2013-04-12 08:50:06 +08:00
|
|
|
/*
|
|
|
|
* procfs namespace bits
|
|
|
|
*/
|
|
|
|
#ifndef _LINUX_PROC_NS_H
|
|
|
|
#define _LINUX_PROC_NS_H
|
|
|
|
|
take the targets of /proc/*/ns/* symlinks to separate fs
New pseudo-filesystem: nsfs. Targets of /proc/*/ns/* live there now.
It's not mountable (not even registered, so it's not in /proc/filesystems,
etc.). Files on it *are* bindable - we explicitly permit that in do_loopback().
This stuff lives in fs/nsfs.c now; proc_ns_fget() moved there as well.
get_proc_ns() is a macro now (it's simply returning ->i_private; would
have been an inline, if not for header ordering headache).
proc_ns_inode() is an ex-parrot. The interface used in procfs is
ns_get_path(path, task, ops) and ns_get_name(buf, size, task, ops).
Dentries and inodes are never hashed; a non-counting reference to dentry
is stashed in ns_common (removed by ->d_prune()) and reused by ns_get_path()
if present. See ns_get_path()/ns_prune_dentry/nsfs_evict() for details
of that mechanism.
As the result, proc_ns_follow_link() has stopped poking in nd->path.mnt;
it does nd_jump_link() on a consistent <vfsmount,dentry> pair it gets
from ns_get_path().
Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>
2014-11-01 22:57:28 +08:00
|
|
|
#include <linux/ns_common.h>
|
|
|
|
|
2013-04-12 08:50:06 +08:00
|
|
|
struct pid_namespace;
|
|
|
|
struct nsproxy;
|
take the targets of /proc/*/ns/* symlinks to separate fs
New pseudo-filesystem: nsfs. Targets of /proc/*/ns/* live there now.
It's not mountable (not even registered, so it's not in /proc/filesystems,
etc.). Files on it *are* bindable - we explicitly permit that in do_loopback().
This stuff lives in fs/nsfs.c now; proc_ns_fget() moved there as well.
get_proc_ns() is a macro now (it's simply returning ->i_private; would
have been an inline, if not for header ordering headache).
proc_ns_inode() is an ex-parrot. The interface used in procfs is
ns_get_path(path, task, ops) and ns_get_name(buf, size, task, ops).
Dentries and inodes are never hashed; a non-counting reference to dentry
is stashed in ns_common (removed by ->d_prune()) and reused by ns_get_path()
if present. See ns_get_path()/ns_prune_dentry/nsfs_evict() for details
of that mechanism.
As the result, proc_ns_follow_link() has stopped poking in nd->path.mnt;
it does nd_jump_link() on a consistent <vfsmount,dentry> pair it gets
from ns_get_path().
Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>
2014-11-01 22:57:28 +08:00
|
|
|
struct path;
|
2016-01-29 16:54:06 +08:00
|
|
|
struct task_struct;
|
|
|
|
struct inode;
|
2013-04-12 08:50:06 +08:00
|
|
|
|
|
|
|
struct proc_ns_operations {
|
|
|
|
const char *name;
|
2017-05-09 06:56:38 +08:00
|
|
|
const char *real_ns_name;
|
2013-04-12 08:50:06 +08:00
|
|
|
int type;
|
2014-11-01 12:37:32 +08:00
|
|
|
struct ns_common *(*get)(struct task_struct *task);
|
|
|
|
void (*put)(struct ns_common *ns);
|
|
|
|
int (*install)(struct nsproxy *nsproxy, struct ns_common *ns);
|
2016-09-06 15:47:13 +08:00
|
|
|
struct user_namespace *(*owner)(struct ns_common *ns);
|
2016-09-06 15:47:15 +08:00
|
|
|
struct ns_common *(*get_parent)(struct ns_common *ns);
|
2016-10-28 16:22:25 +08:00
|
|
|
} __randomize_layout;
|
2013-04-12 08:50:06 +08:00
|
|
|
|
|
|
|
extern const struct proc_ns_operations netns_operations;
|
|
|
|
extern const struct proc_ns_operations utsns_operations;
|
|
|
|
extern const struct proc_ns_operations ipcns_operations;
|
|
|
|
extern const struct proc_ns_operations pidns_operations;
|
2017-05-09 06:56:41 +08:00
|
|
|
extern const struct proc_ns_operations pidns_for_children_operations;
|
2013-04-12 08:50:06 +08:00
|
|
|
extern const struct proc_ns_operations userns_operations;
|
|
|
|
extern const struct proc_ns_operations mntns_operations;
|
2016-01-29 16:54:06 +08:00
|
|
|
extern const struct proc_ns_operations cgroupns_operations;
|
2013-04-12 08:50:06 +08:00
|
|
|
|
|
|
|
/*
|
|
|
|
* We always define these enumerators
|
|
|
|
*/
|
|
|
|
enum {
|
|
|
|
PROC_ROOT_INO = 1,
