blob: 06ed10b7da9ee17e9dae1d63ec2b09435aefa551 [file] [log] [blame]
Eric W. Biederman77b14db2007-02-14 00:34:12 -08001/*
2 * /proc/sys support
3 */
Alexey Dobriyan1e0edd32008-10-17 05:07:44 +04004#include <linux/init.h>
Eric W. Biederman77b14db2007-02-14 00:34:12 -08005#include <linux/sysctl.h>
6#include <linux/proc_fs.h>
7#include <linux/security.h>
8#include "internal.h"
9
10static struct dentry_operations proc_sys_dentry_operations;
11static const struct file_operations proc_sys_file_operations;
Jan Engelhardt03a44822008-02-08 04:21:19 -080012static const struct inode_operations proc_sys_inode_operations;
Al Viro9043476f2008-07-15 08:54:06 -040013static const struct file_operations proc_sys_dir_file_operations;
14static const struct inode_operations proc_sys_dir_operations;
Eric W. Biederman77b14db2007-02-14 00:34:12 -080015
Al Viro9043476f2008-07-15 08:54:06 -040016static struct inode *proc_sys_make_inode(struct super_block *sb,
17 struct ctl_table_header *head, struct ctl_table *table)
Eric W. Biederman77b14db2007-02-14 00:34:12 -080018{
19 struct inode *inode;
Al Viro9043476f2008-07-15 08:54:06 -040020 struct proc_inode *ei;
Eric W. Biederman77b14db2007-02-14 00:34:12 -080021
Al Viro9043476f2008-07-15 08:54:06 -040022 inode = new_inode(sb);
Eric W. Biederman77b14db2007-02-14 00:34:12 -080023 if (!inode)
24 goto out;
25
Al Viro9043476f2008-07-15 08:54:06 -040026 sysctl_head_get(head);
Eric W. Biederman77b14db2007-02-14 00:34:12 -080027 ei = PROC_I(inode);
Al Viro9043476f2008-07-15 08:54:06 -040028 ei->sysctl = head;
29 ei->sysctl_entry = table;
30
Eric W. Biederman77b14db2007-02-14 00:34:12 -080031 inode->i_mtime = inode->i_atime = inode->i_ctime = CURRENT_TIME;
Eric W. Biederman86a71dbd2007-02-14 00:34:16 -080032 inode->i_flags |= S_PRIVATE; /* tell selinux to ignore this inode */
Al Viro9043476f2008-07-15 08:54:06 -040033 inode->i_mode = table->mode;
Al Viro5c06fe72008-11-16 22:19:10 +000034 inode->i_uid = inode->i_gid = 0;
Al Viro9043476f2008-07-15 08:54:06 -040035 if (!table->child) {
36 inode->i_mode |= S_IFREG;
37 inode->i_op = &proc_sys_inode_operations;
38 inode->i_fop = &proc_sys_file_operations;
39 } else {
40 inode->i_mode |= S_IFDIR;
41 inode->i_nlink = 0;
42 inode->i_op = &proc_sys_dir_operations;
43 inode->i_fop = &proc_sys_dir_file_operations;
44 }
Eric W. Biederman77b14db2007-02-14 00:34:12 -080045out:
46 return inode;
47}
48
Al Viro9043476f2008-07-15 08:54:06 -040049static struct ctl_table *find_in_table(struct ctl_table *p, struct qstr *name)
Eric W. Biederman77b14db2007-02-14 00:34:12 -080050{
51 int len;
Al Viro9043476f2008-07-15 08:54:06 -040052 for ( ; p->ctl_name || p->procname; p++) {
Eric W. Biederman77b14db2007-02-14 00:34:12 -080053
Al Viro9043476f2008-07-15 08:54:06 -040054 if (!p->procname)
Eric W. Biederman77b14db2007-02-14 00:34:12 -080055 continue;
56
Al Viro9043476f2008-07-15 08:54:06 -040057 len = strlen(p->procname);
Eric W. Biederman77b14db2007-02-14 00:34:12 -080058 if (len != name->len)
59 continue;
60
Al Viro9043476f2008-07-15 08:54:06 -040061 if (memcmp(p->procname, name->name, len) != 0)
Eric W. Biederman77b14db2007-02-14 00:34:12 -080062 continue;
63
64 /* I have a match */
Al Viro9043476f2008-07-15 08:54:06 -040065 return p;
Eric W. Biederman77b14db2007-02-14 00:34:12 -080066 }
67 return NULL;
68}
69
Adrian Bunk81324362008-10-03 00:33:54 +040070static struct ctl_table_header *grab_header(struct inode *inode)
Eric W. Biederman77b14db2007-02-14 00:34:12 -080071{
Al Viro9043476f2008-07-15 08:54:06 -040072 if (PROC_I(inode)->sysctl)
73 return sysctl_head_grab(PROC_I(inode)->sysctl);
74 else
75 return sysctl_head_next(NULL);
Eric W. Biederman77b14db2007-02-14 00:34:12 -080076}
77
78static struct dentry *proc_sys_lookup(struct inode *dir, struct dentry *dentry,
79 struct nameidata *nd)
80{
Al Viro9043476f2008-07-15 08:54:06 -040081 struct ctl_table_header *head = grab_header(dir);
82 struct ctl_table *table = PROC_I(dir)->sysctl_entry;
83 struct ctl_table_header *h = NULL;
84 struct qstr *name = &dentry->d_name;
