summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Ok. I didn't make 2.4.0 in 2000. Tough. I tried, but we had some
[davej-history.git] / fs / exec.c
blob36f3a8c6ec7d26f18b5510d8de3ef9a64bc72c97
1 /*
2 * linux/fs/exec.c
3 *
4 * Copyright (C) 1991, 1992 Linus Torvalds
5 */
6
7 /*
8 * #!-checking implemented by tytso.
9 */
10 /*
11 * Demand-loading implemented 01.12.91 - no need to read anything but
12 * the header into memory. The inode of the executable is put into
13 * "current->executable", and page faults do the actual loading. Clean.
14 *
15 * Once more I can proudly say that linux stood up to being changed: it
16 * was less than 2 hours work to get demand-loading completely implemented.
17 *
18 * Demand loading changed July 1993 by Eric Youngdale. Use mmap instead,
19 * current->executable is only used by the procfs. This allows a dispatch
20 * table to check for several different types of binary formats. We keep
21 * trying until we recognize the file or we run out of supported binary
22 * formats.
23 */
24
25 #include <linux/config.h>
26 #include <linux/slab.h>
27 #include <linux/file.h>
28 #include <linux/mman.h>
29 #include <linux/a.out.h>
30 #include <linux/stat.h>
31 #include <linux/fcntl.h>
32 #include <linux/smp_lock.h>
33 #include <linux/init.h>
34 #include <linux/pagemap.h>
35 #include <linux/highmem.h>
36 #include <linux/spinlock.h>
37 #define __NO_VERSION__
38 #include <linux/module.h>
39
40 #include <asm/uaccess.h>
41 #include <asm/pgalloc.h>
42 #include <asm/mmu_context.h>
43
44 #ifdef CONFIG_KMOD
45 #include <linux/kmod.h>
46 #endif
47
48 static struct linux_binfmt *formats;
49 static rwlock_t binfmt_lock = RW_LOCK_UNLOCKED;
50
51 intregister_binfmt(struct linux_binfmt * fmt)
52 {
53 struct linux_binfmt ** tmp = &formats;
54
55 if(!fmt)
56 return-EINVAL;
57 if(fmt->next)
58 return-EBUSY;
59 write_lock(&binfmt_lock);
60 while(*tmp) {
61 if(fmt == *tmp) {
62 write_unlock(&binfmt_lock);
63 return-EBUSY;
64 }
65 tmp = &(*tmp)->next;
66 }
67 fmt->next = formats;
68 formats = fmt;
69 write_unlock(&binfmt_lock);
70 return0;
71 }
72
73 intunregister_binfmt(struct linux_binfmt * fmt)
74 {
75 struct linux_binfmt ** tmp = &formats;
76
77 write_lock(&binfmt_lock);
78 while(*tmp) {
79 if(fmt == *tmp) {
80 *tmp = fmt->next;
81 write_unlock(&binfmt_lock);
82 return0;
83 }
84 tmp = &(*tmp)->next;
85 }
86 write_unlock(&binfmt_lock);
87 return-EINVAL;
88 }
89
90 staticinlinevoidput_binfmt(struct linux_binfmt * fmt)
91 {
92 if(fmt->module)
93 __MOD_DEC_USE_COUNT(fmt->module);
94 }
95
96 /*
97 * Note that a shared library must be both readable and executable due to
98 * security reasons.
99 *
100 * Also note that we take the address to load from from the file itself.
