Commit | Line | Data |
---|---|---|
6b4e306a EB |
1 | #include <linux/proc_fs.h> |
2 | #include <linux/nsproxy.h> | |
6b4e306a | 3 | #include <linux/ptrace.h> |
6b4e306a EB |
4 | #include <linux/namei.h> |
5 | #include <linux/file.h> | |
6 | #include <linux/utsname.h> | |
7 | #include <net/net_namespace.h> | |
6b4e306a EB |
8 | #include <linux/ipc_namespace.h> |
9 | #include <linux/pid_namespace.h> | |
cde1975b | 10 | #include <linux/user_namespace.h> |
6b4e306a EB |
11 | #include "internal.h" |
12 | ||
13 | ||
14 | static const struct proc_ns_operations *ns_entries[] = { | |
13b6f576 EB |
15 | #ifdef CONFIG_NET_NS |
16 | &netns_operations, | |
17 | #endif | |
34482e89 EB |
18 | #ifdef CONFIG_UTS_NS |
19 | &utsns_operations, | |
20 | #endif | |
a00eaf11 EB |
21 | #ifdef CONFIG_IPC_NS |
22 | &ipcns_operations, | |
23 | #endif | |
57e8391d EB |
24 | #ifdef CONFIG_PID_NS |
25 | &pidns_operations, | |
cde1975b EB |
26 | #endif |
27 | #ifdef CONFIG_USER_NS | |
28 | &userns_operations, | |
57e8391d | 29 | #endif |
8823c079 | 30 | &mntns_operations, |
6b4e306a EB |
31 | }; |
32 | ||
6b255391 | 33 | static const char *proc_ns_get_link(struct dentry *dentry, |
fceef393 AV |
34 | struct inode *inode, |
35 | struct delayed_call *done) | |
bf056bfa | 36 | { |
3d3d35b1 | 37 | const struct proc_ns_operations *ns_ops = PROC_I(inode)->ns_ops; |
bf056bfa | 38 | struct task_struct *task; |
db04dc67 | 39 | struct path ns_path; |
bf056bfa EB |
40 | void *error = ERR_PTR(-EACCES); |
41 | ||
6b255391 AV |
42 | if (!dentry) |
43 | return ERR_PTR(-ECHILD); | |
44 | ||
bf056bfa EB |
45 | task = get_proc_task(inode); |
46 | if (!task) | |
e149ed2b | 47 | return error; |
bf056bfa | 48 | |
caaee623 | 49 | if (ptrace_may_access(task, PTRACE_MODE_READ_FSCREDS)) { |
e149ed2b AV |
50 | error = ns_get_path(&ns_path, task, ns_ops); |
51 | if (!error) | |
6e77137b | 52 | nd_jump_link(&ns_path); |
bf056bfa | 53 | } |
bf056bfa | 54 | put_task_struct(task); |
bf056bfa EB |
55 | return error; |
56 | } | |
57 | ||
58 | static int proc_ns_readlink(struct dentry *dentry, char __user *buffer, int buflen) | |
59 | { | |
2b0143b5 | 60 | struct inode *inode = d_inode(dentry); |
3d3d35b1 | 61 | const struct proc_ns_operations *ns_ops = PROC_I(inode)->ns_ops; |
bf056bfa | 62 | struct task_struct *task; |
bf056bfa | 63 | char name[50]; |
5d826c84 | 64 | int res = -EACCES; |
bf056bfa EB |
65 | |
66 | task = get_proc_task(inode); | |
67 | if (!task) | |
e149ed2b | 68 | return res; |
bf056bfa | 69 | |
caaee623 | 70 | if (ptrace_may_access(task, PTRACE_MODE_READ_FSCREDS)) { |
e149ed2b AV |
71 | res = ns_get_name(name, sizeof(name), task, ns_ops); |
72 | if (res >= 0) | |
73 | res = readlink_copy(buffer, buflen, name); | |
74 | } | |
bf056bfa | 75 | put_task_struct(task); |
5d826c84 | 76 | return res; |
bf056bfa EB |
77 | } |
78 | ||
79 | static const struct inode_operations proc_ns_link_inode_operations = { | |
80 | .readlink = proc_ns_readlink, | |
6b255391 | 81 | .get_link = proc_ns_get_link, |
bf056bfa EB |
82 | .setattr = proc_setattr, |
83 | }; | |
84 | ||
c52a47ac | 85 | static int proc_ns_instantiate(struct inode *dir, |
6b4e306a EB |
86 | struct dentry *dentry, struct task_struct *task, const void *ptr) |
87 | { | |
