Home Explore Help
Register Sign In
phyus
/
linux-vybrid_public
8
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 8d82e180b5
Branches Tags
linux-vybrid_pu...
/
fs
/
file.c

file.c 23 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394959697989910010110210310410510610710810911011111211311411511611711811912012112212312412512612712812913013113213313413513613713813914014114214314414514614714814915015115215315415515615715815916016116216316416516616716816917017117217317417517617717817918018118218318418518618718818919019119219319419519619719819920020120220320420520620720820921021121221321421521621721821922022122222322422522622722822923023123223323423523623723823924024124224324424524624724824925025125225325425525625725825926026126226326426526626726826927027127227327427527627727827928028128228328428528628728828929029129229329429529629729829930030130230330430530630730830931031131231331431531631731831932032132232332432532632732832933033133233333433533633733833934034134234334434534634734834935035135235335435535635735835936036136236336436536636736836937037137237337437537637737837938038138238338438538638738838939039139239339439539639739839940040140240340440540640740840941041141241341441541641741841942042142242342442542642742842943043143243343443543643743843944044144244344444544644744844945045145245345445545645745845946046146246346446546646746846947047147247347447547647747847948048148248348448548648748848949049149249349449549649749849950050150250350450550650750850951051151251351451551651751851952052152252352452552652752852953053153253353453553653753853954054154254354454554654754854955055155255355455555655755855956056156256356456556656756856957057157257357457557657757857958058158258358458558658758858959059159259359459559659759859960060160260360460560660760860961061161261361461561661761861962062162262362462562662762862963063163263363463563663763863964064164264364464564664764864965065165265365465565665765865966066166266366466566666766866967067167267367467567667767867968068168268368468568668768868969069169269369469569669769869970070170270370470570670770870971071171271371471571671771871972072172272372472572672772872973073173273373473573673773873974074174274374474574674774874975075175275375475575675775875976076176276376476576676776876977077177277377477577677777877978078178278378478578678778878979079179279379479579679779879980080180280380480580680780880981081181281381481581681781881982082182282382482582682782882983083183283383483583683783883984084184284384484584684784884985085185285385485585685785885986086186286386486586686786886987087187287387487587687787887988088188288388488588688788888989089189289389489589689789889990090190290390490590690790890991091191291391491591691791891992092192292392492592692792892993093193293393493593693793893994094194294394494594694794894995095195295395495595695795895996096196296396496596696796896997097197297397497597697797897998098198298398498598698798898999099199299399499599699799899910001001100210031004100510061007 
  1. /*
    2. 

  2.  *  linux/fs/file.c
    3. 

  3.  *
    4. 

  4.  *  Copyright (C) 1998-1999, Stephen Tweedie and Bill Hawes
    5. 

  5.  *
    6. 

  6.  *  Manage the dynamic fd arrays in the process files_struct.
    7. 

  7.  */
    8. 

  8. 

  9. #include <linux/syscalls.h>
    10. 

  10. #include <linux/export.h>
    11. 

  11. #include <linux/fs.h>
    12. 

  12. #include <linux/mm.h>
    13. 

  13. #include <linux/mmzone.h>
    14. 

  14. #include <linux/time.h>
    15. 

  15. #include <linux/sched.h>
    16. 

  16. #include <linux/slab.h>
    17. 

  17. #include <linux/vmalloc.h>
    18. 

  18. #include <linux/file.h>
    19. 

  19. #include <linux/fdtable.h>
    20. 

  20. #include <linux/bitops.h>
    21. 

  21. #include <linux/interrupt.h>
    22. 

  22. #include <linux/spinlock.h>
    23. 

  23. #include <linux/rcupdate.h>
    24. 

  24. #include <linux/workqueue.h>
    25. 

  25. 

  26. struct fdtable_defer {
    27. 

  27. 	spinlock_t lock;
    28. 

  28. 	struct work_struct wq;
    29. 

  29. 	struct fdtable *next;
    30. 

  30. };
    31. 

  31. 

  32. int sysctl_nr_open __read_mostly = 1024*1024;
    33. 

  33. int sysctl_nr_open_min = BITS_PER_LONG;
    34. 

  34. int sysctl_nr_open_max = 1024 * 1024; /* raised later */
    35. 

  35. 

  36. /*
    37. 

  37.  * We use this list to defer free fdtables that have vmalloced
    38. 

  38.  * sets/arrays. By keeping a per-cpu list, we avoid having to embed
    39. 

  39.  * the work_struct in fdtable itself which avoids a 64 byte (i386) increase in
    40. 

  40.  * this per-task structure.
    41. 

  41.  */
    42. 

  42. static DEFINE_PER_CPU(struct fdtable_defer, fdtable_defer_list);
    43. 

  43. 

  44. static void *alloc_fdmem(size_t size)
    45. 

  45. {
    46. 

  46. 	/*
    47. 

  47. 	 * Very large allocations can stress page reclaim, so fall back to
    48. 

  48. 	 * vmalloc() if the allocation size will be considered "large" by the VM.
    49. 

  49. 	 */
    50. 

  50. 	if (size <= (PAGE_SIZE << PAGE_ALLOC_COSTLY_ORDER)) {
    51. 

  51. 		void *data = kmalloc(size, GFP_KERNEL|__GFP_NOWARN);
    52. 

  52. 		if (data != NULL)
    53. 

  53. 			return data;
    54. 

  54. 	}
    55. 

  55. 	return vmalloc(size);
    56. 

  56. }
    57. 

  57. 

  58. static void free_fdmem(void *ptr)
    59. 

  59. {
    60. 

  60. 	is_vmalloc_addr(ptr) ? vfree(ptr) : kfree(ptr);
    61. 

  61. }
    62. 

  62. 

  63. static void __free_fdtable(struct fdtable *fdt)
    64. 

  64. {
    65. 

  65. 	free_fdmem(fdt->fd);
    66. 

  66. 	free_fdmem(fdt->open_fds);
    67. 

  67. 	kfree(fdt);
    68. 

  68. }
    69. 

  69. 

  70. static void free_fdtable_work(struct work_struct *work)
    71. 

  71. {
    72. 

  72. 	struct fdtable_defer *f =
    73. 

  73. 		container_of(work, struct fdtable_defer, wq);
    74. 

  74. 	struct fdtable *fdt;
    75. 

  75. 

  76. 	spin_lock_bh(&f->lock);
    77. 

  77. 	fdt = f->next;
    78. 

  78. 	f->next = NULL;
    79. 

  79. 	spin_unlock_bh(&f->lock);
    80. 

  80. 	while(fdt) {
    81. 

  81. 		struct fdtable *next = fdt->next;
    82. 

