SAFE public projects git trees. - safe/jmp/linux-2.6/blob - fs/ext4/ioctl.c

   1 /*
   2  * linux/fs/ext4/ioctl.c
   3  *
   4  * Copyright (C) 1993, 1994, 1995
   5  * Remy Card (card@masi.ibp.fr)
   6  * Laboratoire MASI - Institut Blaise Pascal
   7  * Universite Pierre et Marie Curie (Paris VI)
   8  */
   9
  10 #include <linux/fs.h>
  11 #include <linux/jbd2.h>
  12 #include <linux/capability.h>
  13 #include <linux/time.h>
  14 #include <linux/compat.h>
  15 #include <linux/smp_lock.h>
  16 #include <linux/mount.h>
  17 #include <linux/file.h>
  18 #include <asm/uaccess.h>
  19 #include "ext4_jbd2.h"
  20 #include "ext4.h"
  21
  22 long ext4_ioctl(struct file *filp, unsigned int cmd, unsigned long arg)
  23 {
  24         struct inode *inode = filp->f_dentry->d_inode;
  25         struct ext4_inode_info *ei = EXT4_I(inode);
  26         unsigned int flags;
  27
  28         ext4_debug("cmd = %u, arg = %lu\n", cmd, arg);
  29
  30         switch (cmd) {
  31         case EXT4_IOC_GETFLAGS:
  32                 ext4_get_inode_flags(ei);
  33                 flags = ei->i_flags & EXT4_FL_USER_VISIBLE;
  34                 return put_user(flags, (int __user *) arg);
  35         case EXT4_IOC_SETFLAGS: {
  36                 handle_t *handle = NULL;
  37                 int err, migrate = 0;
  38                 struct ext4_iloc iloc;
  39                 unsigned int oldflags;
  40                 unsigned int jflag;
  41
  42                 if (!is_owner_or_cap(inode))
  43                         return -EACCES;
  44
  45                 if (get_user(flags, (int __user *) arg))
  46                         return -EFAULT;
  47
  48                 err = mnt_want_write(filp->f_path.mnt);
  49                 if (err)
  50                         return err;
  51
  52                 flags = ext4_mask_flags(inode->i_mode, flags);
  53
  54                 err = -EPERM;
  55                 mutex_lock(&inode->i_mutex);
  56                 /* Is it quota file? Do not allow user to mess with it */
  57                 if (IS_NOQUOTA(inode))
  58                         goto flags_out;
  59
  60                 oldflags = ei->i_flags;
  61
  62                 /* The JOURNAL_DATA flag is modifiable only by root */
  63                 jflag = flags & EXT4_JOURNAL_DATA_FL;
  64
  65                 /*
  66                  * The IMMUTABLE and APPEND_ONLY flags can only be changed by
  67                  * the relevant capability.
  68                  *
  69                  * This test looks nicer. Thanks to Pauline Middelink
  70                  */
  71                 if ((flags ^ oldflags) & (EXT4_APPEND_FL | EXT4_IMMUTABLE_FL)) {
  72                         if (!capable(CAP_LINUX_IMMUTABLE))
  73                                 goto flags_out;
  74                 }
  75
  76                 /*
  77                  * The JOURNAL_DATA flag can only be changed by
  78                  * the relevant capability.
  79                  */
  80                 if ((jflag ^ oldflags) & (EXT4_JOURNAL_DATA_FL)) {
  81                         if (!capable(CAP_SYS_RESOURCE))
  82                                 goto flags_out;
  83                 }
  84                 if (oldflags & EXT4_EXTENTS_FL) {
  85                         /* We don't support clearning extent flags */
  86                         if (!(flags & EXT4_EXTENTS_FL)) {
  87                                 err = -EOPNOTSUPP;
  88                                 goto flags_out;
  89                         }
  90                 } else if (flags & EXT4_EXTENTS_FL) {
  91                         /* migrate the file */
  92                         migrate = 1;
  93                         flags &= ~EXT4_EXTENTS_FL;
  94                 }
  95
  96                 handle = ext4_journal_start(inode, 1);
  97                 if (IS_ERR(handle)) {
  98                         err = PTR_ERR(handle);
  99                         goto flags_out;
 100                 }
 101                 if (IS_SYNC(inode))
 102                         ext4_handle_sync(handle);
 103                 err = ext4_reserve_inode_write(handle, inode, &iloc);
 104                 if (err)
 105                         goto flags_err;
 106
 107                 flags = flags & EXT4_FL_USER_MODIFIABLE;
 108                 flags |= oldflags & ~EXT4_FL_USER_MODIFIABLE;
 109                 ei->i_flags = flags;
 110
 111                 ext4_set_inode_flags(inode);
 112                 inode->i_ctime = ext4_current_time(inode);
 113
 114                 err = ext4_mark_iloc_dirty(handle, inode, &iloc);
 115 flags_err:
 116                 ext4_journal_stop(handle);
 117                 if (err)
 118                         goto flags_out;
 119
 120                 if ((jflag ^ oldflags) & (EXT4_JOURNAL_DATA_FL))
 121                         err = ext4_change_inode_journal_flag(inode, jflag);
 122                 if (err)
 123                         goto flags_out;