88 | const struct proc_ns_operations *ns_ops = ptr; | |
89 | struct inode *inode; | |
90 | struct proc_inode *ei; | |
6b4e306a EB |
91 | |
92 | inode = proc_pid_make_inode(dir->i_sb, task); | |
93 | if (!inode) | |
94 | goto out; | |
95 | ||
96 | ei = PROC_I(inode); | |
bf056bfa EB |
97 | inode->i_mode = S_IFLNK|S_IRWXUGO; |
98 | inode->i_op = &proc_ns_link_inode_operations; | |
3d3d35b1 | 99 | ei->ns_ops = ns_ops; |
6b4e306a | 100 | |
1b26c9b3 | 101 | d_set_d_op(dentry, &pid_dentry_operations); |
6b4e306a EB |
102 | d_add(dentry, inode); |
103 | /* Close the race of the process dying before we return the dentry */ | |
0b728e19 | 104 | if (pid_revalidate(dentry, 0)) |
c52a47ac | 105 | return 0; |
6b4e306a | 106 | out: |
c52a47ac | 107 | return -ENOENT; |
6b4e306a EB |
108 | } |
109 | ||
f0c3b509 | 110 | static int proc_ns_dir_readdir(struct file *file, struct dir_context *ctx) |
6b4e306a | 111 | { |
f0c3b509 | 112 | struct task_struct *task = get_proc_task(file_inode(file)); |
6b4e306a | 113 | const struct proc_ns_operations **entry, **last; |
6b4e306a | 114 | |
6b4e306a | 115 | if (!task) |
f0c3b509 | 116 | return -ENOENT; |
6b4e306a | 117 | |
f0c3b509 AV |
118 | if (!dir_emit_dots(file, ctx)) |
119 | goto out; | |
120 | if (ctx->pos >= 2 + ARRAY_SIZE(ns_entries)) | |
121 | goto out; | |
122 | entry = ns_entries + (ctx->pos - 2); | |
123 | last = &ns_entries[ARRAY_SIZE(ns_entries) - 1]; | |
124 | while (entry <= last) { | |
125 | const struct proc_ns_operations *ops = *entry; | |
126 | if (!proc_fill_cache(file, ctx, ops->name, strlen(ops->name), | |
127 | proc_ns_instantiate, task, ops)) | |
128 | break; | |
129 | ctx->pos++; | |
130 | entry++; | |
131 | } | |
6b4e306a EB |
132 | out: |
133 | put_task_struct(task); | |
f0c3b509 | 134 | return 0; |
6b4e306a EB |
135 | } |
136 | ||
137 | const struct file_operations proc_ns_dir_operations = { | |
138 | .read = generic_read_dir, | |
f0c3b509 | 139 | .iterate = proc_ns_dir_readdir, |
6b4e306a EB |
140 | }; |
141 | ||
142 | static struct dentry *proc_ns_dir_lookup(struct inode *dir, | |
00cd8dd3 | 143 | struct dentry *dentry, unsigned int flags) |
6b4e306a | 144 | { |
c52a47ac | 145 | int error; |
6b4e306a EB |
146 | struct task_struct *task = get_proc_task(dir); |
147 | const struct proc_ns_operations **entry, **last; | |
148 | unsigned int len = dentry->d_name.len; | |
149 | ||
c52a47ac | 150 | error = -ENOENT; |
6b4e306a EB |
151 | |
152 | if (!task) | |
153 | goto out_no_task; | |
154 | ||
4c619aa0 AM |
155 | last = &ns_entries[ARRAY_SIZE(ns_entries)]; |
156 | for (entry = ns_entries; entry < last; entry++) { | |
6b4e306a EB |
157 | if (strlen((*entry)->name) != len) |
158 | continue; | |
159 | if (!memcmp(dentry->d_name.name, (*entry)->name, len)) | |
160 | break; | |
161 | } | |
4c619aa0 | 162 | if (entry == last) |
6b4e306a EB |
163 | goto out; |
164 | ||
165 | error = proc_ns_instantiate(dir, dentry, task, *entry); | |
166 | out: | |
167 | put_task_struct(task); | |
168 | out_no_task: | |
c52a47ac | 169 | return ERR_PTR(error); |
6b4e306a EB |
170 | } |
171 | ||
172 | const struct inode_operations proc_ns_dir_inode_operations = { | |
173 | .lookup = proc_ns_dir_lookup, | |
174 | .getattr = pid_getattr, | |
175 | .setattr = proc_setattr, | |
176 | }; |