);
508 tty = p->signal->tty;
509 p->signal->tty = NULL;
510 spin_unlock_irqrestore(&p->sighand->siglock, flags);
511 tty_kref_put(tty);
512}
513
2c411c11
PH		 514/**
515 * proc_set_tty - set the controlling terminal
516 *
517 * Only callable by the session leader and only if it does not already have
518 * a controlling terminal.
519 *
e218eb32
PH		 520 * Caller must hold: tty_lock()
521 * a readlock on tasklist_lock
2c411c11
PH		 522 * sighand lock
523 */
bce65f18 524static void __proc_set_tty(struct tty_struct *tty)
11d9befd 525{
ae28fa72
PH		 526 unsigned long flags;
527
ae28fa72 528 spin_lock_irqsave(&tty->ctrl_lock, flags);
a361858d
PH		 529 /*
530 * The session and fg pgrp references will be non-NULL if
531 * tiocsctty() is stealing the controlling tty
532 */
ae28fa72
PH		 533 put_pid(tty->session);
534 put_pid(tty->pgrp);
535 tty->pgrp = get_pid(task_pgrp(current));
536 spin_unlock_irqrestore(&tty->ctrl_lock, flags);
537 tty->session = get_pid(task_session(current));
538 if (current->signal->tty) {
e2dfa3d3
PH		 539 tty_debug(tty, "current tty %s not NULL!!\n",
540 current->signal->tty->name);
ae28fa72 541 tty_kref_put(current->signal->tty);
11d9befd 542 }
bce65f18
PH		 543 put_pid(current->signal->tty_old_pgrp);
544 current->signal->tty = tty_kref_get(tty);
545 current->signal->tty_old_pgrp = NULL;
11d9befd
PH		 546}
547
bce65f18 548static void proc_set_tty(struct tty_struct *tty)
11d9befd 549{
bce65f18
PH		 550 spin_lock_irq(&current->sighand->siglock);
551 __proc_set_tty(tty);
552 spin_unlock_irq(&current->sighand->siglock);
11d9befd
PH		 553}
554
555struct tty_struct *get_current_tty(void)
556{
557 struct tty_struct *tty;
558 unsigned long flags;
559
560 spin_lock_irqsave(&current->sighand->siglock, flags);
561 tty = tty_kref_get(current->signal->tty);
562 spin_unlock_irqrestore(&current->sighand->siglock, flags);
563 return tty;
564}
565EXPORT_SYMBOL_GPL(get_current_tty);
566
567static void session_clear_tty(struct pid *session)
568{
569 struct task_struct *p;
570 do_each_pid_task(session, PIDTYPE_SID, p) {
571 proc_clear_tty(p);
572 } while_each_pid_task(session, PIDTYPE_SID, p);
573}
574
1da177e4
LT		 575/**
576 * tty_wakeup - request more data
577 * @tty: terminal
578 *
579 * Internal and external helper for wakeups of tty. This function
580 * informs the line discipline if present that the driver is ready
581 * to receive more output data.
582 */
37bdfb07 583
1da177e4
LT		 584void tty_wakeup(struct tty_struct *tty)
585{
586 struct tty_ldisc *ld;
37bdfb07 587
1da177e4
LT		 588 if (test_bit(TTY_DO_WRITE_WAKEUP, &tty->flags)) {
589 ld = tty_ldisc_ref(tty);
37bdfb07 590 if (ld) {
a352def2
AC		 591 if (ld->ops->write_wakeup)
592 ld->ops->write_wakeup(tty);
1da177e4
LT		 593 tty_ldisc_deref(ld);
594 }
595 }
4b19449d 596 wake_up_interruptible_poll(&tty->write_wait, POLLOUT);
1da177e4
LT		 597}
598
599EXPORT_SYMBOL_GPL(tty_wakeup);
600
ea648a47
PH		 601/**
602 * tty_signal_session_leader - sends SIGHUP to session leader
f91e2590
PH		 603 * @tty controlling tty
604 * @exit_session if non-zero, signal all foreground group processes
ea648a47 605 *
f91e2590
PH		 606 * Send SIGHUP and SIGCONT to the session leader and its process group.
607 * Optionally, signal all processes in the foreground process group.
ea648a47
PH		 608 *
609 * Returns the number of processes in the session with this tty
610 * as their controlling terminal. This value is used to drop
611 * tty references for those processes.
612 */
f91e2590 613static int tty_signal_session_leader(struct tty_struct *tty, int exit_session)
ea648a47
PH		 614{
615 struct task_struct *p;
ea648a47 616 int refs = 0;
f91e2590 617 struct pid *tty_pgrp = NULL;
ea648a47
PH		 618
619 read_lock(&tasklist_lock);
620 if (tty->session) {
621 do_each_pid_task(tty->session, PIDTYPE_SID, p) {
622 spin_lock_irq(&p->sighand->siglock);
623 if (p->signal->tty == tty) {
624 p->signal->tty = NULL;
625 /* We defer the dereferences outside fo
626 the tasklist lock */
627 refs++;
628 }
629 if (!p->signal->leader) {
630 spin_unlock_irq(&p->sighand->siglock);
631 continue;
632 }
633 __group_send_sig_info(SIGHUP, SEND_SIG_PRIV, p);
634 __group_send_sig_info(SIGCONT, SEND_SIG_PRIV, p);
635 put_pid(p->signal->tty_old_pgrp); /* A noop */
bc30c3b2 636 spin_lock(&tty->ctrl_lock);
f91e2590 637 tty_pgrp = get_pid(tty->pgrp);
ea648a47
PH		 638 if (tty->pgrp)
639 p->signal->tty_old_pgrp = get_pid(tty->pgrp);
bc30c3b2 640 spin_unlock(&tty->ctrl_lock);
ea648a47
PH		 641 spin_unlock_irq(&p->sighand->siglock);
642 } while_each_pid_task(tty->session, PIDTYPE_SID, p);
643 }
644 read_unlock(&tasklist_lock);
645
f91e2590
PH		 646 if (tty_pgrp) {
647 if (exit_session)
648 kill_pgrp(tty_pgrp, SIGHUP, exit_session);
649 put_pid(tty_pgrp);
650 }
651
ea648a47
PH		 652 return refs;
653}
654
af9b897e 655/**
11dbf203 656 * __tty_hangup - actual handler for hangup events
65f27f38 657 * @work: tty device
af9b897e 658 *
ef4f527c 659 * This can be called by a "kworker" kernel thread. That is process
af9b897e
AC		 660 * synchronous but doesn't hold any locks, so we need to make sure we
661 * have the appropriate locks for what we're doing.
662 *
663 * The hangup event clears any pending redirections onto the hung up
664 * device. It ensures future writes will error and it does the needed
665 * line discipline hangup and signal delivery. The tty object itself
666 * remains intact.
667 *
668 * Locking:
ec79d605 669 * BTM
24ec839c
PZ		 670 * redirect lock for undoing redirection
671 * file list lock for manipulating list of ttys
137084bb 672 * tty_ldiscs_lock from called functions
6a1c0680 673 * termios_rwsem resetting termios data
24ec839c
PZ		 674 * tasklist_lock to walk task list for hangup event
675 * ->siglock to protect ->signal/->sighand
1da177e4 676 */
f91e2590 677static void __tty_hangup(struct tty_struct *tty, int exit_session)
1da177e4 678{
37bdfb07 679 struct file *cons_filp = NULL;
1da177e4 680 struct file *filp, *f = NULL;
d996b62a 681 struct tty_file_private *priv;
1da177e4 682 int closecount = 0, n;
ea648a47 683 int refs;
1da177e4
LT		 684
685 if (!tty)
686 return;
687
1da177e4
LT		 688
689 spin_lock(&redirect_lock);
d996b62a 690 if (redirect && file_tty(redirect) == tty) {
1da177e4
LT		 691 f = redirect;
692 redirect = NULL;
693 }
694 spin_unlock(&redirect_lock);
37bdfb07 695
89c8d91e 696 tty_lock(tty);
11dbf203 697
cb50e523
PH		 698 if (test_bit(TTY_HUPPED, &tty->flags)) {
699 tty_unlock(tty);
700 return;
701 }
702
ec79d605
AB		 703 /* inuse_filps is protected by the single tty lock,
704 this really needs to change if we want to flush the
705 workqueue with the lock held */
11dbf203 706 check_tty_count(tty, "tty_hangup");
36ba782e 707
ee2ffa0d 708 spin_lock(&tty_files_lock);
1da177e4 709 /* This breaks for file handles being sent over AF_UNIX sockets ? */
d996b62a
NP		 710 list_for_each_entry(priv, &tty->tty_files, list) {
711 filp = priv->file;
1da177e4
LT		 712 if (filp->f_op->write == redirected_tty_write)
713 cons_filp = filp;
714 if (filp->f_op->write != tty_write)
715 continue;
716 closecount++;
ec79d605 717 __tty_fasync(-1, filp, 0); /* can't block */
1da177e4
LT		 718 filp->f_op = &hung_up_tty_fops;
719 }
ee2ffa0d 720 spin_unlock(&tty_files_lock);
37bdfb07 721
25fdf243
PH		 722 refs = tty_signal_session_leader(tty, exit_session);
723 /* Account for the p->signal references we killed */
724 while (refs--)
725 tty_kref_put(tty);
726
c65c9bc3 727 tty_ldisc_hangup(tty);
37bdfb07 728
20cc225b 729 spin_lock_irq(&tty->ctrl_lock);
c65c9bc3 730 clear_bit(TTY_THROTTLED, &tty->flags);
c65c9bc3 731 clear_bit(TTY_DO_WRITE_WAKEUP, &tty->flags);
d9c1e9a8
EB		 732 put_pid(tty->session);
733 put_pid(tty->pgrp);
ab521dc0
EB		 734 tty->session = NULL;
735 tty->pgrp = NULL;
1da177e4 736 tty->ctrl_status = 0;
20cc225b 737 spin_unlock_irq(&tty->ctrl_lock);
9c9f4ded 738
1da177e4 739 /*
37bdfb07
AC		 740 * If one of the devices matches a console pointer, we
741 * cannot just call hangup() because that will cause
742 * tty->count and state->count to go out of sync.
743 * So we just call close() the right number of times.
1da177e4
LT		 744 */
745 if (cons_filp) {
f34d7a5b 746 if (tty->ops->close)
1da177e4 747 for (n = 0; n < closecount; n++)
f34d7a5b
AC		 748 tty->ops->close(tty, cons_filp);
749 } else if (tty->ops->hangup)
7c6d340f 750 tty->ops->hangup(tty);
37bdfb07
AC		 751 /*
752 * We don't want to have driver/ldisc interactions beyond
753 * the ones we did here. The driver layer expects no
754 * calls after ->hangup() from the ldisc side. However we
755 * can't yet guarantee all that.
756 */
1da177e4 757 set_bit(TTY_HUPPED, &tty->flags);
89c8d91e 758 tty_unlock(tty);
11dbf203 759
1da177e4
LT		 760 if (f)
761 fput(f);
762}
763
ddcd9fb6
AB		 764static void do_tty_hangup(struct work_struct *work)
765{
766 struct tty_struct *tty =
767 container_of(work, struct tty_struct, hangup_work);
768
f91e2590 769 __tty_hangup(tty, 0);
ddcd9fb6
AB		 770}
771
af9b897e
AC		 772/**
773 * tty_hangup - trigger a hangup event
774 * @tty: tty to hangup
775 *
776 * A carrier loss (virtual or otherwise) has occurred on this like
777 * schedule a hangup sequence to run after this event.
778 */
779
37bdfb07 780void tty_hangup(struct tty_struct *tty)
1da177e4 781{
accff793 782 tty_debug_hangup(tty, "\n");
1da177e4
LT		 783 schedule_work(&tty->hangup_work);
784}
785
786EXPORT_SYMBOL(tty_hangup);
787
af9b897e
AC		 788/**
789 * tty_vhangup - process vhangup
790 * @tty: tty to hangup
791 *
792 * The user has asked via system call for the terminal to be hung up.
793 * We do this synchronously so that when the syscall returns the process
3a4fa0a2 794 * is complete. That guarantee is necessary for security reasons.
af9b897e
AC		 795 */
796
37bdfb07 797void tty_vhangup(struct tty_struct *tty)
1da177e4 798{
accff793 799 tty_debug_hangup(tty, "\n");
f91e2590 800 __tty_hangup(tty, 0);
1da177e4 801}
37bdfb07 802
1da177e4
LT		 803EXPORT_SYMBOL(tty_vhangup);
804
11dbf203 805
2cb5998b
AC		 806/**
807 * tty_vhangup_self - process vhangup for own ctty
808 *
809 * Perform a vhangup on the current controlling tty
810 */
811
812void tty_vhangup_self(void)
813{
814 struct tty_struct *tty;
815
2cb5998b
AC		 816 tty = get_current_tty();
817 if (tty) {
818 tty_vhangup(tty);
819 tty_kref_put(tty);
820 }
2cb5998b
AC		 821}
822
f91e2590
PH		 823/**
824 * tty_vhangup_session - hangup session leader exit
825 * @tty: tty to hangup
826 *
827 * The session leader is exiting and hanging up its controlling terminal.
828 * Every process in the foreground process group is signalled SIGHUP.
829 *
830 * We do this synchronously so that when the syscall returns the process
831 * is complete. That guarantee is necessary for security reasons.
832 */
833
44a459fd 834static void tty_vhangup_session(struct tty_struct *tty)
f91e2590 835{
accff793 836 tty_debug_hangup(tty, "\n");
f91e2590
PH		 837 __tty_hangup(tty, 1);
838}
839
af9b897e
AC		 840/**
841 * tty_hung_up_p - was tty hung up
842 * @filp: file pointer of tty
843 *
844 * Return true if the tty has been subject to a vhangup or a carrier
845 * loss
846 */
847
37bdfb07 848int tty_hung_up_p(struct file *filp)
1da177e4
LT		 849{
850 return (filp->f_op == &hung_up_tty_fops);
851}
852
853EXPORT_SYMBOL(tty_hung_up_p);
854
af9b897e
AC		 855/**
856 * disassociate_ctty - disconnect controlling tty
857 * @on_exit: true if exiting so need to "hang up" the session
1da177e4 858 *
af9b897e
AC		 859 * This function is typically called only by the session leader, when
860 * it wants to disassociate itself from its controlling tty.
861 *
862 * It performs the following functions:
1da177e4
LT		 863 * (1) Sends a SIGHUP and SIGCONT to the foreground process group
864 * (2) Clears the tty from being controlling the session
865 * (3) Clears the controlling tty for all processes in the
866 * session group.
867 *
af9b897e
AC		 868 * The argument on_exit is set to 1 if called when a process is
869 * exiting; it is 0 if called by the ioctl TIOCNOTTY.
870 *
24ec839c 871 * Locking:
ec79d605
AB		 872 * BTM is taken for hysterical raisins, and held when
873 * called from no_tty().
