1 files changed, 14 insertions, 139 deletions
diff --git a/fs/proc/namespaces.c b/fs/proc/namespaces.c
index 89026095f2b5..c9eac4563fa8 100644
--- a/fs/proc/namespaces.c
+++ b/fs/proc/namespaces.c
@@ -1,10 +1,6 @@
 #include <linux/proc_fs.h>
 #include <linux/nsproxy.h>
-#include <linux/sched.h>
 #include <linux/ptrace.h>
-#include <linux/fs_struct.h>
-#include <linux/mount.h>
-#include <linux/path.h>
 #include <linux/namei.h>
 #include <linux/file.h>
 #include <linux/utsname.h>
@@ -34,138 +30,45 @@ static const struct proc_ns_operations *ns_entries[] = {
        &mntns_operations,
 };
-static const struct file_operations ns_file_operations = {
-        .llseek         = no_llseek,
-};
-static const struct inode_operations ns_inode_operations = {
-        .setattr        = proc_setattr,
-};
-static char *ns_dname(struct dentry *dentry, char *buffer, int buflen)
-{
-        struct inode *inode = dentry->d_inode;
-        const struct proc_ns_operations *ns_ops = PROC_I(inode)->ns.ns_ops;
-        return dynamic_dname(dentry, buffer, buflen, "%s:[%lu]",
-                ns_ops->name, inode->i_ino);
-}
-const struct dentry_operations ns_dentry_operations =
-{
-        .d_delete       = always_delete_dentry,
-        .d_dname        = ns_dname,
-};
-static struct dentry *proc_ns_get_dentry(struct super_block *sb,
-        struct task_struct *task, const struct proc_ns_operations *ns_ops)
-{
-        struct dentry *dentry, *result;
-        struct inode *inode;
-        struct proc_inode *ei;
-        struct qstr qname = { .name = "", };
-        void *ns;
-        ns = ns_ops->get(task);
-        if (!ns)
-                return ERR_PTR(-ENOENT);
-        dentry = d_alloc_pseudo(sb, &qname);
-        if (!dentry) {
-                ns_ops->put(ns);
-                return ERR_PTR(-ENOMEM);
-        }
-        inode = iget_locked(sb, ns_ops->inum(ns));
-        if (!inode) {
-                dput(dentry);
-                ns_ops->put(ns);
-                return ERR_PTR(-ENOMEM);
-        }
-        ei = PROC_I(inode);
-        if (inode->i_state & I_NEW) {
-                inode->i_mtime = inode->i_atime = inode->i_ctime = CURRENT_TIME;
-                inode->i_op = &ns_inode_operations;
-                inode->i_mode = S_IFREG | S_IRUGO;
-                inode->i_fop = &ns_file_operations;
-                ei->ns.ns_ops = ns_ops;
-                ei->ns.ns = ns;
-                unlock_new_inode(inode);
-        } else {
-                ns_ops->put(ns);
-        }
-        d_set_d_op(dentry, &ns_dentry_operations);
-        result = d_instantiate_unique(dentry, inode);
-        if (result) {
-                dput(dentry);
-                dentry = result;
-        }
-        return dentry;
-}
 static void *proc_ns_follow_link(struct dentry *dentry, struct nameidata *nd)
 {
        struct inode *inode = dentry->d_inode;
-        struct super_block *sb = inode->i_sb;
+        const struct proc_ns_operations *ns_ops = PROC_I(inode)->ns_ops;
-        struct proc_inode *ei = PROC_I(inode);
        struct task_struct *task;
        struct path ns_path;
        void *error = ERR_PTR(-EACCES);
