cgroup.c 127.6 KB
Newer Older
1 2 3 4 5 6
/*
 *  Generic process-grouping system.
 *
 *  Based originally on the cpuset system, extracted by Paul Menage
 *  Copyright (C) 2006 Google, Inc
 *
7 8 9 10
 *  Notifications support
 *  Copyright (C) 2009 Nokia Corporation
 *  Author: Kirill A. Shutemov
 *
11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29
 *  Copyright notices from the original cpuset code:
 *  --------------------------------------------------
 *  Copyright (C) 2003 BULL SA.
 *  Copyright (C) 2004-2006 Silicon Graphics, Inc.
 *
 *  Portions derived from Patrick Mochel's sysfs code.
 *  sysfs is Copyright (c) 2001-3 Patrick Mochel
 *
 *  2003-10-10 Written by Simon Derr.
 *  2003-10-22 Updates by Stephen Hemminger.
 *  2004 May-July Rework by Paul Jackson.
 *  ---------------------------------------------------
 *
 *  This file is subject to the terms and conditions of the GNU General Public
 *  License.  See the file COPYING in the main directory of the Linux
 *  distribution for more details.
 */

#include <linux/cgroup.h>
30
#include <linux/cred.h>
31
#include <linux/ctype.h>
32
#include <linux/errno.h>
33
#include <linux/init_task.h>
34 35 36 37 38 39
#include <linux/kernel.h>
#include <linux/list.h>
#include <linux/mm.h>
#include <linux/mutex.h>
#include <linux/mount.h>
#include <linux/pagemap.h>
40
#include <linux/proc_fs.h>
41 42 43 44
#include <linux/rcupdate.h>
#include <linux/sched.h>
#include <linux/slab.h>
#include <linux/spinlock.h>
45
#include <linux/rwsem.h>
46
#include <linux/string.h>
47
#include <linux/sort.h>
48
#include <linux/kmod.h>
B
Balbir Singh 已提交
49 50
#include <linux/delayacct.h>
#include <linux/cgroupstats.h>
51
#include <linux/hashtable.h>
L
Li Zefan 已提交
52
#include <linux/pid_namespace.h>
53
#include <linux/idr.h>
54
#include <linux/vmalloc.h> /* TODO: replace with more sophisticated array */
55
#include <linux/kthread.h>
T
Tejun Heo 已提交
56
#include <linux/delay.h>
B
Balbir Singh 已提交
57

A
Arun Sharma 已提交
58
#include <linux/atomic.h>
59

60 61 62 63 64 65 66 67
/*
 * pidlists linger the following amount before being destroyed.  The goal
 * is avoiding frequent destruction in the middle of consecutive read calls
 * Expiring in the middle is a performance problem not a correctness one.
 * 1 sec should be enough.
 */
#define CGROUP_PIDLIST_DESTROY_DELAY	HZ

T
Tejun Heo 已提交
68 69 70
#define CGROUP_FILE_NAME_MAX		(MAX_CGROUP_TYPE_NAMELEN +	\
					 MAX_CFTYPE_NAME + 2)

T
Tejun Heo 已提交
71 72 73 74 75 76 77 78 79
/*
 * cgroup_tree_mutex nests above cgroup_mutex and protects cftypes, file
 * creation/removal and hierarchy changing operations including cgroup
 * creation, removal, css association and controller rebinding.  This outer
 * lock is needed mainly to resolve the circular dependency between kernfs
 * active ref and cgroup_mutex.  cgroup_tree_mutex nests above both.
 */
static DEFINE_MUTEX(cgroup_tree_mutex);

T
Tejun Heo 已提交
80 81 82
/*
 * cgroup_mutex is the master lock.  Any modification to cgroup or its
 * hierarchy must be performed while holding it.
83 84 85 86 87 88
 *
 * css_set_rwsem protects task->cgroups pointer, the list of css_set
 * objects, and the chain of tasks off each css_set.
 *
 * These locks are exported if CONFIG_PROVE_RCU so that accessors in
 * cgroup.h can use them for lockdep annotations.
T
Tejun Heo 已提交
89
 */
T
Tejun Heo 已提交
90 91
#ifdef CONFIG_PROVE_RCU
DEFINE_MUTEX(cgroup_mutex);
92 93 94
DECLARE_RWSEM(css_set_rwsem);
EXPORT_SYMBOL_GPL(cgroup_mutex);
EXPORT_SYMBOL_GPL(css_set_rwsem);
T
Tejun Heo 已提交
95
#else
96
static DEFINE_MUTEX(cgroup_mutex);
97
static DECLARE_RWSEM(css_set_rwsem);
T
Tejun Heo 已提交
98 99
#endif

100 101 102 103 104 105
/*
 * Protects cgroup_subsys->release_agent_path.  Modifying it also requires
 * cgroup_mutex.  Reading requires either cgroup_mutex or this spinlock.
 */
static DEFINE_SPINLOCK(release_agent_path_lock);

T
Tejun Heo 已提交
106
#define cgroup_assert_mutexes_or_rcu_locked()				\
107
	rcu_lockdep_assert(rcu_read_lock_held() ||			\
T
Tejun Heo 已提交
108
			   lockdep_is_held(&cgroup_tree_mutex) ||	\
109
			   lockdep_is_held(&cgroup_mutex),		\
T
Tejun Heo 已提交
110
			   "cgroup_[tree_]mutex or RCU read lock required");
111

112 113 114 115 116 117 118 119
/*
 * cgroup destruction makes heavy use of work items and there can be a lot
 * of concurrent destructions.  Use a separate workqueue so that cgroup
 * destruction work items don't end up filling up max_active of system_wq
 * which may lead to deadlock.
 */
static struct workqueue_struct *cgroup_destroy_wq;

120 121 122 123 124 125
/*
 * pidlist destructions need to be flushed on cgroup destruction.  Use a
 * separate workqueue as flush domain.
 */
static struct workqueue_struct *cgroup_pidlist_destroy_wq;

T
Tejun Heo 已提交
126
/* generate an array of cgroup subsystem pointers */
127
#define SUBSYS(_x) [_x ## _cgrp_id] = &_x ## _cgrp_subsys,
T
Tejun Heo 已提交
128
static struct cgroup_subsys *cgroup_subsys[] = {
129 130
#include <linux/cgroup_subsys.h>
};
131 132 133 134 135 136 137 138
#undef SUBSYS

/* array of cgroup subsystem names */
#define SUBSYS(_x) [_x ## _cgrp_id] = #_x,
static const char *cgroup_subsys_name[] = {
#include <linux/cgroup_subsys.h>
};
#undef SUBSYS
139 140

/*
141 142 143
 * The dummy hierarchy, reserved for the subsystems that are otherwise
 * unattached - it never has more than a single cgroup, and all tasks are
 * part of that cgroup.
144
 */
145 146 147 148
static struct cgroupfs_root cgroup_dummy_root;

/* dummy_top is a shorthand for the dummy hierarchy's top cgroup */
static struct cgroup * const cgroup_dummy_top = &cgroup_dummy_root.top_cgroup;
149 150 151

/* The list of hierarchy roots */

152 153
static LIST_HEAD(cgroup_roots);
static int cgroup_root_count;
154

T
Tejun Heo 已提交
155
/* hierarchy ID allocation and mapping, protected by cgroup_mutex */
156
static DEFINE_IDR(cgroup_hierarchy_idr);
157

158 159 160 161 162
/*
 * Assign a monotonically increasing serial number to cgroups.  It
 * guarantees cgroups with bigger numbers are newer than those with smaller
 * numbers.  Also, as cgroups are always appended to the parent's
 * ->children list, it guarantees that sibling cgroups are always sorted in
163 164
 * the ascending serial number order on the list.  Protected by
 * cgroup_mutex.
165
 */
166
static u64 cgroup_serial_nr_next = 1;
167

168
/* This flag indicates whether tasks in the fork and exit paths should
L
Li Zefan 已提交
169 170 171
 * check for fork/exit handlers to call. This avoids us having to do
 * extra work in the fork/exit path if none of the subsystems need to
 * be called.
172
 */
173
static int need_forkexit_callback __read_mostly;
174

175 176
static struct cftype cgroup_base_files[];

177
static void cgroup_put(struct cgroup *cgrp);
178 179
static int rebind_subsystems(struct cgroupfs_root *root,
			     unsigned long added_mask, unsigned removed_mask);
180
static void cgroup_destroy_css_killed(struct cgroup *cgrp);
181
static int cgroup_destroy_locked(struct cgroup *cgrp);
182 183
static int cgroup_addrm_files(struct cgroup *cgrp, struct cftype cfts[],
			      bool is_add);
184
static void cgroup_pidlist_destroy_all(struct cgroup *cgrp);
185

T
Tejun Heo 已提交
186 187 188
/**
 * cgroup_css - obtain a cgroup's css for the specified subsystem
 * @cgrp: the cgroup of interest
189
 * @ss: the subsystem of interest (%NULL returns the dummy_css)
T
Tejun Heo 已提交
190
 *
191 192 193 194 195
 * Return @cgrp's css (cgroup_subsys_state) associated with @ss.  This
 * function must be called either under cgroup_mutex or rcu_read_lock() and
 * the caller is responsible for pinning the returned css if it wants to
 * keep accessing it outside the said locks.  This function may return
 * %NULL if @cgrp doesn't have @subsys_id enabled.
T
Tejun Heo 已提交
196 197
 */
static struct cgroup_subsys_state *cgroup_css(struct cgroup *cgrp,
198
					      struct cgroup_subsys *ss)
T
Tejun Heo 已提交
199
{
200
	if (ss)
201
		return rcu_dereference_check(cgrp->subsys[ss->id],
T
Tejun Heo 已提交
202 203
					lockdep_is_held(&cgroup_tree_mutex) ||
					lockdep_is_held(&cgroup_mutex));
204 205
	else
		return &cgrp->dummy_css;
T
Tejun Heo 已提交
206
}
207

208
/* convenient tests for these bits */
209
static inline bool cgroup_is_dead(const struct cgroup *cgrp)
210
{
211
	return test_bit(CGRP_DEAD, &cgrp->flags);
212 213
}

214 215
struct cgroup_subsys_state *seq_css(struct seq_file *seq)
{
T
Tejun Heo 已提交
216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 231
	struct kernfs_open_file *of = seq->private;
	struct cgroup *cgrp = of->kn->parent->priv;
	struct cftype *cft = seq_cft(seq);

	/*
	 * This is open and unprotected implementation of cgroup_css().
	 * seq_css() is only called from a kernfs file operation which has
	 * an active reference on the file.  Because all the subsystem
	 * files are drained before a css is disassociated with a cgroup,
	 * the matching css from the cgroup's subsys table is guaranteed to
	 * be and stay valid until the enclosing operation is complete.
	 */
	if (cft->ss)
		return rcu_dereference_raw(cgrp->subsys[cft->ss->id]);
	else
		return &cgrp->dummy_css;
232 233 234
}
EXPORT_SYMBOL_GPL(seq_css);

235 236 237 238 239 240 241 242 243 244 245 246 247 248 249 250 251 252
/**
 * cgroup_is_descendant - test ancestry
 * @cgrp: the cgroup to be tested
 * @ancestor: possible ancestor of @cgrp
 *
 * Test whether @cgrp is a descendant of @ancestor.  It also returns %true
 * if @cgrp == @ancestor.  This function is safe to call as long as @cgrp
 * and @ancestor are accessible.
 */
bool cgroup_is_descendant(struct cgroup *cgrp, struct cgroup *ancestor)
{
	while (cgrp) {
		if (cgrp == ancestor)
			return true;
		cgrp = cgrp->parent;
	}
	return false;
}
253

254
static int cgroup_is_releasable(const struct cgroup *cgrp)
255 256
{
	const int bits =
257 258 259
		(1 << CGRP_RELEASABLE) |
		(1 << CGRP_NOTIFY_ON_RELEASE);
	return (cgrp->flags & bits) == bits;
260 261
}

262
static int notify_on_release(const struct cgroup *cgrp)
263
{
264
	return test_bit(CGRP_NOTIFY_ON_RELEASE, &cgrp->flags);
265 266
}

T
Tejun Heo 已提交
267 268 269 270 271 272 273 274 275 276 277 278
/**
 * for_each_css - iterate all css's of a cgroup
 * @css: the iteration cursor
 * @ssid: the index of the subsystem, CGROUP_SUBSYS_COUNT after reaching the end
 * @cgrp: the target cgroup to iterate css's of
 *
 * Should be called under cgroup_mutex.
 */
#define for_each_css(css, ssid, cgrp)					\
	for ((ssid) = 0; (ssid) < CGROUP_SUBSYS_COUNT; (ssid)++)	\
		if (!((css) = rcu_dereference_check(			\
				(cgrp)->subsys[(ssid)],			\
T
Tejun Heo 已提交
279
				lockdep_is_held(&cgroup_tree_mutex) ||	\
T
Tejun Heo 已提交
280 281 282
				lockdep_is_held(&cgroup_mutex)))) { }	\
		else

283
/**
T
Tejun Heo 已提交
284
 * for_each_subsys - iterate all enabled cgroup subsystems
285
 * @ss: the iteration cursor
286
 * @ssid: the index of @ss, CGROUP_SUBSYS_COUNT after reaching the end
287
 */
288
#define for_each_subsys(ss, ssid)					\
T
Tejun Heo 已提交
289 290
	for ((ssid) = 0; (ssid) < CGROUP_SUBSYS_COUNT &&		\
	     (((ss) = cgroup_subsys[ssid]) || true); (ssid)++)
291

292 293
/* iterate across the hierarchies */
#define for_each_root(root)						\
294
	list_for_each_entry((root), &cgroup_roots, root_list)
295

296 297 298 299
/**
 * cgroup_lock_live_group - take cgroup_mutex and check that cgrp is alive.
 * @cgrp: the cgroup to be checked for liveness
 *
T
Tejun Heo 已提交
300 301
 * On success, returns true; the mutex should be later unlocked.  On
 * failure returns false with no lock held.
302
 */
303
static bool cgroup_lock_live_group(struct cgroup *cgrp)
304 305
{
	mutex_lock(&cgroup_mutex);
306
	if (cgroup_is_dead(cgrp)) {
307 308 309 310 311 312
		mutex_unlock(&cgroup_mutex);
		return false;
	}
	return true;
}

313 314 315
/* the list of cgroups eligible for automatic release. Protected by
 * release_list_lock */
static LIST_HEAD(release_list);
316
static DEFINE_RAW_SPINLOCK(release_list_lock);
317 318
static void cgroup_release_agent(struct work_struct *work);
static DECLARE_WORK(release_agent_work, cgroup_release_agent);
319
static void check_for_release(struct cgroup *cgrp);
320

321 322 323 324 325 326 327 328 329 330 331 332 333 334 335 336 337 338
/*
 * A cgroup can be associated with multiple css_sets as different tasks may
 * belong to different cgroups on different hierarchies.  In the other
 * direction, a css_set is naturally associated with multiple cgroups.
 * This M:N relationship is represented by the following link structure
 * which exists for each association and allows traversing the associations
 * from both sides.
 */
struct cgrp_cset_link {
	/* the cgroup and css_set this link associates */
	struct cgroup		*cgrp;
	struct css_set		*cset;

	/* list of cgrp_cset_links anchored at cgrp->cset_links */
	struct list_head	cset_link;

	/* list of cgrp_cset_links anchored at css_set->cgrp_links */
	struct list_head	cgrp_link;
339 340
};

341 342
/*
 * The default css_set - used by init and its children prior to any
343 344 345 346 347
 * hierarchies being mounted. It contains a pointer to the root state
 * for each subsystem. Also used to anchor the list of css_sets. Not
 * reference-counted, to improve performance when child cgroups
 * haven't been created.
 */
348 349 350 351 352 353 354 355
static struct css_set init_css_set = {
	.refcount		= ATOMIC_INIT(1),
	.cgrp_links		= LIST_HEAD_INIT(init_css_set.cgrp_links),
	.tasks			= LIST_HEAD_INIT(init_css_set.tasks),
	.mg_tasks		= LIST_HEAD_INIT(init_css_set.mg_tasks),
	.mg_preload_node	= LIST_HEAD_INIT(init_css_set.mg_preload_node),
	.mg_node		= LIST_HEAD_INIT(init_css_set.mg_node),
};
356

357
static int css_set_count	= 1;	/* 1 for init_css_set */
358

359 360 361 362 363
/*
 * hash table for cgroup groups. This improves the performance to find
 * an existing css_set. This hash doesn't (currently) take into
 * account cgroups in empty hierarchies.
 */
364
#define CSS_SET_HASH_BITS	7
365
static DEFINE_HASHTABLE(css_set_table, CSS_SET_HASH_BITS);
366

367
static unsigned long css_set_hash(struct cgroup_subsys_state *css[])
368
{
369
	unsigned long key = 0UL;
370 371
	struct cgroup_subsys *ss;
	int i;
372

373
	for_each_subsys(ss, i)
374 375
		key += (unsigned long)css[i];
	key = (key >> 16) ^ key;
376

377
	return key;
378 379
}

380
static void put_css_set_locked(struct css_set *cset, bool taskexit)
381
{
382
	struct cgrp_cset_link *link, *tmp_link;
383

384 385 386
	lockdep_assert_held(&css_set_rwsem);

	if (!atomic_dec_and_test(&cset->refcount))
387
		return;
388

389
	/* This css_set is dead. unlink it and release cgroup refcounts */
390
	hash_del(&cset->hlist);
391 392
	css_set_count--;

393
	list_for_each_entry_safe(link, tmp_link, &cset->cgrp_links, cgrp_link) {
394
		struct cgroup *cgrp = link->cgrp;
395

396 397
		list_del(&link->cset_link);
		list_del(&link->cgrp_link);
L
Li Zefan 已提交
398

399
		/* @cgrp can't go away while we're holding css_set_rwsem */
T
Tejun Heo 已提交
400
		if (list_empty(&cgrp->cset_links) && notify_on_release(cgrp)) {
401
			if (taskexit)
402 403
				set_bit(CGRP_RELEASABLE, &cgrp->flags);
			check_for_release(cgrp);
404
		}
405 406

		kfree(link);
407
	}
408

409
	kfree_rcu(cset, rcu_head);
410 411
}

412 413 414 415 416 417 418 419 420 421 422 423 424 425 426
static void put_css_set(struct css_set *cset, bool taskexit)
{
	/*
	 * Ensure that the refcount doesn't hit zero while any readers
	 * can see it. Similar to atomic_dec_and_lock(), but for an
	 * rwlock
	 */
	if (atomic_add_unless(&cset->refcount, -1, 1))
		return;

	down_write(&css_set_rwsem);
	put_css_set_locked(cset, taskexit);
	up_write(&css_set_rwsem);
}

427 428 429
/*
 * refcounted get/put for css_set objects
 */
430
static inline void get_css_set(struct css_set *cset)
431
{
432
	atomic_inc(&cset->refcount);
433 434
}

435
/**
436
 * compare_css_sets - helper function for find_existing_css_set().
437 438
 * @cset: candidate css_set being tested
 * @old_cset: existing css_set for a task
439 440 441
 * @new_cgrp: cgroup that's being entered by the task
 * @template: desired set of css pointers in css_set (pre-calculated)
 *
L
Li Zefan 已提交
442
 * Returns true if "cset" matches "old_cset" except for the hierarchy
443 444
 * which "new_cgrp" belongs to, for which it should match "new_cgrp".
 */
445 446
static bool compare_css_sets(struct css_set *cset,
			     struct css_set *old_cset,
447 448 449 450 451
			     struct cgroup *new_cgrp,
			     struct cgroup_subsys_state *template[])
{
	struct list_head *l1, *l2;

452
	if (memcmp(template, cset->subsys, sizeof(cset->subsys))) {
453 454 455 456 457 458 459 460 461 462 463 464 465
		/* Not all subsystems matched */
		return false;
	}

	/*
	 * Compare cgroup pointers in order to distinguish between
	 * different cgroups in heirarchies with no subsystems. We
	 * could get by with just this check alone (and skip the
	 * memcmp above) but on most setups the memcmp check will
	 * avoid the need for this more expensive check on almost all
	 * candidates.
	 */

466 467
	l1 = &cset->cgrp_links;
	l2 = &old_cset->cgrp_links;
468
	while (1) {
469
		struct cgrp_cset_link *link1, *link2;
470
		struct cgroup *cgrp1, *cgrp2;
471 472 473 474

		l1 = l1->next;
		l2 = l2->next;
		/* See if we reached the end - both lists are equal length. */
475 476
		if (l1 == &cset->cgrp_links) {
			BUG_ON(l2 != &old_cset->cgrp_links);
477 478
			break;
		} else {
479
			BUG_ON(l2 == &old_cset->cgrp_links);
480 481
		}
		/* Locate the cgroups associated with these links. */
482 483 484 485
		link1 = list_entry(l1, struct cgrp_cset_link, cgrp_link);
		link2 = list_entry(l2, struct cgrp_cset_link, cgrp_link);
		cgrp1 = link1->cgrp;
		cgrp2 = link2->cgrp;
486
		/* Hierarchies should be linked in the same order. */
487
		BUG_ON(cgrp1->root != cgrp2->root);
488 489 490 491 492 493 494 495

		/*
		 * If this hierarchy is the hierarchy of the cgroup
		 * that's changing, then we need to check that this
		 * css_set points to the new cgroup; if it's any other
		 * hierarchy, then this css_set should point to the
		 * same cgroup as the old css_set.
		 */
496 497
		if (cgrp1->root == new_cgrp->root) {
			if (cgrp1 != new_cgrp)
498 499
				return false;
		} else {
500
			if (cgrp1 != cgrp2)
501 502 503 504 505 506
				return false;
		}
	}
	return true;
}

507 508 509 510 511
/**
 * find_existing_css_set - init css array and find the matching css_set
 * @old_cset: the css_set that we're using before the cgroup transition
 * @cgrp: the cgroup that we're moving into
 * @template: out param for the new set of csses, should be clear on entry
512
 */
513 514 515
static struct css_set *find_existing_css_set(struct css_set *old_cset,
					struct cgroup *cgrp,
					struct cgroup_subsys_state *template[])
516
{
517
	struct cgroupfs_root *root = cgrp->root;
518
	struct cgroup_subsys *ss;
519
	struct css_set *cset;
520
	unsigned long key;
521
	int i;
522

B
Ben Blum 已提交
523 524 525 526 527
	/*
	 * Build the set of subsystem state objects that we want to see in the
	 * new css_set. while subsystems can change globally, the entries here
	 * won't change, so no need for locking.
	 */
528
	for_each_subsys(ss, i) {
529
		if (root->subsys_mask & (1UL << i)) {
530 531 532
			/* Subsystem is in this hierarchy. So we want
			 * the subsystem state from the new
			 * cgroup */
533
			template[i] = cgroup_css(cgrp, ss);
534 535 536
		} else {
			/* Subsystem is not in this hierarchy, so we
			 * don't want to change the subsystem state */
537
			template[i] = old_cset->subsys[i];
538 539 540
		}
	}

541
	key = css_set_hash(template);
542 543
	hash_for_each_possible(css_set_table, cset, hlist, key) {
		if (!compare_css_sets(cset, old_cset, cgrp, template))
544 545 546
			continue;

		/* This css_set matches what we need */
547
		return cset;
548
	}
549 550 551 552 553

	/* No existing cgroup group matched */
	return NULL;
}

554
static void free_cgrp_cset_links(struct list_head *links_to_free)
555
{
556
	struct cgrp_cset_link *link, *tmp_link;
557

558 559
	list_for_each_entry_safe(link, tmp_link, links_to_free, cset_link) {
		list_del(&link->cset_link);
560 561 562 563
		kfree(link);
	}
}

564 565 566 567 568 569 570
/**
 * allocate_cgrp_cset_links - allocate cgrp_cset_links
 * @count: the number of links to allocate
 * @tmp_links: list_head the allocated links are put on
 *
 * Allocate @count cgrp_cset_link structures and chain them on @tmp_links
 * through ->cset_link.  Returns 0 on success or -errno.
571
 */
572
static int allocate_cgrp_cset_links(int count, struct list_head *tmp_links)
573
{
574
	struct cgrp_cset_link *link;
575
	int i;
576 577 578

	INIT_LIST_HEAD(tmp_links);

579
	for (i = 0; i < count; i++) {
580
		link = kzalloc(sizeof(*link), GFP_KERNEL);
581
		if (!link) {
582
			free_cgrp_cset_links(tmp_links);
583 584
			return -ENOMEM;
		}
585
		list_add(&link->cset_link, tmp_links);
586 587 588 589
	}
	return 0;
}