24ec839c
PZ		 874 * tty_mutex is taken to protect tty
875 * ->siglock is taken to protect ->signal/->sighand
876 * tasklist_lock is taken to walk process list for sessions
877 * ->siglock is taken to protect ->signal/->sighand
1da177e4 878 */
af9b897e 879
1da177e4
LT		 880void disassociate_ctty(int on_exit)
881{
882 struct tty_struct *tty;
1da177e4 883
5ec93d11
AC		 884 if (!current->signal->leader)
885 return;
1da177e4 886
24ec839c 887 tty = get_current_tty();
1da177e4 888 if (tty) {
f91e2590
PH		 889 if (on_exit && tty->driver->type != TTY_DRIVER_TYPE_PTY) {
890 tty_vhangup_session(tty);
891 } else {
892 struct pid *tty_pgrp = tty_get_pgrp(tty);
893 if (tty_pgrp) {
894 kill_pgrp(tty_pgrp, SIGHUP, on_exit);
03e12617
ON		 895 if (!on_exit)
896 kill_pgrp(tty_pgrp, SIGCONT, on_exit);
f91e2590
PH		 897 put_pid(tty_pgrp);
898 }
1411dc4a 899 }
f91e2590
PH		 900 tty_kref_put(tty);
901
680a9671 902 } else if (on_exit) {
ab521dc0 903 struct pid *old_pgrp;
680a9671
EB		 904 spin_lock_irq(&current->sighand->siglock);
905 old_pgrp = current->signal->tty_old_pgrp;
ab521dc0 906 current->signal->tty_old_pgrp = NULL;
680a9671 907 spin_unlock_irq(&current->sighand->siglock);
24ec839c 908 if (old_pgrp) {
ab521dc0
EB		 909 kill_pgrp(old_pgrp, SIGHUP, on_exit);
910 kill_pgrp(old_pgrp, SIGCONT, on_exit);
911 put_pid(old_pgrp);
1da177e4 912 }
1da177e4
LT		 913 return;
914 }
1da177e4 915
24ec839c 916 spin_lock_irq(&current->sighand->siglock);
2a65f1d9 917 put_pid(current->signal->tty_old_pgrp);
23cac8de 918 current->signal->tty_old_pgrp = NULL;
24ec839c 919
c70dbb1e 920 tty = tty_kref_get(current->signal->tty);
24ec839c 921 if (tty) {
47f86834
AC		 922 unsigned long flags;
923 spin_lock_irqsave(&tty->ctrl_lock, flags);
ab521dc0
EB		 924 put_pid(tty->session);
925 put_pid(tty->pgrp);
926 tty->session = NULL;
927 tty->pgrp = NULL;
47f86834 928 spin_unlock_irqrestore(&tty->ctrl_lock, flags);
452a00d2 929 tty_kref_put(tty);
accff793
PH		 930 } else
931 tty_debug_hangup(tty, "no current tty\n");
1da177e4 932
c70dbb1e 933 spin_unlock_irq(&current->sighand->siglock);
1da177e4
LT		 934 /* Now clear signal->tty under the lock */
935 read_lock(&tasklist_lock);
ab521dc0 936 session_clear_tty(task_session(current));
1da177e4 937 read_unlock(&tasklist_lock);
1da177e4
LT		 938}
939
98a27ba4
EB		 940/**
941 *
942 * no_tty - Ensure the current process does not have a controlling tty
943 */
944void no_tty(void)
945{
3af502b9
AC		 946 /* FIXME: Review locking here. The tty_lock never covered any race
947 between a new association and proc_clear_tty but possible we need
948 to protect against this anyway */
98a27ba4 949 struct task_struct *tsk = current;
5ec93d11 950 disassociate_ctty(0);
98a27ba4
EB		 951 proc_clear_tty(tsk);
952}
953
af9b897e
AC		 954
955/**
beb7dd86 956 * stop_tty - propagate flow control
af9b897e
AC		 957 * @tty: tty to stop
958 *
01adc807 959 * Perform flow control to the driver. May be called
af9b897e
AC		 960 * on an already stopped device and will not re-call the driver
961 * method.
962 *
963 * This functionality is used by both the line disciplines for
964 * halting incoming flow and by the driver. It may therefore be
965 * called from any context, may be under the tty atomic_write_lock
966 * but not always.
967 *
968 * Locking:
f9e053dc 969 * flow_lock
af9b897e
AC		 970 */
971
f9e053dc 972void __stop_tty(struct tty_struct *tty)
1da177e4 973{
f9e053dc 974 if (tty->stopped)
1da177e4
LT		 975 return;
976 tty->stopped = 1;
f34d7a5b 977 if (tty->ops->stop)
c961bfb1 978 tty->ops->stop(tty);
1da177e4
LT		 979}
980
f9e053dc
PH		 981void stop_tty(struct tty_struct *tty)
982{
983 unsigned long flags;
984
985 spin_lock_irqsave(&tty->flow_lock, flags);
986 __stop_tty(tty);
987 spin_unlock_irqrestore(&tty->flow_lock, flags);
988}
1da177e4
LT		 989EXPORT_SYMBOL(stop_tty);
990
af9b897e 991/**
beb7dd86 992 * start_tty - propagate flow control
af9b897e
AC		 993 * @tty: tty to start
994 *
01adc807
PH		 995 * Start a tty that has been stopped if at all possible. If this
996 * tty was previous stopped and is now being started, the driver
997 * start method is invoked and the line discipline woken.
af9b897e
AC		 998 *
999 * Locking:
f9e053dc 1000 * flow_lock
af9b897e
AC		 1001 */
1002
f9e053dc 1003void __start_tty(struct tty_struct *tty)
1da177e4 1004{
f9e053dc 1005 if (!tty->stopped || tty->flow_stopped)
1da177e4
LT		 1006 return;
1007 tty->stopped = 0;
f34d7a5b 1008 if (tty->ops->start)
c961bfb1 1009 tty->ops->start(tty);
1da177e4 1010 tty_wakeup(tty);
1da177e4
LT		 1011}
1012
f9e053dc
PH		 1013void start_tty(struct tty_struct *tty)
1014{
1015 unsigned long flags;
1016
1017 spin_lock_irqsave(&tty->flow_lock, flags);
1018 __start_tty(tty);
1019 spin_unlock_irqrestore(&tty->flow_lock, flags);
1020}
1da177e4
LT		 1021EXPORT_SYMBOL(start_tty);
1022
37b7f3c7
JS		 1023static void tty_update_time(struct timespec *time)
1024{
f0bf0bd0 1025 unsigned long sec = get_seconds();
fbf47635
GKH		 1026
1027 /*
1028 * We only care if the two values differ in anything other than the
1029 * lower three bits (i.e every 8 seconds). If so, then we can update
1030 * the time of the tty device, otherwise it could be construded as a
1031 * security leak to let userspace know the exact timing of the tty.
1032 */
1033 if ((sec ^ time->tv_sec) & ~7)
37b7f3c7
JS		 1034 time->tv_sec = sec;
1035}
1036
af9b897e
AC		 1037/**
1038 * tty_read - read method for tty device files
1039 * @file: pointer to tty file
1040 * @buf: user buffer
1041 * @count: size of user buffer
1042 * @ppos: unused
1043 *
1044 * Perform the read system call function on this terminal device. Checks
1045 * for hung up devices before calling the line discipline method.
1046 *
1047 * Locking:
47f86834
AC		 1048 * Locks the line discipline internally while needed. Multiple
1049 * read calls may be outstanding in parallel.
af9b897e
AC		 1050 */
1051
37bdfb07 1052static ssize_t tty_read(struct file *file, char __user *buf, size_t count,
1da177e4
LT		 1053 loff_t *ppos)
1054{
1055 int i;
37b7f3c7 1056 struct inode *inode = file_inode(file);
d996b62a 1057 struct tty_struct *tty = file_tty(file);
1da177e4
LT		 1058 struct tty_ldisc *ld;
1059
37b7f3c7 1060 if (tty_paranoia_check(tty, inode, "tty_read"))
1da177e4
LT		 1061 return -EIO;
1062 if (!tty || (test_bit(TTY_IO_ERROR, &tty->flags)))
1063 return -EIO;
1064
1065 /* We want to wait for the line discipline to sort out in this
1066 situation */
1067 ld = tty_ldisc_ref_wait(tty);
a352def2 1068 if (ld->ops->read)
c961bfb1 1069 i = ld->ops->read(tty, file, buf, count);
1da177e4
LT		 1070 else
1071 i = -EIO;
1072 tty_ldisc_deref(ld);
b0de59b5 1073
37b7f3c7
JS		 1074 if (i > 0)
1075 tty_update_time(&inode->i_atime);
1076
1da177e4
LT		 1077 return i;
1078}
1079
136d5258 1080static void tty_write_unlock(struct tty_struct *tty)
9c1729db
AC		 1081{
1082 mutex_unlock(&tty->atomic_write_lock);
4b19449d 1083 wake_up_interruptible_poll(&tty->write_wait, POLLOUT);
9c1729db
AC		 1084}
1085
136d5258 1086static int tty_write_lock(struct tty_struct *tty, int ndelay)
9c1729db
AC		 1087{
1088 if (!mutex_trylock(&tty->atomic_write_lock)) {
1089 if (ndelay)
1090 return -EAGAIN;
1091 if (mutex_lock_interruptible(&tty->atomic_write_lock))
1092 return -ERESTARTSYS;
1093 }
1094 return 0;
1095}
1096
1da177e4
LT		 1097/*
1098 * Split writes up in sane blocksizes to avoid
1099 * denial-of-service type attacks
1100 */
1101static inline ssize_t do_tty_write(
1102 ssize_t (*write)(struct tty_struct *, struct file *, const unsigned char *, size_t),
1103 struct tty_struct *tty,
1104 struct file *file,
1105 const char __user *buf,
1106 size_t count)
1107{
9c1729db 1108 ssize_t ret, written = 0;
1da177e4 1109 unsigned int chunk;
37bdfb07 1110
9c1729db
AC		 1111 ret = tty_write_lock(tty, file->f_flags & O_NDELAY);
1112 if (ret < 0)
1113 return ret;
1da177e4
LT		 1114
1115 /*
1116 * We chunk up writes into a temporary buffer. This
1117 * simplifies low-level drivers immensely, since they
1118 * don't have locking issues and user mode accesses.
1119 *
1120 * But if TTY_NO_WRITE_SPLIT is set, we should use a
1121 * big chunk-size..
1122 *
1123 * The default chunk-size is 2kB, because the NTTY
1124 * layer has problems with bigger chunks. It will
1125 * claim to be able to handle more characters than
1126 * it actually does.
af9b897e
AC		 1127 *
1128 * FIXME: This can probably go away now except that 64K chunks
1129 * are too likely to fail unless switched to vmalloc...
1da177e4
LT		 1130 */
1131 chunk = 2048;
1132 if (test_bit(TTY_NO_WRITE_SPLIT, &tty->flags))
1133 chunk = 65536;
1134 if (count < chunk)
1135 chunk = count;
1136
70522e12 1137 /* write_buf/write_cnt is protected by the atomic_write_lock mutex */
1da177e4 1138 if (tty->write_cnt < chunk) {
402fda92 1139 unsigned char *buf_chunk;
1da177e4
LT		 1140
1141 if (chunk < 1024)
1142 chunk = 1024;
1143
402fda92
JW		 1144 buf_chunk = kmalloc(chunk, GFP_KERNEL);
1145 if (!buf_chunk) {
9c1729db
AC		 1146 ret = -ENOMEM;
1147 goto out;
1da177e4
LT		 1148 }
1149 kfree(tty->write_buf);
1150 tty->write_cnt = chunk;
402fda92 1151 tty->write_buf = buf_chunk;
1da177e4
LT		 1152 }
1153
1154 /* Do the write .. */
1155 for (;;) {
1156 size_t size = count;
1157 if (size > chunk)
1158 size = chunk;
1159 ret = -EFAULT;
1160 if (copy_from_user(tty->write_buf, buf, size))
1161 break;
1da177e4 1162 ret = write(tty, file, tty->write_buf, size);
1da177e4
LT		 1163 if (ret <= 0)
1164 break;
1165 written += ret;
1166 buf += ret;
1167 count -= ret;
1168 if (!count)
1169 break;
1170 ret = -ERESTARTSYS;
1171 if (signal_pending(current))
1172 break;
1173 cond_resched();
1174 }
37b7f3c7
JS		 1175 if (written) {
1176 tty_update_time(&file_inode(file)->i_mtime);
1da177e4 1177 ret = written;
37b7f3c7 1178 }
9c1729db
AC		 1179out:
1180 tty_write_unlock(tty);
1da177e4
LT		 1181 return ret;
1182}
1183
95f9bfc6
AC		 1184/**
1185 * tty_write_message - write a message to a certain tty, not just the console.
1186 * @tty: the destination tty_struct
1187 * @msg: the message to write
1188 *
1189 * This is used for messages that need to be redirected to a specific tty.
1190 * We don't put it into the syslog queue right now maybe in the future if
1191 * really needed.
1192 *
ec79d605 1193 * We must still hold the BTM and test the CLOSING flag for the moment.
95f9bfc6
AC		 1194 */
1195
1196void tty_write_message(struct tty_struct *tty, char *msg)
1197{
95f9bfc6
AC		 1198 if (tty) {
1199 mutex_lock(&tty->atomic_write_lock);
89c8d91e 1200 tty_lock(tty);
04980706 1201 if (tty->ops->write && tty->count > 0) {
89c8d91e 1202 tty_unlock(tty);
95f9bfc6 1203 tty->ops->write(tty, msg, strlen(msg));
eeb89d91 1204 } else
89c8d91e 1205 tty_unlock(tty);
95f9bfc6
AC		 1206 tty_write_unlock(tty);
1207 }
95f9bfc6
AC		 1208 return;
1209}
1210
1da177e4 1211
af9b897e
AC		 1212/**
1213 * tty_write - write method for tty device file
1214 * @file: tty file pointer
1215 * @buf: user data to write
1216 * @count: bytes to write
1217 * @ppos: unused
1218 *
1219 * Write data to a tty device via the line discipline.
1220 *
1221 * Locking:
1222 * Locks the line discipline as required
1223 * Writes to the tty driver are serialized by the atomic_write_lock
1224 * and are then processed in chunks to the device. The line discipline
a88a69c9 1225 * write method will not be invoked in parallel for each device.
af9b897e
AC		 1226 */
1227
37bdfb07
AC		 1228static ssize_t tty_write(struct file *file, const char __user *buf,
1229 size_t count, loff_t *ppos)
1da177e4 1230{
d996b62a
NP		 1231 struct tty_struct *tty = file_tty(file);
1232 struct tty_ldisc *ld;
1da177e4 1233 ssize_t ret;
37bdfb07 1234
6131ffaa 1235 if (tty_paranoia_check(tty, file_inode(file), "tty_write"))
1da177e4 1236 return -EIO;
f34d7a5b 1237 if (!tty || !tty->ops->write ||
37bdfb07
AC		 1238 (test_bit(TTY_IO_ERROR, &tty->flags)))
1239 return -EIO;
f34d7a5b
AC		 1240 /* Short term debug to catch buggy drivers */
1241 if (tty->ops->write_room == NULL)
1242 printk(KERN_ERR "tty driver %s lacks a write_room method.\n",
1243 tty->driver->name);
37bdfb07 1244 ld = tty_ldisc_ref_wait(tty);
a352def2 1245 if (!ld->ops->write)
1da177e4
LT		 1246 ret = -EIO;
1247 else
a352def2 1248 ret = do_tty_write(ld->ops->write, tty, file, buf, count);
1da177e4
LT		 1249 tty_ldisc_deref(ld);
1250 return ret;
1251}
1252
37bdfb07
AC		 1253ssize_t redirected_tty_write(struct file *file, const char __user *buf,
1254 size_t count, loff_t *ppos)
1da177e4
LT		 1255{
1256 struct file *p = NULL;
1257
1258 spin_lock(&redirect_lock);
cb0942b8
AV		 1259 if (redirect)
1260 p = get_file(redirect);
1da177e4
LT		 1261 spin_unlock(&redirect_lock);
1262
1263 if (p) {
1264 ssize_t res;
1265 res = vfs_write(p, buf, count, &p->f_pos);
1266 fput(p);
1267 return res;
1268 }
1da177e4
LT		 1269 return tty_write(file, buf, count, ppos);
1270}
1271
136d5258
PH		 1272/**
1273 * tty_send_xchar - send priority character
1274 *
1275 * Send a high priority character to the tty even if stopped
1276 *
1277 * Locking: none for xchar method, write ordering for write method.
1278 */
1279
1280int tty_send_xchar(struct tty_struct *tty, char ch)
1281{
1282 int was_stopped = tty->stopped;
1283
1284 if (tty->ops->send_xchar) {
1285 tty->ops->send_xchar(tty, ch);
1286 return 0;
1287 }
1288
1289 if (tty_write_lock(tty, 0) < 0)
1290 return -ERESTARTSYS;
1291
1292 if (was_stopped)
1293 start_tty(tty);
1294 tty->ops->write(tty, &ch, 1);
1295 if (was_stopped)
1296 stop_tty(tty);
1297 tty_write_unlock(tty);
1298 return 0;
1299}
1300
1da177e4
LT		 1301static char ptychar[] = "pqrstuvwxyzabcde";
1302
af9b897e
AC		 1303/**
1304 * pty_line_name - generate name for a pty
1305 * @driver: the tty driver in use
1306 * @index: the minor number
1307 * @p: output buffer of at least 6 bytes
1308 *
1309 * Generate a name from a driver reference and write it to the output
1310 * buffer.
