projects / linux-2.6-block.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
tty: Fold pty pair handling into tty_flush_works()
[linux-2.6-block.git] / drivers / tty / tty_io.c
CommitLineData
1da177e4 1/*
1da177e4
LT		 2 * Copyright (C) 1991, 1992 Linus Torvalds
3 */
4
5/*
6 * 'tty_io.c' gives an orthogonal feeling to tty's, be they consoles
7 * or rs-channels. It also implements echoing, cooked mode etc.
8 *
9 * Kill-line thanks to John T Kohl, who also corrected VMIN = VTIME = 0.
10 *
11 * Modified by Theodore Ts'o, 9/14/92, to dynamically allocate the
12 * tty_struct and tty_queue structures. Previously there was an array
13 * of 256 tty_struct's which was statically allocated, and the
14 * tty_queue structures were allocated at boot time. Both are now
15 * dynamically allocated only when the tty is open.
16 *
17 * Also restructured routines so that there is more of a separation
18 * between the high-level tty routines (tty_io.c and tty_ioctl.c) and
19 * the low-level tty routines (serial.c, pty.c, console.c). This
37bdfb07 20 * makes for cleaner and more compact code. -TYT, 9/17/92
1da177e4
LT		 21 *
22 * Modified by Fred N. van Kempen, 01/29/93, to add line disciplines
23 * which can be dynamically activated and de-activated by the line
24 * discipline handling modules (like SLIP).
25 *
26 * NOTE: pay no attention to the line discipline code (yet); its
27 * interface is still subject to change in this version...
28 * -- TYT, 1/31/92
29 *
30 * Added functionality to the OPOST tty handling. No delays, but all
31 * other bits should be there.
32 * -- Nick Holloway <alfie@dcs.warwick.ac.uk>, 27th May 1993.
33 *
34 * Rewrote canonical mode and added more termios flags.
35 * -- julian@uhunix.uhcc.hawaii.edu (J. Cowley), 13Jan94
36 *
37 * Reorganized FASYNC support so mouse code can share it.
38 * -- ctm@ardi.com, 9Sep95
39 *
40 * New TIOCLINUX variants added.
41 * -- mj@k332.feld.cvut.cz, 19-Nov-95
37bdfb07 42 *
1da177e4
LT		 43 * Restrict vt switching via ioctl()
44 * -- grif@cs.ucr.edu, 5-Dec-95
45 *
46 * Move console and virtual terminal code to more appropriate files,
47 * implement CONFIG_VT and generalize console device interface.
48 * -- Marko Kohtala <Marko.Kohtala@hut.fi>, March 97
49 *
d81ed103 50 * Rewrote tty_init_dev and tty_release_dev to eliminate races.
1da177e4
LT		 51 * -- Bill Hawes <whawes@star.net>, June 97
52 *
53 * Added devfs support.
54 * -- C. Scott Ananian <cananian@alumni.princeton.edu>, 13-Jan-1998
55 *
56 * Added support for a Unix98-style ptmx device.
57 * -- C. Scott Ananian <cananian@alumni.princeton.edu>, 14-Jan-1998
58 *
59 * Reduced memory usage for older ARM systems
60 * -- Russell King <rmk@arm.linux.org.uk>
61 *
62 * Move do_SAK() into process context. Less stack use in devfs functions.
37bdfb07
AC		 63 * alloc_tty_struct() always uses kmalloc()
64 * -- Andrew Morton <andrewm@uow.edu.eu> 17Mar01
1da177e4
LT		 65 */
66
1da177e4
LT		 67#include <linux/types.h>
68#include <linux/major.h>
69#include <linux/errno.h>
70#include <linux/signal.h>
71#include <linux/fcntl.h>
72#include <linux/sched.h>
73#include <linux/interrupt.h>
74#include <linux/tty.h>
75#include <linux/tty_driver.h>
76#include <linux/tty_flip.h>
77#include <linux/devpts_fs.h>
78#include <linux/file.h>
9f3acc31 79#include <linux/fdtable.h>
1da177e4
LT		 80#include <linux/console.h>
81#include <linux/timer.h>
82#include <linux/ctype.h>
83#include <linux/kd.h>
84#include <linux/mm.h>
85#include <linux/string.h>
86#include <linux/slab.h>
87#include <linux/poll.h>
88#include <linux/proc_fs.h>
89#include <linux/init.h>
90#include <linux/module.h>
1da177e4 91#include <linux/device.h>
1da177e4
LT		 92#include <linux/wait.h>
93#include <linux/bitops.h>
b20f3ae5 94#include <linux/delay.h>
a352def2 95#include <linux/seq_file.h>
d281da7f 96#include <linux/serial.h>
5a3c6b25 97#include <linux/ratelimit.h>
1da177e4 98
a352def2 99#include <linux/uaccess.h>
1da177e4
LT		 100
101#include <linux/kbd_kern.h>
102#include <linux/vt_kern.h>
103#include <linux/selection.h>
1da177e4
LT		 104
105#include <linux/kmod.h>
b488893a 106#include <linux/nsproxy.h>
1da177e4
LT		 107
108#undef TTY_DEBUG_HANGUP
109
110#define TTY_PARANOIA_CHECK 1
111#define CHECK_TTY_COUNT 1
112
edc6afc5 113struct ktermios tty_std_termios = { /* for the benefit of tty drivers */
1da177e4
LT		 114 .c_iflag = ICRNL | IXON,
115 .c_oflag = OPOST | ONLCR,
116 .c_cflag = B38400 | CS8 | CREAD | HUPCL,
117 .c_lflag = ISIG | ICANON | ECHO | ECHOE | ECHOK |
118 ECHOCTL | ECHOKE | IEXTEN,
edc6afc5
AC		 119 .c_cc = INIT_C_CC,
120 .c_ispeed = 38400,
121 .c_ospeed = 38400
1da177e4
LT		 122};
123
124EXPORT_SYMBOL(tty_std_termios);
125
126/* This list gets poked at by procfs and various bits of boot up code. This
127 could do with some rationalisation such as pulling the tty proc function
128 into this file */
37bdfb07 129
1da177e4
LT		 130LIST_HEAD(tty_drivers); /* linked list of tty drivers */
131
24ec839c 132/* Mutex to protect creating and releasing a tty. This is shared with
1da177e4 133 vt.c for deeply disgusting hack reasons */
70522e12 134DEFINE_MUTEX(tty_mutex);
de2a84f2 135EXPORT_SYMBOL(tty_mutex);
1da177e4 136
ee2ffa0d
NP		 137/* Spinlock to protect the tty->tty_files list */
138DEFINE_SPINLOCK(tty_files_lock);
139
1da177e4
LT		 140static ssize_t tty_read(struct file *, char __user *, size_t, loff_t *);
141static ssize_t tty_write(struct file *, const char __user *, size_t, loff_t *);
37bdfb07
AC		 142ssize_t redirected_tty_write(struct file *, const char __user *,
143 size_t, loff_t *);
1da177e4
LT		 144static unsigned int tty_poll(struct file *, poll_table *);
145static int tty_open(struct inode *, struct file *);
04f378b1 146long tty_ioctl(struct file *file, unsigned int cmd, unsigned long arg);
e10cc1df 147#ifdef CONFIG_COMPAT
37bdfb07 148static long tty_compat_ioctl(struct file *file, unsigned int cmd,
e10cc1df
PF		 149 unsigned long arg);
150#else
151#define tty_compat_ioctl NULL
152#endif
ec79d605 153static int __tty_fasync(int fd, struct file *filp, int on);
37bdfb07 154static int tty_fasync(int fd, struct file *filp, int on);
d5698c28 155static void release_tty(struct tty_struct *tty, int idx);
1da177e4 156
af9b897e
AC		 157/**
158 * free_tty_struct - free a disused tty
159 * @tty: tty struct to free
160 *
161 * Free the write buffers, tty queue and tty memory itself.
162 *
163 * Locking: none. Must be called after tty is definitely unused
164 */
165
bf970ee4 166void free_tty_struct(struct tty_struct *tty)
1da177e4 167{
dc6802a7
DC		 168 if (!tty)
169 return;
30004ac9
DES		 170 if (tty->dev)
171 put_device(tty->dev);
1da177e4 172 kfree(tty->write_buf);
89c8d91e 173 tty->magic = 0xDEADDEAD;
1da177e4
LT		 174 kfree(tty);
175}
176
d996b62a
NP		 177static inline struct tty_struct *file_tty(struct file *file)
178{
179 return ((struct tty_file_private *)file->private_data)->tty;
180}
181
fa90e1c9 182int tty_alloc_file(struct file *file)
d996b62a
NP		 183{
184 struct tty_file_private *priv;
185
f573bd17
PE		 186 priv = kmalloc(sizeof(*priv), GFP_KERNEL);
187 if (!priv)
188 return -ENOMEM;
d996b62a 189
fa90e1c9
JS		 190 file->private_data = priv;
191
192 return 0;
193}
194
195/* Associate a new file with the tty structure */
196void tty_add_file(struct tty_struct *tty, struct file *file)
197{
198 struct tty_file_private *priv = file->private_data;
199
d996b62a
NP		 200 priv->tty = tty;
201 priv->file = file;
d996b62a
NP		 202
203 spin_lock(&tty_files_lock);
204 list_add(&priv->list, &tty->tty_files);
205 spin_unlock(&tty_files_lock);
fa90e1c9 206}
f573bd17 207
fa90e1c9
JS		 208/**
209 * tty_free_file - free file->private_data
210 *
211 * This shall be used only for fail path handling when tty_add_file was not
212 * called yet.
213 */
214void tty_free_file(struct file *file)
215{
216 struct tty_file_private *priv = file->private_data;
217
218 file->private_data = NULL;
219 kfree(priv);
d996b62a
NP		 220}
221
222/* Delete file from its tty */
2520e274 223static void tty_del_file(struct file *file)
d996b62a
NP		 224{
225 struct tty_file_private *priv = file->private_data;
226
227 spin_lock(&tty_files_lock);
228 list_del(&priv->list);
229 spin_unlock(&tty_files_lock);
fa90e1c9 230 tty_free_file(file);
d996b62a
NP		 231}
232
233
1da177e4
LT		 234#define TTY_NUMBER(tty) ((tty)->index + (tty)->driver->name_base)
235
af9b897e
AC		 236/**
237 * tty_name - return tty naming
238 * @tty: tty structure
239 * @buf: buffer for output
240 *
241 * Convert a tty structure into a name. The name reflects the kernel
242 * naming policy and if udev is in use may not reflect user space
243 *
244 * Locking: none
245 */
246
1da177e4
LT		 247char *tty_name(struct tty_struct *tty, char *buf)
248{
249 if (!tty) /* Hmm. NULL pointer. That's fun. */
250 strcpy(buf, "NULL tty");
251 else
252 strcpy(buf, tty->name);
253 return buf;
254}
255
256EXPORT_SYMBOL(tty_name);
257
d769a669 258int tty_paranoia_check(struct tty_struct *tty, struct inode *inode,
1da177e4
LT		 259 const char *routine)
260{
261#ifdef TTY_PARANOIA_CHECK
262 if (!tty) {
263 printk(KERN_WARNING
264 "null TTY for (%d:%d) in %s\n",
265 imajor(inode), iminor(inode), routine);
266 return 1;
267 }
268 if (tty->magic != TTY_MAGIC) {
269 printk(KERN_WARNING
270 "bad magic number for tty struct (%d:%d) in %s\n",
271 imajor(inode), iminor(inode), routine);
272 return 1;
273 }
274#endif
275 return 0;
276}
277
deb287e7 278/* Caller must hold tty_lock */
1da177e4
LT		 279static int check_tty_count(struct tty_struct *tty, const char *routine)
280{
281#ifdef CHECK_TTY_COUNT
282 struct list_head *p;
283 int count = 0;
37bdfb07 284
ee2ffa0d 285 spin_lock(&tty_files_lock);
1da177e4
LT		 286 list_for_each(p, &tty->tty_files) {
287 count++;
288 }
ee2ffa0d 289 spin_unlock(&tty_files_lock);
1da177e4
LT		 290 if (tty->driver->type == TTY_DRIVER_TYPE_PTY &&
291 tty->driver->subtype == PTY_TYPE_SLAVE &&
292 tty->link && tty->link->count)
293 count++;
294 if (tty->count != count) {
295 printk(KERN_WARNING "Warning: dev (%s) tty->count(%d) "
296 "!= #fd's(%d) in %s\n",
297 tty->name, tty->count, count, routine);
298 return count;
24ec839c 299 }
1da177e4
LT		 300#endif
301 return 0;
302}
303
af9b897e
AC		 304/**
305 * get_tty_driver - find device of a tty
306 * @dev_t: device identifier
307 * @index: returns the index of the tty
308 *
309 * This routine returns a tty driver structure, given a device number
310 * and also passes back the index number.
311 *
312 * Locking: caller must hold tty_mutex
1da177e4 313 */
af9b897e 314
1da177e4
LT		 315static struct tty_driver *get_tty_driver(dev_t device, int *index)
316{
317 struct tty_driver *p;
318
319 list_for_each_entry(p, &tty_drivers, tty_drivers) {
320 dev_t base = MKDEV(p->major, p->minor_start);
321 if (device < base || device >= base + p->num)
322 continue;
323 *index = device - base;
7d7b93c1 324 return tty_driver_kref_get(p);
1da177e4
LT		 325 }
326 return NULL;
327}
328
f2d937f3
JW		 329#ifdef CONFIG_CONSOLE_POLL
330
331/**
332 * tty_find_polling_driver - find device of a polled tty
333 * @name: name string to match
334 * @line: pointer to resulting tty line nr
335 *
336 * This routine returns a tty driver structure, given a name
337 * and the condition that the tty driver is capable of polled
338 * operation.
339 */
340struct tty_driver *tty_find_polling_driver(char *name, int *line)
341{
342 struct tty_driver *p, *res = NULL;
343 int tty_line = 0;
0dca0fd2 344 int len;
5f0878ac 345 char *str, *stp;
f2d937f3 346
0dca0fd2
JW		 347 for (str = name; *str; str++)
348 if ((*str >= '0' && *str <= '9') || *str == ',')
349 break;
350 if (!*str)
351 return NULL;
352
353 len = str - name;
354 tty_line = simple_strtoul(str, &str, 10);
355
f2d937f3
JW		 356 mutex_lock(&tty_mutex);
357 /* Search through the tty devices to look for a match */
358 list_for_each_entry(p, &tty_drivers, tty_drivers) {
0dca0fd2
JW		 359 if (strncmp(name, p->name, len) != 0)
360 continue;
5f0878ac
AC		 361 stp = str;
362 if (*stp == ',')
363 stp++;
364 if (*stp == '\0')
365 stp = NULL;
f2d937f3 366
6eb68d6f 367 if (tty_line >= 0 && tty_line < p->num && p->ops &&
5f0878ac 368 p->ops->poll_init && !p->ops->poll_init(p, tty_line, stp)) {
7d7b93c1 369 res = tty_driver_kref_get(p);
f2d937f3
JW		 370 *line = tty_line;
371 break;
372 }
373 }
374 mutex_unlock(&tty_mutex);
375
376 return res;
377}
378EXPORT_SYMBOL_GPL(tty_find_polling_driver);
379#endif
380
af9b897e
AC		 381/**
382 * tty_check_change - check for POSIX terminal changes
383 * @tty: tty to check
384 *
385 * If we try to write to, or set the state of, a terminal and we're
386 * not in the foreground, send a SIGTTOU. If the signal is blocked or
387 * ignored, go ahead and perform the operation. (POSIX 7.2)
388 *
978e595f 389 * Locking: ctrl_lock
1da177e4 390 */
af9b897e 391
37bdfb07 392int tty_check_change(struct tty_struct *tty)
1da177e4 393{
47f86834
AC		 394 unsigned long flags;
395 int ret = 0;
396
1da177e4
LT		 397 if (current->signal->tty != tty)
398 return 0;
47f86834
AC		 399
400 spin_lock_irqsave(&tty->ctrl_lock, flags);
401
ab521dc0
EB		 402 if (!tty->pgrp) {
403 printk(KERN_WARNING "tty_check_change: tty->pgrp == NULL!\n");
9ffee4cb 404 goto out_unlock;
1da177e4 405 }
ab521dc0 406 if (task_pgrp(current) == tty->pgrp)
9ffee4cb
AM		 407 goto out_unlock;
408 spin_unlock_irqrestore(&tty->ctrl_lock, flags);
1da177e4 409 if (is_ignored(SIGTTOU))
47f86834
AC		 410 goto out;
411 if (is_current_pgrp_orphaned()) {
412 ret = -EIO;
413 goto out;
414 }
040b6362
ON		 415 kill_pgrp(task_pgrp(current), SIGTTOU, 1);
416 set_thread_flag(TIF_SIGPENDING);
47f86834
AC		 417 ret = -ERESTARTSYS;
418out:
9ffee4cb
AM		 419 return ret;
420out_unlock:
47f86834
AC		 421 spin_unlock_irqrestore(&tty->ctrl_lock, flags);
422 return ret;
1da177e4
LT		 423}
424
425EXPORT_SYMBOL(tty_check_change);
426
37bdfb07 427static ssize_t hung_up_tty_read(struct file *file, char __user *buf,
1da177e4
LT		 428 size_t count, loff_t *ppos)
429{
430 return 0;
431}
432
37bdfb07 433static ssize_t hung_up_tty_write(struct file *file, const char __user *buf,
1da177e4
LT		 434 size_t count, loff_t *ppos)
435{
436 return -EIO;
437}
438
439/* No kernel lock held - none needed ;) */
37bdfb07 440static unsigned int hung_up_tty_poll(struct file *filp, poll_table *wait)
1da177e4
LT		 441{
442 return POLLIN | POLLOUT | POLLERR | POLLHUP | POLLRDNORM | POLLWRNORM;
443}
444
04f378b1
AC		 445static long hung_up_tty_ioctl(struct file *file, unsigned int cmd,
446 unsigned long arg)
38ad2ed0
PF		 447{
448 return cmd == TIOCSPGRP ? -ENOTTY : -EIO;
449}
450
37bdfb07 451static long hung_up_tty_compat_ioctl(struct file *file,
38ad2ed0 452 unsigned int cmd, unsigned long arg)
1da177e4
LT		 453{
454 return cmd == TIOCSPGRP ? -ENOTTY : -EIO;
455}
456
62322d25 457static const struct file_operations tty_fops = {
1da177e4
LT		 458 .llseek = no_llseek,
459 .read = tty_read,
460 .write = tty_write,
461 .poll = tty_poll,
04f378b1 462 .unlocked_ioctl = tty_ioctl,
e10cc1df 463 .compat_ioctl = tty_compat_ioctl,
1da177e4
LT		 464 .open = tty_open,
465 .release = tty_release,
466 .fasync = tty_fasync,
467};
468
62322d25 469static const struct file_operations console_fops = {
1da177e4
LT		 470 .llseek = no_llseek,
471 .read = tty_read,
472 .write = redirected_tty_write,
473 .poll = tty_poll,
04f378b1 474 .unlocked_ioctl = tty_ioctl,
e10cc1df 475 .compat_ioctl = tty_compat_ioctl,
1da177e4
LT		 476 .open = tty_open,
477 .release = tty_release,
478 .fasync = tty_fasync,
479};
480
62322d25 481static const struct file_operations hung_up_tty_fops = {
1da177e4
LT		 482 .llseek = no_llseek,
483 .read = hung_up_tty_read,
484 .write = hung_up_tty_write,
485 .poll = hung_up_tty_poll,
04f378b1 486 .unlocked_ioctl = hung_up_tty_ioctl,
38ad2ed0 487 .compat_ioctl = hung_up_tty_compat_ioctl,
1da177e4
LT		 488 .release = tty_release,
489};
490
491static DEFINE_SPINLOCK(redirect_lock);
492static struct file *redirect;
493
11d9befd
PH		 494
495void proc_clear_tty(struct task_struct *p)
496{
497 unsigned long flags;
498 struct tty_struct *tty;
499 spin_lock_irqsave(&p->sighand->siglock, flags);
500 tty = p->signal->tty;
501 p->signal->tty = NULL;
502 spin_unlock_irqrestore(&p->sighand->siglock, flags);
503 tty_kref_put(tty);
504}
505
2c411c11
PH		 506/**
507 * proc_set_tty - set the controlling terminal
508 *
509 * Only callable by the session leader and only if it does not already have
510 * a controlling terminal.
