+13 -72

fs/fcntl.c

reviewed

··· 49 49 return res; 50 50 } 51 51 52 52 - /* 53 53 - * locate_fd finds a free file descriptor in the open_fds fdset, 54 54 - * expanding the fd arrays if necessary. Must be called with the 55 55 - * file_lock held for write. 56 56 - */ 57 57 - 58 58 - static int locate_fd(unsigned int orig_start, int cloexec) 59 59 - { 60 60 - struct files_struct *files = current->files; 61 61 - unsigned int newfd; 62 62 - unsigned int start; 63 63 - int error; 64 64 - struct fdtable *fdt; 65 65 - 66 66 - spin_lock(&files->file_lock); 67 67 - repeat: 68 68 - fdt = files_fdtable(files); 69 69 - /* 70 70 - * Someone might have closed fd's in the range 71 71 - * orig_start..fdt->next_fd 72 72 - */ 73 73 - start = orig_start; 74 74 - if (start < files->next_fd) 75 75 - start = files->next_fd; 76 76 - 77 77 - newfd = start; 78 78 - if (start < fdt->max_fds) 79 79 - newfd = find_next_zero_bit(fdt->open_fds->fds_bits, 80 80 - fdt->max_fds, start); 81 81 - 82 82 - error = expand_files(files, newfd); 83 83 - if (error < 0) 84 84 - goto out; 85 85 - 86 86 - /* 87 87 - * If we needed to expand the fs array we 88 88 - * might have blocked - try again. 89 89 - */ 90 90 - if (error) 91 91 - goto repeat; 92 92 - 93 93 - if (start <= files->next_fd) 94 94 - files->next_fd = newfd + 1; 95 95 - 96 96 - FD_SET(newfd, fdt->open_fds); 97 97 - if (cloexec) 98 98 - FD_SET(newfd, fdt->close_on_exec); 99 99 - else 100 100 - FD_CLR(newfd, fdt->close_on_exec); 101 101 - error = newfd; 102 102 - 103 103 - out: 104 104 - spin_unlock(&files->file_lock); 105 105 - return error; 106 106 - } 107 107 - 108 108 - static int dupfd(struct file *file, unsigned int start, int cloexec) 109 109 - { 110 110 - int fd = locate_fd(start, cloexec); 111 111 - if (fd >= 0) 112 112 - fd_install(fd, file); 113 113 - else 114 114 - fput(file); 115 115 - 116 116 - return fd; 117 117 - } 118 118 - 119 52 asmlinkage long sys_dup3(unsigned int oldfd, unsigned int newfd, int flags) 120 53 { 121 54 int err = -EBADF; ··· 127 194 asmlinkage long sys_dup(unsigned int fildes) 128 195 { 129 196 int ret = -EBADF; 130 130 - struct file * file = fget(fildes); 197 197 + struct file *file = fget(fildes); 131 198 132 132 - if (file) 133 133 - ret = dupfd(file, 0, 0); 199 199 + if (file) { 200 200 + ret = get_unused_fd(); 201 201 + if (ret >= 0) 202 202 + fd_install(ret, file); 203 203 + else 204 204 + fput(file); 205 205 + } 134 206 return ret; 135 207 } 136 208 ··· 260 322 case F_DUPFD_CLOEXEC: 261 323 if (arg >= current->signal->rlim[RLIMIT_NOFILE].rlim_cur) 262 324 break; 263 263 - get_file(filp); 264 264 - err = dupfd(filp, arg, cmd == F_DUPFD_CLOEXEC); 325 325 + err = alloc_fd(arg, cmd == F_DUPFD_CLOEXEC ? O_CLOEXEC : 0); 326 326 + if (err >= 0) { 327 327 + get_file(filp); 328 328 + fd_install(err, filp); 329 329 + } 265 330 break; 266 331 case F_GETFD: 267 332 err = get_close_on_exec(fd) ? FD_CLOEXEC : 0;

