1eb9aea5aSDavid E. O'Brien /*-
2*4d846d26SWarner Losh * SPDX-License-Identifier: BSD-2-Clause
3718cf2ccSPedro F. Giffuni *
4eb9aea5aSDavid E. O'Brien * Copyright (c) 2011, David E. O'Brien.
5eb9aea5aSDavid E. O'Brien * Copyright (c) 2009-2011, Juniper Networks, Inc.
6e0d84b9eSBryan Drewery * Copyright (c) 2015-2016, EMC Corp.
7eb9aea5aSDavid E. O'Brien * All rights reserved.
8eb9aea5aSDavid E. O'Brien *
9eb9aea5aSDavid E. O'Brien * Redistribution and use in source and binary forms, with or without
10eb9aea5aSDavid E. O'Brien * modification, are permitted provided that the following conditions
11eb9aea5aSDavid E. O'Brien * are met:
12eb9aea5aSDavid E. O'Brien * 1. Redistributions of source code must retain the above copyright
13eb9aea5aSDavid E. O'Brien * notice, this list of conditions and the following disclaimer.
14eb9aea5aSDavid E. O'Brien * 2. Redistributions in binary form must reproduce the above copyright
15eb9aea5aSDavid E. O'Brien * notice, this list of conditions and the following disclaimer in the
16eb9aea5aSDavid E. O'Brien * documentation and/or other materials provided with the distribution.
17eb9aea5aSDavid E. O'Brien *
18eb9aea5aSDavid E. O'Brien * THIS SOFTWARE IS PROVIDED BY JUNIPER NETWORKS AND CONTRIBUTORS ``AS IS'' AND
19eb9aea5aSDavid E. O'Brien * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
20eb9aea5aSDavid E. O'Brien * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
21eb9aea5aSDavid E. O'Brien * ARE DISCLAIMED. IN NO EVENT SHALL JUNIPER NETWORKS OR CONTRIBUTORS BE LIABLE
22eb9aea5aSDavid E. O'Brien * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
23eb9aea5aSDavid E. O'Brien * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
24eb9aea5aSDavid E. O'Brien * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
25eb9aea5aSDavid E. O'Brien * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
26eb9aea5aSDavid E. O'Brien * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
27eb9aea5aSDavid E. O'Brien * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
28eb9aea5aSDavid E. O'Brien * SUCH DAMAGE.
29eb9aea5aSDavid E. O'Brien */
30eb9aea5aSDavid E. O'Brien
31af13de0fSJohn Baldwin #include <sys/param.h>
32eb9aea5aSDavid E. O'Brien #include <sys/file.h>
33eb9aea5aSDavid E. O'Brien #include <sys/systm.h>
34eb9aea5aSDavid E. O'Brien #include <sys/buf.h>
355b83ad4bSBryan Drewery #include <sys/capsicum.h>
36eb9aea5aSDavid E. O'Brien #include <sys/condvar.h>
37eb9aea5aSDavid E. O'Brien #include <sys/conf.h>
38eb9aea5aSDavid E. O'Brien #include <sys/fcntl.h>
39eb9aea5aSDavid E. O'Brien #include <sys/ioccom.h>
40eb9aea5aSDavid E. O'Brien #include <sys/kernel.h>
418183f2e3SBryan Drewery #include <sys/lock.h>
42eb9aea5aSDavid E. O'Brien #include <sys/malloc.h>
43eb9aea5aSDavid E. O'Brien #include <sys/module.h>
44eb9aea5aSDavid E. O'Brien #include <sys/poll.h>
45eb9aea5aSDavid E. O'Brien #include <sys/proc.h>
468183f2e3SBryan Drewery #include <sys/sx.h>
47eb9aea5aSDavid E. O'Brien #include <sys/syscall.h>
48eb9aea5aSDavid E. O'Brien #include <sys/sysent.h>
49eb9aea5aSDavid E. O'Brien #include <sys/sysproto.h>
50eb9aea5aSDavid E. O'Brien #include <sys/uio.h>
51eb9aea5aSDavid E. O'Brien
52eb9aea5aSDavid E. O'Brien #include "filemon.h"
53eb9aea5aSDavid E. O'Brien
546c37a3d4SBryan Drewery #if defined(COMPAT_FREEBSD32)
55eb9aea5aSDavid E. O'Brien #include <compat/freebsd32/freebsd32_syscall.h>
56eb9aea5aSDavid E. O'Brien #include <compat/freebsd32/freebsd32_proto.h>
576c37a3d4SBryan Drewery #include <compat/freebsd32/freebsd32_util.h>
58eb9aea5aSDavid E. O'Brien #endif
59eb9aea5aSDavid E. O'Brien
60eb9aea5aSDavid E. O'Brien static d_close_t filemon_close;
61eb9aea5aSDavid E. O'Brien static d_ioctl_t filemon_ioctl;
62eb9aea5aSDavid E. O'Brien static d_open_t filemon_open;
63eb9aea5aSDavid E. O'Brien
64eb9aea5aSDavid E. O'Brien static struct cdevsw filemon_cdevsw = {
65eb9aea5aSDavid E. O'Brien .d_version = D_VERSION,
66eb9aea5aSDavid E. O'Brien .d_close = filemon_close,
67eb9aea5aSDavid E. O'Brien .d_ioctl = filemon_ioctl,
68eb9aea5aSDavid E. O'Brien .d_open = filemon_open,
69eb9aea5aSDavid E. O'Brien .d_name = "filemon",
70eb9aea5aSDavid E. O'Brien };
71eb9aea5aSDavid E. O'Brien
72eb9aea5aSDavid E. O'Brien MALLOC_DECLARE(M_FILEMON);
73eb9aea5aSDavid E. O'Brien MALLOC_DEFINE(M_FILEMON, "filemon", "File access monitor");
74eb9aea5aSDavid E. O'Brien
75e0d84b9eSBryan Drewery /*
76e0d84b9eSBryan Drewery * The filemon->lock protects several things currently:
77e0d84b9eSBryan Drewery * - fname1/fname2/msgbufr are pre-allocated and used per syscall
78e0d84b9eSBryan Drewery * for logging and copyins rather than stack variables.