590 591
/**
 * link_css_set - a helper function to link a css_set to a cgroup
592
 * @tmp_links: cgrp_cset_link objects allocated by allocate_cgrp_cset_links()
593
 * @cset: the css_set to be linked
594 595
 * @cgrp: the destination cgroup
 */
596 597
static void link_css_set(struct list_head *tmp_links, struct css_set *cset,
			 struct cgroup *cgrp)
598
{
599
	struct cgrp_cset_link *link;
600

601 602 603
	BUG_ON(list_empty(tmp_links));
	link = list_first_entry(tmp_links, struct cgrp_cset_link, cset_link);
	link->cset = cset;
604
	link->cgrp = cgrp;
605
	list_move(&link->cset_link, &cgrp->cset_links);
606 607 608 609
	/*
	 * Always add links to the tail of the list so that the list
	 * is sorted by order of hierarchy creation
	 */
610
	list_add_tail(&link->cgrp_link, &cset->cgrp_links);
611 612
}

613 614 615 616 617 618 619
/**
 * find_css_set - return a new css_set with one cgroup updated
 * @old_cset: the baseline css_set
 * @cgrp: the cgroup to be updated
 *
 * Return a new css_set that's equivalent to @old_cset, but with @cgrp
 * substituted into the appropriate hierarchy.
620
 */
621 622
static struct css_set *find_css_set(struct css_set *old_cset,
				    struct cgroup *cgrp)
623
{
624
	struct cgroup_subsys_state *template[CGROUP_SUBSYS_COUNT] = { };
625
	struct css_set *cset;
626 627
	struct list_head tmp_links;
	struct cgrp_cset_link *link;
628
	unsigned long key;
629

630 631
	lockdep_assert_held(&cgroup_mutex);

632 633
	/* First see if we already have a cgroup group that matches
	 * the desired set */
634
	down_read(&css_set_rwsem);
635 636 637
	cset = find_existing_css_set(old_cset, cgrp, template);
	if (cset)
		get_css_set(cset);
638
	up_read(&css_set_rwsem);
639

640 641
	if (cset)
		return cset;
642

643
	cset = kzalloc(sizeof(*cset), GFP_KERNEL);
644
	if (!cset)
645 646
		return NULL;

647
	/* Allocate all the cgrp_cset_link objects that we'll need */
648
	if (allocate_cgrp_cset_links(cgroup_root_count, &tmp_links) < 0) {
649
		kfree(cset);
650 651 652
		return NULL;
	}

653
	atomic_set(&cset->refcount, 1);
654
	INIT_LIST_HEAD(&cset->cgrp_links);
655
	INIT_LIST_HEAD(&cset->tasks);
T
Tejun Heo 已提交
656
	INIT_LIST_HEAD(&cset->mg_tasks);
657
	INIT_LIST_HEAD(&cset->mg_preload_node);
658
	INIT_LIST_HEAD(&cset->mg_node);
659
	INIT_HLIST_NODE(&cset->hlist);
660 661 662

	/* Copy the set of subsystem state objects generated in
	 * find_existing_css_set() */
663
	memcpy(cset->subsys, template, sizeof(cset->subsys));
664

665
	down_write(&css_set_rwsem);
666
	/* Add reference counts and links from the new css_set. */
667
	list_for_each_entry(link, &old_cset->cgrp_links, cgrp_link) {
668
		struct cgroup *c = link->cgrp;
669

670 671
		if (c->root == cgrp->root)
			c = cgrp;
672
		link_css_set(&tmp_links, cset, c);
673
	}
674

675
	BUG_ON(!list_empty(&tmp_links));
676 677

	css_set_count++;
678 679

	/* Add this cgroup group to the hash table */
680 681
	key = css_set_hash(cset->subsys);
	hash_add(css_set_table, &cset->hlist, key);
682

683
	up_write(&css_set_rwsem);
684

685
	return cset;
686 687
}

T
Tejun Heo 已提交
688 689 690 691 692 693 694
static struct cgroupfs_root *cgroup_root_from_kf(struct kernfs_root *kf_root)
{
	struct cgroup *top_cgrp = kf_root->kn->priv;

	return top_cgrp->root;
}

695
static int cgroup_init_root_id(struct cgroupfs_root *root)
696 697 698 699 700
{
	int id;

	lockdep_assert_held(&cgroup_mutex);

701
	id = idr_alloc_cyclic(&cgroup_hierarchy_idr, root, 0, 0, GFP_KERNEL);
702 703 704 705 706 707 708 709 710 711 712 713 714 715 716 717 718 719 720 721 722 723 724 725 726 727 728 729
	if (id < 0)
		return id;

	root->hierarchy_id = id;
	return 0;
}

static void cgroup_exit_root_id(struct cgroupfs_root *root)
{
	lockdep_assert_held(&cgroup_mutex);

	if (root->hierarchy_id) {
		idr_remove(&cgroup_hierarchy_idr, root->hierarchy_id);
		root->hierarchy_id = 0;
	}
}

static void cgroup_free_root(struct cgroupfs_root *root)
{
	if (root) {
		/* hierarhcy ID shoulid already have been released */
		WARN_ON_ONCE(root->hierarchy_id);

		idr_destroy(&root->cgroup_idr);
		kfree(root);
	}
}

T
Tejun Heo 已提交
730
static void cgroup_destroy_root(struct cgroupfs_root *root)
731
{
732 733 734
	struct cgroup *cgrp = &root->top_cgroup;
	struct cgrp_cset_link *link, *tmp_link;

T
Tejun Heo 已提交
735 736
	mutex_lock(&cgroup_tree_mutex);
	mutex_lock(&cgroup_mutex);
737

T
Tejun Heo 已提交
738
	BUG_ON(atomic_read(&root->nr_cgrps));
739 740 741
	BUG_ON(!list_empty(&cgrp->children));

	/* Rebind all subsystems back to the default hierarchy */
T
Tejun Heo 已提交
742
	WARN_ON(rebind_subsystems(root, 0, root->subsys_mask));
743 744 745 746 747

	/*
	 * Release all the links from cset_links to this hierarchy's
	 * root cgroup
	 */
748
	down_write(&css_set_rwsem);
749 750 751 752 753 754

	list_for_each_entry_safe(link, tmp_link, &cgrp->cset_links, cset_link) {
		list_del(&link->cset_link);
		list_del(&link->cgrp_link);
		kfree(link);
	}
755
	up_write(&css_set_rwsem);
756 757 758 759 760 761 762 763 764 765 766

	if (!list_empty(&root->root_list)) {
		list_del(&root->root_list);
		cgroup_root_count--;
	}

	cgroup_exit_root_id(root);

	mutex_unlock(&cgroup_mutex);
	mutex_unlock(&cgroup_tree_mutex);

T
Tejun Heo 已提交
767
	kernfs_destroy_root(root->kf_root);
768 769 770
	cgroup_free_root(root);
}

771 772
/* look up cgroup associated with given css_set on the specified hierarchy */
static struct cgroup *cset_cgroup_from_root(struct css_set *cset,
773 774 775 776
					    struct cgroupfs_root *root)
{
	struct cgroup *res = NULL;

777 778 779
	lockdep_assert_held(&cgroup_mutex);
	lockdep_assert_held(&css_set_rwsem);

780
	if (cset == &init_css_set) {
781 782
		res = &root->top_cgroup;
	} else {
783 784 785
		struct cgrp_cset_link *link;

		list_for_each_entry(link, &cset->cgrp_links, cgrp_link) {
786
			struct cgroup *c = link->cgrp;
787

788 789 790 791 792 793
			if (c->root == root) {
				res = c;
				break;
			}
		}
	}
794

795 796 797 798
	BUG_ON(!res);
	return res;
}

799 800 801 802 803 804 805 806 807 808 809 810 811 812 813
/*
 * Return the cgroup for "task" from the given hierarchy. Must be
 * called with cgroup_mutex and css_set_rwsem held.
 */
static struct cgroup *task_cgroup_from_root(struct task_struct *task,
					    struct cgroupfs_root *root)
{
	/*
	 * No need to lock the task - since we hold cgroup_mutex the
	 * task can't change groups, so the only thing that can happen
	 * is that it exits and its css is set back to init_css_set.
	 */
	return cset_cgroup_from_root(task_css_set(task), root);
}

814 815 816 817 818 819
/*
 * A task must hold cgroup_mutex to modify cgroups.
 *
 * Any task can increment and decrement the count field without lock.
 * So in general, code holding cgroup_mutex can't rely on the count
 * field not changing.  However, if the count goes to zero, then only
820
 * cgroup_attach_task() can increment it again.  Because a count of zero
821 822 823 824 825 826 827 828 829 830 831 832 833
 * means that no tasks are currently attached, therefore there is no
 * way a task attached to that cgroup can fork (the other way to
 * increment the count).  So code holding cgroup_mutex can safely
 * assume that if the count is zero, it will stay zero. Similarly, if
 * a task holds cgroup_mutex on a cgroup with zero count, it
 * knows that the cgroup won't be removed, as cgroup_rmdir()
 * needs that mutex.
 *
 * The fork and exit callbacks cgroup_fork() and cgroup_exit(), don't
 * (usually) take cgroup_mutex.  These are the two most performance
 * critical pieces of code here.  The exception occurs on cgroup_exit(),
 * when a task in a notify_on_release cgroup exits.  Then cgroup_mutex
 * is taken, and if the cgroup count is zero, a usermode call made
L
Li Zefan 已提交
834 835
 * to the release agent with the name of the cgroup (path relative to
 * the root of cgroup file system) as the argument.
836 837 838 839 840 841 842 843 844
 *
 * A cgroup can only be deleted if both its 'count' of using tasks
 * is zero, and its list of 'children' cgroups is empty.  Since all
 * tasks in the system use _some_ cgroup, and since there is always at
 * least one task in the system (init, pid == 1), therefore, top_cgroup
 * always has either children cgroups and/or using tasks.  So we don't
 * need a special hack to ensure that top_cgroup cannot be deleted.
 *
 * P.S.  One more locking exception.  RCU is used to guard the
845
 * update of a tasks cgroup pointer by cgroup_attach_task()
846 847
 */

848
static int cgroup_populate_dir(struct cgroup *cgrp, unsigned long subsys_mask);
T
Tejun Heo 已提交
849
static struct kernfs_syscall_ops cgroup_kf_syscall_ops;
850
static const struct file_operations proc_cgroupstats_operations;
851

T
Tejun Heo 已提交
852 853 854 855 856 857 858 859 860 861 862 863
static char *cgroup_file_name(struct cgroup *cgrp, const struct cftype *cft,
			      char *buf)
{
	if (cft->ss && !(cft->flags & CFTYPE_NO_PREFIX) &&
	    !(cgrp->root->flags & CGRP_ROOT_NOPREFIX))
		snprintf(buf, CGROUP_FILE_NAME_MAX, "%s.%s",
			 cft->ss->name, cft->name);
	else
		strncpy(buf, cft->name, CGROUP_FILE_NAME_MAX);
	return buf;
}

864 865 866 867 868 869 870 871 872 873 874 875 876 877 878 879 880 881 882 883 884 885 886 887 888 889
/**
 * cgroup_file_mode - deduce file mode of a control file
 * @cft: the control file in question
 *
 * returns cft->mode if ->mode is not 0
 * returns S_IRUGO|S_IWUSR if it has both a read and a write handler
 * returns S_IRUGO if it has only a read handler
 * returns S_IWUSR if it has only a write hander
 */
static umode_t cgroup_file_mode(const struct cftype *cft)
{
	umode_t mode = 0;

	if (cft->mode)
		return cft->mode;

	if (cft->read_u64 || cft->read_s64 || cft->seq_show)
		mode |= S_IRUGO;

	if (cft->write_u64 || cft->write_s64 || cft->write_string ||
	    cft->trigger)
		mode |= S_IWUSR;

	return mode;
}

890 891
static void cgroup_free_fn(struct work_struct *work)
{
892
	struct cgroup *cgrp = container_of(work, struct cgroup, destroy_work);
893

894
	atomic_dec(&cgrp->root->nr_cgrps);
895
	cgroup_pidlist_destroy_all(cgrp);
896

T
Tejun Heo 已提交
897 898 899 900 901 902 903 904 905 906 907 908 909 910 911 912
	if (cgrp->parent) {
		/*
		 * We get a ref to the parent, and put the ref when this
		 * cgroup is being freed, so it's guaranteed that the
		 * parent won't be destroyed before its children.
		 */
		cgroup_put(cgrp->parent);
		kernfs_put(cgrp->kn);
		kfree(cgrp);
	} else {
		/*
		 * This is top cgroup's refcnt reaching zero, which
		 * indicates that the root should be released.
		 */
		cgroup_destroy_root(cgrp->root);
	}
913 914 915 916 917 918
}

static void cgroup_free_rcu(struct rcu_head *head)
{
	struct cgroup *cgrp = container_of(head, struct cgroup, rcu_head);

919
	INIT_WORK(&cgrp->destroy_work, cgroup_free_fn);
920
	queue_work(cgroup_destroy_wq, &cgrp->destroy_work);
921 922
}

923 924
static void cgroup_get(struct cgroup *cgrp)
{
T
Tejun Heo 已提交
925 926 927
	WARN_ON_ONCE(cgroup_is_dead(cgrp));
	WARN_ON_ONCE(atomic_read(&cgrp->refcnt) <= 0);
	atomic_inc(&cgrp->refcnt);
928 929
}

930 931
static void cgroup_put(struct cgroup *cgrp)
{
T
Tejun Heo 已提交
932 933
	if (!atomic_dec_and_test(&cgrp->refcnt))
		return;
T
Tejun Heo 已提交
934
	if (WARN_ON_ONCE(cgrp->parent && !cgroup_is_dead(cgrp)))
T
Tejun Heo 已提交
935
		return;
936

T
Tejun Heo 已提交
937 938 939 940 941 942 943 944 945 946
	/*
	 * XXX: cgrp->id is only used to look up css's.  As cgroup and
	 * css's lifetimes will be decoupled, it should be made
	 * per-subsystem and moved to css->id so that lookups are
	 * successful until the target css is released.
	 */
	mutex_lock(&cgroup_mutex);
	idr_remove(&cgrp->root->cgroup_idr, cgrp->id);
	mutex_unlock(&cgroup_mutex);
	cgrp->id = -1;
947

T
Tejun Heo 已提交
948
	call_rcu(&cgrp->rcu_head, cgroup_free_rcu);
949 950
}

951
static void cgroup_rm_file(struct cgroup *cgrp, const struct cftype *cft)
T
Tejun Heo 已提交
952
{
T
Tejun Heo 已提交
953
	char name[CGROUP_FILE_NAME_MAX];
T
Tejun Heo 已提交
954

T
Tejun Heo 已提交
955
	lockdep_assert_held(&cgroup_tree_mutex);
T
Tejun Heo 已提交
956
	kernfs_remove_by_name(cgrp->kn, cgroup_file_name(cgrp, cft, name));
T
Tejun Heo 已提交
957 958
}

959
/**
960
 * cgroup_clear_dir - remove subsys files in a cgroup directory
961
 * @cgrp: target cgroup
962 963
 * @subsys_mask: mask of the subsystem ids whose files should be removed
 */
964
static void cgroup_clear_dir(struct cgroup *cgrp, unsigned long subsys_mask)
T
Tejun Heo 已提交
965
{
966
	struct cgroup_subsys *ss;
967
	int i;
T
Tejun Heo 已提交
968

969
	for_each_subsys(ss, i) {
T
Tejun Heo 已提交
970
		struct cftype *cfts;
971 972

		if (!test_bit(i, &subsys_mask))
973
			continue;
T
Tejun Heo 已提交
974 975
		list_for_each_entry(cfts, &ss->cfts, node)
			cgroup_addrm_files(cgrp, cfts, false);
976
	}
977 978 979
}

static int rebind_subsystems(struct cgroupfs_root *root,
980
			     unsigned long added_mask, unsigned removed_mask)
981
{
982
	struct cgroup *cgrp = &root->top_cgroup;
983
	struct cgroup_subsys *ss;
984
	int i, ret;
985

T
Tejun Heo 已提交
986 987
	lockdep_assert_held(&cgroup_tree_mutex);
	lockdep_assert_held(&cgroup_mutex);
B
Ben Blum 已提交
988

989
	/* Check that any added subsystems are currently free */
T
Tejun Heo 已提交
990 991 992
	for_each_subsys(ss, i)
		if ((added_mask & (1 << i)) && ss->root != &cgroup_dummy_root)
			return -EBUSY;
993

994 995
	ret = cgroup_populate_dir(cgrp, added_mask);
	if (ret)
T
Tejun Heo 已提交
996
		return ret;
997 998 999 1000 1001

	/*
	 * Nothing can fail from this point on.  Remove files for the
	 * removed subsystems and rebind each subsystem.
	 */
1002
	mutex_unlock(&cgroup_mutex);
1003
	cgroup_clear_dir(cgrp, removed_mask);
1004
	mutex_lock(&cgroup_mutex);
1005

1006
	for_each_subsys(ss, i) {
1007
		unsigned long bit = 1UL << i;
1008

1009
		if (bit & added_mask) {
1010
			/* We're binding this subsystem to this hierarchy */
1011 1012 1013
			BUG_ON(cgroup_css(cgrp, ss));
			BUG_ON(!cgroup_css(cgroup_dummy_top, ss));
			BUG_ON(cgroup_css(cgroup_dummy_top, ss)->cgroup != cgroup_dummy_top);
1014

1015
			rcu_assign_pointer(cgrp->subsys[i],
1016 1017
					   cgroup_css(cgroup_dummy_top, ss));
			cgroup_css(cgrp, ss)->cgroup = cgrp;
1018

1019
			ss->root = root;
1020
			if (ss->bind)
1021
				ss->bind(cgroup_css(cgrp, ss));
1022

B
Ben Blum 已提交
1023
			/* refcount was already taken, and we're keeping it */
1024
			root->subsys_mask |= bit;
1025
		} else if (bit & removed_mask) {
1026
			/* We're removing this subsystem */
1027 1028
			BUG_ON(cgroup_css(cgrp, ss) != cgroup_css(cgroup_dummy_top, ss));
			BUG_ON(cgroup_css(cgrp, ss)->cgroup != cgrp);
1029

1030
			if (ss->bind)
1031
				ss->bind(cgroup_css(cgroup_dummy_top, ss));
1032

1033
			cgroup_css(cgroup_dummy_top, ss)->cgroup = cgroup_dummy_top;
1034 1035
			RCU_INIT_POINTER(cgrp->subsys[i], NULL);

1036
			cgroup_subsys[i]->root = &cgroup_dummy_root;
1037
			root->subsys_mask &= ~bit;
1038 1039 1040
		}
	}

T
Tejun Heo 已提交
1041
	kernfs_activate(cgrp->kn);
1042 1043 1044
	return 0;
}

T
Tejun Heo 已提交
1045 1046
static int cgroup_show_options(struct seq_file *seq,
			       struct kernfs_root *kf_root)
1047
{
T
Tejun Heo 已提交
1048
	struct cgroupfs_root *root = cgroup_root_from_kf(kf_root);
1049
	struct cgroup_subsys *ss;
T
Tejun Heo 已提交
1050
	int ssid;
1051

T
Tejun Heo 已提交
1052 1053 1054
	for_each_subsys(ss, ssid)
		if (root->subsys_mask & (1 << ssid))
			seq_printf(seq, ",%s", ss->name);
1055 1056
	if (root->flags & CGRP_ROOT_SANE_BEHAVIOR)
		seq_puts(seq, ",sane_behavior");
1057
	if (root->flags & CGRP_ROOT_NOPREFIX)
1058
		seq_puts(seq, ",noprefix");
1059
	if (root->flags & CGRP_ROOT_XATTR)
A
Aristeu Rozanski 已提交
1060
		seq_puts(seq, ",xattr");
1061 1062

	spin_lock(&release_agent_path_lock);
1063 1064
	if (strlen(root->release_agent_path))
		seq_printf(seq, ",release_agent=%s", root->release_agent_path);
1065 1066
	spin_unlock(&release_agent_path_lock);

1067
	if (test_bit(CGRP_CPUSET_CLONE_CHILDREN, &root->top_cgroup.flags))
1068
		seq_puts(seq, ",clone_children");
1069 1070
	if (strlen(root->name))
		seq_printf(seq, ",name=%s", root->name);
1071 1072 1073 1074
	return 0;
}

struct cgroup_sb_opts {
1075
	unsigned long subsys_mask;
1076
	unsigned long flags;
1077
	char *release_agent;
1078
	bool cpuset_clone_children;
1079
	char *name;
1080 1081
	/* User explicitly requested empty subsystem */
	bool none;
1082 1083
};

B
Ben Blum 已提交
1084
/*
1085 1086 1087 1088
 * Convert a hierarchy specifier into a bitmask of subsystems and
 * flags. Call with cgroup_mutex held to protect the cgroup_subsys[]
 * array. This function takes refcounts on subsystems to be used, unless it
 * returns error, in which case no refcounts are taken.
B
Ben Blum 已提交
1089
 */
B
Ben Blum 已提交
1090
static int parse_cgroupfs_options(char *data, struct cgroup_sb_opts *opts)
1091
{
1092 1093
	char *token, *o = data;
	bool all_ss = false, one_ss = false;
1094
	unsigned long mask = (unsigned long)-1;
1095 1096
	struct cgroup_subsys *ss;
	int i;
1097

B
Ben Blum 已提交
1098 1099
	BUG_ON(!mutex_is_locked(&cgroup_mutex));

1100
#ifdef CONFIG_CPUSETS
1101
	mask = ~(1UL << cpuset_cgrp_id);
1102
#endif
1103

1104
	memset(opts, 0, sizeof(*opts));
1105 1106 1107 1108

	while ((token = strsep(&o, ",")) != NULL) {
		if (!*token)
			return -EINVAL;
1109
		if (!strcmp(token, "none")) {
1110 1111
			/* Explicitly have no subsystems */
			opts->none = true;
1112 1113 1114 1115 1116 1117 1118 1119 1120
			continue;
		}
		if (!strcmp(token, "all")) {
			/* Mutually exclusive option 'all' + subsystem name */
			if (one_ss)
				return -EINVAL;
			all_ss = true;
			continue;
		}
1121 1122 1123 1124
		if (!strcmp(token, "__DEVEL__sane_behavior")) {
			opts->flags |= CGRP_ROOT_SANE_BEHAVIOR;
			continue;
		}
1125
		if (!strcmp(token, "noprefix")) {
1126
			opts->flags |= CGRP_ROOT_NOPREFIX;
1127 1128 1129
			continue;
		}
		if (!strcmp(token, "clone_children")) {
1130
			opts->cpuset_clone_children = true;
1131 1132
			continue;
		}
A
Aristeu Rozanski 已提交
1133
		if (!strcmp(token, "xattr")) {
1134
			opts->flags |= CGRP_ROOT_XATTR;
A
Aristeu Rozanski 已提交
1135 1136
			continue;
		}
1137
		if (!strncmp(token, "release_agent=", 14)) {
1138 1139 1140
			/* Specifying two release agents is forbidden */
			if (opts->release_agent)
				return -EINVAL;
1141
			opts->release_agent =
1142
				kstrndup(token + 14, PATH_MAX - 1, GFP_KERNEL);
1143 1144
			if (!opts->release_agent)
				return -ENOMEM;
1145 1146 1147
			continue;
		}
		if (!strncmp(token, "name=", 5)) {
1148 1149 1150 1151 1152 1153 1154 1155 1156 1157 1158 1159 1160 1161 1162 1163 1164
			const char *name = token + 5;
			/* Can't specify an empty name */
			if (!strlen(name))
				return -EINVAL;
			/* Must match [\w.-]+ */
			for (i = 0; i < strlen(name); i++) {
				char c = name[i];
				if (isalnum(c))
					continue;
				if ((c == '.') || (c == '-') || (c == '_'))
					continue;
				return -EINVAL;
			}
			/* Specifying two names is forbidden */
			if (opts->name)
				return -EINVAL;
			opts->name = kstrndup(name,
1165
					      MAX_CGROUP_ROOT_NAMELEN - 1,
1166 1167 1168
					      GFP_KERNEL);
			if (!opts->name)
				return -ENOMEM;
1169 1170 1171 1172

			continue;
		}

1173
		for_each_subsys(ss, i) {
1174 1175 1176 1177 1178 1179 1180 1181
			if (strcmp(token, ss->name))
				continue;
			if (ss->disabled)
				continue;

			/* Mutually exclusive option 'all' + subsystem name */
			if (all_ss)
				return -EINVAL;
1182
			set_bit(i, &opts->subsys_mask);
1183 1184 1185 1186 1187 1188 1189 1190 1191 1192
			one_ss = true;

			break;
		}
		if (i == CGROUP_SUBSYS_COUNT)
			return -ENOENT;
	}

	/*
	 * If the 'all' option was specified select all the subsystems,
1193 1194
	 * otherwise if 'none', 'name=' and a subsystem name options
	 * were not specified, let's default to 'all'
1195
	 */
1196 1197 1198 1199
	if (all_ss || (!one_ss && !opts->none && !opts->name))
		for_each_subsys(ss, i)
			if (!ss->disabled)
				set_bit(i, &opts->subsys_mask);
1200