+61

fs/file.c

reviewed

··· 6 6 * Manage the dynamic fd arrays in the process files_struct. 7 7 */ 8 8 9 9 + #include <linux/module.h> 9 10 #include <linux/fs.h> 10 11 #include <linux/mm.h> 11 12 #include <linux/time.h> ··· 433 432 }, 434 433 .file_lock = __SPIN_LOCK_UNLOCKED(init_task.file_lock), 435 434 }; 435 435 + 436 436 + /* 437 437 + * allocate a file descriptor, mark it busy. 438 438 + */ 439 439 + int alloc_fd(unsigned start, unsigned flags) 440 440 + { 441 441 + struct files_struct *files = current->files; 442 442 + unsigned int fd; 443 443 + int error; 444 444 + struct fdtable *fdt; 445 445 + 446 446 + spin_lock(&files->file_lock); 447 447 + repeat: 448 448 + fdt = files_fdtable(files); 449 449 + fd = start; 450 450 + if (fd < files->next_fd) 451 451 + fd = files->next_fd; 452 452 + 453 453 + if (fd < fdt->max_fds) 454 454 + fd = find_next_zero_bit(fdt->open_fds->fds_bits, 455 455 + fdt->max_fds, fd); 456 456 + 457 457 + error = expand_files(files, fd); 458 458 + if (error < 0) 459 459 + goto out; 460 460 + 461 461 + /* 462 462 + * If we needed to expand the fs array we 463 463 + * might have blocked - try again. 464 464 + */ 465 465 + if (error) 466 466 + goto repeat; 467 467 + 468 468 + if (start <= files->next_fd) 469 469 + files->next_fd = fd + 1; 470 470 + 471 471 + FD_SET(fd, fdt->open_fds); 472 472 + if (flags & O_CLOEXEC) 473 473 + FD_SET(fd, fdt->close_on_exec); 474 474 + else 475 475 + FD_CLR(fd, fdt->close_on_exec); 476 476 + error = fd; 477 477 + #if 1 478 478 + /* Sanity check */ 479 479 + if (rcu_dereference(fdt->fd[fd]) != NULL) { 480 480 + printk(KERN_WARNING "alloc_fd: slot %d not NULL!\n", fd); 481 481 + rcu_assign_pointer(fdt->fd[fd], NULL); 482 482 + } 483 483 + #endif 484 484 + 485 485 + out: 486 486 + spin_unlock(&files->file_lock); 487 487 + return error; 488 488 + } 489 489 + 490 490 + int get_unused_fd(void) 491 491 + { 492 492 + return alloc_fd(0, 0); 493 493 + } 494 494 + EXPORT_SYMBOL(get_unused_fd);

-56

fs/open.c

reviewed

··· 963 963 } 964 964 EXPORT_SYMBOL(dentry_open); 965 965 966 966 - /* 967 967 - * Find an empty file descriptor entry, and mark it busy. 968 968 - */ 969 969 - int get_unused_fd_flags(int flags) 970 970 - { 971 971 - struct files_struct * files = current->files; 972 972 - int fd, error; 973 973 - struct fdtable *fdt; 974 974 - 975 975 - spin_lock(&files->file_lock); 976 976 - 977 977 - repeat: 978 978 - fdt = files_fdtable(files); 979 979 - fd = find_next_zero_bit(fdt->open_fds->fds_bits, fdt->max_fds, 980 980 - files->next_fd); 981 981 - 982 982 - /* Do we need to expand the fd array or fd set? */ 983 983 - error = expand_files(files, fd); 984 984 - if (error < 0) 985 985 - goto out; 986 986 - 987 987 - if (error) { 988 988 - /* 989 989 - * If we needed to expand the fs array we 990 990 - * might have blocked - try again. 991 991 - */ 992 992 - goto repeat; 993 993 - } 994 994 - 995 995 - FD_SET(fd, fdt->open_fds); 996 996 - if (flags & O_CLOEXEC) 997 997 - FD_SET(fd, fdt->close_on_exec); 998 998 - else 999 999 - FD_CLR(fd, fdt->close_on_exec); 1000 1000 - files->next_fd = fd + 1; 1001 1001 - #if 1 1002 1002 - /* Sanity check */ 1003 1003 - if (fdt->fd[fd] != NULL) { 1004 1004 - printk(KERN_WARNING "get_unused_fd: slot %d not NULL!\n", fd); 1005 1005 - fdt->fd[fd] = NULL; 1006 1006 - } 1007 1007 - #endif 1008 1008 - error = fd; 1009 1009 - 1010 1010 - out: 1011 1011 - spin_unlock(&files->file_lock); 1012 1012 - return error; 1013 1013 - } 1014 1014 - 1015 1015 - int get_unused_fd(void) 1016 1016 - { 1017 1017 - return get_unused_fd_flags(0); 1018 1018 - } 1019 1019 - 1020 1020 - EXPORT_SYMBOL(get_unused_fd); 1021 1021 - 1022 966 static void __put_unused_fd(struct files_struct *files, unsigned int fd) 1023 967 { 1024 968 struct fdtable *fdt = files_fdtable(files);

+2 -1

include/linux/file.h

reviewed

··· 34 34 extern struct file *fget_light(unsigned int fd, int *fput_needed); 35 35 extern void set_close_on_exec(unsigned int fd, int flag); 36 36 extern void put_filp(struct file *); 37 37 + extern int alloc_fd(unsigned start, unsigned flags); 37 38 extern int get_unused_fd(void); 38 38 - extern int get_unused_fd_flags(int flags); 39 39 + #define get_unused_fd_flags(flags) alloc_fd(0, (flags)) 39 40 extern void put_unused_fd(unsigned int fd); 40 41 41 42 extern void fd_install(unsigned int fd, struct file *file);