file_table.c 12.4 KB
Newer Older
L
Linus Torvalds 已提交
1 2 3 4 5 6 7 8 9 10
/*
 *  linux/fs/file_table.c
 *
 *  Copyright (C) 1991, 1992  Linus Torvalds
 *  Copyright (C) 1997 David S. Miller (davem@caip.rutgers.edu)
 */

#include <linux/string.h>
#include <linux/slab.h>
#include <linux/file.h>
A
Al Viro 已提交
11
#include <linux/fdtable.h>
L
Linus Torvalds 已提交
12 13 14 15 16
#include <linux/init.h>
#include <linux/module.h>
#include <linux/fs.h>
#include <linux/security.h>
#include <linux/eventpoll.h>
17
#include <linux/rcupdate.h>
L
Linus Torvalds 已提交
18
#include <linux/mount.h>
19
#include <linux/capability.h>
L
Linus Torvalds 已提交
20
#include <linux/cdev.h>
R
Robert Love 已提交
21
#include <linux/fsnotify.h>
D
Dipankar Sarma 已提交
22
#include <linux/sysctl.h>
N
Nick Piggin 已提交
23
#include <linux/lglock.h>
D
Dipankar Sarma 已提交
24
#include <linux/percpu_counter.h>
N
Nick Piggin 已提交
25
#include <linux/percpu.h>
A
Al Viro 已提交
26 27
#include <linux/hardirq.h>
#include <linux/task_work.h>
28
#include <linux/ima.h>
D
Dipankar Sarma 已提交
29

A
Arun Sharma 已提交
30
#include <linux/atomic.h>
L
Linus Torvalds 已提交
31

32 33
#include "internal.h"

L
Linus Torvalds 已提交
34 35 36 37 38
/* sysctl tunables... */
struct files_stat_struct files_stat = {
	.max_files = NR_FILE
};

L
Lai Jiangshan 已提交
39
DEFINE_STATIC_LGLOCK(files_lglock);
L
Linus Torvalds 已提交
40

41 42 43
/* SLAB cache for file structures */
static struct kmem_cache *filp_cachep __read_mostly;

D
Dipankar Sarma 已提交
44
static struct percpu_counter nr_files __cacheline_aligned_in_smp;
L
Linus Torvalds 已提交
45

A
Al Viro 已提交
46
static void file_free_rcu(struct rcu_head *head)
L
Linus Torvalds 已提交
47
{
D
David Howells 已提交
48 49 50
	struct file *f = container_of(head, struct file, f_u.fu_rcuhead);

	put_cred(f->f_cred);
D
Dipankar Sarma 已提交
51
	kmem_cache_free(filp_cachep, f);
L
Linus Torvalds 已提交
52 53
}

D
Dipankar Sarma 已提交
54
static inline void file_free(struct file *f)
L
Linus Torvalds 已提交
55
{
D
Dipankar Sarma 已提交
56
	percpu_counter_dec(&nr_files);
57
	file_check_state(f);
D
Dipankar Sarma 已提交
58
	call_rcu(&f->f_u.fu_rcuhead, file_free_rcu);
L
Linus Torvalds 已提交
59 60
}

D
Dipankar Sarma 已提交
61 62 63
/*
 * Return the total number of open files in the system
 */
E
Eric Dumazet 已提交
64
static long get_nr_files(void)
L
Linus Torvalds 已提交
65
{
D
Dipankar Sarma 已提交
66
	return percpu_counter_read_positive(&nr_files);
L
Linus Torvalds 已提交
67 68
}

D
Dipankar Sarma 已提交
69 70 71
/*
 * Return the maximum number of open files in the system
 */
E
Eric Dumazet 已提交
72
unsigned long get_max_files(void)
73
{
D
Dipankar Sarma 已提交
74
	return files_stat.max_files;
75
}
D
Dipankar Sarma 已提交
76 77 78 79 80 81
EXPORT_SYMBOL_GPL(get_max_files);