1201 1202
	/* Consistency checks */

1203 1204 1205
	if (opts->flags & CGRP_ROOT_SANE_BEHAVIOR) {
		pr_warning("cgroup: sane_behavior: this is still under development and its behaviors will change, proceed at your own risk\n");

1206 1207 1208 1209
		if ((opts->flags & (CGRP_ROOT_NOPREFIX | CGRP_ROOT_XATTR)) ||
		    opts->cpuset_clone_children || opts->release_agent ||
		    opts->name) {
			pr_err("cgroup: sane_behavior: noprefix, xattr, clone_children, release_agent and name are not allowed\n");
1210 1211 1212 1213
			return -EINVAL;
		}
	}

1214 1215 1216 1217 1218
	/*
	 * Option noprefix was introduced just for backward compatibility
	 * with the old cpuset, so we allow noprefix only if mounting just
	 * the cpuset subsystem.
	 */
1219
	if ((opts->flags & CGRP_ROOT_NOPREFIX) && (opts->subsys_mask & mask))
1220 1221
		return -EINVAL;

1222 1223

	/* Can't specify "none" and some subsystems */
1224
	if (opts->subsys_mask && opts->none)
1225 1226 1227 1228 1229 1230
		return -EINVAL;

	/*
	 * We either have to specify by name or by subsystems. (So all
	 * empty hierarchies must have a name).
	 */
1231
	if (!opts->subsys_mask && !opts->name)
1232 1233 1234 1235 1236
		return -EINVAL;

	return 0;
}

T
Tejun Heo 已提交
1237
static int cgroup_remount(struct kernfs_root *kf_root, int *flags, char *data)
1238 1239
{
	int ret = 0;
T
Tejun Heo 已提交
1240
	struct cgroupfs_root *root = cgroup_root_from_kf(kf_root);
1241
	struct cgroup_sb_opts opts;
1242
	unsigned long added_mask, removed_mask;
1243

1244 1245 1246 1247 1248
	if (root->flags & CGRP_ROOT_SANE_BEHAVIOR) {
		pr_err("cgroup: sane_behavior: remount is not allowed\n");
		return -EINVAL;
	}

T
Tejun Heo 已提交
1249
	mutex_lock(&cgroup_tree_mutex);
1250 1251 1252 1253 1254 1255 1256
	mutex_lock(&cgroup_mutex);

	/* See what subsystems are wanted */
	ret = parse_cgroupfs_options(data, &opts);
	if (ret)
		goto out_unlock;

1257
	if (opts.subsys_mask != root->subsys_mask || opts.release_agent)
1258 1259 1260
		pr_warning("cgroup: option changes via remount are deprecated (pid=%d comm=%s)\n",
			   task_tgid_nr(current), current->comm);

1261 1262
	added_mask = opts.subsys_mask & ~root->subsys_mask;
	removed_mask = root->subsys_mask & ~opts.subsys_mask;
1263

B
Ben Blum 已提交
1264
	/* Don't allow flags or name to change at remount */
1265
	if (((opts.flags ^ root->flags) & CGRP_ROOT_OPTION_MASK) ||
B
Ben Blum 已提交
1266
	    (opts.name && strcmp(opts.name, root->name))) {
1267 1268 1269
		pr_err("cgroup: option or name mismatch, new: 0x%lx \"%s\", old: 0x%lx \"%s\"\n",
		       opts.flags & CGRP_ROOT_OPTION_MASK, opts.name ?: "",
		       root->flags & CGRP_ROOT_OPTION_MASK, root->name);
1270 1271 1272 1273
		ret = -EINVAL;
		goto out_unlock;
	}

1274
	/* remounting is not allowed for populated hierarchies */
1275
	if (!list_empty(&root->top_cgroup.children)) {
1276
		ret = -EBUSY;
1277
		goto out_unlock;
B
Ben Blum 已提交
1278
	}
1279

1280
	ret = rebind_subsystems(root, added_mask, removed_mask);
1281
	if (ret)
1282
		goto out_unlock;
1283

1284 1285
	if (opts.release_agent) {
		spin_lock(&release_agent_path_lock);
1286
		strcpy(root->release_agent_path, opts.release_agent);
1287 1288
		spin_unlock(&release_agent_path_lock);
	}
1289
 out_unlock:
1290
	kfree(opts.release_agent);
1291
	kfree(opts.name);
1292
	mutex_unlock(&cgroup_mutex);
T
Tejun Heo 已提交
1293
	mutex_unlock(&cgroup_tree_mutex);
1294 1295 1296
	return ret;
}

1297 1298 1299 1300 1301 1302 1303 1304 1305 1306 1307 1308
/*
 * To reduce the fork() overhead for systems that are not actually using
 * their cgroups capability, we don't maintain the lists running through
 * each css_set to its tasks until we see the list actually used - in other
 * words after the first mount.
 */
static bool use_task_css_set_links __read_mostly;

static void cgroup_enable_task_cg_lists(void)
{
	struct task_struct *p, *g;

1309
	down_write(&css_set_rwsem);
1310 1311 1312 1313 1314 1315 1316 1317 1318 1319 1320 1321 1322 1323 1324 1325 1326 1327 1328 1329 1330 1331

	if (use_task_css_set_links)
		goto out_unlock;

	use_task_css_set_links = true;

	/*
	 * We need tasklist_lock because RCU is not safe against
	 * while_each_thread(). Besides, a forking task that has passed
	 * cgroup_post_fork() without seeing use_task_css_set_links = 1
	 * is not guaranteed to have its child immediately visible in the
	 * tasklist if we walk through it with RCU.
	 */
	read_lock(&tasklist_lock);
	do_each_thread(g, p) {
		WARN_ON_ONCE(!list_empty(&p->cg_list) ||
			     task_css_set(p) != &init_css_set);

		/*
		 * We should check if the process is exiting, otherwise
		 * it will race with cgroup_exit() in that the list
		 * entry won't be deleted though the process has exited.
1332 1333
		 * Do it while holding siglock so that we don't end up
		 * racing against cgroup_exit().
1334
		 */
1335
		spin_lock_irq(&p->sighand->siglock);
1336 1337 1338 1339 1340 1341
		if (!(p->flags & PF_EXITING)) {
			struct css_set *cset = task_css_set(p);

			list_add(&p->cg_list, &cset->tasks);
			get_css_set(cset);
		}
1342
		spin_unlock_irq(&p->sighand->siglock);
1343 1344 1345
	} while_each_thread(g, p);
	read_unlock(&tasklist_lock);
out_unlock:
1346
	up_write(&css_set_rwsem);
1347 1348
}

1349 1350
static void init_cgroup_housekeeping(struct cgroup *cgrp)
{
T
Tejun Heo 已提交
1351
	atomic_set(&cgrp->refcnt, 1);
1352 1353
	INIT_LIST_HEAD(&cgrp->sibling);
	INIT_LIST_HEAD(&cgrp->children);
1354
	INIT_LIST_HEAD(&cgrp->cset_links);
1355
	INIT_LIST_HEAD(&cgrp->release_list);
1356 1357
	INIT_LIST_HEAD(&cgrp->pidlists);
	mutex_init(&cgrp->pidlist_mutex);
T
Tejun Heo 已提交
1358
	cgrp->dummy_css.cgroup = cgrp;
1359
}
1360

1361 1362
static void init_cgroup_root(struct cgroupfs_root *root,
			     struct cgroup_sb_opts *opts)
1363
{
1364
	struct cgroup *cgrp = &root->top_cgroup;
1365

1366
	INIT_LIST_HEAD(&root->root_list);
1367
	atomic_set(&root->nr_cgrps, 1);
1368
	cgrp->root = root;
1369
	init_cgroup_housekeeping(cgrp);
1370
	idr_init(&root->cgroup_idr);
1371

1372 1373 1374 1375 1376
	root->flags = opts->flags;
	if (opts->release_agent)
		strcpy(root->release_agent_path, opts->release_agent);
	if (opts->name)
		strcpy(root->name, opts->name);
1377 1378
	if (opts->cpuset_clone_children)
		set_bit(CGRP_CPUSET_CLONE_CHILDREN, &root->top_cgroup.flags);
1379 1380
}

T
Tejun Heo 已提交
1381
static int cgroup_setup_root(struct cgroupfs_root *root, unsigned long ss_mask)
1382 1383 1384 1385 1386 1387 1388 1389 1390 1391 1392
{
	LIST_HEAD(tmp_links);
	struct cgroup *root_cgrp = &root->top_cgroup;
	struct css_set *cset;
	int i, ret;

	lockdep_assert_held(&cgroup_tree_mutex);
	lockdep_assert_held(&cgroup_mutex);

	ret = idr_alloc(&root->cgroup_idr, root_cgrp, 0, 1, GFP_KERNEL);
	if (ret < 0)
T
Tejun Heo 已提交
1393
		goto out;
1394 1395 1396
	root_cgrp->id = ret;

	/*
1397
	 * We're accessing css_set_count without locking css_set_rwsem here,
1398 1399 1400 1401 1402 1403
	 * but that's OK - it can only be increased by someone holding
	 * cgroup_lock, and that's us. The worst that can happen is that we
	 * have some link structures left over
	 */
	ret = allocate_cgrp_cset_links(css_set_count, &tmp_links);
	if (ret)
T
Tejun Heo 已提交
1404
		goto out;
1405

1406
	ret = cgroup_init_root_id(root);
1407
	if (ret)
T
Tejun Heo 已提交
1408
		goto out;
1409

T
Tejun Heo 已提交
1410 1411 1412 1413 1414 1415 1416 1417
	root->kf_root = kernfs_create_root(&cgroup_kf_syscall_ops,
					   KERNFS_ROOT_CREATE_DEACTIVATED,
					   root_cgrp);
	if (IS_ERR(root->kf_root)) {
		ret = PTR_ERR(root->kf_root);
		goto exit_root_id;
	}
	root_cgrp->kn = root->kf_root->kn;
1418 1419 1420

	ret = cgroup_addrm_files(root_cgrp, cgroup_base_files, true);
	if (ret)
T
Tejun Heo 已提交
1421
		goto destroy_root;
1422

T
Tejun Heo 已提交
1423
	ret = rebind_subsystems(root, ss_mask, 0);
1424
	if (ret)
T
Tejun Heo 已提交
1425
		goto destroy_root;
1426 1427 1428 1429 1430 1431 1432 1433 1434 1435 1436 1437 1438

	/*
	 * There must be no failure case after here, since rebinding takes
	 * care of subsystems' refcounts, which are explicitly dropped in
	 * the failure exit path.
	 */
	list_add(&root->root_list, &cgroup_roots);
	cgroup_root_count++;

	/*
	 * Link the top cgroup in this hierarchy into all the css_set
	 * objects.
	 */
1439
	down_write(&css_set_rwsem);
1440 1441
	hash_for_each(css_set_table, i, cset, hlist)
		link_css_set(&tmp_links, cset, root_cgrp);
1442
	up_write(&css_set_rwsem);
1443 1444

	BUG_ON(!list_empty(&root_cgrp->children));
1445
	BUG_ON(atomic_read(&root->nr_cgrps) != 1);
1446

T
Tejun Heo 已提交
1447
	kernfs_activate(root_cgrp->kn);
1448
	ret = 0;
T
Tejun Heo 已提交
1449
	goto out;
1450

T
Tejun Heo 已提交
1451 1452 1453 1454
destroy_root:
	kernfs_destroy_root(root->kf_root);
	root->kf_root = NULL;
exit_root_id:
1455
	cgroup_exit_root_id(root);
T
Tejun Heo 已提交
1456
out:
1457 1458 1459 1460
	free_cgrp_cset_links(&tmp_links);
	return ret;
}

A
Al Viro 已提交
1461
static struct dentry *cgroup_mount(struct file_system_type *fs_type,
1462
			 int flags, const char *unused_dev_name,
A
Al Viro 已提交
1463
			 void *data)
1464
{
T
Tejun Heo 已提交
1465
	struct cgroupfs_root *root;
1466
	struct cgroup_sb_opts opts;
T
Tejun Heo 已提交
1467
	struct dentry *dentry;
1468
	int ret;
1469 1470 1471 1472 1473 1474 1475

	/*
	 * The first time anyone tries to mount a cgroup, enable the list
	 * linking each css_set to its tasks and fix up all existing tasks.
	 */
	if (!use_task_css_set_links)
		cgroup_enable_task_cg_lists();
T
Tejun Heo 已提交
1476
retry:
1477
	mutex_lock(&cgroup_tree_mutex);
B
Ben Blum 已提交
1478
	mutex_lock(&cgroup_mutex);
1479 1480

	/* First find the desired set of subsystems */
1481
	ret = parse_cgroupfs_options(data, &opts);
1482
	if (ret)
1483
		goto out_unlock;
1484

T
Tejun Heo 已提交
1485
	/* look for a matching existing root */
1486
	for_each_root(root) {
T
Tejun Heo 已提交
1487
		bool name_match = false;
1488

1489 1490 1491
		if (root == &cgroup_dummy_root)
			continue;

T
Tejun Heo 已提交
1492 1493 1494 1495 1496 1497 1498 1499 1500 1501
		/*
		 * If we asked for a name then it must match.  Also, if
		 * name matches but sybsys_mask doesn't, we should fail.
		 * Remember whether name matched.
		 */
		if (opts.name) {
			if (strcmp(opts.name, root->name))
				continue;
			name_match = true;
		}
1502

1503
		/*
T
Tejun Heo 已提交
1504 1505
		 * If we asked for subsystems (or explicitly for no
		 * subsystems) then they must match.
1506
		 */
T
Tejun Heo 已提交
1507 1508 1509 1510 1511 1512 1513
		if ((opts.subsys_mask || opts.none) &&
		    (opts.subsys_mask != root->subsys_mask)) {
			if (!name_match)
				continue;
			ret = -EBUSY;
			goto out_unlock;
		}
1514

1515
		if ((root->flags ^ opts.flags) & CGRP_ROOT_OPTION_MASK) {
1516 1517 1518
			if ((root->flags | opts.flags) & CGRP_ROOT_SANE_BEHAVIOR) {
				pr_err("cgroup: sane_behavior: new mount options should match the existing superblock\n");
				ret = -EINVAL;
1519
				goto out_unlock;
1520 1521 1522
			} else {
				pr_warning("cgroup: new mount options do not match the existing superblock, will be ignored\n");
			}
1523
		}
T
Tejun Heo 已提交
1524

T
Tejun Heo 已提交
1525 1526 1527 1528 1529 1530 1531 1532 1533 1534
		/*
		 * A root's lifetime is governed by its top cgroup.  Zero
		 * ref indicate that the root is being destroyed.  Wait for
		 * destruction to complete so that the subsystems are free.
		 * We can use wait_queue for the wait but this path is
		 * super cold.  Let's just sleep for a bit and retry.
		 */
		if (!atomic_inc_not_zero(&root->top_cgroup.refcnt)) {
			mutex_unlock(&cgroup_mutex);
			mutex_unlock(&cgroup_tree_mutex);
1535 1536
			kfree(opts.release_agent);
			kfree(opts.name);
T
Tejun Heo 已提交
1537 1538 1539 1540 1541
			msleep(10);
			goto retry;
		}

		ret = 0;
T
Tejun Heo 已提交
1542
		goto out_unlock;
1543 1544
	}

1545 1546 1547 1548 1549 1550 1551 1552 1553 1554 1555 1556 1557
	/*
	 * No such thing, create a new one.  name= matching without subsys
	 * specification is allowed for already existing hierarchies but we
	 * can't create new one without subsys specification.
	 */
	if (!opts.subsys_mask && !opts.none) {
		ret = -EINVAL;
		goto out_unlock;
	}

	root = kzalloc(sizeof(*root), GFP_KERNEL);
	if (!root) {
		ret = -ENOMEM;
T
Tejun Heo 已提交
1558 1559 1560
		goto out_unlock;
	}

1561 1562
	init_cgroup_root(root, &opts);

T
Tejun Heo 已提交
1563
	ret = cgroup_setup_root(root, opts.subsys_mask);
T
Tejun Heo 已提交
1564 1565 1566
	if (ret)
		cgroup_free_root(root);

1567
out_unlock:
T
Tejun Heo 已提交
1568
	mutex_unlock(&cgroup_mutex);
T
Tejun Heo 已提交
1569
	mutex_unlock(&cgroup_tree_mutex);
1570

1571 1572
	kfree(opts.release_agent);
	kfree(opts.name);
1573

T
Tejun Heo 已提交
1574
	if (ret)
1575
		return ERR_PTR(ret);
T
Tejun Heo 已提交
1576 1577 1578

	dentry = kernfs_mount(fs_type, flags, root->kf_root);
	if (IS_ERR(dentry))
T
Tejun Heo 已提交
1579
		cgroup_put(&root->top_cgroup);
T
Tejun Heo 已提交
1580 1581 1582 1583 1584 1585 1586 1587
	return dentry;
}

static void cgroup_kill_sb(struct super_block *sb)
{
	struct kernfs_root *kf_root = kernfs_root_from_sb(sb);
	struct cgroupfs_root *root = cgroup_root_from_kf(kf_root);

T
Tejun Heo 已提交
1588
	cgroup_put(&root->top_cgroup);
T
Tejun Heo 已提交
1589
	kernfs_kill_sb(sb);
1590 1591 1592 1593
}

static struct file_system_type cgroup_fs_type = {
	.name = "cgroup",
A
Al Viro 已提交
1594
	.mount = cgroup_mount,
1595 1596 1597
	.kill_sb = cgroup_kill_sb,
};

1598 1599
static struct kobject *cgroup_kobj;

1600
/**
1601
 * task_cgroup_path - cgroup path of a task in the first cgroup hierarchy
1602 1603 1604 1605
 * @task: target task
 * @buf: the buffer to write the path into
 * @buflen: the length of the buffer
 *
1606 1607 1608 1609 1610
 * Determine @task's cgroup on the first (the one with the lowest non-zero
 * hierarchy_id) cgroup hierarchy and copy its path into @buf.  This
 * function grabs cgroup_mutex and shouldn't be used inside locks used by
 * cgroup controller callbacks.
 *
T
Tejun Heo 已提交
1611
 * Return value is the same as kernfs_path().
1612
 */
T
Tejun Heo 已提交
1613
char *task_cgroup_path(struct task_struct *task, char *buf, size_t buflen)
1614 1615
{
	struct cgroupfs_root *root;
1616
	struct cgroup *cgrp;
T
Tejun Heo 已提交
1617 1618
	int hierarchy_id = 1;
	char *path = NULL;
1619 1620

	mutex_lock(&cgroup_mutex);
1621
	down_read(&css_set_rwsem);
1622

1623 1624
	root = idr_get_next(&cgroup_hierarchy_idr, &hierarchy_id);

1625 1626
	if (root) {
		cgrp = task_cgroup_from_root(task, root);
T
Tejun Heo 已提交
1627
		path = cgroup_path(cgrp, buf, buflen);
1628 1629
	} else {
		/* if no hierarchy exists, everyone is in "/" */
T
Tejun Heo 已提交
1630 1631
		if (strlcpy(buf, "/", buflen) < buflen)
			path = buf;
1632 1633
	}

1634
	up_read(&css_set_rwsem);
1635
	mutex_unlock(&cgroup_mutex);
T
Tejun Heo 已提交
1636
	return path;
1637
}
1638
EXPORT_SYMBOL_GPL(task_cgroup_path);
1639

1640
/* used to track tasks and other necessary states during migration */
1641
struct cgroup_taskset {
1642 1643 1644 1645 1646 1647 1648 1649 1650 1651 1652 1653 1654 1655 1656 1657 1658 1659
	/* the src and dst cset list running through cset->mg_node */
	struct list_head	src_csets;
	struct list_head	dst_csets;

	/*
	 * Fields for cgroup_taskset_*() iteration.
	 *
	 * Before migration is committed, the target migration tasks are on
	 * ->mg_tasks of the csets on ->src_csets.  After, on ->mg_tasks of
	 * the csets on ->dst_csets.  ->csets point to either ->src_csets
	 * or ->dst_csets depending on whether migration is committed.
	 *
	 * ->cur_csets and ->cur_task point to the current task position
	 * during iteration.
	 */
	struct list_head	*csets;
	struct css_set		*cur_cset;
	struct task_struct	*cur_task;
1660 1661 1662 1663 1664 1665 1666 1667 1668 1669
};

/**
 * cgroup_taskset_first - reset taskset and return the first task
 * @tset: taskset of interest
 *
 * @tset iteration is initialized and the first task is returned.
 */
struct task_struct *cgroup_taskset_first(struct cgroup_taskset *tset)
{
1670 1671 1672 1673
	tset->cur_cset = list_first_entry(tset->csets, struct css_set, mg_node);
	tset->cur_task = NULL;

	return cgroup_taskset_next(tset);
1674 1675 1676 1677 1678 1679 1680 1681 1682 1683 1684
}

/**
 * cgroup_taskset_next - iterate to the next task in taskset
 * @tset: taskset of interest
 *
 * Return the next task in @tset.  Iteration must have been initialized
 * with cgroup_taskset_first().
 */
struct task_struct *cgroup_taskset_next(struct cgroup_taskset *tset)
{
1685 1686
	struct css_set *cset = tset->cur_cset;
	struct task_struct *task = tset->cur_task;
1687

1688 1689 1690 1691 1692 1693
	while (&cset->mg_node != tset->csets) {
		if (!task)
			task = list_first_entry(&cset->mg_tasks,
						struct task_struct, cg_list);
		else
			task = list_next_entry(task, cg_list);
1694

1695 1696 1697 1698 1699 1700 1701 1702 1703 1704 1705
		if (&task->cg_list != &cset->mg_tasks) {
			tset->cur_cset = cset;
			tset->cur_task = task;
			return task;
		}

		cset = list_next_entry(cset, mg_node);
		task = NULL;
	}

	return NULL;
1706 1707
}

1708
/**
B
Ben Blum 已提交
1709
 * cgroup_task_migrate - move a task from one cgroup to another.
1710 1711 1712
 * @old_cgrp; the cgroup @tsk is being migrated from
 * @tsk: the task being migrated
 * @new_cset: the new css_set @tsk is being attached to
B
Ben Blum 已提交
1713
 *
1714
 * Must be called with cgroup_mutex, threadgroup and css_set_rwsem locked.
B
Ben Blum 已提交
1715
 */
1716 1717 1718
static void cgroup_task_migrate(struct cgroup *old_cgrp,
				struct task_struct *tsk,
				struct css_set *new_cset)
B
Ben Blum 已提交
1719
{
1720
	struct css_set *old_cset;
B
Ben Blum 已提交
1721

1722 1723 1724
	lockdep_assert_held(&cgroup_mutex);
	lockdep_assert_held(&css_set_rwsem);

B
Ben Blum 已提交
1725
	/*
1726 1727 1728
	 * We are synchronized through threadgroup_lock() against PF_EXITING
	 * setting such that we can't race against cgroup_exit() changing the
	 * css_set to init_css_set and dropping the old one.
B
Ben Blum 已提交
1729
	 */
1730
	WARN_ON_ONCE(tsk->flags & PF_EXITING);
1731
	old_cset = task_css_set(tsk);
B
Ben Blum 已提交
1732

1733
	get_css_set(new_cset);
1734
	rcu_assign_pointer(tsk->cgroups, new_cset);
1735
	list_move(&tsk->cg_list, &new_cset->mg_tasks);
B
Ben Blum 已提交
1736 1737

	/*
1738 1739 1740
	 * We just gained a reference on old_cset by taking it from the
	 * task. As trading it for new_cset is protected by cgroup_mutex,
	 * we're safe to drop it here; it will be freed under RCU.
B
Ben Blum 已提交
1741
	 */
1742
	set_bit(CGRP_RELEASABLE, &old_cgrp->flags);
1743
	put_css_set_locked(old_cset, false);
B
Ben Blum 已提交
1744 1745
}