 124                 if (migrate)
 125                         err = ext4_ext_migrate(inode);
 126 flags_out:
 127                 mutex_unlock(&inode->i_mutex);
 128                 mnt_drop_write(filp->f_path.mnt);
 129                 return err;
 130         }
 131         case EXT4_IOC_GETVERSION:
 132         case EXT4_IOC_GETVERSION_OLD:
 133                 return put_user(inode->i_generation, (int __user *) arg);
 134         case EXT4_IOC_SETVERSION:
 135         case EXT4_IOC_SETVERSION_OLD: {
 136                 handle_t *handle;
 137                 struct ext4_iloc iloc;
 138                 __u32 generation;
 139                 int err;
 140
 141                 if (!is_owner_or_cap(inode))
 142                         return -EPERM;
 143
 144                 err = mnt_want_write(filp->f_path.mnt);
 145                 if (err)
 146                         return err;
 147                 if (get_user(generation, (int __user *) arg)) {
 148                         err = -EFAULT;
 149                         goto setversion_out;
 150                 }
 151
 152                 handle = ext4_journal_start(inode, 1);
 153                 if (IS_ERR(handle)) {
 154                         err = PTR_ERR(handle);
 155                         goto setversion_out;
 156                 }
 157                 err = ext4_reserve_inode_write(handle, inode, &iloc);
 158                 if (err == 0) {
 159                         inode->i_ctime = ext4_current_time(inode);
 160                         inode->i_generation = generation;
 161                         err = ext4_mark_iloc_dirty(handle, inode, &iloc);
 162                 }
 163                 ext4_journal_stop(handle);
 164 setversion_out:
 165                 mnt_drop_write(filp->f_path.mnt);
 166                 return err;
 167         }
 168 #ifdef CONFIG_JBD2_DEBUG
 169         case EXT4_IOC_WAIT_FOR_READONLY:
 170                 /*
 171                  * This is racy - by the time we're woken up and running,
 172                  * the superblock could be released.  And the module could
 173                  * have been unloaded.  So sue me.
 174                  *
 175                  * Returns 1 if it slept, else zero.
 176                  */
 177                 {
 178                         struct super_block *sb = inode->i_sb;
 179                         DECLARE_WAITQUEUE(wait, current);
 180                         int ret = 0;
 181
 182                         set_current_state(TASK_INTERRUPTIBLE);
 183                         add_wait_queue(&EXT4_SB(sb)->ro_wait_queue, &wait);
 184                         if (timer_pending(&EXT4_SB(sb)->turn_ro_timer)) {
 185                                 schedule();
 186                                 ret = 1;
 187                         }
 188                         remove_wait_queue(&EXT4_SB(sb)->ro_wait_queue, &wait);
 189                         return ret;
 190                 }
 191 #endif
 192         case EXT4_IOC_GROUP_EXTEND: {
 193                 ext4_fsblk_t n_blocks_count;
 194                 struct super_block *sb = inode->i_sb;
 195                 int err, err2=0;
 196
 197                 if (!capable(CAP_SYS_RESOURCE))
 198                         return -EPERM;
 199
 200                 if (get_user(n_blocks_count, (__u32 __user *)arg))
 201                         return -EFAULT;
 202
 203                 err = mnt_want_write(filp->f_path.mnt);
 204                 if (err)
 205                         return err;
 206
 207                 err = ext4_group_extend(sb, EXT4_SB(sb)->s_es, n_blocks_count);
 208                 if (EXT4_SB(sb)->s_journal) {
 209                         jbd2_journal_lock_updates(EXT4_SB(sb)->s_journal);
 210                         err2 = jbd2_journal_flush(EXT4_SB(sb)->s_journal);
 211                         jbd2_journal_unlock_updates(EXT4_SB(sb)->s_journal);
 212                 }
 213                 if (err == 0)
 214                         err = err2;
 215                 mnt_drop_write(filp->f_path.mnt);
 216
 217                 return err;
 218         }
 219
 220         case EXT4_IOC_MOVE_EXT: {
 221                 struct move_extent me;
 222                 struct file *donor_filp;
 223                 int err;
 224
 225                 if (copy_from_user(&me,
 226                         (struct move_extent __user *)arg, sizeof(me)))
 227                         return -EFAULT;
 228
 229                 donor_filp = fget(me.donor_fd);
 230                 if (!donor_filp)
 231                         return -EBADF;
 232
 233                 if (!capable(CAP_DAC_OVERRIDE)) {
 234                         if ((current->real_cred->fsuid != inode->i_uid) ||
 235                                 !(inode->i_mode & S_IRUSR) ||
 236                                 !(donor_filp->f_dentry->d_inode->i_mode &
 237                                 S_IRUSR)) {