79e0d84b9eSBryan Drewery * - Serializing the filemon's log output.
80e0d84b9eSBryan Drewery * - Preventing inheritance or removal of the filemon into proc.p_filemon.
81e0d84b9eSBryan Drewery */
82eb9aea5aSDavid E. O'Brien struct filemon {
83e0d84b9eSBryan Drewery struct sx lock; /* Lock for this filemon. */
84eb9aea5aSDavid E. O'Brien struct file *fp; /* Output file pointer. */
85f14fbe72SBryan Drewery struct ucred *cred; /* Credential of tracer. */
86eb9aea5aSDavid E. O'Brien char fname1[MAXPATHLEN]; /* Temporary filename buffer. */
87eb9aea5aSDavid E. O'Brien char fname2[MAXPATHLEN]; /* Temporary filename buffer. */
88bc0d7285SBryan Drewery char msgbufr[2*MAXPATHLEN + 100]; /* Output message buffer. */
894177d9f7SBryan Drewery int error; /* Log write error, returned on close(2). */
90e0d84b9eSBryan Drewery u_int refcnt; /* Pointer reference count. */
91e0d84b9eSBryan Drewery u_int proccnt; /* Process count. */
92eb9aea5aSDavid E. O'Brien };
93eb9aea5aSDavid E. O'Brien
94eb9aea5aSDavid E. O'Brien static struct cdev *filemon_dev;
95e0d84b9eSBryan Drewery static void filemon_output(struct filemon *filemon, char *msg, size_t len);
96eb9aea5aSDavid E. O'Brien
97e0d84b9eSBryan Drewery static __inline struct filemon *
filemon_acquire(struct filemon * filemon)98e0d84b9eSBryan Drewery filemon_acquire(struct filemon *filemon)
99e0d84b9eSBryan Drewery {
100e0d84b9eSBryan Drewery
101e0d84b9eSBryan Drewery if (filemon != NULL)
102e0d84b9eSBryan Drewery refcount_acquire(&filemon->refcnt);
103e0d84b9eSBryan Drewery return (filemon);
104e0d84b9eSBryan Drewery }
105e0d84b9eSBryan Drewery
106e0d84b9eSBryan Drewery /*
1074d9fbc55SBryan Drewery * Release a reference and free on the last one.
108e0d84b9eSBryan Drewery */
109e0d84b9eSBryan Drewery static void
filemon_release(struct filemon * filemon)110e0d84b9eSBryan Drewery filemon_release(struct filemon *filemon)
111e0d84b9eSBryan Drewery {
112e0d84b9eSBryan Drewery
113e0d84b9eSBryan Drewery if (refcount_release(&filemon->refcnt) == 0)
114e0d84b9eSBryan Drewery return;
115e0d84b9eSBryan Drewery /*
116e0d84b9eSBryan Drewery * There are valid cases of releasing while locked, such as in
117e0d84b9eSBryan Drewery * filemon_untrack_processes, but none which are done where there
118e0d84b9eSBryan Drewery * is not at least 1 reference remaining.
119e0d84b9eSBryan Drewery */
120e0d84b9eSBryan Drewery sx_assert(&filemon->lock, SA_UNLOCKED);
121e0d84b9eSBryan Drewery
122f14fbe72SBryan Drewery if (filemon->cred != NULL)
123f14fbe72SBryan Drewery crfree(filemon->cred);
124e0d84b9eSBryan Drewery sx_destroy(&filemon->lock);
125e0d84b9eSBryan Drewery free(filemon, M_FILEMON);
126e0d84b9eSBryan Drewery }
127e0d84b9eSBryan Drewery
128e0d84b9eSBryan Drewery /*
129e0d84b9eSBryan Drewery * Acquire the proc's p_filemon reference and lock the filemon.