L
Li Zefan 已提交
1746
/**
1747 1748
 * cgroup_migrate_finish - cleanup after attach
 * @preloaded_csets: list of preloaded css_sets
B
Ben Blum 已提交
1749
 *
1750 1751
 * Undo cgroup_migrate_add_src() and cgroup_migrate_prepare_dst().  See
 * those functions for details.
B
Ben Blum 已提交
1752
 */
1753 1754 1755 1756 1757 1758 1759 1760 1761 1762 1763 1764 1765 1766 1767 1768 1769 1770 1771 1772 1773 1774 1775 1776 1777 1778 1779 1780 1781 1782 1783 1784 1785 1786 1787 1788 1789 1790 1791 1792 1793 1794 1795 1796 1797 1798 1799 1800 1801 1802 1803 1804 1805 1806 1807 1808 1809 1810 1811 1812 1813 1814 1815 1816 1817 1818 1819 1820 1821 1822 1823 1824 1825 1826 1827 1828 1829 1830 1831 1832 1833 1834 1835 1836 1837 1838 1839 1840 1841 1842 1843 1844 1845 1846 1847 1848 1849 1850 1851 1852 1853 1854 1855 1856 1857 1858 1859 1860 1861 1862 1863 1864 1865 1866 1867 1868 1869 1870 1871 1872 1873 1874 1875 1876 1877
static void cgroup_migrate_finish(struct list_head *preloaded_csets)
{
	struct css_set *cset, *tmp_cset;

	lockdep_assert_held(&cgroup_mutex);

	down_write(&css_set_rwsem);
	list_for_each_entry_safe(cset, tmp_cset, preloaded_csets, mg_preload_node) {
		cset->mg_src_cgrp = NULL;
		cset->mg_dst_cset = NULL;
		list_del_init(&cset->mg_preload_node);
		put_css_set_locked(cset, false);
	}
	up_write(&css_set_rwsem);
}

/**
 * cgroup_migrate_add_src - add a migration source css_set
 * @src_cset: the source css_set to add
 * @dst_cgrp: the destination cgroup
 * @preloaded_csets: list of preloaded css_sets
 *
 * Tasks belonging to @src_cset are about to be migrated to @dst_cgrp.  Pin
 * @src_cset and add it to @preloaded_csets, which should later be cleaned
 * up by cgroup_migrate_finish().
 *
 * This function may be called without holding threadgroup_lock even if the
 * target is a process.  Threads may be created and destroyed but as long
 * as cgroup_mutex is not dropped, no new css_set can be put into play and
 * the preloaded css_sets are guaranteed to cover all migrations.
 */
static void cgroup_migrate_add_src(struct css_set *src_cset,
				   struct cgroup *dst_cgrp,
				   struct list_head *preloaded_csets)
{
	struct cgroup *src_cgrp;

	lockdep_assert_held(&cgroup_mutex);
	lockdep_assert_held(&css_set_rwsem);

	src_cgrp = cset_cgroup_from_root(src_cset, dst_cgrp->root);

	/* nothing to do if this cset already belongs to the cgroup */
	if (src_cgrp == dst_cgrp)
		return;

	if (!list_empty(&src_cset->mg_preload_node))
		return;

	WARN_ON(src_cset->mg_src_cgrp);
	WARN_ON(!list_empty(&src_cset->mg_tasks));
	WARN_ON(!list_empty(&src_cset->mg_node));

	src_cset->mg_src_cgrp = src_cgrp;
	get_css_set(src_cset);
	list_add(&src_cset->mg_preload_node, preloaded_csets);
}

/**
 * cgroup_migrate_prepare_dst - prepare destination css_sets for migration
 * @dst_cgrp: the destination cgroup
 * @preloaded_csets: list of preloaded source css_sets
 *
 * Tasks are about to be moved to @dst_cgrp and all the source css_sets
 * have been preloaded to @preloaded_csets.  This function looks up and
 * pins all destination css_sets, links each to its source, and put them on
 * @preloaded_csets.
 *
 * This function must be called after cgroup_migrate_add_src() has been
 * called on each migration source css_set.  After migration is performed
 * using cgroup_migrate(), cgroup_migrate_finish() must be called on
 * @preloaded_csets.
 */
static int cgroup_migrate_prepare_dst(struct cgroup *dst_cgrp,
				      struct list_head *preloaded_csets)
{
	LIST_HEAD(csets);
	struct css_set *src_cset;

	lockdep_assert_held(&cgroup_mutex);

	/* look up the dst cset for each src cset and link it to src */
	list_for_each_entry(src_cset, preloaded_csets, mg_preload_node) {
		struct css_set *dst_cset;

		dst_cset = find_css_set(src_cset, dst_cgrp);
		if (!dst_cset)
			goto err;

		WARN_ON_ONCE(src_cset->mg_dst_cset || dst_cset->mg_dst_cset);
		src_cset->mg_dst_cset = dst_cset;

		if (list_empty(&dst_cset->mg_preload_node))
			list_add(&dst_cset->mg_preload_node, &csets);
		else
			put_css_set(dst_cset, false);
	}

	list_splice(&csets, preloaded_csets);
	return 0;
err:
	cgroup_migrate_finish(&csets);
	return -ENOMEM;
}

/**
 * cgroup_migrate - migrate a process or task to a cgroup
 * @cgrp: the destination cgroup
 * @leader: the leader of the process or the task to migrate
 * @threadgroup: whether @leader points to the whole process or a single task
 *
 * Migrate a process or task denoted by @leader to @cgrp.  If migrating a
 * process, the caller must be holding threadgroup_lock of @leader.  The
 * caller is also responsible for invoking cgroup_migrate_add_src() and
 * cgroup_migrate_prepare_dst() on the targets before invoking this
 * function and following up with cgroup_migrate_finish().
 *
 * As long as a controller's ->can_attach() doesn't fail, this function is
 * guaranteed to succeed.  This means that, excluding ->can_attach()
 * failure, when migrating multiple targets, the success or failure can be
 * decided for all targets by invoking group_migrate_prepare_dst() before
 * actually starting migrating.
 */
static int cgroup_migrate(struct cgroup *cgrp, struct task_struct *leader,
			  bool threadgroup)
B
Ben Blum 已提交
1878
{
1879 1880 1881 1882 1883
	struct cgroup_taskset tset = {
		.src_csets	= LIST_HEAD_INIT(tset.src_csets),
		.dst_csets	= LIST_HEAD_INIT(tset.dst_csets),
		.csets		= &tset.src_csets,
	};
T
Tejun Heo 已提交
1884
	struct cgroup_subsys_state *css, *failed_css = NULL;
1885 1886 1887
	struct css_set *cset, *tmp_cset;
	struct task_struct *task, *tmp_task;
	int i, ret;
B
Ben Blum 已提交
1888

1889 1890 1891 1892 1893
	/*
	 * Prevent freeing of tasks while we take a snapshot. Tasks that are
	 * already PF_EXITING could be freed from underneath us unless we
	 * take an rcu_read_lock.
	 */
1894
	down_write(&css_set_rwsem);
1895
	rcu_read_lock();
1896
	task = leader;
B
Ben Blum 已提交
1897
	do {
1898 1899
		/* @task either already exited or can't exit until the end */
		if (task->flags & PF_EXITING)
1900
			goto next;
1901

1902 1903 1904 1905
		/* leave @task alone if post_fork() hasn't linked it yet */
		if (list_empty(&task->cg_list))
			goto next;

1906
		cset = task_css_set(task);
1907
		if (!cset->mg_src_cgrp)
1908
			goto next;
1909 1910

		list_move(&task->cg_list, &cset->mg_tasks);
1911 1912
		list_move(&cset->mg_node, &tset.src_csets);
		list_move(&cset->mg_dst_cset->mg_node, &tset.dst_csets);
1913
	next:
1914 1915
		if (!threadgroup)
			break;
1916
	} while_each_thread(leader, task);
1917
	rcu_read_unlock();
1918
	up_write(&css_set_rwsem);
B
Ben Blum 已提交
1919

1920
	/* methods shouldn't be called if no task is actually migrating */
1921 1922
	if (list_empty(&tset.src_csets))
		return 0;
1923

1924
	/* check that we can legitimately attach to the cgroup */
T
Tejun Heo 已提交
1925 1926
	for_each_css(css, i, cgrp) {
		if (css->ss->can_attach) {
1927 1928
			ret = css->ss->can_attach(css, &tset);
			if (ret) {
T
Tejun Heo 已提交
1929
				failed_css = css;
B
Ben Blum 已提交
1930 1931 1932 1933 1934 1935
				goto out_cancel_attach;
			}
		}
	}

	/*
1936 1937 1938
	 * Now that we're guaranteed success, proceed to move all tasks to
	 * the new cgroup.  There are no failure cases after here, so this
	 * is the commit point.
B
Ben Blum 已提交
1939
	 */
1940
	down_write(&css_set_rwsem);
1941 1942 1943 1944
	list_for_each_entry(cset, &tset.src_csets, mg_node) {
		list_for_each_entry_safe(task, tmp_task, &cset->mg_tasks, cg_list)
			cgroup_task_migrate(cset->mg_src_cgrp, task,
					    cset->mg_dst_cset);
B
Ben Blum 已提交
1945
	}
1946
	up_write(&css_set_rwsem);
1947

B
Ben Blum 已提交
1948
	/*
1949 1950 1951
	 * Migration is committed, all target tasks are now on dst_csets.
	 * Nothing is sensitive to fork() after this point.  Notify
	 * controllers that migration is complete.
B
Ben Blum 已提交
1952
	 */
1953 1954
	tset.csets = &tset.dst_csets;

T
Tejun Heo 已提交
1955 1956 1957
	for_each_css(css, i, cgrp)
		if (css->ss->attach)
			css->ss->attach(css, &tset);
B
Ben Blum 已提交
1958

1959
	ret = 0;
1960 1961
	goto out_release_tset;

B
Ben Blum 已提交
1962
out_cancel_attach:
1963 1964 1965 1966 1967
	for_each_css(css, i, cgrp) {
		if (css == failed_css)
			break;
		if (css->ss->cancel_attach)
			css->ss->cancel_attach(css, &tset);
B
Ben Blum 已提交
1968
	}
1969 1970 1971 1972 1973 1974 1975 1976
out_release_tset:
	down_write(&css_set_rwsem);
	list_splice_init(&tset.dst_csets, &tset.src_csets);
	list_for_each_entry_safe(cset, tmp_cset, &tset.src_csets, mg_node) {
		list_splice_init(&cset->mg_tasks, &cset->tasks);
		list_del_init(&cset->mg_node);
	}
	up_write(&css_set_rwsem);
1977
	return ret;
B
Ben Blum 已提交
1978 1979
}

1980 1981 1982 1983 1984 1985
/**
 * cgroup_attach_task - attach a task or a whole threadgroup to a cgroup
 * @dst_cgrp: the cgroup to attach to
 * @leader: the task or the leader of the threadgroup to be attached
 * @threadgroup: attach the whole threadgroup?
 *
1986
 * Call holding cgroup_mutex and threadgroup_lock of @leader.
1987 1988 1989 1990 1991 1992 1993 1994 1995 1996 1997 1998 1999 2000 2001 2002 2003 2004 2005 2006 2007 2008 2009 2010 2011 2012 2013 2014 2015 2016
 */
static int cgroup_attach_task(struct cgroup *dst_cgrp,
			      struct task_struct *leader, bool threadgroup)
{
	LIST_HEAD(preloaded_csets);
	struct task_struct *task;
	int ret;

	/* look up all src csets */
	down_read(&css_set_rwsem);
	rcu_read_lock();
	task = leader;
	do {
		cgroup_migrate_add_src(task_css_set(task), dst_cgrp,
				       &preloaded_csets);
		if (!threadgroup)
			break;
	} while_each_thread(leader, task);
	rcu_read_unlock();
	up_read(&css_set_rwsem);

	/* prepare dst csets and commit */
	ret = cgroup_migrate_prepare_dst(dst_cgrp, &preloaded_csets);
	if (!ret)
		ret = cgroup_migrate(dst_cgrp, leader, threadgroup);

	cgroup_migrate_finish(&preloaded_csets);
	return ret;
}

B
Ben Blum 已提交
2017 2018
/*
 * Find the task_struct of the task to attach by vpid and pass it along to the
2019
 * function to attach either it or all tasks in its threadgroup. Will lock
2020
 * cgroup_mutex and threadgroup.
2021
 */
B
Ben Blum 已提交
2022
static int attach_task_by_pid(struct cgroup *cgrp, u64 pid, bool threadgroup)
2023 2024
{
	struct task_struct *tsk;
2025
	const struct cred *cred = current_cred(), *tcred;
2026 2027
	int ret;

B
Ben Blum 已提交
2028 2029 2030
	if (!cgroup_lock_live_group(cgrp))
		return -ENODEV;

2031 2032
retry_find_task:
	rcu_read_lock();
2033
	if (pid) {
2034
		tsk = find_task_by_vpid(pid);
B
Ben Blum 已提交
2035 2036
		if (!tsk) {
			rcu_read_unlock();
S
SeongJae Park 已提交
2037
			ret = -ESRCH;
2038
			goto out_unlock_cgroup;
2039
		}
B
Ben Blum 已提交
2040 2041 2042 2043
		/*
		 * even if we're attaching all tasks in the thread group, we
		 * only need to check permissions on one of them.
		 */
2044
		tcred = __task_cred(tsk);
2045 2046 2047
		if (!uid_eq(cred->euid, GLOBAL_ROOT_UID) &&
		    !uid_eq(cred->euid, tcred->uid) &&
		    !uid_eq(cred->euid, tcred->suid)) {
2048
			rcu_read_unlock();
2049 2050
			ret = -EACCES;
			goto out_unlock_cgroup;
2051
		}
2052 2053
	} else
		tsk = current;
2054 2055

	if (threadgroup)
2056
		tsk = tsk->group_leader;
2057 2058

	/*
2059
	 * Workqueue threads may acquire PF_NO_SETAFFINITY and become
2060 2061 2062
	 * trapped in a cpuset, or RT worker may be born in a cgroup
	 * with no rt_runtime allocated.  Just say no.
	 */
2063
	if (tsk == kthreadd_task || (tsk->flags & PF_NO_SETAFFINITY)) {
2064 2065 2066 2067 2068
		ret = -EINVAL;
		rcu_read_unlock();
		goto out_unlock_cgroup;
	}

2069 2070 2071 2072 2073 2074 2075 2076 2077 2078 2079 2080 2081 2082 2083 2084 2085
	get_task_struct(tsk);
	rcu_read_unlock();

	threadgroup_lock(tsk);
	if (threadgroup) {
		if (!thread_group_leader(tsk)) {
			/*
			 * a race with de_thread from another thread's exec()
			 * may strip us of our leadership, if this happens,
			 * there is no choice but to throw this task away and
			 * try again; this is
			 * "double-double-toil-and-trouble-check locking".
			 */
			threadgroup_unlock(tsk);
			put_task_struct(tsk);
			goto retry_find_task;
		}
2086 2087 2088 2089
	}

	ret = cgroup_attach_task(cgrp, tsk, threadgroup);

2090 2091
	threadgroup_unlock(tsk);

2092
	put_task_struct(tsk);
2093
out_unlock_cgroup:
T
Tejun Heo 已提交
2094
	mutex_unlock(&cgroup_mutex);
2095 2096 2097
	return ret;
}

2098 2099 2100 2101 2102 2103 2104 2105 2106 2107
/**
 * cgroup_attach_task_all - attach task 'tsk' to all cgroups of task 'from'
 * @from: attach to all cgroups of a given task
 * @tsk: the task to be attached
 */
int cgroup_attach_task_all(struct task_struct *from, struct task_struct *tsk)
{
	struct cgroupfs_root *root;
	int retval = 0;

T
Tejun Heo 已提交
2108
	mutex_lock(&cgroup_mutex);
2109
	for_each_root(root) {
2110 2111
		struct cgroup *from_cgrp;

2112 2113 2114
		if (root == &cgroup_dummy_root)
			continue;

2115 2116 2117
		down_read(&css_set_rwsem);
		from_cgrp = task_cgroup_from_root(from, root);
		up_read(&css_set_rwsem);
2118

L
Li Zefan 已提交
2119
		retval = cgroup_attach_task(from_cgrp, tsk, false);
2120 2121 2122
		if (retval)
			break;
	}
T
Tejun Heo 已提交
2123
	mutex_unlock(&cgroup_mutex);
2124 2125 2126 2127 2128

	return retval;
}
EXPORT_SYMBOL_GPL(cgroup_attach_task_all);

2129 2130
static int cgroup_tasks_write(struct cgroup_subsys_state *css,
			      struct cftype *cft, u64 pid)
B
Ben Blum 已提交
2131
{
2132
	return attach_task_by_pid(css->cgroup, pid, false);
B
Ben Blum 已提交
2133 2134
}

2135 2136
static int cgroup_procs_write(struct cgroup_subsys_state *css,
			      struct cftype *cft, u64 tgid)
2137
{
2138
	return attach_task_by_pid(css->cgroup, tgid, true);
2139 2140
}

2141 2142
static int cgroup_release_agent_write(struct cgroup_subsys_state *css,
				      struct cftype *cft, const char *buffer)
2143
{
2144 2145 2146
	struct cgroupfs_root *root = css->cgroup->root;

	BUILD_BUG_ON(sizeof(root->release_agent_path) < PATH_MAX);
2147
	if (!cgroup_lock_live_group(css->cgroup))
2148
		return -ENODEV;
2149
	spin_lock(&release_agent_path_lock);
2150 2151
	strlcpy(root->release_agent_path, buffer,
		sizeof(root->release_agent_path));
2152
	spin_unlock(&release_agent_path_lock);
T
Tejun Heo 已提交
2153
	mutex_unlock(&cgroup_mutex);
2154 2155 2156
	return 0;
}

2157
static int cgroup_release_agent_show(struct seq_file *seq, void *v)
2158
{
2159
	struct cgroup *cgrp = seq_css(seq)->cgroup;
2160

2161 2162 2163 2164
	if (!cgroup_lock_live_group(cgrp))
		return -ENODEV;
	seq_puts(seq, cgrp->root->release_agent_path);
	seq_putc(seq, '\n');
T
Tejun Heo 已提交
2165
	mutex_unlock(&cgroup_mutex);
2166 2167 2168
	return 0;
}

2169
static int cgroup_sane_behavior_show(struct seq_file *seq, void *v)
2170
{
2171 2172 2173
	struct cgroup *cgrp = seq_css(seq)->cgroup;

	seq_printf(seq, "%d\n", cgroup_sane_behavior(cgrp));
2174 2175 2176
	return 0;
}

T
Tejun Heo 已提交
2177 2178
static ssize_t cgroup_file_write(struct kernfs_open_file *of, char *buf,
				 size_t nbytes, loff_t off)
2179
{
T
Tejun Heo 已提交
2180 2181 2182
	struct cgroup *cgrp = of->kn->parent->priv;
	struct cftype *cft = of->kn->priv;
	struct cgroup_subsys_state *css;
2183
	int ret;
2184

T
Tejun Heo 已提交
2185 2186 2187 2188 2189 2190 2191 2192 2193
	/*
	 * kernfs guarantees that a file isn't deleted with operations in
	 * flight, which means that the matching css is and stays alive and
	 * doesn't need to be pinned.  The RCU locking is not necessary
	 * either.  It's just for the convenience of using cgroup_css().
	 */
	rcu_read_lock();
	css = cgroup_css(cgrp, cft->ss);
	rcu_read_unlock();
2194 2195 2196 2197 2198 2199 2200 2201 2202 2203 2204 2205 2206 2207 2208

	if (cft->write_string) {
		ret = cft->write_string(css, cft, strstrip(buf));
	} else if (cft->write_u64) {
		unsigned long long v;
		ret = kstrtoull(buf, 0, &v);
		if (!ret)
			ret = cft->write_u64(css, cft, v);
	} else if (cft->write_s64) {
		long long v;
		ret = kstrtoll(buf, 0, &v);
		if (!ret)
			ret = cft->write_s64(css, cft, v);
	} else if (cft->trigger) {
		ret = cft->trigger(css, (unsigned int)cft->private);
2209
	} else {
2210
		ret = -EINVAL;
2211
	}
T
Tejun Heo 已提交
2212

2213
	return ret ?: nbytes;
2214 2215
}

2216
static void *cgroup_seqfile_start(struct seq_file *seq, loff_t *ppos)
2217
{
T
Tejun Heo 已提交
2218
	return seq_cft(seq)->seq_start(seq, ppos);
2219 2220
}

2221
static void *cgroup_seqfile_next(struct seq_file *seq, void *v, loff_t *ppos)
2222
{
T
Tejun Heo 已提交
2223
	return seq_cft(seq)->seq_next(seq, v, ppos);
2224 2225
}

2226
static void cgroup_seqfile_stop(struct seq_file *seq, void *v)
2227
{
T
Tejun Heo 已提交
2228
	seq_cft(seq)->seq_stop(seq, v);
2229 2230
}

2231
static int cgroup_seqfile_show(struct seq_file *m, void *arg)
2232
{
2233 2234
	struct cftype *cft = seq_cft(m);
	struct cgroup_subsys_state *css = seq_css(m);
2235

2236 2237
	if (cft->seq_show)
		return cft->seq_show(m, arg);
2238

2239
	if (cft->read_u64)
2240 2241 2242 2243 2244 2245
		seq_printf(m, "%llu\n", cft->read_u64(css, cft));
	else if (cft->read_s64)
		seq_printf(m, "%lld\n", cft->read_s64(css, cft));
	else
		return -EINVAL;
	return 0;
2246 2247
}

T
Tejun Heo 已提交
2248 2249 2250 2251
static struct kernfs_ops cgroup_kf_single_ops = {
	.atomic_write_len	= PAGE_SIZE,
	.write			= cgroup_file_write,
	.seq_show		= cgroup_seqfile_show,
2252 2253
};

T
Tejun Heo 已提交
2254 2255 2256 2257 2258 2259 2260 2261
static struct kernfs_ops cgroup_kf_ops = {
	.atomic_write_len	= PAGE_SIZE,
	.write			= cgroup_file_write,
	.seq_start		= cgroup_seqfile_start,
	.seq_next		= cgroup_seqfile_next,
	.seq_stop		= cgroup_seqfile_stop,
	.seq_show		= cgroup_seqfile_show,
};
2262 2263 2264 2265

/*
 * cgroup_rename - Only allow simple rename of directories in place.
 */
T
Tejun Heo 已提交
2266 2267
static int cgroup_rename(struct kernfs_node *kn, struct kernfs_node *new_parent,
			 const char *new_name_str)
2268
{
T
Tejun Heo 已提交
2269 2270
	struct cgroup *cgrp = kn->priv;
	int ret;
2271

T
Tejun Heo 已提交
2272
	if (kernfs_type(kn) != KERNFS_DIR)
2273
		return -ENOTDIR;
T
Tejun Heo 已提交
2274
	if (kn->parent != new_parent)
2275
		return -EIO;
2276

2277 2278 2279 2280 2281 2282 2283
	/*
	 * This isn't a proper migration and its usefulness is very
	 * limited.  Disallow if sane_behavior.
	 */
	if (cgroup_sane_behavior(cgrp))
		return -EPERM;

T
Tejun Heo 已提交
2284 2285 2286 2287
	mutex_lock(&cgroup_tree_mutex);
	mutex_lock(&cgroup_mutex);

	ret = kernfs_rename(kn, new_parent, new_name_str);
2288

T
Tejun Heo 已提交
2289 2290 2291
	mutex_unlock(&cgroup_mutex);
	mutex_unlock(&cgroup_tree_mutex);
	return ret;
2292 2293
}

2294
static int cgroup_add_file(struct cgroup *cgrp, struct cftype *cft)
2295
{
T
Tejun Heo 已提交
2296
	char name[CGROUP_FILE_NAME_MAX];
T
Tejun Heo 已提交
2297 2298
	struct kernfs_node *kn;
	struct lock_class_key *key = NULL;
T
Tejun Heo 已提交
2299

T
Tejun Heo 已提交
2300 2301 2302 2303 2304 2305
#ifdef CONFIG_DEBUG_LOCK_ALLOC
	key = &cft->lockdep_key;
#endif
	kn = __kernfs_create_file(cgrp->kn, cgroup_file_name(cgrp, cft, name),
				  cgroup_file_mode(cft), 0, cft->kf_ops, cft,
				  NULL, false, key);
F
Fengguang Wu 已提交
2306
	return PTR_ERR_OR_ZERO(kn);
2307 2308
}

2309 2310 2311 2312 2313 2314 2315
/**
 * cgroup_addrm_files - add or remove files to a cgroup directory
 * @cgrp: the target cgroup
 * @cfts: array of cftypes to be added
 * @is_add: whether to add or remove
 *
 * Depending on @is_add, add or remove files defined by @cfts on @cgrp.
2316 2317 2318
 * For removals, this function never fails.  If addition fails, this
 * function doesn't remove files already added.  The caller is responsible
 * for cleaning up.
2319
 */
2320 2321
static int cgroup_addrm_files(struct cgroup *cgrp, struct cftype cfts[],
			      bool is_add)
2322
{
A
Aristeu Rozanski 已提交
2323
	struct cftype *cft;
2324 2325
	int ret;