101 */
102 asmlinkage longsys_uselib(const char* library)
103 {
104 struct file * file;
105 struct nameidata nd;
106 int error;
107
108 error =user_path_walk(library, &nd);
109 if(error)
110 goto out;
111
112 error = -EINVAL;
113 if(!S_ISREG(nd.dentry->d_inode->i_mode))
114 goto exit;
115
116 error =permission(nd.dentry->d_inode, MAY_READ | MAY_EXEC);
117 if(error)
118 goto exit;
119
120 file =dentry_open(nd.dentry, nd.mnt, O_RDONLY);
121 error =PTR_ERR(file);
122 if(IS_ERR(file))
123 goto out;
124
125 error = -ENOEXEC;
126 if(file->f_op && file->f_op->read) {
127 struct linux_binfmt * fmt;
128
129 read_lock(&binfmt_lock);
130 for(fmt = formats ; fmt ; fmt = fmt->next) {
131 if(!fmt->load_shlib)
132 continue;
133 if(!try_inc_mod_count(fmt->module))
134 continue;
135 read_unlock(&binfmt_lock);
136 error = fmt->load_shlib(file);
137 read_lock(&binfmt_lock);
138 put_binfmt(fmt);
139 if(error != -ENOEXEC)
140 break;
141 }
142 read_unlock(&binfmt_lock);
143 }
144 fput(file);
145 out:
146 return error;
147 exit:
148 path_release(&nd);
149 goto out;
150 }
151
152 /*
153 * count() counts the number of arguments/envelopes
154 */
155 static intcount(char** argv,int max)
156 {
157 int i =0;
158
159 if(argv != NULL) {
160 for(;;) {
161 char* p;
162 int error;
163
164 error =get_user(p,argv);
165 if(error)
166 return error;
167 if(!p)
168 break;
169 argv++;
170 if(++i > max)
171 return-E2BIG;
172 }
173 }
174 return i;
175 }
176
177 /*
178 * 'copy_strings()' copies argument/envelope strings from user
179 * memory to free pages in kernel mem. These are in a format ready
180 * to be put directly into the top of new user memory.
181 */
182 intcopy_strings(int argc,char** argv,struct linux_binprm *bprm)
183 {
184 while(argc-- >0) {
185 char*str;
186 int len;
187 unsigned long pos;
188
189 if(get_user(str, argv+argc) || !str || !(len =strnlen_user(str, bprm->p)))
190 return-EFAULT;
191 if(bprm->p < len)
192 return-E2BIG;
193
194 bprm->p -= len;
195 /* XXX: add architecture specific overflow check here. */
196
197 pos = bprm->p;
198 while(len >0) {
199 char*kaddr;
200 int i,new, err;
201 struct page *page;
202 int offset, bytes_to_copy;
203
204 offset = pos % PAGE_SIZE;
205 i = pos/PAGE_SIZE;
206 page = bprm->page[i];
207 new=0;
208 if(!page) {
209 page =alloc_page(GFP_HIGHUSER);
210 bprm->page[i] = page;
211 if(!page)
212 return-ENOMEM;
213 new=1;
214 }
215 kaddr =kmap(page);
216
217 if(new&& offset)
218 memset(kaddr,0, offset);
219 bytes_to_copy = PAGE_SIZE - offset;
220 if(bytes_to_copy > len) {
221 bytes_to_copy = len;
222 if(new)
223 memset(kaddr+offset+len,0, PAGE_SIZE-offset-len);
224 }
225 err =copy_from_user(kaddr + offset, str, bytes_to_copy);
226 kunmap(page);
227
228 if(err)
229 return-EFAULT;
230
231 pos += bytes_to_copy;
232 str += bytes_to_copy;
233 len -= bytes_to_copy;
234 }
235 }
236 return0;
237 }
238
239 /*
240 * Like copy_strings, but get argv and its values from kernel memory.
241 */
242 intcopy_strings_kernel(int argc,char** argv,struct linux_binprm *bprm)
243 {
244 int r;
245 mm_segment_t oldfs =get_fs();
246 set_fs(KERNEL_DS);
247 r =copy_strings(argc, argv, bprm);
248 set_fs(oldfs);
249 return r;
250 }
251
252 /*
253 * This routine is used to map in a page into an address space: needed by
254 * execve() for the initial stack and environment pages.