1311 *
1312 * Locking: None
1313 */
1314static void pty_line_name(struct tty_driver *driver, int index, char *p)
1da177e4
LT		 1315{
1316 int i = index + driver->name_base;
1317 /* ->name is initialized to "ttyp", but "tty" is expected */
1318 sprintf(p, "%s%c%x",
37bdfb07
AC		 1319 driver->subtype == PTY_TYPE_SLAVE ? "tty" : driver->name,
1320 ptychar[i >> 4 & 0xf], i & 0xf);
1da177e4
LT		 1321}
1322
af9b897e 1323/**
8b0a88d5 1324 * tty_line_name - generate name for a tty
af9b897e
AC		 1325 * @driver: the tty driver in use
1326 * @index: the minor number
1327 * @p: output buffer of at least 7 bytes
1328 *
1329 * Generate a name from a driver reference and write it to the output
5c0a2450 1330 * buffer.
af9b897e
AC		 1331 *
1332 * Locking: None
1333 */
723abd87 1334static ssize_t tty_line_name(struct tty_driver *driver, int index, char *p)
1da177e4 1335{
0019b408 1336 if (driver->flags & TTY_DRIVER_UNNUMBERED_NODE)
723abd87 1337 return sprintf(p, "%s", driver->name);
0019b408 1338 else
723abd87
HR		 1339 return sprintf(p, "%s%d", driver->name,
1340 index + driver->name_base);
1da177e4
LT		 1341}
1342
99f1fe18
AC		 1343/**
1344 * tty_driver_lookup_tty() - find an existing tty, if any
1345 * @driver: the driver for the tty
1346 * @idx: the minor number
23499705 1347 *
aa3cb814
PH		 1348 * Return the tty, if found. If not found, return NULL or ERR_PTR() if the
1349 * driver lookup() method returns an error.
23499705 1350 *
aa3cb814 1351 * Locking: tty_mutex must be held. If the tty is found, bump the tty kref.
23499705 1352 */
a47d545f 1353static struct tty_struct *tty_driver_lookup_tty(struct tty_driver *driver,
15f1a633 1354 struct inode *inode, int idx)
23499705 1355{
aa3cb814
PH		 1356 struct tty_struct *tty;
1357
99f1fe18 1358 if (driver->ops->lookup)
aa3cb814
PH		 1359 tty = driver->ops->lookup(driver, inode, idx);
1360 else
1361 tty = driver->ttys[idx];
23499705 1362
aa3cb814
PH		 1363 if (!IS_ERR(tty))
1364 tty_kref_get(tty);
1365 return tty;
23499705
SB		 1366}
1367
bf970ee4
AC		 1368/**
1369 * tty_init_termios - helper for termios setup
1370 * @tty: the tty to set up
1371 *
1372 * Initialise the termios structures for this tty. Thus runs under
1373 * the tty_mutex currently so we can be relaxed about ordering.
1374 */
1375
1376int tty_init_termios(struct tty_struct *tty)
1377{
fe6e29fd 1378 struct ktermios *tp;
bf970ee4
AC		 1379 int idx = tty->index;
1380
36b3c070
AC		 1381 if (tty->driver->flags & TTY_DRIVER_RESET_TERMIOS)
1382 tty->termios = tty->driver->init_termios;
1383 else {
1384 /* Check for lazy saved data */
1385 tp = tty->driver->termios[idx];
1386 if (tp != NULL)
1387 tty->termios = *tp;
1388 else
1389 tty->termios = tty->driver->init_termios;
bf970ee4 1390 }
bf970ee4 1391 /* Compatibility until drivers always set this */
adc8d746
AC		 1392 tty->termios.c_ispeed = tty_termios_input_baud_rate(&tty->termios);
1393 tty->termios.c_ospeed = tty_termios_baud_rate(&tty->termios);
bf970ee4
AC		 1394 return 0;
1395}
fe1ae7fd 1396EXPORT_SYMBOL_GPL(tty_init_termios);
bf970ee4 1397
66d450e8
JS		 1398int tty_standard_install(struct tty_driver *driver, struct tty_struct *tty)
1399{
1400 int ret = tty_init_termios(tty);
1401 if (ret)
1402 return ret;
1403
1404 tty_driver_kref_get(driver);
1405 tty->count++;
1406 driver->ttys[tty->index] = tty;
1407 return 0;
1408}
1409EXPORT_SYMBOL_GPL(tty_standard_install);
1410
99f1fe18 1411/**
8b0a88d5
AC		 1412 * tty_driver_install_tty() - install a tty entry in the driver
1413 * @driver: the driver for the tty
1414 * @tty: the tty
1415 *
1416 * Install a tty object into the driver tables. The tty->index field
bf970ee4
AC		 1417 * will be set by the time this is called. This method is responsible
1418 * for ensuring any need additional structures are allocated and
1419 * configured.
8b0a88d5
AC		 1420 *
1421 * Locking: tty_mutex for now
1422 */
1423static int tty_driver_install_tty(struct tty_driver *driver,
1424 struct tty_struct *tty)
1425{
66d450e8
JS		 1426 return driver->ops->install ? driver->ops->install(driver, tty) :
1427 tty_standard_install(driver, tty);
8b0a88d5
AC		 1428}
1429
1430/**
1431 * tty_driver_remove_tty() - remove a tty from the driver tables
1432 * @driver: the driver for the tty
1433 * @idx: the minor number
1434 *
1435 * Remvoe a tty object from the driver tables. The tty->index field
1436 * will be set by the time this is called.
1437 *
1438 * Locking: tty_mutex for now
1439 */
24d406a6 1440void tty_driver_remove_tty(struct tty_driver *driver, struct tty_struct *tty)
8b0a88d5
AC		 1441{
1442 if (driver->ops->remove)
1443 driver->ops->remove(driver, tty);
1444 else
1445 driver->ttys[tty->index] = NULL;
1446}
1447
1448/*
1449 * tty_reopen() - fast re-open of an open tty
1450 * @tty - the tty to open
23499705 1451 *
99f1fe18 1452 * Return 0 on success, -errno on error.
5d93e748 1453 * Re-opens on master ptys are not allowed and return -EIO.
23499705 1454 *
5d93e748 1455 * Locking: Caller must hold tty_lock
23499705 1456 */
99f1fe18 1457static int tty_reopen(struct tty_struct *tty)
23499705
SB		 1458{
1459 struct tty_driver *driver = tty->driver;
1460
216030ec 1461 if (!tty->count)
23499705
SB		 1462 return -EIO;
1463
1464 if (driver->type == TTY_DRIVER_TYPE_PTY &&
5d93e748
PH		 1465 driver->subtype == PTY_TYPE_MASTER)
1466 return -EIO;
23499705 1467
86f2c00f
PH		 1468 if (test_bit(TTY_EXCLUSIVE, &tty->flags) && !capable(CAP_SYS_ADMIN))
1469 return -EBUSY;
1470
23499705 1471 tty->count++;
23499705 1472
36697529 1473 WARN_ON(!tty->ldisc);
23499705
SB		 1474
1475 return 0;
1476}
1477
af9b897e 1478/**
d81ed103 1479 * tty_init_dev - initialise a tty device
af9b897e
AC		 1480 * @driver: tty driver we are opening a device on
1481 * @idx: device index
15582d36 1482 * @ret_tty: returned tty structure
af9b897e
AC		 1483 *
1484 * Prepare a tty device. This may not be a "new" clean device but
1485 * could also be an active device. The pty drivers require special
1486 * handling because of this.
1487 *
1488 * Locking:
1489 * The function is called under the tty_mutex, which
1490 * protects us from the tty struct or driver itself going away.
1491 *
1492 * On exit the tty device has the line discipline attached and
1493 * a reference count of 1. If a pair was created for pty/tty use
1494 * and the other was a pty master then it too has a reference count of 1.
1495 *
1da177e4 1496 * WSH 06/09/97: Rewritten to remove races and properly clean up after a
70522e12
IM		 1497 * failed open. The new code protects the open with a mutex, so it's
1498 * really quite straightforward. The mutex locking can probably be
1da177e4
LT		 1499 * relaxed for the (most common) case of reopening a tty.
1500 */
af9b897e 1501
593a27c4 1502struct tty_struct *tty_init_dev(struct tty_driver *driver, int idx)
1da177e4 1503{
bf970ee4 1504 struct tty_struct *tty;
73ec06fc 1505 int retval;
1da177e4 1506
1da177e4
LT		 1507 /*
1508 * First time open is complex, especially for PTY devices.
1509 * This code guarantees that either everything succeeds and the
1510 * TTY is ready for operation, or else the table slots are vacated
37bdfb07 1511 * and the allocated memory released. (Except that the termios
1da177e4
LT		 1512 * and locked termios may be retained.)
1513 */
1514
73ec06fc
AC		 1515 if (!try_module_get(driver->owner))
1516 return ERR_PTR(-ENODEV);
1da177e4 1517
2c964a2f 1518 tty = alloc_tty_struct(driver, idx);
d5543503
JS		 1519 if (!tty) {
1520 retval = -ENOMEM;
1521 goto err_module_put;
1522 }
1da177e4 1523
89c8d91e 1524 tty_lock(tty);
73ec06fc 1525 retval = tty_driver_install_tty(driver, tty);
d5543503 1526 if (retval < 0)
a9dccddb 1527 goto err_deinit_tty;
8b0a88d5 1528
04831dc1
JS		 1529 if (!tty->port)
1530 tty->port = driver->ports[idx];
1531
5d4121c0
JS		 1532 WARN_RATELIMIT(!tty->port,
1533 "%s: %s driver does not set tty->port. This will crash the kernel later. Fix the driver!\n",
1534 __func__, tty->driver->name);
1535
967fab69
JS		 1536 tty->port->itty = tty;
1537
37bdfb07 1538 /*
1da177e4 1539 * Structures all installed ... call the ldisc open routines.
d5698c28
CH		 1540 * If we fail here just call release_tty to clean up. No need
1541 * to decrement the use counts, as release_tty doesn't care.
1da177e4 1542 */
bf970ee4 1543 retval = tty_ldisc_setup(tty, tty->link);
01e1abb2 1544 if (retval)
d5543503 1545 goto err_release_tty;
89c8d91e 1546 /* Return the tty locked so that it cannot vanish under the caller */
73ec06fc 1547 return tty;
1da177e4 1548
a9dccddb 1549err_deinit_tty:
89c8d91e 1550 tty_unlock(tty);
a9dccddb 1551 deinitialize_tty_struct(tty);
d5543503
JS		 1552 free_tty_struct(tty);
1553err_module_put:
1da177e4 1554 module_put(driver->owner);
d5543503 1555 return ERR_PTR(retval);
1da177e4 1556
d5698c28 1557 /* call the tty release_tty routine to clean out this slot */
d5543503 1558err_release_tty:
89c8d91e 1559 tty_unlock(tty);
5a3c6b25 1560 printk_ratelimited(KERN_INFO "tty_init_dev: ldisc open failed, "
4050914f 1561 "clearing slot %d\n", idx);
d5698c28 1562 release_tty(tty, idx);
73ec06fc 1563 return ERR_PTR(retval);
1da177e4
LT		 1564}
1565
feebed65
AC		 1566void tty_free_termios(struct tty_struct *tty)
1567{
1568 struct ktermios *tp;
1569 int idx = tty->index;
36b3c070
AC		 1570
1571 /* If the port is going to reset then it has no termios to save */
1572 if (tty->driver->flags & TTY_DRIVER_RESET_TERMIOS)
1573 return;
1574
1575 /* Stash the termios data */
1576 tp = tty->driver->termios[idx];
1577 if (tp == NULL) {
1578 tp = kmalloc(sizeof(struct ktermios), GFP_KERNEL);
1579 if (tp == NULL) {
1580 pr_warn("tty: no memory to save termios state.\n");
1581 return;
1582 }
4ac5d705 1583 tty->driver->termios[idx] = tp;
feebed65 1584 }
36b3c070 1585 *tp = tty->termios;
feebed65
AC		 1586}
1587EXPORT_SYMBOL(tty_free_termios);
1588
a2965b7b 1589/**
949aa64f
PH		 1590 * tty_flush_works - flush all works of a tty/pty pair
1591 * @tty: tty device to flush works for (or either end of a pty pair)
a2965b7b 1592 *
949aa64f 1593 * Sync flush all works belonging to @tty (and the 'other' tty).
a2965b7b
PH		 1594 */
1595static void tty_flush_works(struct tty_struct *tty)
1596{
1597 flush_work(&tty->SAK_work);
1598 flush_work(&tty->hangup_work);
949aa64f
PH		 1599 if (tty->link) {
1600 flush_work(&tty->link->SAK_work);
1601 flush_work(&tty->link->hangup_work);
1602 }
a2965b7b 1603}
feebed65 1604
af9b897e 1605/**
d5698c28 1606 * release_one_tty - release tty structure memory
9c9f4ded 1607 * @kref: kref of tty we are obliterating
af9b897e
AC		 1608 *
1609 * Releases memory associated with a tty structure, and clears out the
1610 * driver table slots. This function is called when a device is no longer
1611 * in use. It also gets called when setup of a device fails.
1612 *
1613 * Locking:
af9b897e
AC		 1614 * takes the file list lock internally when working on the list
1615 * of ttys that the driver keeps.
b50989dc
AC		 1616 *
1617 * This method gets called from a work queue so that the driver private
f278a2f7 1618 * cleanup ops can sleep (needed for USB at least)
1da177e4 1619 */
b50989dc 1620static void release_one_tty(struct work_struct *work)
1da177e4 1621{
b50989dc
AC		 1622 struct tty_struct *tty =
1623 container_of(work, struct tty_struct, hangup_work);
6f967f78 1624 struct tty_driver *driver = tty->driver;
b216df53 1625 struct module *owner = driver->owner;
d5698c28 1626
f278a2f7
DY		 1627 if (tty->ops->cleanup)
1628 tty->ops->cleanup(tty);
1629
1da177e4 1630 tty->magic = 0;
7d7b93c1 1631 tty_driver_kref_put(driver);
b216df53 1632 module_put(owner);
d5698c28 1633
ee2ffa0d 1634 spin_lock(&tty_files_lock);
1da177e4 1635 list_del_init(&tty->tty_files);
ee2ffa0d 1636 spin_unlock(&tty_files_lock);
d5698c28 1637
6da8d866
ON		 1638 put_pid(tty->pgrp);
1639 put_pid(tty->session);
1da177e4
LT		 1640 free_tty_struct(tty);
1641}
1642
b50989dc
AC		 1643static void queue_release_one_tty(struct kref *kref)
1644{
1645 struct tty_struct *tty = container_of(kref, struct tty_struct, kref);
f278a2f7 1646
b50989dc
AC		 1647 /* The hangup queue is now free so we can reuse it rather than
1648 waste a chunk of memory for each port */
1649 INIT_WORK(&tty->hangup_work, release_one_tty);
1650 schedule_work(&tty->hangup_work);
1651}
1652
9c9f4ded
AC		 1653/**
1654 * tty_kref_put - release a tty kref
1655 * @tty: tty device
1656 *
1657 * Release a reference to a tty device and if need be let the kref
1658 * layer destruct the object for us
1659 */
1660
1661void tty_kref_put(struct tty_struct *tty)
1662{
1663 if (tty)
b50989dc 1664 kref_put(&tty->kref, queue_release_one_tty);
9c9f4ded
AC		 1665}
1666EXPORT_SYMBOL(tty_kref_put);
1667
d5698c28
CH		 1668/**
1669 * release_tty - release tty structure memory
1670 *
1671 * Release both @tty and a possible linked partner (think pty pair),
1672 * and decrement the refcount of the backing module.
1673 *
1674 * Locking:
d155255a 1675 * tty_mutex
d5698c28
CH		 1676 * takes the file list lock internally when working on the list
1677 * of ttys that the driver keeps.
9c9f4ded 1678 *
d5698c28
CH		 1679 */
1680static void release_tty(struct tty_struct *tty, int idx)
1681{
9c9f4ded
AC		 1682 /* This should always be true but check for the moment */
1683 WARN_ON(tty->index != idx);
d155255a 1684 WARN_ON(!mutex_is_locked(&tty_mutex));
36b3c070
AC		 1685 if (tty->ops->shutdown)
1686 tty->ops->shutdown(tty);
1687 tty_free_termios(tty);
1688 tty_driver_remove_tty(tty->driver, tty);
967fab69 1689 tty->port->itty = NULL;
64e377dc
PH		 1690 if (tty->link)
1691 tty->link->port->itty = NULL;
4f98d467 1692 cancel_work_sync(&tty->port->buf.work);
36b3c070 1693
a211b1af 1694 tty_kref_put(tty->link);
9c9f4ded 1695 tty_kref_put(tty);
d5698c28
CH		 1696}
1697
955787ca
JS		 1698/**
1699 * tty_release_checks - check a tty before real release
1700 * @tty: tty to check
1701 * @o_tty: link of @tty (if any)
1702 * @idx: index of the tty
1703 *
1704 * Performs some paranoid checking before true release of the @tty.