T
Tejun Heo 已提交
2326
	lockdep_assert_held(&cgroup_tree_mutex);
T
Tejun Heo 已提交
2327 2328

	for (cft = cfts; cft->name[0] != '\0'; cft++) {
2329
		/* does cft->flags tell us to skip this file on @cgrp? */
2330 2331
		if ((cft->flags & CFTYPE_INSANE) && cgroup_sane_behavior(cgrp))
			continue;
2332 2333 2334 2335 2336
		if ((cft->flags & CFTYPE_NOT_ON_ROOT) && !cgrp->parent)
			continue;
		if ((cft->flags & CFTYPE_ONLY_ON_ROOT) && cgrp->parent)
			continue;

2337
		if (is_add) {
2338
			ret = cgroup_add_file(cgrp, cft);
2339
			if (ret) {
2340
				pr_warn("cgroup_addrm_files: failed to add %s, err=%d\n",
2341 2342 2343
					cft->name, ret);
				return ret;
			}
2344 2345
		} else {
			cgroup_rm_file(cgrp, cft);
T
Tejun Heo 已提交
2346
		}
2347
	}
2348
	return 0;
2349 2350
}

2351
static int cgroup_apply_cftypes(struct cftype *cfts, bool is_add)
2352 2353
{
	LIST_HEAD(pending);
2354
	struct cgroup_subsys *ss = cfts[0].ss;
2355 2356
	struct cgroup *root = &ss->root->top_cgroup;
	struct cgroup_subsys_state *css;
2357
	int ret = 0;
2358

2359
	lockdep_assert_held(&cgroup_tree_mutex);
2360

2361 2362
	/* don't bother if @ss isn't attached */
	if (ss->root == &cgroup_dummy_root)
2363
		return 0;
2364 2365

	/* add/rm files for all cgroups created before */
2366
	css_for_each_descendant_pre(css, cgroup_css(root, ss)) {
2367 2368
		struct cgroup *cgrp = css->cgroup;

2369 2370 2371
		if (cgroup_is_dead(cgrp))
			continue;

2372
		ret = cgroup_addrm_files(cgrp, cfts, is_add);
2373 2374
		if (ret)
			break;
2375
	}
2376 2377 2378

	if (is_add && !ret)
		kernfs_activate(root->kn);
2379
	return ret;
2380 2381
}

2382 2383 2384 2385
static void cgroup_exit_cftypes(struct cftype *cfts)
{
	struct cftype *cft;

T
Tejun Heo 已提交
2386 2387 2388 2389 2390
	for (cft = cfts; cft->name[0] != '\0'; cft++) {
		/* free copy for custom atomic_write_len, see init_cftypes() */
		if (cft->max_write_len && cft->max_write_len != PAGE_SIZE)
			kfree(cft->kf_ops);
		cft->kf_ops = NULL;
2391
		cft->ss = NULL;
T
Tejun Heo 已提交
2392
	}
2393 2394
}

T
Tejun Heo 已提交
2395
static int cgroup_init_cftypes(struct cgroup_subsys *ss, struct cftype *cfts)
2396 2397 2398
{
	struct cftype *cft;

T
Tejun Heo 已提交
2399 2400 2401
	for (cft = cfts; cft->name[0] != '\0'; cft++) {
		struct kernfs_ops *kf_ops;

T
Tejun Heo 已提交
2402 2403
		WARN_ON(cft->ss || cft->kf_ops);

T
Tejun Heo 已提交
2404 2405 2406 2407 2408 2409 2410 2411 2412 2413 2414 2415 2416 2417 2418 2419 2420 2421 2422
		if (cft->seq_start)
			kf_ops = &cgroup_kf_ops;
		else
			kf_ops = &cgroup_kf_single_ops;

		/*
		 * Ugh... if @cft wants a custom max_write_len, we need to
		 * make a copy of kf_ops to set its atomic_write_len.
		 */
		if (cft->max_write_len && cft->max_write_len != PAGE_SIZE) {
			kf_ops = kmemdup(kf_ops, sizeof(*kf_ops), GFP_KERNEL);
			if (!kf_ops) {
				cgroup_exit_cftypes(cfts);
				return -ENOMEM;
			}
			kf_ops->atomic_write_len = cft->max_write_len;
		}

		cft->kf_ops = kf_ops;
2423
		cft->ss = ss;
T
Tejun Heo 已提交
2424 2425 2426
	}

	return 0;
2427 2428
}

2429 2430 2431 2432 2433 2434 2435 2436 2437 2438 2439 2440 2441
static int cgroup_rm_cftypes_locked(struct cftype *cfts)
{
	lockdep_assert_held(&cgroup_tree_mutex);

	if (!cfts || !cfts[0].ss)
		return -ENOENT;

	list_del(&cfts->node);
	cgroup_apply_cftypes(cfts, false);
	cgroup_exit_cftypes(cfts);
	return 0;
}

T
Tejun Heo 已提交
2442 2443 2444 2445 2446 2447 2448 2449 2450 2451 2452 2453 2454
/**
 * cgroup_rm_cftypes - remove an array of cftypes from a subsystem
 * @cfts: zero-length name terminated array of cftypes
 *
 * Unregister @cfts.  Files described by @cfts are removed from all
 * existing cgroups and all future cgroups won't have them either.  This
 * function can be called anytime whether @cfts' subsys is attached or not.
 *
 * Returns 0 on successful unregistration, -ENOENT if @cfts is not
 * registered.
 */
int cgroup_rm_cftypes(struct cftype *cfts)
{
2455
	int ret;
T
Tejun Heo 已提交
2456

2457 2458 2459 2460
	mutex_lock(&cgroup_tree_mutex);
	ret = cgroup_rm_cftypes_locked(cfts);
	mutex_unlock(&cgroup_tree_mutex);
	return ret;
T
Tejun Heo 已提交
2461 2462
}

2463 2464 2465 2466 2467 2468 2469 2470 2471 2472 2473 2474 2475 2476
/**
 * cgroup_add_cftypes - add an array of cftypes to a subsystem
 * @ss: target cgroup subsystem
 * @cfts: zero-length name terminated array of cftypes
 *
 * Register @cfts to @ss.  Files described by @cfts are created for all
 * existing cgroups to which @ss is attached and all future cgroups will
 * have them too.  This function can be called anytime whether @ss is
 * attached or not.
 *
 * Returns 0 on successful registration, -errno on failure.  Note that this
 * function currently returns 0 as long as @cfts registration is successful
 * even if some file creation attempts on existing cgroups fail.
 */
A
Aristeu Rozanski 已提交
2477
int cgroup_add_cftypes(struct cgroup_subsys *ss, struct cftype *cfts)
2478
{
2479
	int ret;
2480

2481 2482 2483
	if (!cfts || cfts[0].name[0] == '\0')
		return 0;

T
Tejun Heo 已提交
2484 2485 2486
	ret = cgroup_init_cftypes(ss, cfts);
	if (ret)
		return ret;
2487

2488 2489
	mutex_lock(&cgroup_tree_mutex);

T
Tejun Heo 已提交
2490
	list_add_tail(&cfts->node, &ss->cfts);
2491
	ret = cgroup_apply_cftypes(cfts, true);
2492
	if (ret)
2493 2494 2495
		cgroup_rm_cftypes_locked(cfts);

	mutex_unlock(&cgroup_tree_mutex);
2496
	return ret;
2497 2498
}

L
Li Zefan 已提交
2499 2500 2501 2502 2503 2504
/**
 * cgroup_task_count - count the number of tasks in a cgroup.
 * @cgrp: the cgroup in question
 *
 * Return the number of tasks in the cgroup.
 */
2505
static int cgroup_task_count(const struct cgroup *cgrp)
2506 2507
{
	int count = 0;
2508
	struct cgrp_cset_link *link;
2509

2510
	down_read(&css_set_rwsem);
2511 2512
	list_for_each_entry(link, &cgrp->cset_links, cset_link)
		count += atomic_read(&link->cset->refcount);
2513
	up_read(&css_set_rwsem);
2514 2515 2516
	return count;
}

2517
/**
2518 2519 2520
 * css_next_child - find the next child of a given css
 * @pos_css: the current position (%NULL to initiate traversal)
 * @parent_css: css whose children to walk
2521
 *
2522
 * This function returns the next child of @parent_css and should be called
2523 2524 2525
 * under either cgroup_mutex or RCU read lock.  The only requirement is
 * that @parent_css and @pos_css are accessible.  The next sibling is
 * guaranteed to be returned regardless of their states.
2526
 */
2527 2528 2529
struct cgroup_subsys_state *
css_next_child(struct cgroup_subsys_state *pos_css,
	       struct cgroup_subsys_state *parent_css)
2530
{
2531 2532
	struct cgroup *pos = pos_css ? pos_css->cgroup : NULL;
	struct cgroup *cgrp = parent_css->cgroup;
2533 2534
	struct cgroup *next;

T
Tejun Heo 已提交
2535
	cgroup_assert_mutexes_or_rcu_locked();
2536 2537 2538 2539

	/*
	 * @pos could already have been removed.  Once a cgroup is removed,
	 * its ->sibling.next is no longer updated when its next sibling
2540 2541 2542 2543 2544 2545 2546
	 * changes.  As CGRP_DEAD assertion is serialized and happens
	 * before the cgroup is taken off the ->sibling list, if we see it
	 * unasserted, it's guaranteed that the next sibling hasn't
	 * finished its grace period even if it's already removed, and thus
	 * safe to dereference from this RCU critical section.  If
	 * ->sibling.next is inaccessible, cgroup_is_dead() is guaranteed
	 * to be visible as %true here.
2547 2548 2549 2550 2551 2552 2553 2554
	 *
	 * If @pos is dead, its next pointer can't be dereferenced;
	 * however, as each cgroup is given a monotonically increasing
	 * unique serial number and always appended to the sibling list,
	 * the next one can be found by walking the parent's children until
	 * we see a cgroup with higher serial number than @pos's.  While
	 * this path can be slower, it's taken only when either the current
	 * cgroup is removed or iteration and removal race.
2555
	 */
2556 2557 2558
	if (!pos) {
		next = list_entry_rcu(cgrp->children.next, struct cgroup, sibling);
	} else if (likely(!cgroup_is_dead(pos))) {
2559
		next = list_entry_rcu(pos->sibling.next, struct cgroup, sibling);
2560 2561 2562 2563
	} else {
		list_for_each_entry_rcu(next, &cgrp->children, sibling)
			if (next->serial_nr > pos->serial_nr)
				break;
2564 2565
	}

2566 2567 2568
	if (&next->sibling == &cgrp->children)
		return NULL;

2569
	return cgroup_css(next, parent_css->ss);
2570 2571
}

2572
/**
2573
 * css_next_descendant_pre - find the next descendant for pre-order walk
2574
 * @pos: the current position (%NULL to initiate traversal)
2575
 * @root: css whose descendants to walk
2576
 *
2577
 * To be used by css_for_each_descendant_pre().  Find the next descendant
2578 2579
 * to visit for pre-order traversal of @root's descendants.  @root is
 * included in the iteration and the first node to be visited.
2580
 *
2581 2582 2583 2584
 * While this function requires cgroup_mutex or RCU read locking, it
 * doesn't require the whole traversal to be contained in a single critical
 * section.  This function will return the correct next descendant as long
 * as both @pos and @root are accessible and @pos is a descendant of @root.
2585
 */
2586 2587 2588
struct cgroup_subsys_state *
css_next_descendant_pre(struct cgroup_subsys_state *pos,
			struct cgroup_subsys_state *root)
2589
{
2590
	struct cgroup_subsys_state *next;
2591

T
Tejun Heo 已提交
2592
	cgroup_assert_mutexes_or_rcu_locked();
2593

2594
	/* if first iteration, visit @root */
2595
	if (!pos)
2596
		return root;
2597 2598

	/* visit the first child if exists */
2599
	next = css_next_child(NULL, pos);
2600 2601 2602 2603
	if (next)
		return next;

	/* no child, visit my or the closest ancestor's next sibling */
2604 2605
	while (pos != root) {
		next = css_next_child(pos, css_parent(pos));
2606
		if (next)
2607
			return next;
2608
		pos = css_parent(pos);
2609
	}
2610 2611 2612 2613

	return NULL;
}

2614
/**
2615 2616
 * css_rightmost_descendant - return the rightmost descendant of a css
 * @pos: css of interest
2617
 *
2618 2619
 * Return the rightmost descendant of @pos.  If there's no descendant, @pos
 * is returned.  This can be used during pre-order traversal to skip
2620
 * subtree of @pos.
2621
 *
2622 2623 2624 2625
 * While this function requires cgroup_mutex or RCU read locking, it
 * doesn't require the whole traversal to be contained in a single critical
 * section.  This function will return the correct rightmost descendant as
 * long as @pos is accessible.
2626
 */
2627 2628
struct cgroup_subsys_state *
css_rightmost_descendant(struct cgroup_subsys_state *pos)
2629
{
2630
	struct cgroup_subsys_state *last, *tmp;
2631

T
Tejun Heo 已提交
2632
	cgroup_assert_mutexes_or_rcu_locked();
2633 2634 2635 2636 2637

	do {
		last = pos;
		/* ->prev isn't RCU safe, walk ->next till the end */
		pos = NULL;
2638
		css_for_each_child(tmp, last)
2639 2640 2641 2642 2643 2644
			pos = tmp;
	} while (pos);

	return last;
}

2645 2646
static struct cgroup_subsys_state *
css_leftmost_descendant(struct cgroup_subsys_state *pos)
2647
{
2648
	struct cgroup_subsys_state *last;
2649 2650 2651

	do {
		last = pos;
2652
		pos = css_next_child(NULL, pos);
2653 2654 2655 2656 2657 2658
	} while (pos);

	return last;
}

/**
2659
 * css_next_descendant_post - find the next descendant for post-order walk
2660
 * @pos: the current position (%NULL to initiate traversal)
2661
 * @root: css whose descendants to walk
2662
 *
2663
 * To be used by css_for_each_descendant_post().  Find the next descendant
2664 2665
 * to visit for post-order traversal of @root's descendants.  @root is
 * included in the iteration and the last node to be visited.
2666
 *
2667 2668 2669 2670 2671
 * While this function requires cgroup_mutex or RCU read locking, it
 * doesn't require the whole traversal to be contained in a single critical
 * section.  This function will return the correct next descendant as long
 * as both @pos and @cgroup are accessible and @pos is a descendant of
 * @cgroup.
2672
 */
2673 2674 2675
struct cgroup_subsys_state *
css_next_descendant_post(struct cgroup_subsys_state *pos,
			 struct cgroup_subsys_state *root)
2676
{
2677
	struct cgroup_subsys_state *next;
2678

T
Tejun Heo 已提交
2679
	cgroup_assert_mutexes_or_rcu_locked();
2680

2681 2682 2683
	/* if first iteration, visit leftmost descendant which may be @root */
	if (!pos)
		return css_leftmost_descendant(root);
2684

2685 2686 2687 2688
	/* if we visited @root, we're done */
	if (pos == root)
		return NULL;

2689
	/* if there's an unvisited sibling, visit its leftmost descendant */
2690
	next = css_next_child(pos, css_parent(pos));
2691
	if (next)
2692
		return css_leftmost_descendant(next);
2693 2694

	/* no sibling left, visit parent */
2695
	return css_parent(pos);
2696 2697
}

2698
/**
2699
 * css_advance_task_iter - advance a task itererator to the next css_set
2700 2701 2702
 * @it: the iterator to advance
 *
 * Advance @it to the next css_set to walk.
2703
 */
2704
static void css_advance_task_iter(struct css_task_iter *it)
2705 2706 2707 2708 2709 2710 2711 2712
{
	struct list_head *l = it->cset_link;
	struct cgrp_cset_link *link;
	struct css_set *cset;

	/* Advance to the next non-empty css_set */
	do {
		l = l->next;
2713
		if (l == &it->origin_css->cgroup->cset_links) {
2714 2715 2716 2717 2718
			it->cset_link = NULL;
			return;
		}
		link = list_entry(l, struct cgrp_cset_link, cset_link);
		cset = link->cset;
T
Tejun Heo 已提交
2719 2720
	} while (list_empty(&cset->tasks) && list_empty(&cset->mg_tasks));

2721
	it->cset_link = l;
T
Tejun Heo 已提交
2722 2723 2724 2725 2726

	if (!list_empty(&cset->tasks))
		it->task = cset->tasks.next;
	else
		it->task = cset->mg_tasks.next;
2727 2728
}

2729
/**
2730 2731
 * css_task_iter_start - initiate task iteration
 * @css: the css to walk tasks of
2732 2733
 * @it: the task iterator to use
 *
2734 2735 2736 2737
 * Initiate iteration through the tasks of @css.  The caller can call
 * css_task_iter_next() to walk through the tasks until the function
 * returns NULL.  On completion of iteration, css_task_iter_end() must be
 * called.
2738 2739 2740 2741 2742
 *
 * Note that this function acquires a lock which is released when the
 * iteration finishes.  The caller can't sleep while iteration is in
 * progress.
 */
2743 2744
void css_task_iter_start(struct cgroup_subsys_state *css,
			 struct css_task_iter *it)
2745
	__acquires(css_set_rwsem)
2746
{
2747 2748
	/* no one should try to iterate before mounting cgroups */
	WARN_ON_ONCE(!use_task_css_set_links);
2749

2750
	down_read(&css_set_rwsem);
2751

2752 2753
	it->origin_css = css;
	it->cset_link = &css->cgroup->cset_links;
2754

2755
	css_advance_task_iter(it);
2756 2757
}

2758
/**
2759
 * css_task_iter_next - return the next task for the iterator
2760 2761 2762
 * @it: the task iterator being iterated
 *
 * The "next" function for task iteration.  @it should have been
2763 2764
 * initialized via css_task_iter_start().  Returns NULL when the iteration
 * reaches the end.
2765
 */
2766
struct task_struct *css_task_iter_next(struct css_task_iter *it)
2767 2768 2769
{
	struct task_struct *res;
	struct list_head *l = it->task;
T
Tejun Heo 已提交
2770 2771
	struct cgrp_cset_link *link = list_entry(it->cset_link,
					struct cgrp_cset_link, cset_link);
2772 2773

	/* If the iterator cg is NULL, we have no tasks */
2774
	if (!it->cset_link)
2775 2776
		return NULL;
	res = list_entry(l, struct task_struct, cg_list);
T
Tejun Heo 已提交
2777 2778 2779 2780 2781 2782

	/*
	 * Advance iterator to find next entry.  cset->tasks is consumed
	 * first and then ->mg_tasks.  After ->mg_tasks, we move onto the
	 * next cset.
	 */
2783
	l = l->next;
T
Tejun Heo 已提交
2784 2785 2786 2787 2788

	if (l == &link->cset->tasks)
		l = link->cset->mg_tasks.next;

	if (l == &link->cset->mg_tasks)
2789
		css_advance_task_iter(it);
T
Tejun Heo 已提交
2790
	else
2791
		it->task = l;
T
Tejun Heo 已提交
2792

2793 2794 2795
	return res;
}

2796
/**
2797
 * css_task_iter_end - finish task iteration
2798 2799
 * @it: the task iterator to finish
 *
2800
 * Finish task iteration started by css_task_iter_start().
2801
 */
2802
void css_task_iter_end(struct css_task_iter *it)
2803
	__releases(css_set_rwsem)
2804
{
2805
	up_read(&css_set_rwsem);
2806 2807
}

2808 2809 2810 2811
/**
 * cgroup_trasnsfer_tasks - move tasks from one cgroup to another
 * @to: cgroup to which the tasks will be moved
 * @from: cgroup in which the tasks currently reside
2812 2813 2814 2815 2816 2817
 *
 * Locking rules between cgroup_post_fork() and the migration path
 * guarantee that, if a task is forking while being migrated, the new child
 * is guaranteed to be either visible in the source cgroup after the
 * parent's migration is complete or put into the target cgroup.  No task
 * can slip out of migration through forking.
2818 2819 2820
 */
int cgroup_transfer_tasks(struct cgroup *to, struct cgroup *from)
{
2821 2822
	LIST_HEAD(preloaded_csets);
	struct cgrp_cset_link *link;
2823 2824
	struct css_task_iter it;
	struct task_struct *task;
2825 2826 2827 2828 2829 2830 2831 2832 2833
	int ret;

	mutex_lock(&cgroup_mutex);

	/* all tasks in @from are being moved, all csets are source */
	down_read(&css_set_rwsem);
	list_for_each_entry(link, &from->cset_links, cset_link)
		cgroup_migrate_add_src(link->cset, to, &preloaded_csets);
	up_read(&css_set_rwsem);
2834

2835 2836 2837 2838 2839 2840 2841 2842
	ret = cgroup_migrate_prepare_dst(to, &preloaded_csets);
	if (ret)
		goto out_err;

	/*
	 * Migrate tasks one-by-one until @form is empty.  This fails iff
	 * ->can_attach() fails.
	 */
2843 2844 2845 2846 2847 2848 2849 2850
	do {
		css_task_iter_start(&from->dummy_css, &it);
		task = css_task_iter_next(&it);
		if (task)
			get_task_struct(task);
		css_task_iter_end(&it);

		if (task) {
2851
			ret = cgroup_migrate(to, task, false);
2852 2853 2854
			put_task_struct(task);
		}
	} while (task && !ret);
2855 2856 2857
out_err:
	cgroup_migrate_finish(&preloaded_csets);
	mutex_unlock(&cgroup_mutex);
2858
	return ret;
2859 2860
}

2861
/*
2862
 * Stuff for reading the 'tasks'/'procs' files.
2863 2864 2865 2866 2867 2868 2869 2870
 *
 * Reading this file can return large amounts of data if a cgroup has
 * *lots* of attached tasks. So it may need several calls to read(),
 * but we cannot guarantee that the information we produce is correct
 * unless we produce it entirely atomically.
 *
 */

2871 2872 2873 2874 2875 2876 2877 2878 2879 2880 2881 2882 2883 2884 2885 2886 2887 2888 2889 2890 2891 2892 2893 2894 2895 2896
/* which pidlist file are we talking about? */
enum cgroup_filetype {
	CGROUP_FILE_PROCS,
	CGROUP_FILE_TASKS,
};

/*
 * A pidlist is a list of pids that virtually represents the contents of one
 * of the cgroup files ("procs" or "tasks"). We keep a list of such pidlists,
 * a pair (one each for procs, tasks) for each pid namespace that's relevant
 * to the cgroup.
 */
struct cgroup_pidlist {
	/*
	 * used to find which pidlist is wanted. doesn't change as long as
	 * this particular list stays in the list.
	*/
	struct { enum cgroup_filetype type; struct pid_namespace *ns; } key;
	/* array of xids */
	pid_t *list;
	/* how many elements the above list has */
	int length;
	/* each of these stored in a list by its cgroup */
	struct list_head links;
	/* pointer to the cgroup we belong to, for list removal purposes */
	struct cgroup *owner;
2897 2898
	/* for delayed destruction */
	struct delayed_work destroy_dwork;
2899 2900
};

2901 2902 2903 2904 2905 2906 2907 2908 2909 2910 2911 2912 2913
/*
 * The following two functions "fix" the issue where there are more pids
 * than kmalloc will give memory for; in such cases, we use vmalloc/vfree.
 * TODO: replace with a kernel-wide solution to this problem
 */
#define PIDLIST_TOO_LARGE(c) ((c) * sizeof(pid_t) > (PAGE_SIZE * 2))
static void *pidlist_allocate(int count)
{
	if (PIDLIST_TOO_LARGE(count))
		return vmalloc(count * sizeof(pid_t));
	else
		return kmalloc(count * sizeof(pid_t), GFP_KERNEL);
}
2914

2915 2916 2917 2918 2919 2920 2921 2922
static void pidlist_free(void *p)
{
	if (is_vmalloc_addr(p))
		vfree(p);
	else
		kfree(p);
}

2923 2924 2925 2926 2927 2928 2929 2930 2931 2932 2933 2934 2935 2936 2937 2938 2939 2940 2941 2942 2943 2944 2945 2946 2947 2948 2949
/*
 * Used to destroy all pidlists lingering waiting for destroy timer.  None
 * should be left afterwards.
 */
static void cgroup_pidlist_destroy_all(struct cgroup *cgrp)
{
	struct cgroup_pidlist *l, *tmp_l;

	mutex_lock(&cgrp->pidlist_mutex);
	list_for_each_entry_safe(l, tmp_l, &cgrp->pidlists, links)
		mod_delayed_work(cgroup_pidlist_destroy_wq, &l->destroy_dwork, 0);
	mutex_unlock(&cgrp->pidlist_mutex);

	flush_workqueue(cgroup_pidlist_destroy_wq);
	BUG_ON(!list_empty(&cgrp->pidlists));
}

static void cgroup_pidlist_destroy_work_fn(struct work_struct *work)
{
	struct delayed_work *dwork = to_delayed_work(work);
	struct cgroup_pidlist *l = container_of(dwork, struct cgroup_pidlist,
						destroy_dwork);
	struct cgroup_pidlist *tofree = NULL;

	mutex_lock(&l->owner->pidlist_mutex);