  82. 

  83. 		__free_fdtable(fdt);
    84. 

  84. 		fdt = next;
    85. 

  85. 	}
    86. 

  86. }
    87. 

  87. 

  88. static void free_fdtable_rcu(struct rcu_head *rcu)
    89. 

  89. {
    90. 

  90. 	struct fdtable *fdt = container_of(rcu, struct fdtable, rcu);
    91. 

  91. 	struct fdtable_defer *fddef;
    92. 

  92. 

  93. 	BUG_ON(!fdt);
    94. 

  94. 	BUG_ON(fdt->max_fds <= NR_OPEN_DEFAULT);
    95. 

  95. 

  96. 	if (!is_vmalloc_addr(fdt->fd) && !is_vmalloc_addr(fdt->open_fds)) {
    97. 

  97. 		kfree(fdt->fd);
    98. 

  98. 		kfree(fdt->open_fds);
    99. 

  99. 		kfree(fdt);
    100. 

  100. 	} else {
    101. 

  101. 		fddef = &get_cpu_var(fdtable_defer_list);
    102. 

  102. 		spin_lock(&fddef->lock);
    103. 

  103. 		fdt->next = fddef->next;
    104. 

  104. 		fddef->next = fdt;
    105. 

  105. 		/* vmallocs are handled from the workqueue context */
    106. 

  106. 		schedule_work(&fddef->wq);
    107. 

  107. 		spin_unlock(&fddef->lock);
    108. 

  108. 		put_cpu_var(fdtable_defer_list);
    109. 

  109. 	}
    110. 

  110. }
    111. 

  111. 

  112. /*
    113. 

  113.  * Expand the fdset in the files_struct.  Called with the files spinlock
    114. 

  114.  * held for write.
    115. 

  115.  */
    116. 

  116. static void copy_fdtable(struct fdtable *nfdt, struct fdtable *ofdt)
    117. 

  117. {
    118. 

  118. 	unsigned int cpy, set;
    119. 

  119. 

  120. 	BUG_ON(nfdt->max_fds < ofdt->max_fds);
    121. 

  121. 

  122. 	cpy = ofdt->max_fds * sizeof(struct file *);
    123. 

  123. 	set = (nfdt->max_fds - ofdt->max_fds) * sizeof(struct file *);
    124. 

  124. 	memcpy(nfdt->fd, ofdt->fd, cpy);
    125. 

  125. 	memset((char *)(nfdt->fd) + cpy, 0, set);
    126. 

  126. 

  127. 	cpy = ofdt->max_fds / BITS_PER_BYTE;
    128. 

  128. 	set = (nfdt->max_fds - ofdt->max_fds) / BITS_PER_BYTE;
    129. 

  129. 	memcpy(nfdt->open_fds, ofdt->open_fds, cpy);
    130. 

  130. 	memset((char *)(nfdt->open_fds) + cpy, 0, set);
    131. 

  131. 	memcpy(nfdt->close_on_exec, ofdt->close_on_exec, cpy);
    132. 

  132. 	memset((char *)(nfdt->close_on_exec) + cpy, 0, set);
    133. 

  133. }
    134. 

  134. 

  135. static struct fdtable * alloc_fdtable(unsigned int nr)
    136. 

  136. {
    137. 

  137. 	struct fdtable *fdt;
    138. 

  138. 	void *data;
    139. 

  139. 

  140. 	/*
    141. 

  141. 	 * Figure out how many fds we actually want to support in this fdtable.
    142. 

  142. 	 * Allocation steps are keyed to the size of the fdarray, since it
    143. 

  143. 	 * grows far faster than any of the other dynamic data. We try to fit
    144. 

  144. 	 * the fdarray into comfortable page-tuned chunks: starting at 1024B
    145. 

  145. 	 * and growing in powers of two from there on.
    146. 

  146. 	 */
    147. 

  147. 	nr /= (1024 / sizeof(struct file *));
    148. 

  148. 	nr = roundup_pow_of_two(nr + 1);
    149. 

  149. 	nr *= (1024 / sizeof(struct file *));
    150. 

  150. 	/*
    151. 

  151. 	 * Note that this can drive nr *below* what we had passed if sysctl_nr_open
    152. 

  152. 	 * had been set lower between the check in expand_files() and here.  Deal
    153. 

  153. 	 * with that in caller, it's cheaper that way.
    154. 

  154. 	 *
    155. 

  155. 	 * We make sure that nr remains a multiple of BITS_PER_LONG - otherwise
    156. 

  156. 	 * bitmaps handling below becomes unpleasant, to put it mildly...
    157. 

  157. 	 */
    158. 

  158. 	if (unlikely(nr > sysctl_nr_open))
    159. 

  159. 		nr = ((sysctl_nr_open - 1) | (BITS_PER_LONG - 1)) + 1;
    160. 

  160. 

  161. 	fdt = kmalloc(sizeof(struct fdtable), GFP_KERNEL);
    162. 

  162. 	if (!fdt)
    163. 

  163. 		goto out;
    164. 

  164. 	fdt->max_fds = nr;
    165. 

  165. 	data = alloc_fdmem(nr * sizeof(struct file *));
    166. 

  166. 	if (!data)
    167. 

  167. 		goto out_fdt;
    168. 

  168. 	fdt->fd = data;
    169. 

  169. 

  170. 	data = alloc_fdmem(max_t(size_t,
    171. 

  171. 				 2 * nr / BITS_PER_BYTE, L1_CACHE_BYTES));
    172. 

  172. 	if (!data)
    173. 

  173. 		goto out_arr;
    174. 

  174. 	fdt->open_fds = data;
    175. 

  175. 	data += nr / BITS_PER_BYTE;
    176. 

  176. 	fdt->close_on_exec = data;
    177. 

  177. 	fdt->next = NULL;
    178. 

  178. 

  179. 	return fdt;
    180. 

  180. 

  181. out_arr:
    182. 

  182. 	free_fdmem(fdt->fd);
    183. 

  183. out_fdt:
    184. 

  184. 	kfree(fdt);
    185. 

  185. out:
    186. 

  186. 	return NULL;
    187. 

  187. }
    188. 

  188. 

  189. /*
    190. 

  190.  * Expand the file descriptor table.
    191. 

  191.  * This function will allocate a new fdtable and both fd array and fdset, of
    192. 

  192.  * the given size.
    193. 

  193.  * Return <0 error code on error; 1 on successful completion.
    194. 

  194.  * The files->file_lock should be held on entry, and will be held on exit.
    195. 

  195.  */
    196. 

  196. static int expand_fdtable(struct files_struct *files, int nr)
    197. 