1705 * This is a no-op unless TTY_PARANOIA_CHECK is defined.
1706 */
359b9fb5 1707static int tty_release_checks(struct tty_struct *tty, int idx)
955787ca
JS		 1708{
1709#ifdef TTY_PARANOIA_CHECK
1710 if (idx < 0 || idx >= tty->driver->num) {
e2dfa3d3 1711 tty_debug(tty, "bad idx %d\n", idx);
955787ca
JS		 1712 return -1;
1713 }
1714
1715 /* not much to check for devpts */
1716 if (tty->driver->flags & TTY_DRIVER_DEVPTS_MEM)
1717 return 0;
1718
1719 if (tty != tty->driver->ttys[idx]) {
e2dfa3d3
PH		 1720 tty_debug(tty, "bad driver table[%d] = %p\n",
1721 idx, tty->driver->ttys[idx]);
955787ca
JS		 1722 return -1;
1723 }
955787ca 1724 if (tty->driver->other) {
359b9fb5
PH		 1725 struct tty_struct *o_tty = tty->link;
1726
955787ca 1727 if (o_tty != tty->driver->other->ttys[idx]) {
e2dfa3d3
PH		 1728 tty_debug(tty, "bad other table[%d] = %p\n",
1729 idx, tty->driver->other->ttys[idx]);
955787ca
JS		 1730 return -1;
1731 }
955787ca 1732 if (o_tty->link != tty) {
e2dfa3d3 1733 tty_debug(tty, "bad link = %p\n", o_tty->link);
955787ca
JS		 1734 return -1;
1735 }
1736 }
1737#endif
1738 return 0;
1739}
1740
eeb89d91
AC		 1741/**
1742 * tty_release - vfs callback for close
1743 * @inode: inode of tty
1744 * @filp: file pointer for handle to tty
1745 *
1746 * Called the last time each file handle is closed that references
1747 * this tty. There may however be several such references.
1748 *
1749 * Locking:
1750 * Takes bkl. See tty_release_dev
1751 *
1da177e4
LT		 1752 * Even releasing the tty structures is a tricky business.. We have
1753 * to be very careful that the structures are all released at the
1754 * same time, as interrupts might otherwise get the wrong pointers.
1755 *
1756 * WSH 09/09/97: rewritten to avoid some nasty race conditions that could
1757 * lead to double frees or releasing memory still in use.
1758 */
eeb89d91
AC		 1759
1760int tty_release(struct inode *inode, struct file *filp)
1da177e4 1761{
d996b62a 1762 struct tty_struct *tty = file_tty(filp);
7ffb6da9
PH		 1763 struct tty_struct *o_tty = NULL;
1764 int do_sleep, final;
1da177e4 1765 int idx;
37b16457 1766 long timeout = 0;
494c1eac 1767 int once = 1;
37bdfb07 1768
9de44bd6 1769 if (tty_paranoia_check(tty, inode, __func__))
eeb89d91 1770 return 0;
1da177e4 1771
89c8d91e 1772 tty_lock(tty);
9de44bd6 1773 check_tty_count(tty, __func__);
1da177e4 1774
ec79d605 1775 __tty_fasync(-1, filp, 0);
1da177e4
LT		 1776
1777 idx = tty->index;
7ffb6da9
PH		 1778 if (tty->driver->type == TTY_DRIVER_TYPE_PTY &&
1779 tty->driver->subtype == PTY_TYPE_MASTER)
1780 o_tty = tty->link;
1da177e4 1781
359b9fb5 1782 if (tty_release_checks(tty, idx)) {
89c8d91e 1783 tty_unlock(tty);
eeb89d91 1784 return 0;
1da177e4 1785 }
1da177e4 1786
accff793 1787 tty_debug_hangup(tty, "(tty count=%d)...\n", tty->count);
1da177e4 1788
f34d7a5b
AC		 1789 if (tty->ops->close)
1790 tty->ops->close(tty, filp);
1da177e4 1791
2aff5e2b
PH		 1792 /* If tty is pty master, lock the slave pty (stable lock order) */
1793 tty_lock_slave(o_tty);
1794
1da177e4
LT		 1795 /*
1796 * Sanity check: if tty->count is going to zero, there shouldn't be
1797 * any waiters on tty->read_wait or tty->write_wait. We test the
1798 * wait queues and kick everyone out _before_ actually starting to
1799 * close. This ensures that we won't block while releasing the tty
1800 * structure.
1801 *
1802 * The test for the o_tty closing is necessary, since the master and
1803 * slave sides may close in any order. If the slave side closes out
1804 * first, its count will be one, since the master side holds an open.
324c1650 1805 * Thus this test wouldn't be triggered at the time the slave closed,
1da177e4 1806 * so we do it now.
1da177e4
LT		 1807 */
1808 while (1) {
1da177e4
LT		 1809 do_sleep = 0;
1810
324c1650 1811 if (tty->count <= 1) {
1da177e4 1812 if (waitqueue_active(&tty->read_wait)) {
4b19449d 1813 wake_up_poll(&tty->read_wait, POLLIN);
1da177e4
LT		 1814 do_sleep++;
1815 }
1816 if (waitqueue_active(&tty->write_wait)) {
4b19449d 1817 wake_up_poll(&tty->write_wait, POLLOUT);
1da177e4
LT		 1818 do_sleep++;
1819 }
1820 }
7ffb6da9 1821 if (o_tty && o_tty->count <= 1) {
1da177e4 1822 if (waitqueue_active(&o_tty->read_wait)) {
4b19449d 1823 wake_up_poll(&o_tty->read_wait, POLLIN);
1da177e4
LT		 1824 do_sleep++;
1825 }
1826 if (waitqueue_active(&o_tty->write_wait)) {
4b19449d 1827 wake_up_poll(&o_tty->write_wait, POLLOUT);
1da177e4
LT		 1828 do_sleep++;
1829 }
1830 }
1831 if (!do_sleep)
1832 break;
1833
494c1eac
PH		 1834 if (once) {
1835 once = 0;
1836 printk(KERN_WARNING "%s: %s: read/write wait queue active!\n",
429b4749 1837 __func__, tty_name(tty));
494c1eac 1838 }
37b16457
PH		 1839 schedule_timeout_killable(timeout);
1840 if (timeout < 120 * HZ)
1841 timeout = 2 * timeout + 1;
1842 else
1843 timeout = MAX_SCHEDULE_TIMEOUT;
37bdfb07 1844 }
1da177e4 1845
7ffb6da9 1846 if (o_tty) {
1da177e4 1847 if (--o_tty->count < 0) {
9de44bd6 1848 printk(KERN_WARNING "%s: bad pty slave count (%d) for %s\n",
429b4749 1849 __func__, o_tty->count, tty_name(o_tty));
1da177e4
LT		 1850 o_tty->count = 0;
1851 }
1852 }
1853 if (--tty->count < 0) {
9de44bd6 1854 printk(KERN_WARNING "%s: bad tty->count (%d) for %s\n",
429b4749 1855 __func__, tty->count, tty_name(tty));
1da177e4
LT		 1856 tty->count = 0;
1857 }
37bdfb07 1858
1da177e4
LT		 1859 /*
1860 * We've decremented tty->count, so we need to remove this file
1861 * descriptor off the tty->tty_files list; this serves two
1862 * purposes:
1863 * - check_tty_count sees the correct number of file descriptors
1864 * associated with this tty.
1865 * - do_tty_hangup no longer sees this file descriptor as
1866 * something that needs to be handled for hangups.
1867 */
d996b62a 1868 tty_del_file(filp);
1da177e4
LT		 1869
1870 /*
1871 * Perform some housekeeping before deciding whether to return.
1872 *
1da177e4
LT		 1873 * If _either_ side is closing, make sure there aren't any
1874 * processes that still think tty or o_tty is their controlling
1875 * tty.
1876 */
324c1650 1877 if (!tty->count) {
1da177e4 1878 read_lock(&tasklist_lock);
24ec839c 1879 session_clear_tty(tty->session);
7ffb6da9 1880 if (o_tty)
24ec839c 1881 session_clear_tty(o_tty->session);
1da177e4
LT		 1882 read_unlock(&tasklist_lock);
1883 }
1884
324c1650 1885 /* check whether both sides are closing ... */
7ffb6da9 1886 final = !tty->count && !(o_tty && o_tty->count);
324c1650 1887
2aff5e2b
PH		 1888 tty_unlock_slave(o_tty);
1889 tty_unlock(tty);
1890
04980706 1891 /* At this point, the tty->count == 0 should ensure a dead tty
d155255a 1892 cannot be re-opened by a racing opener */
da965822 1893
324c1650 1894 if (!final)
eeb89d91 1895 return 0;
37bdfb07 1896
accff793 1897 tty_debug_hangup(tty, "final close\n");
1da177e4 1898 /*
01e1abb2 1899 * Ask the line discipline code to release its structures
1da177e4 1900 */
62462aef 1901 tty_ldisc_release(tty);
a2965b7b
PH		 1902
1903 /* Wait for pending work before tty destruction commmences */
1904 tty_flush_works(tty);
a2965b7b 1905
accff793 1906 tty_debug_hangup(tty, "freeing structure...\n");
1da177e4 1907 /*
d5698c28 1908 * The release_tty function takes care of the details of clearing
89c8d91e
AC		 1909 * the slots and preserving the termios structure. The tty_unlock_pair
1910 * should be safe as we keep a kref while the tty is locked (so the
1911 * unlock never unlocks a freed tty).
1da177e4 1912 */
d155255a 1913 mutex_lock(&tty_mutex);
d5698c28 1914 release_tty(tty, idx);
d155255a 1915 mutex_unlock(&tty_mutex);
1da177e4 1916
eeb89d91 1917 return 0;
1da177e4
LT		 1918}
1919
b82154ac 1920/**
52494eeb 1921 * tty_open_current_tty - get locked tty of current task
b82154ac
JS		 1922 * @device: device number
1923 * @filp: file pointer to tty
52494eeb
PH		 1924 * @return: locked tty of the current task iff @device is /dev/tty
1925 *
1926 * Performs a re-open of the current task's controlling tty.
b82154ac
JS		 1927 *
1928 * We cannot return driver and index like for the other nodes because
1929 * devpts will not work then. It expects inodes to be from devpts FS.
1930 */
1931static struct tty_struct *tty_open_current_tty(dev_t device, struct file *filp)
1932{
1933 struct tty_struct *tty;
52494eeb 1934 int retval;
b82154ac
JS		 1935
1936 if (device != MKDEV(TTYAUX_MAJOR, 0))
1937 return NULL;
1938
1939 tty = get_current_tty();
1940 if (!tty)
1941 return ERR_PTR(-ENXIO);
1942
1943 filp->f_flags |= O_NONBLOCK; /* Don't let /dev/tty block */
1944 /* noctty = 1; */
52494eeb
PH		 1945 tty_lock(tty);
1946 tty_kref_put(tty); /* safe to drop the kref now */
1947
1948 retval = tty_reopen(tty);
1949 if (retval < 0) {
1950 tty_unlock(tty);
1951 tty = ERR_PTR(retval);
1952 }
b82154ac
JS		 1953 return tty;
1954}
1955
5b5e7040
JS		 1956/**
1957 * tty_lookup_driver - lookup a tty driver for a given device file
1958 * @device: device number
1959 * @filp: file pointer to tty
1960 * @noctty: set if the device should not become a controlling tty
1961 * @index: index for the device in the @return driver
1962 * @return: driver for this inode (with increased refcount)
1963 *
1964 * If @return is not erroneous, the caller is responsible to decrement the
1965 * refcount by tty_driver_kref_put.
1966 *
1967 * Locking: tty_mutex protects get_tty_driver
1968 */
1969static struct tty_driver *tty_lookup_driver(dev_t device, struct file *filp,
1970 int *noctty, int *index)
1971{
1972 struct tty_driver *driver;
1973
2cd0050c 1974 switch (device) {
5b5e7040 1975#ifdef CONFIG_VT
2cd0050c 1976 case MKDEV(TTY_MAJOR, 0): {
5b5e7040
JS		 1977 extern struct tty_driver *console_driver;
1978 driver = tty_driver_kref_get(console_driver);
1979 *index = fg_console;
1980 *noctty = 1;
2cd0050c 1981 break;
5b5e7040
JS		 1982 }
1983#endif
2cd0050c 1984 case MKDEV(TTYAUX_MAJOR, 1): {
5b5e7040
JS		 1985 struct tty_driver *console_driver = console_device(index);
1986 if (console_driver) {
1987 driver = tty_driver_kref_get(console_driver);
1988 if (driver) {
1989 /* Don't let /dev/console block */
1990 filp->f_flags |= O_NONBLOCK;
1991 *noctty = 1;
2cd0050c 1992 break;
5b5e7040
JS		 1993 }
1994 }
1995 return ERR_PTR(-ENODEV);
1996 }
2cd0050c
JS		 1997 default:
1998 driver = get_tty_driver(device, index);
1999 if (!driver)
2000 return ERR_PTR(-ENODEV);
2001 break;
2002 }
5b5e7040
JS		 2003 return driver;
2004}
2005
af9b897e 2006/**
eeb89d91 2007 * tty_open - open a tty device
af9b897e
AC		 2008 * @inode: inode of device file
2009 * @filp: file pointer to tty
1da177e4 2010 *
af9b897e
AC		 2011 * tty_open and tty_release keep up the tty count that contains the
2012 * number of opens done on a tty. We cannot use the inode-count, as
2013 * different inodes might point to the same tty.
1da177e4 2014 *
af9b897e
AC		 2015 * Open-counting is needed for pty masters, as well as for keeping
2016 * track of serial lines: DTR is dropped when the last close happens.
2017 * (This is not done solely through tty->count, now. - Ted 1/27/92)
2018 *
2019 * The termios state of a pty is reset on first open so that
2020 * settings don't persist across reuse.
2021 *
5b5e7040 2022 * Locking: tty_mutex protects tty, tty_lookup_driver and tty_init_dev.
24ec839c
PZ		 2023 * tty->count should protect the rest.