	/*
2950 2951
	 * Destroy iff we didn't get queued again.  The state won't change
	 * as destroy_dwork can only be queued while locked.
2952
	 */
2953
	if (!delayed_work_pending(dwork)) {
2954 2955 2956 2957 2958 2959 2960 2961 2962 2963
		list_del(&l->links);
		pidlist_free(l->list);
		put_pid_ns(l->key.ns);
		tofree = l;
	}

	mutex_unlock(&l->owner->pidlist_mutex);
	kfree(tofree);
}

2964
/*
2965
 * pidlist_uniq - given a kmalloc()ed list, strip out all duplicate entries
2966
 * Returns the number of unique elements.
2967
 */
2968
static int pidlist_uniq(pid_t *list, int length)
2969
{
2970 2971 2972 2973 2974 2975 2976 2977 2978 2979 2980 2981 2982 2983 2984 2985 2986 2987 2988 2989 2990 2991 2992 2993
	int src, dest = 1;

	/*
	 * we presume the 0th element is unique, so i starts at 1. trivial
	 * edge cases first; no work needs to be done for either
	 */
	if (length == 0 || length == 1)
		return length;
	/* src and dest walk down the list; dest counts unique elements */
	for (src = 1; src < length; src++) {
		/* find next unique element */
		while (list[src] == list[src-1]) {
			src++;
			if (src == length)
				goto after;
		}
		/* dest always points to where the next unique element goes */
		list[dest] = list[src];
		dest++;
	}
after:
	return dest;
}

2994 2995 2996 2997 2998 2999 3000 3001 3002 3003 3004 3005 3006 3007 3008 3009 3010 3011 3012 3013 3014 3015 3016 3017 3018 3019 3020 3021 3022 3023 3024 3025 3026
/*
 * The two pid files - task and cgroup.procs - guaranteed that the result
 * is sorted, which forced this whole pidlist fiasco.  As pid order is
 * different per namespace, each namespace needs differently sorted list,
 * making it impossible to use, for example, single rbtree of member tasks
 * sorted by task pointer.  As pidlists can be fairly large, allocating one
 * per open file is dangerous, so cgroup had to implement shared pool of
 * pidlists keyed by cgroup and namespace.
 *
 * All this extra complexity was caused by the original implementation
 * committing to an entirely unnecessary property.  In the long term, we
 * want to do away with it.  Explicitly scramble sort order if
 * sane_behavior so that no such expectation exists in the new interface.
 *
 * Scrambling is done by swapping every two consecutive bits, which is
 * non-identity one-to-one mapping which disturbs sort order sufficiently.
 */
static pid_t pid_fry(pid_t pid)
{
	unsigned a = pid & 0x55555555;
	unsigned b = pid & 0xAAAAAAAA;

	return (a << 1) | (b >> 1);
}

static pid_t cgroup_pid_fry(struct cgroup *cgrp, pid_t pid)
{
	if (cgroup_sane_behavior(cgrp))
		return pid_fry(pid);
	else
		return pid;
}

3027 3028 3029 3030 3031
static int cmppid(const void *a, const void *b)
{
	return *(pid_t *)a - *(pid_t *)b;
}

3032 3033 3034 3035 3036
static int fried_cmppid(const void *a, const void *b)
{
	return pid_fry(*(pid_t *)a) - pid_fry(*(pid_t *)b);
}

T
Tejun Heo 已提交
3037 3038 3039 3040 3041 3042 3043 3044 3045 3046 3047 3048 3049 3050 3051
static struct cgroup_pidlist *cgroup_pidlist_find(struct cgroup *cgrp,
						  enum cgroup_filetype type)
{
	struct cgroup_pidlist *l;
	/* don't need task_nsproxy() if we're looking at ourself */
	struct pid_namespace *ns = task_active_pid_ns(current);

	lockdep_assert_held(&cgrp->pidlist_mutex);

	list_for_each_entry(l, &cgrp->pidlists, links)
		if (l->key.type == type && l->key.ns == ns)
			return l;
	return NULL;
}

3052 3053 3054 3055 3056 3057
/*
 * find the appropriate pidlist for our purpose (given procs vs tasks)
 * returns with the lock on that pidlist already held, and takes care
 * of the use count, or returns NULL with no locks held if we're out of
 * memory.
 */
T
Tejun Heo 已提交
3058 3059
static struct cgroup_pidlist *cgroup_pidlist_find_create(struct cgroup *cgrp,
						enum cgroup_filetype type)
3060 3061
{
	struct cgroup_pidlist *l;
3062

T
Tejun Heo 已提交
3063 3064 3065 3066 3067 3068
	lockdep_assert_held(&cgrp->pidlist_mutex);

	l = cgroup_pidlist_find(cgrp, type);
	if (l)
		return l;

3069
	/* entry not found; create a new one */
3070
	l = kzalloc(sizeof(struct cgroup_pidlist), GFP_KERNEL);
T
Tejun Heo 已提交
3071
	if (!l)
3072
		return l;
T
Tejun Heo 已提交
3073

3074
	INIT_DELAYED_WORK(&l->destroy_dwork, cgroup_pidlist_destroy_work_fn);
3075
	l->key.type = type;
T
Tejun Heo 已提交
3076 3077
	/* don't need task_nsproxy() if we're looking at ourself */
	l->key.ns = get_pid_ns(task_active_pid_ns(current));
3078 3079 3080 3081 3082
	l->owner = cgrp;
	list_add(&l->links, &cgrp->pidlists);
	return l;
}

3083 3084 3085
/*
 * Load a cgroup's pidarray with either procs' tgids or tasks' pids
 */
3086 3087
static int pidlist_array_load(struct cgroup *cgrp, enum cgroup_filetype type,
			      struct cgroup_pidlist **lp)
3088 3089 3090 3091
{
	pid_t *array;
	int length;
	int pid, n = 0; /* used for populating the array */
3092
	struct css_task_iter it;
3093
	struct task_struct *tsk;
3094 3095
	struct cgroup_pidlist *l;

3096 3097
	lockdep_assert_held(&cgrp->pidlist_mutex);

3098 3099 3100 3101 3102 3103 3104
	/*
	 * If cgroup gets more users after we read count, we won't have
	 * enough space - tough.  This race is indistinguishable to the
	 * caller from the case that the additional cgroup users didn't
	 * show up until sometime later on.
	 */
	length = cgroup_task_count(cgrp);
3105
	array = pidlist_allocate(length);
3106 3107 3108
	if (!array)
		return -ENOMEM;
	/* now, populate the array */
3109 3110
	css_task_iter_start(&cgrp->dummy_css, &it);
	while ((tsk = css_task_iter_next(&it))) {
3111
		if (unlikely(n == length))
3112
			break;
3113
		/* get tgid or pid for procs or tasks file respectively */
3114 3115 3116 3117
		if (type == CGROUP_FILE_PROCS)
			pid = task_tgid_vnr(tsk);
		else
			pid = task_pid_vnr(tsk);
3118 3119
		if (pid > 0) /* make sure to only use valid results */
			array[n++] = pid;
3120
	}
3121
	css_task_iter_end(&it);
3122 3123
	length = n;
	/* now sort & (if procs) strip out duplicates */
3124 3125 3126 3127
	if (cgroup_sane_behavior(cgrp))
		sort(array, length, sizeof(pid_t), fried_cmppid, NULL);
	else
		sort(array, length, sizeof(pid_t), cmppid, NULL);
3128
	if (type == CGROUP_FILE_PROCS)
3129
		length = pidlist_uniq(array, length);
T
Tejun Heo 已提交
3130 3131

	l = cgroup_pidlist_find_create(cgrp, type);
3132
	if (!l) {
T
Tejun Heo 已提交
3133
		mutex_unlock(&cgrp->pidlist_mutex);
3134
		pidlist_free(array);
3135
		return -ENOMEM;
3136
	}
T
Tejun Heo 已提交
3137 3138

	/* store array, freeing old if necessary */
3139
	pidlist_free(l->list);
3140 3141
	l->list = array;
	l->length = length;
3142
	*lp = l;
3143
	return 0;
3144 3145
}

B
Balbir Singh 已提交
3146
/**
L
Li Zefan 已提交
3147
 * cgroupstats_build - build and fill cgroupstats
B
Balbir Singh 已提交
3148 3149 3150
 * @stats: cgroupstats to fill information into
 * @dentry: A dentry entry belonging to the cgroup for which stats have
 * been requested.
L
Li Zefan 已提交
3151 3152 3153
 *
 * Build and fill cgroupstats so that taskstats can export it to user
 * space.
B
Balbir Singh 已提交
3154 3155 3156
 */
int cgroupstats_build(struct cgroupstats *stats, struct dentry *dentry)
{
T
Tejun Heo 已提交
3157
	struct kernfs_node *kn = kernfs_node_from_dentry(dentry);
3158
	struct cgroup *cgrp;
3159
	struct css_task_iter it;
B
Balbir Singh 已提交
3160
	struct task_struct *tsk;
3161

T
Tejun Heo 已提交
3162 3163 3164 3165 3166
	/* it should be kernfs_node belonging to cgroupfs and is a directory */
	if (dentry->d_sb->s_type != &cgroup_fs_type || !kn ||
	    kernfs_type(kn) != KERNFS_DIR)
		return -EINVAL;

3167 3168
	mutex_lock(&cgroup_mutex);

B
Balbir Singh 已提交
3169
	/*
T
Tejun Heo 已提交
3170 3171 3172
	 * We aren't being called from kernfs and there's no guarantee on
	 * @kn->priv's validity.  For this and css_tryget_from_dir(),
	 * @kn->priv is RCU safe.  Let's do the RCU dancing.
B
Balbir Singh 已提交
3173
	 */
T
Tejun Heo 已提交
3174 3175
	rcu_read_lock();
	cgrp = rcu_dereference(kn->priv);
3176
	if (!cgrp || cgroup_is_dead(cgrp)) {
T
Tejun Heo 已提交
3177
		rcu_read_unlock();
3178
		mutex_unlock(&cgroup_mutex);
T
Tejun Heo 已提交
3179 3180
		return -ENOENT;
	}
3181
	rcu_read_unlock();
B
Balbir Singh 已提交
3182

3183 3184
	css_task_iter_start(&cgrp->dummy_css, &it);
	while ((tsk = css_task_iter_next(&it))) {
B
Balbir Singh 已提交
3185 3186 3187 3188 3189 3190 3191 3192 3193 3194 3195 3196 3197 3198 3199 3200 3201 3202 3203
		switch (tsk->state) {
		case TASK_RUNNING:
			stats->nr_running++;
			break;
		case TASK_INTERRUPTIBLE:
			stats->nr_sleeping++;
			break;
		case TASK_UNINTERRUPTIBLE:
			stats->nr_uninterruptible++;
			break;
		case TASK_STOPPED:
			stats->nr_stopped++;
			break;
		default:
			if (delayacct_is_task_waiting_on_io(tsk))
				stats->nr_io_wait++;
			break;
		}
	}
3204
	css_task_iter_end(&it);
B
Balbir Singh 已提交
3205

3206
	mutex_unlock(&cgroup_mutex);
T
Tejun Heo 已提交
3207
	return 0;
B
Balbir Singh 已提交
3208 3209
}

3210

3211
/*
3212
 * seq_file methods for the tasks/procs files. The seq_file position is the
3213
 * next pid to display; the seq_file iterator is a pointer to the pid
3214
 * in the cgroup->l->list array.
3215
 */
3216

3217
static void *cgroup_pidlist_start(struct seq_file *s, loff_t *pos)
3218
{
3219 3220 3221 3222 3223 3224
	/*
	 * Initially we receive a position value that corresponds to
	 * one more than the last pid shown (or 0 on the first call or
	 * after a seek to the start). Use a binary-search to find the
	 * next pid to display, if any
	 */
T
Tejun Heo 已提交
3225
	struct kernfs_open_file *of = s->private;
3226
	struct cgroup *cgrp = seq_css(s)->cgroup;
3227
	struct cgroup_pidlist *l;
3228
	enum cgroup_filetype type = seq_cft(s)->private;
3229
	int index = 0, pid = *pos;
3230 3231 3232 3233 3234
	int *iter, ret;

	mutex_lock(&cgrp->pidlist_mutex);

	/*
3235
	 * !NULL @of->priv indicates that this isn't the first start()
3236
	 * after open.  If the matching pidlist is around, we can use that.
3237
	 * Look for it.  Note that @of->priv can't be used directly.  It
3238 3239
	 * could already have been destroyed.
	 */
3240 3241
	if (of->priv)
		of->priv = cgroup_pidlist_find(cgrp, type);
3242 3243 3244 3245 3246

	/*
	 * Either this is the first start() after open or the matching
	 * pidlist has been destroyed inbetween.  Create a new one.
	 */
3247 3248 3249
	if (!of->priv) {
		ret = pidlist_array_load(cgrp, type,
					 (struct cgroup_pidlist **)&of->priv);
3250 3251 3252
		if (ret)
			return ERR_PTR(ret);
	}
3253
	l = of->priv;
3254 3255

	if (pid) {
3256
		int end = l->length;
S
Stephen Rothwell 已提交
3257

3258 3259
		while (index < end) {
			int mid = (index + end) / 2;
3260
			if (cgroup_pid_fry(cgrp, l->list[mid]) == pid) {
3261 3262
				index = mid;
				break;
3263
			} else if (cgroup_pid_fry(cgrp, l->list[mid]) <= pid)
3264 3265 3266 3267 3268 3269
				index = mid + 1;
			else
				end = mid;
		}
	}
	/* If we're off the end of the array, we're done */
3270
	if (index >= l->length)
3271 3272
		return NULL;
	/* Update the abstract position to be the actual pid that we found */
3273
	iter = l->list + index;
3274
	*pos = cgroup_pid_fry(cgrp, *iter);
3275 3276 3277
	return iter;
}

3278
static void cgroup_pidlist_stop(struct seq_file *s, void *v)
3279
{
T
Tejun Heo 已提交
3280
	struct kernfs_open_file *of = s->private;
3281
	struct cgroup_pidlist *l = of->priv;
3282

3283 3284
	if (l)
		mod_delayed_work(cgroup_pidlist_destroy_wq, &l->destroy_dwork,
3285
				 CGROUP_PIDLIST_DESTROY_DELAY);
3286
	mutex_unlock(&seq_css(s)->cgroup->pidlist_mutex);
3287 3288
}

3289
static void *cgroup_pidlist_next(struct seq_file *s, void *v, loff_t *pos)
3290
{
T
Tejun Heo 已提交
3291
	struct kernfs_open_file *of = s->private;
3292
	struct cgroup_pidlist *l = of->priv;
3293 3294
	pid_t *p = v;
	pid_t *end = l->list + l->length;
3295 3296 3297 3298 3299 3300 3301 3302
	/*
	 * Advance to the next pid in the array. If this goes off the
	 * end, we're done
	 */
	p++;
	if (p >= end) {
		return NULL;
	} else {
3303
		*pos = cgroup_pid_fry(seq_css(s)->cgroup, *p);
3304 3305 3306 3307
		return p;
	}
}

3308
static int cgroup_pidlist_show(struct seq_file *s, void *v)
3309 3310 3311
{
	return seq_printf(s, "%d\n", *(int *)v);
}
3312

3313 3314 3315 3316 3317 3318 3319 3320 3321
/*
 * seq_operations functions for iterating on pidlists through seq_file -
 * independent of whether it's tasks or procs
 */
static const struct seq_operations cgroup_pidlist_seq_operations = {
	.start = cgroup_pidlist_start,
	.stop = cgroup_pidlist_stop,
	.next = cgroup_pidlist_next,
	.show = cgroup_pidlist_show,
3322 3323
};

3324 3325
static u64 cgroup_read_notify_on_release(struct cgroup_subsys_state *css,
					 struct cftype *cft)
3326
{
3327
	return notify_on_release(css->cgroup);
3328 3329
}

3330 3331
static int cgroup_write_notify_on_release(struct cgroup_subsys_state *css,
					  struct cftype *cft, u64 val)
3332
{
3333
	clear_bit(CGRP_RELEASABLE, &css->cgroup->flags);
3334
	if (val)
3335
		set_bit(CGRP_NOTIFY_ON_RELEASE, &css->cgroup->flags);
3336
	else
3337
		clear_bit(CGRP_NOTIFY_ON_RELEASE, &css->cgroup->flags);
3338 3339 3340
	return 0;
}

3341 3342
static u64 cgroup_clone_children_read(struct cgroup_subsys_state *css,
				      struct cftype *cft)
3343
{
3344
	return test_bit(CGRP_CPUSET_CLONE_CHILDREN, &css->cgroup->flags);
3345 3346
}

3347 3348
static int cgroup_clone_children_write(struct cgroup_subsys_state *css,
				       struct cftype *cft, u64 val)
3349 3350
{
	if (val)
3351
		set_bit(CGRP_CPUSET_CLONE_CHILDREN, &css->cgroup->flags);
3352
	else
3353
		clear_bit(CGRP_CPUSET_CLONE_CHILDREN, &css->cgroup->flags);
3354 3355 3356
	return 0;
}

3357
static struct cftype cgroup_base_files[] = {
3358
	{
3359
		.name = "cgroup.procs",
3360 3361 3362 3363
		.seq_start = cgroup_pidlist_start,
		.seq_next = cgroup_pidlist_next,
		.seq_stop = cgroup_pidlist_stop,
		.seq_show = cgroup_pidlist_show,
3364
		.private = CGROUP_FILE_PROCS,
B
Ben Blum 已提交
3365 3366
		.write_u64 = cgroup_procs_write,
		.mode = S_IRUGO | S_IWUSR,
3367
	},
3368 3369
	{
		.name = "cgroup.clone_children",
3370
		.flags = CFTYPE_INSANE,
3371 3372 3373
		.read_u64 = cgroup_clone_children_read,
		.write_u64 = cgroup_clone_children_write,
	},
3374 3375 3376
	{
		.name = "cgroup.sane_behavior",
		.flags = CFTYPE_ONLY_ON_ROOT,
3377
		.seq_show = cgroup_sane_behavior_show,
3378
	},
3379 3380 3381 3382 3383 3384 3385 3386 3387

	/*
	 * Historical crazy stuff.  These don't have "cgroup."  prefix and
	 * don't exist if sane_behavior.  If you're depending on these, be
	 * prepared to be burned.
	 */
	{
		.name = "tasks",
		.flags = CFTYPE_INSANE,		/* use "procs" instead */
3388 3389 3390 3391
		.seq_start = cgroup_pidlist_start,
		.seq_next = cgroup_pidlist_next,
		.seq_stop = cgroup_pidlist_stop,
		.seq_show = cgroup_pidlist_show,
3392
		.private = CGROUP_FILE_TASKS,
3393 3394 3395 3396 3397 3398 3399 3400 3401
		.write_u64 = cgroup_tasks_write,
		.mode = S_IRUGO | S_IWUSR,
	},
	{
		.name = "notify_on_release",
		.flags = CFTYPE_INSANE,
		.read_u64 = cgroup_read_notify_on_release,
		.write_u64 = cgroup_write_notify_on_release,
	},
3402 3403
	{
		.name = "release_agent",
3404
		.flags = CFTYPE_INSANE | CFTYPE_ONLY_ON_ROOT,
3405
		.seq_show = cgroup_release_agent_show,
3406
		.write_string = cgroup_release_agent_write,
3407
		.max_write_len = PATH_MAX - 1,
3408
	},
T
Tejun Heo 已提交
3409
	{ }	/* terminate */
3410 3411
};

3412
/**
3413
 * cgroup_populate_dir - create subsys files in a cgroup directory
3414 3415
 * @cgrp: target cgroup
 * @subsys_mask: mask of the subsystem ids whose files should be added
3416 3417
 *
 * On failure, no file is added.
3418
 */
3419
static int cgroup_populate_dir(struct cgroup *cgrp, unsigned long subsys_mask)
3420 3421
{
	struct cgroup_subsys *ss;
3422
	int i, ret = 0;
3423

3424
	/* process cftsets of each subsystem */
3425
	for_each_subsys(ss, i) {
T
Tejun Heo 已提交
3426
		struct cftype *cfts;
3427 3428

		if (!test_bit(i, &subsys_mask))
3429
			continue;
3430

T
Tejun Heo 已提交
3431 3432
		list_for_each_entry(cfts, &ss->cfts, node) {
			ret = cgroup_addrm_files(cgrp, cfts, true);
3433 3434 3435
			if (ret < 0)
				goto err;
		}
3436 3437
	}
	return 0;
3438 3439 3440
err:
	cgroup_clear_dir(cgrp, subsys_mask);
	return ret;
3441 3442
}

3443 3444 3445 3446 3447 3448 3449 3450 3451 3452 3453 3454 3455 3456 3457 3458 3459 3460 3461 3462 3463 3464
/*
 * css destruction is four-stage process.
 *
 * 1. Destruction starts.  Killing of the percpu_ref is initiated.
 *    Implemented in kill_css().
 *
 * 2. When the percpu_ref is confirmed to be visible as killed on all CPUs
 *    and thus css_tryget() is guaranteed to fail, the css can be offlined
 *    by invoking offline_css().  After offlining, the base ref is put.
 *    Implemented in css_killed_work_fn().
 *
 * 3. When the percpu_ref reaches zero, the only possible remaining
 *    accessors are inside RCU read sections.  css_release() schedules the
 *    RCU callback.
 *
 * 4. After the grace period, the css can be freed.  Implemented in
 *    css_free_work_fn().
 *
 * It is actually hairier because both step 2 and 4 require process context
 * and thus involve punting to css->destroy_work adding two additional
 * steps to the already complex sequence.
 */
3465
static void css_free_work_fn(struct work_struct *work)
3466 3467
{
	struct cgroup_subsys_state *css =
3468
		container_of(work, struct cgroup_subsys_state, destroy_work);
3469
	struct cgroup *cgrp = css->cgroup;
3470

3471 3472 3473
	if (css->parent)
		css_put(css->parent);

3474
	css->ss->css_free(css);
T
Tejun Heo 已提交
3475
	cgroup_put(cgrp);
3476 3477
}

3478
static void css_free_rcu_fn(struct rcu_head *rcu_head)
3479 3480
{
	struct cgroup_subsys_state *css =
3481
		container_of(rcu_head, struct cgroup_subsys_state, rcu_head);
3482

3483
	INIT_WORK(&css->destroy_work, css_free_work_fn);
3484
	queue_work(cgroup_destroy_wq, &css->destroy_work);
3485 3486
}

3487 3488 3489 3490 3491
static void css_release(struct percpu_ref *ref)
{
	struct cgroup_subsys_state *css =
		container_of(ref, struct cgroup_subsys_state, refcnt);

3492
	rcu_assign_pointer(css->cgroup->subsys[css->ss->id], NULL);
3493
	call_rcu(&css->rcu_head, css_free_rcu_fn);
3494 3495
}

3496 3497
static void init_css(struct cgroup_subsys_state *css, struct cgroup_subsys *ss,
		     struct cgroup *cgrp)
3498
{
3499
	css->cgroup = cgrp;
3500
	css->ss = ss;
3501
	css->flags = 0;
3502 3503

	if (cgrp->parent)
3504
		css->parent = cgroup_css(cgrp->parent, ss);
3505
	else
3506
		css->flags |= CSS_ROOT;
3507

3508
	BUG_ON(cgroup_css(cgrp, ss));
3509 3510
}

3511
/* invoke ->css_online() on a new CSS and mark it online if successful */
3512
static int online_css(struct cgroup_subsys_state *css)
3513
{
3514
	struct cgroup_subsys *ss = css->ss;
T
Tejun Heo 已提交
3515 3516
	int ret = 0;

T
Tejun Heo 已提交
3517
	lockdep_assert_held(&cgroup_tree_mutex);
3518 3519
	lockdep_assert_held(&cgroup_mutex);

3520
	if (ss->css_online)
3521
		ret = ss->css_online(css);
3522
	if (!ret) {
3523
		css->flags |= CSS_ONLINE;
3524
		css->cgroup->nr_css++;
3525
		rcu_assign_pointer(css->cgroup->subsys[ss->id], css);
3526
	}
T
Tejun Heo 已提交
3527
	return ret;
3528 3529
}

3530
/* if the CSS is online, invoke ->css_offline() on it and mark it offline */
3531
static void offline_css(struct cgroup_subsys_state *css)
3532
{
3533
	struct cgroup_subsys *ss = css->ss;
3534

T
Tejun Heo 已提交
3535
	lockdep_assert_held(&cgroup_tree_mutex);
3536 3537 3538 3539 3540
	lockdep_assert_held(&cgroup_mutex);

	if (!(css->flags & CSS_ONLINE))
		return;