        task = get_proc_task(inode);
        if (!task)
-                goto out;
+                return error;
-        if (!ptrace_may_access(task, PTRACE_MODE_READ))
+        if (ptrace_may_access(task, PTRACE_MODE_READ)) {
-                goto out_put_task;
+                error = ns_get_path(&ns_path, task, ns_ops);
+                if (!error)
-        ns_path.dentry = proc_ns_get_dentry(sb, task, ei->ns.ns_ops);
+                        nd_jump_link(nd, &ns_path);
-        if (IS_ERR(ns_path.dentry)) {
-                error = ERR_CAST(ns_path.dentry);
-                goto out_put_task;
        }
-        ns_path.mnt = mntget(nd->path.mnt);
-        nd_jump_link(nd, &ns_path);
-        error = NULL;
-out_put_task:
        put_task_struct(task);
-out:
        return error;
 }
 static int proc_ns_readlink(struct dentry *dentry, char __user *buffer, int buflen)
 {
        struct inode *inode = dentry->d_inode;
-        struct proc_inode *ei = PROC_I(inode);
+        const struct proc_ns_operations *ns_ops = PROC_I(inode)->ns_ops;
-        const struct proc_ns_operations *ns_ops = ei->ns.ns_ops;
        struct task_struct *task;
-        void *ns;
        char name[50];
        int res = -EACCES;
        task = get_proc_task(inode);
        if (!task)
-                goto out;
+                return res;
-        if (!ptrace_may_access(task, PTRACE_MODE_READ))
-                goto out_put_task;
-        res = -ENOENT;
+        if (ptrace_may_access(task, PTRACE_MODE_READ)) {
-        ns = ns_ops->get(task);
+                res = ns_get_name(name, sizeof(name), task, ns_ops);
-        if (!ns)
+                if (res >= 0)
-                goto out_put_task;
+                        res = readlink_copy(buffer, buflen, name);
+        }
-        snprintf(name, sizeof(name), "%s:[%u]", ns_ops->name, ns_ops->inum(ns));
-        res = readlink_copy(buffer, buflen, name);
-        ns_ops->put(ns);
-out_put_task:
        put_task_struct(task);
-out:
        return res;
 }
@@ -189,7 +92,7 @@ static int proc_ns_instantiate(struct inode *dir,
        ei = PROC_I(inode);
        inode->i_mode = S_IFLNK|S_IRWXUGO;
        inode->i_op = &proc_ns_link_inode_operations;
-        ei->ns.ns_ops = ns_ops;
+        ei->ns_ops = ns_ops;
        d_set_d_op(dentry, &pid_dentry_operations);
        d_add(dentry, inode);
@@ -267,31 +170,3 @@ const struct inode_operations proc_ns_dir_inode_operations = {
        .getattr        = pid_getattr,
        .setattr        = proc_setattr,
 };
-struct file *proc_ns_fget(int fd)
-{
-        struct file *file;
-        file = fget(fd);
-        if (!file)
-                return ERR_PTR(-EBADF);
-        if (file->f_op != &ns_file_operations)
-                goto out_invalid;
-        return file;
-out_invalid:
-        fput(file);
-        return ERR_PTR(-EINVAL);
-}
-struct proc_ns *get_proc_ns(struct inode *inode)
-{
-        return &PROC_I(inode)->ns;
-}
-bool proc_ns_inode(struct inode *inode)
-{
-        return inode->i_fop == &ns_file_operations;
-}

diff --git a/fs/proc/namespaces.c b/fs/proc/namespaces.c index 89026095f2b5..c9eac4563fa8 100644 --- a/fs/proc/namespaces.c +++ b/fs/proc/namespaces.c