511 *
e218eb32
PH		 512 * Caller must hold: tty_lock()
513 * a readlock on tasklist_lock
2c411c11
PH		 514 * sighand lock
515 */
bce65f18 516static void __proc_set_tty(struct tty_struct *tty)
11d9befd 517{
ae28fa72
PH		 518 unsigned long flags;
519
ae28fa72 520 spin_lock_irqsave(&tty->ctrl_lock, flags);
a361858d
PH		 521 /*
522 * The session and fg pgrp references will be non-NULL if
523 * tiocsctty() is stealing the controlling tty
524 */
ae28fa72
PH		 525 put_pid(tty->session);
526 put_pid(tty->pgrp);
527 tty->pgrp = get_pid(task_pgrp(current));
528 spin_unlock_irqrestore(&tty->ctrl_lock, flags);
529 tty->session = get_pid(task_session(current));
530 if (current->signal->tty) {
531 printk(KERN_DEBUG "tty not NULL!!\n");
532 tty_kref_put(current->signal->tty);
11d9befd 533 }
bce65f18
PH		 534 put_pid(current->signal->tty_old_pgrp);
535 current->signal->tty = tty_kref_get(tty);
536 current->signal->tty_old_pgrp = NULL;
11d9befd
PH		 537}
538
bce65f18 539static void proc_set_tty(struct tty_struct *tty)
11d9befd 540{
bce65f18
PH		 541 spin_lock_irq(&current->sighand->siglock);
542 __proc_set_tty(tty);
543 spin_unlock_irq(&current->sighand->siglock);
11d9befd
PH		 544}
545
546struct tty_struct *get_current_tty(void)
547{
548 struct tty_struct *tty;
549 unsigned long flags;
550
551 spin_lock_irqsave(&current->sighand->siglock, flags);
552 tty = tty_kref_get(current->signal->tty);
553 spin_unlock_irqrestore(&current->sighand->siglock, flags);
554 return tty;
555}
556EXPORT_SYMBOL_GPL(get_current_tty);
557
558static void session_clear_tty(struct pid *session)
559{
560 struct task_struct *p;
561 do_each_pid_task(session, PIDTYPE_SID, p) {
562 proc_clear_tty(p);
563 } while_each_pid_task(session, PIDTYPE_SID, p);
564}
565
1da177e4
LT		 566/**
567 * tty_wakeup - request more data
568 * @tty: terminal
569 *
570 * Internal and external helper for wakeups of tty. This function
571 * informs the line discipline if present that the driver is ready
572 * to receive more output data.
573 */
37bdfb07 574
1da177e4
LT		 575void tty_wakeup(struct tty_struct *tty)
576{
577 struct tty_ldisc *ld;
37bdfb07 578
1da177e4
LT		 579 if (test_bit(TTY_DO_WRITE_WAKEUP, &tty->flags)) {
580 ld = tty_ldisc_ref(tty);
37bdfb07 581 if (ld) {
a352def2
AC		 582 if (ld->ops->write_wakeup)
583 ld->ops->write_wakeup(tty);
1da177e4
LT		 584 tty_ldisc_deref(ld);
585 }
586 }
4b19449d 587 wake_up_interruptible_poll(&tty->write_wait, POLLOUT);
1da177e4
LT		 588}
589
590EXPORT_SYMBOL_GPL(tty_wakeup);
591
ea648a47
PH		 592/**
593 * tty_signal_session_leader - sends SIGHUP to session leader
f91e2590
PH		 594 * @tty controlling tty
595 * @exit_session if non-zero, signal all foreground group processes
ea648a47 596 *
f91e2590
PH		 597 * Send SIGHUP and SIGCONT to the session leader and its process group.
598 * Optionally, signal all processes in the foreground process group.
ea648a47
PH		 599 *
600 * Returns the number of processes in the session with this tty
601 * as their controlling terminal. This value is used to drop
602 * tty references for those processes.
603 */
f91e2590 604static int tty_signal_session_leader(struct tty_struct *tty, int exit_session)
ea648a47
PH		 605{
606 struct task_struct *p;
ea648a47 607 int refs = 0;
f91e2590 608 struct pid *tty_pgrp = NULL;
ea648a47
PH		 609
610 read_lock(&tasklist_lock);
611 if (tty->session) {
612 do_each_pid_task(tty->session, PIDTYPE_SID, p) {
613 spin_lock_irq(&p->sighand->siglock);
614 if (p->signal->tty == tty) {
615 p->signal->tty = NULL;
616 /* We defer the dereferences outside fo
617 the tasklist lock */
618 refs++;
619 }
620 if (!p->signal->leader) {
621 spin_unlock_irq(&p->sighand->siglock);
622 continue;
623 }
624 __group_send_sig_info(SIGHUP, SEND_SIG_PRIV, p);
625 __group_send_sig_info(SIGCONT, SEND_SIG_PRIV, p);
626 put_pid(p->signal->tty_old_pgrp); /* A noop */
bc30c3b2 627 spin_lock(&tty->ctrl_lock);
f91e2590 628 tty_pgrp = get_pid(tty->pgrp);
ea648a47
PH		 629 if (tty->pgrp)
630 p->signal->tty_old_pgrp = get_pid(tty->pgrp);
bc30c3b2 631 spin_unlock(&tty->ctrl_lock);
ea648a47
PH		 632 spin_unlock_irq(&p->sighand->siglock);
633 } while_each_pid_task(tty->session, PIDTYPE_SID, p);
634 }
635 read_unlock(&tasklist_lock);
636
f91e2590
PH		 637 if (tty_pgrp) {
638 if (exit_session)
639 kill_pgrp(tty_pgrp, SIGHUP, exit_session);
640 put_pid(tty_pgrp);
641 }
642
ea648a47
PH		 643 return refs;
644}
645
af9b897e 646/**
11dbf203 647 * __tty_hangup - actual handler for hangup events
65f27f38 648 * @work: tty device
af9b897e 649 *
ef4f527c 650 * This can be called by a "kworker" kernel thread. That is process
af9b897e
AC		 651 * synchronous but doesn't hold any locks, so we need to make sure we
652 * have the appropriate locks for what we're doing.
653 *
654 * The hangup event clears any pending redirections onto the hung up
655 * device. It ensures future writes will error and it does the needed
656 * line discipline hangup and signal delivery. The tty object itself
657 * remains intact.
658 *
659 * Locking:
ec79d605 660 * BTM
24ec839c
PZ		 661 * redirect lock for undoing redirection
662 * file list lock for manipulating list of ttys
137084bb 663 * tty_ldiscs_lock from called functions
6a1c0680 664 * termios_rwsem resetting termios data
24ec839c
PZ		 665 * tasklist_lock to walk task list for hangup event
666 * ->siglock to protect ->signal/->sighand
1da177e4 667 */
f91e2590 668static void __tty_hangup(struct tty_struct *tty, int exit_session)
1da177e4 669{
37bdfb07 670 struct file *cons_filp = NULL;
1da177e4 671 struct file *filp, *f = NULL;
d996b62a 672 struct tty_file_private *priv;
1da177e4 673 int closecount = 0, n;
ea648a47 674 int refs;
1da177e4
LT		 675
676 if (!tty)
677 return;
678
1da177e4
LT		 679
680 spin_lock(&redirect_lock);
d996b62a 681 if (redirect && file_tty(redirect) == tty) {
1da177e4
LT		 682 f = redirect;
683 redirect = NULL;
684 }
685 spin_unlock(&redirect_lock);
37bdfb07 686
89c8d91e 687 tty_lock(tty);
11dbf203 688
cb50e523
PH		 689 if (test_bit(TTY_HUPPED, &tty->flags)) {
690 tty_unlock(tty);
691 return;
692 }
693
ec79d605
AB		 694 /* inuse_filps is protected by the single tty lock,
695 this really needs to change if we want to flush the
696 workqueue with the lock held */
11dbf203 697 check_tty_count(tty, "tty_hangup");
36ba782e 698
ee2ffa0d 699 spin_lock(&tty_files_lock);
1da177e4 700 /* This breaks for file handles being sent over AF_UNIX sockets ? */
d996b62a
NP		 701 list_for_each_entry(priv, &tty->tty_files, list) {
702 filp = priv->file;
1da177e4
LT		 703 if (filp->f_op->write == redirected_tty_write)
704 cons_filp = filp;
705 if (filp->f_op->write != tty_write)
706 continue;
707 closecount++;
ec79d605 708 __tty_fasync(-1, filp, 0); /* can't block */
1da177e4
LT		 709 filp->f_op = &hung_up_tty_fops;
710 }
ee2ffa0d 711 spin_unlock(&tty_files_lock);
37bdfb07 712
25fdf243
PH		 713 refs = tty_signal_session_leader(tty, exit_session);
714 /* Account for the p->signal references we killed */
715 while (refs--)
716 tty_kref_put(tty);
717
c65c9bc3 718 tty_ldisc_hangup(tty);
37bdfb07 719
20cc225b 720 spin_lock_irq(&tty->ctrl_lock);
c65c9bc3 721 clear_bit(TTY_THROTTLED, &tty->flags);
c65c9bc3 722 clear_bit(TTY_DO_WRITE_WAKEUP, &tty->flags);
d9c1e9a8
EB		 723 put_pid(tty->session);
724 put_pid(tty->pgrp);
ab521dc0
EB		 725 tty->session = NULL;
726 tty->pgrp = NULL;
1da177e4 727 tty->ctrl_status = 0;
20cc225b 728 spin_unlock_irq(&tty->ctrl_lock);
9c9f4ded 729
1da177e4 730 /*
37bdfb07
AC		 731 * If one of the devices matches a console pointer, we
732 * cannot just call hangup() because that will cause
733 * tty->count and state->count to go out of sync.
734 * So we just call close() the right number of times.
1da177e4
LT		 735 */
736 if (cons_filp) {
f34d7a5b 737 if (tty->ops->close)
1da177e4 738 for (n = 0; n < closecount; n++)
f34d7a5b
AC		 739 tty->ops->close(tty, cons_filp);
740 } else if (tty->ops->hangup)
7c6d340f 741 tty->ops->hangup(tty);
37bdfb07
AC		 742 /*
743 * We don't want to have driver/ldisc interactions beyond
744 * the ones we did here. The driver layer expects no
745 * calls after ->hangup() from the ldisc side. However we
746 * can't yet guarantee all that.
747 */
1da177e4 748 set_bit(TTY_HUPPED, &tty->flags);
89c8d91e 749 tty_unlock(tty);
11dbf203 750
1da177e4
LT		 751 if (f)
752 fput(f);
753}
754
ddcd9fb6
AB		 755static void do_tty_hangup(struct work_struct *work)
756{
757 struct tty_struct *tty =
758 container_of(work, struct tty_struct, hangup_work);
759
f91e2590 760 __tty_hangup(tty, 0);
ddcd9fb6
AB		 761}
762
af9b897e
AC		 763/**
764 * tty_hangup - trigger a hangup event
765 * @tty: tty to hangup
766 *
767 * A carrier loss (virtual or otherwise) has occurred on this like
768 * schedule a hangup sequence to run after this event.
769 */
770
37bdfb07 771void tty_hangup(struct tty_struct *tty)
1da177e4
LT		 772{
773#ifdef TTY_DEBUG_HANGUP
774 char buf[64];
1da177e4
LT		 775 printk(KERN_DEBUG "%s hangup...\n", tty_name(tty, buf));
776#endif
777 schedule_work(&tty->hangup_work);
778}
779
780EXPORT_SYMBOL(tty_hangup);
781
af9b897e
AC		 782/**
783 * tty_vhangup - process vhangup
784 * @tty: tty to hangup
785 *
786 * The user has asked via system call for the terminal to be hung up.
787 * We do this synchronously so that when the syscall returns the process
3a4fa0a2 788 * is complete. That guarantee is necessary for security reasons.
af9b897e
AC		 789 */
790
37bdfb07 791void tty_vhangup(struct tty_struct *tty)
1da177e4
LT		 792{
793#ifdef TTY_DEBUG_HANGUP
794 char buf[64];
795
796 printk(KERN_DEBUG "%s vhangup...\n", tty_name(tty, buf));
797#endif
f91e2590 798 __tty_hangup(tty, 0);
1da177e4 799}
37bdfb07 800
1da177e4
LT		 801EXPORT_SYMBOL(tty_vhangup);
802
11dbf203 803
2cb5998b
AC		 804/**
805 * tty_vhangup_self - process vhangup for own ctty
806 *
807 * Perform a vhangup on the current controlling tty
808 */
809
810void tty_vhangup_self(void)
811{
812 struct tty_struct *tty;
813
2cb5998b
AC		 814 tty = get_current_tty();
815 if (tty) {
816 tty_vhangup(tty);
817 tty_kref_put(tty);
818 }
2cb5998b
AC		 819}
820
f91e2590
PH		 821/**
822 * tty_vhangup_session - hangup session leader exit
823 * @tty: tty to hangup
824 *
825 * The session leader is exiting and hanging up its controlling terminal.
826 * Every process in the foreground process group is signalled SIGHUP.
827 *
828 * We do this synchronously so that when the syscall returns the process
829 * is complete. That guarantee is necessary for security reasons.
830 */
831
44a459fd 832static void tty_vhangup_session(struct tty_struct *tty)
f91e2590
PH		 833{
834#ifdef TTY_DEBUG_HANGUP
835 char buf[64];
836
837 printk(KERN_DEBUG "%s vhangup session...\n", tty_name(tty, buf));
838#endif
839 __tty_hangup(tty, 1);
840}
841
af9b897e
AC		 842/**
843 * tty_hung_up_p - was tty hung up
844 * @filp: file pointer of tty
845 *
846 * Return true if the tty has been subject to a vhangup or a carrier
847 * loss
848 */
849
37bdfb07 850int tty_hung_up_p(struct file *filp)
1da177e4
LT		 851{
852 return (filp->f_op == &hung_up_tty_fops);
853}
854
855EXPORT_SYMBOL(tty_hung_up_p);
856
af9b897e
AC		 857/**
858 * disassociate_ctty - disconnect controlling tty
859 * @on_exit: true if exiting so need to "hang up" the session
1da177e4 860 *
af9b897e
AC		 861 * This function is typically called only by the session leader, when
862 * it wants to disassociate itself from its controlling tty.
863 *
864 * It performs the following functions:
1da177e4
LT		 865 * (1) Sends a SIGHUP and SIGCONT to the foreground process group
866 * (2) Clears the tty from being controlling the session
867 * (3) Clears the controlling tty for all processes in the
868 * session group.
869 *
af9b897e
AC		 870 * The argument on_exit is set to 1 if called when a process is
871 * exiting; it is 0 if called by the ioctl TIOCNOTTY.
872 *
24ec839c 873 * Locking:
ec79d605
AB		 874 * BTM is taken for hysterical raisins, and held when
875 * called from no_tty().
24ec839c
PZ		 876 * tty_mutex is taken to protect tty
877 * ->siglock is taken to protect ->signal/->sighand
878 * tasklist_lock is taken to walk process list for sessions
879 * ->siglock is taken to protect ->signal/->sighand
1da177e4 880 */
af9b897e 881
1da177e4
LT		 882void disassociate_ctty(int on_exit)
883{
884 struct tty_struct *tty;
1da177e4 885
5ec93d11
AC		 886 if (!current->signal->leader)
887 return;
1da177e4 888
24ec839c 889 tty = get_current_tty();
1da177e4 890 if (tty) {
f91e2590
PH		 891 if (on_exit && tty->driver->type != TTY_DRIVER_TYPE_PTY) {
892 tty_vhangup_session(tty);
893 } else {
894 struct pid *tty_pgrp = tty_get_pgrp(tty);
895 if (tty_pgrp) {
896 kill_pgrp(tty_pgrp, SIGHUP, on_exit);
03e12617
ON		 897 if (!on_exit)
898 kill_pgrp(tty_pgrp, SIGCONT, on_exit);
f91e2590
PH		 899 put_pid(tty_pgrp);
900 }
1411dc4a 901 }
f91e2590
PH		 902 tty_kref_put(tty);
903
680a9671 904 } else if (on_exit) {
ab521dc0 905 struct pid *old_pgrp;
680a9671
EB		 906 spin_lock_irq(&current->sighand->siglock);
907 old_pgrp = current->signal->tty_old_pgrp;
ab521dc0 908 current->signal->tty_old_pgrp = NULL;
680a9671 909 spin_unlock_irq(&current->sighand->siglock);
24ec839c 910 if (old_pgrp) {
ab521dc0
EB		 911 kill_pgrp(old_pgrp, SIGHUP, on_exit);
912 kill_pgrp(old_pgrp, SIGCONT, on_exit);
913 put_pid(old_pgrp);
1da177e4 914 }
1da177e4
LT		 915 return;
916 }
1da177e4 917
24ec839c 918 spin_lock_irq(&current->sighand->siglock);
2a65f1d9 919 put_pid(current->signal->tty_old_pgrp);
23cac8de 920 current->signal->tty_old_pgrp = NULL;
24ec839c 921
c70dbb1e 922 tty = tty_kref_get(current->signal->tty);
24ec839c 923 if (tty) {
47f86834
AC		 924 unsigned long flags;
925 spin_lock_irqsave(&tty->ctrl_lock, flags);
ab521dc0
EB		 926 put_pid(tty->session);
927 put_pid(tty->pgrp);
928 tty->session = NULL;
929 tty->pgrp = NULL;
47f86834 930 spin_unlock_irqrestore(&tty->ctrl_lock, flags);
452a00d2 931 tty_kref_put(tty);
24ec839c
PZ		 932 } else {
933#ifdef TTY_DEBUG_HANGUP
934 printk(KERN_DEBUG "error attempted to write to tty [0x%p]"
935 " = NULL", tty);
936#endif
937 }
1da177e4 938
c70dbb1e 939 spin_unlock_irq(&current->sighand->siglock);
1da177e4
LT		 940 /* Now clear signal->tty under the lock */
941 read_lock(&tasklist_lock);
ab521dc0 942 session_clear_tty(task_session(current));
1da177e4 943 read_unlock(&tasklist_lock);
1da177e4
LT		 944}
945
98a27ba4
EB		 946/**
947 *
948 * no_tty - Ensure the current process does not have a controlling tty
949 */
950void no_tty(void)
951{
3af502b9
AC		 952 /* FIXME: Review locking here. The tty_lock never covered any race
953 between a new association and proc_clear_tty but possible we need
954 to protect against this anyway */
98a27ba4 955 struct task_struct *tsk = current;
5ec93d11 956 disassociate_ctty(0);
98a27ba4
EB		 957 proc_clear_tty(tsk);
958}
959
af9b897e
AC		 960
961/**
beb7dd86 962 * stop_tty - propagate flow control
af9b897e
AC		 963 * @tty: tty to stop
964 *
01adc807 965 * Perform flow control to the driver. May be called
af9b897e
AC		 966 * on an already stopped device and will not re-call the driver
967 * method.