3541
	if (ss->css_offline)
3542
		ss->css_offline(css);
3543

3544
	css->flags &= ~CSS_ONLINE;
3545
	css->cgroup->nr_css--;
3546
	RCU_INIT_POINTER(css->cgroup->subsys[ss->id], css);
3547 3548
}

3549 3550 3551 3552 3553 3554 3555 3556 3557 3558 3559 3560 3561 3562 3563 3564 3565 3566 3567 3568 3569 3570 3571 3572 3573 3574 3575
/**
 * create_css - create a cgroup_subsys_state
 * @cgrp: the cgroup new css will be associated with
 * @ss: the subsys of new css
 *
 * Create a new css associated with @cgrp - @ss pair.  On success, the new
 * css is online and installed in @cgrp with all interface files created.
 * Returns 0 on success, -errno on failure.
 */
static int create_css(struct cgroup *cgrp, struct cgroup_subsys *ss)
{
	struct cgroup *parent = cgrp->parent;
	struct cgroup_subsys_state *css;
	int err;

	lockdep_assert_held(&cgroup_mutex);

	css = ss->css_alloc(cgroup_css(parent, ss));
	if (IS_ERR(css))
		return PTR_ERR(css);

	err = percpu_ref_init(&css->refcnt, css_release);
	if (err)
		goto err_free;

	init_css(css, ss, cgrp);

3576
	err = cgroup_populate_dir(cgrp, 1 << ss->id);
3577 3578 3579 3580 3581 3582 3583
	if (err)
		goto err_free;

	err = online_css(css);
	if (err)
		goto err_free;

3584
	cgroup_get(cgrp);
3585 3586 3587 3588 3589 3590 3591 3592 3593 3594 3595 3596 3597 3598 3599 3600 3601 3602 3603
	css_get(css->parent);

	if (ss->broken_hierarchy && !ss->warned_broken_hierarchy &&
	    parent->parent) {
		pr_warning("cgroup: %s (%d) created nested cgroup for controller \"%s\" which has incomplete hierarchy support. Nested cgroups may change behavior in the future.\n",
			   current->comm, current->pid, ss->name);
		if (!strcmp(ss->name, "memory"))
			pr_warning("cgroup: \"memory\" requires setting use_hierarchy to 1 on the root.\n");
		ss->warned_broken_hierarchy = true;
	}

	return 0;

err_free:
	percpu_ref_cancel_init(&css->refcnt);
	ss->css_free(css);
	return err;
}

T
Tejun Heo 已提交
3604
/**
L
Li Zefan 已提交
3605 3606
 * cgroup_create - create a cgroup
 * @parent: cgroup that will be parent of the new cgroup
T
Tejun Heo 已提交
3607
 * @name: name of the new cgroup
T
Tejun Heo 已提交
3608
 * @mode: mode to set on new cgroup
3609
 */
T
Tejun Heo 已提交
3610
static long cgroup_create(struct cgroup *parent, const char *name,
T
Tejun Heo 已提交
3611
			  umode_t mode)
3612
{
3613
	struct cgroup *cgrp;
3614
	struct cgroupfs_root *root = parent->root;
3615
	int ssid, err;
3616
	struct cgroup_subsys *ss;
T
Tejun Heo 已提交
3617
	struct kernfs_node *kn;
3618

T
Tejun Heo 已提交
3619
	/* allocate the cgroup and its ID, 0 is reserved for the root */
3620 3621
	cgrp = kzalloc(sizeof(*cgrp), GFP_KERNEL);
	if (!cgrp)
3622 3623
		return -ENOMEM;

T
Tejun Heo 已提交
3624 3625
	mutex_lock(&cgroup_tree_mutex);

3626 3627 3628 3629 3630 3631 3632 3633 3634
	/*
	 * Only live parents can have children.  Note that the liveliness
	 * check isn't strictly necessary because cgroup_mkdir() and
	 * cgroup_rmdir() are fully synchronized by i_mutex; however, do it
	 * anyway so that locking is contained inside cgroup proper and we
	 * don't get nasty surprises if we ever grow another caller.
	 */
	if (!cgroup_lock_live_group(parent)) {
		err = -ENODEV;
T
Tejun Heo 已提交
3635
		goto err_unlock_tree;
3636 3637 3638 3639 3640 3641 3642 3643 3644 3645
	}

	/*
	 * Temporarily set the pointer to NULL, so idr_find() won't return
	 * a half-baked cgroup.
	 */
	cgrp->id = idr_alloc(&root->cgroup_idr, NULL, 1, 0, GFP_KERNEL);
	if (cgrp->id < 0) {
		err = -ENOMEM;
		goto err_unlock;
3646 3647
	}

3648
	init_cgroup_housekeeping(cgrp);
3649

3650
	cgrp->parent = parent;
3651
	cgrp->dummy_css.parent = &parent->dummy_css;
3652
	cgrp->root = parent->root;
3653

3654 3655 3656
	if (notify_on_release(parent))
		set_bit(CGRP_NOTIFY_ON_RELEASE, &cgrp->flags);

3657 3658
	if (test_bit(CGRP_CPUSET_CLONE_CHILDREN, &parent->flags))
		set_bit(CGRP_CPUSET_CLONE_CHILDREN, &cgrp->flags);
3659

T
Tejun Heo 已提交
3660
	/* create the directory */
T
Tejun Heo 已提交
3661
	kn = kernfs_create_dir(parent->kn, name, mode, cgrp);
T
Tejun Heo 已提交
3662 3663
	if (IS_ERR(kn)) {
		err = PTR_ERR(kn);
3664
		goto err_free_id;
T
Tejun Heo 已提交
3665 3666
	}
	cgrp->kn = kn;
3667

3668 3669 3670 3671 3672 3673
	/*
	 * This extra ref will be put in cgroup_free_fn() and guarantees
	 * that @cgrp->kn is always accessible.
	 */
	kernfs_get(kn);

3674
	cgrp->serial_nr = cgroup_serial_nr_next++;
3675

3676 3677
	/* allocation complete, commit to creation */
	list_add_tail_rcu(&cgrp->sibling, &cgrp->parent->children);
3678
	atomic_inc(&root->nr_cgrps);
3679
	cgroup_get(parent);
3680

3681 3682 3683 3684
	/*
	 * @cgrp is now fully operational.  If something fails after this
	 * point, it'll be released via the normal destruction path.
	 */
3685 3686
	idr_replace(&root->cgroup_idr, cgrp, cgrp->id);

3687
	err = cgroup_addrm_files(cgrp, cgroup_base_files, true);
3688 3689 3690
	if (err)
		goto err_destroy;

3691
	/* let's create and online css's */
T
Tejun Heo 已提交
3692 3693 3694 3695 3696 3697
	for_each_subsys(ss, ssid) {
		if (root->subsys_mask & (1 << ssid)) {
			err = create_css(cgrp, ss);
			if (err)
				goto err_destroy;
		}
3698
	}
3699

T
Tejun Heo 已提交
3700 3701
	kernfs_activate(kn);

3702
	mutex_unlock(&cgroup_mutex);
T
Tejun Heo 已提交
3703
	mutex_unlock(&cgroup_tree_mutex);
3704 3705 3706

	return 0;

T
Tejun Heo 已提交
3707
err_free_id:
3708
	idr_remove(&root->cgroup_idr, cgrp->id);
3709 3710
err_unlock:
	mutex_unlock(&cgroup_mutex);
T
Tejun Heo 已提交
3711 3712
err_unlock_tree:
	mutex_unlock(&cgroup_tree_mutex);
3713
	kfree(cgrp);
3714
	return err;
3715 3716 3717 3718

err_destroy:
	cgroup_destroy_locked(cgrp);
	mutex_unlock(&cgroup_mutex);
T
Tejun Heo 已提交
3719
	mutex_unlock(&cgroup_tree_mutex);
3720
	return err;
3721 3722
}

T
Tejun Heo 已提交
3723 3724
static int cgroup_mkdir(struct kernfs_node *parent_kn, const char *name,
			umode_t mode)
3725
{
T
Tejun Heo 已提交
3726
	struct cgroup *parent = parent_kn->priv;
3727

T
Tejun Heo 已提交
3728
	return cgroup_create(parent, name, mode);
3729 3730
}

3731 3732 3733 3734 3735
/*
 * This is called when the refcnt of a css is confirmed to be killed.
 * css_tryget() is now guaranteed to fail.
 */
static void css_killed_work_fn(struct work_struct *work)
3736
{
3737 3738 3739
	struct cgroup_subsys_state *css =
		container_of(work, struct cgroup_subsys_state, destroy_work);
	struct cgroup *cgrp = css->cgroup;
3740

T
Tejun Heo 已提交
3741
	mutex_lock(&cgroup_tree_mutex);
3742 3743
	mutex_lock(&cgroup_mutex);

3744 3745 3746 3747 3748 3749
	/*
	 * css_tryget() is guaranteed to fail now.  Tell subsystems to
	 * initate destruction.
	 */
	offline_css(css);

3750 3751 3752 3753 3754
	/*
	 * If @cgrp is marked dead, it's waiting for refs of all css's to
	 * be disabled before proceeding to the second phase of cgroup
	 * destruction.  If we are the last one, kick it off.
	 */
3755
	if (!cgrp->nr_css && cgroup_is_dead(cgrp))
3756 3757 3758
		cgroup_destroy_css_killed(cgrp);

	mutex_unlock(&cgroup_mutex);
T
Tejun Heo 已提交
3759
	mutex_unlock(&cgroup_tree_mutex);
3760 3761 3762 3763 3764 3765 3766 3767 3768

	/*
	 * Put the css refs from kill_css().  Each css holds an extra
	 * reference to the cgroup's dentry and cgroup removal proceeds
	 * regardless of css refs.  On the last put of each css, whenever
	 * that may be, the extra dentry ref is put so that dentry
	 * destruction happens only after all css's are released.
	 */
	css_put(css);
3769 3770
}

3771 3772
/* css kill confirmation processing requires process context, bounce */
static void css_killed_ref_fn(struct percpu_ref *ref)
3773 3774 3775 3776
{
	struct cgroup_subsys_state *css =
		container_of(ref, struct cgroup_subsys_state, refcnt);

3777
	INIT_WORK(&css->destroy_work, css_killed_work_fn);
3778
	queue_work(cgroup_destroy_wq, &css->destroy_work);
3779 3780
}

T
Tejun Heo 已提交
3781 3782 3783 3784
/**
 * kill_css - destroy a css
 * @css: css to destroy
 *
3785 3786 3787 3788
 * This function initiates destruction of @css by removing cgroup interface
 * files and putting its base reference.  ->css_offline() will be invoked
 * asynchronously once css_tryget() is guaranteed to fail and when the
 * reference count reaches zero, @css will be released.
T
Tejun Heo 已提交
3789 3790 3791
 */
static void kill_css(struct cgroup_subsys_state *css)
{
T
Tejun Heo 已提交
3792 3793 3794 3795
	/*
	 * This must happen before css is disassociated with its cgroup.
	 * See seq_css() for details.
	 */
3796
	cgroup_clear_dir(css->cgroup, 1 << css->ss->id);
3797

T
Tejun Heo 已提交
3798 3799 3800 3801 3802 3803 3804 3805 3806 3807 3808 3809 3810 3811 3812 3813 3814
	/*
	 * Killing would put the base ref, but we need to keep it alive
	 * until after ->css_offline().
	 */
	css_get(css);

	/*
	 * cgroup core guarantees that, by the time ->css_offline() is
	 * invoked, no new css reference will be given out via
	 * css_tryget().  We can't simply call percpu_ref_kill() and
	 * proceed to offlining css's because percpu_ref_kill() doesn't
	 * guarantee that the ref is seen as killed on all CPUs on return.
	 *
	 * Use percpu_ref_kill_and_confirm() to get notifications as each
	 * css is confirmed to be seen as killed on all CPUs.
	 */
	percpu_ref_kill_and_confirm(&css->refcnt, css_killed_ref_fn);
3815 3816 3817 3818 3819 3820 3821 3822 3823 3824 3825 3826 3827 3828 3829 3830 3831 3832 3833 3834 3835 3836 3837 3838 3839 3840
}

/**
 * cgroup_destroy_locked - the first stage of cgroup destruction
 * @cgrp: cgroup to be destroyed
 *
 * css's make use of percpu refcnts whose killing latency shouldn't be
 * exposed to userland and are RCU protected.  Also, cgroup core needs to
 * guarantee that css_tryget() won't succeed by the time ->css_offline() is
 * invoked.  To satisfy all the requirements, destruction is implemented in
 * the following two steps.
 *
 * s1. Verify @cgrp can be destroyed and mark it dying.  Remove all
 *     userland visible parts and start killing the percpu refcnts of
 *     css's.  Set up so that the next stage will be kicked off once all
 *     the percpu refcnts are confirmed to be killed.
 *
 * s2. Invoke ->css_offline(), mark the cgroup dead and proceed with the
 *     rest of destruction.  Once all cgroup references are gone, the
 *     cgroup is RCU-freed.
 *
 * This function implements s1.  After this step, @cgrp is gone as far as
 * the userland is concerned and a new cgroup with the same name may be
 * created.  As cgroup doesn't care about the names internally, this
 * doesn't cause any problem.
 */
3841 3842
static int cgroup_destroy_locked(struct cgroup *cgrp)
	__releases(&cgroup_mutex) __acquires(&cgroup_mutex)
3843
{
3844
	struct cgroup *child;
T
Tejun Heo 已提交
3845
	struct cgroup_subsys_state *css;
3846
	bool empty;
T
Tejun Heo 已提交
3847
	int ssid;
3848

T
Tejun Heo 已提交
3849
	lockdep_assert_held(&cgroup_tree_mutex);
3850 3851
	lockdep_assert_held(&cgroup_mutex);

3852
	/*
3853
	 * css_set_rwsem synchronizes access to ->cset_links and prevents
3854
	 * @cgrp from being removed while put_css_set() is in progress.
3855
	 */
3856
	down_read(&css_set_rwsem);
3857
	empty = list_empty(&cgrp->cset_links);
3858
	up_read(&css_set_rwsem);
3859
	if (!empty)
3860
		return -EBUSY;
L
Li Zefan 已提交
3861

3862 3863 3864 3865 3866 3867 3868 3869 3870 3871 3872 3873 3874 3875 3876 3877
	/*
	 * Make sure there's no live children.  We can't test ->children
	 * emptiness as dead children linger on it while being destroyed;
	 * otherwise, "rmdir parent/child parent" may fail with -EBUSY.
	 */
	empty = true;
	rcu_read_lock();
	list_for_each_entry_rcu(child, &cgrp->children, sibling) {
		empty = cgroup_is_dead(child);
		if (!empty)
			break;
	}
	rcu_read_unlock();
	if (!empty)
		return -EBUSY;

3878 3879 3880 3881 3882 3883 3884 3885 3886
	/*
	 * Mark @cgrp dead.  This prevents further task migration and child
	 * creation by disabling cgroup_lock_live_group().  Note that
	 * CGRP_DEAD assertion is depended upon by css_next_child() to
	 * resume iteration after dropping RCU read lock.  See
	 * css_next_child() for details.
	 */
	set_bit(CGRP_DEAD, &cgrp->flags);

3887
	/*
T
Tejun Heo 已提交
3888 3889
	 * Initiate massacre of all css's.  cgroup_destroy_css_killed()
	 * will be invoked to perform the rest of destruction once the
3890 3891
	 * percpu refs of all css's are confirmed to be killed.  This
	 * involves removing the subsystem's files, drop cgroup_mutex.
3892
	 */
3893
	mutex_unlock(&cgroup_mutex);
T
Tejun Heo 已提交
3894 3895
	for_each_css(css, ssid, cgrp)
		kill_css(css);
3896
	mutex_lock(&cgroup_mutex);
3897 3898 3899 3900 3901 3902 3903 3904

	/* CGRP_DEAD is set, remove from ->release_list for the last time */
	raw_spin_lock(&release_list_lock);
	if (!list_empty(&cgrp->release_list))
		list_del_init(&cgrp->release_list);
	raw_spin_unlock(&release_list_lock);

	/*
3905 3906 3907 3908 3909 3910 3911 3912
	 * If @cgrp has css's attached, the second stage of cgroup
	 * destruction is kicked off from css_killed_work_fn() after the
	 * refs of all attached css's are killed.  If @cgrp doesn't have
	 * any css, we kick it off here.
	 */
	if (!cgrp->nr_css)
		cgroup_destroy_css_killed(cgrp);

T
Tejun Heo 已提交
3913 3914 3915
	/* remove @cgrp directory along with the base files */
	mutex_unlock(&cgroup_mutex);

3916
	/*
T
Tejun Heo 已提交
3917 3918 3919 3920 3921
	 * There are two control paths which try to determine cgroup from
	 * dentry without going through kernfs - cgroupstats_build() and
	 * css_tryget_from_dir().  Those are supported by RCU protecting
	 * clearing of cgrp->kn->priv backpointer, which should happen
	 * after all files under it have been removed.
3922
	 */
3923
	kernfs_remove(cgrp->kn);	/* @cgrp has an extra ref on its kn */
T
Tejun Heo 已提交
3924 3925
	RCU_INIT_POINTER(*(void __rcu __force **)&cgrp->kn->priv, NULL);

3926
	mutex_lock(&cgroup_mutex);
3927

3928 3929 3930
	return 0;
};

3931
/**
3932
 * cgroup_destroy_css_killed - the second step of cgroup destruction
3933 3934 3935
 * @work: cgroup->destroy_free_work
 *
 * This function is invoked from a work item for a cgroup which is being
3936 3937 3938
 * destroyed after all css's are offlined and performs the rest of
 * destruction.  This is the second step of destruction described in the
 * comment above cgroup_destroy_locked().
3939
 */
3940
static void cgroup_destroy_css_killed(struct cgroup *cgrp)
3941 3942 3943
{
	struct cgroup *parent = cgrp->parent;

T
Tejun Heo 已提交
3944
	lockdep_assert_held(&cgroup_tree_mutex);
3945
	lockdep_assert_held(&cgroup_mutex);
3946

3947
	/* delete this cgroup from parent->children */
3948
	list_del_rcu(&cgrp->sibling);
3949

3950
	cgroup_put(cgrp);
3951

3952
	set_bit(CGRP_RELEASABLE, &parent->flags);
3953
	check_for_release(parent);
3954 3955
}

T
Tejun Heo 已提交
3956
static int cgroup_rmdir(struct kernfs_node *kn)
3957
{
T
Tejun Heo 已提交
3958 3959 3960 3961 3962 3963 3964 3965 3966 3967 3968
	struct cgroup *cgrp = kn->priv;
	int ret = 0;

	/*
	 * This is self-destruction but @kn can't be removed while this
	 * callback is in progress.  Let's break active protection.  Once
	 * the protection is broken, @cgrp can be destroyed at any point.
	 * Pin it so that it stays accessible.
	 */
	cgroup_get(cgrp);
	kernfs_break_active_protection(kn);
3969

T
Tejun Heo 已提交
3970
	mutex_lock(&cgroup_tree_mutex);
3971
	mutex_lock(&cgroup_mutex);
T
Tejun Heo 已提交
3972 3973 3974 3975 3976 3977 3978 3979

	/*
	 * @cgrp might already have been destroyed while we're trying to
	 * grab the mutexes.
	 */
	if (!cgroup_is_dead(cgrp))
		ret = cgroup_destroy_locked(cgrp);

3980
	mutex_unlock(&cgroup_mutex);
T
Tejun Heo 已提交
3981
	mutex_unlock(&cgroup_tree_mutex);
3982

T
Tejun Heo 已提交
3983 3984
	kernfs_unbreak_active_protection(kn);
	cgroup_put(cgrp);
3985 3986 3987
	return ret;
}

T
Tejun Heo 已提交
3988 3989 3990 3991 3992 3993 3994 3995
static struct kernfs_syscall_ops cgroup_kf_syscall_ops = {
	.remount_fs		= cgroup_remount,
	.show_options		= cgroup_show_options,
	.mkdir			= cgroup_mkdir,
	.rmdir			= cgroup_rmdir,
	.rename			= cgroup_rename,
};

3996
static void __init cgroup_init_subsys(struct cgroup_subsys *ss)
3997 3998
{
	struct cgroup_subsys_state *css;
D
Diego Calleja 已提交
3999 4000

	printk(KERN_INFO "Initializing cgroup subsys %s\n", ss->name);
4001

T
Tejun Heo 已提交
4002
	mutex_lock(&cgroup_tree_mutex);
4003 4004
	mutex_lock(&cgroup_mutex);

T
Tejun Heo 已提交
4005
	INIT_LIST_HEAD(&ss->cfts);
4006

4007
	/* Create the top cgroup state for this subsystem */
4008
	ss->root = &cgroup_dummy_root;
4009
	css = ss->css_alloc(cgroup_css(cgroup_dummy_top, ss));
4010 4011
	/* We don't handle early failures gracefully */
	BUG_ON(IS_ERR(css));
4012
	init_css(css, ss, cgroup_dummy_top);
4013

L
Li Zefan 已提交
4014
	/* Update the init_css_set to contain a subsys
4015
	 * pointer to this state - since the subsystem is
L
Li Zefan 已提交
4016 4017
	 * newly registered, all tasks and hence the
	 * init_css_set is in the subsystem's top cgroup. */
4018
	init_css_set.subsys[ss->id] = css;
4019 4020 4021

	need_forkexit_callback |= ss->fork || ss->exit;

L
Li Zefan 已提交
4022 4023 4024 4025 4026
	/* At system boot, before all subsystems have been
	 * registered, no tasks have been forked, so we don't
	 * need to invoke fork callbacks here. */
	BUG_ON(!list_empty(&init_task.tasks));

4027
	BUG_ON(online_css(css));
4028

4029
	mutex_unlock(&cgroup_mutex);
T
Tejun Heo 已提交
4030
	mutex_unlock(&cgroup_tree_mutex);
4031 4032
}

4033
/**
L
Li Zefan 已提交
4034 4035 4036 4037
 * cgroup_init_early - cgroup initialization at system boot
 *
 * Initialize cgroups at system boot, and initialize any
 * subsystems that request early init.
4038 4039 4040
 */
int __init cgroup_init_early(void)
{
4041
	static struct cgroup_sb_opts __initdata opts = { };
4042
	struct cgroup_subsys *ss;
4043
	int i;
4044

4045
	init_cgroup_root(&cgroup_dummy_root, &opts);
4046
	RCU_INIT_POINTER(init_task.cgroups, &init_css_set);
4047

T
Tejun Heo 已提交
4048
	for_each_subsys(ss, i) {
4049
		WARN(!ss->css_alloc || !ss->css_free || ss->name || ss->id,
4050 4051
		     "invalid cgroup_subsys %d:%s css_alloc=%p css_free=%p name:id=%d:%s\n",
		     i, cgroup_subsys_name[i], ss->css_alloc, ss->css_free,
4052
		     ss->id, ss->name);
4053 4054 4055
		WARN(strlen(cgroup_subsys_name[i]) > MAX_CGROUP_TYPE_NAMELEN,
		     "cgroup_subsys_name %s too long\n", cgroup_subsys_name[i]);

4056
		ss->id = i;
4057
		ss->name = cgroup_subsys_name[i];
4058 4059 4060 4061 4062 4063 4064 4065

		if (ss->early_init)
			cgroup_init_subsys(ss);
	}
	return 0;
}

/**
L
Li Zefan 已提交
4066 4067 4068 4069
 * cgroup_init - cgroup initialization
 *
 * Register cgroup filesystem and /proc file, and initialize
 * any subsystems that didn't request early init.
4070 4071 4072
 */
int __init cgroup_init(void)
{
4073
	struct cgroup_subsys *ss;
4074
	unsigned long key;
4075
	int ssid, err;
4076

T
Tejun Heo 已提交
4077
	BUG_ON(cgroup_init_cftypes(NULL, cgroup_base_files));
4078

4079
	mutex_lock(&cgroup_tree_mutex);
T
Tejun Heo 已提交
4080 4081
	mutex_lock(&cgroup_mutex);

4082 4083 4084 4085
	/* Add init_css_set to the hash table */
	key = css_set_hash(init_css_set.subsys);
	hash_add(css_set_table, &init_css_set.hlist, key);

4086
	BUG_ON(cgroup_setup_root(&cgroup_dummy_root, 0));
4087

T
Tejun Heo 已提交
4088
	mutex_unlock(&cgroup_mutex);
4089
	mutex_unlock(&cgroup_tree_mutex);
T
Tejun Heo 已提交
4090

4091 4092 4093 4094 4095 4096 4097 4098 4099 4100 4101 4102
	for_each_subsys(ss, ssid) {
		if (!ss->early_init)
			cgroup_init_subsys(ss);

		/*
		 * cftype registration needs kmalloc and can't be done
		 * during early_init.  Register base cftypes separately.
		 */
		if (ss->base_cftypes)
			WARN_ON(cgroup_add_cftypes(ss, ss->base_cftypes));
	}