  197. 	__releases(files->file_lock)
    198. 

  198. 	__acquires(files->file_lock)
    199. 

  199. {
    200. 

  200. 	struct fdtable *new_fdt, *cur_fdt;
    201. 

  201. 

  202. 	spin_unlock(&files->file_lock);
    203. 

  203. 	new_fdt = alloc_fdtable(nr);
    204. 

  204. 	spin_lock(&files->file_lock);
    205. 

  205. 	if (!new_fdt)
    206. 

  206. 		return -ENOMEM;
    207. 

  207. 	/*
    208. 

  208. 	 * extremely unlikely race - sysctl_nr_open decreased between the check in
    209. 

  209. 	 * caller and alloc_fdtable().  Cheaper to catch it here...
    210. 

  210. 	 */
    211. 

  211. 	if (unlikely(new_fdt->max_fds <= nr)) {
    212. 

  212. 		__free_fdtable(new_fdt);
    213. 

  213. 		return -EMFILE;
    214. 

  214. 	}
    215. 

  215. 	/*
    216. 

  216. 	 * Check again since another task may have expanded the fd table while
    217. 

  217. 	 * we dropped the lock
    218. 

  218. 	 */
    219. 

  219. 	cur_fdt = files_fdtable(files);
    220. 

  220. 	if (nr >= cur_fdt->max_fds) {
    221. 

  221. 		/* Continue as planned */
    222. 

  222. 		copy_fdtable(new_fdt, cur_fdt);
    223. 

  223. 		rcu_assign_pointer(files->fdt, new_fdt);
    224. 

  224. 		if (cur_fdt->max_fds > NR_OPEN_DEFAULT)
    225. 

  225. 			call_rcu(&cur_fdt->rcu, free_fdtable_rcu);
    226. 

  226. 	} else {
    227. 

  227. 		/* Somebody else expanded, so undo our attempt */
    228. 

  228. 		__free_fdtable(new_fdt);
    229. 

  229. 	}
    230. 

  230. 	return 1;
    231. 

  231. }
    232. 

  232. 

  233. /*
    234. 

  234.  * Expand files.
    235. 

  235.  * This function will expand the file structures, if the requested size exceeds
    236. 

  236.  * the current capacity and there is room for expansion.
    237. 

  237.  * Return <0 error code on error; 0 when nothing done; 1 when files were
    238. 

  238.  * expanded and execution may have blocked.
    239. 

  239.  * The files->file_lock should be held on entry, and will be held on exit.
    240. 

  240.  */
    241. 

  241. static int expand_files(struct files_struct *files, int nr)
    242. 

  242. {
    243. 

  243. 	struct fdtable *fdt;
    244. 

  244. 

  245. 	fdt = files_fdtable(files);
    246. 

  246. 

  247. 	/* Do we need to expand? */
    248. 

  248. 	if (nr < fdt->max_fds)
    249. 

  249. 		return 0;
    250. 

  250. 

  251. 	/* Can we expand? */
    252. 

  252. 	if (nr >= sysctl_nr_open)
    253. 

  253. 		return -EMFILE;
    254. 

  254. 

  255. 	/* All good, so we try */
    256. 

  256. 	return expand_fdtable(files, nr);
    257. 

  257. }
    258. 

  258. 

  259. static inline void __set_close_on_exec(int fd, struct fdtable *fdt)
    260. 

  260. {
    261. 

  261. 	__set_bit(fd, fdt->close_on_exec);
    262. 

  262. }
    263. 

  263. 

  264. static inline void __clear_close_on_exec(int fd, struct fdtable *fdt)
    265. 

  265. {
    266. 

  266. 	__clear_bit(fd, fdt->close_on_exec);
    267. 

  267. }
    268. 

  268. 

  269. static inline void __set_open_fd(int fd, struct fdtable *fdt)
    270. 

  270. {
    271. 

  271. 	__set_bit(fd, fdt->open_fds);
    272. 

  272. }
    273. 

  273. 

  274. static inline void __clear_open_fd(int fd, struct fdtable *fdt)
    275. 

  275. {
    276. 

  276. 	__clear_bit(fd, fdt->open_fds);
    277. 

  277. }
    278. 

  278. 

  279. static int count_open_files(struct fdtable *fdt)
    280. 

  280. {
    281. 

  281. 	int size = fdt->max_fds;
    282. 

  282. 	int i;
    283. 

  283. 

  284. 	/* Find the last open fd */
    285. 

  285. 	for (i = size / BITS_PER_LONG; i > 0; ) {
    286. 

  286. 		if (fdt->open_fds[--i])
    287. 

  287. 			break;
    288. 

  288. 	}
    289. 

  289. 	i = (i + 1) * BITS_PER_LONG;
    290. 

  290. 	return i;
    291. 

  291. }
    292. 

  292. 

  293. /*
    294. 

  294.  * Allocate a new files structure and copy contents from the
    295. 

  295.  * passed in files structure.
    296. 

  296.  * errorp will be valid only when the returned files_struct is NULL.
    297. 

  297.  */
    298. 

  298. struct files_struct *dup_fd(struct files_struct *oldf, int *errorp)
    299. 

  299. {
    300. 

  300. 	struct files_struct *newf;
    301. 

  301. 	struct file **old_fds, **new_fds;
    302. 

  302. 	int open_files, size, i;
    303. 

  303. 	struct fdtable *old_fdt, *new_fdt;
    304. 

  304. 

  305. 	*errorp = -ENOMEM;
    306. 

  306. 	newf = kmem_cache_alloc(files_cachep, GFP_KERNEL);
    307. 

  307. 	if (!newf)
    308. 

  308. 		goto out;
    309. 

  309. 

  310. 	atomic_set(&newf->count, 1);
    311. 

  311. 

  312. 	spin_lock_init(&newf->file_lock);
    313. 

  313. 	newf->next_fd = 0;
    314. 

  314. 	new_fdt = &newf->fdtab;
    315. 

  315. 	new_fdt->max_fds = NR_OPEN_DEFAULT;
    316. 

  316. 	new_fdt->close_on_exec = newf->close_on_exec_init;
    317. 

  317. 	new_fdt->open_fds = newf->open_fds_init;
    318. 

  318. 	new_fdt->fd = &newf->fd_array[0];
    319. 

  319. 	new_fdt->next = NULL;
    320. 

  320. 

  321. 	spin_lock(&oldf->file_lock);
    322. 

  322. 	old_fdt = files_fdtable(oldf);
    323. 

  323. 	open_files = count_open_files(old_fdt);
    324. 

  324. 

  325. 	/*
    326. 

  326. 	 * Check whether we need to allocate a larger fd array and fd set.
    327. 

