file_table.c 12.6 KB
Newer Older
L
Linus Torvalds 已提交
1 2 3 4 5 6 7 8 9 10
/*
 *  linux/fs/file_table.c
 *
 *  Copyright (C) 1991, 1992  Linus Torvalds
 *  Copyright (C) 1997 David S. Miller (davem@caip.rutgers.edu)
 */

#include <linux/string.h>
#include <linux/slab.h>
#include <linux/file.h>
A
Al Viro 已提交
11
#include <linux/fdtable.h>
L
Linus Torvalds 已提交
12 13 14 15 16
#include <linux/init.h>
#include <linux/module.h>
#include <linux/fs.h>
#include <linux/security.h>
#include <linux/eventpoll.h>
17
#include <linux/rcupdate.h>
L
Linus Torvalds 已提交
18
#include <linux/mount.h>
19
#include <linux/capability.h>
L
Linus Torvalds 已提交
20
#include <linux/cdev.h>
R
Robert Love 已提交
21
#include <linux/fsnotify.h>
D
Dipankar Sarma 已提交
22
#include <linux/sysctl.h>
N
Nick Piggin 已提交
23
#include <linux/lglock.h>
D
Dipankar Sarma 已提交
24
#include <linux/percpu_counter.h>
N
Nick Piggin 已提交
25
#include <linux/percpu.h>
26
#include <linux/ima.h>
D
Dipankar Sarma 已提交
27

A
Arun Sharma 已提交
28
#include <linux/atomic.h>
L
Linus Torvalds 已提交
29

30 31
#include "internal.h"

L
Linus Torvalds 已提交
32 33 34 35 36
/* sysctl tunables... */
struct files_stat_struct files_stat = {
	.max_files = NR_FILE
};

N
Nick Piggin 已提交
37 38
DECLARE_LGLOCK(files_lglock);
DEFINE_LGLOCK(files_lglock);
L
Linus Torvalds 已提交
39

40 41 42
/* SLAB cache for file structures */
static struct kmem_cache *filp_cachep __read_mostly;

D
Dipankar Sarma 已提交
43
static struct percpu_counter nr_files __cacheline_aligned_in_smp;
L
Linus Torvalds 已提交
44

D
Dipankar Sarma 已提交
45
static inline void file_free_rcu(struct rcu_head *head)
L
Linus Torvalds 已提交
46
{
D
David Howells 已提交
47 48 49
	struct file *f = container_of(head, struct file, f_u.fu_rcuhead);

	put_cred(f->f_cred);
D
Dipankar Sarma 已提交
50
	kmem_cache_free(filp_cachep, f);
L
Linus Torvalds 已提交
51 52
}

D
Dipankar Sarma 已提交
53
static inline void file_free(struct file *f)
L
Linus Torvalds 已提交
54
{
D
Dipankar Sarma 已提交
55
	percpu_counter_dec(&nr_files);
56
	file_check_state(f);
D
Dipankar Sarma 已提交
57
	call_rcu(&f->f_u.fu_rcuhead, file_free_rcu);
L
Linus Torvalds 已提交
58 59
}

D
Dipankar Sarma 已提交
60 61 62
/*
 * Return the total number of open files in the system
 */
E
Eric Dumazet 已提交
63
static long get_nr_files(void)
L
Linus Torvalds 已提交
64
{
D
Dipankar Sarma 已提交
65
	return percpu_counter_read_positive(&nr_files);
L
Linus Torvalds 已提交
66 67
}

D
Dipankar Sarma 已提交
68 69 70
/*
 * Return the maximum number of open files in the system
 */
E
Eric Dumazet 已提交
71
unsigned long get_max_files(void)
72
{
D
Dipankar Sarma 已提交
73
	return files_stat.max_files;
74
}
D
Dipankar Sarma 已提交
75 76 77 78 79 80
EXPORT_SYMBOL_GPL(get_max_files);

/*
 * Handle nr_files sysctl
 */
#if defined(CONFIG_SYSCTL) && defined(CONFIG_PROC_FS)
81
int proc_nr_files(ctl_table *table, int write,
D
Dipankar Sarma 已提交
82 83 84
                     void __user *buffer, size_t *lenp, loff_t *ppos)
{
	files_stat.nr_files = get_nr_files();
E
Eric Dumazet 已提交
85
	return proc_doulongvec_minmax(table, write, buffer, lenp, ppos);
D
Dipankar Sarma 已提交
86 87
}
#else
88
int proc_nr_files(ctl_table *table, int write,
D
Dipankar Sarma 已提交
89 90 91 92 93
                     void __user *buffer, size_t *lenp, loff_t *ppos)
{
	return -ENOSYS;
}
#endif
94