85 struct ctl_table *p;
Eric W. Biederman77b14db2007-02-14 00:34:12 -080086 struct inode *inode;
Al Viro9043476f2008-07-15 08:54:06 -040087 struct dentry *err = ERR_PTR(-ENOENT);
Eric W. Biederman77b14db2007-02-14 00:34:12 -080088
Al Viro9043476f2008-07-15 08:54:06 -040089 if (IS_ERR(head))
90 return ERR_CAST(head);
91
92 if (table && !table->child) {
93 WARN_ON(1);
94 goto out;
95 }
96
97 table = table ? table->child : head->ctl_table;
98
99 p = find_in_table(table, name);
100 if (!p) {
101 for (h = sysctl_head_next(NULL); h; h = sysctl_head_next(h)) {
102 if (h->attached_to != table)
103 continue;
104 p = find_in_table(h->attached_by, name);
105 if (p)
106 break;
107 }
108 }
109
110 if (!p)
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800111 goto out;
112
113 err = ERR_PTR(-ENOMEM);
Al Viro9043476f2008-07-15 08:54:06 -0400114 inode = proc_sys_make_inode(dir->i_sb, h ? h : head, p);
115 if (h)
116 sysctl_head_finish(h);
117
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800118 if (!inode)
119 goto out;
120
121 err = NULL;
122 dentry->d_op = &proc_sys_dentry_operations;
123 d_add(dentry, inode);
124
125out:
126 sysctl_head_finish(head);
127 return err;
128}
129
Pavel Emelyanov7708bfb2008-04-29 01:02:40 -0700130static ssize_t proc_sys_call_handler(struct file *filp, void __user *buf,
131 size_t count, loff_t *ppos, int write)
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800132{
Al Viro9043476f2008-07-15 08:54:06 -0400133 struct inode *inode = filp->f_path.dentry->d_inode;
134 struct ctl_table_header *head = grab_header(inode);
135 struct ctl_table *table = PROC_I(inode)->sysctl_entry;
David Howells2a2da532007-10-25 15:27:40 +0100136 ssize_t error;
137 size_t res;
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800138
Al Viro9043476f2008-07-15 08:54:06 -0400139 if (IS_ERR(head))
140 return PTR_ERR(head);
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800141
142 /*
143 * At this point we know that the sysctl was not unregistered
144 * and won't be until we finish.
145 */
146 error = -EPERM;
Pavel Emelyanovd7321cd2008-04-29 01:02:44 -0700147 if (sysctl_perm(head->root, table, write ? MAY_WRITE : MAY_READ))
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800148 goto out;
149
Al Viro9043476f2008-07-15 08:54:06 -0400150 /* if that can happen at all, it should be -EINVAL, not -EISDIR */
151 error = -EINVAL;
152 if (!table->proc_handler)
153 goto out;
154
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800155 /* careful: calling conventions are nasty here */
156 res = count;
Pavel Emelyanov7708bfb2008-04-29 01:02:40 -0700157 error = table->proc_handler(table, write, filp, buf, &res, ppos);
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800158 if (!error)
159 error = res;
160out:
161 sysctl_head_finish(head);
162
163 return error;
164}
165
Pavel Emelyanov7708bfb2008-04-29 01:02:40 -0700166static ssize_t proc_sys_read(struct file *filp, char __user *buf,
167 size_t count, loff_t *ppos)
168{
169 return proc_sys_call_handler(filp, (void __user *)buf, count, ppos, 0);
170}
171
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800172static ssize_t proc_sys_write(struct file *filp, const char __user *buf,
173 size_t count, loff_t *ppos)
174{
Pavel Emelyanov7708bfb2008-04-29 01:02:40 -0700175 return proc_sys_call_handler(filp, (void __user *)buf, count, ppos, 1);
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800176}
177
178
179static int proc_sys_fill_cache(struct file *filp, void *dirent,
Al Viro9043476f2008-07-15 08:54:06 -0400180 filldir_t filldir,
181 struct ctl_table_header *head,
182 struct ctl_table *table)
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800183{
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800184 struct dentry *child, *dir = filp->f_path.dentry;
185 struct inode *inode;
186 struct qstr qname;
187 ino_t ino = 0;
188 unsigned type = DT_UNKNOWN;
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800189
190 qname.name = table->procname;
191 qname.len = strlen(table->procname);