  327. 	 */
    328. 

  328. 	while (unlikely(open_files > new_fdt->max_fds)) {
    329. 

  329. 		spin_unlock(&oldf->file_lock);
    330. 

  330. 

  331. 		if (new_fdt != &newf->fdtab)
    332. 

  332. 			__free_fdtable(new_fdt);
    333. 

  333. 

  334. 		new_fdt = alloc_fdtable(open_files - 1);
    335. 

  335. 		if (!new_fdt) {
    336. 

  336. 			*errorp = -ENOMEM;
    337. 

  337. 			goto out_release;
    338. 

  338. 		}
    339. 

  339. 

  340. 		/* beyond sysctl_nr_open; nothing to do */
    341. 

  341. 		if (unlikely(new_fdt->max_fds < open_files)) {
    342. 

  342. 			__free_fdtable(new_fdt);
    343. 

  343. 			*errorp = -EMFILE;
    344. 

  344. 			goto out_release;
    345. 

  345. 		}
    346. 

  346. 

  347. 		/*
    348. 

  348. 		 * Reacquire the oldf lock and a pointer to its fd table
    349. 

  349. 		 * who knows it may have a new bigger fd table. We need
    350. 

  350. 		 * the latest pointer.
    351. 

  351. 		 */
    352. 

  352. 		spin_lock(&oldf->file_lock);
    353. 

  353. 		old_fdt = files_fdtable(oldf);
    354. 

  354. 		open_files = count_open_files(old_fdt);
    355. 

  355. 	}
    356. 

  356. 

  357. 	old_fds = old_fdt->fd;
    358. 

  358. 	new_fds = new_fdt->fd;
    359. 

  359. 

  360. 	memcpy(new_fdt->open_fds, old_fdt->open_fds, open_files / 8);
    361. 

  361. 	memcpy(new_fdt->close_on_exec, old_fdt->close_on_exec, open_files / 8);
    362. 

  362. 

  363. 	for (i = open_files; i != 0; i--) {
    364. 

  364. 		struct file *f = *old_fds++;
    365. 

  365. 		if (f) {
    366. 

  366. 			get_file(f);
    367. 

  367. 		} else {
    368. 

  368. 			/*
    369. 

  369. 			 * The fd may be claimed in the fd bitmap but not yet
    370. 

  370. 			 * instantiated in the files array if a sibling thread
    371. 

  371. 			 * is partway through open().  So make sure that this
    372. 

  372. 			 * fd is available to the new process.
    373. 

  373. 			 */
    374. 

  374. 			__clear_open_fd(open_files - i, new_fdt);
    375. 

  375. 		}
    376. 

  376. 		rcu_assign_pointer(*new_fds++, f);
    377. 

  377. 	}
    378. 

  378. 	spin_unlock(&oldf->file_lock);
    379. 

  379. 

  380. 	/* compute the remainder to be cleared */
    381. 

  381. 	size = (new_fdt->max_fds - open_files) * sizeof(struct file *);
    382. 

  382. 

  383. 	/* This is long word aligned thus could use a optimized version */
    384. 

  384. 	memset(new_fds, 0, size);
    385. 

  385. 

  386. 	if (new_fdt->max_fds > open_files) {
    387. 

  387. 		int left = (new_fdt->max_fds - open_files) / 8;
    388. 

  388. 		int start = open_files / BITS_PER_LONG;
    389. 

  389. 

  390. 		memset(&new_fdt->open_fds[start], 0, left);
    391. 

  391. 		memset(&new_fdt->close_on_exec[start], 0, left);
    392. 

  392. 	}
    393. 

  393. 

  394. 	rcu_assign_pointer(newf->fdt, new_fdt);
    395. 

  395. 

  396. 	return newf;
    397. 

  397. 

  398. out_release:
    399. 

  399. 	kmem_cache_free(files_cachep, newf);
    400. 

  400. out:
    401. 

  401. 	return NULL;
    402. 

  402. }
    403. 

  403. 

  404. static void close_files(struct files_struct * files)
    405. 

  405. {
    406. 

  406. 	int i, j;
    407. 

  407. 	struct fdtable *fdt;
    408. 

  408. 

  409. 	j = 0;
    410. 

  410. 

  411. 	/*
    412. 

  412. 	 * It is safe to dereference the fd table without RCU or
    413. 

  413. 	 * ->file_lock because this is the last reference to the
    414. 

  414. 	 * files structure.  But use RCU to shut RCU-lockdep up.
    415. 

  415. 	 */
    416. 

  416. 	rcu_read_lock();
    417. 

  417. 	fdt = files_fdtable(files);
    418. 

  418. 	rcu_read_unlock();
    419. 

  419. 	for (;;) {
    420. 

  420. 		unsigned long set;
    421. 

  421. 		i = j * BITS_PER_LONG;
    422. 

  422. 		if (i >= fdt->max_fds)
    423. 

  423. 			break;
    424. 

  424. 		set = fdt->open_fds[j++];
    425. 

  425. 		while (set) {
    426. 

  426. 			if (set & 1) {
    427. 

  427. 				struct file * file = xchg(&fdt->fd[i], NULL);
    428. 

  428. 				if (file) {
    429. 

  429. 					filp_close(file, files);
    430. 

  430. 					cond_resched();
    431. 

  431. 				}
    432. 

  432. 			}
    433. 

  433. 			i++;
    434. 

  434. 			set >>= 1;
    435. 

  435. 		}
    436. 

  436. 	}
    437. 

  437. }
    438. 

  438. 

  439. struct files_struct *get_files_struct(struct task_struct *task)
    440. 

  440. {
    441. 

  441. 	struct files_struct *files;
    442. 

  442. 

  443. 	task_lock(task);
    444. 

  444. 	files = task->files;
    445. 

  445. 	if (files)
    446. 

  446. 		atomic_inc(&files->count);
    447. 

  447. 	task_unlock(task);
    448. 

  448. 

  449. 	return files;
    450. 

  450. }
    451. 

  451. 

  452. void put_files_struct(struct files_struct *files)
    453. 

  453. {
    454. 

  454. 	struct fdtable *fdt;
    455. 

  455. 

  456. 	if (atomic_dec_and_test(&files->count)) {
    457. 

  457. 		close_files(files);
    458. 

  458. 		/* not really needed, since nobody can see us */
    459. 

  459. 		rcu_read_lock();
    460. 

  460. 		fdt = files_fdtable(files);
    461. 

  461. 		rcu_read_unlock();
    462. 

  462. 		/* free the arrays if they are not embedded */
    463. 

  463. 		if (fdt != &files->fdtab)
    464. 

  464. 			__free_fdtable(fdt);
    465. 