L
Linus Torvalds 已提交
95 96 97
/* Find an unused file structure and return a pointer to it.
 * Returns NULL, if there are no more free file structures or
 * we run out of memory.
D
Dave Hansen 已提交
98 99 100 101 102 103
 *
 * Be very careful using this.  You are responsible for
 * getting write access to any mount that you might assign
 * to this filp, if it is opened for write.  If this is not
 * done, you will imbalance int the mount's writer count
 * and a warning at __fput() time.
L
Linus Torvalds 已提交
104 105 106
 */
struct file *get_empty_filp(void)
{
107
	const struct cred *cred = current_cred();
E
Eric Dumazet 已提交
108
	static long old_max;
L
Linus Torvalds 已提交
109 110 111 112 113
	struct file * f;

	/*
	 * Privileged users can go above max_files
	 */
D
Dipankar Sarma 已提交
114 115 116 117 118
	if (get_nr_files() >= files_stat.max_files && !capable(CAP_SYS_ADMIN)) {
		/*
		 * percpu_counters are inaccurate.  Do an expensive check before
		 * we go and fail.
		 */
P
Peter Zijlstra 已提交
119
		if (percpu_counter_sum_positive(&nr_files) >= files_stat.max_files)
D
Dipankar Sarma 已提交
120 121
			goto over;
	}
122

D
Denis Cheng 已提交
123
	f = kmem_cache_zalloc(filp_cachep, GFP_KERNEL);
124 125 126
	if (f == NULL)
		goto fail;

D
Dipankar Sarma 已提交
127
	percpu_counter_inc(&nr_files);
128
	f->f_cred = get_cred(cred);
129 130
	if (security_file_alloc(f))
		goto fail_sec;
L
Linus Torvalds 已提交
131

132
	INIT_LIST_HEAD(&f->f_u.fu_list);
A
Al Viro 已提交
133
	atomic_long_set(&f->f_count, 1);
134
	rwlock_init(&f->f_owner.lock);
J
Jonathan Corbet 已提交
135
	spin_lock_init(&f->f_lock);
136
	eventpoll_init_file(f);
137 138 139 140
	/* f->f_version: 0 */
	return f;

over:
L
Linus Torvalds 已提交
141
	/* Ran out of filps - report that */
D
Dipankar Sarma 已提交
142
	if (get_nr_files() > old_max) {
E
Eric Dumazet 已提交
143
		pr_info("VFS: file-max limit %lu reached\n", get_max_files());
D
Dipankar Sarma 已提交
144
		old_max = get_nr_files();
L
Linus Torvalds 已提交
145
	}
146 147 148 149
	goto fail;

fail_sec:
	file_free(f);
L
Linus Torvalds 已提交
150 151 152 153
fail:
	return NULL;
}

154 155 156 157 158 159 160 161 162 163 164 165 166 167 168
/**
 * alloc_file - allocate and initialize a 'struct file'
 * @mnt: the vfsmount on which the file will reside
 * @dentry: the dentry representing the new file
 * @mode: the mode with which the new file will be opened
 * @fop: the 'struct file_operations' for the new file
 *
 * Use this instead of get_empty_filp() to get a new
 * 'struct file'.  Do so because of the same initialization
 * pitfalls reasons listed for init_file().  This is a
 * preferred interface to using init_file().
 *
 * If all the callers of init_file() are eliminated, its
 * code should be moved into this function.
 */
169 170
struct file *alloc_file(struct path *path, fmode_t mode,
		const struct file_operations *fop)
171 172 173 174 175 176 177
{
	struct file *file;

	file = get_empty_filp();
	if (!file)
		return NULL;

178 179
	file->f_path = *path;
	file->f_mapping = path->dentry->d_inode->i_mapping;
180 181
	file->f_mode = mode;
	file->f_op = fop;
182 183 184 185 186 187 188

	/*
	 * These mounts don't really matter in practice
	 * for r/o bind mounts.  They aren't userspace-
	 * visible.  We do this for consistency, and so
	 * that we can do debugging checks at __fput()
	 */
189
	if ((mode & FMODE_WRITE) && !special_file(path->dentry->d_inode->i_mode)) {
190
		file_take_write(file);
191
		WARN_ON(mnt_clone_write(path->mnt));
192
	}
193 194
	if ((mode & (FMODE_READ | FMODE_WRITE)) == FMODE_READ)
		i_readcount_inc(path->dentry->d_inode);
A
Al Viro 已提交
195
	return file;
196
}
R
Roland Dreier 已提交
197
EXPORT_SYMBOL(alloc_file);
198