2024 * ->siglock protects ->signal/->sighand
89c8d91e
AC		 2025 *
2026 * Note: the tty_unlock/lock cases without a ref are only safe due to
2027 * tty_mutex
1da177e4 2028 */
af9b897e 2029
eeb89d91 2030static int tty_open(struct inode *inode, struct file *filp)
1da177e4 2031{
b82154ac 2032 struct tty_struct *tty;
1da177e4 2033 int noctty, retval;
b82154ac 2034 struct tty_driver *driver = NULL;
1da177e4
LT		 2035 int index;
2036 dev_t device = inode->i_rdev;
846c151a 2037 unsigned saved_flags = filp->f_flags;
1da177e4
LT		 2038
2039 nonseekable_open(inode, filp);
37bdfb07 2040
1da177e4 2041retry_open:
fa90e1c9
JS		 2042 retval = tty_alloc_file(filp);
2043 if (retval)
2044 return -ENOMEM;
2045
1da177e4
LT		 2046 noctty = filp->f_flags & O_NOCTTY;
2047 index = -1;
2048 retval = 0;
37bdfb07 2049
b82154ac 2050 tty = tty_open_current_tty(device, filp);
52494eeb
PH		 2051 if (!tty) {
2052 mutex_lock(&tty_mutex);
5b5e7040
JS		 2053 driver = tty_lookup_driver(device, filp, &noctty, &index);
2054 if (IS_ERR(driver)) {
ba5db448
JS		 2055 retval = PTR_ERR(driver);
2056 goto err_unlock;
1da177e4 2057 }
1da177e4 2058
4a2b5fdd 2059 /* check whether we're reopening an existing tty */
15f1a633 2060 tty = tty_driver_lookup_tty(driver, inode, index);
808ffa3d 2061 if (IS_ERR(tty)) {
ba5db448
JS		 2062 retval = PTR_ERR(tty);
2063 goto err_unlock;
808ffa3d 2064 }
4a2b5fdd 2065
52494eeb 2066 if (tty) {
aa3cb814 2067 mutex_unlock(&tty_mutex);
52494eeb 2068 tty_lock(tty);
aa3cb814
PH		 2069 /* safe to drop the kref from tty_driver_lookup_tty() */
2070 tty_kref_put(tty);
52494eeb
PH		 2071 retval = tty_reopen(tty);
2072 if (retval < 0) {
2073 tty_unlock(tty);
2074 tty = ERR_PTR(retval);
2075 }
aa3cb814 2076 } else { /* Returns with the tty_lock held for now */
52494eeb 2077 tty = tty_init_dev(driver, index);
aa3cb814
PH		 2078 mutex_unlock(&tty_mutex);
2079 }
4a2b5fdd 2080
b82154ac 2081 tty_driver_kref_put(driver);
52494eeb
PH		 2082 }
2083
eeb89d91 2084 if (IS_ERR(tty)) {
ba5db448
JS		 2085 retval = PTR_ERR(tty);
2086 goto err_file;
eeb89d91 2087 }
1da177e4 2088
fa90e1c9 2089 tty_add_file(tty, filp);
d996b62a 2090
9de44bd6 2091 check_tty_count(tty, __func__);
1da177e4
LT		 2092 if (tty->driver->type == TTY_DRIVER_TYPE_PTY &&
2093 tty->driver->subtype == PTY_TYPE_MASTER)
2094 noctty = 1;
accff793
PH		 2095
2096 tty_debug_hangup(tty, "(tty count=%d)\n", tty->count);
2097
909bc774
HRK		 2098 if (tty->ops->open)
2099 retval = tty->ops->open(tty, filp);
2100 else
2101 retval = -ENODEV;
1da177e4
LT		 2102 filp->f_flags = saved_flags;
2103
1da177e4 2104 if (retval) {
accff793
PH		 2105 tty_debug_hangup(tty, "error %d, releasing...\n", retval);
2106
89c8d91e 2107 tty_unlock(tty); /* need to call tty_release without BTM */
eeb89d91 2108 tty_release(inode, filp);
64ba3dc3 2109 if (retval != -ERESTARTSYS)
1da177e4 2110 return retval;
64ba3dc3
AB		 2111
2112 if (signal_pending(current))
1da177e4 2113 return retval;
64ba3dc3 2114
1da177e4
LT		 2115 schedule();
2116 /*
2117 * Need to reset f_op in case a hangup happened.
2118 */
1256937f 2119 if (tty_hung_up_p(filp))
1da177e4
LT		 2120 filp->f_op = &tty_fops;
2121 goto retry_open;
2122 }
d4855e1f 2123 clear_bit(TTY_HUPPED, &tty->flags);
eeb89d91 2124
24ec839c 2125
2c411c11 2126 read_lock(&tasklist_lock);
24ec839c 2127 spin_lock_irq(&current->sighand->siglock);
1da177e4
LT		 2128 if (!noctty &&
2129 current->signal->leader &&
2130 !current->signal->tty &&
ab521dc0 2131 tty->session == NULL)
bce65f18 2132 __proc_set_tty(tty);
24ec839c 2133 spin_unlock_irq(&current->sighand->siglock);
2c411c11 2134 read_unlock(&tasklist_lock);
89c8d91e 2135 tty_unlock(tty);
1da177e4 2136 return 0;
ba5db448 2137err_unlock:
ba5db448
JS		 2138 mutex_unlock(&tty_mutex);
2139 /* after locks to avoid deadlock */
2140 if (!IS_ERR_OR_NULL(driver))
2141 tty_driver_kref_put(driver);
2142err_file:
2143 tty_free_file(filp);
2144 return retval;
1da177e4
LT		 2145}
2146
39d95b9d
JC		 2147
2148
af9b897e
AC		 2149/**
2150 * tty_poll - check tty status
2151 * @filp: file being polled
2152 * @wait: poll wait structures to update
2153 *
2154 * Call the line discipline polling method to obtain the poll
2155 * status of the device.
2156 *
2157 * Locking: locks called line discipline but ldisc poll method
2158 * may be re-entered freely by other callers.
2159 */
2160
37bdfb07 2161static unsigned int tty_poll(struct file *filp, poll_table *wait)
1da177e4 2162{
d996b62a 2163 struct tty_struct *tty = file_tty(filp);
1da177e4
LT		 2164 struct tty_ldisc *ld;
2165 int ret = 0;
2166
6131ffaa 2167 if (tty_paranoia_check(tty, file_inode(filp), "tty_poll"))
1da177e4 2168 return 0;
37bdfb07 2169
1da177e4 2170 ld = tty_ldisc_ref_wait(tty);
a352def2 2171 if (ld->ops->poll)
c961bfb1 2172 ret = ld->ops->poll(tty, filp, wait);
1da177e4
LT		 2173 tty_ldisc_deref(ld);
2174 return ret;
2175}
2176
ec79d605 2177static int __tty_fasync(int fd, struct file *filp, int on)
1da177e4 2178{
d996b62a 2179 struct tty_struct *tty = file_tty(filp);
f6c8dbe6 2180 struct tty_ldisc *ldisc;
47f86834 2181 unsigned long flags;
5d1e3230 2182 int retval = 0;
1da177e4 2183
6131ffaa 2184 if (tty_paranoia_check(tty, file_inode(filp), "tty_fasync"))
5d1e3230 2185 goto out;
37bdfb07 2186
1da177e4
LT		 2187 retval = fasync_helper(fd, filp, on, &tty->fasync);
2188 if (retval <= 0)
5d1e3230 2189 goto out;
1da177e4 2190
f6c8dbe6
PH		 2191 ldisc = tty_ldisc_ref(tty);
2192 if (ldisc) {
2193 if (ldisc->ops->fasync)
2194 ldisc->ops->fasync(tty, on);
2195 tty_ldisc_deref(ldisc);
2196 }
2197
1da177e4 2198 if (on) {
ab521dc0
EB		 2199 enum pid_type type;
2200 struct pid *pid;
f6c8dbe6 2201
47f86834 2202 spin_lock_irqsave(&tty->ctrl_lock, flags);
ab521dc0
EB		 2203 if (tty->pgrp) {
2204 pid = tty->pgrp;
2205 type = PIDTYPE_PGID;
2206 } else {
2207 pid = task_pid(current);
2208 type = PIDTYPE_PID;
2209 }
80e1e823 2210 get_pid(pid);
70362511 2211 spin_unlock_irqrestore(&tty->ctrl_lock, flags);
e0b93edd 2212 __f_setown(filp, pid, type, 0);
80e1e823 2213 put_pid(pid);
e0b93edd 2214 retval = 0;
1da177e4 2215 }
5d1e3230 2216out:
ec79d605
AB		 2217 return retval;
2218}
2219
2220static int tty_fasync(int fd, struct file *filp, int on)
2221{
89c8d91e 2222 struct tty_struct *tty = file_tty(filp);
ec79d605 2223 int retval;
89c8d91e
AC		 2224
2225 tty_lock(tty);
ec79d605 2226 retval = __tty_fasync(fd, filp, on);
89c8d91e
AC		 2227 tty_unlock(tty);
2228
5d1e3230 2229 return retval;
1da177e4
LT		 2230}
2231
af9b897e
AC		 2232/**
2233 * tiocsti - fake input character
2234 * @tty: tty to fake input into
2235 * @p: pointer to character
2236 *
3a4fa0a2 2237 * Fake input to a tty device. Does the necessary locking and
af9b897e
AC		 2238 * input management.
2239 *
2240 * FIXME: does not honour flow control ??
2241 *
2242 * Locking:
137084bb 2243 * Called functions take tty_ldiscs_lock
af9b897e 2244 * current->signal->tty check is safe without locks
28298232
AC		 2245 *
2246 * FIXME: may race normal receive processing
af9b897e
AC		 2247 */
2248
1da177e4
LT		 2249static int tiocsti(struct tty_struct *tty, char __user *p)
2250{
2251 char ch, mbz = 0;
2252 struct tty_ldisc *ld;
37bdfb07 2253
1da177e4
LT		 2254 if ((current->signal->tty != tty) && !capable(CAP_SYS_ADMIN))
2255 return -EPERM;
2256 if (get_user(ch, p))
2257 return -EFAULT;
1e641743 2258 tty_audit_tiocsti(tty, ch);
1da177e4 2259 ld = tty_ldisc_ref_wait(tty);
a352def2 2260 ld->ops->receive_buf(tty, &ch, &mbz, 1);
1da177e4
LT		 2261 tty_ldisc_deref(ld);
2262 return 0;
2263}
2264
af9b897e
AC		 2265/**
2266 * tiocgwinsz - implement window query ioctl
2267 * @tty; tty
2268 * @arg: user buffer for result
2269 *
808a0d38 2270 * Copies the kernel idea of the window size into the user buffer.
af9b897e 2271 *
dee4a0be 2272 * Locking: tty->winsize_mutex is taken to ensure the winsize data
808a0d38 2273 * is consistent.
af9b897e
AC		 2274 */
2275
37bdfb07 2276static int tiocgwinsz(struct tty_struct *tty, struct winsize __user *arg)
1da177e4 2277{
808a0d38
AC		 2278 int err;
2279
dee4a0be 2280 mutex_lock(&tty->winsize_mutex);
808a0d38 2281 err = copy_to_user(arg, &tty->winsize, sizeof(*arg));
dee4a0be 2282 mutex_unlock(&tty->winsize_mutex);
808a0d38
AC		 2283
2284 return err ? -EFAULT: 0;
1da177e4
LT		 2285}
2286
af9b897e 2287/**
8c9a9dd0
AC		 2288 * tty_do_resize - resize event
2289 * @tty: tty being resized
8c9a9dd0
AC		 2290 * @rows: rows (character)
2291 * @cols: cols (character)
2292 *
3ad2f3fb 2293 * Update the termios variables and send the necessary signals to
8c9a9dd0 2294 * peform a terminal resize correctly
af9b897e
AC		 2295 */
2296
fc6f6238 2297int tty_do_resize(struct tty_struct *tty, struct winsize *ws)
1da177e4 2298{
fc6f6238 2299 struct pid *pgrp;
1da177e4 2300
fc6f6238 2301 /* Lock the tty */
dee4a0be 2302 mutex_lock(&tty->winsize_mutex);
fc6f6238 2303 if (!memcmp(ws, &tty->winsize, sizeof(*ws)))
ca9bda00 2304 goto done;
47f86834 2305
5b239542
PH		 2306 /* Signal the foreground process group */
2307 pgrp = tty_get_pgrp(tty);
47f86834
AC		 2308 if (pgrp)
2309 kill_pgrp(pgrp, SIGWINCH, 1);
47f86834 2310 put_pid(pgrp);
47f86834 2311
8c9a9dd0 2312 tty->winsize = *ws;
ca9bda00 2313done:
dee4a0be 2314 mutex_unlock(&tty->winsize_mutex);
1da177e4
LT		 2315 return 0;
2316}
4d334fd1 2317EXPORT_SYMBOL(tty_do_resize);
1da177e4 2318
8c9a9dd0
AC		 2319/**
2320 * tiocswinsz - implement window size set ioctl
fc6f6238 2321 * @tty; tty side of tty
8c9a9dd0
AC		 2322 * @arg: user buffer for result
2323 *
2324 * Copies the user idea of the window size to the kernel. Traditionally
2325 * this is just advisory information but for the Linux console it
2326 * actually has driver level meaning and triggers a VC resize.
2327 *
2328 * Locking:
25985edc 2329 * Driver dependent. The default do_resize method takes the
8c9a9dd0
AC		 2330 * tty termios mutex and ctrl_lock. The console takes its own lock
2331 * then calls into the default method.
2332 */
2333
fc6f6238 2334static int tiocswinsz(struct tty_struct *tty, struct winsize __user *arg)
8c9a9dd0
AC		 2335{
2336 struct winsize tmp_ws;
2337 if (copy_from_user(&tmp_ws, arg, sizeof(*arg)))
2338 return -EFAULT;
2339
2340 if (tty->ops->resize)
fc6f6238 2341 return tty->ops->resize(tty, &tmp_ws);
8c9a9dd0 2342 else
fc6f6238 2343 return tty_do_resize(tty, &tmp_ws);
8c9a9dd0
AC		 2344}
2345
af9b897e
AC		 2346/**
2347 * tioccons - allow admin to move logical console
2348 * @file: the file to become console
2349 *
25985edc 2350 * Allow the administrator to move the redirected console device
af9b897e
AC		 2351 *
2352 * Locking: uses redirect_lock to guard the redirect information
2353 */
2354
1da177e4
LT		 2355static int tioccons(struct file *file)
2356{
2357 if (!capable(CAP_SYS_ADMIN))
2358 return -EPERM;
2359 if (file->f_op->write == redirected_tty_write) {
2360 struct file *f;
2361 spin_lock(&redirect_lock);
2362 f = redirect;
2363 redirect = NULL;
2364 spin_unlock(&redirect_lock);
2365 if (f)
2366 fput(f);
2367 return 0;
2368 }
2369 spin_lock(&redirect_lock);
2370 if (redirect) {
2371 spin_unlock(&redirect_lock);
2372 return -EBUSY;
2373 }
cb0942b8 2374 redirect = get_file(file);
1da177e4
LT		 2375 spin_unlock(&redirect_lock);
2376 return 0;
2377}
2378
af9b897e
AC		 2379/**
2380 * fionbio - non blocking ioctl
2381 * @file: file to set blocking value
2382 * @p: user parameter
2383 *
2384 * Historical tty interfaces had a blocking control ioctl before
2385 * the generic functionality existed. This piece of history is preserved
2386 * in the expected tty API of posix OS's.
2387 *
6146b9af 2388 * Locking: none, the open file handle ensures it won't go away.
af9b897e 2389 */
1da177e4
LT		 2390
2391static int fionbio(struct file *file, int __user *p)
2392{
2393 int nonblock;
2394
2395 if (get_user(nonblock, p))
2396 return -EFAULT;
2397
db1dd4d3 2398 spin_lock(&file->f_lock);
1da177e4
LT		 2399 if (nonblock)
2400 file->f_flags |= O_NONBLOCK;
2401 else
2402 file->f_flags &= ~O_NONBLOCK;
db1dd4d3 2403 spin_unlock(&file->f_lock);
1da177e4
LT		 2404 return 0;
2405}
2406
af9b897e
AC		 2407/**
2408 * tiocsctty - set controlling tty
2409 * @tty: tty structure
2410 * @arg: user argument
2411 *
2412 * This ioctl is used to manage job control. It permits a session
2413 * leader to set this tty as the controlling tty for the session.
2414 *
2415 * Locking:
e218eb32 2416 * Takes tty_lock() to serialize proc_set_tty() for this tty
24ec839c
PZ		 2417 * Takes tasklist_lock internally to walk sessions
2418 * Takes ->siglock() when updating signal->tty
af9b897e
AC		 2419 */
2420
1da177e4
LT		 2421static int tiocsctty(struct tty_struct *tty, int arg)
2422{
24ec839c 2423 int ret = 0;
24ec839c 2424
e218eb32 2425 tty_lock(tty);
2c411c11
PH		 2426 read_lock(&tasklist_lock);
2427
2428 if (current->signal->leader && (task_session(current) == tty->session))
2429 goto unlock;
2430
1da177e4
LT		 2431 /*
2432 * The process must be a session leader and
2433 * not have a controlling tty already.
2434 */
24ec839c
PZ		 2435 if (!current->signal->leader || current->signal->tty) {
2436 ret = -EPERM;
2437 goto unlock;
2438 }
2439
ab521dc0 2440 if (tty->session) {
1da177e4
LT		 2441 /*
2442 * This tty is already the controlling
2443 * tty for another session group!
2444 */
37bdfb07 2445 if (arg == 1 && capable(CAP_SYS_ADMIN)) {
1da177e4
LT		 2446 /*
2447 * Steal it away
2448 */
24ec839c 2449 session_clear_tty(tty->session);
24ec839c
PZ		 2450 } else {
2451 ret = -EPERM;
2452 goto unlock;
2453 }
1da177e4 2454 }
bce65f18 2455 proc_set_tty(tty);
24ec839c 2456unlock:
2c411c11 2457 read_unlock(&tasklist_lock);
e218eb32 2458 tty_unlock(tty);
24ec839c 2459 return ret;
1da177e4
LT		 2460}
2461
5d0fdf1e
AC		 2462/**
2463 * tty_get_pgrp - return a ref counted pgrp pid
2464 * @tty: tty to read
2465 *
2466 * Returns a refcounted instance of the pid struct for the process
2467 * group controlling the tty.