968 *
969 * This functionality is used by both the line disciplines for
970 * halting incoming flow and by the driver. It may therefore be
971 * called from any context, may be under the tty atomic_write_lock
972 * but not always.
973 *
974 * Locking:
f9e053dc 975 * flow_lock
af9b897e
AC		 976 */
977
f9e053dc 978void __stop_tty(struct tty_struct *tty)
1da177e4 979{
f9e053dc 980 if (tty->stopped)
1da177e4
LT		 981 return;
982 tty->stopped = 1;
f34d7a5b
AC		 983 if (tty->ops->stop)
984 (tty->ops->stop)(tty);
1da177e4
LT		 985}
986
f9e053dc
PH		 987void stop_tty(struct tty_struct *tty)
988{
989 unsigned long flags;
990
991 spin_lock_irqsave(&tty->flow_lock, flags);
992 __stop_tty(tty);
993 spin_unlock_irqrestore(&tty->flow_lock, flags);
994}
1da177e4
LT		 995EXPORT_SYMBOL(stop_tty);
996
af9b897e 997/**
beb7dd86 998 * start_tty - propagate flow control
af9b897e
AC		 999 * @tty: tty to start
1000 *
01adc807
PH		 1001 * Start a tty that has been stopped if at all possible. If this
1002 * tty was previous stopped and is now being started, the driver
1003 * start method is invoked and the line discipline woken.
af9b897e
AC		 1004 *
1005 * Locking:
f9e053dc 1006 * flow_lock
af9b897e
AC		 1007 */
1008
f9e053dc 1009void __start_tty(struct tty_struct *tty)
1da177e4 1010{
f9e053dc 1011 if (!tty->stopped || tty->flow_stopped)
1da177e4
LT		 1012 return;
1013 tty->stopped = 0;
f34d7a5b
AC		 1014 if (tty->ops->start)
1015 (tty->ops->start)(tty);
1da177e4 1016 tty_wakeup(tty);
1da177e4
LT		 1017}
1018
f9e053dc
PH		 1019void start_tty(struct tty_struct *tty)
1020{
1021 unsigned long flags;
1022
1023 spin_lock_irqsave(&tty->flow_lock, flags);
1024 __start_tty(tty);
1025 spin_unlock_irqrestore(&tty->flow_lock, flags);
1026}
1da177e4
LT		 1027EXPORT_SYMBOL(start_tty);
1028
b0b88565 1029/* We limit tty time update visibility to every 8 seconds or so. */
37b7f3c7
JS		 1030static void tty_update_time(struct timespec *time)
1031{
b0b88565 1032 unsigned long sec = get_seconds() & ~7;
37b7f3c7
JS		 1033 if ((long)(sec - time->tv_sec) > 0)
1034 time->tv_sec = sec;
1035}
1036
af9b897e
AC		 1037/**
1038 * tty_read - read method for tty device files
1039 * @file: pointer to tty file
1040 * @buf: user buffer
1041 * @count: size of user buffer
1042 * @ppos: unused
1043 *
1044 * Perform the read system call function on this terminal device. Checks
1045 * for hung up devices before calling the line discipline method.
1046 *
1047 * Locking:
47f86834
AC		 1048 * Locks the line discipline internally while needed. Multiple
1049 * read calls may be outstanding in parallel.
af9b897e
AC		 1050 */
1051
37bdfb07 1052static ssize_t tty_read(struct file *file, char __user *buf, size_t count,
1da177e4
LT		 1053 loff_t *ppos)
1054{
1055 int i;
37b7f3c7 1056 struct inode *inode = file_inode(file);
d996b62a 1057 struct tty_struct *tty = file_tty(file);
1da177e4
LT		 1058 struct tty_ldisc *ld;
1059
37b7f3c7 1060 if (tty_paranoia_check(tty, inode, "tty_read"))
1da177e4
LT		 1061 return -EIO;
1062 if (!tty || (test_bit(TTY_IO_ERROR, &tty->flags)))
1063 return -EIO;
1064
1065 /* We want to wait for the line discipline to sort out in this
1066 situation */
1067 ld = tty_ldisc_ref_wait(tty);
a352def2
AC		 1068 if (ld->ops->read)
1069 i = (ld->ops->read)(tty, file, buf, count);
1da177e4
LT		 1070 else
1071 i = -EIO;
1072 tty_ldisc_deref(ld);
b0de59b5 1073
37b7f3c7
JS		 1074 if (i > 0)
1075 tty_update_time(&inode->i_atime);
1076
1da177e4
LT		 1077 return i;
1078}
1079
136d5258 1080static void tty_write_unlock(struct tty_struct *tty)
9c1729db
AC		 1081{
1082 mutex_unlock(&tty->atomic_write_lock);
4b19449d 1083 wake_up_interruptible_poll(&tty->write_wait, POLLOUT);
9c1729db
AC		 1084}
1085
136d5258 1086static int tty_write_lock(struct tty_struct *tty, int ndelay)
9c1729db
AC		 1087{
1088 if (!mutex_trylock(&tty->atomic_write_lock)) {
1089 if (ndelay)
1090 return -EAGAIN;
1091 if (mutex_lock_interruptible(&tty->atomic_write_lock))
1092 return -ERESTARTSYS;
1093 }
1094 return 0;
1095}
1096
1da177e4
LT		 1097/*
1098 * Split writes up in sane blocksizes to avoid
1099 * denial-of-service type attacks
1100 */
1101static inline ssize_t do_tty_write(
1102 ssize_t (*write)(struct tty_struct *, struct file *, const unsigned char *, size_t),
1103 struct tty_struct *tty,
1104 struct file *file,
1105 const char __user *buf,
1106 size_t count)
1107{
9c1729db 1108 ssize_t ret, written = 0;
1da177e4 1109 unsigned int chunk;
37bdfb07 1110
9c1729db
AC		 1111 ret = tty_write_lock(tty, file->f_flags & O_NDELAY);
1112 if (ret < 0)
1113 return ret;
1da177e4
LT		 1114
1115 /*
1116 * We chunk up writes into a temporary buffer. This
1117 * simplifies low-level drivers immensely, since they
1118 * don't have locking issues and user mode accesses.
1119 *
1120 * But if TTY_NO_WRITE_SPLIT is set, we should use a
1121 * big chunk-size..
1122 *
1123 * The default chunk-size is 2kB, because the NTTY
1124 * layer has problems with bigger chunks. It will
1125 * claim to be able to handle more characters than
1126 * it actually does.
af9b897e
AC		 1127 *
1128 * FIXME: This can probably go away now except that 64K chunks
1129 * are too likely to fail unless switched to vmalloc...
1da177e4
LT		 1130 */
1131 chunk = 2048;
1132 if (test_bit(TTY_NO_WRITE_SPLIT, &tty->flags))
1133 chunk = 65536;
1134 if (count < chunk)
1135 chunk = count;
1136
70522e12 1137 /* write_buf/write_cnt is protected by the atomic_write_lock mutex */
1da177e4 1138 if (tty->write_cnt < chunk) {
402fda92 1139 unsigned char *buf_chunk;
1da177e4
LT		 1140
1141 if (chunk < 1024)
1142 chunk = 1024;
1143
402fda92
JW		 1144 buf_chunk = kmalloc(chunk, GFP_KERNEL);
1145 if (!buf_chunk) {
9c1729db
AC		 1146 ret = -ENOMEM;
1147 goto out;
1da177e4
LT		 1148 }
1149 kfree(tty->write_buf);
1150 tty->write_cnt = chunk;
402fda92 1151 tty->write_buf = buf_chunk;
1da177e4
LT		 1152 }
1153
1154 /* Do the write .. */
1155 for (;;) {
1156 size_t size = count;
1157 if (size > chunk)
1158 size = chunk;
1159 ret = -EFAULT;
1160 if (copy_from_user(tty->write_buf, buf, size))
1161 break;
1da177e4 1162 ret = write(tty, file, tty->write_buf, size);
1da177e4
LT		 1163 if (ret <= 0)
1164 break;
1165 written += ret;
1166 buf += ret;
1167 count -= ret;
1168 if (!count)
1169 break;
1170 ret = -ERESTARTSYS;
1171 if (signal_pending(current))
1172 break;
1173 cond_resched();
1174 }
37b7f3c7
JS		 1175 if (written) {
1176 tty_update_time(&file_inode(file)->i_mtime);
1da177e4 1177 ret = written;
37b7f3c7 1178 }
9c1729db
AC		 1179out:
1180 tty_write_unlock(tty);
1da177e4
LT		 1181 return ret;
1182}
1183
95f9bfc6
AC		 1184/**
1185 * tty_write_message - write a message to a certain tty, not just the console.
1186 * @tty: the destination tty_struct
1187 * @msg: the message to write
1188 *
1189 * This is used for messages that need to be redirected to a specific tty.
1190 * We don't put it into the syslog queue right now maybe in the future if
1191 * really needed.
1192 *
ec79d605 1193 * We must still hold the BTM and test the CLOSING flag for the moment.
95f9bfc6
AC		 1194 */
1195
1196void tty_write_message(struct tty_struct *tty, char *msg)
1197{
95f9bfc6
AC		 1198 if (tty) {
1199 mutex_lock(&tty->atomic_write_lock);
89c8d91e 1200 tty_lock(tty);
04980706 1201 if (tty->ops->write && tty->count > 0) {
89c8d91e 1202 tty_unlock(tty);
95f9bfc6 1203 tty->ops->write(tty, msg, strlen(msg));
eeb89d91 1204 } else
89c8d91e 1205 tty_unlock(tty);
95f9bfc6
AC		 1206 tty_write_unlock(tty);
1207 }
95f9bfc6
AC		 1208 return;
1209}
1210
1da177e4 1211
af9b897e
AC		 1212/**
1213 * tty_write - write method for tty device file
1214 * @file: tty file pointer
1215 * @buf: user data to write
1216 * @count: bytes to write
1217 * @ppos: unused
1218 *
1219 * Write data to a tty device via the line discipline.
1220 *
1221 * Locking:
1222 * Locks the line discipline as required
1223 * Writes to the tty driver are serialized by the atomic_write_lock
1224 * and are then processed in chunks to the device. The line discipline
a88a69c9 1225 * write method will not be invoked in parallel for each device.
af9b897e
AC		 1226 */
1227
37bdfb07
AC		 1228static ssize_t tty_write(struct file *file, const char __user *buf,
1229 size_t count, loff_t *ppos)
1da177e4 1230{
d996b62a
NP		 1231 struct tty_struct *tty = file_tty(file);
1232 struct tty_ldisc *ld;
1da177e4 1233 ssize_t ret;
37bdfb07 1234
6131ffaa 1235 if (tty_paranoia_check(tty, file_inode(file), "tty_write"))
1da177e4 1236 return -EIO;
f34d7a5b 1237 if (!tty || !tty->ops->write ||
37bdfb07
AC		 1238 (test_bit(TTY_IO_ERROR, &tty->flags)))
1239 return -EIO;
f34d7a5b
AC		 1240 /* Short term debug to catch buggy drivers */
1241 if (tty->ops->write_room == NULL)
1242 printk(KERN_ERR "tty driver %s lacks a write_room method.\n",
1243 tty->driver->name);
37bdfb07 1244 ld = tty_ldisc_ref_wait(tty);
a352def2 1245 if (!ld->ops->write)
1da177e4
LT		 1246 ret = -EIO;
1247 else
a352def2 1248 ret = do_tty_write(ld->ops->write, tty, file, buf, count);
1da177e4
LT		 1249 tty_ldisc_deref(ld);
1250 return ret;
1251}
1252
37bdfb07
AC		 1253ssize_t redirected_tty_write(struct file *file, const char __user *buf,
1254 size_t count, loff_t *ppos)
1da177e4
LT		 1255{
1256 struct file *p = NULL;
1257
1258 spin_lock(&redirect_lock);
cb0942b8
AV		 1259 if (redirect)
1260 p = get_file(redirect);
1da177e4
LT		 1261 spin_unlock(&redirect_lock);
1262
1263 if (p) {
1264 ssize_t res;
1265 res = vfs_write(p, buf, count, &p->f_pos);
1266 fput(p);
1267 return res;
1268 }
1da177e4
LT		 1269 return tty_write(file, buf, count, ppos);
1270}
1271
136d5258
PH		 1272/**
1273 * tty_send_xchar - send priority character
1274 *
1275 * Send a high priority character to the tty even if stopped
1276 *
1277 * Locking: none for xchar method, write ordering for write method.
1278 */
1279
1280int tty_send_xchar(struct tty_struct *tty, char ch)
1281{
1282 int was_stopped = tty->stopped;
1283
1284 if (tty->ops->send_xchar) {
1285 tty->ops->send_xchar(tty, ch);
1286 return 0;
1287 }
1288
1289 if (tty_write_lock(tty, 0) < 0)
1290 return -ERESTARTSYS;
1291
1292 if (was_stopped)
1293 start_tty(tty);
1294 tty->ops->write(tty, &ch, 1);
1295 if (was_stopped)
1296 stop_tty(tty);
1297 tty_write_unlock(tty);
1298 return 0;
1299}
1300
1da177e4
LT		 1301static char ptychar[] = "pqrstuvwxyzabcde";
1302
af9b897e
AC		 1303/**
1304 * pty_line_name - generate name for a pty
1305 * @driver: the tty driver in use
1306 * @index: the minor number
1307 * @p: output buffer of at least 6 bytes
1308 *
1309 * Generate a name from a driver reference and write it to the output
1310 * buffer.
1311 *
1312 * Locking: None
1313 */
1314static void pty_line_name(struct tty_driver *driver, int index, char *p)
1da177e4
LT		 1315{
1316 int i = index + driver->name_base;
1317 /* ->name is initialized to "ttyp", but "tty" is expected */
1318 sprintf(p, "%s%c%x",
37bdfb07
AC		 1319 driver->subtype == PTY_TYPE_SLAVE ? "tty" : driver->name,
1320 ptychar[i >> 4 & 0xf], i & 0xf);
1da177e4
LT		 1321}
1322
af9b897e 1323/**
8b0a88d5 1324 * tty_line_name - generate name for a tty
af9b897e
AC		 1325 * @driver: the tty driver in use
1326 * @index: the minor number
1327 * @p: output buffer of at least 7 bytes
1328 *
1329 * Generate a name from a driver reference and write it to the output
5c0a2450 1330 * buffer.
af9b897e
AC		 1331 *
1332 * Locking: None
1333 */
723abd87 1334static ssize_t tty_line_name(struct tty_driver *driver, int index, char *p)
1da177e4 1335{
0019b408 1336 if (driver->flags & TTY_DRIVER_UNNUMBERED_NODE)
723abd87 1337 return sprintf(p, "%s", driver->name);
0019b408 1338 else
723abd87
HR		 1339 return sprintf(p, "%s%d", driver->name,
1340 index + driver->name_base);
1da177e4
LT		 1341}
1342
99f1fe18
AC		 1343/**
1344 * tty_driver_lookup_tty() - find an existing tty, if any
1345 * @driver: the driver for the tty
1346 * @idx: the minor number
23499705 1347 *
aa3cb814
PH		 1348 * Return the tty, if found. If not found, return NULL or ERR_PTR() if the
1349 * driver lookup() method returns an error.
23499705 1350 *
aa3cb814 1351 * Locking: tty_mutex must be held. If the tty is found, bump the tty kref.
23499705 1352 */
a47d545f 1353static struct tty_struct *tty_driver_lookup_tty(struct tty_driver *driver,
15f1a633 1354 struct inode *inode, int idx)
23499705 1355{
aa3cb814
PH		 1356 struct tty_struct *tty;
1357
99f1fe18 1358 if (driver->ops->lookup)
aa3cb814
PH		 1359 tty = driver->ops->lookup(driver, inode, idx);
1360 else
1361 tty = driver->ttys[idx];
23499705 1362
aa3cb814
PH		 1363 if (!IS_ERR(tty))
1364 tty_kref_get(tty);
1365 return tty;
23499705
SB		 1366}
1367
bf970ee4
AC		 1368/**
1369 * tty_init_termios - helper for termios setup
1370 * @tty: the tty to set up
1371 *
1372 * Initialise the termios structures for this tty. Thus runs under
1373 * the tty_mutex currently so we can be relaxed about ordering.