  465. 		kmem_cache_free(files_cachep, files);
    466. 

  466. 	}
    467. 

  467. }
    468. 

  468. 

  469. void reset_files_struct(struct files_struct *files)
    470. 

  470. {
    471. 

  471. 	struct task_struct *tsk = current;
    472. 

  472. 	struct files_struct *old;
    473. 

  473. 

  474. 	old = tsk->files;
    475. 

  475. 	task_lock(tsk);
    476. 

  476. 	tsk->files = files;
    477. 

  477. 	task_unlock(tsk);
    478. 

  478. 	put_files_struct(old);
    479. 

  479. }
    480. 

  480. 

  481. void exit_files(struct task_struct *tsk)
    482. 

  482. {
    483. 

  483. 	struct files_struct * files = tsk->files;
    484. 

  484. 

  485. 	if (files) {
    486. 

  486. 		task_lock(tsk);
    487. 

  487. 		tsk->files = NULL;
    488. 

  488. 		task_unlock(tsk);
    489. 

  489. 		put_files_struct(files);
    490. 

  490. 	}
    491. 

  491. }
    492. 

  492. 

  493. static void fdtable_defer_list_init(int cpu)
    494. 

  494. {
    495. 

  495. 	struct fdtable_defer *fddef = &per_cpu(fdtable_defer_list, cpu);
    496. 

  496. 	spin_lock_init(&fddef->lock);
    497. 

  497. 	INIT_WORK(&fddef->wq, free_fdtable_work);
    498. 

  498. 	fddef->next = NULL;
    499. 

  499. }
    500. 

  500. 

  501. void __init files_defer_init(void)
    502. 

  502. {
    503. 

  503. 	int i;
    504. 

  504. 	for_each_possible_cpu(i)
    505. 

  505. 		fdtable_defer_list_init(i);
    506. 

  506. 	sysctl_nr_open_max = min((size_t)INT_MAX, ~(size_t)0/sizeof(void *)) &
    507. 

  507. 			     -BITS_PER_LONG;
    508. 

  508. }
    509. 

  509. 

  510. struct files_struct init_files = {
    511. 

  511. 	.count		= ATOMIC_INIT(1),
    512. 

  512. 	.fdt		= &init_files.fdtab,
    513. 

  513. 	.fdtab		= {
    514. 

  514. 		.max_fds	= NR_OPEN_DEFAULT,
    515. 

  515. 		.fd		= &init_files.fd_array[0],
    516. 

  516. 		.close_on_exec	= init_files.close_on_exec_init,
    517. 

  517. 		.open_fds	= init_files.open_fds_init,
    518. 

  518. 	},
    519. 

  519. 	.file_lock	= __SPIN_LOCK_UNLOCKED(init_files.file_lock),
    520. 

  520. };
    521. 

  521. 

  522. /*
    523. 

  523.  * allocate a file descriptor, mark it busy.
    524. 

  524.  */
    525. 

  525. int __alloc_fd(struct files_struct *files,
    526. 

  526. 	       unsigned start, unsigned end, unsigned flags)
    527. 

  527. {
    528. 

  528. 	unsigned int fd;
    529. 

  529. 	int error;
    530. 

  530. 	struct fdtable *fdt;
    531. 

  531. 

  532. 	spin_lock(&files->file_lock);
    533. 

  533. repeat:
    534. 

  534. 	fdt = files_fdtable(files);
    535. 

  535. 	fd = start;
    536. 

  536. 	if (fd < files->next_fd)
    537. 

  537. 		fd = files->next_fd;
    538. 

  538. 

  539. 	if (fd < fdt->max_fds)
    540. 

  540. 		fd = find_next_zero_bit(fdt->open_fds, fdt->max_fds, fd);
    541. 

  541. 

  542. 	/*
    543. 

  543. 	 * N.B. For clone tasks sharing a files structure, this test
    544. 

  544. 	 * will limit the total number of files that can be opened.
    545. 

  545. 	 */
    546. 

  546. 	error = -EMFILE;
    547. 

  547. 	if (fd >= end)
    548. 

  548. 		goto out;
    549. 

  549. 

  550. 	error = expand_files(files, fd);
    551. 

  551. 	if (error < 0)
    552. 

  552. 		goto out;
    553. 

  553. 

  554. 	/*
    555. 

  555. 	 * If we needed to expand the fs array we
    556. 

  556. 	 * might have blocked - try again.
    557. 

  557. 	 */
    558. 

  558. 	if (error)
    559. 

  559. 		goto repeat;
    560. 

  560. 

  561. 	if (start <= files->next_fd)
    562. 

  562. 		files->next_fd = fd + 1;
    563. 

  563. 

  564. 	__set_open_fd(fd, fdt);
    565. 

  565. 	if (flags & O_CLOEXEC)
    566. 

  566. 		__set_close_on_exec(fd, fdt);
    567. 

  567. 	else
    568. 

  568. 		__clear_close_on_exec(fd, fdt);
    569. 

  569. 	error = fd;
    570. 

  570. #if 1
    571. 

  571. 	/* Sanity check */
    572. 

  572. 	if (rcu_dereference_raw(fdt->fd[fd]) != NULL) {
    573. 

  573. 		printk(KERN_WARNING "alloc_fd: slot %d not NULL!\n", fd);
    574. 

  574. 		rcu_assign_pointer(fdt->fd[fd], NULL);
    575. 

  575. 	}
    576. 

  576. #endif
    577. 

  577. 

  578. out:
    579. 

  579. 	spin_unlock(&files->file_lock);
    580. 

  580. 	return error;
    581. 

  581. }
    582. 

  582. 

  583. static int alloc_fd(unsigned start, unsigned flags)
    584. 

  584. {
    585. 

  585. 	return __alloc_fd(current->files, start, rlimit(RLIMIT_NOFILE), flags);
    586. 

  586. }
    587. 

  587. 

  588. int get_unused_fd_flags(unsigned flags)
    589. 

  589. {
    590. 

  590. 	return __alloc_fd(current->files, 0, rlimit(RLIMIT_NOFILE), flags);
    591. 

  591. }
    592. 

  592. EXPORT_SYMBOL(get_unused_fd_flags);
    593. 

  593. 

  594. static void __put_unused_fd(struct files_struct *files, unsigned int fd)
    595. 

  595. {
    596. 

  596. 	struct fdtable *fdt = files_fdtable(files);
    597. 

  597. 	__clear_open_fd(fd, fdt);
    598. 

  598. 	if (fd < files->next_fd)
    599. 

  599. 		files->next_fd = fd;
    600. 

  600. }
    601. 

  601. 