/*
 * Handle nr_files sysctl
 */
#if defined(CONFIG_SYSCTL) && defined(CONFIG_PROC_FS)
82
int proc_nr_files(ctl_table *table, int write,
D
Dipankar Sarma 已提交
83 84 85
                     void __user *buffer, size_t *lenp, loff_t *ppos)
{
	files_stat.nr_files = get_nr_files();
E
Eric Dumazet 已提交
86
	return proc_doulongvec_minmax(table, write, buffer, lenp, ppos);
D
Dipankar Sarma 已提交
87 88
}
#else
89
int proc_nr_files(ctl_table *table, int write,
D
Dipankar Sarma 已提交
90 91 92 93 94
                     void __user *buffer, size_t *lenp, loff_t *ppos)
{
	return -ENOSYS;
}
#endif
95

L
Linus Torvalds 已提交
96
/* Find an unused file structure and return a pointer to it.
97 98
 * Returns an error pointer if some error happend e.g. we over file
 * structures limit, run out of memory or operation is not permitted.
D
Dave Hansen 已提交
99 100 101 102 103 104
 *
 * Be very careful using this.  You are responsible for
 * getting write access to any mount that you might assign
 * to this filp, if it is opened for write.  If this is not
 * done, you will imbalance int the mount's writer count
 * and a warning at __fput() time.
L
Linus Torvalds 已提交
105 106 107
 */
struct file *get_empty_filp(void)
{
108
	const struct cred *cred = current_cred();
E
Eric Dumazet 已提交
109
	static long old_max;
110 111
	struct file *f;
	int error;
L
Linus Torvalds 已提交
112 113 114 115

	/*
	 * Privileged users can go above max_files
	 */
D
Dipankar Sarma 已提交
116 117 118 119 120
	if (get_nr_files() >= files_stat.max_files && !capable(CAP_SYS_ADMIN)) {
		/*
		 * percpu_counters are inaccurate.  Do an expensive check before
		 * we go and fail.
		 */
P
Peter Zijlstra 已提交
121
		if (percpu_counter_sum_positive(&nr_files) >= files_stat.max_files)
D
Dipankar Sarma 已提交
122 123
			goto over;
	}
124

D
Denis Cheng 已提交
125
	f = kmem_cache_zalloc(filp_cachep, GFP_KERNEL);
126 127
	if (unlikely(!f))
		return ERR_PTR(-ENOMEM);
128

D
Dipankar Sarma 已提交
129
	percpu_counter_inc(&nr_files);
130
	f->f_cred = get_cred(cred);
131 132 133 134 135
	error = security_file_alloc(f);
	if (unlikely(error)) {
		file_free(f);
		return ERR_PTR(error);
	}
L
Linus Torvalds 已提交
136

137
	INIT_LIST_HEAD(&f->f_u.fu_list);
A
Al Viro 已提交
138
	atomic_long_set(&f->f_count, 1);
139
	rwlock_init(&f->f_owner.lock);
J
Jonathan Corbet 已提交
140
	spin_lock_init(&f->f_lock);
141
	eventpoll_init_file(f);
142 143 144 145
	/* f->f_version: 0 */
	return f;

over:
L
Linus Torvalds 已提交
146
	/* Ran out of filps - report that */
D
Dipankar Sarma 已提交
147
	if (get_nr_files() > old_max) {
E
Eric Dumazet 已提交
148
		pr_info("VFS: file-max limit %lu reached\n", get_max_files());
D
Dipankar Sarma 已提交
149
		old_max = get_nr_files();
L
Linus Torvalds 已提交
150
	}
151
	return ERR_PTR(-ENFILE);
L
Linus Torvalds 已提交
152 153
}

154 155 156 157 158 159 160 161 162 163 164 165 166 167 168
/**
 * alloc_file - allocate and initialize a 'struct file'
 * @mnt: the vfsmount on which the file will reside
 * @dentry: the dentry representing the new file
 * @mode: the mode with which the new file will be opened
 * @fop: the 'struct file_operations' for the new file
 *
 * Use this instead of get_empty_filp() to get a new
 * 'struct file'.  Do so because of the same initialization
 * pitfalls reasons listed for init_file().  This is a
 * preferred interface to using init_file().
 *
 * If all the callers of init_file() are eliminated, its
 * code should be moved into this function.
 */
169 170
struct file *alloc_file(struct path *path, fmode_t mode,
		const struct file_operations *fop)
171 172 173 174
{
	struct file *file;

	file = get_empty_filp();
175
	if (IS_ERR(file))
176
		return file;
177

178
	file->f_path = *path;
179
	file->f_inode = path->dentry->d_inode;
180
	file->f_mapping = path->dentry->d_inode->i_mapping;
181 182
	file->f_mode = mode;
	file->f_op = fop;
183 184 185 186 187 188 189