1374 */
1375
1376int tty_init_termios(struct tty_struct *tty)
1377{
fe6e29fd 1378 struct ktermios *tp;
bf970ee4
AC		 1379 int idx = tty->index;
1380
36b3c070
AC		 1381 if (tty->driver->flags & TTY_DRIVER_RESET_TERMIOS)
1382 tty->termios = tty->driver->init_termios;
1383 else {
1384 /* Check for lazy saved data */
1385 tp = tty->driver->termios[idx];
1386 if (tp != NULL)
1387 tty->termios = *tp;
1388 else
1389 tty->termios = tty->driver->init_termios;
bf970ee4 1390 }
bf970ee4 1391 /* Compatibility until drivers always set this */
adc8d746
AC		 1392 tty->termios.c_ispeed = tty_termios_input_baud_rate(&tty->termios);
1393 tty->termios.c_ospeed = tty_termios_baud_rate(&tty->termios);
bf970ee4
AC		 1394 return 0;
1395}
fe1ae7fd 1396EXPORT_SYMBOL_GPL(tty_init_termios);
bf970ee4 1397
66d450e8
JS		 1398int tty_standard_install(struct tty_driver *driver, struct tty_struct *tty)
1399{
1400 int ret = tty_init_termios(tty);
1401 if (ret)
1402 return ret;
1403
1404 tty_driver_kref_get(driver);
1405 tty->count++;
1406 driver->ttys[tty->index] = tty;
1407 return 0;
1408}
1409EXPORT_SYMBOL_GPL(tty_standard_install);
1410
99f1fe18 1411/**
8b0a88d5
AC		 1412 * tty_driver_install_tty() - install a tty entry in the driver
1413 * @driver: the driver for the tty
1414 * @tty: the tty
1415 *
1416 * Install a tty object into the driver tables. The tty->index field
bf970ee4
AC		 1417 * will be set by the time this is called. This method is responsible
1418 * for ensuring any need additional structures are allocated and
1419 * configured.
8b0a88d5
AC		 1420 *
1421 * Locking: tty_mutex for now
1422 */
1423static int tty_driver_install_tty(struct tty_driver *driver,
1424 struct tty_struct *tty)
1425{
66d450e8
JS		 1426 return driver->ops->install ? driver->ops->install(driver, tty) :
1427 tty_standard_install(driver, tty);
8b0a88d5
AC		 1428}
1429
1430/**
1431 * tty_driver_remove_tty() - remove a tty from the driver tables
1432 * @driver: the driver for the tty
1433 * @idx: the minor number
1434 *
1435 * Remvoe a tty object from the driver tables. The tty->index field
1436 * will be set by the time this is called.
1437 *
1438 * Locking: tty_mutex for now
1439 */
24d406a6 1440void tty_driver_remove_tty(struct tty_driver *driver, struct tty_struct *tty)
8b0a88d5
AC		 1441{
1442 if (driver->ops->remove)
1443 driver->ops->remove(driver, tty);
1444 else
1445 driver->ttys[tty->index] = NULL;
1446}
1447
1448/*
1449 * tty_reopen() - fast re-open of an open tty
1450 * @tty - the tty to open
23499705 1451 *
99f1fe18 1452 * Return 0 on success, -errno on error.
5d93e748 1453 * Re-opens on master ptys are not allowed and return -EIO.
23499705 1454 *
5d93e748 1455 * Locking: Caller must hold tty_lock
23499705 1456 */
99f1fe18 1457static int tty_reopen(struct tty_struct *tty)
23499705
SB		 1458{
1459 struct tty_driver *driver = tty->driver;
1460
216030ec 1461 if (!tty->count)
23499705
SB		 1462 return -EIO;
1463
1464 if (driver->type == TTY_DRIVER_TYPE_PTY &&
5d93e748
PH		 1465 driver->subtype == PTY_TYPE_MASTER)
1466 return -EIO;
23499705 1467
23499705 1468 tty->count++;
23499705 1469
36697529 1470 WARN_ON(!tty->ldisc);
23499705
SB		 1471
1472 return 0;
1473}
1474
af9b897e 1475/**
d81ed103 1476 * tty_init_dev - initialise a tty device
af9b897e
AC		 1477 * @driver: tty driver we are opening a device on
1478 * @idx: device index
15582d36 1479 * @ret_tty: returned tty structure
af9b897e
AC		 1480 *
1481 * Prepare a tty device. This may not be a "new" clean device but
1482 * could also be an active device. The pty drivers require special
1483 * handling because of this.
1484 *
1485 * Locking:
1486 * The function is called under the tty_mutex, which
1487 * protects us from the tty struct or driver itself going away.
1488 *
1489 * On exit the tty device has the line discipline attached and
1490 * a reference count of 1. If a pair was created for pty/tty use
1491 * and the other was a pty master then it too has a reference count of 1.
1492 *
1da177e4 1493 * WSH 06/09/97: Rewritten to remove races and properly clean up after a
70522e12
IM		 1494 * failed open. The new code protects the open with a mutex, so it's
1495 * really quite straightforward. The mutex locking can probably be
1da177e4
LT		 1496 * relaxed for the (most common) case of reopening a tty.
1497 */
af9b897e 1498
593a27c4 1499struct tty_struct *tty_init_dev(struct tty_driver *driver, int idx)
1da177e4 1500{
bf970ee4 1501 struct tty_struct *tty;
73ec06fc 1502 int retval;
1da177e4 1503
1da177e4
LT		 1504 /*
1505 * First time open is complex, especially for PTY devices.
1506 * This code guarantees that either everything succeeds and the
1507 * TTY is ready for operation, or else the table slots are vacated
37bdfb07 1508 * and the allocated memory released. (Except that the termios
1da177e4
LT		 1509 * and locked termios may be retained.)
1510 */
1511
73ec06fc
AC		 1512 if (!try_module_get(driver->owner))
1513 return ERR_PTR(-ENODEV);
1da177e4 1514
2c964a2f 1515 tty = alloc_tty_struct(driver, idx);
d5543503
JS		 1516 if (!tty) {
1517 retval = -ENOMEM;
1518 goto err_module_put;
1519 }
1da177e4 1520
89c8d91e 1521 tty_lock(tty);
73ec06fc 1522 retval = tty_driver_install_tty(driver, tty);
d5543503 1523 if (retval < 0)
a9dccddb 1524 goto err_deinit_tty;
8b0a88d5 1525
04831dc1
JS		 1526 if (!tty->port)
1527 tty->port = driver->ports[idx];
1528
5d4121c0
JS		 1529 WARN_RATELIMIT(!tty->port,
1530 "%s: %s driver does not set tty->port. This will crash the kernel later. Fix the driver!\n",
1531 __func__, tty->driver->name);
1532
967fab69
JS		 1533 tty->port->itty = tty;
1534
37bdfb07 1535 /*
1da177e4 1536 * Structures all installed ... call the ldisc open routines.
d5698c28
CH		 1537 * If we fail here just call release_tty to clean up. No need
1538 * to decrement the use counts, as release_tty doesn't care.
1da177e4 1539 */
bf970ee4 1540 retval = tty_ldisc_setup(tty, tty->link);
01e1abb2 1541 if (retval)
d5543503 1542 goto err_release_tty;
89c8d91e 1543 /* Return the tty locked so that it cannot vanish under the caller */
73ec06fc 1544 return tty;
1da177e4 1545
a9dccddb 1546err_deinit_tty:
89c8d91e 1547 tty_unlock(tty);
a9dccddb 1548 deinitialize_tty_struct(tty);
d5543503
JS		 1549 free_tty_struct(tty);
1550err_module_put:
1da177e4 1551 module_put(driver->owner);
d5543503 1552 return ERR_PTR(retval);
1da177e4 1553
d5698c28 1554 /* call the tty release_tty routine to clean out this slot */
d5543503 1555err_release_tty:
89c8d91e 1556 tty_unlock(tty);
5a3c6b25 1557 printk_ratelimited(KERN_INFO "tty_init_dev: ldisc open failed, "
4050914f 1558 "clearing slot %d\n", idx);
d5698c28 1559 release_tty(tty, idx);
73ec06fc 1560 return ERR_PTR(retval);
1da177e4
LT		 1561}
1562
feebed65
AC		 1563void tty_free_termios(struct tty_struct *tty)
1564{
1565 struct ktermios *tp;
1566 int idx = tty->index;
36b3c070
AC		 1567
1568 /* If the port is going to reset then it has no termios to save */
1569 if (tty->driver->flags & TTY_DRIVER_RESET_TERMIOS)
1570 return;
1571
1572 /* Stash the termios data */
1573 tp = tty->driver->termios[idx];
1574 if (tp == NULL) {
1575 tp = kmalloc(sizeof(struct ktermios), GFP_KERNEL);
1576 if (tp == NULL) {
1577 pr_warn("tty: no memory to save termios state.\n");
1578 return;
1579 }
4ac5d705 1580 tty->driver->termios[idx] = tp;
feebed65 1581 }
36b3c070 1582 *tp = tty->termios;
feebed65
AC		 1583}
1584EXPORT_SYMBOL(tty_free_termios);
1585
a2965b7b 1586/**
949aa64f
PH		 1587 * tty_flush_works - flush all works of a tty/pty pair
1588 * @tty: tty device to flush works for (or either end of a pty pair)
a2965b7b 1589 *
949aa64f 1590 * Sync flush all works belonging to @tty (and the 'other' tty).
a2965b7b
PH		 1591 */
1592static void tty_flush_works(struct tty_struct *tty)
1593{
1594 flush_work(&tty->SAK_work);
1595 flush_work(&tty->hangup_work);
949aa64f
PH		 1596 if (tty->link) {
1597 flush_work(&tty->link->SAK_work);
1598 flush_work(&tty->link->hangup_work);
1599 }
a2965b7b 1600}
feebed65 1601
af9b897e 1602/**
d5698c28 1603 * release_one_tty - release tty structure memory
9c9f4ded 1604 * @kref: kref of tty we are obliterating
af9b897e
AC		 1605 *
1606 * Releases memory associated with a tty structure, and clears out the
1607 * driver table slots. This function is called when a device is no longer
1608 * in use. It also gets called when setup of a device fails.
1609 *
1610 * Locking:
af9b897e
AC		 1611 * takes the file list lock internally when working on the list
1612 * of ttys that the driver keeps.
b50989dc
AC		 1613 *
1614 * This method gets called from a work queue so that the driver private
f278a2f7 1615 * cleanup ops can sleep (needed for USB at least)
1da177e4 1616 */
b50989dc 1617static void release_one_tty(struct work_struct *work)
1da177e4 1618{
b50989dc
AC		 1619 struct tty_struct *tty =
1620 container_of(work, struct tty_struct, hangup_work);
6f967f78 1621 struct tty_driver *driver = tty->driver;
b216df53 1622 struct module *owner = driver->owner;
d5698c28 1623
f278a2f7
DY		 1624 if (tty->ops->cleanup)
1625 tty->ops->cleanup(tty);
1626
1da177e4 1627 tty->magic = 0;
7d7b93c1 1628 tty_driver_kref_put(driver);
b216df53 1629 module_put(owner);
d5698c28 1630
ee2ffa0d 1631 spin_lock(&tty_files_lock);
1da177e4 1632 list_del_init(&tty->tty_files);
ee2ffa0d 1633 spin_unlock(&tty_files_lock);
d5698c28 1634
6da8d866
ON		 1635 put_pid(tty->pgrp);
1636 put_pid(tty->session);
1da177e4
LT		 1637 free_tty_struct(tty);
1638}
1639
b50989dc
AC		 1640static void queue_release_one_tty(struct kref *kref)
1641{
1642 struct tty_struct *tty = container_of(kref, struct tty_struct, kref);
f278a2f7 1643
b50989dc
AC		 1644 /* The hangup queue is now free so we can reuse it rather than
1645 waste a chunk of memory for each port */
1646 INIT_WORK(&tty->hangup_work, release_one_tty);
1647 schedule_work(&tty->hangup_work);
1648}
1649
9c9f4ded
AC		 1650/**
1651 * tty_kref_put - release a tty kref
1652 * @tty: tty device
1653 *
1654 * Release a reference to a tty device and if need be let the kref
1655 * layer destruct the object for us
1656 */
1657
1658void tty_kref_put(struct tty_struct *tty)
1659{
1660 if (tty)
b50989dc 1661 kref_put(&tty->kref, queue_release_one_tty);
9c9f4ded
AC		 1662}
1663EXPORT_SYMBOL(tty_kref_put);
1664
d5698c28
CH		 1665/**
1666 * release_tty - release tty structure memory
1667 *
1668 * Release both @tty and a possible linked partner (think pty pair),
1669 * and decrement the refcount of the backing module.
1670 *
1671 * Locking:
d155255a 1672 * tty_mutex
d5698c28
CH		 1673 * takes the file list lock internally when working on the list
1674 * of ttys that the driver keeps.
9c9f4ded 1675 *
d5698c28
CH		 1676 */
1677static void release_tty(struct tty_struct *tty, int idx)
1678{
9c9f4ded
AC		 1679 /* This should always be true but check for the moment */
1680 WARN_ON(tty->index != idx);
d155255a 1681 WARN_ON(!mutex_is_locked(&tty_mutex));
36b3c070
AC		 1682 if (tty->ops->shutdown)
1683 tty->ops->shutdown(tty);
1684 tty_free_termios(tty);
1685 tty_driver_remove_tty(tty->driver, tty);
967fab69 1686 tty->port->itty = NULL;
64e377dc
PH		 1687 if (tty->link)
1688 tty->link->port->itty = NULL;
4f98d467 1689 cancel_work_sync(&tty->port->buf.work);
36b3c070 1690
d5698c28 1691 if (tty->link)
9c9f4ded
AC		 1692 tty_kref_put(tty->link);
1693 tty_kref_put(tty);
d5698c28
CH		 1694}
1695
955787ca
JS		 1696/**
1697 * tty_release_checks - check a tty before real release
1698 * @tty: tty to check
1699 * @o_tty: link of @tty (if any)
1700 * @idx: index of the tty
1701 *
1702 * Performs some paranoid checking before true release of the @tty.
1703 * This is a no-op unless TTY_PARANOIA_CHECK is defined.
1704 */
1705static int tty_release_checks(struct tty_struct *tty, struct tty_struct *o_tty,
1706 int idx)
1707{
1708#ifdef TTY_PARANOIA_CHECK
1709 if (idx < 0 || idx >= tty->driver->num) {
9de44bd6
JS		 1710 printk(KERN_DEBUG "%s: bad idx when trying to free (%s)\n",
1711 __func__, tty->name);
955787ca
JS		 1712 return -1;
1713 }
1714
1715 /* not much to check for devpts */
1716 if (tty->driver->flags & TTY_DRIVER_DEVPTS_MEM)
1717 return 0;
1718
1719 if (tty != tty->driver->ttys[idx]) {
9de44bd6
JS		 1720 printk(KERN_DEBUG "%s: driver.table[%d] not tty for (%s)\n",
1721 __func__, idx, tty->name);
955787ca
JS		 1722 return -1;
1723 }
955787ca
JS		 1724 if (tty->driver->other) {
1725 if (o_tty != tty->driver->other->ttys[idx]) {
9de44bd6
JS		 1726 printk(KERN_DEBUG "%s: other->table[%d] not o_tty for (%s)\n",
1727 __func__, idx, tty->name);
955787ca
JS		 1728 return -1;
1729 }
955787ca 1730 if (o_tty->link != tty) {
9de44bd6 1731 printk(KERN_DEBUG "%s: bad pty pointers\n", __func__);
955787ca
JS		 1732 return -1;
1733 }
1734 }
1735#endif
1736 return 0;
1737}
1738
eeb89d91
AC		 1739/**
1740 * tty_release - vfs callback for close
1741 * @inode: inode of tty
1742 * @filp: file pointer for handle to tty
1743 *
1744 * Called the last time each file handle is closed that references
1745 * this tty. There may however be several such references.
1746 *
1747 * Locking:
1748 * Takes bkl. See tty_release_dev
1749 *
1da177e4
LT		 1750 * Even releasing the tty structures is a tricky business.. We have
1751 * to be very careful that the structures are all released at the
1752 * same time, as interrupts might otherwise get the wrong pointers.
1753 *
1754 * WSH 09/09/97: rewritten to avoid some nasty race conditions that could
1755 * lead to double frees or releasing memory still in use.
1756 */
eeb89d91
AC		 1757
1758int tty_release(struct inode *inode, struct file *filp)
1da177e4 1759{
d996b62a
NP		 1760 struct tty_struct *tty = file_tty(filp);
1761 struct tty_struct *o_tty;
324c1650 1762 int pty_master, do_sleep, final;
1da177e4
LT		 1763 int idx;
1764 char buf[64];
37bdfb07 1765
9de44bd6 1766 if (tty_paranoia_check(tty, inode, __func__))
eeb89d91 1767 return 0;
1da177e4 1768
89c8d91e 1769 tty_lock(tty);
9de44bd6 1770 check_tty_count(tty, __func__);
1da177e4 1771
ec79d605 1772 __tty_fasync(-1, filp, 0);
1da177e4
LT		 1773
1774 idx = tty->index;
1775 pty_master = (tty->driver->type == TTY_DRIVER_TYPE_PTY &&
1776 tty->driver->subtype == PTY_TYPE_MASTER);
89c8d91e 1777 /* Review: parallel close */
1da177e4
LT		 1778 o_tty = tty->link;
1779
955787ca 1780 if (tty_release_checks(tty, o_tty, idx)) {
89c8d91e 1781 tty_unlock(tty);
eeb89d91 1782 return 0;
1da177e4 1783 }
1da177e4
LT		 1784
1785#ifdef TTY_DEBUG_HANGUP
9de44bd6
JS		 1786 printk(KERN_DEBUG "%s: %s (tty count=%d)...\n", __func__,
1787 tty_name(tty, buf), tty->count);
1da177e4
LT		 1788#endif
1789
f34d7a5b
AC		 1790 if (tty->ops->close)
1791 tty->ops->close(tty, filp);
1da177e4 1792
89c8d91e 1793 tty_unlock(tty);
1da177e4
LT		 1794 /*
1795 * Sanity check: if tty->count is going to zero, there shouldn't be
1796 * any waiters on tty->read_wait or tty->write_wait. We test the
1797 * wait queues and kick everyone out _before_ actually starting to
1798 * close. This ensures that we won't block while releasing the tty
1799 * structure.
1800 *
1801 * The test for the o_tty closing is necessary, since the master and
1802 * slave sides may close in any order. If the slave side closes out
1803 * first, its count will be one, since the master side holds an open.
324c1650 1804 * Thus this test wouldn't be triggered at the time the slave closed,
1da177e4 1805 * so we do it now.