2468 */
2469
2470struct pid *tty_get_pgrp(struct tty_struct *tty)
2471{
2472 unsigned long flags;
2473 struct pid *pgrp;
2474
2475 spin_lock_irqsave(&tty->ctrl_lock, flags);
2476 pgrp = get_pid(tty->pgrp);
2477 spin_unlock_irqrestore(&tty->ctrl_lock, flags);
2478
2479 return pgrp;
2480}
2481EXPORT_SYMBOL_GPL(tty_get_pgrp);
2482
e1c2296c
PH		 2483/*
2484 * This checks not only the pgrp, but falls back on the pid if no
2485 * satisfactory pgrp is found. I dunno - gdb doesn't work correctly
2486 * without this...
2487 *
2488 * The caller must hold rcu lock or the tasklist lock.
2489 */
2490static struct pid *session_of_pgrp(struct pid *pgrp)
2491{
2492 struct task_struct *p;
2493 struct pid *sid = NULL;
2494
2495 p = pid_task(pgrp, PIDTYPE_PGID);
2496 if (p == NULL)
2497 p = pid_task(pgrp, PIDTYPE_PID);
2498 if (p != NULL)
2499 sid = task_session(p);
2500
2501 return sid;
2502}
2503
af9b897e
AC		 2504/**
2505 * tiocgpgrp - get process group
2506 * @tty: tty passed by user
25985edc 2507 * @real_tty: tty side of the tty passed by the user if a pty else the tty
af9b897e
AC		 2508 * @p: returned pid
2509 *
2510 * Obtain the process group of the tty. If there is no process group
2511 * return an error.
2512 *
24ec839c 2513 * Locking: none. Reference to current->signal->tty is safe.
af9b897e
AC		 2514 */
2515
1da177e4
LT		 2516static int tiocgpgrp(struct tty_struct *tty, struct tty_struct *real_tty, pid_t __user *p)
2517{
5d0fdf1e
AC		 2518 struct pid *pid;
2519 int ret;
1da177e4
LT		 2520 /*
2521 * (tty == real_tty) is a cheap way of
2522 * testing if the tty is NOT a master pty.
2523 */
2524 if (tty == real_tty && current->signal->tty != real_tty)
2525 return -ENOTTY;
5d0fdf1e
AC		 2526 pid = tty_get_pgrp(real_tty);
2527 ret = put_user(pid_vnr(pid), p);
2528 put_pid(pid);
2529 return ret;
1da177e4
LT		 2530}
2531
af9b897e
AC		 2532/**
2533 * tiocspgrp - attempt to set process group
2534 * @tty: tty passed by user
2535 * @real_tty: tty side device matching tty passed by user
2536 * @p: pid pointer
2537 *
2538 * Set the process group of the tty to the session passed. Only
2539 * permitted where the tty session is our session.
2540 *
47f86834 2541 * Locking: RCU, ctrl lock
af9b897e
AC		 2542 */
2543
1da177e4
LT		 2544static int tiocspgrp(struct tty_struct *tty, struct tty_struct *real_tty, pid_t __user *p)
2545{
04a2e6a5
EB		 2546 struct pid *pgrp;
2547 pid_t pgrp_nr;
1da177e4 2548 int retval = tty_check_change(real_tty);
47f86834 2549 unsigned long flags;
1da177e4
LT		 2550
2551 if (retval == -EIO)
2552 return -ENOTTY;
2553 if (retval)
2554 return retval;
2555 if (!current->signal->tty ||
2556 (current->signal->tty != real_tty) ||
ab521dc0 2557 (real_tty->session != task_session(current)))
1da177e4 2558 return -ENOTTY;
04a2e6a5 2559 if (get_user(pgrp_nr, p))
1da177e4 2560 return -EFAULT;
04a2e6a5 2561 if (pgrp_nr < 0)
1da177e4 2562 return -EINVAL;
04a2e6a5 2563 rcu_read_lock();
b488893a 2564 pgrp = find_vpid(pgrp_nr);
04a2e6a5
EB		 2565 retval = -ESRCH;
2566 if (!pgrp)
2567 goto out_unlock;
2568 retval = -EPERM;
2569 if (session_of_pgrp(pgrp) != task_session(current))
2570 goto out_unlock;
2571 retval = 0;
47f86834 2572 spin_lock_irqsave(&tty->ctrl_lock, flags);
ab521dc0
EB		 2573 put_pid(real_tty->pgrp);
2574 real_tty->pgrp = get_pid(pgrp);
47f86834 2575 spin_unlock_irqrestore(&tty->ctrl_lock, flags);
04a2e6a5
EB		 2576out_unlock:
2577 rcu_read_unlock();
2578 return retval;
1da177e4
LT		 2579}
2580
af9b897e
AC		 2581/**
2582 * tiocgsid - get session id
2583 * @tty: tty passed by user
25985edc 2584 * @real_tty: tty side of the tty passed by the user if a pty else the tty
af9b897e
AC		 2585 * @p: pointer to returned session id
2586 *
2587 * Obtain the session id of the tty. If there is no session
2588 * return an error.
2589 *
24ec839c 2590 * Locking: none. Reference to current->signal->tty is safe.
af9b897e
AC		 2591 */
2592
1da177e4
LT		 2593static int tiocgsid(struct tty_struct *tty, struct tty_struct *real_tty, pid_t __user *p)
2594{
2595 /*
2596 * (tty == real_tty) is a cheap way of
2597 * testing if the tty is NOT a master pty.
2598 */
2599 if (tty == real_tty && current->signal->tty != real_tty)
2600 return -ENOTTY;
ab521dc0 2601 if (!real_tty->session)
1da177e4 2602 return -ENOTTY;
b488893a 2603 return put_user(pid_vnr(real_tty->session), p);
1da177e4
LT		 2604}
2605
af9b897e
AC		 2606/**
2607 * tiocsetd - set line discipline
2608 * @tty: tty device
2609 * @p: pointer to user data
2610 *
2611 * Set the line discipline according to user request.
2612 *
2613 * Locking: see tty_set_ldisc, this function is just a helper
2614 */
2615
1da177e4
LT		 2616static int tiocsetd(struct tty_struct *tty, int __user *p)
2617{
2618 int ldisc;
04f378b1 2619 int ret;
1da177e4
LT		 2620
2621 if (get_user(ldisc, p))
2622 return -EFAULT;
04f378b1 2623
04f378b1 2624 ret = tty_set_ldisc(tty, ldisc);
04f378b1
AC		 2625
2626 return ret;
1da177e4
LT		 2627}
2628
af9b897e
AC		 2629/**
2630 * send_break - performed time break
2631 * @tty: device to break on
2632 * @duration: timeout in mS
2633 *
2634 * Perform a timed break on hardware that lacks its own driver level
2635 * timed break functionality.
2636 *
2637 * Locking:
28298232 2638 * atomic_write_lock serializes
af9b897e 2639 *
af9b897e
AC		 2640 */
2641
b20f3ae5 2642static int send_break(struct tty_struct *tty, unsigned int duration)
1da177e4 2643{
9e98966c
AC		 2644 int retval;
2645
2646 if (tty->ops->break_ctl == NULL)
2647 return 0;
2648
2649 if (tty->driver->flags & TTY_DRIVER_HARDWARE_BREAK)
2650 retval = tty->ops->break_ctl(tty, duration);
2651 else {
2652 /* Do the work ourselves */
2653 if (tty_write_lock(tty, 0) < 0)
2654 return -EINTR;
2655 retval = tty->ops->break_ctl(tty, -1);
2656 if (retval)
2657 goto out;
2658 if (!signal_pending(current))
2659 msleep_interruptible(duration);
2660 retval = tty->ops->break_ctl(tty, 0);
2661out:
2662 tty_write_unlock(tty);
2663 if (signal_pending(current))
2664 retval = -EINTR;
2665 }
2666 return retval;
1da177e4
LT		 2667}
2668
af9b897e 2669/**
f34d7a5b 2670 * tty_tiocmget - get modem status
af9b897e
AC		 2671 * @tty: tty device
2672 * @file: user file pointer
2673 * @p: pointer to result
2674 *
2675 * Obtain the modem status bits from the tty driver if the feature
2676 * is supported. Return -EINVAL if it is not available.
2677 *
2678 * Locking: none (up to the driver)
2679 */
2680
60b33c13 2681static int tty_tiocmget(struct tty_struct *tty, int __user *p)
1da177e4
LT		 2682{
2683 int retval = -EINVAL;
2684
f34d7a5b 2685 if (tty->ops->tiocmget) {
60b33c13 2686 retval = tty->ops->tiocmget(tty);
1da177e4
LT		 2687
2688 if (retval >= 0)
2689 retval = put_user(retval, p);
2690 }
2691 return retval;
2692}
2693
af9b897e 2694/**
f34d7a5b 2695 * tty_tiocmset - set modem status
af9b897e 2696 * @tty: tty device
af9b897e
AC		 2697 * @cmd: command - clear bits, set bits or set all
2698 * @p: pointer to desired bits
2699 *
2700 * Set the modem status bits from the tty driver if the feature
2701 * is supported. Return -EINVAL if it is not available.
2702 *
2703 * Locking: none (up to the driver)
2704 */
2705
20b9d177 2706static int tty_tiocmset(struct tty_struct *tty, unsigned int cmd,
1da177e4
LT		 2707 unsigned __user *p)
2708{
ae677517
AC		 2709 int retval;
2710 unsigned int set, clear, val;
1da177e4 2711
ae677517
AC		 2712 if (tty->ops->tiocmset == NULL)
2713 return -EINVAL;
1da177e4 2714
ae677517
AC		 2715 retval = get_user(val, p);
2716 if (retval)
2717 return retval;
2718 set = clear = 0;
2719 switch (cmd) {
2720 case TIOCMBIS:
2721 set = val;
2722 break;
2723 case TIOCMBIC:
2724 clear = val;
2725 break;
2726 case TIOCMSET:
2727 set = val;
2728 clear = ~val;
2729 break;
2730 }
2731 set &= TIOCM_DTR|TIOCM_RTS|TIOCM_OUT1|TIOCM_OUT2|TIOCM_LOOP;
2732 clear &= TIOCM_DTR|TIOCM_RTS|TIOCM_OUT1|TIOCM_OUT2|TIOCM_LOOP;
20b9d177 2733 return tty->ops->tiocmset(tty, set, clear);
1da177e4
LT		 2734}
2735
d281da7f
AC		 2736static int tty_tiocgicount(struct tty_struct *tty, void __user *arg)
2737{
2738 int retval = -EINVAL;
2739 struct serial_icounter_struct icount;
2740 memset(&icount, 0, sizeof(icount));
2741 if (tty->ops->get_icount)
2742 retval = tty->ops->get_icount(tty, &icount);
2743 if (retval != 0)
2744 return retval;
2745 if (copy_to_user(arg, &icount, sizeof(icount)))
2746 return -EFAULT;
2747 return 0;
2748}
2749
8a8ae62f
JS		 2750static void tty_warn_deprecated_flags(struct serial_struct __user *ss)
2751{
2752 static DEFINE_RATELIMIT_STATE(depr_flags,
2753 DEFAULT_RATELIMIT_INTERVAL,
2754 DEFAULT_RATELIMIT_BURST);
2755 char comm[TASK_COMM_LEN];
2756 int flags;
2757
2758 if (get_user(flags, &ss->flags))
2759 return;
2760
2761 flags &= ASYNC_DEPRECATED;
2762
2763 if (flags && __ratelimit(&depr_flags))
2764 pr_warning("%s: '%s' is using deprecated serial flags (with no effect): %.8x\n",
2765 __func__, get_task_comm(comm, current), flags);
2766}
2767
8f166e00
PH		 2768/*
2769 * if pty, return the slave side (real_tty)
2770 * otherwise, return self
2771 */
2772static struct tty_struct *tty_pair_get_tty(struct tty_struct *tty)
e8b70e7d
AC		 2773{
2774 if (tty->driver->type == TTY_DRIVER_TYPE_PTY &&
2775 tty->driver->subtype == PTY_TYPE_MASTER)
2776 tty = tty->link;
2777 return tty;
2778}
e8b70e7d 2779
1da177e4
LT		 2780/*
2781 * Split this up, as gcc can choke on it otherwise..
2782 */
04f378b1 2783long tty_ioctl(struct file *file, unsigned int cmd, unsigned long arg)
1da177e4 2784{
d996b62a
NP		 2785 struct tty_struct *tty = file_tty(file);
2786 struct tty_struct *real_tty;
1da177e4
LT		 2787 void __user *p = (void __user *)arg;
2788 int retval;
2789 struct tty_ldisc *ld;
37bdfb07 2790
6131ffaa 2791 if (tty_paranoia_check(tty, file_inode(file), "tty_ioctl"))
1da177e4
LT		 2792 return -EINVAL;
2793
e8b70e7d 2794 real_tty = tty_pair_get_tty(tty);
1da177e4
LT		 2795
2796 /*
2797 * Factor out some common prep work
2798 */
2799 switch (cmd) {
2800 case TIOCSETD:
2801 case TIOCSBRK:
2802 case TIOCCBRK:
2803 case TCSBRK:
37bdfb07 2804 case TCSBRKP:
1da177e4
LT		 2805 retval = tty_check_change(tty);
2806 if (retval)
2807 return retval;
2808 if (cmd != TIOCCBRK) {
2809 tty_wait_until_sent(tty, 0);
2810 if (signal_pending(current))
2811 return -EINTR;
2812 }
2813 break;
2814 }
2815
9e98966c
AC		 2816 /*
2817 * Now do the stuff.
2818 */
1da177e4 2819 switch (cmd) {
37bdfb07
AC		 2820 case TIOCSTI:
2821 return tiocsti(tty, p);
2822 case TIOCGWINSZ:
8f520021 2823 return tiocgwinsz(real_tty, p);
37bdfb07 2824 case TIOCSWINSZ:
fc6f6238 2825 return tiocswinsz(real_tty, p);
37bdfb07
AC		 2826 case TIOCCONS:
2827 return real_tty != tty ? -EINVAL : tioccons(file);
2828 case FIONBIO:
2829 return fionbio(file, p);
2830 case TIOCEXCL:
2831 set_bit(TTY_EXCLUSIVE, &tty->flags);
2832 return 0;
2833 case TIOCNXCL:
2834 clear_bit(TTY_EXCLUSIVE, &tty->flags);
2835 return 0;
84fd7bdf
CG		 2836 case TIOCGEXCL:
2837 {
2838 int excl = test_bit(TTY_EXCLUSIVE, &tty->flags);
2839 return put_user(excl, (int __user *)p);
2840 }
37bdfb07
AC		 2841 case TIOCNOTTY:
2842 if (current->signal->tty != tty)
2843 return -ENOTTY;
2844 no_tty();
2845 return 0;
2846 case TIOCSCTTY:
2847 return tiocsctty(tty, arg);
2848 case TIOCGPGRP:
2849 return tiocgpgrp(tty, real_tty, p);
2850 case TIOCSPGRP:
2851 return tiocspgrp(tty, real_tty, p);
2852 case TIOCGSID:
2853 return tiocgsid(tty, real_tty, p);
2854 case TIOCGETD:
c65c9bc3 2855 return put_user(tty->ldisc->ops->num, (int __user *)p);
37bdfb07
AC		 2856 case TIOCSETD:
2857 return tiocsetd(tty, p);
3c95c985
KS		 2858 case TIOCVHANGUP:
2859 if (!capable(CAP_SYS_ADMIN))
2860 return -EPERM;
2861 tty_vhangup(tty);
2862 return 0;
b7b8de08
WF		 2863 case TIOCGDEV:
2864 {
2865 unsigned int ret = new_encode_dev(tty_devnum(real_tty));
2866 return put_user(ret, (unsigned int __user *)p);
2867 }
37bdfb07
AC		 2868 /*
2869 * Break handling
2870 */
2871 case TIOCSBRK: /* Turn break on, unconditionally */
f34d7a5b 2872 if (tty->ops->break_ctl)
9e98966c 2873 return tty->ops->break_ctl(tty, -1);
37bdfb07 2874 return 0;
37bdfb07 2875 case TIOCCBRK: /* Turn break off, unconditionally */
f34d7a5b 2876 if (tty->ops->break_ctl)
9e98966c 2877 return tty->ops->break_ctl(tty, 0);
37bdfb07
AC		 2878 return 0;
2879 case TCSBRK: /* SVID version: non-zero arg --> no break */
2880 /* non-zero arg means wait for all output data
2881 * to be sent (performed above) but don't send break.