255 */
256 voidput_dirty_page(struct task_struct * tsk,struct page *page,unsigned long address)
257 {
258 pgd_t * pgd;
259 pmd_t * pmd;
260 pte_t * pte;
261
262 if(page_count(page) !=1)
263 printk("mem_map disagrees with %p at %08lx\n", page, address);
264 pgd =pgd_offset(tsk->mm, address);
265 pmd =pmd_alloc(pgd, address);
266 if(!pmd) {
267 __free_page(page);
268 force_sig(SIGKILL, tsk);
269 return;
270 }
271 pte =pte_alloc(pmd, address);
272 if(!pte) {
273 __free_page(page);
274 force_sig(SIGKILL, tsk);
275 return;
276 }
277 if(!pte_none(*pte)) {
278 pte_ERROR(*pte);
279 __free_page(page);
280 return;
281 }
282 flush_dcache_page(page);
283 flush_page_to_ram(page);
284 set_pte(pte,pte_mkdirty(pte_mkwrite(mk_pte(page, PAGE_COPY))));
285 /* no need for flush_tlb */
286 }
287
288 intsetup_arg_pages(struct linux_binprm *bprm)
289 {
290 unsigned long stack_base;
291 struct vm_area_struct *mpnt;
292 int i;
293
294 stack_base = STACK_TOP - MAX_ARG_PAGES*PAGE_SIZE;
295
296 bprm->p += stack_base;
297 if(bprm->loader)
298 bprm->loader += stack_base;
299 bprm->exec += stack_base;
300
301 mpnt =kmem_cache_alloc(vm_area_cachep, SLAB_KERNEL);
302 if(!mpnt)
303 return-ENOMEM;
304
305 down(&current->mm->mmap_sem);
306 {
307 mpnt->vm_mm = current->mm;
308 mpnt->vm_start = PAGE_MASK & (unsigned long) bprm->p;
309 mpnt->vm_end = STACK_TOP;
310 mpnt->vm_page_prot = PAGE_COPY;
311 mpnt->vm_flags = VM_STACK_FLAGS;
312 mpnt->vm_ops = NULL;
313 mpnt->vm_pgoff =0;
314 mpnt->vm_file = NULL;
315 mpnt->vm_private_data = (void*)0;
316 insert_vm_struct(current->mm, mpnt);
317 current->mm->total_vm = (mpnt->vm_end - mpnt->vm_start) >> PAGE_SHIFT;
318 }
319
320 for(i =0; i < MAX_ARG_PAGES ; i++) {
321 struct page *page = bprm->page[i];
322 if(page) {
323 bprm->page[i] = NULL;
324 current->mm->rss++;
325 put_dirty_page(current,page,stack_base);
326 }
327 stack_base += PAGE_SIZE;
328 }
329 up(&current->mm->mmap_sem);
330
331 return0;
332 }
333
334 struct file *open_exec(const char*name)
335 {
336 struct nameidata nd;
337 struct inode *inode;
338 struct file *file;
339 int err =0;
340
341 if(path_init(name, LOOKUP_FOLLOW|LOOKUP_POSITIVE, &nd))
342 err =path_walk(name, &nd);
343 file =ERR_PTR(err);
344 if(!err) {
345 inode = nd.dentry->d_inode;
346 file =ERR_PTR(-EACCES);
347 if(!IS_NOEXEC(inode) &&S_ISREG(inode->i_mode)) {
348 int err =permission(inode, MAY_EXEC);
349 file =ERR_PTR(err);
350 if(!err) {
351 file =dentry_open(nd.dentry, nd.mnt, O_RDONLY);
352 if(!IS_ERR(file)) {
353 err =deny_write_access(file);
354 if(err) {
355 fput(file);
356 file =ERR_PTR(err);
357 }
358 }
359 out:
360 return file;
361 }
362 }
363 path_release(&nd);
364 }
365 goto out;
366 }
367
368 intkernel_read(struct file *file,unsigned long offset,
369 char* addr,unsigned long count)
370 {
371 mm_segment_t old_fs;
372 loff_t pos = offset;
373 int result = -ENOSYS;
374
375 if(!file->f_op->read)
376 goto fail;
377 old_fs =get_fs();
378 set_fs(get_ds());
379 result = file->f_op->read(file, addr, count, &pos);
380 set_fs(old_fs);
381 fail:
382 return result;
383 }
384
385 static intexec_mmap(void)
386 {
387 struct mm_struct * mm, * old_mm;
388
389 old_mm = current->mm;
390 if(old_mm &&atomic_read(&old_mm->mm_users) ==1) {
391 flush_cache_mm(old_mm);
392 mm_release();
393 exit_mmap(old_mm);
394 flush_tlb_mm(old_mm);
395 return0;
396 }
397
398 mm =mm_alloc();
399 if(mm) {
400 struct mm_struct *active_mm = current->active_mm;
401
402 if(init_new_context(current, mm)) {
403 mmdrop(mm);
404 return-ENOMEM;
405 }
406 task_lock(current);
407 current->mm = mm;
408 current->active_mm = mm;
409 task_unlock(current);
410 activate_mm(active_mm, mm);
411 mm_release();
412 if(old_mm) {
413 if(active_mm != old_mm)BUG();
414 mmput(old_mm);
415 return0;
416 }
417 mmdrop(active_mm);
418 return0;
419 }
420 return-ENOMEM;
421 }
422
423 /*
424 * This function makes sure the current process has its own signal table,
425 * so that flush_signal_handlers can later reset the handlers without
426 * disturbing other processes. (Other processes might share the signal
427 * table via the CLONE_SIGNAL option to clone().)