  602. void put_unused_fd(unsigned int fd)
    603. 

  603. {
    604. 

  604. 	struct files_struct *files = current->files;
    605. 

  605. 	spin_lock(&files->file_lock);
    606. 

  606. 	__put_unused_fd(files, fd);
    607. 

  607. 	spin_unlock(&files->file_lock);
    608. 

  608. }
    609. 

  609. 

  610. EXPORT_SYMBOL(put_unused_fd);
    611. 

  611. 

  612. /*
    613. 

  613.  * Install a file pointer in the fd array.
    614. 

  614.  *
    615. 

  615.  * The VFS is full of places where we drop the files lock between
    616. 

  616.  * setting the open_fds bitmap and installing the file in the file
    617. 

  617.  * array.  At any such point, we are vulnerable to a dup2() race
    618. 

  618.  * installing a file in the array before us.  We need to detect this and
    619. 

  619.  * fput() the struct file we are about to overwrite in this case.
    620. 

  620.  *
    621. 

  621.  * It should never happen - if we allow dup2() do it, _really_ bad things
    622. 

  622.  * will follow.
    623. 

  623.  *
    624. 

  624.  * NOTE: __fd_install() variant is really, really low-level; don't
    625. 

  625.  * use it unless you are forced to by truly lousy API shoved down
    626. 

  626.  * your throat.  'files' *MUST* be either current->files or obtained
    627. 

  627.  * by get_files_struct(current) done by whoever had given it to you,
    628. 

  628.  * or really bad things will happen.  Normally you want to use
    629. 

  629.  * fd_install() instead.
    630. 

  630.  */
    631. 

  631. 

  632. void __fd_install(struct files_struct *files, unsigned int fd,
    633. 

  633. 		struct file *file)
    634. 

  634. {
    635. 

  635. 	struct fdtable *fdt;
    636. 

  636. 	spin_lock(&files->file_lock);
    637. 

  637. 	fdt = files_fdtable(files);
    638. 

  638. 	BUG_ON(fdt->fd[fd] != NULL);
    639. 

  639. 	rcu_assign_pointer(fdt->fd[fd], file);
    640. 

  640. 	spin_unlock(&files->file_lock);
    641. 

  641. }
    642. 

  642. 

  643. void fd_install(unsigned int fd, struct file *file)
    644. 

  644. {
    645. 

  645. 	__fd_install(current->files, fd, file);
    646. 

  646. }
    647. 

  647. 

  648. EXPORT_SYMBOL(fd_install);
    649. 

  649. 

  650. /*
    651. 

  651.  * The same warnings as for __alloc_fd()/__fd_install() apply here...
    652. 

  652.  */
    653. 

  653. int __close_fd(struct files_struct *files, unsigned fd)
    654. 

  654. {
    655. 

  655. 	struct file *file;
    656. 

  656. 	struct fdtable *fdt;
    657. 

  657. 

  658. 	spin_lock(&files->file_lock);
    659. 

  659. 	fdt = files_fdtable(files);
    660. 

  660. 	if (fd >= fdt->max_fds)
    661. 

  661. 		goto out_unlock;
    662. 

  662. 	file = fdt->fd[fd];
    663. 

  663. 	if (!file)
    664. 

  664. 		goto out_unlock;
    665. 

  665. 	rcu_assign_pointer(fdt->fd[fd], NULL);
    666. 

  666. 	__clear_close_on_exec(fd, fdt);
    667. 

  667. 	__put_unused_fd(files, fd);
    668. 

  668. 	spin_unlock(&files->file_lock);
    669. 

  669. 	return filp_close(file, files);
    670. 

  670. 

  671. out_unlock:
    672. 

  672. 	spin_unlock(&files->file_lock);
    673. 

  673. 	return -EBADF;
    674. 

  674. }
    675. 

  675. 

  676. void do_close_on_exec(struct files_struct *files)
    677. 

  677. {
    678. 

  678. 	unsigned i;
    679. 

  679. 	struct fdtable *fdt;
    680. 

  680. 

  681. 	/* exec unshares first */
    682. 

  682. 	spin_lock(&files->file_lock);
    683. 

  683. 	for (i = 0; ; i++) {
    684. 

  684. 		unsigned long set;
    685. 

  685. 		unsigned fd = i * BITS_PER_LONG;
    686. 

  686. 		fdt = files_fdtable(files);
    687. 

  687. 		if (fd >= fdt->max_fds)
    688. 

  688. 			break;
    689. 

  689. 		set = fdt->close_on_exec[i];
    690. 

  690. 		if (!set)
    691. 

  691. 			continue;
    692. 

  692. 		fdt->close_on_exec[i] = 0;
    693. 

  693. 		for ( ; set ; fd++, set >>= 1) {
    694. 

  694. 			struct file *file;
    695. 

  695. 			if (!(set & 1))
    696. 

  696. 				continue;
    697. 

  697. 			file = fdt->fd[fd];
    698. 

  698. 			if (!file)
    699. 

  699. 				continue;
    700. 

  700. 			rcu_assign_pointer(fdt->fd[fd], NULL);
    701. 

  701. 			__put_unused_fd(files, fd);
    702. 

  702. 			spin_unlock(&files->file_lock);
    703. 

  703. 			filp_close(file, files);
    704. 

  704. 			cond_resched();
    705. 

  705. 			spin_lock(&files->file_lock);
    706. 

  706. 		}
    707. 

  707. 

  708. 	}
    709. 

  709. 	spin_unlock(&files->file_lock);
    710. 

  710. }
    711. 

  711. 

  712. struct file *fget(unsigned int fd)
    713. 

  713. {
    714. 

  714. 	struct file *file;
    715. 

  715. 	struct files_struct *files = current->files;
    716. 

  716. 

  717. 	rcu_read_lock();
    718. 

  718. 	file = fcheck_files(files, fd);
    719. 

  719. 	if (file) {
    720. 

  720. 		/* File object ref couldn't be taken */
    721. 

  721. 		if (file->f_mode & FMODE_PATH ||
    722. 

  722. 		    !atomic_long_inc_not_zero(&file->f_count))
    723. 

  723. 			file = NULL;
    724. 

  724. 	}
    725. 

  725. 	rcu_read_unlock();
    726. 

  726. 

  727. 	return file;
    728. 

  728. }
    729. 

  729. 

  730. EXPORT_SYMBOL(fget);
    731. 

  731. 

  732. struct file *fget_raw(unsigned int fd)
    733. 

  733. {
    734. 

  734. 	struct file *file;
    735. 

  735. 	struct files_struct *files = current->files;
    736. 

  736. 

  737. 	rcu_read_lock();
    738. 