2882 * This is used by the tcdrain() termios function.
2883 */
2884 if (!arg)
2885 return send_break(tty, 250);
2886 return 0;
2887 case TCSBRKP: /* support for POSIX tcsendbreak() */
2888 return send_break(tty, arg ? arg*100 : 250);
2889
2890 case TIOCMGET:
60b33c13 2891 return tty_tiocmget(tty, p);
37bdfb07
AC		 2892 case TIOCMSET:
2893 case TIOCMBIC:
2894 case TIOCMBIS:
20b9d177 2895 return tty_tiocmset(tty, cmd, p);
d281da7f
AC		 2896 case TIOCGICOUNT:
2897 retval = tty_tiocgicount(tty, p);
2898 /* For the moment allow fall through to the old method */
2899 if (retval != -EINVAL)
2900 return retval;
2901 break;
37bdfb07
AC		 2902 case TCFLSH:
2903 switch (arg) {
2904 case TCIFLUSH:
2905 case TCIOFLUSH:
2906 /* flush tty buffer and allow ldisc to process ioctl */
86c80a8e 2907 tty_buffer_flush(tty, NULL);
c5c34d48 2908 break;
37bdfb07
AC		 2909 }
2910 break;
8a8ae62f
JS		 2911 case TIOCSSERIAL:
2912 tty_warn_deprecated_flags(p);
2913 break;
1da177e4 2914 }
f34d7a5b 2915 if (tty->ops->ioctl) {
c961bfb1 2916 retval = tty->ops->ioctl(tty, cmd, arg);
1da177e4
LT		 2917 if (retval != -ENOIOCTLCMD)
2918 return retval;
2919 }
2920 ld = tty_ldisc_ref_wait(tty);
2921 retval = -EINVAL;
a352def2
AC		 2922 if (ld->ops->ioctl) {
2923 retval = ld->ops->ioctl(tty, file, cmd, arg);
1da177e4 2924 if (retval == -ENOIOCTLCMD)
bbb63c51 2925 retval = -ENOTTY;
1da177e4
LT		 2926 }
2927 tty_ldisc_deref(ld);
2928 return retval;
2929}
2930
e10cc1df 2931#ifdef CONFIG_COMPAT
37bdfb07 2932static long tty_compat_ioctl(struct file *file, unsigned int cmd,
e10cc1df
PF		 2933 unsigned long arg)
2934{
d996b62a 2935 struct tty_struct *tty = file_tty(file);
e10cc1df
PF		 2936 struct tty_ldisc *ld;
2937 int retval = -ENOIOCTLCMD;
2938
6131ffaa 2939 if (tty_paranoia_check(tty, file_inode(file), "tty_ioctl"))
e10cc1df
PF		 2940 return -EINVAL;
2941
f34d7a5b 2942 if (tty->ops->compat_ioctl) {
c961bfb1 2943 retval = tty->ops->compat_ioctl(tty, cmd, arg);
e10cc1df
PF		 2944 if (retval != -ENOIOCTLCMD)
2945 return retval;
2946 }
2947
2948 ld = tty_ldisc_ref_wait(tty);
a352def2
AC		 2949 if (ld->ops->compat_ioctl)
2950 retval = ld->ops->compat_ioctl(tty, file, cmd, arg);
8193c429
TM		 2951 else
2952 retval = n_tty_compat_ioctl_helper(tty, file, cmd, arg);
e10cc1df
PF		 2953 tty_ldisc_deref(ld);
2954
2955 return retval;
2956}
2957#endif
1da177e4 2958
c3c073f8
AV		 2959static int this_tty(const void *t, struct file *file, unsigned fd)
2960{
2961 if (likely(file->f_op->read != tty_read))
2962 return 0;
2963 return file_tty(file) != t ? 0 : fd + 1;
2964}
2965
1da177e4
LT		 2966/*
2967 * This implements the "Secure Attention Key" --- the idea is to
2968 * prevent trojan horses by killing all processes associated with this
2969 * tty when the user hits the "Secure Attention Key". Required for
2970 * super-paranoid applications --- see the Orange Book for more details.
37bdfb07 2971 *
1da177e4
LT		 2972 * This code could be nicer; ideally it should send a HUP, wait a few
2973 * seconds, then send a INT, and then a KILL signal. But you then
2974 * have to coordinate with the init process, since all processes associated
2975 * with the current tty must be dead before the new getty is allowed
2976 * to spawn.
2977 *
2978 * Now, if it would be correct ;-/ The current code has a nasty hole -
2979 * it doesn't catch files in flight. We may send the descriptor to ourselves
2980 * via AF_UNIX socket, close it and later fetch from socket. FIXME.
2981 *
2982 * Nasty bug: do_SAK is being called in interrupt context. This can
2983 * deadlock. We punt it up to process context. AKPM - 16Mar2001
2984 */
8b6312f4 2985void __do_SAK(struct tty_struct *tty)
1da177e4
LT		 2986{
2987#ifdef TTY_SOFT_SAK
2988 tty_hangup(tty);
2989#else
652486fb 2990 struct task_struct *g, *p;
ab521dc0 2991 struct pid *session;
1da177e4 2992 int i;
37bdfb07 2993
1da177e4
LT		 2994 if (!tty)
2995 return;
24ec839c 2996 session = tty->session;
37bdfb07 2997
b3f13deb 2998 tty_ldisc_flush(tty);
1da177e4 2999
f34d7a5b 3000 tty_driver_flush_buffer(tty);
37bdfb07 3001
1da177e4 3002 read_lock(&tasklist_lock);
652486fb 3003 /* Kill the entire session */
ab521dc0 3004 do_each_pid_task(session, PIDTYPE_SID, p) {
652486fb 3005 printk(KERN_NOTICE "SAK: killed process %d"
1b0f7ffd 3006 " (%s): task_session(p)==tty->session\n",
ba25f9dc 3007 task_pid_nr(p), p->comm);
652486fb 3008 send_sig(SIGKILL, p, 1);
ab521dc0 3009 } while_each_pid_task(session, PIDTYPE_SID, p);
652486fb
EB		 3010 /* Now kill any processes that happen to have the
3011 * tty open.
3012 */
3013 do_each_thread(g, p) {
3014 if (p->signal->tty == tty) {
1da177e4 3015 printk(KERN_NOTICE "SAK: killed process %d"
1b0f7ffd 3016 " (%s): task_session(p)==tty->session\n",
ba25f9dc 3017 task_pid_nr(p), p->comm);
1da177e4
LT		 3018 send_sig(SIGKILL, p, 1);
3019 continue;
3020 }
3021 task_lock(p);
c3c073f8
AV		 3022 i = iterate_fd(p->files, 0, this_tty, tty);
3023 if (i != 0) {
3024 printk(KERN_NOTICE "SAK: killed process %d"
3025 " (%s): fd#%d opened to the tty\n",
3026 task_pid_nr(p), p->comm, i - 1);
3027 force_sig(SIGKILL, p);
1da177e4
LT		 3028 }
3029 task_unlock(p);
652486fb 3030 } while_each_thread(g, p);
1da177e4
LT		 3031 read_unlock(&tasklist_lock);
3032#endif
3033}
3034
8b6312f4
EB		 3035static void do_SAK_work(struct work_struct *work)
3036{
3037 struct tty_struct *tty =
3038 container_of(work, struct tty_struct, SAK_work);
3039 __do_SAK(tty);
3040}
3041
1da177e4
LT		 3042/*
3043 * The tq handling here is a little racy - tty->SAK_work may already be queued.
3044 * Fortunately we don't need to worry, because if ->SAK_work is already queued,
3045 * the values which we write to it will be identical to the values which it
3046 * already has. --akpm
3047 */
3048void do_SAK(struct tty_struct *tty)
3049{
3050 if (!tty)
3051 return;
1da177e4
LT		 3052 schedule_work(&tty->SAK_work);
3053}
3054
3055EXPORT_SYMBOL(do_SAK);
3056
6e9430ac 3057static int dev_match_devt(struct device *dev, const void *data)
30004ac9 3058{
6e9430ac 3059 const dev_t *devt = data;
30004ac9
DES		 3060 return dev->devt == *devt;
3061}
3062
3063/* Must put_device() after it's unused! */
3064static struct device *tty_get_device(struct tty_struct *tty)
3065{
3066 dev_t devt = tty_devnum(tty);
3067 return class_find_device(tty_class, NULL, &devt, dev_match_devt);
3068}
3069
3070
af9b897e 3071/**
2c964a2f 3072 * alloc_tty_struct
af9b897e 3073 *
2c964a2f 3074 * This subroutine allocates and initializes a tty structure.
af9b897e 3075 *
2c964a2f 3076 * Locking: none - tty in question is not exposed at this point
1da177e4 3077 */
af9b897e 3078
2c964a2f 3079struct tty_struct *alloc_tty_struct(struct tty_driver *driver, int idx)
1da177e4 3080{
2c964a2f
RV		 3081 struct tty_struct *tty;
3082
3083 tty = kzalloc(sizeof(*tty), GFP_KERNEL);
3084 if (!tty)
3085 return NULL;
3086
9c9f4ded 3087 kref_init(&tty->kref);
1da177e4 3088 tty->magic = TTY_MAGIC;
01e1abb2 3089 tty_ldisc_init(tty);
ab521dc0
EB		 3090 tty->session = NULL;
3091 tty->pgrp = NULL;
89c8d91e 3092 mutex_init(&tty->legacy_mutex);
d8c1f929 3093 mutex_init(&tty->throttle_mutex);
6a1c0680 3094 init_rwsem(&tty->termios_rwsem);
dee4a0be 3095 mutex_init(&tty->winsize_mutex);
36697529 3096 init_ldsem(&tty->ldisc_sem);
1da177e4
LT		 3097 init_waitqueue_head(&tty->write_wait);
3098 init_waitqueue_head(&tty->read_wait);
65f27f38 3099 INIT_WORK(&tty->hangup_work, do_tty_hangup);
70522e12 3100 mutex_init(&tty->atomic_write_lock);
04f378b1 3101 spin_lock_init(&tty->ctrl_lock);
f9e053dc 3102 spin_lock_init(&tty->flow_lock);
1da177e4 3103 INIT_LIST_HEAD(&tty->tty_files);
7f1f86a0 3104 INIT_WORK(&tty->SAK_work, do_SAK_work);
bf970ee4
AC		 3105
3106 tty->driver = driver;
3107 tty->ops = driver->ops;
3108 tty->index = idx;
3109 tty_line_name(driver, idx, tty->name);
30004ac9 3110 tty->dev = tty_get_device(tty);
2c964a2f
RV		 3111
3112 return tty;
1da177e4
LT		 3113}
3114
6716671d
JS		 3115/**
3116 * deinitialize_tty_struct
3117 * @tty: tty to deinitialize
3118 *
3119 * This subroutine deinitializes a tty structure that has been newly
3120 * allocated but tty_release cannot be called on that yet.
3121 *
3122 * Locking: none - tty in question must not be exposed at this point
3123 */
3124void deinitialize_tty_struct(struct tty_struct *tty)
3125{
3126 tty_ldisc_deinit(tty);
3127}
3128
f34d7a5b
AC		 3129/**
3130 * tty_put_char - write one character to a tty
3131 * @tty: tty
3132 * @ch: character
3133 *
3134 * Write one byte to the tty using the provided put_char method
3135 * if present. Returns the number of characters successfully output.
3136 *
3137 * Note: the specific put_char operation in the driver layer may go
3138 * away soon. Don't call it directly, use this method
1da177e4 3139 */
af9b897e 3140
f34d7a5b 3141int tty_put_char(struct tty_struct *tty, unsigned char ch)
1da177e4 3142{
f34d7a5b
AC		 3143 if (tty->ops->put_char)
3144 return tty->ops->put_char(tty, ch);
3145 return tty->ops->write(tty, &ch, 1);
1da177e4 3146}
f34d7a5b
AC		 3147EXPORT_SYMBOL_GPL(tty_put_char);
3148
d81ed103 3149struct class *tty_class;
1da177e4 3150
7e73eca6
JS		 3151static int tty_cdev_add(struct tty_driver *driver, dev_t dev,
3152 unsigned int index, unsigned int count)
3153{
3154 /* init here, since reused cdevs cause crashes */
a3a10ce3
RW		 3155 driver->cdevs[index] = cdev_alloc();
3156 if (!driver->cdevs[index])
3157 return -ENOMEM;
3158 cdev_init(driver->cdevs[index], &tty_fops);
3159 driver->cdevs[index]->owner = driver->owner;
3160 return cdev_add(driver->cdevs[index], dev, count);
7e73eca6
JS		 3161}
3162
1da177e4 3163/**
af9b897e
AC		 3164 * tty_register_device - register a tty device
3165 * @driver: the tty driver that describes the tty device
3166 * @index: the index in the tty driver for this tty device
3167 * @device: a struct device that is associated with this tty device.
3168 * This field is optional, if there is no known struct device
3169 * for this tty device it can be set to NULL safely.
1da177e4 3170 *
01107d34
GKH		 3171 * Returns a pointer to the struct device for this tty device
3172 * (or ERR_PTR(-EFOO) on error).
1cdcb6b4 3173 *
af9b897e
AC		 3174 * This call is required to be made to register an individual tty device
3175 * if the tty driver's flags have the TTY_DRIVER_DYNAMIC_DEV bit set. If
3176 * that bit is not set, this function should not be called by a tty
3177 * driver.
3178 *
3179 * Locking: ??
1da177e4 3180 */
af9b897e 3181
01107d34
GKH		 3182struct device *tty_register_device(struct tty_driver *driver, unsigned index,
3183 struct device *device)
1da177e4 3184{
6915c0e4
TH		 3185 return tty_register_device_attr(driver, index, device, NULL, NULL);
3186}
3187EXPORT_SYMBOL(tty_register_device);
3188
b1b79916
TH		 3189static void tty_device_create_release(struct device *dev)
3190{
3191 pr_debug("device: '%s': %s\n", dev_name(dev), __func__);
3192 kfree(dev);
3193}
3194
6915c0e4
TH		 3195/**
3196 * tty_register_device_attr - register a tty device
3197 * @driver: the tty driver that describes the tty device
3198 * @index: the index in the tty driver for this tty device
3199 * @device: a struct device that is associated with this tty device.
3200 * This field is optional, if there is no known struct device
3201 * for this tty device it can be set to NULL safely.
3202 * @drvdata: Driver data to be set to device.
3203 * @attr_grp: Attribute group to be set on device.
3204 *
3205 * Returns a pointer to the struct device for this tty device
3206 * (or ERR_PTR(-EFOO) on error).
3207 *
3208 * This call is required to be made to register an individual tty device
3209 * if the tty driver's flags have the TTY_DRIVER_DYNAMIC_DEV bit set. If
3210 * that bit is not set, this function should not be called by a tty
3211 * driver.
3212 *
3213 * Locking: ??
3214 */
3215struct device *tty_register_device_attr(struct tty_driver *driver,
3216 unsigned index, struct device *device,
3217 void *drvdata,
3218 const struct attribute_group **attr_grp)
3219{
1da177e4 3220 char name[64];
6915c0e4
TH		 3221 dev_t devt = MKDEV(driver->major, driver->minor_start) + index;
3222 struct device *dev = NULL;
3223 int retval = -ENODEV;
7e73eca6 3224 bool cdev = false;
1da177e4
LT		 3225
3226 if (index >= driver->num) {
3227 printk(KERN_ERR "Attempt to register invalid tty line number "
3228 " (%d).\n", index);
1cdcb6b4 3229 return ERR_PTR(-EINVAL);
1da177e4
LT		 3230 }
3231
1da177e4
LT		 3232 if (driver->type == TTY_DRIVER_TYPE_PTY)
3233 pty_line_name(driver, index, name);
3234 else
3235 tty_line_name(driver, index, name);
1cdcb6b4 3236
7e73eca6 3237 if (!(driver->flags & TTY_DRIVER_DYNAMIC_ALLOC)) {
6915c0e4
TH		 3238 retval = tty_cdev_add(driver, devt, index, 1);
3239 if (retval)
3240 goto error;
7e73eca6
JS		 3241 cdev = true;
3242 }
3243
6915c0e4
TH		 3244 dev = kzalloc(sizeof(*dev), GFP_KERNEL);
3245 if (!dev) {
3246 retval = -ENOMEM;
3247 goto error;
3248 }
7e73eca6 3249
6915c0e4
TH		 3250 dev->devt = devt;
3251 dev->class = tty_class;
3252 dev->parent = device;
b1b79916 3253 dev->release = tty_device_create_release;
6915c0e4
TH		 3254 dev_set_name(dev, "%s", name);
3255 dev->groups = attr_grp;
3256 dev_set_drvdata(dev, drvdata);
3257
3258 retval = device_register(dev);
3259 if (retval)
3260 goto error;
3261
3262 return dev;
3263
3264error:
3265 put_device(dev);
a3a10ce3
RW		 3266 if (cdev) {
3267 cdev_del(driver->cdevs[index]);
3268 driver->cdevs[index] = NULL;
3269 }
6915c0e4 3270 return ERR_PTR(retval);
1da177e4 3271}
6915c0e4 3272EXPORT_SYMBOL_GPL(tty_register_device_attr);
1da177e4
LT		 3273
3274/**
af9b897e
AC		 3275 * tty_unregister_device - unregister a tty device
3276 * @driver: the tty driver that describes the tty device
3277 * @index: the index in the tty driver for this tty device
1da177e4 3278 *
af9b897e
AC		 3279 * If a tty device is registered with a call to tty_register_device() then
3280 * this function must be called when the tty device is gone.