428 */
429
430 staticinlineintmake_private_signals(void)
431 {
432 struct signal_struct * newsig;
433
434 if(atomic_read(&current->sig->count) <=1)
435 return0;
436 newsig =kmem_cache_alloc(sigact_cachep, GFP_KERNEL);
437 if(newsig == NULL)
438 return-ENOMEM;
439 spin_lock_init(&newsig->siglock);
440 atomic_set(&newsig->count,1);
441 memcpy(newsig->action, current->sig->action,sizeof(newsig->action));
442 spin_lock_irq(&current->sigmask_lock);
443 current->sig = newsig;
444 spin_unlock_irq(&current->sigmask_lock);
445 return0;
446 }
447
448 /*
449 * If make_private_signals() made a copy of the signal table, decrement the
450 * refcount of the original table, and free it if necessary.
451 * We don't do that in make_private_signals() so that we can back off
452 * in flush_old_exec() if an error occurs after calling make_private_signals().
453 */
454
455 staticinlinevoidrelease_old_signals(struct signal_struct * oldsig)
456 {
457 if(current->sig == oldsig)
458 return;
459 if(atomic_dec_and_test(&oldsig->count))
460 kmem_cache_free(sigact_cachep, oldsig);
461 }
462
463 /*
464 * These functions flushes out all traces of the currently running executable
465 * so that a new one can be started
466 */
467
468 staticinlinevoidflush_old_files(struct files_struct * files)
469 {
470 long j = -1;
471
472 write_lock(&files->file_lock);
473 for(;;) {
474 unsigned long set, i;
475
476 j++;
477 i = j * __NFDBITS;
478 if(i >= files->max_fds || i >= files->max_fdset)
479 break;
480 set = files->close_on_exec->fds_bits[j];
481 if(!set)
482 continue;
483 files->close_on_exec->fds_bits[j] =0;
484 write_unlock(&files->file_lock);
485 for( ; set ; i++,set >>=1) {
486 if(set &1) {
487 sys_close(i);
488 }
489 }
490 write_lock(&files->file_lock);
491
492 }
493 write_unlock(&files->file_lock);
494 }
495
496 /*
497 * An execve() will automatically "de-thread" the process.
498 * Note: we don't have to hold the tasklist_lock to test
499 * whether we migth need to do this. If we're not part of
500 * a thread group, there is no way we can become one
501 * dynamically. And if we are, we only need to protect the
502 * unlink - even if we race with the last other thread exit,
503 * at worst the list_del_init() might end up being a no-op.
504 */
505 staticinlinevoidde_thread(struct task_struct *tsk)
506 {
507 if(!list_empty(&tsk->thread_group)) {
508 write_lock_irq(&tasklist_lock);
509 list_del_init(&tsk->thread_group);
510 write_unlock_irq(&tasklist_lock);
511 }
512
513 /* Minor oddity: this might stay the same. */
514 tsk->tgid = tsk->pid;
515 }
516
517 intflush_old_exec(struct linux_binprm * bprm)
518 {
519 char* name;
520 int i, ch, retval;
521 struct signal_struct * oldsig;
522
523 /*
524 * Make sure we have a private signal table
525 */
526 oldsig = current->sig;
527 retval =make_private_signals();
528 if(retval)goto flush_failed;
529
530 /*
531 * Release all of the old mmap stuff
532 */
533 retval =exec_mmap();
534 if(retval)goto mmap_failed;
535
536 /* This is the point of no return */
537 release_old_signals(oldsig);
538
539 current->sas_ss_sp = current->sas_ss_size =0;
540
541 if(current->euid == current->uid && current->egid == current->gid)
542 current->dumpable =1;
543 name = bprm->filename;
544 for(i=0; (ch = *(name++)) !='\0';) {
545 if(ch =='/')
546 i =0;
547 else
548 if(i <15)
549 current->comm[i++] = ch;
550 }
551 current->comm[i] ='\0';
552
553 flush_thread();
554
555 de_thread(current);
556
557 if(bprm->e_uid != current->euid || bprm->e_gid != current->egid ||
558 permission(bprm->file->f_dentry->d_inode,MAY_READ))
559 current->dumpable =0;
560
561 /* An exec changes our domain. We are no longer part of the thread
562 group */
563
564 current->self_exec_id++;
565
566 flush_signal_handlers(current);
567 flush_old_files(current->files);
568
569 return0;
570
571 mmap_failed:
572 flush_failed:
573 spin_lock_irq(&current->sigmask_lock);
574 if(current->sig != oldsig)
575 kfree(current->sig);
576 current->sig = oldsig;
577 spin_unlock_irq(&current->sigmask_lock);
578 return retval;
579 }
580
581 /*
582 * We mustn't allow tracing of suid binaries, unless
583 * the tracer has the capability to trace anything..