@@ -1,10 +1,6 @@
1	#include <linux/proc_fs.h>	1	#include <linux/proc_fs.h>
2	#include <linux/nsproxy.h>	2	#include <linux/nsproxy.h>
3	#include <linux/sched.h>
4	#include <linux/ptrace.h>	3	#include <linux/ptrace.h>
5	#include <linux/fs_struct.h>
6	#include <linux/mount.h>
7	#include <linux/path.h>
8	#include <linux/namei.h>	4	#include <linux/namei.h>
9	#include <linux/file.h>	5	#include <linux/file.h>
10	#include <linux/utsname.h>	6	#include <linux/utsname.h>
@@ -34,138 +30,45 @@ static const struct proc_ns_operations *ns_entries[] = {
34	&mntns_operations,	30	&mntns_operations,
35	};	31	};
36		32
37	static const struct file_operations ns_file_operations = {
38	.llseek = no_llseek,
39	};
40
41	static const struct inode_operations ns_inode_operations = {
42	.setattr = proc_setattr,
43	};
44
45	static char ns_dname(struct dentry dentry, char *buffer, int buflen)
46	{
47	struct inode *inode = dentry->d_inode;
48	const struct proc_ns_operations *ns_ops = PROC_I(inode)->ns.ns_ops;
49
50	return dynamic_dname(dentry, buffer, buflen, "%s:[%lu]",
51	ns_ops->name, inode->i_ino);
52	}
53
54	const struct dentry_operations ns_dentry_operations =
55	{
56	.d_delete = always_delete_dentry,
57	.d_dname = ns_dname,
58	};
59
60	static struct dentry proc_ns_get_dentry(struct super_block sb,
61	struct task_struct task, const struct proc_ns_operations ns_ops)
62	{
63	struct dentry dentry, result;
64	struct inode *inode;
65	struct proc_inode *ei;
66	struct qstr qname = { .name = "", };
67	void *ns;
68
69	ns = ns_ops->get(task);
70	if (!ns)
71	return ERR_PTR(-ENOENT);
72
73	dentry = d_alloc_pseudo(sb, &qname);
74	if (!dentry) {
75	ns_ops->put(ns);
76	return ERR_PTR(-ENOMEM);
77	}
78
79	inode = iget_locked(sb, ns_ops->inum(ns));
80	if (!inode) {
81	dput(dentry);
82	ns_ops->put(ns);
83	return ERR_PTR(-ENOMEM);
84	}
85
86	ei = PROC_I(inode);
87	if (inode->i_state & I_NEW) {
88	inode->i_mtime = inode->i_atime = inode->i_ctime = CURRENT_TIME;
89	inode->i_op = &ns_inode_operations;
90	inode->i_mode = S_IFREG \| S_IRUGO;
91	inode->i_fop = &ns_file_operations;
92	ei->ns.ns_ops = ns_ops;
93	ei->ns.ns = ns;
94	unlock_new_inode(inode);
95	} else {
96	ns_ops->put(ns);
97	}
98
99	d_set_d_op(dentry, &ns_dentry_operations);
100	result = d_instantiate_unique(dentry, inode);
101	if (result) {
102	dput(dentry);
103	dentry = result;
104	}
105
106	return dentry;
107	}
108
109	static void proc_ns_follow_link(struct dentry dentry, struct nameidata *nd)	33	static void proc_ns_follow_link(struct dentry dentry, struct nameidata *nd)
110	{	34	{
111	struct inode *inode = dentry->d_inode;	35	struct inode *inode = dentry->d_inode;
112	struct super_block *sb = inode->i_sb;	36	const struct proc_ns_operations *ns_ops = PROC_I(inode)->ns_ops;
113	struct proc_inode *ei = PROC_I(inode);
114	struct task_struct *task;	37	struct task_struct *task;
115	struct path ns_path;	38	struct path ns_path;
116	void *error = ERR_PTR(-EACCES);	39	void *error = ERR_PTR(-EACCES);
117		40
118	task = get_proc_task(inode);	41	task = get_proc_task(inode);
119	if (!task)	42	if (!task)
120	goto out;	43	return error;
121		44