199 200 201 202 203 204 205 206
/**
 * drop_file_write_access - give up ability to write to a file
 * @file: the file to which we will stop writing
 *
 * This is a central place which will give up the ability
 * to write to @file, along with access to write through
 * its vfsmount.
 */
207
static void drop_file_write_access(struct file *file)
208
{
209
	struct vfsmount *mnt = file->f_path.mnt;
210 211 212 213
	struct dentry *dentry = file->f_path.dentry;
	struct inode *inode = dentry->d_inode;

	put_write_access(inode);
214 215 216 217 218 219 220

	if (special_file(inode->i_mode))
		return;
	if (file_check_writeable(file) != 0)
		return;
	mnt_drop_write(mnt);
	file_release_write(file);
221 222
}

223
/* the real guts of fput() - releasing the last reference to file
L
Linus Torvalds 已提交
224
 */
225
static void __fput(struct file *file)
L
Linus Torvalds 已提交
226
{
227 228
	struct dentry *dentry = file->f_path.dentry;
	struct vfsmount *mnt = file->f_path.mnt;
L
Linus Torvalds 已提交
229 230 231
	struct inode *inode = dentry->d_inode;

	might_sleep();
R
Robert Love 已提交
232 233

	fsnotify_close(file);
L
Linus Torvalds 已提交
234 235 236 237 238 239 240
	/*
	 * The function eventpoll_release() should be the first called
	 * in the file cleanup chain.
	 */
	eventpoll_release(file);
	locks_remove_flock(file);

A
Al Viro 已提交
241 242 243 244
	if (unlikely(file->f_flags & FASYNC)) {
		if (file->f_op && file->f_op->fasync)
			file->f_op->fasync(-1, file, 0);
	}
L
Linus Torvalds 已提交
245 246 247
	if (file->f_op && file->f_op->release)
		file->f_op->release(inode, file);
	security_file_free(file);
A
Al Viro 已提交
248
	ima_file_free(file);
249 250
	if (unlikely(S_ISCHR(inode->i_mode) && inode->i_cdev != NULL &&
		     !(file->f_mode & FMODE_PATH))) {
L
Linus Torvalds 已提交
251
		cdev_put(inode->i_cdev);
252
	}
L
Linus Torvalds 已提交
253
	fops_put(file->f_op);
254
	put_pid(file->f_owner.pid);
N
Nick Piggin 已提交
255
	file_sb_list_del(file);
256 257
	if ((file->f_mode & (FMODE_READ | FMODE_WRITE)) == FMODE_READ)
		i_readcount_dec(inode);
258 259
	if (file->f_mode & FMODE_WRITE)
		drop_file_write_access(file);
260 261
	file->f_path.dentry = NULL;
	file->f_path.mnt = NULL;
L
Linus Torvalds 已提交
262 263 264 265 266
	file_free(file);
	dput(dentry);
	mntput(mnt);
}

267 268 269 270 271 272 273 274
void fput(struct file *file)
{
	if (atomic_long_dec_and_test(&file->f_count))
		__fput(file);
}

EXPORT_SYMBOL(fput);

275
struct file *fget(unsigned int fd)
L
Linus Torvalds 已提交
276 277 278 279
{
	struct file *file;
	struct files_struct *files = current->files;

280
	rcu_read_lock();
L
Linus Torvalds 已提交
281
	file = fcheck_files(files, fd);
282
	if (file) {
283 284 285 286
		/* File object ref couldn't be taken */
		if (file->f_mode & FMODE_PATH ||
		    !atomic_long_inc_not_zero(&file->f_count))
			file = NULL;
287 288 289
	}
	rcu_read_unlock();

L
Linus Torvalds 已提交
290 291 292 293 294
	return file;
}

EXPORT_SYMBOL(fget);

295 296 297 298 299 300 301 302 303 304 305 306 307 308 309 310 311
struct file *fget_raw(unsigned int fd)
{
	struct file *file;
	struct files_struct *files = current->files;

	rcu_read_lock();
	file = fcheck_files(files, fd);
	if (file) {
		/* File object ref couldn't be taken */
		if (!atomic_long_inc_not_zero(&file->f_count))
			file = NULL;
	}
	rcu_read_unlock();

	return file;
}

312 313
EXPORT_SYMBOL(fget_raw);