584 */
585 staticinlineintmust_not_trace_exec(struct task_struct * p)
586 {
587 return(p->ptrace & PT_PTRACED) && !cap_raised(p->p_pptr->cap_effective, CAP_SYS_PTRACE);
588 }
589
590 /*
591 * Fill the binprm structure from the inode.
592 * Check permissions, then read the first 128 (BINPRM_BUF_SIZE) bytes
593 */
594 intprepare_binprm(struct linux_binprm *bprm)
595 {
596 int mode;
597 struct inode * inode = bprm->file->f_dentry->d_inode;
598
599 mode = inode->i_mode;
600 /* Huh? We had already checked for MAY_EXEC, WTF do we check this? */
601 if(!(mode &0111))/* with at least _one_ execute bit set */
602 return-EACCES;
603 if(bprm->file->f_op == NULL)
604 return-EACCES;
605
606 bprm->e_uid = current->euid;
607 bprm->e_gid = current->egid;
608
609 if(!IS_NOSUID(inode)) {
610 /* Set-uid? */
611 if(mode & S_ISUID)
612 bprm->e_uid = inode->i_uid;
613
614 /* Set-gid? */
615 /*
616 * If setgid is set but no group execute bit then this
617 * is a candidate for mandatory locking, not a setgid
618 * executable.
619 */
620 if((mode & (S_ISGID | S_IXGRP)) == (S_ISGID | S_IXGRP))
621 bprm->e_gid = inode->i_gid;
622 }
623
624 /* We don't have VFS support for capabilities yet */
625 cap_clear(bprm->cap_inheritable);
626 cap_clear(bprm->cap_permitted);
627 cap_clear(bprm->cap_effective);
628
629 /* To support inheritance of root-permissions and suid-root
630 * executables under compatibility mode, we raise all three
631 * capability sets for the file.
632 *
633 * If only the real uid is 0, we only raise the inheritable
634 * and permitted sets of the executable file.
635 */
636
637 if(!issecure(SECURE_NOROOT)) {
638 if(bprm->e_uid ==0|| current->uid ==0) {
639 cap_set_full(bprm->cap_inheritable);
640 cap_set_full(bprm->cap_permitted);
641 }
642 if(bprm->e_uid ==0)
643 cap_set_full(bprm->cap_effective);
644 }
645
646 memset(bprm->buf,0,BINPRM_BUF_SIZE);
647 returnkernel_read(bprm->file,0,bprm->buf,BINPRM_BUF_SIZE);
648 }
649
650 /*
651 * This function is used to produce the new IDs and capabilities
652 * from the old ones and the file's capabilities.
653 *
654 * The formula used for evolving capabilities is:
655 *
656 * pI' = pI
657 * (***) pP' = (fP & X) | (fI & pI)
658 * pE' = pP' & fE [NB. fE is 0 or ~0]
659 *
660 * I=Inheritable, P=Permitted, E=Effective // p=process, f=file
661 * ' indicates post-exec(), and X is the global 'cap_bset'.