 238                                 fput(donor_filp);
 239                                 return -EACCES;
 240                         }
 241                 }
 242
 243                 err = ext4_move_extents(filp, donor_filp, me.orig_start,
 244                                         me.donor_start, me.len, &me.moved_len);
 245                 fput(donor_filp);
 246
 247                 if (!err)
 248                         if (copy_to_user((struct move_extent *)arg,
 249                                 &me, sizeof(me)))
 250                                 return -EFAULT;
 251                 return err;
 252         }
 253
 254         case EXT4_IOC_GROUP_ADD: {
 255                 struct ext4_new_group_data input;
 256                 struct super_block *sb = inode->i_sb;
 257                 int err, err2=0;
 258
 259                 if (!capable(CAP_SYS_RESOURCE))
 260                         return -EPERM;
 261
 262                 if (copy_from_user(&input, (struct ext4_new_group_input __user *)arg,
 263                                 sizeof(input)))
 264                         return -EFAULT;
 265
 266                 err = mnt_want_write(filp->f_path.mnt);
 267                 if (err)
 268                         return err;
 269
 270                 err = ext4_group_add(sb, &input);
 271                 if (EXT4_SB(sb)->s_journal) {
 272                         jbd2_journal_lock_updates(EXT4_SB(sb)->s_journal);
 273                         err2 = jbd2_journal_flush(EXT4_SB(sb)->s_journal);
 274                         jbd2_journal_unlock_updates(EXT4_SB(sb)->s_journal);
 275                 }
 276                 if (err == 0)
 277                         err = err2;
 278                 mnt_drop_write(filp->f_path.mnt);
 279
 280                 return err;
 281         }
 282
 283         case EXT4_IOC_MIGRATE:
 284         {
 285                 int err;
 286                 if (!is_owner_or_cap(inode))
 287                         return -EACCES;
 288
 289                 err = mnt_want_write(filp->f_path.mnt);
 290                 if (err)
 291                         return err;
 292                 /*
 293                  * inode_mutex prevent write and truncate on the file.
 294                  * Read still goes through. We take i_data_sem in
 295                  * ext4_ext_swap_inode_data before we switch the
 296                  * inode format to prevent read.
 297                  */
 298                 mutex_lock(&(inode->i_mutex));
 299                 err = ext4_ext_migrate(inode);
 300                 mutex_unlock(&(inode->i_mutex));
 301                 mnt_drop_write(filp->f_path.mnt);
 302                 return err;
 303         }
 304
 305         case EXT4_IOC_ALLOC_DA_BLKS:
 306         {
 307                 int err;
 308                 if (!is_owner_or_cap(inode))
 309                         return -EACCES;
 310
 311                 err = mnt_want_write(filp->f_path.mnt);
 312                 if (err)
 313                         return err;
 314                 err = ext4_alloc_da_blocks(inode);
 315                 mnt_drop_write(filp->f_path.mnt);
 316                 return err;
 317         }
 318
 319         default:
 320                 return -ENOTTY;
 321         }
 322 }
 323
 324 #ifdef CONFIG_COMPAT
 325 long ext4_compat_ioctl(struct file *file, unsigned int cmd, unsigned long arg)
 326 {
 327         /* These are just misnamed, they actually get/put from/to user an int */
 328         switch (cmd) {
 329         case EXT4_IOC32_GETFLAGS:
 330                 cmd = EXT4_IOC_GETFLAGS;
 331                 break;
 332         case EXT4_IOC32_SETFLAGS:
 333                 cmd = EXT4_IOC_SETFLAGS;
 334                 break;
 335         case EXT4_IOC32_GETVERSION:
 336                 cmd = EXT4_IOC_GETVERSION;
 337                 break;
 338         case EXT4_IOC32_SETVERSION:
 339                 cmd = EXT4_IOC_SETVERSION;
 340                 break;
 341         case EXT4_IOC32_GROUP_EXTEND:
 342                 cmd = EXT4_IOC_GROUP_EXTEND;
 343                 break;
 344         case EXT4_IOC32_GETVERSION_OLD:
 345                 cmd = EXT4_IOC_GETVERSION_OLD;
 346                 break;
 347         case EXT4_IOC32_SETVERSION_OLD:
 348                 cmd = EXT4_IOC_SETVERSION_OLD;
 349                 break;
 350 #ifdef CONFIG_JBD2_DEBUG
 351         case EXT4_IOC32_WAIT_FOR_READONLY:
 352                 cmd = EXT4_IOC_WAIT_FOR_READONLY;
 353                 break;
 354 #endif
 355         case EXT4_IOC32_GETRSVSZ:
 356                 cmd = EXT4_IOC_GETRSVSZ;
 357                 break;
 358         case EXT4_IOC32_SETRSVSZ:
 359                 cmd = EXT4_IOC_SETRSVSZ;
 360                 break;
 361         case EXT4_IOC_GROUP_ADD:
 362                 break;
 363         default:
 364                 return -ENOIOCTLCMD;
 365         }
 366         return ext4_ioctl(file, cmd, (unsigned long) compat_ptr(arg));
 367 }
 368 #endif