192 qname.hash = full_name_hash(qname.name, qname.len);
193
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800194 child = d_lookup(dir, &qname);
195 if (!child) {
Al Viro9043476f2008-07-15 08:54:06 -0400196 child = d_alloc(dir, &qname);
197 if (child) {
198 inode = proc_sys_make_inode(dir->d_sb, head, table);
199 if (!inode) {
200 dput(child);
201 return -ENOMEM;
202 } else {
203 child->d_op = &proc_sys_dentry_operations;
204 d_add(child, inode);
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800205 }
Al Viro9043476f2008-07-15 08:54:06 -0400206 } else {
207 return -ENOMEM;
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800208 }
209 }
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800210 inode = child->d_inode;
Al Viro9043476f2008-07-15 08:54:06 -0400211 ino = inode->i_ino;
212 type = inode->i_mode >> 12;
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800213 dput(child);
Al Viro9043476f2008-07-15 08:54:06 -0400214 return !!filldir(dirent, qname.name, qname.len, filp->f_pos, ino, type);
215}
216
217static int scan(struct ctl_table_header *head, ctl_table *table,
218 unsigned long *pos, struct file *file,
219 void *dirent, filldir_t filldir)
220{
221
222 for (; table->ctl_name || table->procname; table++, (*pos)++) {
223 int res;
224
225 /* Can't do anything without a proc name */
226 if (!table->procname)
227 continue;
228
229 if (*pos < file->f_pos)
230 continue;
231
232 res = proc_sys_fill_cache(file, dirent, filldir, head, table);
233 if (res)
234 return res;
235
236 file->f_pos = *pos + 1;
237 }
238 return 0;
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800239}
240
241static int proc_sys_readdir(struct file *filp, void *dirent, filldir_t filldir)
242{
Al Viro9043476f2008-07-15 08:54:06 -0400243 struct dentry *dentry = filp->f_path.dentry;
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800244 struct inode *inode = dentry->d_inode;
Al Viro9043476f2008-07-15 08:54:06 -0400245 struct ctl_table_header *head = grab_header(inode);
246 struct ctl_table *table = PROC_I(inode)->sysctl_entry;
247 struct ctl_table_header *h = NULL;
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800248 unsigned long pos;
Al Viro9043476f2008-07-15 08:54:06 -0400249 int ret = -EINVAL;
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800250
Al Viro9043476f2008-07-15 08:54:06 -0400251 if (IS_ERR(head))
252 return PTR_ERR(head);
253
254 if (table && !table->child) {
255 WARN_ON(1);
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800256 goto out;
Al Viro9043476f2008-07-15 08:54:06 -0400257 }
258
259 table = table ? table->child : head->ctl_table;
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800260
261 ret = 0;
262 /* Avoid a switch here: arm builds fail with missing __cmpdi2 */
263 if (filp->f_pos == 0) {
264 if (filldir(dirent, ".", 1, filp->f_pos,
265 inode->i_ino, DT_DIR) < 0)
266 goto out;
267 filp->f_pos++;
268 }
269 if (filp->f_pos == 1) {
270 if (filldir(dirent, "..", 2, filp->f_pos,
271 parent_ino(dentry), DT_DIR) < 0)
272 goto out;
273 filp->f_pos++;
274 }
275 pos = 2;
276
Al Viro9043476f2008-07-15 08:54:06 -0400277 ret = scan(head, table, &pos, filp, dirent, filldir);
278 if (ret)
279 goto out;
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800280
Al Viro9043476f2008-07-15 08:54:06 -0400281 for (h = sysctl_head_next(NULL); h; h = sysctl_head_next(h)) {
282 if (h->attached_to != table)
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800283 continue;
Al Viro9043476f2008-07-15 08:54:06 -0400284 ret = scan(h, h->attached_by, &pos, filp, dirent, filldir);
285 if (ret) {
286 sysctl_head_finish(h);
287 break;
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800288 }
289 }
290 ret = 1;
291out:
292 sysctl_head_finish(head);
293 return ret;
294}
295
Al Viroe6305c42008-07-15 21:03:57 -0400296static int proc_sys_permission(struct inode *inode, int mask)
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800297{
298 /*
299 * sysctl entries that are not writeable,
300 * are _NOT_ writeable, capabilities or not.