662 *
663 */
664
665 voidcompute_creds(struct linux_binprm *bprm)
666 {
667 kernel_cap_t new_permitted, working;
668 int do_unlock =0;
669
670 new_permitted =cap_intersect(bprm->cap_permitted, cap_bset);
671 working =cap_intersect(bprm->cap_inheritable,
672 current->cap_inheritable);
673 new_permitted =cap_combine(new_permitted, working);
674
675 if(bprm->e_uid != current->uid || bprm->e_gid != current->gid ||
676 !cap_issubset(new_permitted, current->cap_permitted)) {
677 current->dumpable =0;
678
679 lock_kernel();
680 if(must_not_trace_exec(current)
681 ||atomic_read(&current->fs->count) >1
682 ||atomic_read(&current->files->count) >1
683 ||atomic_read(&current->sig->count) >1) {
684 if(!capable(CAP_SETUID)) {
685 bprm->e_uid = current->uid;
686 bprm->e_gid = current->gid;
687 }
688 if(!capable(CAP_SETPCAP)) {
689 new_permitted =cap_intersect(new_permitted,
690 current->cap_permitted);
691 }
692 }
693 do_unlock =1;
694 }
695
696
697 /* For init, we want to retain the capabilities set
698 * in the init_task struct. Thus we skip the usual
699 * capability rules */
700 if(current->pid !=1) {
701 current->cap_permitted = new_permitted;
702 current->cap_effective =
703 cap_intersect(new_permitted, bprm->cap_effective);
704 }
705
706 /* AUD: Audit candidate if current->cap_effective is set */
707
708 current->suid = current->euid = current->fsuid = bprm->e_uid;
709 current->sgid = current->egid = current->fsgid = bprm->e_gid;
710
711 if(do_unlock)
712 unlock_kernel();
713 current->keep_capabilities =0;
714 }
715
716
717 voidremove_arg_zero(struct linux_binprm *bprm)
718 {
719 if(bprm->argc) {
720 unsigned long offset;
721 char* kaddr;
722 struct page *page;
723
724 offset = bprm->p % PAGE_SIZE;
725 goto inside;
726
727 while(bprm->p++, *(kaddr+offset++)) {
728 if(offset != PAGE_SIZE)
729 continue;
730 offset =0;
731 kunmap(page);
732 inside:
733 page = bprm->page[bprm->p/PAGE_SIZE];
734 kaddr =kmap(page);
735 }
736 kunmap(page);
737 bprm->argc--;
738 }
739 }
740
741 /*
742 * cycle the list of binary formats handler, until one recognizes the image
743 */
744 intsearch_binary_handler(struct linux_binprm *bprm,struct pt_regs *regs)
745 {
746 inttry,retval=0;
747 struct linux_binfmt *fmt;
748 #ifdef __alpha__
749 /* handle /sbin/loader.. */
750 {
751 struct exec * eh = (struct exec *) bprm->buf;
752
753 if(!bprm->loader && eh->fh.f_magic ==0x183&&
754 (eh->fh.f_flags &0x3000) ==0x3000)
755 {
756 char* dynloader[] = {"/sbin/loader"};
757 struct file * file;
758 unsigned long loader;
759
760 allow_write_access(bprm->file);
761 fput(bprm->file);
762 bprm->file = NULL;
763
764 loader = PAGE_SIZE*MAX_ARG_PAGES-sizeof(void*);
765
766 file =open_exec(dynloader[0]);
767 retval =PTR_ERR(file);
768 if(IS_ERR(file))
769 return retval;
770 bprm->file = file;
771 bprm->loader = loader;
772 retval =prepare_binprm(bprm);
773 if(retval<0)
774 return retval;
775 /* should call search_binary_handler recursively here,
776 but it does not matter */
777 }
778 }
779 #endif
780 for(try=0;try<2;try++) {
781 read_lock(&binfmt_lock);
782 for(fmt = formats ; fmt ; fmt = fmt->next) {
783 int(*fn)(struct linux_binprm *,struct pt_regs *) = fmt->load_binary;
784 if(!fn)
785 continue;
786 if(!try_inc_mod_count(fmt->module))
787 continue;
788 read_unlock(&binfmt_lock);
789 retval =fn(bprm, regs);
790 if(retval >=0) {
791 put_binfmt(fmt);
792 allow_write_access(bprm->file);
793 if(bprm->file)
794 fput(bprm->file);
795 bprm->file = NULL;
796 current->did_exec =1;
797 return retval;
798 }
799 read_lock(&binfmt_lock);
800 put_binfmt(fmt);
801 if(retval != -ENOEXEC)
802 break;
803 if(!bprm->file) {
804 read_unlock(&binfmt_lock);
805 return retval;
806 }
807 }
808 read_unlock(&binfmt_lock);
809 if(retval != -ENOEXEC) {
810 break;
811 #ifdef CONFIG_KMOD
812 }else{
813 #define printable(c) (((c)=='\t') || ((c)=='\n') || (0x20<=(c) && (c)<=0x7e))
814 char modname[20];
815 if(printable(bprm->buf[0]) &&
816 printable(bprm->buf[1]) &&
817 printable(bprm->buf[2]) &&
818 printable(bprm->buf[3]))
819 break;/* -ENOEXEC */
820 sprintf(modname,"binfmt-%04x", *(unsigned short*)(&bprm->buf[2]));
821 request_module(modname);
822 #endif
823 }
824 }
825 return retval;
826 }
827
828
829 /*
830 * sys_execve() executes a new program.