1da177e4 1806 */
d5e370a4
PH		 1807 tty_lock_pair(tty, o_tty);
1808
1da177e4 1809 while (1) {
1da177e4
LT		 1810 do_sleep = 0;
1811
324c1650 1812 if (tty->count <= 1) {
1da177e4 1813 if (waitqueue_active(&tty->read_wait)) {
4b19449d 1814 wake_up_poll(&tty->read_wait, POLLIN);
1da177e4
LT		 1815 do_sleep++;
1816 }
1817 if (waitqueue_active(&tty->write_wait)) {
4b19449d 1818 wake_up_poll(&tty->write_wait, POLLOUT);
1da177e4
LT		 1819 do_sleep++;
1820 }
1821 }
324c1650 1822 if (pty_master && o_tty->count <= 1) {
1da177e4 1823 if (waitqueue_active(&o_tty->read_wait)) {
4b19449d 1824 wake_up_poll(&o_tty->read_wait, POLLIN);
1da177e4
LT		 1825 do_sleep++;
1826 }
1827 if (waitqueue_active(&o_tty->write_wait)) {
4b19449d 1828 wake_up_poll(&o_tty->write_wait, POLLOUT);
1da177e4
LT		 1829 do_sleep++;
1830 }
1831 }
1832 if (!do_sleep)
1833 break;
1834
9de44bd6
JS		 1835 printk(KERN_WARNING "%s: %s: read/write wait queue active!\n",
1836 __func__, tty_name(tty, buf));
1da177e4 1837 schedule();
37bdfb07 1838 }
1da177e4 1839
1da177e4
LT		 1840 if (pty_master) {
1841 if (--o_tty->count < 0) {
9de44bd6
JS		 1842 printk(KERN_WARNING "%s: bad pty slave count (%d) for %s\n",
1843 __func__, o_tty->count, tty_name(o_tty, buf));
1da177e4
LT		 1844 o_tty->count = 0;
1845 }
1846 }
1847 if (--tty->count < 0) {
9de44bd6
JS		 1848 printk(KERN_WARNING "%s: bad tty->count (%d) for %s\n",
1849 __func__, tty->count, tty_name(tty, buf));
1da177e4
LT		 1850 tty->count = 0;
1851 }
37bdfb07 1852
1da177e4
LT		 1853 /*
1854 * We've decremented tty->count, so we need to remove this file
1855 * descriptor off the tty->tty_files list; this serves two
1856 * purposes:
1857 * - check_tty_count sees the correct number of file descriptors
1858 * associated with this tty.
1859 * - do_tty_hangup no longer sees this file descriptor as
1860 * something that needs to be handled for hangups.
1861 */
d996b62a 1862 tty_del_file(filp);
1da177e4
LT		 1863
1864 /*
1865 * Perform some housekeeping before deciding whether to return.
1866 *
1da177e4
LT		 1867 * If _either_ side is closing, make sure there aren't any
1868 * processes that still think tty or o_tty is their controlling
1869 * tty.
1870 */
324c1650 1871 if (!tty->count) {
1da177e4 1872 read_lock(&tasklist_lock);
24ec839c 1873 session_clear_tty(tty->session);
324c1650 1874 if (pty_master)
24ec839c 1875 session_clear_tty(o_tty->session);
1da177e4
LT		 1876 read_unlock(&tasklist_lock);
1877 }
1878
324c1650
PH		 1879 /* check whether both sides are closing ... */
1880 final = !tty->count && !(pty_master && o_tty->count);
1881
89c8d91e 1882 tty_unlock_pair(tty, o_tty);
04980706 1883 /* At this point, the tty->count == 0 should ensure a dead tty
d155255a 1884 cannot be re-opened by a racing opener */
da965822 1885
324c1650 1886 if (!final)
eeb89d91 1887 return 0;
37bdfb07 1888
1da177e4 1889#ifdef TTY_DEBUG_HANGUP
96433d10 1890 printk(KERN_DEBUG "%s: %s: final close\n", __func__, tty_name(tty, buf));
1da177e4
LT		 1891#endif
1892 /*
01e1abb2 1893 * Ask the line discipline code to release its structures
1da177e4 1894 */
01e1abb2 1895 tty_ldisc_release(tty, o_tty);
a2965b7b
PH		 1896
1897 /* Wait for pending work before tty destruction commmences */
1898 tty_flush_works(tty);
a2965b7b 1899
96433d10
PH		 1900#ifdef TTY_DEBUG_HANGUP
1901 printk(KERN_DEBUG "%s: %s: freeing structure...\n", __func__, tty_name(tty, buf));
1902#endif
1da177e4 1903 /*
d5698c28 1904 * The release_tty function takes care of the details of clearing
89c8d91e
AC		 1905 * the slots and preserving the termios structure. The tty_unlock_pair
1906 * should be safe as we keep a kref while the tty is locked (so the
1907 * unlock never unlocks a freed tty).
1da177e4 1908 */
d155255a 1909 mutex_lock(&tty_mutex);
d5698c28 1910 release_tty(tty, idx);
d155255a 1911 mutex_unlock(&tty_mutex);
1da177e4 1912
eeb89d91 1913 return 0;
1da177e4
LT		 1914}
1915
b82154ac 1916/**
52494eeb 1917 * tty_open_current_tty - get locked tty of current task
b82154ac
JS		 1918 * @device: device number
1919 * @filp: file pointer to tty
52494eeb
PH		 1920 * @return: locked tty of the current task iff @device is /dev/tty
1921 *
1922 * Performs a re-open of the current task's controlling tty.
b82154ac
JS		 1923 *
1924 * We cannot return driver and index like for the other nodes because
1925 * devpts will not work then. It expects inodes to be from devpts FS.
1926 */
1927static struct tty_struct *tty_open_current_tty(dev_t device, struct file *filp)
1928{
1929 struct tty_struct *tty;
52494eeb 1930 int retval;
b82154ac
JS		 1931
1932 if (device != MKDEV(TTYAUX_MAJOR, 0))
1933 return NULL;
1934
1935 tty = get_current_tty();
1936 if (!tty)
1937 return ERR_PTR(-ENXIO);
1938
1939 filp->f_flags |= O_NONBLOCK; /* Don't let /dev/tty block */
1940 /* noctty = 1; */
52494eeb
PH		 1941 tty_lock(tty);
1942 tty_kref_put(tty); /* safe to drop the kref now */
1943
1944 retval = tty_reopen(tty);
1945 if (retval < 0) {
1946 tty_unlock(tty);
1947 tty = ERR_PTR(retval);
1948 }
b82154ac
JS		 1949 return tty;
1950}
1951
5b5e7040
JS		 1952/**
1953 * tty_lookup_driver - lookup a tty driver for a given device file
1954 * @device: device number
1955 * @filp: file pointer to tty
1956 * @noctty: set if the device should not become a controlling tty
1957 * @index: index for the device in the @return driver
1958 * @return: driver for this inode (with increased refcount)
1959 *
1960 * If @return is not erroneous, the caller is responsible to decrement the
1961 * refcount by tty_driver_kref_put.
1962 *
1963 * Locking: tty_mutex protects get_tty_driver
1964 */
1965static struct tty_driver *tty_lookup_driver(dev_t device, struct file *filp,
1966 int *noctty, int *index)
1967{
1968 struct tty_driver *driver;
1969
2cd0050c 1970 switch (device) {
5b5e7040 1971#ifdef CONFIG_VT
2cd0050c 1972 case MKDEV(TTY_MAJOR, 0): {
5b5e7040
JS		 1973 extern struct tty_driver *console_driver;
1974 driver = tty_driver_kref_get(console_driver);
1975 *index = fg_console;
1976 *noctty = 1;
2cd0050c 1977 break;
5b5e7040
JS		 1978 }
1979#endif
2cd0050c 1980 case MKDEV(TTYAUX_MAJOR, 1): {
5b5e7040
JS		 1981 struct tty_driver *console_driver = console_device(index);
1982 if (console_driver) {
1983 driver = tty_driver_kref_get(console_driver);
1984 if (driver) {
1985 /* Don't let /dev/console block */
1986 filp->f_flags |= O_NONBLOCK;
1987 *noctty = 1;
2cd0050c 1988 break;
5b5e7040
JS		 1989 }
1990 }
1991 return ERR_PTR(-ENODEV);
1992 }
2cd0050c
JS		 1993 default:
1994 driver = get_tty_driver(device, index);
1995 if (!driver)
1996 return ERR_PTR(-ENODEV);
1997 break;
1998 }
5b5e7040
JS		 1999 return driver;
2000}
2001
af9b897e 2002/**
eeb89d91 2003 * tty_open - open a tty device
af9b897e
AC		 2004 * @inode: inode of device file
2005 * @filp: file pointer to tty
1da177e4 2006 *
af9b897e
AC		 2007 * tty_open and tty_release keep up the tty count that contains the
2008 * number of opens done on a tty. We cannot use the inode-count, as
2009 * different inodes might point to the same tty.
1da177e4 2010 *
af9b897e
AC		 2011 * Open-counting is needed for pty masters, as well as for keeping
2012 * track of serial lines: DTR is dropped when the last close happens.
2013 * (This is not done solely through tty->count, now. - Ted 1/27/92)
2014 *
2015 * The termios state of a pty is reset on first open so that
2016 * settings don't persist across reuse.
2017 *
5b5e7040 2018 * Locking: tty_mutex protects tty, tty_lookup_driver and tty_init_dev.
24ec839c
PZ		 2019 * tty->count should protect the rest.
2020 * ->siglock protects ->signal/->sighand
89c8d91e
AC		 2021 *
2022 * Note: the tty_unlock/lock cases without a ref are only safe due to
2023 * tty_mutex
1da177e4 2024 */
af9b897e 2025
eeb89d91 2026static int tty_open(struct inode *inode, struct file *filp)
1da177e4 2027{
b82154ac 2028 struct tty_struct *tty;
1da177e4 2029 int noctty, retval;
b82154ac 2030 struct tty_driver *driver = NULL;
1da177e4
LT		 2031 int index;
2032 dev_t device = inode->i_rdev;
846c151a 2033 unsigned saved_flags = filp->f_flags;
1da177e4
LT		 2034
2035 nonseekable_open(inode, filp);
37bdfb07 2036
1da177e4 2037retry_open:
fa90e1c9
JS		 2038 retval = tty_alloc_file(filp);
2039 if (retval)
2040 return -ENOMEM;
2041
1da177e4
LT		 2042 noctty = filp->f_flags & O_NOCTTY;
2043 index = -1;
2044 retval = 0;
37bdfb07 2045
b82154ac 2046 tty = tty_open_current_tty(device, filp);
52494eeb
PH		 2047 if (!tty) {
2048 mutex_lock(&tty_mutex);
5b5e7040
JS		 2049 driver = tty_lookup_driver(device, filp, &noctty, &index);
2050 if (IS_ERR(driver)) {
ba5db448
JS		 2051 retval = PTR_ERR(driver);
2052 goto err_unlock;
1da177e4 2053 }
1da177e4 2054
4a2b5fdd 2055 /* check whether we're reopening an existing tty */
15f1a633 2056 tty = tty_driver_lookup_tty(driver, inode, index);
808ffa3d 2057 if (IS_ERR(tty)) {
ba5db448
JS		 2058 retval = PTR_ERR(tty);
2059 goto err_unlock;
808ffa3d 2060 }
4a2b5fdd 2061
52494eeb 2062 if (tty) {
aa3cb814 2063 mutex_unlock(&tty_mutex);
52494eeb 2064 tty_lock(tty);
aa3cb814
PH		 2065 /* safe to drop the kref from tty_driver_lookup_tty() */
2066 tty_kref_put(tty);
52494eeb
PH		 2067 retval = tty_reopen(tty);
2068 if (retval < 0) {
2069 tty_unlock(tty);
2070 tty = ERR_PTR(retval);
2071 }
aa3cb814 2072 } else { /* Returns with the tty_lock held for now */
52494eeb 2073 tty = tty_init_dev(driver, index);
aa3cb814
PH		 2074 mutex_unlock(&tty_mutex);
2075 }
4a2b5fdd 2076
b82154ac 2077 tty_driver_kref_put(driver);
52494eeb
PH		 2078 }
2079
eeb89d91 2080 if (IS_ERR(tty)) {
ba5db448
JS		 2081 retval = PTR_ERR(tty);
2082 goto err_file;
eeb89d91 2083 }
1da177e4 2084
fa90e1c9 2085 tty_add_file(tty, filp);
d996b62a 2086
9de44bd6 2087 check_tty_count(tty, __func__);
1da177e4
LT		 2088 if (tty->driver->type == TTY_DRIVER_TYPE_PTY &&
2089 tty->driver->subtype == PTY_TYPE_MASTER)
2090 noctty = 1;
2091#ifdef TTY_DEBUG_HANGUP
9de44bd6 2092 printk(KERN_DEBUG "%s: opening %s...\n", __func__, tty->name);
1da177e4 2093#endif
909bc774
HRK		 2094 if (tty->ops->open)
2095 retval = tty->ops->open(tty, filp);
2096 else
2097 retval = -ENODEV;
1da177e4
LT		 2098 filp->f_flags = saved_flags;
2099
37bdfb07
AC		 2100 if (!retval && test_bit(TTY_EXCLUSIVE, &tty->flags) &&
2101 !capable(CAP_SYS_ADMIN))
1da177e4
LT		 2102 retval = -EBUSY;
2103
2104 if (retval) {
2105#ifdef TTY_DEBUG_HANGUP
9de44bd6
JS		 2106 printk(KERN_DEBUG "%s: error %d in opening %s...\n", __func__,
2107 retval, tty->name);
1da177e4 2108#endif
89c8d91e 2109 tty_unlock(tty); /* need to call tty_release without BTM */
eeb89d91 2110 tty_release(inode, filp);
64ba3dc3 2111 if (retval != -ERESTARTSYS)
1da177e4 2112 return retval;
64ba3dc3
AB		 2113
2114 if (signal_pending(current))
1da177e4 2115 return retval;
64ba3dc3 2116
1da177e4
LT		 2117 schedule();
2118 /*
2119 * Need to reset f_op in case a hangup happened.
2120 */
2121 if (filp->f_op == &hung_up_tty_fops)
2122 filp->f_op = &tty_fops;
2123 goto retry_open;
2124 }
d4855e1f 2125 clear_bit(TTY_HUPPED, &tty->flags);
eeb89d91 2126
24ec839c 2127
2c411c11 2128 read_lock(&tasklist_lock);
24ec839c 2129 spin_lock_irq(&current->sighand->siglock);
1da177e4
LT		 2130 if (!noctty &&
2131 current->signal->leader &&
2132 !current->signal->tty &&
ab521dc0 2133 tty->session == NULL)
bce65f18 2134 __proc_set_tty(tty);
24ec839c 2135 spin_unlock_irq(&current->sighand->siglock);
2c411c11 2136 read_unlock(&tasklist_lock);
89c8d91e 2137 tty_unlock(tty);
1da177e4 2138 return 0;
ba5db448 2139err_unlock:
ba5db448
JS		 2140 mutex_unlock(&tty_mutex);
2141 /* after locks to avoid deadlock */
2142 if (!IS_ERR_OR_NULL(driver))
2143 tty_driver_kref_put(driver);
2144err_file:
2145 tty_free_file(filp);
2146 return retval;
1da177e4
LT		 2147}
2148
39d95b9d
JC		 2149
2150
af9b897e
AC		 2151/**
2152 * tty_poll - check tty status
2153 * @filp: file being polled
2154 * @wait: poll wait structures to update
2155 *
2156 * Call the line discipline polling method to obtain the poll
2157 * status of the device.
2158 *
2159 * Locking: locks called line discipline but ldisc poll method
2160 * may be re-entered freely by other callers.
2161 */
2162
37bdfb07 2163static unsigned int tty_poll(struct file *filp, poll_table *wait)
1da177e4 2164{
d996b62a 2165 struct tty_struct *tty = file_tty(filp);
1da177e4
LT		 2166 struct tty_ldisc *ld;
2167 int ret = 0;
2168
6131ffaa 2169 if (tty_paranoia_check(tty, file_inode(filp), "tty_poll"))
1da177e4 2170 return 0;
37bdfb07 2171
1da177e4 2172 ld = tty_ldisc_ref_wait(tty);
a352def2
AC		 2173 if (ld->ops->poll)
2174 ret = (ld->ops->poll)(tty, filp, wait);
1da177e4
LT		 2175 tty_ldisc_deref(ld);
2176 return ret;
2177}
2178
ec79d605 2179static int __tty_fasync(int fd, struct file *filp, int on)
1da177e4 2180{
d996b62a 2181 struct tty_struct *tty = file_tty(filp);
f6c8dbe6 2182 struct tty_ldisc *ldisc;
47f86834 2183 unsigned long flags;
5d1e3230 2184 int retval = 0;
1da177e4 2185
6131ffaa 2186 if (tty_paranoia_check(tty, file_inode(filp), "tty_fasync"))
5d1e3230 2187 goto out;
37bdfb07 2188
1da177e4
LT		 2189 retval = fasync_helper(fd, filp, on, &tty->fasync);
2190 if (retval <= 0)
5d1e3230 2191 goto out;
1da177e4 2192
f6c8dbe6
PH		 2193 ldisc = tty_ldisc_ref(tty);
2194 if (ldisc) {
2195 if (ldisc->ops->fasync)
2196 ldisc->ops->fasync(tty, on);
2197 tty_ldisc_deref(ldisc);
2198 }
2199
1da177e4 2200 if (on) {
ab521dc0
EB		 2201 enum pid_type type;
2202 struct pid *pid;
f6c8dbe6 2203
47f86834 2204 spin_lock_irqsave(&tty->ctrl_lock, flags);
ab521dc0
EB		 2205 if (tty->pgrp) {
2206 pid = tty->pgrp;
2207 type = PIDTYPE_PGID;
2208 } else {
2209 pid = task_pid(current);
2210 type = PIDTYPE_PID;
2211 }
80e1e823 2212 get_pid(pid);
70362511 2213 spin_unlock_irqrestore(&tty->ctrl_lock, flags);
e0b93edd 2214 __f_setown(filp, pid, type, 0);
80e1e823 2215 put_pid(pid);
e0b93edd 2216 retval = 0;
1da177e4 2217 }
5d1e3230 2218out:
ec79d605
AB		 2219 return retval;
2220}
2221
2222static int tty_fasync(int fd, struct file *filp, int on)
2223{
89c8d91e 2224 struct tty_struct *tty = file_tty(filp);
ec79d605 2225 int retval;
89c8d91e
AC		 2226
2227 tty_lock(tty);
ec79d605 2228 retval = __tty_fasync(fd, filp, on);
89c8d91e
AC		 2229 tty_unlock(tty);
2230
5d1e3230 2231 return retval;
1da177e4
LT		 2232}
2233
af9b897e
AC		 2234/**
2235 * tiocsti - fake input character
2236 * @tty: tty to fake input into
2237 * @p: pointer to character
2238 *
3a4fa0a2 2239 * Fake input to a tty device. Does the necessary locking and
af9b897e
AC		 2240 * input management.
2241 *
2242 * FIXME: does not honour flow control ??