  738. 	file = fcheck_files(files, fd);
    739. 

  739. 	if (file) {
    740. 

  740. 		/* File object ref couldn't be taken */
    741. 

  741. 		if (!atomic_long_inc_not_zero(&file->f_count))
    742. 

  742. 			file = NULL;
    743. 

  743. 	}
    744. 

  744. 	rcu_read_unlock();
    745. 

  745. 

  746. 	return file;
    747. 

  747. }
    748. 

  748. 

  749. EXPORT_SYMBOL(fget_raw);
    750. 

  750. 

  751. /*
    752. 

  752.  * Lightweight file lookup - no refcnt increment if fd table isn't shared.
    753. 

  753.  *
    754. 

  754.  * You can use this instead of fget if you satisfy all of the following
    755. 

  755.  * conditions:
    756. 

  756.  * 1) You must call fput_light before exiting the syscall and returning control
    757. 

  757.  *    to userspace (i.e. you cannot remember the returned struct file * after
    758. 

  758.  *    returning to userspace).
    759. 

  759.  * 2) You must not call filp_close on the returned struct file * in between
    760. 

  760.  *    calls to fget_light and fput_light.
    761. 

  761.  * 3) You must not clone the current task in between the calls to fget_light
    762. 

  762.  *    and fput_light.
    763. 

  763.  *
    764. 

  764.  * The fput_needed flag returned by fget_light should be passed to the
    765. 

  765.  * corresponding fput_light.
    766. 

  766.  */
    767. 

  767. struct file *fget_light(unsigned int fd, int *fput_needed)
    768. 

  768. {
    769. 

  769. 	struct file *file;
    770. 

  770. 	struct files_struct *files = current->files;
    771. 

  771. 

  772. 	*fput_needed = 0;
    773. 

  773. 	if (atomic_read(&files->count) == 1) {
    774. 

  774. 		file = fcheck_files(files, fd);
    775. 

  775. 		if (file && (file->f_mode & FMODE_PATH))
    776. 

  776. 			file = NULL;
    777. 

  777. 	} else {
    778. 

  778. 		rcu_read_lock();
    779. 

  779. 		file = fcheck_files(files, fd);
    780. 

  780. 		if (file) {
    781. 

  781. 			if (!(file->f_mode & FMODE_PATH) &&
    782. 

  782. 			    atomic_long_inc_not_zero(&file->f_count))
    783. 

  783. 				*fput_needed = 1;
    784. 

  784. 			else
    785. 

  785. 				/* Didn't get the reference, someone's freed */
    786. 

  786. 				file = NULL;
    787. 

  787. 		}
    788. 

  788. 		rcu_read_unlock();
    789. 

  789. 	}
    790. 

  790. 

  791. 	return file;
    792. 

  792. }
    793. 

  793. EXPORT_SYMBOL(fget_light);
    794. 

  794. 

  795. struct file *fget_raw_light(unsigned int fd, int *fput_needed)
    796. 

  796. {
    797. 

  797. 	struct file *file;
    798. 

  798. 	struct files_struct *files = current->files;
    799. 

  799. 

  800. 	*fput_needed = 0;
    801. 

  801. 	if (atomic_read(&files->count) == 1) {
    802. 

  802. 		file = fcheck_files(files, fd);
    803. 

  803. 	} else {
    804. 

  804. 		rcu_read_lock();
    805. 

  805. 		file = fcheck_files(files, fd);
    806. 

  806. 		if (file) {
    807. 

  807. 			if (atomic_long_inc_not_zero(&file->f_count))
    808. 

  808. 				*fput_needed = 1;
    809. 

  809. 			else
    810. 

  810. 				/* Didn't get the reference, someone's freed */
    811. 

  811. 				file = NULL;
    812. 

  812. 		}
    813. 

  813. 		rcu_read_unlock();
    814. 

  814. 	}
    815. 

  815. 

  816. 	return file;
    817. 

  817. }
    818. 

  818. 

  819. void set_close_on_exec(unsigned int fd, int flag)
    820. 

  820. {
    821. 

  821. 	struct files_struct *files = current->files;
    822. 

  822. 	struct fdtable *fdt;
    823. 

  823. 	spin_lock(&files->file_lock);
    824. 

  824. 	fdt = files_fdtable(files);
    825. 

  825. 	if (flag)
    826. 

  826. 		__set_close_on_exec(fd, fdt);
    827. 

  827. 	else
    828. 

  828. 		__clear_close_on_exec(fd, fdt);
    829. 

  829. 	spin_unlock(&files->file_lock);
    830. 

  830. }
    831. 

  831. 

  832. bool get_close_on_exec(unsigned int fd)
    833. 

  833. {
    834. 

  834. 	struct files_struct *files = current->files;
    835. 

  835. 	struct fdtable *fdt;
    836. 

  836. 	bool res;
    837. 

  837. 	rcu_read_lock();
    838. 

  838. 	fdt = files_fdtable(files);
    839. 

  839. 	res = close_on_exec(fd, fdt);
    840. 

  840. 	rcu_read_unlock();
    841. 

  841. 	return res;
    842. 

  842. }
    843. 

  843. 

  844. static int do_dup2(struct files_struct *files,
    845. 

  845. 	struct file *file, unsigned fd, unsigned flags)
    846. 

  846. {
    847. 

  847. 	struct file *tofree;
    848. 

  848. 	struct fdtable *fdt;
    849. 

  849. 

  850. 	/*
    851. 

  851. 	 * We need to detect attempts to do dup2() over allocated but still
    852. 

  852. 	 * not finished descriptor.  NB: OpenBSD avoids that at the price of
    853. 

  853. 	 * extra work in their equivalent of fget() - they insert struct
    854. 

  854. 	 * file immediately after grabbing descriptor, mark it larval if
    855. 

  855. 	 * more work (e.g. actual opening) is needed and make sure that
    856. 

  856. 	 * fget() treats larval files as absent.  Potentially interesting,
    857. 

  857. 	 * but while extra work in fget() is trivial, locking implications
    858. 

  858. 	 * and amount of surgery on open()-related paths in VFS are not.
    859. 

  859. 	 * FreeBSD fails with -EBADF in the same situation, NetBSD "solution"
    860. 

  860. 	 * deadlocks in rather amusing ways, AFAICS.  All of that is out of
    861. 

  861. 	 * scope of POSIX or SUS, since neither considers shared descriptor
    862. 

  862. 	 * tables and this condition does not arise without those.
    863. 

  863. 	 */
    864. 

  864. 	fdt = files_fdtable(files);
    865. 

  865. 	tofree = fdt->fd[fd];
    866. 

  866. 	if (!tofree && fd_is_open(fd, fdt))
    867. 

