expose a low-level variant of fd_install() for binder

Similar situation to that of __alloc_fd(); do not use unless you really have to. You should not touch any descriptor table other than your own; it's a sure sign of a really bad API design. As with __alloc_fd(), you *must* use a first-class reference to struct files_struct; something obtained by get_files_struct(some task) (let alone direct task->files) will not do. It must be either current->files, or obtained by get_files_struct(current) by the owner of that sucker and given to you. Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>
author: Al Viro <viro@zeniv.linux.org.uk> 2012-08-15 21:06:33 -0400
committer: Al Viro <viro@zeniv.linux.org.uk> 2012-09-26 21:08:55 -0400
commit: f869e8a7f753e3fd43d6483e796774776f645edb (patch)
tree: 3b215f30a040812eb7488bd4596a5c3ae0b50e51
parent: 56007cae94f349387c088e738c7dcb6bc513063b (diff)
3 files changed, 18 insertions, 13 deletions
diff --git a/drivers/staging/android/binder.c b/drivers/staging/android/binder.c
index 4946d282a35c..9e1a98a360d4 100644
--- a/drivers/staging/android/binder.c
+++ b/drivers/staging/android/binder.c
@@ -386,17 +386,8 @@ int task_get_unused_fd_flags(struct binder_proc *proc, int flags)
 static void task_fd_install(
        struct binder_proc *proc, unsigned int fd, struct file *file)
 {
-        struct files_struct *files = proc->files;
+        if (proc->files)
-        struct fdtable *fdt;
+                __fd_install(proc->files, fd, file);
-        if (files == NULL)
-                return;
-        spin_lock(&files->file_lock);
-        fdt = files_fdtable(files);
-        BUG_ON(fdt->fd[fd] != NULL);
-        rcu_assign_pointer(fdt->fd[fd], file);
-        spin_unlock(&files->file_lock);
 }
 /*
diff --git a/fs/file.c b/fs/file.c
index 78cf88f2a0e8..0d1bf0515111 100644
--- a/fs/file.c
+++ b/fs/file.c
@@ -599,11 +599,18 @@ EXPORT_SYMBOL(put_unused_fd);
 *
 * It should never happen - if we allow dup2() do it, _really_ bad things
 * will follow.
+ *
+ * NOTE: __fd_install() variant is really, really low-level; don't
+ * use it unless you are forced to by truly lousy API shoved down
+ * your throat.  'files' *MUST* be either current->files or obtained
+ * by get_files_struct(current) done by whoever had given it to you,
+ * or really bad things will happen.  Normally you want to use
+ * fd_install() instead.
 */
-void fd_install(unsigned int fd, struct file *file)
+void __fd_install(struct files_struct *files, unsigned int fd,
+                struct file *file)
 {
-        struct files_struct *files = current->files;
        struct fdtable *fdt;
        spin_lock(&files->file_lock);
        fdt = files_fdtable(files);
@@ -612,4 +619,9 @@ void fd_install(unsigned int fd, struct file *file)
        spin_unlock(&files->file_lock);
 }
+void fd_install(unsigned int fd, struct file *file)
+{
+        __fd_install(current->files, fd, file);
+}
 EXPORT_SYMBOL(fd_install);
diff --git a/include/linux/fdtable.h b/include/linux/fdtable.h
index 3855f4febe70..59d4fc7f10c8 100644
--- a/include/linux/fdtable.h
+++ b/include/linux/fdtable.h
@@ -121,6 +121,8 @@ struct files_struct *dup_fd(struct files_struct *, int *);
 extern int __alloc_fd(struct files_struct *files,
                      unsigned start, unsigned end, unsigned flags);
+extern void __fd_install(struct files_struct *files,
+                      unsigned int fd, struct file *file);
 extern struct kmem_cache *files_cachep;
author	Al Viro <viro@zeniv.linux.org.uk>	2012-08-15 21:06:33 -0400
committer	Al Viro <viro@zeniv.linux.org.uk>	2012-09-26 21:08:55 -0400
commit	f869e8a7f753e3fd43d6483e796774776f645edb (patch)
tree	3b215f30a040812eb7488bd4596a5c3ae0b50e51
parent	56007cae94f349387c088e738c7dcb6bc513063b (diff)