2243 *
2244 * Locking:
137084bb 2245 * Called functions take tty_ldiscs_lock
af9b897e 2246 * current->signal->tty check is safe without locks
28298232
AC		 2247 *
2248 * FIXME: may race normal receive processing
af9b897e
AC		 2249 */
2250
1da177e4
LT		 2251static int tiocsti(struct tty_struct *tty, char __user *p)
2252{
2253 char ch, mbz = 0;
2254 struct tty_ldisc *ld;
37bdfb07 2255
1da177e4
LT		 2256 if ((current->signal->tty != tty) && !capable(CAP_SYS_ADMIN))
2257 return -EPERM;
2258 if (get_user(ch, p))
2259 return -EFAULT;
1e641743 2260 tty_audit_tiocsti(tty, ch);
1da177e4 2261 ld = tty_ldisc_ref_wait(tty);
a352def2 2262 ld->ops->receive_buf(tty, &ch, &mbz, 1);
1da177e4
LT		 2263 tty_ldisc_deref(ld);
2264 return 0;
2265}
2266
af9b897e
AC		 2267/**
2268 * tiocgwinsz - implement window query ioctl
2269 * @tty; tty
2270 * @arg: user buffer for result
2271 *
808a0d38 2272 * Copies the kernel idea of the window size into the user buffer.
af9b897e 2273 *
dee4a0be 2274 * Locking: tty->winsize_mutex is taken to ensure the winsize data
808a0d38 2275 * is consistent.
af9b897e
AC		 2276 */
2277
37bdfb07 2278static int tiocgwinsz(struct tty_struct *tty, struct winsize __user *arg)
1da177e4 2279{
808a0d38
AC		 2280 int err;
2281
dee4a0be 2282 mutex_lock(&tty->winsize_mutex);
808a0d38 2283 err = copy_to_user(arg, &tty->winsize, sizeof(*arg));
dee4a0be 2284 mutex_unlock(&tty->winsize_mutex);
808a0d38
AC		 2285
2286 return err ? -EFAULT: 0;
1da177e4
LT		 2287}
2288
af9b897e 2289/**
8c9a9dd0
AC		 2290 * tty_do_resize - resize event
2291 * @tty: tty being resized
8c9a9dd0
AC		 2292 * @rows: rows (character)
2293 * @cols: cols (character)
2294 *
3ad2f3fb 2295 * Update the termios variables and send the necessary signals to
8c9a9dd0 2296 * peform a terminal resize correctly
af9b897e
AC		 2297 */
2298
fc6f6238 2299int tty_do_resize(struct tty_struct *tty, struct winsize *ws)
1da177e4 2300{
fc6f6238 2301 struct pid *pgrp;
1da177e4 2302
fc6f6238 2303 /* Lock the tty */
dee4a0be 2304 mutex_lock(&tty->winsize_mutex);
fc6f6238 2305 if (!memcmp(ws, &tty->winsize, sizeof(*ws)))
ca9bda00 2306 goto done;
47f86834 2307
5b239542
PH		 2308 /* Signal the foreground process group */
2309 pgrp = tty_get_pgrp(tty);
47f86834
AC		 2310 if (pgrp)
2311 kill_pgrp(pgrp, SIGWINCH, 1);
47f86834 2312 put_pid(pgrp);
47f86834 2313
8c9a9dd0 2314 tty->winsize = *ws;
ca9bda00 2315done:
dee4a0be 2316 mutex_unlock(&tty->winsize_mutex);
1da177e4
LT		 2317 return 0;
2318}
4d334fd1 2319EXPORT_SYMBOL(tty_do_resize);
1da177e4 2320
8c9a9dd0
AC		 2321/**
2322 * tiocswinsz - implement window size set ioctl
fc6f6238 2323 * @tty; tty side of tty
8c9a9dd0
AC		 2324 * @arg: user buffer for result
2325 *
2326 * Copies the user idea of the window size to the kernel. Traditionally
2327 * this is just advisory information but for the Linux console it
2328 * actually has driver level meaning and triggers a VC resize.
2329 *
2330 * Locking:
25985edc 2331 * Driver dependent. The default do_resize method takes the
8c9a9dd0
AC		 2332 * tty termios mutex and ctrl_lock. The console takes its own lock
2333 * then calls into the default method.
2334 */
2335
fc6f6238 2336static int tiocswinsz(struct tty_struct *tty, struct winsize __user *arg)
8c9a9dd0
AC		 2337{
2338 struct winsize tmp_ws;
2339 if (copy_from_user(&tmp_ws, arg, sizeof(*arg)))
2340 return -EFAULT;
2341
2342 if (tty->ops->resize)
fc6f6238 2343 return tty->ops->resize(tty, &tmp_ws);
8c9a9dd0 2344 else
fc6f6238 2345 return tty_do_resize(tty, &tmp_ws);
8c9a9dd0
AC		 2346}
2347
af9b897e
AC		 2348/**
2349 * tioccons - allow admin to move logical console
2350 * @file: the file to become console
2351 *
25985edc 2352 * Allow the administrator to move the redirected console device
af9b897e
AC		 2353 *
2354 * Locking: uses redirect_lock to guard the redirect information
2355 */
2356
1da177e4
LT		 2357static int tioccons(struct file *file)
2358{
2359 if (!capable(CAP_SYS_ADMIN))
2360 return -EPERM;
2361 if (file->f_op->write == redirected_tty_write) {
2362 struct file *f;
2363 spin_lock(&redirect_lock);
2364 f = redirect;
2365 redirect = NULL;
2366 spin_unlock(&redirect_lock);
2367 if (f)
2368 fput(f);
2369 return 0;
2370 }
2371 spin_lock(&redirect_lock);
2372 if (redirect) {
2373 spin_unlock(&redirect_lock);
2374 return -EBUSY;
2375 }
cb0942b8 2376 redirect = get_file(file);
1da177e4
LT		 2377 spin_unlock(&redirect_lock);
2378 return 0;
2379}
2380
af9b897e
AC		 2381/**
2382 * fionbio - non blocking ioctl
2383 * @file: file to set blocking value
2384 * @p: user parameter
2385 *
2386 * Historical tty interfaces had a blocking control ioctl before
2387 * the generic functionality existed. This piece of history is preserved
2388 * in the expected tty API of posix OS's.
2389 *
6146b9af 2390 * Locking: none, the open file handle ensures it won't go away.
af9b897e 2391 */
1da177e4
LT		 2392
2393static int fionbio(struct file *file, int __user *p)
2394{
2395 int nonblock;
2396
2397 if (get_user(nonblock, p))
2398 return -EFAULT;
2399
db1dd4d3 2400 spin_lock(&file->f_lock);
1da177e4
LT		 2401 if (nonblock)
2402 file->f_flags |= O_NONBLOCK;
2403 else
2404 file->f_flags &= ~O_NONBLOCK;
db1dd4d3 2405 spin_unlock(&file->f_lock);
1da177e4
LT		 2406 return 0;
2407}
2408
af9b897e
AC		 2409/**
2410 * tiocsctty - set controlling tty
2411 * @tty: tty structure
2412 * @arg: user argument
2413 *
2414 * This ioctl is used to manage job control. It permits a session
2415 * leader to set this tty as the controlling tty for the session.
2416 *
2417 * Locking:
e218eb32 2418 * Takes tty_lock() to serialize proc_set_tty() for this tty
24ec839c
PZ		 2419 * Takes tasklist_lock internally to walk sessions
2420 * Takes ->siglock() when updating signal->tty
af9b897e
AC		 2421 */
2422
1da177e4
LT		 2423static int tiocsctty(struct tty_struct *tty, int arg)
2424{
24ec839c 2425 int ret = 0;
24ec839c 2426
e218eb32 2427 tty_lock(tty);
2c411c11
PH		 2428 read_lock(&tasklist_lock);
2429
2430 if (current->signal->leader && (task_session(current) == tty->session))
2431 goto unlock;
2432
1da177e4
LT		 2433 /*
2434 * The process must be a session leader and
2435 * not have a controlling tty already.
2436 */
24ec839c
PZ		 2437 if (!current->signal->leader || current->signal->tty) {
2438 ret = -EPERM;
2439 goto unlock;
2440 }
2441
ab521dc0 2442 if (tty->session) {
1da177e4
LT		 2443 /*
2444 * This tty is already the controlling
2445 * tty for another session group!
2446 */
37bdfb07 2447 if (arg == 1 && capable(CAP_SYS_ADMIN)) {
1da177e4
LT		 2448 /*
2449 * Steal it away
2450 */
24ec839c 2451 session_clear_tty(tty->session);
24ec839c
PZ		 2452 } else {
2453 ret = -EPERM;
2454 goto unlock;
2455 }
1da177e4 2456 }
bce65f18 2457 proc_set_tty(tty);
24ec839c 2458unlock:
2c411c11 2459 read_unlock(&tasklist_lock);
e218eb32 2460 tty_unlock(tty);
24ec839c 2461 return ret;
1da177e4
LT		 2462}
2463
5d0fdf1e
AC		 2464/**
2465 * tty_get_pgrp - return a ref counted pgrp pid
2466 * @tty: tty to read
2467 *
2468 * Returns a refcounted instance of the pid struct for the process
2469 * group controlling the tty.
2470 */
2471
2472struct pid *tty_get_pgrp(struct tty_struct *tty)
2473{
2474 unsigned long flags;
2475 struct pid *pgrp;
2476
2477 spin_lock_irqsave(&tty->ctrl_lock, flags);
2478 pgrp = get_pid(tty->pgrp);
2479 spin_unlock_irqrestore(&tty->ctrl_lock, flags);
2480
2481 return pgrp;
2482}
2483EXPORT_SYMBOL_GPL(tty_get_pgrp);
2484
e1c2296c
PH		 2485/*
2486 * This checks not only the pgrp, but falls back on the pid if no
2487 * satisfactory pgrp is found. I dunno - gdb doesn't work correctly
2488 * without this...
2489 *
2490 * The caller must hold rcu lock or the tasklist lock.
2491 */
2492static struct pid *session_of_pgrp(struct pid *pgrp)
2493{
2494 struct task_struct *p;
2495 struct pid *sid = NULL;
2496
2497 p = pid_task(pgrp, PIDTYPE_PGID);
2498 if (p == NULL)
2499 p = pid_task(pgrp, PIDTYPE_PID);
2500 if (p != NULL)
2501 sid = task_session(p);
2502
2503 return sid;
2504}
2505
af9b897e
AC		 2506/**
2507 * tiocgpgrp - get process group
2508 * @tty: tty passed by user
25985edc 2509 * @real_tty: tty side of the tty passed by the user if a pty else the tty
af9b897e
AC		 2510 * @p: returned pid
2511 *
2512 * Obtain the process group of the tty. If there is no process group
2513 * return an error.
2514 *
24ec839c 2515 * Locking: none. Reference to current->signal->tty is safe.
af9b897e
AC		 2516 */
2517
1da177e4
LT		 2518static int tiocgpgrp(struct tty_struct *tty, struct tty_struct *real_tty, pid_t __user *p)
2519{
5d0fdf1e
AC		 2520 struct pid *pid;
2521 int ret;
1da177e4
LT		 2522 /*
2523 * (tty == real_tty) is a cheap way of
2524 * testing if the tty is NOT a master pty.
2525 */
2526 if (tty == real_tty && current->signal->tty != real_tty)
2527 return -ENOTTY;
5d0fdf1e
AC		 2528 pid = tty_get_pgrp(real_tty);
2529 ret = put_user(pid_vnr(pid), p);
2530 put_pid(pid);
2531 return ret;
1da177e4
LT		 2532}
2533
af9b897e
AC		 2534/**
2535 * tiocspgrp - attempt to set process group
2536 * @tty: tty passed by user
2537 * @real_tty: tty side device matching tty passed by user
2538 * @p: pid pointer
2539 *
2540 * Set the process group of the tty to the session passed. Only
2541 * permitted where the tty session is our session.
2542 *
47f86834 2543 * Locking: RCU, ctrl lock
af9b897e
AC		 2544 */
2545
1da177e4
LT		 2546static int tiocspgrp(struct tty_struct *tty, struct tty_struct *real_tty, pid_t __user *p)
2547{
04a2e6a5
EB		 2548 struct pid *pgrp;
2549 pid_t pgrp_nr;
1da177e4 2550 int retval = tty_check_change(real_tty);
47f86834 2551 unsigned long flags;
1da177e4
LT		 2552
2553 if (retval == -EIO)
2554 return -ENOTTY;
2555 if (retval)
2556 return retval;
2557 if (!current->signal->tty ||
2558 (current->signal->tty != real_tty) ||
ab521dc0 2559 (real_tty->session != task_session(current)))
1da177e4 2560 return -ENOTTY;
04a2e6a5 2561 if (get_user(pgrp_nr, p))
1da177e4 2562 return -EFAULT;
04a2e6a5 2563 if (pgrp_nr < 0)
1da177e4 2564 return -EINVAL;
04a2e6a5 2565 rcu_read_lock();
b488893a 2566 pgrp = find_vpid(pgrp_nr);
04a2e6a5
EB		 2567 retval = -ESRCH;
2568 if (!pgrp)
2569 goto out_unlock;
2570 retval = -EPERM;
2571 if (session_of_pgrp(pgrp) != task_session(current))
2572 goto out_unlock;
2573 retval = 0;
47f86834 2574 spin_lock_irqsave(&tty->ctrl_lock, flags);
ab521dc0
EB		 2575 put_pid(real_tty->pgrp);
2576 real_tty->pgrp = get_pid(pgrp);
47f86834 2577 spin_unlock_irqrestore(&tty->ctrl_lock, flags);
04a2e6a5
EB		 2578out_unlock:
2579 rcu_read_unlock();
2580 return retval;
1da177e4
LT		 2581}
2582
af9b897e
AC		 2583/**
2584 * tiocgsid - get session id
2585 * @tty: tty passed by user
25985edc 2586 * @real_tty: tty side of the tty passed by the user if a pty else the tty
af9b897e
AC		 2587 * @p: pointer to returned session id
2588 *
2589 * Obtain the session id of the tty. If there is no session
2590 * return an error.
2591 *
24ec839c 2592 * Locking: none. Reference to current->signal->tty is safe.
af9b897e
AC		 2593 */
2594
1da177e4
LT		 2595static int tiocgsid(struct tty_struct *tty, struct tty_struct *real_tty, pid_t __user *p)
2596{
2597 /*
2598 * (tty == real_tty) is a cheap way of
2599 * testing if the tty is NOT a master pty.
2600 */
2601 if (tty == real_tty && current->signal->tty != real_tty)
2602 return -ENOTTY;
ab521dc0 2603 if (!real_tty->session)
1da177e4 2604 return -ENOTTY;
b488893a 2605 return put_user(pid_vnr(real_tty->session), p);
1da177e4
LT		 2606}
2607
af9b897e
AC		 2608/**
2609 * tiocsetd - set line discipline
2610 * @tty: tty device
2611 * @p: pointer to user data
2612 *
2613 * Set the line discipline according to user request.
2614 *
2615 * Locking: see tty_set_ldisc, this function is just a helper
2616 */
2617
1da177e4
LT		 2618static int tiocsetd(struct tty_struct *tty, int __user *p)
2619{
2620 int ldisc;
04f378b1 2621 int ret;
1da177e4
LT		 2622
2623 if (get_user(ldisc, p))
2624 return -EFAULT;
04f378b1 2625
04f378b1 2626 ret = tty_set_ldisc(tty, ldisc);
04f378b1
AC		 2627
2628 return ret;
1da177e4
LT		 2629}
2630
af9b897e
AC		 2631/**
2632 * send_break - performed time break
2633 * @tty: device to break on
2634 * @duration: timeout in mS
2635 *
2636 * Perform a timed break on hardware that lacks its own driver level
2637 * timed break functionality.
2638 *
2639 * Locking:
28298232 2640 * atomic_write_lock serializes
af9b897e 2641 *
af9b897e
AC		 2642 */
2643
b20f3ae5 2644static int send_break(struct tty_struct *tty, unsigned int duration)
1da177e4 2645{
9e98966c
AC		 2646 int retval;
2647
2648 if (tty->ops->break_ctl == NULL)
2649 return 0;
2650
2651 if (tty->driver->flags & TTY_DRIVER_HARDWARE_BREAK)
2652 retval = tty->ops->break_ctl(tty, duration);
2653 else {
2654 /* Do the work ourselves */
2655 if (tty_write_lock(tty, 0) < 0)
2656 return -EINTR;
2657 retval = tty->ops->break_ctl(tty, -1);
2658 if (retval)
2659 goto out;
2660 if (!signal_pending(current))
2661 msleep_interruptible(duration);
2662 retval = tty->ops->break_ctl(tty, 0);
2663out:
2664 tty_write_unlock(tty);
2665 if (signal_pending(current))
2666 retval = -EINTR;
2667 }
2668 return retval;
1da177e4
LT		 2669}
2670
af9b897e 2671/**
f34d7a5b 2672 * tty_tiocmget - get modem status
af9b897e
AC		 2673 * @tty: tty device
2674 * @file: user file pointer
2675 * @p: pointer to result
2676 *
2677 * Obtain the modem status bits from the tty driver if the feature
2678 * is supported. Return -EINVAL if it is not available.
2679 *
2680 * Locking: none (up to the driver)
2681 */
2682
60b33c13 2683static int tty_tiocmget(struct tty_struct *tty, int __user *p)
1da177e4
LT		 2684{
2685 int retval = -EINVAL;
2686
f34d7a5b 2687 if (tty->ops->tiocmget) {
60b33c13 2688 retval = tty->ops->tiocmget(tty);
1da177e4
LT		 2689
2690 if (retval >= 0)
2691 retval = put_user(retval, p);
2692 }
2693 return retval;
2694}
2695
af9b897e 2696/**
f34d7a5b 2697 * tty_tiocmset - set modem status
af9b897e 2698 * @tty: tty device
af9b897e
AC		 2699 * @cmd: command - clear bits, set bits or set all
2700 * @p: pointer to desired bits
2701 *
2702 * Set the modem status bits from the tty driver if the feature
2703 * is supported. Return -EINVAL if it is not available.