L
Linus Torvalds 已提交
314
/*
315 316 317 318 319 320 321 322 323 324 325 326 327 328
 * Lightweight file lookup - no refcnt increment if fd table isn't shared.
 *
 * You can use this instead of fget if you satisfy all of the following
 * conditions:
 * 1) You must call fput_light before exiting the syscall and returning control
 *    to userspace (i.e. you cannot remember the returned struct file * after
 *    returning to userspace).
 * 2) You must not call filp_close on the returned struct file * in between
 *    calls to fget_light and fput_light.
 * 3) You must not clone the current task in between the calls to fget_light
 *    and fput_light.
 *
 * The fput_needed flag returned by fget_light should be passed to the
 * corresponding fput_light.
L
Linus Torvalds 已提交
329
 */
330
struct file *fget_light(unsigned int fd, int *fput_needed)
L
Linus Torvalds 已提交
331 332 333 334
{
	struct file *file;
	struct files_struct *files = current->files;

335 336 337 338 339 340 341 342 343 344 345 346 347 348 349 350 351 352 353 354 355 356 357 358 359 360 361
	*fput_needed = 0;
	if (atomic_read(&files->count) == 1) {
		file = fcheck_files(files, fd);
		if (file && (file->f_mode & FMODE_PATH))
			file = NULL;
	} else {
		rcu_read_lock();
		file = fcheck_files(files, fd);
		if (file) {
			if (!(file->f_mode & FMODE_PATH) &&
			    atomic_long_inc_not_zero(&file->f_count))
				*fput_needed = 1;
			else
				/* Didn't get the reference, someone's freed */
				file = NULL;
		}
		rcu_read_unlock();
	}

	return file;
}

struct file *fget_raw_light(unsigned int fd, int *fput_needed)
{
	struct file *file;
	struct files_struct *files = current->files;

L
Linus Torvalds 已提交
362
	*fput_needed = 0;
363
	if (atomic_read(&files->count) == 1) {
L
Linus Torvalds 已提交
364 365
		file = fcheck_files(files, fd);
	} else {
366
		rcu_read_lock();
L
Linus Torvalds 已提交
367 368
		file = fcheck_files(files, fd);
		if (file) {
A
Al Viro 已提交
369
			if (atomic_long_inc_not_zero(&file->f_count))
370 371 372 373
				*fput_needed = 1;
			else
				/* Didn't get the reference, someone's freed */
				file = NULL;
L
Linus Torvalds 已提交
374
		}
375
		rcu_read_unlock();
L
Linus Torvalds 已提交
376
	}
377

L
Linus Torvalds 已提交
378 379 380 381 382
	return file;
}

void put_filp(struct file *file)
{
A
Al Viro 已提交
383
	if (atomic_long_dec_and_test(&file->f_count)) {
L
Linus Torvalds 已提交
384
		security_file_free(file);
N
Nick Piggin 已提交
385
		file_sb_list_del(file);
L
Linus Torvalds 已提交
386 387 388 389
		file_free(file);
	}
}

N
Nick Piggin 已提交
390 391 392 393 394 395 396 397 398 399 400 401 402 403 404 405 406 407 408 409 410 411 412 413 414 415 416 417 418 419 420 421
static inline int file_list_cpu(struct file *file)
{
#ifdef CONFIG_SMP
	return file->f_sb_list_cpu;
#else
	return smp_processor_id();
#endif
}

/* helper for file_sb_list_add to reduce ifdefs */
static inline void __file_sb_list_add(struct file *file, struct super_block *sb)
{
	struct list_head *list;
#ifdef CONFIG_SMP
	int cpu;
	cpu = smp_processor_id();
	file->f_sb_list_cpu = cpu;
	list = per_cpu_ptr(sb->s_files, cpu);
#else
	list = &sb->s_files;
#endif
	list_add(&file->f_u.fu_list, list);
}

/**
 * file_sb_list_add - add a file to the sb's file list
 * @file: file to add
 * @sb: sb to add it to
 *
 * Use this function to associate a file with the superblock of the inode it
 * refers to.
 */
N
Nick Piggin 已提交
422
void file_sb_list_add(struct file *file, struct super_block *sb)
L
Linus Torvalds 已提交
423
{
N
Nick Piggin 已提交
424 425 426
	lg_local_lock(files_lglock);
	__file_sb_list_add(file, sb);
	lg_local_unlock(files_lglock);
L
Linus Torvalds 已提交
427 428
}