|
|
|
|
PROC_IPC_INIT_INO = 0xEFFFFFFFU,
|
|
|
|
PROC_UTS_INIT_INO = 0xEFFFFFFEU,
|
|
|
|
PROC_USER_INIT_INO = 0xEFFFFFFDU,
|
|
|
|
PROC_PID_INIT_INO = 0xEFFFFFFCU,
|
2016-01-29 16:54:06 +08:00
|
|
|
PROC_CGROUP_INIT_INO = 0xEFFFFFFBU,
|
2013-04-12 08:50:06 +08:00
|
|
|
};
|
|
|
|
|
|
|
|
#ifdef CONFIG_PROC_FS
|
|
|
|
|
|
|
|
extern int pid_ns_prepare_proc(struct pid_namespace *ns);
|
|
|
|
extern void pid_ns_release_proc(struct pid_namespace *ns);
|
|
|
|
extern int proc_alloc_inum(unsigned int *pino);
|
|
|
|
extern void proc_free_inum(unsigned int inum);
|
|
|
|
|
|
|
|
#else /* CONFIG_PROC_FS */
|
|
|
|
|
|
|
|
static inline int pid_ns_prepare_proc(struct pid_namespace *ns) { return 0; }
|
|
|
|
static inline void pid_ns_release_proc(struct pid_namespace *ns) {}
|
|
|
|
|
|
|
|
static inline int proc_alloc_inum(unsigned int *inum)
|
|
|
|
{
|
|
|
|
*inum = 1;
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
static inline void proc_free_inum(unsigned int inum) {}
|
|
|
|
|
|
|
|
#endif /* CONFIG_PROC_FS */
|
|
|
|
|
take the targets of /proc/*/ns/* symlinks to separate fs
New pseudo-filesystem: nsfs. Targets of /proc/*/ns/* live there now.
It's not mountable (not even registered, so it's not in /proc/filesystems,
etc.). Files on it *are* bindable - we explicitly permit that in do_loopback().
This stuff lives in fs/nsfs.c now; proc_ns_fget() moved there as well.
get_proc_ns() is a macro now (it's simply returning ->i_private; would
have been an inline, if not for header ordering headache).
proc_ns_inode() is an ex-parrot. The interface used in procfs is
ns_get_path(path, task, ops) and ns_get_name(buf, size, task, ops).
Dentries and inodes are never hashed; a non-counting reference to dentry
is stashed in ns_common (removed by ->d_prune()) and reused by ns_get_path()
if present. See ns_get_path()/ns_prune_dentry/nsfs_evict() for details
of that mechanism.
As the result, proc_ns_follow_link() has stopped poking in nd->path.mnt;
it does nd_jump_link() on a consistent <vfsmount,dentry> pair it gets
from ns_get_path().
Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>
2014-11-01 22:57:28 +08:00
|
|
|
static inline int ns_alloc_inum(struct ns_common *ns)
|
|
|
|
{
|
|
|
|
atomic_long_set(&ns->stashed, 0);
|
|
|
|
return proc_alloc_inum(&ns->inum);
|
|
|
|
}
|
|
|
|
|
2014-11-01 12:45:45 +08:00
|
|
|
#define ns_free_inum(ns) proc_free_inum((ns)->inum)
|
|
|
|
|
take the targets of /proc/*/ns/* symlinks to separate fs
New pseudo-filesystem: nsfs. Targets of /proc/*/ns/* live there now.
It's not mountable (not even registered, so it's not in /proc/filesystems,
etc.). Files on it *are* bindable - we explicitly permit that in do_loopback().
This stuff lives in fs/nsfs.c now; proc_ns_fget() moved there as well.
get_proc_ns() is a macro now (it's simply returning ->i_private; would
have been an inline, if not for header ordering headache).
proc_ns_inode() is an ex-parrot. The interface used in procfs is
ns_get_path(path, task, ops) and ns_get_name(buf, size, task, ops).
Dentries and inodes are never hashed; a non-counting reference to dentry
is stashed in ns_common (removed by ->d_prune()) and reused by ns_get_path()
if present. See ns_get_path()/ns_prune_dentry/nsfs_evict() for details
of that mechanism.
As the result, proc_ns_follow_link() has stopped poking in nd->path.mnt;
it does nd_jump_link() on a consistent <vfsmount,dentry> pair it gets
from ns_get_path().
Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>
2014-11-01 22:57:28 +08:00
|
|
|
extern struct file *proc_ns_fget(int fd);
|
|
|
|
#define get_proc_ns(inode) ((struct ns_common *)(inode)->i_private)
|
|
|
|
extern void *ns_get_path(struct path *path, struct task_struct *task,
|
|
|
|
const struct proc_ns_operations *ns_ops);
|
|
|
|
|
|
|
|
extern int ns_get_name(char *buf, size_t size, struct task_struct *task,
|
|
|
|
const struct proc_ns_operations *ns_ops);
|
|
|
|
extern void nsfs_init(void);
|
|
|
|
|
2013-04-12 08:50:06 +08:00
|
|
|
#endif /* _LINUX_PROC_NS_H */
|