/* Copyright (C) 1995, 1996, 1999, 2000, 2002, 2004, 2010 Free Software Foundation, Inc. Written by Miles Bader and Michael I. Bushnell. This file is part of the GNU Hurd. The GNU Hurd is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2, or (at your option) any later version. The GNU Hurd is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA. */ #include #include #include #include #include #include #include #include #include "fshelp.h" #ifdef HAVE_FILE_EXEC_FILE_NAME #include #endif /* The data passed in the various messages we're interested in. */ struct fsys_startup_request { mach_msg_header_t head; mach_msg_type_t flagsType; int flags; mach_msg_type_t control_portType; mach_port_t control_port; }; struct fsys_startup_reply { mach_msg_header_t head; mach_msg_type_t RetCodeType; kern_return_t RetCode; mach_msg_type_t realnodeType; mach_port_t realnode; }; /* Wait around for an fsys_startup message on the port PORT from the translator on NODE (timing out after TIMEOUT milliseconds), and return a send right for the resulting fsys control port in CONTROL. If a no-senders notification is received on PORT, then it will be assumed that the translator died, and EDIED will be returned. If an error occurs, the error code is returned, otherwise 0. */ static error_t service_fsys_startup (fshelp_open_fn_t underlying_open_fn, void *cookie, mach_port_t port, long timeout, fsys_t *control, task_t task) { /* These should be optimized away to pure integer constants. */ const mach_msg_type_t flagsCheck = { MACH_MSG_TYPE_INTEGER_32, /* msgt_name = */ 32, /* msgt_size = */ 1, /* msgt_number = */ TRUE, /* msgt_inline = */ FALSE, /* msgt_longform = */ FALSE, /* msgt_deallocate = */ 0 /* msgt_unused = */ }; const mach_msg_type_t control_portCheck = { MACH_MSG_TYPE_PORT_SEND, /* msgt_name = */ 32, /* msgt_size = */ 1, /* msgt_number = */ TRUE, /* msgt_inline = */ FALSE, /* msgt_longform = */ FALSE, /* msgt_deallocate = */ 0 /* msgt_unused = */ }; const mach_msg_type_t RetCodeType = { MACH_MSG_TYPE_INTEGER_32, /* msgt_name = */ 32, /* msgt_size = */ 1, /* msgt_number = */ TRUE, /* msgt_inline = */ FALSE, /* msgt_longform = */ FALSE, /* msgt_deallocate = */ 0 /* msgt_unused = */ }; const mach_msg_type_t realnodeType = { -1, /* msgt_name = */ 32, /* msgt_size = */ 1, /* msgt_number = */ TRUE, /* msgt_inline = */ FALSE, /* msgt_longform = */ FALSE, /* msgt_deallocate = */ 0 /* msgt_unused = */ }; /* Return true iff TYPE fails to match CHECK. */ inline int type_check (const mach_msg_type_t *type, const mach_msg_type_t *check) { union { unsigned32_t word; mach_msg_type_t type; } t, c; t.type = *type; c.type = *check; return t.word != c.word; } error_t err; union { mach_msg_header_t head; struct fsys_startup_request startup; } request; struct fsys_startup_reply reply; /* Wait for the fsys_startup message... */ err = mach_msg (&request.head, (MACH_RCV_MSG | MACH_RCV_INTERRUPT | (timeout ? MACH_RCV_TIMEOUT : 0)), 0, sizeof(request), port, timeout, MACH_PORT_NULL); if (err) return err; /* Check whether we actually got a no-senders notification instead. */ if (request.head.msgh_id == MACH_NOTIFY_NO_SENDERS) return EDIED; /* Construct our reply to the fsys_startup rpc. */ reply.head.msgh_size = sizeof(reply); reply.head.msgh_bits = MACH_MSGH_BITS(MACH_MSGH_BITS_REMOTE(request.head.msgh_bits), 0); reply.head.msgh_remote_port = request.head.msgh_remote_port; reply.head.msgh_local_port = MACH_PORT_NULL; reply.head.msgh_seqno = 0; reply.head.msgh_id = request.head.msgh_id + 100; reply.RetCodeType = RetCodeType; if (request.head.msgh_id != 22000) reply.RetCode = MIG_BAD_ID; else if (type_check (&request.startup.control_portType, &control_portCheck) || type_check (&request.startup.flagsType, &flagsCheck)) reply.RetCode = MIG_BAD_ARGUMENTS; else { mach_msg_type_name_t realnode_type; *control = request.startup.control_port; reply.RetCode = (*underlying_open_fn) (request.startup.flags, &reply.realnode, &realnode_type, task, cookie); reply.realnodeType = realnodeType; reply.realnodeType.msgt_name = realnode_type; if (!reply.RetCode && reply.realnode != MACH_PORT_NULL) /* The message can't be simple because of the port. */ reply.head.msgh_bits |= MACH_MSGH_BITS_COMPLEX; } err = mach_msg (&reply.head, MACH_SEND_MSG | MACH_SEND_INTERRUPT, sizeof(reply), 0, request.head.msgh_remote_port, MACH_MSG_TIMEOUT_NONE, MACH_PORT_NULL); if (err == MACH_SEND_INTERRUPTED && reply.realnodeType.msgt_name == MACH_MSG_TYPE_MOVE_SEND) /* For MACH_SEND_INTERRUPTED, we'll have pseudo-received the message and might have to clean up a generated send right. */ mach_port_deallocate (mach_task_self (), reply.realnode); if (reply.RetCode) /* Make our error return be the earlier one. */ err = reply.RetCode; return err; } error_t fshelp_start_translator_long (fshelp_open_fn_t underlying_open_fn, void *cookie, char *name, char *argz, int argz_len, mach_port_t *fds, mach_msg_type_name_t fds_type, int fds_len, mach_port_t *ports, mach_msg_type_name_t ports_type, int ports_len, int *ints, int ints_len, uid_t owner_uid, int timeout, fsys_t *control) { error_t err; file_t executable; mach_port_t bootstrap = MACH_PORT_NULL; mach_port_t task = MACH_PORT_NULL; mach_port_t prev_notify, proc, saveport, childproc; int ports_moved = 0; /* Find the translator itself. Since argz has zero-separated elements, we can use it as a normal string representing the first element. */ executable = file_name_lookup(name, O_EXEC, 0); if (executable == MACH_PORT_NULL) return errno; /* Create a bootstrap port for the translator. */ err = mach_port_allocate(mach_task_self(), MACH_PORT_RIGHT_RECEIVE, &bootstrap); if (err) goto lose; /* Create the task for the translator. */ err = task_create (mach_task_self (), #ifdef KERN_INVALID_LEDGER NULL, 0, /* OSF Mach */ #endif 0, &task); if (err) goto lose; /* XXX 25 is BASEPRI_USER, which isn't exported by the kernel. Ideally, nice values should be used, perhaps with a simple wrapper to convert them to Mach priorities. */ err = task_priority(task, 25, FALSE); if (err) goto lose; /* Designate TASK as our child and set it's owner accordingly. */ proc = getproc (); proc_child (proc, task); err = proc_task2proc (proc, task, &childproc); mach_port_deallocate (mach_task_self (), proc); if (err) goto lose; err = proc_setowner (childproc, owner_uid, owner_uid == (uid_t) -1); mach_port_deallocate (mach_task_self (), childproc); if (err) goto lose; assert (ports_len > INIT_PORT_BOOTSTRAP); switch (ports_type) { case MACH_MSG_TYPE_MAKE_SEND: case MACH_MSG_TYPE_MAKE_SEND_ONCE: break; case MACH_MSG_TYPE_MOVE_SEND: if (ports[INIT_PORT_BOOTSTRAP] != MACH_PORT_NULL) mach_port_deallocate (mach_task_self (), ports[INIT_PORT_BOOTSTRAP]); mach_port_insert_right (mach_task_self (), bootstrap, bootstrap, MACH_MSG_TYPE_MAKE_SEND); break; case MACH_MSG_TYPE_COPY_SEND: mach_port_insert_right (mach_task_self (), bootstrap, bootstrap, MACH_MSG_TYPE_MAKE_SEND); break; default: abort (); } saveport = ports[INIT_PORT_BOOTSTRAP]; ports[INIT_PORT_BOOTSTRAP] = bootstrap; #ifdef HAVE_FILE_EXEC_FILE_NAME /* Try and exec the translator in TASK... */ err = file_exec_file_name (executable, task, EXEC_DEFAULTS, name, argz, argz_len, 0, 0, fds, fds_type, fds_len, ports, ports_type, ports_len, ints, ints_len, 0, 0, 0, 0); /* For backwards compatibility. Just drop it when we kill file_exec. */ if (err == MIG_BAD_ID) #endif err = file_exec (executable, task, EXEC_DEFAULTS, argz, argz_len, 0, 0, fds, fds_type, fds_len, ports, ports_type, ports_len, ints, ints_len, 0, 0, 0, 0); ports_moved = 1; if (ports_type == MACH_MSG_TYPE_COPY_SEND) mach_port_deallocate (mach_task_self (), bootstrap); ports[INIT_PORT_BOOTSTRAP] = saveport; if (err) goto lose_task; /* Ask to be told if TASK dies. */ err = mach_port_request_notification(mach_task_self(), bootstrap, MACH_NOTIFY_NO_SENDERS, 0, bootstrap, MACH_MSG_TYPE_MAKE_SEND_ONCE, &prev_notify); if (err) goto lose_task; /* Ok, cool, we've got a running(?) program, now rendezvous with it if possible using the startup protocol on the bootstrap port... */ err = service_fsys_startup(underlying_open_fn, cookie, bootstrap, timeout, control, task); lose_task: if (err) task_terminate (task); lose: if (!ports_moved) { int i; if (fds_type == MACH_MSG_TYPE_MOVE_SEND) for (i = 0; i < fds_len; i++) mach_port_deallocate (mach_task_self (), fds[i]); if (ports_type == MACH_MSG_TYPE_MOVE_SEND) for (i = 0; i < ports_len; i++) mach_port_deallocate (mach_task_self (), ports[i]); } if (bootstrap != MACH_PORT_NULL) mach_port_destroy(mach_task_self(), bootstrap); if (executable != MACH_PORT_NULL) mach_port_deallocate(mach_task_self(), executable); if (task != MACH_PORT_NULL) mach_port_deallocate(mach_task_self(), task); return err; }