	/*
	 * These mounts don't really matter in practice
	 * for r/o bind mounts.  They aren't userspace-
	 * visible.  We do this for consistency, and so
	 * that we can do debugging checks at __fput()
	 */
190
	if ((mode & FMODE_WRITE) && !special_file(path->dentry->d_inode->i_mode)) {
191
		file_take_write(file);
192
		WARN_ON(mnt_clone_write(path->mnt));
193
	}
194 195
	if ((mode & (FMODE_READ | FMODE_WRITE)) == FMODE_READ)
		i_readcount_inc(path->dentry->d_inode);
A
Al Viro 已提交
196
	return file;
197
}
R
Roland Dreier 已提交
198
EXPORT_SYMBOL(alloc_file);
199

200 201 202 203 204 205 206 207
/**
 * drop_file_write_access - give up ability to write to a file
 * @file: the file to which we will stop writing
 *
 * This is a central place which will give up the ability
 * to write to @file, along with access to write through
 * its vfsmount.
 */
208
static void drop_file_write_access(struct file *file)
209
{
210
	struct vfsmount *mnt = file->f_path.mnt;
211 212 213 214
	struct dentry *dentry = file->f_path.dentry;
	struct inode *inode = dentry->d_inode;

	put_write_access(inode);
215 216 217 218 219

	if (special_file(inode->i_mode))
		return;
	if (file_check_writeable(file) != 0)
		return;
220
	__mnt_drop_write(mnt);
221
	file_release_write(file);
222 223
}

224
/* the real guts of fput() - releasing the last reference to file
L
Linus Torvalds 已提交
225
 */
226
static void __fput(struct file *file)
L
Linus Torvalds 已提交
227
{
228 229
	struct dentry *dentry = file->f_path.dentry;
	struct vfsmount *mnt = file->f_path.mnt;
L
Linus Torvalds 已提交
230 231 232
	struct inode *inode = dentry->d_inode;

	might_sleep();
R
Robert Love 已提交
233 234

	fsnotify_close(file);
L
Linus Torvalds 已提交
235 236 237 238 239 240 241
	/*
	 * The function eventpoll_release() should be the first called
	 * in the file cleanup chain.
	 */
	eventpoll_release(file);
	locks_remove_flock(file);

A
Al Viro 已提交
242 243 244 245
	if (unlikely(file->f_flags & FASYNC)) {
		if (file->f_op && file->f_op->fasync)
			file->f_op->fasync(-1, file, 0);
	}
246
	ima_file_free(file);
L
Linus Torvalds 已提交
247 248 249
	if (file->f_op && file->f_op->release)
		file->f_op->release(inode, file);
	security_file_free(file);
250 251
	if (unlikely(S_ISCHR(inode->i_mode) && inode->i_cdev != NULL &&
		     !(file->f_mode & FMODE_PATH))) {
L
Linus Torvalds 已提交
252
		cdev_put(inode->i_cdev);
253
	}
L
Linus Torvalds 已提交
254
	fops_put(file->f_op);
255
	put_pid(file->f_owner.pid);
256 257
	if ((file->f_mode & (FMODE_READ | FMODE_WRITE)) == FMODE_READ)
		i_readcount_dec(inode);
258 259
	if (file->f_mode & FMODE_WRITE)
		drop_file_write_access(file);
260 261
	file->f_path.dentry = NULL;
	file->f_path.mnt = NULL;
262
	file->f_inode = NULL;
L
Linus Torvalds 已提交
263 264 265 266 267
	file_free(file);
	dput(dentry);
	mntput(mnt);
}

A
Al Viro 已提交
268 269 270 271 272 273 274 275 276 277 278 279 280 281 282 283 284 285 286 287 288 289 290 291 292 293 294 295 296 297 298 299 300 301 302 303 304
static DEFINE_SPINLOCK(delayed_fput_lock);
static LIST_HEAD(delayed_fput_list);
static void delayed_fput(struct work_struct *unused)
{
	LIST_HEAD(head);
	spin_lock_irq(&delayed_fput_lock);
	list_splice_init(&delayed_fput_list, &head);
	spin_unlock_irq(&delayed_fput_lock);
	while (!list_empty(&head)) {
		struct file *f = list_first_entry(&head, struct file, f_u.fu_list);
		list_del_init(&f->f_u.fu_list);
		__fput(f);
	}
}

static void ____fput(struct callback_head *work)
{
	__fput(container_of(work, struct file, f_u.fu_rcuhead));
}