  867. 		goto Ebusy;
    868. 

  868. 	get_file(file);
    869. 

  869. 	rcu_assign_pointer(fdt->fd[fd], file);
    870. 

  870. 	__set_open_fd(fd, fdt);
    871. 

  871. 	if (flags & O_CLOEXEC)
    872. 

  872. 		__set_close_on_exec(fd, fdt);
    873. 

  873. 	else
    874. 

  874. 		__clear_close_on_exec(fd, fdt);
    875. 

  875. 	spin_unlock(&files->file_lock);
    876. 

  876. 

  877. 	if (tofree)
    878. 

  878. 		filp_close(tofree, files);
    879. 

  879. 

  880. 	return fd;
    881. 

  881. 

  882. Ebusy:
    883. 

  883. 	spin_unlock(&files->file_lock);
    884. 

  884. 	return -EBUSY;
    885. 

  885. }
    886. 

  886. 

  887. int replace_fd(unsigned fd, struct file *file, unsigned flags)
    888. 

  888. {
    889. 

  889. 	int err;
    890. 

  890. 	struct files_struct *files = current->files;
    891. 

  891. 

  892. 	if (!file)
    893. 

  893. 		return __close_fd(files, fd);
    894. 

  894. 

  895. 	if (fd >= rlimit(RLIMIT_NOFILE))
    896. 

  896. 		return -EBADF;
    897. 

  897. 

  898. 	spin_lock(&files->file_lock);
    899. 

  899. 	err = expand_files(files, fd);
    900. 

  900. 	if (unlikely(err < 0))
    901. 

  901. 		goto out_unlock;
    902. 

  902. 	return do_dup2(files, file, fd, flags);
    903. 

  903. 

  904. out_unlock:
    905. 

  905. 	spin_unlock(&files->file_lock);
    906. 

  906. 	return err;
    907. 

  907. }
    908. 

  908. 

  909. SYSCALL_DEFINE3(dup3, unsigned int, oldfd, unsigned int, newfd, int, flags)
    910. 

  910. {
    911. 

  911. 	int err = -EBADF;
    912. 

  912. 	struct file *file;
    913. 

  913. 	struct files_struct *files = current->files;
    914. 

  914. 

  915. 	if ((flags & ~O_CLOEXEC) != 0)
    916. 

  916. 		return -EINVAL;
    917. 

  917. 

  918. 	if (unlikely(oldfd == newfd))
    919. 

  919. 		return -EINVAL;
    920. 

  920. 

  921. 	if (newfd >= rlimit(RLIMIT_NOFILE))
    922. 

  922. 		return -EBADF;
    923. 

  923. 

  924. 	spin_lock(&files->file_lock);
    925. 

  925. 	err = expand_files(files, newfd);
    926. 

  926. 	file = fcheck(oldfd);
    927. 

  927. 	if (unlikely(!file))
    928. 

  928. 		goto Ebadf;
    929. 

  929. 	if (unlikely(err < 0)) {
    930. 

  930. 		if (err == -EMFILE)
    931. 

  931. 			goto Ebadf;
    932. 

  932. 		goto out_unlock;
    933. 

  933. 	}
    934. 

  934. 	return do_dup2(files, file, newfd, flags);
    935. 

  935. 

  936. Ebadf:
    937. 

  937. 	err = -EBADF;
    938. 

  938. out_unlock:
    939. 

  939. 	spin_unlock(&files->file_lock);
    940. 

  940. 	return err;
    941. 

  941. }
    942. 

  942. 

  943. SYSCALL_DEFINE2(dup2, unsigned int, oldfd, unsigned int, newfd)
    944. 

  944. {
    945. 

  945. 	if (unlikely(newfd == oldfd)) { /* corner case */
    946. 

  946. 		struct files_struct *files = current->files;
    947. 

  947. 		int retval = oldfd;
    948. 

  948. 

  949. 		rcu_read_lock();
    950. 

  950. 		if (!fcheck_files(files, oldfd))
    951. 

  951. 			retval = -EBADF;
    952. 

  952. 		rcu_read_unlock();
    953. 

  953. 		return retval;
    954. 

  954. 	}
    955. 

  955. 	return sys_dup3(oldfd, newfd, 0);
    956. 

  956. }
    957. 

  957. 

  958. SYSCALL_DEFINE1(dup, unsigned int, fildes)
    959. 

  959. {
    960. 

  960. 	int ret = -EBADF;
    961. 

  961. 	struct file *file = fget_raw(fildes);
    962. 

  962. 

  963. 	if (file) {
    964. 

  964. 		ret = get_unused_fd();
    965. 

  965. 		if (ret >= 0)
    966. 

  966. 			fd_install(ret, file);
    967. 

  967. 		else
    968. 

  968. 			fput(file);
    969. 

  969. 	}
    970. 

  970. 	return ret;
    971. 

  971. }
    972. 

  972. 

  973. int f_dupfd(unsigned int from, struct file *file, unsigned flags)
    974. 

  974. {
    975. 

  975. 	int err;
    976. 

  976. 	if (from >= rlimit(RLIMIT_NOFILE))
    977. 

  977. 		return -EINVAL;
    978. 

  978. 	err = alloc_fd(from, flags);
    979. 

  979. 	if (err >= 0) {
    980. 

  980. 		get_file(file);
    981. 

  981. 		fd_install(err, file);
    982. 

  982. 	}
    983. 

  983. 	return err;
    984. 

  984. }
    985. 

  985. 

  986. int iterate_fd(struct files_struct *files, unsigned n,
    987. 

  987. 		int (*f)(const void *, struct file *, unsigned),
    988. 

  988. 		const void *p)
    989. 

  989. {
    990. 

  990. 	struct fdtable *fdt;
    991. 

  991. 	int res = 0;
    992. 

  992. 	if (!files)
    993. 

  993. 		return 0;
    994. 

  994. 	spin_lock(&files->file_lock);
    995. 

  995. 	for (fdt = files_fdtable(files); n < fdt->max_fds; n++) {
    996. 

  996. 		struct file *file;
    997. 

  997. 		file = rcu_dereference_check_fdtable(files, fdt->fd[n]);
    998. 

  998. 		if (!file)
    999. 

  999. 			continue;
    1000. 

  1000. 		res = f(p, file, n);
    1001. 

  1001. 		if (res)
    1002. 

  1002. 			break;
    1003. 

  1003. 	}
    1004. 

  1004. 	spin_unlock(&files->file_lock);
    1005. 

  1005. 	return res;
    1006. 

  1006. }
    1007. 

  1007. EXPORT_SYMBOL(iterate_fd);
    1008.