4103
	cgroup_kobj = kobject_create_and_add("cgroup", fs_kobj);
T
Tejun Heo 已提交
4104 4105
	if (!cgroup_kobj)
		return -ENOMEM;
4106

4107
	err = register_filesystem(&cgroup_fs_type);
4108 4109
	if (err < 0) {
		kobject_put(cgroup_kobj);
T
Tejun Heo 已提交
4110
		return err;
4111
	}
4112

L
Li Zefan 已提交
4113
	proc_create("cgroups", 0, NULL, &proc_cgroupstats_operations);
T
Tejun Heo 已提交
4114
	return 0;
4115
}
4116

4117 4118 4119 4120 4121
static int __init cgroup_wq_init(void)
{
	/*
	 * There isn't much point in executing destruction path in
	 * parallel.  Good chunk is serialized with cgroup_mutex anyway.
4122
	 * Use 1 for @max_active.
4123 4124 4125 4126
	 *
	 * We would prefer to do this in cgroup_init() above, but that
	 * is called before init_workqueues(): so leave this until after.
	 */
4127
	cgroup_destroy_wq = alloc_workqueue("cgroup_destroy", 0, 1);
4128
	BUG_ON(!cgroup_destroy_wq);
4129 4130 4131 4132 4133 4134 4135 4136 4137

	/*
	 * Used to destroy pidlists and separate to serve as flush domain.
	 * Cap @max_active to 1 too.
	 */
	cgroup_pidlist_destroy_wq = alloc_workqueue("cgroup_pidlist_destroy",
						    0, 1);
	BUG_ON(!cgroup_pidlist_destroy_wq);

4138 4139 4140 4141
	return 0;
}
core_initcall(cgroup_wq_init);

4142 4143 4144 4145 4146 4147 4148
/*
 * proc_cgroup_show()
 *  - Print task's cgroup paths into seq_file, one line for each hierarchy
 *  - Used for /proc/<pid>/cgroup.
 */

/* TODO: Use a proper seq_file iterator */
4149
int proc_cgroup_show(struct seq_file *m, void *v)
4150 4151 4152
{
	struct pid *pid;
	struct task_struct *tsk;
T
Tejun Heo 已提交
4153
	char *buf, *path;
4154 4155 4156 4157
	int retval;
	struct cgroupfs_root *root;

	retval = -ENOMEM;
T
Tejun Heo 已提交
4158
	buf = kmalloc(PATH_MAX, GFP_KERNEL);
4159 4160 4161 4162 4163 4164 4165 4166 4167 4168 4169 4170
	if (!buf)
		goto out;

	retval = -ESRCH;
	pid = m->private;
	tsk = get_pid_task(pid, PIDTYPE_PID);
	if (!tsk)
		goto out_free;

	retval = 0;

	mutex_lock(&cgroup_mutex);
4171
	down_read(&css_set_rwsem);
4172

4173
	for_each_root(root) {
4174
		struct cgroup_subsys *ss;
4175
		struct cgroup *cgrp;
T
Tejun Heo 已提交
4176
		int ssid, count = 0;
4177

4178 4179 4180
		if (root == &cgroup_dummy_root)
			continue;

4181
		seq_printf(m, "%d:", root->hierarchy_id);
T
Tejun Heo 已提交
4182 4183 4184
		for_each_subsys(ss, ssid)
			if (root->subsys_mask & (1 << ssid))
				seq_printf(m, "%s%s", count++ ? "," : "", ss->name);
4185 4186 4187
		if (strlen(root->name))
			seq_printf(m, "%sname=%s", count ? "," : "",
				   root->name);
4188
		seq_putc(m, ':');
4189
		cgrp = task_cgroup_from_root(tsk, root);
T
Tejun Heo 已提交
4190 4191 4192
		path = cgroup_path(cgrp, buf, PATH_MAX);
		if (!path) {
			retval = -ENAMETOOLONG;
4193
			goto out_unlock;
T
Tejun Heo 已提交
4194 4195
		}
		seq_puts(m, path);
4196 4197 4198 4199
		seq_putc(m, '\n');
	}

out_unlock:
4200
	up_read(&css_set_rwsem);
4201 4202 4203 4204 4205 4206 4207 4208 4209 4210 4211
	mutex_unlock(&cgroup_mutex);
	put_task_struct(tsk);
out_free:
	kfree(buf);
out:
	return retval;
}

/* Display information about each subsystem and each hierarchy */
static int proc_cgroupstats_show(struct seq_file *m, void *v)
{
4212
	struct cgroup_subsys *ss;
4213 4214
	int i;

4215
	seq_puts(m, "#subsys_name\thierarchy\tnum_cgroups\tenabled\n");
B
Ben Blum 已提交
4216 4217 4218 4219 4220
	/*
	 * ideally we don't want subsystems moving around while we do this.
	 * cgroup_mutex is also necessary to guarantee an atomic snapshot of
	 * subsys/hierarchy state.
	 */
4221
	mutex_lock(&cgroup_mutex);
4222 4223

	for_each_subsys(ss, i)
4224 4225
		seq_printf(m, "%s\t%d\t%d\t%d\n",
			   ss->name, ss->root->hierarchy_id,
4226
			   atomic_read(&ss->root->nr_cgrps), !ss->disabled);
4227

4228 4229 4230 4231 4232 4233
	mutex_unlock(&cgroup_mutex);
	return 0;
}

static int cgroupstats_open(struct inode *inode, struct file *file)
{
A
Al Viro 已提交
4234
	return single_open(file, proc_cgroupstats_show, NULL);
4235 4236
}

4237
static const struct file_operations proc_cgroupstats_operations = {
4238 4239 4240 4241 4242 4243
	.open = cgroupstats_open,
	.read = seq_read,
	.llseek = seq_lseek,
	.release = single_release,
};

4244
/**
4245
 * cgroup_fork - initialize cgroup related fields during copy_process()
L
Li Zefan 已提交
4246
 * @child: pointer to task_struct of forking parent process.
4247
 *
4248 4249 4250
 * A task is associated with the init_css_set until cgroup_post_fork()
 * attaches it to the parent's css_set.  Empty cg_list indicates that
 * @child isn't holding reference to its css_set.
4251 4252 4253
 */
void cgroup_fork(struct task_struct *child)
{
4254
	RCU_INIT_POINTER(child->cgroups, &init_css_set);
4255
	INIT_LIST_HEAD(&child->cg_list);
4256 4257
}

4258
/**
L
Li Zefan 已提交
4259 4260 4261
 * cgroup_post_fork - called on a new task after adding it to the task list
 * @child: the task in question
 *
4262 4263 4264
 * Adds the task to the list running through its css_set if necessary and
 * call the subsystem fork() callbacks.  Has to be after the task is
 * visible on the task list in case we race with the first call to
4265
 * cgroup_task_iter_start() - to guarantee that the new task ends up on its
4266
 * list.
L
Li Zefan 已提交
4267
 */
4268 4269
void cgroup_post_fork(struct task_struct *child)
{
4270
	struct cgroup_subsys *ss;
4271 4272
	int i;

4273
	/*
4274 4275 4276 4277 4278 4279 4280 4281 4282 4283 4284 4285 4286 4287 4288 4289 4290 4291 4292
	 * This may race against cgroup_enable_task_cg_links().  As that
	 * function sets use_task_css_set_links before grabbing
	 * tasklist_lock and we just went through tasklist_lock to add
	 * @child, it's guaranteed that either we see the set
	 * use_task_css_set_links or cgroup_enable_task_cg_lists() sees
	 * @child during its iteration.
	 *
	 * If we won the race, @child is associated with %current's
	 * css_set.  Grabbing css_set_rwsem guarantees both that the
	 * association is stable, and, on completion of the parent's
	 * migration, @child is visible in the source of migration or
	 * already in the destination cgroup.  This guarantee is necessary
	 * when implementing operations which need to migrate all tasks of
	 * a cgroup to another.
	 *
	 * Note that if we lose to cgroup_enable_task_cg_links(), @child
	 * will remain in init_css_set.  This is safe because all tasks are
	 * in the init_css_set before cg_links is enabled and there's no
	 * operation which transfers all tasks out of init_css_set.
4293
	 */
4294
	if (use_task_css_set_links) {
4295 4296
		struct css_set *cset;

4297
		down_write(&css_set_rwsem);
4298
		cset = task_css_set(current);
4299 4300 4301 4302 4303
		if (list_empty(&child->cg_list)) {
			rcu_assign_pointer(child->cgroups, cset);
			list_add(&child->cg_list, &cset->tasks);
			get_css_set(cset);
		}
4304
		up_write(&css_set_rwsem);
4305
	}
4306 4307 4308 4309 4310 4311 4312

	/*
	 * Call ss->fork().  This must happen after @child is linked on
	 * css_set; otherwise, @child might change state between ->fork()
	 * and addition to css_set.
	 */
	if (need_forkexit_callback) {
T
Tejun Heo 已提交
4313
		for_each_subsys(ss, i)
4314 4315 4316
			if (ss->fork)
				ss->fork(child);
	}
4317
}
4318

4319 4320 4321
/**
 * cgroup_exit - detach cgroup from exiting task
 * @tsk: pointer to task_struct of exiting process
L
Li Zefan 已提交
4322
 * @run_callback: run exit callbacks?
4323 4324 4325 4326 4327 4328 4329 4330 4331
 *
 * Description: Detach cgroup from @tsk and release it.
 *
 * Note that cgroups marked notify_on_release force every task in
 * them to take the global cgroup_mutex mutex when exiting.
 * This could impact scaling on very large systems.  Be reluctant to
 * use notify_on_release cgroups where very high task exit scaling
 * is required on large systems.
 *
4332 4333 4334 4335 4336 4337 4338
 * We set the exiting tasks cgroup to the root cgroup (top_cgroup).  We
 * call cgroup_exit() while the task is still competent to handle
 * notify_on_release(), then leave the task attached to the root cgroup in
 * each hierarchy for the remainder of its exit.  No need to bother with
 * init_css_set refcnting.  init_css_set never goes away and we can't race
 * with migration path - either PF_EXITING is visible to migration path or
 * @tsk never got on the tasklist.
4339 4340 4341
 */
void cgroup_exit(struct task_struct *tsk, int run_callbacks)
{
4342
	struct cgroup_subsys *ss;
4343
	struct css_set *cset;
4344
	bool put_cset = false;
4345
	int i;
4346 4347

	/*
4348 4349
	 * Unlink from @tsk from its css_set.  As migration path can't race
	 * with us, we can check cg_list without grabbing css_set_rwsem.
4350 4351
	 */
	if (!list_empty(&tsk->cg_list)) {
4352
		down_write(&css_set_rwsem);
4353
		list_del_init(&tsk->cg_list);
4354
		up_write(&css_set_rwsem);
4355
		put_cset = true;
4356 4357
	}

4358
	/* Reassign the task to the init_css_set. */
4359 4360
	cset = task_css_set(tsk);
	RCU_INIT_POINTER(tsk->cgroups, &init_css_set);
4361 4362

	if (run_callbacks && need_forkexit_callback) {
T
Tejun Heo 已提交
4363 4364
		/* see cgroup_post_fork() for details */
		for_each_subsys(ss, i) {
4365
			if (ss->exit) {
4366 4367
				struct cgroup_subsys_state *old_css = cset->subsys[i];
				struct cgroup_subsys_state *css = task_css(tsk, i);
4368

4369
				ss->exit(css, old_css, tsk);
4370 4371 4372 4373
			}
		}
	}

4374 4375
	if (put_cset)
		put_css_set(cset, true);
4376
}
4377

4378
static void check_for_release(struct cgroup *cgrp)
4379
{
4380
	if (cgroup_is_releasable(cgrp) &&
T
Tejun Heo 已提交
4381
	    list_empty(&cgrp->cset_links) && list_empty(&cgrp->children)) {
4382 4383
		/*
		 * Control Group is currently removeable. If it's not
4384
		 * already queued for a userspace notification, queue
4385 4386
		 * it now
		 */
4387
		int need_schedule_work = 0;
4388

4389
		raw_spin_lock(&release_list_lock);
4390
		if (!cgroup_is_dead(cgrp) &&
4391 4392
		    list_empty(&cgrp->release_list)) {
			list_add(&cgrp->release_list, &release_list);
4393 4394
			need_schedule_work = 1;
		}
4395
		raw_spin_unlock(&release_list_lock);
4396 4397 4398 4399 4400 4401 4402 4403 4404 4405 4406 4407 4408 4409 4410 4411 4412 4413 4414 4415 4416 4417 4418 4419 4420 4421 4422 4423 4424 4425 4426 4427
		if (need_schedule_work)
			schedule_work(&release_agent_work);
	}
}

/*
 * Notify userspace when a cgroup is released, by running the
 * configured release agent with the name of the cgroup (path
 * relative to the root of cgroup file system) as the argument.
 *
 * Most likely, this user command will try to rmdir this cgroup.
 *
 * This races with the possibility that some other task will be
 * attached to this cgroup before it is removed, or that some other
 * user task will 'mkdir' a child cgroup of this cgroup.  That's ok.
 * The presumed 'rmdir' will fail quietly if this cgroup is no longer
 * unused, and this cgroup will be reprieved from its death sentence,
 * to continue to serve a useful existence.  Next time it's released,
 * we will get notified again, if it still has 'notify_on_release' set.
 *
 * The final arg to call_usermodehelper() is UMH_WAIT_EXEC, which
 * means only wait until the task is successfully execve()'d.  The
 * separate release agent task is forked by call_usermodehelper(),
 * then control in this thread returns here, without waiting for the
 * release agent task.  We don't bother to wait because the caller of
 * this routine has no use for the exit status of the release agent
 * task, so no sense holding our caller up for that.
 */
static void cgroup_release_agent(struct work_struct *work)
{
	BUG_ON(work != &release_agent_work);
	mutex_lock(&cgroup_mutex);
4428
	raw_spin_lock(&release_list_lock);
4429 4430 4431
	while (!list_empty(&release_list)) {
		char *argv[3], *envp[3];
		int i;
T
Tejun Heo 已提交
4432
		char *pathbuf = NULL, *agentbuf = NULL, *path;
4433
		struct cgroup *cgrp = list_entry(release_list.next,
4434 4435
						    struct cgroup,
						    release_list);
4436
		list_del_init(&cgrp->release_list);
4437
		raw_spin_unlock(&release_list_lock);
T
Tejun Heo 已提交
4438
		pathbuf = kmalloc(PATH_MAX, GFP_KERNEL);
4439 4440
		if (!pathbuf)
			goto continue_free;
T
Tejun Heo 已提交
4441 4442
		path = cgroup_path(cgrp, pathbuf, PATH_MAX);
		if (!path)
4443 4444 4445 4446
			goto continue_free;
		agentbuf = kstrdup(cgrp->root->release_agent_path, GFP_KERNEL);
		if (!agentbuf)
			goto continue_free;
4447 4448

		i = 0;
4449
		argv[i++] = agentbuf;
T
Tejun Heo 已提交
4450
		argv[i++] = path;
4451 4452 4453 4454 4455 4456 4457 4458 4459 4460 4461 4462 4463 4464
		argv[i] = NULL;

		i = 0;
		/* minimal command environment */
		envp[i++] = "HOME=/";
		envp[i++] = "PATH=/sbin:/bin:/usr/sbin:/usr/bin";
		envp[i] = NULL;

		/* Drop the lock while we invoke the usermode helper,
		 * since the exec could involve hitting disk and hence
		 * be a slow process */
		mutex_unlock(&cgroup_mutex);
		call_usermodehelper(argv[0], argv, envp, UMH_WAIT_EXEC);
		mutex_lock(&cgroup_mutex);
4465 4466 4467
 continue_free:
		kfree(pathbuf);
		kfree(agentbuf);
4468
		raw_spin_lock(&release_list_lock);
4469
	}
4470
	raw_spin_unlock(&release_list_lock);
4471 4472
	mutex_unlock(&cgroup_mutex);
}
4473 4474 4475

static int __init cgroup_disable(char *str)
{
4476
	struct cgroup_subsys *ss;
4477
	char *token;
4478
	int i;
4479 4480 4481 4482

	while ((token = strsep(&str, ",")) != NULL) {
		if (!*token)
			continue;
4483

T
Tejun Heo 已提交
4484
		for_each_subsys(ss, i) {
4485 4486 4487 4488 4489 4490 4491 4492 4493 4494 4495
			if (!strcmp(token, ss->name)) {
				ss->disabled = 1;
				printk(KERN_INFO "Disabling %s control group"
					" subsystem\n", ss->name);
				break;
			}
		}
	}
	return 1;
}
__setup("cgroup_disable=", cgroup_disable);
K
KAMEZAWA Hiroyuki 已提交
4496

4497
/**
4498
 * css_tryget_from_dir - get corresponding css from the dentry of a cgroup dir
4499 4500
 * @dentry: directory dentry of interest
 * @ss: subsystem of interest
4501
 *
4502 4503 4504
 * If @dentry is a directory for a cgroup which has @ss enabled on it, try
 * to get the corresponding css and return it.  If such css doesn't exist
 * or can't be pinned, an ERR_PTR value is returned.
S
Stephane Eranian 已提交
4505
 */
4506 4507
struct cgroup_subsys_state *css_tryget_from_dir(struct dentry *dentry,
						struct cgroup_subsys *ss)
S
Stephane Eranian 已提交
4508
{
T
Tejun Heo 已提交
4509 4510
	struct kernfs_node *kn = kernfs_node_from_dentry(dentry);
	struct cgroup_subsys_state *css = NULL;
S
Stephane Eranian 已提交
4511
	struct cgroup *cgrp;
4512

4513
	/* is @dentry a cgroup dir? */
T
Tejun Heo 已提交
4514 4515
	if (dentry->d_sb->s_type != &cgroup_fs_type || !kn ||
	    kernfs_type(kn) != KERNFS_DIR)
S
Stephane Eranian 已提交
4516 4517
		return ERR_PTR(-EBADF);

4518 4519
	rcu_read_lock();

T
Tejun Heo 已提交
4520 4521 4522 4523 4524 4525 4526 4527
	/*
	 * This path doesn't originate from kernfs and @kn could already
	 * have been or be removed at any point.  @kn->priv is RCU
	 * protected for this access.  See destroy_locked() for details.
	 */
	cgrp = rcu_dereference(kn->priv);
	if (cgrp)
		css = cgroup_css(cgrp, ss);
4528 4529 4530 4531 4532 4533

	if (!css || !css_tryget(css))
		css = ERR_PTR(-ENOENT);

	rcu_read_unlock();
	return css;
S
Stephane Eranian 已提交
4534 4535
}

4536 4537 4538 4539 4540 4541 4542 4543 4544 4545 4546 4547
/**
 * css_from_id - lookup css by id
 * @id: the cgroup id
 * @ss: cgroup subsys to be looked into
 *
 * Returns the css if there's valid one with @id, otherwise returns NULL.
 * Should be called under rcu_read_lock().
 */
struct cgroup_subsys_state *css_from_id(int id, struct cgroup_subsys *ss)
{
	struct cgroup *cgrp;

T
Tejun Heo 已提交
4548
	cgroup_assert_mutexes_or_rcu_locked();
4549 4550 4551

	cgrp = idr_find(&ss->root->cgroup_idr, id);
	if (cgrp)
4552
		return cgroup_css(cgrp, ss);
4553
	return NULL;
S
Stephane Eranian 已提交
4554 4555
}

4556
#ifdef CONFIG_CGROUP_DEBUG
4557 4558
static struct cgroup_subsys_state *
debug_css_alloc(struct cgroup_subsys_state *parent_css)
4559 4560 4561 4562 4563 4564 4565 4566 4567
{
	struct cgroup_subsys_state *css = kzalloc(sizeof(*css), GFP_KERNEL);

	if (!css)
		return ERR_PTR(-ENOMEM);

	return css;
}

4568
static void debug_css_free(struct cgroup_subsys_state *css)
4569
{
4570
	kfree(css);
4571 4572
}

4573 4574
static u64 debug_taskcount_read(struct cgroup_subsys_state *css,
				struct cftype *cft)
4575
{
4576
	return cgroup_task_count(css->cgroup);
4577 4578
}

4579 4580
static u64 current_css_set_read(struct cgroup_subsys_state *css,
				struct cftype *cft)
4581 4582 4583 4584
{
	return (u64)(unsigned long)current->cgroups;
}

4585
static u64 current_css_set_refcount_read(struct cgroup_subsys_state *css,
L
Li Zefan 已提交
4586
					 struct cftype *cft)
4587 4588 4589 4590
{
	u64 count;

	rcu_read_lock();
4591
	count = atomic_read(&task_css_set(current)->refcount);
4592 4593 4594 4595
	rcu_read_unlock();
	return count;
}

4596
static int current_css_set_cg_links_read(struct seq_file *seq, void *v)
4597
{
4598
	struct cgrp_cset_link *link;
4599
	struct css_set *cset;
T
Tejun Heo 已提交
4600 4601 4602 4603 4604
	char *name_buf;

	name_buf = kmalloc(NAME_MAX + 1, GFP_KERNEL);
	if (!name_buf)
		return -ENOMEM;
4605

4606
	down_read(&css_set_rwsem);
4607
	rcu_read_lock();
4608
	cset = rcu_dereference(current->cgroups);
4609
	list_for_each_entry(link, &cset->cgrp_links, cgrp_link) {
4610
		struct cgroup *c = link->cgrp;
4611 4612
		const char *name = "?";

T
Tejun Heo 已提交
4613 4614 4615 4616
		if (c != cgroup_dummy_top) {
			cgroup_name(c, name_buf, NAME_MAX + 1);
			name = name_buf;
		}
4617

4618 4619
		seq_printf(seq, "Root %d group %s\n",
			   c->root->hierarchy_id, name);
4620 4621
	}
	rcu_read_unlock();
4622
	up_read(&css_set_rwsem);
T
Tejun Heo 已提交
4623
	kfree(name_buf);
4624 4625 4626 4627
	return 0;
}

#define MAX_TASKS_SHOWN_PER_CSS 25
4628
static int cgroup_css_links_read(struct seq_file *seq, void *v)
4629
{
4630
	struct cgroup_subsys_state *css = seq_css(seq);
4631
	struct cgrp_cset_link *link;
4632

4633
	down_read(&css_set_rwsem);
4634
	list_for_each_entry(link, &css->cgroup->cset_links, cset_link) {
4635
		struct css_set *cset = link->cset;
4636 4637
		struct task_struct *task;
		int count = 0;
T
Tejun Heo 已提交
4638

4639
		seq_printf(seq, "css_set %p\n", cset);
T
Tejun Heo 已提交
4640

4641
		list_for_each_entry(task, &cset->tasks, cg_list) {
T
Tejun Heo 已提交
4642 4643 4644 4645 4646 4647 4648 4649 4650
			if (count++ > MAX_TASKS_SHOWN_PER_CSS)
				goto overflow;
			seq_printf(seq, "  task %d\n", task_pid_vnr(task));
		}

		list_for_each_entry(task, &cset->mg_tasks, cg_list) {
			if (count++ > MAX_TASKS_SHOWN_PER_CSS)
				goto overflow;
			seq_printf(seq, "  task %d\n", task_pid_vnr(task));
4651
		}
T
Tejun Heo 已提交
4652 4653 4654
		continue;
	overflow:
		seq_puts(seq, "  ...\n");
4655
	}
4656
	up_read(&css_set_rwsem);
4657 4658 4659
	return 0;
}

4660
static u64 releasable_read(struct cgroup_subsys_state *css, struct cftype *cft)
4661
{
4662
	return test_bit(CGRP_RELEASABLE, &css->cgroup->flags);
4663 4664 4665 4666 4667 4668 4669 4670 4671 4672 4673 4674 4675 4676 4677 4678 4679 4680
}

static struct cftype debug_files[] =  {
	{
		.name = "taskcount",
		.read_u64 = debug_taskcount_read,
	},

	{
		.name = "current_css_set",
		.read_u64 = current_css_set_read,
	},

	{
		.name = "current_css_set_refcount",
		.read_u64 = current_css_set_refcount_read,
	},

4681 4682
	{
		.name = "current_css_set_cg_links",
4683
		.seq_show = current_css_set_cg_links_read,
4684 4685 4686 4687
	},

	{
		.name = "cgroup_css_links",
4688
		.seq_show = cgroup_css_links_read,
4689 4690
	},

4691 4692 4693 4694 4695
	{
		.name = "releasable",
		.read_u64 = releasable_read,
	},

4696 4697
	{ }	/* terminate */
};
4698

4699
struct cgroup_subsys debug_cgrp_subsys = {
4700 4701
	.css_alloc = debug_css_alloc,
	.css_free = debug_css_free,
4702
	.base_cftypes = debug_files,
4703 4704
};
#endif /* CONFIG_CGROUP_DEBUG */