N
Nick Piggin 已提交
429 430 431 432 433 434 435
/**
 * file_sb_list_del - remove a file from the sb's file list
 * @file: file to remove
 * @sb: sb to remove it from
 *
 * Use this function to remove a file from its superblock.
 */
N
Nick Piggin 已提交
436
void file_sb_list_del(struct file *file)
L
Linus Torvalds 已提交
437
{
E
Eric Dumazet 已提交
438
	if (!list_empty(&file->f_u.fu_list)) {
N
Nick Piggin 已提交
439
		lg_local_lock_cpu(files_lglock, file_list_cpu(file));
E
Eric Dumazet 已提交
440
		list_del_init(&file->f_u.fu_list);
N
Nick Piggin 已提交
441
		lg_local_unlock_cpu(files_lglock, file_list_cpu(file));
L
Linus Torvalds 已提交
442 443 444
	}
}

N
Nick Piggin 已提交
445 446 447 448 449 450 451 452 453 454 455 456 457 458 459 460 461 462 463 464 465 466 467 468 469 470 471 472 473 474 475
#ifdef CONFIG_SMP

/*
 * These macros iterate all files on all CPUs for a given superblock.
 * files_lglock must be held globally.
 */
#define do_file_list_for_each_entry(__sb, __file)		\
{								\
	int i;							\
	for_each_possible_cpu(i) {				\
		struct list_head *list;				\
		list = per_cpu_ptr((__sb)->s_files, i);		\
		list_for_each_entry((__file), list, f_u.fu_list)

#define while_file_list_for_each_entry				\
	}							\
}

#else

#define do_file_list_for_each_entry(__sb, __file)		\
{								\
	struct list_head *list;					\
	list = &(sb)->s_files;					\
	list_for_each_entry((__file), list, f_u.fu_list)

#define while_file_list_for_each_entry				\
}

#endif

476 477 478 479 480 481 482 483 484 485 486 487
/**
 *	mark_files_ro - mark all files read-only
 *	@sb: superblock in question
 *
 *	All files are marked read-only.  We don't care about pending
 *	delete files so this should be used in 'force' mode only.
 */
void mark_files_ro(struct super_block *sb)
{
	struct file *f;

retry:
N
Nick Piggin 已提交
488 489
	lg_global_lock(files_lglock);
	do_file_list_for_each_entry(sb, f) {
490 491 492 493 494 495 496
		struct vfsmount *mnt;
		if (!S_ISREG(f->f_path.dentry->d_inode->i_mode))
		       continue;
		if (!file_count(f))
			continue;
		if (!(f->f_mode & FMODE_WRITE))
			continue;
497
		spin_lock(&f->f_lock);
498
		f->f_mode &= ~FMODE_WRITE;
499
		spin_unlock(&f->f_lock);
500 501 502 503
		if (file_check_writeable(f) != 0)
			continue;
		file_release_write(f);
		mnt = mntget(f->f_path.mnt);
N
Nick Piggin 已提交
504
		/* This can sleep, so we can't hold the spinlock. */
N
Nick Piggin 已提交
505
		lg_global_unlock(files_lglock);
506 507 508
		mnt_drop_write(mnt);
		mntput(mnt);
		goto retry;
N
Nick Piggin 已提交
509 510
	} while_file_list_for_each_entry;
	lg_global_unlock(files_lglock);
511 512
}

L
Linus Torvalds 已提交
513 514
void __init files_init(unsigned long mempages)
{ 
E
Eric Dumazet 已提交
515
	unsigned long n;
516 517 518 519 520 521

	filp_cachep = kmem_cache_create("filp", sizeof(struct file), 0,
			SLAB_HWCACHE_ALIGN | SLAB_PANIC, NULL);

	/*
	 * One file with associated inode and dcache is very roughly 1K.
L
Linus Torvalds 已提交
522 523 524 525
	 * Per default don't use more than 10% of our memory for files. 
	 */ 

	n = (mempages * (PAGE_SIZE / 1024)) / 10;
E
Eric Dumazet 已提交
526
	files_stat.max_files = max_t(unsigned long, n, NR_FILE);
527
	files_defer_init();
N
Nick Piggin 已提交
528
	lg_lock_init(files_lglock);
529
	percpu_counter_init(&nr_files, 0);
L
Linus Torvalds 已提交
530
}