/*
 * If kernel thread really needs to have the final fput() it has done
 * to complete, call this.  The only user right now is the boot - we
 * *do* need to make sure our writes to binaries on initramfs has
 * not left us with opened struct file waiting for __fput() - execve()
 * won't work without that.  Please, don't add more callers without
 * very good reasons; in particular, never call that with locks
 * held and never call that from a thread that might need to do
 * some work on any kind of umount.
 */
void flush_delayed_fput(void)
{
	delayed_fput(NULL);
}

static DECLARE_WORK(delayed_fput_work, delayed_fput);

305 306
void fput(struct file *file)
{
A
Al Viro 已提交
307 308
	if (atomic_long_dec_and_test(&file->f_count)) {
		struct task_struct *task = current;
309 310
		unsigned long flags;

A
Al Viro 已提交
311
		file_sb_list_del(file);
312 313 314 315
		if (likely(!in_interrupt() && !(task->flags & PF_KTHREAD))) {
			init_task_work(&file->f_u.fu_rcuhead, ____fput);
			if (!task_work_add(task, &file->f_u.fu_rcuhead, true))
				return;
A
Al Viro 已提交
316
		}
317 318 319 320
		spin_lock_irqsave(&delayed_fput_lock, flags);
		list_add(&file->f_u.fu_list, &delayed_fput_list);
		schedule_work(&delayed_fput_work);
		spin_unlock_irqrestore(&delayed_fput_lock, flags);
A
Al Viro 已提交
321 322 323 324 325 326 327 328 329 330 331 332 333 334 335 336 337
	}
}

/*
 * synchronous analog of fput(); for kernel threads that might be needed
 * in some umount() (and thus can't use flush_delayed_fput() without
 * risking deadlocks), need to wait for completion of __fput() and know
 * for this specific struct file it won't involve anything that would
 * need them.  Use only if you really need it - at the very least,
 * don't blindly convert fput() by kernel thread to that.
 */
void __fput_sync(struct file *file)
{
	if (atomic_long_dec_and_test(&file->f_count)) {
		struct task_struct *task = current;
		file_sb_list_del(file);
		BUG_ON(!(task->flags & PF_KTHREAD));
338
		__fput(file);
A
Al Viro 已提交
339
	}
340 341 342 343
}

EXPORT_SYMBOL(fput);

L
Linus Torvalds 已提交
344 345
void put_filp(struct file *file)
{
A
Al Viro 已提交
346
	if (atomic_long_dec_and_test(&file->f_count)) {
L
Linus Torvalds 已提交
347
		security_file_free(file);
N
Nick Piggin 已提交
348
		file_sb_list_del(file);
L
Linus Torvalds 已提交
349 350 351 352
		file_free(file);
	}
}

N
Nick Piggin 已提交
353 354 355 356 357 358 359 360 361 362 363 364 365 366 367 368 369 370 371 372 373 374 375 376 377 378 379 380 381 382 383 384
static inline int file_list_cpu(struct file *file)
{
#ifdef CONFIG_SMP
	return file->f_sb_list_cpu;
#else
	return smp_processor_id();
#endif
}

/* helper for file_sb_list_add to reduce ifdefs */
static inline void __file_sb_list_add(struct file *file, struct super_block *sb)
{
	struct list_head *list;
#ifdef CONFIG_SMP
	int cpu;
	cpu = smp_processor_id();
	file->f_sb_list_cpu = cpu;
	list = per_cpu_ptr(sb->s_files, cpu);
#else
	list = &sb->s_files;
#endif
	list_add(&file->f_u.fu_list, list);
}

/**
 * file_sb_list_add - add a file to the sb's file list
 * @file: file to add
 * @sb: sb to add it to
 *
 * Use this function to associate a file with the superblock of the inode it
 * refers to.
 */
N
Nick Piggin 已提交
385
void file_sb_list_add(struct file *file, struct super_block *sb)
L
Linus Torvalds 已提交
386
{
A
Andi Kleen 已提交
387
	lg_local_lock(&files_lglock);
N
Nick Piggin 已提交
388
	__file_sb_list_add(file, sb);
A
Andi Kleen 已提交
389
	lg_local_unlock(&files_lglock);
L
Linus Torvalds 已提交
390 391
}