2704 *
2705 * Locking: none (up to the driver)
2706 */
2707
20b9d177 2708static int tty_tiocmset(struct tty_struct *tty, unsigned int cmd,
1da177e4
LT		 2709 unsigned __user *p)
2710{
ae677517
AC		 2711 int retval;
2712 unsigned int set, clear, val;
1da177e4 2713
ae677517
AC		 2714 if (tty->ops->tiocmset == NULL)
2715 return -EINVAL;
1da177e4 2716
ae677517
AC		 2717 retval = get_user(val, p);
2718 if (retval)
2719 return retval;
2720 set = clear = 0;
2721 switch (cmd) {
2722 case TIOCMBIS:
2723 set = val;
2724 break;
2725 case TIOCMBIC:
2726 clear = val;
2727 break;
2728 case TIOCMSET:
2729 set = val;
2730 clear = ~val;
2731 break;
2732 }
2733 set &= TIOCM_DTR|TIOCM_RTS|TIOCM_OUT1|TIOCM_OUT2|TIOCM_LOOP;
2734 clear &= TIOCM_DTR|TIOCM_RTS|TIOCM_OUT1|TIOCM_OUT2|TIOCM_LOOP;
20b9d177 2735 return tty->ops->tiocmset(tty, set, clear);
1da177e4
LT		 2736}
2737
d281da7f
AC		 2738static int tty_tiocgicount(struct tty_struct *tty, void __user *arg)
2739{
2740 int retval = -EINVAL;
2741 struct serial_icounter_struct icount;
2742 memset(&icount, 0, sizeof(icount));
2743 if (tty->ops->get_icount)
2744 retval = tty->ops->get_icount(tty, &icount);
2745 if (retval != 0)
2746 return retval;
2747 if (copy_to_user(arg, &icount, sizeof(icount)))
2748 return -EFAULT;
2749 return 0;
2750}
2751
8f166e00
PH		 2752/*
2753 * if pty, return the slave side (real_tty)
2754 * otherwise, return self
2755 */
2756static struct tty_struct *tty_pair_get_tty(struct tty_struct *tty)
e8b70e7d
AC		 2757{
2758 if (tty->driver->type == TTY_DRIVER_TYPE_PTY &&
2759 tty->driver->subtype == PTY_TYPE_MASTER)
2760 tty = tty->link;
2761 return tty;
2762}
e8b70e7d 2763
1da177e4
LT		 2764/*
2765 * Split this up, as gcc can choke on it otherwise..
2766 */
04f378b1 2767long tty_ioctl(struct file *file, unsigned int cmd, unsigned long arg)
1da177e4 2768{
d996b62a
NP		 2769 struct tty_struct *tty = file_tty(file);
2770 struct tty_struct *real_tty;
1da177e4
LT		 2771 void __user *p = (void __user *)arg;
2772 int retval;
2773 struct tty_ldisc *ld;
37bdfb07 2774
6131ffaa 2775 if (tty_paranoia_check(tty, file_inode(file), "tty_ioctl"))
1da177e4
LT		 2776 return -EINVAL;
2777
e8b70e7d 2778 real_tty = tty_pair_get_tty(tty);
1da177e4
LT		 2779
2780 /*
2781 * Factor out some common prep work
2782 */
2783 switch (cmd) {
2784 case TIOCSETD:
2785 case TIOCSBRK:
2786 case TIOCCBRK:
2787 case TCSBRK:
37bdfb07 2788 case TCSBRKP:
1da177e4
LT		 2789 retval = tty_check_change(tty);
2790 if (retval)
2791 return retval;
2792 if (cmd != TIOCCBRK) {
2793 tty_wait_until_sent(tty, 0);
2794 if (signal_pending(current))
2795 return -EINTR;
2796 }
2797 break;
2798 }
2799
9e98966c
AC		 2800 /*
2801 * Now do the stuff.
2802 */
1da177e4 2803 switch (cmd) {
37bdfb07
AC		 2804 case TIOCSTI:
2805 return tiocsti(tty, p);
2806 case TIOCGWINSZ:
8f520021 2807 return tiocgwinsz(real_tty, p);
37bdfb07 2808 case TIOCSWINSZ:
fc6f6238 2809 return tiocswinsz(real_tty, p);
37bdfb07
AC		 2810 case TIOCCONS:
2811 return real_tty != tty ? -EINVAL : tioccons(file);
2812 case FIONBIO:
2813 return fionbio(file, p);
2814 case TIOCEXCL:
2815 set_bit(TTY_EXCLUSIVE, &tty->flags);
2816 return 0;
2817 case TIOCNXCL:
2818 clear_bit(TTY_EXCLUSIVE, &tty->flags);
2819 return 0;
84fd7bdf
CG		 2820 case TIOCGEXCL:
2821 {
2822 int excl = test_bit(TTY_EXCLUSIVE, &tty->flags);
2823 return put_user(excl, (int __user *)p);
2824 }
37bdfb07
AC		 2825 case TIOCNOTTY:
2826 if (current->signal->tty != tty)
2827 return -ENOTTY;
2828 no_tty();
2829 return 0;
2830 case TIOCSCTTY:
2831 return tiocsctty(tty, arg);
2832 case TIOCGPGRP:
2833 return tiocgpgrp(tty, real_tty, p);
2834 case TIOCSPGRP:
2835 return tiocspgrp(tty, real_tty, p);
2836 case TIOCGSID:
2837 return tiocgsid(tty, real_tty, p);
2838 case TIOCGETD:
c65c9bc3 2839 return put_user(tty->ldisc->ops->num, (int __user *)p);
37bdfb07
AC		 2840 case TIOCSETD:
2841 return tiocsetd(tty, p);
3c95c985
KS		 2842 case TIOCVHANGUP:
2843 if (!capable(CAP_SYS_ADMIN))
2844 return -EPERM;
2845 tty_vhangup(tty);
2846 return 0;
b7b8de08
WF		 2847 case TIOCGDEV:
2848 {
2849 unsigned int ret = new_encode_dev(tty_devnum(real_tty));
2850 return put_user(ret, (unsigned int __user *)p);
2851 }
37bdfb07
AC		 2852 /*
2853 * Break handling
2854 */
2855 case TIOCSBRK: /* Turn break on, unconditionally */
f34d7a5b 2856 if (tty->ops->break_ctl)
9e98966c 2857 return tty->ops->break_ctl(tty, -1);
37bdfb07 2858 return 0;
37bdfb07 2859 case TIOCCBRK: /* Turn break off, unconditionally */
f34d7a5b 2860 if (tty->ops->break_ctl)
9e98966c 2861 return tty->ops->break_ctl(tty, 0);
37bdfb07
AC		 2862 return 0;
2863 case TCSBRK: /* SVID version: non-zero arg --> no break */
2864 /* non-zero arg means wait for all output data
2865 * to be sent (performed above) but don't send break.
2866 * This is used by the tcdrain() termios function.
2867 */
2868 if (!arg)
2869 return send_break(tty, 250);
2870 return 0;
2871 case TCSBRKP: /* support for POSIX tcsendbreak() */
2872 return send_break(tty, arg ? arg*100 : 250);
2873
2874 case TIOCMGET:
60b33c13 2875 return tty_tiocmget(tty, p);
37bdfb07
AC		 2876 case TIOCMSET:
2877 case TIOCMBIC:
2878 case TIOCMBIS:
20b9d177 2879 return tty_tiocmset(tty, cmd, p);
d281da7f
AC		 2880 case TIOCGICOUNT:
2881 retval = tty_tiocgicount(tty, p);
2882 /* For the moment allow fall through to the old method */
2883 if (retval != -EINVAL)
2884 return retval;
2885 break;
37bdfb07
AC		 2886 case TCFLSH:
2887 switch (arg) {
2888 case TCIFLUSH:
2889 case TCIOFLUSH:
2890 /* flush tty buffer and allow ldisc to process ioctl */
2891 tty_buffer_flush(tty);
c5c34d48 2892 break;
37bdfb07
AC		 2893 }
2894 break;
1da177e4 2895 }
f34d7a5b 2896 if (tty->ops->ioctl) {
6caa76b7 2897 retval = (tty->ops->ioctl)(tty, cmd, arg);
1da177e4
LT		 2898 if (retval != -ENOIOCTLCMD)
2899 return retval;
2900 }
2901 ld = tty_ldisc_ref_wait(tty);
2902 retval = -EINVAL;
a352def2
AC		 2903 if (ld->ops->ioctl) {
2904 retval = ld->ops->ioctl(tty, file, cmd, arg);
1da177e4 2905 if (retval == -ENOIOCTLCMD)
bbb63c51 2906 retval = -ENOTTY;
1da177e4
LT		 2907 }
2908 tty_ldisc_deref(ld);
2909 return retval;
2910}
2911
e10cc1df 2912#ifdef CONFIG_COMPAT
37bdfb07 2913static long tty_compat_ioctl(struct file *file, unsigned int cmd,
e10cc1df
PF		 2914 unsigned long arg)
2915{
d996b62a 2916 struct tty_struct *tty = file_tty(file);
e10cc1df
PF		 2917 struct tty_ldisc *ld;
2918 int retval = -ENOIOCTLCMD;
2919
6131ffaa 2920 if (tty_paranoia_check(tty, file_inode(file), "tty_ioctl"))
e10cc1df
PF		 2921 return -EINVAL;
2922
f34d7a5b 2923 if (tty->ops->compat_ioctl) {
6caa76b7 2924 retval = (tty->ops->compat_ioctl)(tty, cmd, arg);
e10cc1df
PF		 2925 if (retval != -ENOIOCTLCMD)
2926 return retval;
2927 }
2928
2929 ld = tty_ldisc_ref_wait(tty);
a352def2
AC		 2930 if (ld->ops->compat_ioctl)
2931 retval = ld->ops->compat_ioctl(tty, file, cmd, arg);
8193c429
TM		 2932 else
2933 retval = n_tty_compat_ioctl_helper(tty, file, cmd, arg);
e10cc1df
PF		 2934 tty_ldisc_deref(ld);
2935
2936 return retval;
2937}
2938#endif
1da177e4 2939
c3c073f8
AV		 2940static int this_tty(const void *t, struct file *file, unsigned fd)
2941{
2942 if (likely(file->f_op->read != tty_read))
2943 return 0;
2944 return file_tty(file) != t ? 0 : fd + 1;
2945}
2946
1da177e4
LT		 2947/*
2948 * This implements the "Secure Attention Key" --- the idea is to
2949 * prevent trojan horses by killing all processes associated with this
2950 * tty when the user hits the "Secure Attention Key". Required for
2951 * super-paranoid applications --- see the Orange Book for more details.
37bdfb07 2952 *
1da177e4
LT		 2953 * This code could be nicer; ideally it should send a HUP, wait a few
2954 * seconds, then send a INT, and then a KILL signal. But you then
2955 * have to coordinate with the init process, since all processes associated
2956 * with the current tty must be dead before the new getty is allowed
2957 * to spawn.
2958 *
2959 * Now, if it would be correct ;-/ The current code has a nasty hole -
2960 * it doesn't catch files in flight. We may send the descriptor to ourselves
2961 * via AF_UNIX socket, close it and later fetch from socket. FIXME.
2962 *
2963 * Nasty bug: do_SAK is being called in interrupt context. This can
2964 * deadlock. We punt it up to process context. AKPM - 16Mar2001
2965 */
8b6312f4 2966void __do_SAK(struct tty_struct *tty)
1da177e4
LT		 2967{
2968#ifdef TTY_SOFT_SAK
2969 tty_hangup(tty);
2970#else
652486fb 2971 struct task_struct *g, *p;
ab521dc0 2972 struct pid *session;
1da177e4 2973 int i;
37bdfb07 2974
1da177e4
LT		 2975 if (!tty)
2976 return;
24ec839c 2977 session = tty->session;
37bdfb07 2978
b3f13deb 2979 tty_ldisc_flush(tty);
1da177e4 2980
f34d7a5b 2981 tty_driver_flush_buffer(tty);
37bdfb07 2982
1da177e4 2983 read_lock(&tasklist_lock);
652486fb 2984 /* Kill the entire session */
ab521dc0 2985 do_each_pid_task(session, PIDTYPE_SID, p) {
652486fb 2986 printk(KERN_NOTICE "SAK: killed process %d"
1b0f7ffd 2987 " (%s): task_session(p)==tty->session\n",
ba25f9dc 2988 task_pid_nr(p), p->comm);
652486fb 2989 send_sig(SIGKILL, p, 1);
ab521dc0 2990 } while_each_pid_task(session, PIDTYPE_SID, p);
652486fb
EB		 2991 /* Now kill any processes that happen to have the
2992 * tty open.
2993 */
2994 do_each_thread(g, p) {
2995 if (p->signal->tty == tty) {
1da177e4 2996 printk(KERN_NOTICE "SAK: killed process %d"
1b0f7ffd 2997 " (%s): task_session(p)==tty->session\n",
ba25f9dc 2998 task_pid_nr(p), p->comm);
1da177e4
LT		 2999 send_sig(SIGKILL, p, 1);
3000 continue;
3001 }
3002 task_lock(p);
c3c073f8
AV		 3003 i = iterate_fd(p->files, 0, this_tty, tty);
3004 if (i != 0) {
3005 printk(KERN_NOTICE "SAK: killed process %d"
3006 " (%s): fd#%d opened to the tty\n",
3007 task_pid_nr(p), p->comm, i - 1);
3008 force_sig(SIGKILL, p);
1da177e4
LT		 3009 }
3010 task_unlock(p);
652486fb 3011 } while_each_thread(g, p);
1da177e4
LT		 3012 read_unlock(&tasklist_lock);
3013#endif
3014}
3015
8b6312f4
EB		 3016static void do_SAK_work(struct work_struct *work)
3017{
3018 struct tty_struct *tty =
3019 container_of(work, struct tty_struct, SAK_work);
3020 __do_SAK(tty);
3021}
3022
1da177e4
LT		 3023/*
3024 * The tq handling here is a little racy - tty->SAK_work may already be queued.
3025 * Fortunately we don't need to worry, because if ->SAK_work is already queued,
3026 * the values which we write to it will be identical to the values which it
3027 * already has. --akpm
3028 */
3029void do_SAK(struct tty_struct *tty)
3030{
3031 if (!tty)
3032 return;
1da177e4
LT		 3033 schedule_work(&tty->SAK_work);
3034}
3035
3036EXPORT_SYMBOL(do_SAK);
3037
6e9430ac 3038static int dev_match_devt(struct device *dev, const void *data)
30004ac9 3039{
6e9430ac 3040 const dev_t *devt = data;
30004ac9
DES		 3041 return dev->devt == *devt;
3042}
3043
3044/* Must put_device() after it's unused! */
3045static struct device *tty_get_device(struct tty_struct *tty)
3046{
3047 dev_t devt = tty_devnum(tty);
3048 return class_find_device(tty_class, NULL, &devt, dev_match_devt);
3049}
3050
3051
af9b897e 3052/**
2c964a2f 3053 * alloc_tty_struct
af9b897e 3054 *
2c964a2f 3055 * This subroutine allocates and initializes a tty structure.
af9b897e 3056 *
2c964a2f 3057 * Locking: none - tty in question is not exposed at this point
1da177e4 3058 */
af9b897e 3059
2c964a2f 3060struct tty_struct *alloc_tty_struct(struct tty_driver *driver, int idx)
1da177e4 3061{
2c964a2f
RV		 3062 struct tty_struct *tty;
3063
3064 tty = kzalloc(sizeof(*tty), GFP_KERNEL);
3065 if (!tty)
3066 return NULL;
3067
9c9f4ded 3068 kref_init(&tty->kref);
1da177e4 3069 tty->magic = TTY_MAGIC;
01e1abb2 3070 tty_ldisc_init(tty);
ab521dc0
EB		 3071 tty->session = NULL;
3072 tty->pgrp = NULL;
89c8d91e 3073 mutex_init(&tty->legacy_mutex);
d8c1f929 3074 mutex_init(&tty->throttle_mutex);
6a1c0680 3075 init_rwsem(&tty->termios_rwsem);
dee4a0be 3076 mutex_init(&tty->winsize_mutex);
36697529 3077 init_ldsem(&tty->ldisc_sem);
1da177e4
LT		 3078 init_waitqueue_head(&tty->write_wait);
3079 init_waitqueue_head(&tty->read_wait);
65f27f38 3080 INIT_WORK(&tty->hangup_work, do_tty_hangup);
70522e12 3081 mutex_init(&tty->atomic_write_lock);
04f378b1 3082 spin_lock_init(&tty->ctrl_lock);
f9e053dc 3083 spin_lock_init(&tty->flow_lock);
1da177e4 3084 INIT_LIST_HEAD(&tty->tty_files);
7f1f86a0 3085 INIT_WORK(&tty->SAK_work, do_SAK_work);
bf970ee4
AC		 3086
3087 tty->driver = driver;
3088 tty->ops = driver->ops;
3089 tty->index = idx;
3090 tty_line_name(driver, idx, tty->name);
30004ac9 3091 tty->dev = tty_get_device(tty);
2c964a2f
RV		 3092
3093 return tty;
1da177e4
LT		 3094}
3095
6716671d
JS		 3096/**
3097 * deinitialize_tty_struct
3098 * @tty: tty to deinitialize
3099 *
3100 * This subroutine deinitializes a tty structure that has been newly
3101 * allocated but tty_release cannot be called on that yet.
3102 *
3103 * Locking: none - tty in question must not be exposed at this point
3104 */
3105void deinitialize_tty_struct(struct tty_struct *tty)
3106{
3107 tty_ldisc_deinit(tty);
3108}
3109
f34d7a5b
AC		 3110/**
3111 * tty_put_char - write one character to a tty
3112 * @tty: tty
3113 * @ch: character
3114 *
3115 * Write one byte to the tty using the provided put_char method
3116 * if present. Returns the number of characters successfully output.
3117 *
3118 * Note: the specific put_char operation in the driver layer may go
3119 * away soon. Don't call it directly, use this method
1da177e4 3120 */
af9b897e 3121
f34d7a5b 3122int tty_put_char(struct tty_struct *tty, unsigned char ch)
1da177e4 3123{
f34d7a5b
AC		 3124 if (tty->ops->put_char)
3125 return tty->ops->put_char(tty, ch);
3126 return tty->ops->write(tty, &ch, 1);
1da177e4 3127}
f34d7a5b
AC		 3128EXPORT_SYMBOL_GPL(tty_put_char);
3129
d81ed103 3130struct class *tty_class;
1da177e4 3131
7e73eca6
JS		 3132static int tty_cdev_add(struct tty_driver *driver, dev_t dev,
3133 unsigned int index, unsigned int count)
3134{
3135 /* init here, since reused cdevs cause crashes */
3136 cdev_init(&driver->cdevs[index], &tty_fops);
3137 driver->cdevs[index].owner = driver->owner;
3138 return cdev_add(&driver->cdevs[index], dev, count);
3139}
3140
1da177e4 3141/**
af9b897e
AC		 3142 * tty_register_device - register a tty device
3143 * @driver: the tty driver that describes the tty device
3144 * @index: the index in the tty driver for this tty device
3145 * @device: a struct device that is associated with this tty device.
3146 * This field is optional, if there is no known struct device
3147 * for this tty device it can be set to NULL safely.
1da177e4 3148 *
01107d34
GKH		 3149 * Returns a pointer to the struct device for this tty device
3150 * (or ERR_PTR(-EFOO) on error).
1cdcb6b4 3151 *
af9b897e
AC		 3152 * This call is required to be made to register an individual tty device
3153 * if the tty driver's flags have the TTY_DRIVER_DYNAMIC_DEV bit set. If
3154 * that bit is not set, this function should not be called by a tty
3155 * driver.
3156 *
3157 * Locking: ??