122	if (!ptrace_may_access(task, PTRACE_MODE_READ))	45	if (ptrace_may_access(task, PTRACE_MODE_READ)) {
123	goto out_put_task;	46	error = ns_get_path(&ns_path, task, ns_ops);
124		47	if (!error)
125	ns_path.dentry = proc_ns_get_dentry(sb, task, ei->ns.ns_ops);	48	nd_jump_link(nd, &ns_path);
126	if (IS_ERR(ns_path.dentry)) {
127	error = ERR_CAST(ns_path.dentry);
128	goto out_put_task;
129	}	49	}
130
131	ns_path.mnt = mntget(nd->path.mnt);
132	nd_jump_link(nd, &ns_path);
133	error = NULL;
134
135	out_put_task:
136	put_task_struct(task);	50	put_task_struct(task);
137	out:
138	return error;	51	return error;
139	}	52	}
140		53
141	static int proc_ns_readlink(struct dentry dentry, char __user buffer, int buflen)	54	static int proc_ns_readlink(struct dentry dentry, char __user buffer, int buflen)
142	{	55	{
143	struct inode *inode = dentry->d_inode;	56	struct inode *inode = dentry->d_inode;
144	struct proc_inode *ei = PROC_I(inode);	57	const struct proc_ns_operations *ns_ops = PROC_I(inode)->ns_ops;
145	const struct proc_ns_operations *ns_ops = ei->ns.ns_ops;
146	struct task_struct *task;	58	struct task_struct *task;
147	void *ns;
148	char name[50];	59	char name[50];
149	int res = -EACCES;	60	int res = -EACCES;
150		61
151	task = get_proc_task(inode);	62	task = get_proc_task(inode);
152	if (!task)	63	if (!task)
153	goto out;	64	return res;
154
155	if (!ptrace_may_access(task, PTRACE_MODE_READ))
156	goto out_put_task;
157		65
158	res = -ENOENT;	66	if (ptrace_may_access(task, PTRACE_MODE_READ)) {
159	ns = ns_ops->get(task);	67	res = ns_get_name(name, sizeof(name), task, ns_ops);
160	if (!ns)	68	if (res >= 0)
161	goto out_put_task;	69	res = readlink_copy(buffer, buflen, name);
162		70	}
163	snprintf(name, sizeof(name), "%s:[%u]", ns_ops->name, ns_ops->inum(ns));
164	res = readlink_copy(buffer, buflen, name);
165	ns_ops->put(ns);
166	out_put_task:
167	put_task_struct(task);	71	put_task_struct(task);
168	out:
169	return res;	72	return res;
170	}	73	}
171		74
@@ -189,7 +92,7 @@ static int proc_ns_instantiate(struct inode *dir,
189	ei = PROC_I(inode);	92	ei = PROC_I(inode);
190	inode->i_mode = S_IFLNK\|S_IRWXUGO;	93	inode->i_mode = S_IFLNK\|S_IRWXUGO;
191	inode->i_op = &proc_ns_link_inode_operations;	94	inode->i_op = &proc_ns_link_inode_operations;
192	ei->ns.ns_ops = ns_ops;	95	ei->ns_ops = ns_ops;
193		96
194	d_set_d_op(dentry, &pid_dentry_operations);	97	d_set_d_op(dentry, &pid_dentry_operations);
195	d_add(dentry, inode);	98	d_add(dentry, inode);
@@ -267,31 +170,3 @@ const struct inode_operations proc_ns_dir_inode_operations = {
267	.getattr = pid_getattr,	170	.getattr = pid_getattr,
268	.setattr = proc_setattr,	171	.setattr = proc_setattr,
269	};	172	};
270
271	struct file *proc_ns_fget(int fd)
272	{
273	struct file *file;
274
275	file = fget(fd);
276	if (!file)
277	return ERR_PTR(-EBADF);
278
279	if (file->f_op != &ns_file_operations)
280	goto out_invalid;
281
282	return file;
283
284	out_invalid:
285	fput(file);
286	return ERR_PTR(-EINVAL);
287	}
288
289	struct proc_ns get_proc_ns(struct inode inode)
290	{
291	return &PROC_I(inode)->ns;
292	}
293
294	bool proc_ns_inode(struct inode *inode)
295	{
296	return inode->i_fop == &ns_file_operations;
297	}