N
Nick Piggin 已提交
392 393 394 395 396 397 398
/**
 * file_sb_list_del - remove a file from the sb's file list
 * @file: file to remove
 * @sb: sb to remove it from
 *
 * Use this function to remove a file from its superblock.
 */
N
Nick Piggin 已提交
399
void file_sb_list_del(struct file *file)
L
Linus Torvalds 已提交
400
{
E
Eric Dumazet 已提交
401
	if (!list_empty(&file->f_u.fu_list)) {
A
Andi Kleen 已提交
402
		lg_local_lock_cpu(&files_lglock, file_list_cpu(file));
E
Eric Dumazet 已提交
403
		list_del_init(&file->f_u.fu_list);
A
Andi Kleen 已提交
404
		lg_local_unlock_cpu(&files_lglock, file_list_cpu(file));
L
Linus Torvalds 已提交
405 406 407
	}
}

N
Nick Piggin 已提交
408 409 410 411 412 413 414 415 416 417 418 419 420 421 422 423 424 425 426 427 428 429 430 431 432 433 434 435 436 437 438
#ifdef CONFIG_SMP

/*
 * These macros iterate all files on all CPUs for a given superblock.
 * files_lglock must be held globally.
 */
#define do_file_list_for_each_entry(__sb, __file)		\
{								\
	int i;							\
	for_each_possible_cpu(i) {				\
		struct list_head *list;				\
		list = per_cpu_ptr((__sb)->s_files, i);		\
		list_for_each_entry((__file), list, f_u.fu_list)

#define while_file_list_for_each_entry				\
	}							\
}

#else

#define do_file_list_for_each_entry(__sb, __file)		\
{								\
	struct list_head *list;					\
	list = &(sb)->s_files;					\
	list_for_each_entry((__file), list, f_u.fu_list)

#define while_file_list_for_each_entry				\
}

#endif

439 440 441 442 443 444 445 446 447 448 449
/**
 *	mark_files_ro - mark all files read-only
 *	@sb: superblock in question
 *
 *	All files are marked read-only.  We don't care about pending
 *	delete files so this should be used in 'force' mode only.
 */
void mark_files_ro(struct super_block *sb)
{
	struct file *f;

A
Andi Kleen 已提交
450
	lg_global_lock(&files_lglock);
N
Nick Piggin 已提交
451
	do_file_list_for_each_entry(sb, f) {
A
Al Viro 已提交
452
		if (!S_ISREG(file_inode(f)->i_mode))
453 454 455 456 457
		       continue;
		if (!file_count(f))
			continue;
		if (!(f->f_mode & FMODE_WRITE))
			continue;
458
		spin_lock(&f->f_lock);
459
		f->f_mode &= ~FMODE_WRITE;
460
		spin_unlock(&f->f_lock);
461 462
		if (file_check_writeable(f) != 0)
			continue;
463
		__mnt_drop_write(f->f_path.mnt);
464
		file_release_write(f);
N
Nick Piggin 已提交
465
	} while_file_list_for_each_entry;
A
Andi Kleen 已提交
466
	lg_global_unlock(&files_lglock);
467 468
}

L
Linus Torvalds 已提交
469 470
void __init files_init(unsigned long mempages)
{ 
E
Eric Dumazet 已提交
471
	unsigned long n;
472 473 474 475 476 477

	filp_cachep = kmem_cache_create("filp", sizeof(struct file), 0,
			SLAB_HWCACHE_ALIGN | SLAB_PANIC, NULL);

	/*
	 * One file with associated inode and dcache is very roughly 1K.
L
Linus Torvalds 已提交
478 479 480 481
	 * Per default don't use more than 10% of our memory for files. 
	 */ 

	n = (mempages * (PAGE_SIZE / 1024)) / 10;
E
Eric Dumazet 已提交
482
	files_stat.max_files = max_t(unsigned long, n, NR_FILE);
483
	files_defer_init();
A
Andi Kleen 已提交
484
	lg_lock_init(&files_lglock, "files_lglock");
485
	percpu_counter_init(&nr_files, 0);
L
Linus Torvalds 已提交
486
}