301 */
Miklos Szeredif696a362008-07-31 13:41:58 +0200302 struct ctl_table_header *head;
303 struct ctl_table *table;
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800304 int error;
305
Miklos Szeredif696a362008-07-31 13:41:58 +0200306 /* Executable files are not allowed under /proc/sys/ */
307 if ((mask & MAY_EXEC) && S_ISREG(inode->i_mode))
308 return -EACCES;
309
310 head = grab_header(inode);
Al Viro9043476f2008-07-15 08:54:06 -0400311 if (IS_ERR(head))
312 return PTR_ERR(head);
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800313
Miklos Szeredif696a362008-07-31 13:41:58 +0200314 table = PROC_I(inode)->sysctl_entry;
Al Viro9043476f2008-07-15 08:54:06 -0400315 if (!table) /* global root - r-xr-xr-x */
316 error = mask & MAY_WRITE ? -EACCES : 0;
317 else /* Use the permissions on the sysctl table entry */
318 error = sysctl_perm(head->root, table, mask);
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800319
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800320 sysctl_head_finish(head);
321 return error;
322}
323
324static int proc_sys_setattr(struct dentry *dentry, struct iattr *attr)
325{
326 struct inode *inode = dentry->d_inode;
327 int error;
328
329 if (attr->ia_valid & (ATTR_MODE | ATTR_UID | ATTR_GID))
330 return -EPERM;
331
332 error = inode_change_ok(inode, attr);
John Johansen9d0633c2007-05-08 00:29:44 -0700333 if (!error)
334 error = inode_setattr(inode, attr);
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800335
336 return error;
337}
338
Al Viro9043476f2008-07-15 08:54:06 -0400339static int proc_sys_getattr(struct vfsmount *mnt, struct dentry *dentry, struct kstat *stat)
340{
341 struct inode *inode = dentry->d_inode;
342 struct ctl_table_header *head = grab_header(inode);
343 struct ctl_table *table = PROC_I(inode)->sysctl_entry;
344
345 if (IS_ERR(head))
346 return PTR_ERR(head);
347
348 generic_fillattr(inode, stat);
349 if (table)
350 stat->mode = (stat->mode & S_IFMT) | table->mode;
351
352 sysctl_head_finish(head);
353 return 0;
354}
355
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800356static const struct file_operations proc_sys_file_operations = {
357 .read = proc_sys_read,
358 .write = proc_sys_write,
Al Viro9043476f2008-07-15 08:54:06 -0400359};
360
361static const struct file_operations proc_sys_dir_file_operations = {
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800362 .readdir = proc_sys_readdir,
Christoph Hellwig3222a3e2008-09-03 21:53:01 +0200363 .llseek = generic_file_llseek,
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800364};
365
Jan Engelhardt03a44822008-02-08 04:21:19 -0800366static const struct inode_operations proc_sys_inode_operations = {
Al Viro9043476f2008-07-15 08:54:06 -0400367 .permission = proc_sys_permission,
368 .setattr = proc_sys_setattr,
369 .getattr = proc_sys_getattr,
370};
371
372static const struct inode_operations proc_sys_dir_operations = {
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800373 .lookup = proc_sys_lookup,
374 .permission = proc_sys_permission,
375 .setattr = proc_sys_setattr,
Al Viro9043476f2008-07-15 08:54:06 -0400376 .getattr = proc_sys_getattr,
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800377};
378
379static int proc_sys_revalidate(struct dentry *dentry, struct nameidata *nd)
380{
Al Viro9043476f2008-07-15 08:54:06 -0400381 return !PROC_I(dentry->d_inode)->sysctl->unregistering;
382}
383
384static int proc_sys_delete(struct dentry *dentry)
385{
386 return !!PROC_I(dentry->d_inode)->sysctl->unregistering;
387}
388
389static int proc_sys_compare(struct dentry *dir, struct qstr *qstr,
390 struct qstr *name)
391{
392 struct dentry *dentry = container_of(qstr, struct dentry, d_name);
393 if (qstr->len != name->len)
394 return 1;
395 if (memcmp(qstr->name, name->name, name->len))
396 return 1;
397 return !sysctl_is_seen(PROC_I(dentry->d_inode)->sysctl);
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800398}
399
400static struct dentry_operations proc_sys_dentry_operations = {
401 .d_revalidate = proc_sys_revalidate,
Al Viro9043476f2008-07-15 08:54:06 -0400402 .d_delete = proc_sys_delete,
403 .d_compare = proc_sys_compare,
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800404};
405
Alexey Dobriyan1e0edd32008-10-17 05:07:44 +0400406int __init proc_sys_init(void)
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800407{
Alexey Dobriyane1675232008-10-03 00:23:32 +0400408 struct proc_dir_entry *proc_sys_root;
409
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800410 proc_sys_root = proc_mkdir("sys", NULL);
Al Viro9043476f2008-07-15 08:54:06 -0400411 proc_sys_root->proc_iops = &proc_sys_dir_operations;
412 proc_sys_root->proc_fops = &proc_sys_dir_file_operations;
Eric W. Biederman77b14db2007-02-14 00:34:12 -0800413 proc_sys_root->nlink = 0;
414 return 0;
415}