1da177e4 3158 */
af9b897e 3159
01107d34
GKH		 3160struct device *tty_register_device(struct tty_driver *driver, unsigned index,
3161 struct device *device)
1da177e4 3162{
6915c0e4
TH		 3163 return tty_register_device_attr(driver, index, device, NULL, NULL);
3164}
3165EXPORT_SYMBOL(tty_register_device);
3166
b1b79916
TH		 3167static void tty_device_create_release(struct device *dev)
3168{
3169 pr_debug("device: '%s': %s\n", dev_name(dev), __func__);
3170 kfree(dev);
3171}
3172
6915c0e4
TH		 3173/**
3174 * tty_register_device_attr - register a tty device
3175 * @driver: the tty driver that describes the tty device
3176 * @index: the index in the tty driver for this tty device
3177 * @device: a struct device that is associated with this tty device.
3178 * This field is optional, if there is no known struct device
3179 * for this tty device it can be set to NULL safely.
3180 * @drvdata: Driver data to be set to device.
3181 * @attr_grp: Attribute group to be set on device.
3182 *
3183 * Returns a pointer to the struct device for this tty device
3184 * (or ERR_PTR(-EFOO) on error).
3185 *
3186 * This call is required to be made to register an individual tty device
3187 * if the tty driver's flags have the TTY_DRIVER_DYNAMIC_DEV bit set. If
3188 * that bit is not set, this function should not be called by a tty
3189 * driver.
3190 *
3191 * Locking: ??
3192 */
3193struct device *tty_register_device_attr(struct tty_driver *driver,
3194 unsigned index, struct device *device,
3195 void *drvdata,
3196 const struct attribute_group **attr_grp)
3197{
1da177e4 3198 char name[64];
6915c0e4
TH		 3199 dev_t devt = MKDEV(driver->major, driver->minor_start) + index;
3200 struct device *dev = NULL;
3201 int retval = -ENODEV;
7e73eca6 3202 bool cdev = false;
1da177e4
LT		 3203
3204 if (index >= driver->num) {
3205 printk(KERN_ERR "Attempt to register invalid tty line number "
3206 " (%d).\n", index);
1cdcb6b4 3207 return ERR_PTR(-EINVAL);
1da177e4
LT		 3208 }
3209
1da177e4
LT		 3210 if (driver->type == TTY_DRIVER_TYPE_PTY)
3211 pty_line_name(driver, index, name);
3212 else
3213 tty_line_name(driver, index, name);
1cdcb6b4 3214
7e73eca6 3215 if (!(driver->flags & TTY_DRIVER_DYNAMIC_ALLOC)) {
6915c0e4
TH		 3216 retval = tty_cdev_add(driver, devt, index, 1);
3217 if (retval)
3218 goto error;
7e73eca6
JS		 3219 cdev = true;
3220 }
3221
6915c0e4
TH		 3222 dev = kzalloc(sizeof(*dev), GFP_KERNEL);
3223 if (!dev) {
3224 retval = -ENOMEM;
3225 goto error;
3226 }
7e73eca6 3227
6915c0e4
TH		 3228 dev->devt = devt;
3229 dev->class = tty_class;
3230 dev->parent = device;
b1b79916 3231 dev->release = tty_device_create_release;
6915c0e4
TH		 3232 dev_set_name(dev, "%s", name);
3233 dev->groups = attr_grp;
3234 dev_set_drvdata(dev, drvdata);
3235
3236 retval = device_register(dev);
3237 if (retval)
3238 goto error;
3239
3240 return dev;
3241
3242error:
3243 put_device(dev);
3244 if (cdev)
3245 cdev_del(&driver->cdevs[index]);
3246 return ERR_PTR(retval);
1da177e4 3247}
6915c0e4 3248EXPORT_SYMBOL_GPL(tty_register_device_attr);
1da177e4
LT		 3249
3250/**
af9b897e
AC		 3251 * tty_unregister_device - unregister a tty device
3252 * @driver: the tty driver that describes the tty device
3253 * @index: the index in the tty driver for this tty device
1da177e4 3254 *
af9b897e
AC		 3255 * If a tty device is registered with a call to tty_register_device() then
3256 * this function must be called when the tty device is gone.
3257 *
3258 * Locking: ??
1da177e4 3259 */
af9b897e 3260
1da177e4
LT		 3261void tty_unregister_device(struct tty_driver *driver, unsigned index)
3262{
37bdfb07
AC		 3263 device_destroy(tty_class,
3264 MKDEV(driver->major, driver->minor_start) + index);
7e73eca6
JS		 3265 if (!(driver->flags & TTY_DRIVER_DYNAMIC_ALLOC))
3266 cdev_del(&driver->cdevs[index]);
1da177e4 3267}
1da177e4
LT		 3268EXPORT_SYMBOL(tty_unregister_device);
3269
7f0bc6a6
JS		 3270/**
3271 * __tty_alloc_driver -- allocate tty driver
3272 * @lines: count of lines this driver can handle at most
3273 * @owner: module which is repsonsible for this driver
3274 * @flags: some of TTY_DRIVER_* flags, will be set in driver->flags
3275 *
3276 * This should not be called directly, some of the provided macros should be
3277 * used instead. Use IS_ERR and friends on @retval.
3278 */
3279struct tty_driver *__tty_alloc_driver(unsigned int lines, struct module *owner,
3280 unsigned long flags)
1da177e4
LT		 3281{
3282 struct tty_driver *driver;
7e73eca6 3283 unsigned int cdevs = 1;
16a02081 3284 int err;
1da177e4 3285
0019b408 3286 if (!lines || (flags & TTY_DRIVER_UNNUMBERED_NODE && lines > 1))
7f0bc6a6
JS		 3287 return ERR_PTR(-EINVAL);
3288
506eb99a 3289 driver = kzalloc(sizeof(struct tty_driver), GFP_KERNEL);
7f0bc6a6
JS		 3290 if (!driver)
3291 return ERR_PTR(-ENOMEM);
3292
3293 kref_init(&driver->kref);
3294 driver->magic = TTY_DRIVER_MAGIC;
3295 driver->num = lines;
3296 driver->owner = owner;
3297 driver->flags = flags;
16a02081
JS		 3298
3299 if (!(flags & TTY_DRIVER_DEVPTS_MEM)) {
3300 driver->ttys = kcalloc(lines, sizeof(*driver->ttys),
3301 GFP_KERNEL);
3302 driver->termios = kcalloc(lines, sizeof(*driver->termios),
3303 GFP_KERNEL);
3304 if (!driver->ttys || !driver->termios) {
3305 err = -ENOMEM;
3306 goto err_free_all;
3307 }
3308 }
3309
3310 if (!(flags & TTY_DRIVER_DYNAMIC_ALLOC)) {
3311 driver->ports = kcalloc(lines, sizeof(*driver->ports),
3312 GFP_KERNEL);
3313 if (!driver->ports) {
3314 err = -ENOMEM;
3315 goto err_free_all;
3316 }
7e73eca6
JS		 3317 cdevs = lines;
3318 }
3319
3320 driver->cdevs = kcalloc(cdevs, sizeof(*driver->cdevs), GFP_KERNEL);
3321 if (!driver->cdevs) {
3322 err = -ENOMEM;
3323 goto err_free_all;
16a02081 3324 }
7f0bc6a6 3325
1da177e4 3326 return driver;
16a02081
JS		 3327err_free_all:
3328 kfree(driver->ports);
3329 kfree(driver->ttys);
3330 kfree(driver->termios);
3331 kfree(driver);
3332 return ERR_PTR(err);
1da177e4 3333}
7f0bc6a6 3334EXPORT_SYMBOL(__tty_alloc_driver);
1da177e4 3335
7d7b93c1 3336static void destruct_tty_driver(struct kref *kref)
1da177e4 3337{
7d7b93c1
AC		 3338 struct tty_driver *driver = container_of(kref, struct tty_driver, kref);
3339 int i;
3340 struct ktermios *tp;
7d7b93c1
AC		 3341
3342 if (driver->flags & TTY_DRIVER_INSTALLED) {
3343 /*
3344 * Free the termios and termios_locked structures because
3345 * we don't want to get memory leaks when modular tty
3346 * drivers are removed from the kernel.
3347 */
3348 for (i = 0; i < driver->num; i++) {
3349 tp = driver->termios[i];
3350 if (tp) {
3351 driver->termios[i] = NULL;
3352 kfree(tp);
3353 }
7d7b93c1
AC		 3354 if (!(driver->flags & TTY_DRIVER_DYNAMIC_DEV))
3355 tty_unregister_device(driver, i);
3356 }
7d7b93c1 3357 proc_tty_unregister_driver(driver);
7e73eca6
JS		 3358 if (driver->flags & TTY_DRIVER_DYNAMIC_ALLOC)
3359 cdev_del(&driver->cdevs[0]);
7d7b93c1 3360 }
7e73eca6 3361 kfree(driver->cdevs);
04831dc1 3362 kfree(driver->ports);
16a02081
JS		 3363 kfree(driver->termios);
3364 kfree(driver->ttys);
1da177e4
LT		 3365 kfree(driver);
3366}
3367
7d7b93c1
AC		 3368void tty_driver_kref_put(struct tty_driver *driver)
3369{
3370 kref_put(&driver->kref, destruct_tty_driver);
3371}
3372EXPORT_SYMBOL(tty_driver_kref_put);
3373
b68e31d0
JD		 3374void tty_set_operations(struct tty_driver *driver,
3375 const struct tty_operations *op)
1da177e4 3376{
f34d7a5b
AC		 3377 driver->ops = op;
3378};
7d7b93c1 3379EXPORT_SYMBOL(tty_set_operations);
1da177e4 3380
7d7b93c1
AC		 3381void put_tty_driver(struct tty_driver *d)
3382{
3383 tty_driver_kref_put(d);
3384}
1da177e4 3385EXPORT_SYMBOL(put_tty_driver);
1da177e4
LT		 3386
3387/*
3388 * Called by a tty driver to register itself.
3389 */
3390int tty_register_driver(struct tty_driver *driver)
3391{
3392 int error;
37bdfb07 3393 int i;
1da177e4 3394 dev_t dev;
b670bde0 3395 struct device *d;
1da177e4 3396
1da177e4 3397 if (!driver->major) {
37bdfb07
AC		 3398 error = alloc_chrdev_region(&dev, driver->minor_start,
3399 driver->num, driver->name);
1da177e4
LT		 3400 if (!error) {
3401 driver->major = MAJOR(dev);
3402 driver->minor_start = MINOR(dev);
3403 }
3404 } else {
3405 dev = MKDEV(driver->major, driver->minor_start);
e5717c48 3406 error = register_chrdev_region(dev, driver->num, driver->name);
1da177e4 3407 }
9bb8a3d4 3408 if (error < 0)
16a02081 3409 goto err;
1da177e4 3410
7e73eca6
JS		 3411 if (driver->flags & TTY_DRIVER_DYNAMIC_ALLOC) {
3412 error = tty_cdev_add(driver, dev, 0, driver->num);
3413 if (error)
3414 goto err_unreg_char;
3415 }
1da177e4 3416
ca509f69 3417 mutex_lock(&tty_mutex);
1da177e4 3418 list_add(&driver->tty_drivers, &tty_drivers);
ca509f69 3419 mutex_unlock(&tty_mutex);
37bdfb07
AC		 3420
3421 if (!(driver->flags & TTY_DRIVER_DYNAMIC_DEV)) {
b670bde0
VK		 3422 for (i = 0; i < driver->num; i++) {
3423 d = tty_register_device(driver, i, NULL);
3424 if (IS_ERR(d)) {
3425 error = PTR_ERR(d);
16a02081 3426 goto err_unreg_devs;
b670bde0
VK		 3427 }
3428 }
1da177e4
LT		 3429 }
3430 proc_tty_register_driver(driver);
7d7b93c1 3431 driver->flags |= TTY_DRIVER_INSTALLED;
1da177e4 3432 return 0;
b670bde0 3433
16a02081 3434err_unreg_devs:
b670bde0
VK		 3435 for (i--; i >= 0; i--)
3436 tty_unregister_device(driver, i);
3437
3438 mutex_lock(&tty_mutex);
3439 list_del(&driver->tty_drivers);
3440 mutex_unlock(&tty_mutex);
3441
9bb8a3d4 3442err_unreg_char:
b670bde0 3443 unregister_chrdev_region(dev, driver->num);
16a02081 3444err:
b670bde0 3445 return error;
1da177e4 3446}
1da177e4
LT		 3447EXPORT_SYMBOL(tty_register_driver);
3448
3449/*
3450 * Called by a tty driver to unregister itself.
3451 */
3452int tty_unregister_driver(struct tty_driver *driver)
3453{
7d7b93c1
AC		 3454#if 0
3455 /* FIXME */
1da177e4
LT		 3456 if (driver->refcount)
3457 return -EBUSY;
7d7b93c1 3458#endif
1da177e4
LT		 3459 unregister_chrdev_region(MKDEV(driver->major, driver->minor_start),
3460 driver->num);
ca509f69 3461 mutex_lock(&tty_mutex);
1da177e4 3462 list_del(&driver->tty_drivers);
ca509f69 3463 mutex_unlock(&tty_mutex);
1da177e4
LT		 3464 return 0;
3465}
7d7b93c1 3466
1da177e4
LT		 3467EXPORT_SYMBOL(tty_unregister_driver);
3468
24ec839c
PZ		 3469dev_t tty_devnum(struct tty_struct *tty)
3470{
3471 return MKDEV(tty->driver->major, tty->driver->minor_start) + tty->index;
3472}
3473EXPORT_SYMBOL(tty_devnum);
1da177e4 3474
d81ed103
AC		 3475void tty_default_fops(struct file_operations *fops)
3476{
3477 *fops = tty_fops;
3478}
3479
1da177e4
LT		 3480/*
3481 * Initialize the console device. This is called *early*, so
3482 * we can't necessarily depend on lots of kernel help here.
3483 * Just do some early initializations, and do the complex setup
3484 * later.
3485 */
3486void __init console_init(void)
3487{
3488 initcall_t *call;
3489
3490 /* Setup the default TTY line discipline. */
01e1abb2 3491 tty_ldisc_begin();
1da177e4
LT		 3492
3493 /*
37bdfb07 3494 * set up the console device so that later boot sequences can
1da177e4
LT		 3495 * inform about problems etc..
3496 */
1da177e4
LT		 3497 call = __con_initcall_start;
3498 while (call < __con_initcall_end) {
3499 (*call)();
3500 call++;
3501 }
3502}
3503
2c9ede55 3504static char *tty_devnode(struct device *dev, umode_t *mode)
e454cea2
KS		 3505{
3506 if (!mode)
3507 return NULL;
3508 if (dev->devt == MKDEV(TTYAUX_MAJOR, 0) ||
3509 dev->devt == MKDEV(TTYAUX_MAJOR, 2))
3510 *mode = 0666;
3511 return NULL;
3512}
3513
1da177e4
LT		 3514static int __init tty_class_init(void)
3515{
7fe845d1 3516 tty_class = class_create(THIS_MODULE, "tty");
1da177e4
LT		 3517 if (IS_ERR(tty_class))
3518 return PTR_ERR(tty_class);
e454cea2 3519 tty_class->devnode = tty_devnode;
1da177e4
LT		 3520 return 0;
3521}
3522
3523postcore_initcall(tty_class_init);
3524
3525/* 3/2004 jmc: why do these devices exist? */
1da177e4 3526static struct cdev tty_cdev, console_cdev;
1da177e4 3527
fbc92a34
KS		 3528static ssize_t show_cons_active(struct device *dev,
3529 struct device_attribute *attr, char *buf)
3530{
3531 struct console *cs[16];
3532 int i = 0;
3533 struct console *c;
3534 ssize_t count = 0;
3535
ac751efa 3536 console_lock();
a2a6a822 3537 for_each_console(c) {
fbc92a34
KS		 3538 if (!c->device)
3539 continue;
3540 if (!c->write)
3541 continue;
3542 if ((c->flags & CON_ENABLED) == 0)
3543 continue;
3544 cs[i++] = c;
3545 if (i >= ARRAY_SIZE(cs))
3546 break;
3547 }
723abd87
HR		 3548 while (i--) {
3549 int index = cs[i]->index;
3550 struct tty_driver *drv = cs[i]->device(cs[i], &index);
3551
3552 /* don't resolve tty0 as some programs depend on it */
3553 if (drv && (cs[i]->index > 0 || drv->major != TTY_MAJOR))
3554 count += tty_line_name(drv, index, buf + count);
3555 else
3556 count += sprintf(buf + count, "%s%d",
3557 cs[i]->name, cs[i]->index);
3558
3559 count += sprintf(buf + count, "%c", i ? ' ':'\n');
3560 }
ac751efa 3561 console_unlock();
fbc92a34
KS		 3562
3563 return count;
3564}
3565static DEVICE_ATTR(active, S_IRUGO, show_cons_active, NULL);
3566
3567static struct device *consdev;
3568
3569void console_sysfs_notify(void)
3570{
3571 if (consdev)
3572 sysfs_notify(&consdev->kobj, NULL, "active");
3573}
3574
1da177e4
LT		 3575/*
3576 * Ok, now we can initialize the rest of the tty devices and can count
3577 * on memory allocations, interrupts etc..
3578 */
31d1d48e 3579int __init tty_init(void)
1da177e4
LT		 3580{
3581 cdev_init(&tty_cdev, &tty_fops);
3582 if (cdev_add(&tty_cdev, MKDEV(TTYAUX_MAJOR, 0), 1) ||
3583 register_chrdev_region(MKDEV(TTYAUX_MAJOR, 0), 1, "/dev/tty") < 0)
3584 panic("Couldn't register /dev/tty driver\n");
fbc92a34 3585 device_create(tty_class, NULL, MKDEV(TTYAUX_MAJOR, 0), NULL, "tty");
1da177e4
LT		 3586
3587 cdev_init(&console_cdev, &console_fops);
3588 if (cdev_add(&console_cdev, MKDEV(TTYAUX_MAJOR, 1), 1) ||
3589 register_chrdev_region(MKDEV(TTYAUX_MAJOR, 1), 1, "/dev/console") < 0)
3590 panic("Couldn't register /dev/console driver\n");
fbc92a34 3591 consdev = device_create(tty_class, NULL, MKDEV(TTYAUX_MAJOR, 1), NULL,
47aa5793 3592 "console");
fbc92a34
KS		 3593 if (IS_ERR(consdev))
3594 consdev = NULL;
3595 else
a2a6a822 3596 WARN_ON(device_create_file(consdev, &dev_attr_active) < 0);
1da177e4 3597
1da177e4 3598#ifdef CONFIG_VT
d81ed103 3599 vty_init(&console_fops);
1da177e4
LT		 3600#endif
3601 return 0;
3602}
31d1d48e 3603
Linux 6.x block layer and io_uring tree(s)