3281 *
3282 * Locking: ??
1da177e4 3283 */
af9b897e 3284
1da177e4
LT		 3285void tty_unregister_device(struct tty_driver *driver, unsigned index)
3286{
37bdfb07
AC		 3287 device_destroy(tty_class,
3288 MKDEV(driver->major, driver->minor_start) + index);
a3a10ce3
RW		 3289 if (!(driver->flags & TTY_DRIVER_DYNAMIC_ALLOC)) {
3290 cdev_del(driver->cdevs[index]);
3291 driver->cdevs[index] = NULL;
3292 }
1da177e4 3293}
1da177e4
LT		 3294EXPORT_SYMBOL(tty_unregister_device);
3295
7f0bc6a6
JS		 3296/**
3297 * __tty_alloc_driver -- allocate tty driver
3298 * @lines: count of lines this driver can handle at most
3299 * @owner: module which is repsonsible for this driver
3300 * @flags: some of TTY_DRIVER_* flags, will be set in driver->flags
3301 *
3302 * This should not be called directly, some of the provided macros should be
3303 * used instead. Use IS_ERR and friends on @retval.
3304 */
3305struct tty_driver *__tty_alloc_driver(unsigned int lines, struct module *owner,
3306 unsigned long flags)
1da177e4
LT		 3307{
3308 struct tty_driver *driver;
7e73eca6 3309 unsigned int cdevs = 1;
16a02081 3310 int err;
1da177e4 3311
0019b408 3312 if (!lines || (flags & TTY_DRIVER_UNNUMBERED_NODE && lines > 1))
7f0bc6a6
JS		 3313 return ERR_PTR(-EINVAL);
3314
506eb99a 3315 driver = kzalloc(sizeof(struct tty_driver), GFP_KERNEL);
7f0bc6a6
JS		 3316 if (!driver)
3317 return ERR_PTR(-ENOMEM);
3318
3319 kref_init(&driver->kref);
3320 driver->magic = TTY_DRIVER_MAGIC;
3321 driver->num = lines;
3322 driver->owner = owner;
3323 driver->flags = flags;
16a02081
JS		 3324
3325 if (!(flags & TTY_DRIVER_DEVPTS_MEM)) {
3326 driver->ttys = kcalloc(lines, sizeof(*driver->ttys),
3327 GFP_KERNEL);
3328 driver->termios = kcalloc(lines, sizeof(*driver->termios),
3329 GFP_KERNEL);
3330 if (!driver->ttys || !driver->termios) {
3331 err = -ENOMEM;
3332 goto err_free_all;
3333 }
3334 }
3335
3336 if (!(flags & TTY_DRIVER_DYNAMIC_ALLOC)) {
3337 driver->ports = kcalloc(lines, sizeof(*driver->ports),
3338 GFP_KERNEL);
3339 if (!driver->ports) {
3340 err = -ENOMEM;
3341 goto err_free_all;
3342 }
7e73eca6
JS		 3343 cdevs = lines;
3344 }
3345
3346 driver->cdevs = kcalloc(cdevs, sizeof(*driver->cdevs), GFP_KERNEL);
3347 if (!driver->cdevs) {
3348 err = -ENOMEM;
3349 goto err_free_all;
16a02081 3350 }
7f0bc6a6 3351
1da177e4 3352 return driver;
16a02081
JS		 3353err_free_all:
3354 kfree(driver->ports);
3355 kfree(driver->ttys);
3356 kfree(driver->termios);
a3a10ce3 3357 kfree(driver->cdevs);
16a02081
JS		 3358 kfree(driver);
3359 return ERR_PTR(err);
1da177e4 3360}
7f0bc6a6 3361EXPORT_SYMBOL(__tty_alloc_driver);
1da177e4 3362
7d7b93c1 3363static void destruct_tty_driver(struct kref *kref)
1da177e4 3364{
7d7b93c1
AC		 3365 struct tty_driver *driver = container_of(kref, struct tty_driver, kref);
3366 int i;
3367 struct ktermios *tp;
7d7b93c1
AC		 3368
3369 if (driver->flags & TTY_DRIVER_INSTALLED) {
3370 /*
3371 * Free the termios and termios_locked structures because
3372 * we don't want to get memory leaks when modular tty
3373 * drivers are removed from the kernel.
3374 */
3375 for (i = 0; i < driver->num; i++) {
3376 tp = driver->termios[i];
3377 if (tp) {
3378 driver->termios[i] = NULL;
3379 kfree(tp);
3380 }
7d7b93c1
AC		 3381 if (!(driver->flags & TTY_DRIVER_DYNAMIC_DEV))
3382 tty_unregister_device(driver, i);
3383 }
7d7b93c1 3384 proc_tty_unregister_driver(driver);
7e73eca6 3385 if (driver->flags & TTY_DRIVER_DYNAMIC_ALLOC)
a3a10ce3 3386 cdev_del(driver->cdevs[0]);
7d7b93c1 3387 }
7e73eca6 3388 kfree(driver->cdevs);
04831dc1 3389 kfree(driver->ports);
16a02081
JS		 3390 kfree(driver->termios);
3391 kfree(driver->ttys);
1da177e4
LT		 3392 kfree(driver);
3393}
3394
7d7b93c1
AC		 3395void tty_driver_kref_put(struct tty_driver *driver)
3396{
3397 kref_put(&driver->kref, destruct_tty_driver);
3398}
3399EXPORT_SYMBOL(tty_driver_kref_put);
3400
b68e31d0
JD		 3401void tty_set_operations(struct tty_driver *driver,
3402 const struct tty_operations *op)
1da177e4 3403{
f34d7a5b
AC		 3404 driver->ops = op;
3405};
7d7b93c1 3406EXPORT_SYMBOL(tty_set_operations);
1da177e4 3407
7d7b93c1
AC		 3408void put_tty_driver(struct tty_driver *d)
3409{
3410 tty_driver_kref_put(d);
3411}
1da177e4 3412EXPORT_SYMBOL(put_tty_driver);
1da177e4
LT		 3413
3414/*
3415 * Called by a tty driver to register itself.
3416 */
3417int tty_register_driver(struct tty_driver *driver)
3418{
3419 int error;
37bdfb07 3420 int i;
1da177e4 3421 dev_t dev;
b670bde0 3422 struct device *d;
1da177e4 3423
1da177e4 3424 if (!driver->major) {
37bdfb07
AC		 3425 error = alloc_chrdev_region(&dev, driver->minor_start,
3426 driver->num, driver->name);
1da177e4
LT		 3427 if (!error) {
3428 driver->major = MAJOR(dev);
3429 driver->minor_start = MINOR(dev);
3430 }
3431 } else {
3432 dev = MKDEV(driver->major, driver->minor_start);
e5717c48 3433 error = register_chrdev_region(dev, driver->num, driver->name);
1da177e4 3434 }
9bb8a3d4 3435 if (error < 0)
16a02081 3436 goto err;
1da177e4 3437
7e73eca6
JS		 3438 if (driver->flags & TTY_DRIVER_DYNAMIC_ALLOC) {
3439 error = tty_cdev_add(driver, dev, 0, driver->num);
3440 if (error)
3441 goto err_unreg_char;
3442 }
1da177e4 3443
ca509f69 3444 mutex_lock(&tty_mutex);
1da177e4 3445 list_add(&driver->tty_drivers, &tty_drivers);
ca509f69 3446 mutex_unlock(&tty_mutex);
37bdfb07
AC		 3447
3448 if (!(driver->flags & TTY_DRIVER_DYNAMIC_DEV)) {
b670bde0
VK		 3449 for (i = 0; i < driver->num; i++) {
3450 d = tty_register_device(driver, i, NULL);
3451 if (IS_ERR(d)) {
3452 error = PTR_ERR(d);
16a02081 3453 goto err_unreg_devs;
b670bde0
VK		 3454 }
3455 }
1da177e4
LT		 3456 }
3457 proc_tty_register_driver(driver);
7d7b93c1 3458 driver->flags |= TTY_DRIVER_INSTALLED;
1da177e4 3459 return 0;
b670bde0 3460
16a02081 3461err_unreg_devs:
b670bde0
VK		 3462 for (i--; i >= 0; i--)
3463 tty_unregister_device(driver, i);
3464
3465 mutex_lock(&tty_mutex);
3466 list_del(&driver->tty_drivers);
3467 mutex_unlock(&tty_mutex);
3468
9bb8a3d4 3469err_unreg_char:
b670bde0 3470 unregister_chrdev_region(dev, driver->num);
16a02081 3471err:
b670bde0 3472 return error;
1da177e4 3473}
1da177e4
LT		 3474EXPORT_SYMBOL(tty_register_driver);
3475
3476/*
3477 * Called by a tty driver to unregister itself.
3478 */
3479int tty_unregister_driver(struct tty_driver *driver)
3480{
7d7b93c1
AC		 3481#if 0
3482 /* FIXME */
1da177e4
LT		 3483 if (driver->refcount)
3484 return -EBUSY;
7d7b93c1 3485#endif
1da177e4
LT		 3486 unregister_chrdev_region(MKDEV(driver->major, driver->minor_start),
3487 driver->num);
ca509f69 3488 mutex_lock(&tty_mutex);
1da177e4 3489 list_del(&driver->tty_drivers);
ca509f69 3490 mutex_unlock(&tty_mutex);
1da177e4
LT		 3491 return 0;
3492}
7d7b93c1 3493
1da177e4
LT		 3494EXPORT_SYMBOL(tty_unregister_driver);
3495
24ec839c
PZ		 3496dev_t tty_devnum(struct tty_struct *tty)
3497{
3498 return MKDEV(tty->driver->major, tty->driver->minor_start) + tty->index;
3499}
3500EXPORT_SYMBOL(tty_devnum);
1da177e4 3501
d81ed103
AC		 3502void tty_default_fops(struct file_operations *fops)
3503{
3504 *fops = tty_fops;
3505}
3506
1da177e4
LT		 3507/*
3508 * Initialize the console device. This is called *early*, so
3509 * we can't necessarily depend on lots of kernel help here.
3510 * Just do some early initializations, and do the complex setup
3511 * later.
3512 */
3513void __init console_init(void)
3514{
3515 initcall_t *call;
3516
3517 /* Setup the default TTY line discipline. */
01e1abb2 3518 tty_ldisc_begin();
1da177e4
LT		 3519
3520 /*
37bdfb07 3521 * set up the console device so that later boot sequences can
1da177e4
LT		 3522 * inform about problems etc..
3523 */
1da177e4
LT		 3524 call = __con_initcall_start;
3525 while (call < __con_initcall_end) {
3526 (*call)();
3527 call++;
3528 }
3529}
3530
2c9ede55 3531static char *tty_devnode(struct device *dev, umode_t *mode)
e454cea2
KS		 3532{
3533 if (!mode)
3534 return NULL;
3535 if (dev->devt == MKDEV(TTYAUX_MAJOR, 0) ||
3536 dev->devt == MKDEV(TTYAUX_MAJOR, 2))
3537 *mode = 0666;
3538 return NULL;
3539}
3540
1da177e4
LT		 3541static int __init tty_class_init(void)
3542{
7fe845d1 3543 tty_class = class_create(THIS_MODULE, "tty");
1da177e4
LT		 3544 if (IS_ERR(tty_class))
3545 return PTR_ERR(tty_class);
e454cea2 3546 tty_class->devnode = tty_devnode;
1da177e4
LT		 3547 return 0;
3548}
3549
3550postcore_initcall(tty_class_init);
3551
3552/* 3/2004 jmc: why do these devices exist? */
1da177e4 3553static struct cdev tty_cdev, console_cdev;
1da177e4 3554
fbc92a34
KS		 3555static ssize_t show_cons_active(struct device *dev,
3556 struct device_attribute *attr, char *buf)
3557{
3558 struct console *cs[16];
3559 int i = 0;
3560 struct console *c;
3561 ssize_t count = 0;
3562
ac751efa 3563 console_lock();
a2a6a822 3564 for_each_console(c) {
fbc92a34
KS		 3565 if (!c->device)
3566 continue;
3567 if (!c->write)
3568 continue;
3569 if ((c->flags & CON_ENABLED) == 0)
3570 continue;
3571 cs[i++] = c;
3572 if (i >= ARRAY_SIZE(cs))
3573 break;
3574 }
723abd87
HR		 3575 while (i--) {
3576 int index = cs[i]->index;
3577 struct tty_driver *drv = cs[i]->device(cs[i], &index);
3578
3579 /* don't resolve tty0 as some programs depend on it */
3580 if (drv && (cs[i]->index > 0 || drv->major != TTY_MAJOR))
3581 count += tty_line_name(drv, index, buf + count);
3582 else
3583 count += sprintf(buf + count, "%s%d",
3584 cs[i]->name, cs[i]->index);
3585
3586 count += sprintf(buf + count, "%c", i ? ' ':'\n');
3587 }
ac751efa 3588 console_unlock();
fbc92a34
KS		 3589
3590 return count;
3591}
3592static DEVICE_ATTR(active, S_IRUGO, show_cons_active, NULL);
3593
1083a7be
TI		 3594static struct attribute *cons_dev_attrs[] = {
3595 &dev_attr_active.attr,
3596 NULL
3597};
3598
3599ATTRIBUTE_GROUPS(cons_dev);
3600
fbc92a34
KS		 3601static struct device *consdev;
3602
3603void console_sysfs_notify(void)
3604{
3605 if (consdev)
3606 sysfs_notify(&consdev->kobj, NULL, "active");
3607}
3608
1da177e4
LT		 3609/*
3610 * Ok, now we can initialize the rest of the tty devices and can count
3611 * on memory allocations, interrupts etc..
3612 */
31d1d48e 3613int __init tty_init(void)
1da177e4
LT		 3614{
3615 cdev_init(&tty_cdev, &tty_fops);
3616 if (cdev_add(&tty_cdev, MKDEV(TTYAUX_MAJOR, 0), 1) ||
3617 register_chrdev_region(MKDEV(TTYAUX_MAJOR, 0), 1, "/dev/tty") < 0)
3618 panic("Couldn't register /dev/tty driver\n");
fbc92a34 3619 device_create(tty_class, NULL, MKDEV(TTYAUX_MAJOR, 0), NULL, "tty");
1da177e4
LT		 3620
3621 cdev_init(&console_cdev, &console_fops);
3622 if (cdev_add(&console_cdev, MKDEV(TTYAUX_MAJOR, 1), 1) ||
3623 register_chrdev_region(MKDEV(TTYAUX_MAJOR, 1), 1, "/dev/console") < 0)
3624 panic("Couldn't register /dev/console driver\n");
1083a7be
TI		 3625 consdev = device_create_with_groups(tty_class, NULL,
3626 MKDEV(TTYAUX_MAJOR, 1), NULL,
3627 cons_dev_groups, "console");
fbc92a34
KS		 3628 if (IS_ERR(consdev))
3629 consdev = NULL;
1da177e4 3630
1da177e4 3631#ifdef CONFIG_VT
d81ed103 3632 vty_init(&console_fops);
1da177e4
LT		 3633#endif
3634 return 0;
3635}
31d1d48e 3636
Linux 6.x block layer and io_uring tree(s)