831 */
832 intdo_execve(char* filename,char** argv,char** envp,struct pt_regs * regs)
833 {
834 struct linux_binprm bprm;
835 struct file *file;
836 int retval;
837 int i;
838
839 file =open_exec(filename);
840
841 retval =PTR_ERR(file);
842 if(IS_ERR(file))
843 return retval;
844
845 bprm.p = PAGE_SIZE*MAX_ARG_PAGES-sizeof(void*);
846 memset(bprm.page,0, MAX_ARG_PAGES*sizeof(bprm.page[0]));
847
848 bprm.file = file;
849 bprm.filename = filename;
850 bprm.sh_bang =0;
851 bprm.loader =0;
852 bprm.exec =0;
853 if((bprm.argc =count(argv, bprm.p /sizeof(void*))) <0) {
854 allow_write_access(file);
855 fput(file);
856 return bprm.argc;
857 }
858
859 if((bprm.envc =count(envp, bprm.p /sizeof(void*))) <0) {
860 allow_write_access(file);
861 fput(file);
862 return bprm.envc;
863 }
864
865 retval =prepare_binprm(&bprm);
866 if(retval <0)
867 goto out;
868
869 retval =copy_strings_kernel(1, &bprm.filename, &bprm);
870 if(retval <0)
871 goto out;
872
873 bprm.exec = bprm.p;
874 retval =copy_strings(bprm.envc, envp, &bprm);
875 if(retval <0)
876 goto out;
877
878 retval =copy_strings(bprm.argc, argv, &bprm);
879 if(retval <0)
880 goto out;
881
882 retval =search_binary_handler(&bprm,regs);
883 if(retval >=0)
884 /* execve success */
885 return retval;
886
887 out:
888 /* Something went wrong, return the inode and free the argument pages*/
889 allow_write_access(bprm.file);
890 if(bprm.file)
891 fput(bprm.file);
892
893 for(i =0; i < MAX_ARG_PAGES ; i++) {
894 struct page * page = bprm.page[i];
895 if(page)
896 __free_page(page);
897 }
898
899 return retval;
900 }
901
902 voidset_binfmt(struct linux_binfmt *new)
903 {
904 struct linux_binfmt *old = current->binfmt;
905 if(new&&new->module)
906 __MOD_INC_USE_COUNT(new->module);
907 current->binfmt =new;
908 if(old && old->module)
909 __MOD_DEC_USE_COUNT(old->module);
910 }
911
912 intdo_coredump(long signr,struct pt_regs * regs)
913 {
914 struct linux_binfmt * binfmt;
915 char corename[6+sizeof(current->comm)];
916 struct file * file;
917 struct inode * inode;
918
919 lock_kernel();
920 binfmt = current->binfmt;
921 if(!binfmt || !binfmt->core_dump)
922 goto fail;
923 if(!current->dumpable ||atomic_read(&current->mm->mm_users) !=1)
924 goto fail;
925 current->dumpable =0;
926 if(current->rlim[RLIMIT_CORE].rlim_cur < binfmt->min_coredump)
927 goto fail;
928
929 memcpy(corename,"core.",5);
930 #if 0
931 memcpy(corename+5,current->comm,sizeof(current->comm));
932 #else
933 corename[4] ='\0';
934 #endif
935 file =filp_open(corename, O_CREAT |2| O_TRUNC | O_NOFOLLOW,0600);
936 if(IS_ERR(file))
937 goto fail;
938 inode = file->f_dentry->d_inode;
939 if(inode->i_nlink >1)
940 goto close_fail;/* multiple links - don't dump */
941
942 if(!S_ISREG(inode->i_mode))
943 goto close_fail;
944 if(!file->f_op)
945 goto close_fail;
946 if(!file->f_op->write)
947 goto close_fail;
948 if(!binfmt->core_dump(signr, regs, file))
949 goto close_fail;
950 unlock_kernel();
951 filp_close(file, NULL);
952 return1;
953
954 close_fail:
955 filp_close(file, NULL);
956 fail:
957 unlock_kernel();
958 return0;
959 }
Copy of Dave Jones history.git as used by http://archive.org/details/git-history-of-linux
close