130e0d84b9eSBryan Drewery * The proc's p_filemon may not match this filemon on return.
131e0d84b9eSBryan Drewery */
132e0d84b9eSBryan Drewery static struct filemon *
filemon_proc_get(struct proc * p)133e0d84b9eSBryan Drewery filemon_proc_get(struct proc *p)
134e0d84b9eSBryan Drewery {
135e0d84b9eSBryan Drewery struct filemon *filemon;
136e0d84b9eSBryan Drewery
137f566b25eSBryan Drewery if (p->p_filemon == NULL)
138f566b25eSBryan Drewery return (NULL);
139e0d84b9eSBryan Drewery PROC_LOCK(p);
140e0d84b9eSBryan Drewery filemon = filemon_acquire(p->p_filemon);
141e0d84b9eSBryan Drewery PROC_UNLOCK(p);
142e0d84b9eSBryan Drewery
143e0d84b9eSBryan Drewery if (filemon == NULL)
144e0d84b9eSBryan Drewery return (NULL);
145e0d84b9eSBryan Drewery /*
146e0d84b9eSBryan Drewery * The p->p_filemon may have changed by now. That case is handled
147e0d84b9eSBryan Drewery * by the exit and fork hooks and filemon_attach_proc specially.
148e0d84b9eSBryan Drewery */
149e0d84b9eSBryan Drewery sx_xlock(&filemon->lock);
150e0d84b9eSBryan Drewery return (filemon);
151e0d84b9eSBryan Drewery }
152e0d84b9eSBryan Drewery
153e0d84b9eSBryan Drewery /* Remove and release the filemon on the given process. */
154e0d84b9eSBryan Drewery static void
filemon_proc_drop(struct proc * p)155e0d84b9eSBryan Drewery filemon_proc_drop(struct proc *p)
156e0d84b9eSBryan Drewery {
157e0d84b9eSBryan Drewery struct filemon *filemon;
158e0d84b9eSBryan Drewery
159e0d84b9eSBryan Drewery KASSERT(p->p_filemon != NULL, ("%s: proc %p NULL p_filemon",
160e0d84b9eSBryan Drewery __func__, p));
161e0d84b9eSBryan Drewery sx_assert(&p->p_filemon->lock, SA_XLOCKED);
162e0d84b9eSBryan Drewery PROC_LOCK(p);
163e0d84b9eSBryan Drewery filemon = p->p_filemon;
164e0d84b9eSBryan Drewery p->p_filemon = NULL;
165e0d84b9eSBryan Drewery --filemon->proccnt;
166e0d84b9eSBryan Drewery PROC_UNLOCK(p);
167e0d84b9eSBryan Drewery /*
168e0d84b9eSBryan Drewery * This should not be the last reference yet. filemon_release()
169e0d84b9eSBryan Drewery * cannot be called with filemon locked, which the caller expects
170e0d84b9eSBryan Drewery * will stay locked.
171e0d84b9eSBryan Drewery */
172e0d84b9eSBryan Drewery KASSERT(filemon->refcnt > 1, ("%s: proc %p dropping filemon %p "
173e0d84b9eSBryan Drewery "with last reference", __func__, p, filemon));
174e0d84b9eSBryan Drewery filemon_release(filemon);
175e0d84b9eSBryan Drewery }
176e0d84b9eSBryan Drewery
177e0d84b9eSBryan Drewery /* Unlock and release the filemon. */
178e0d84b9eSBryan Drewery static __inline void
filemon_drop(struct filemon * filemon)179e0d84b9eSBryan Drewery filemon_drop(struct filemon *filemon)
180e0d84b9eSBryan Drewery {
181e0d84b9eSBryan Drewery
182e0d84b9eSBryan Drewery sx_xunlock(&filemon->lock);
183e0d84b9eSBryan Drewery filemon_release(filemon);
184e0d84b9eSBryan Drewery }
185e0d84b9eSBryan Drewery
186eb9aea5aSDavid E. O'Brien #include "filemon_wrapper.c"
187eb9aea5aSDavid E. O'Brien
188eb9aea5aSDavid E. O'Brien static void
filemon_write_header(struct filemon * filemon)18933094a87SBryan Drewery filemon_write_header(struct filemon *filemon)
1902b198fe9SBryan Drewery {
1912b198fe9SBryan Drewery int len;
1922b198fe9SBryan Drewery struct timeval now;
1932b198fe9SBryan Drewery
1942b198fe9SBryan Drewery getmicrotime(&now);
1952b198fe9SBryan Drewery
1962b198fe9SBryan Drewery len = snprintf(filemon->msgbufr, sizeof(filemon->msgbufr),
1972b198fe9SBryan Drewery "# filemon version %d\n# Target pid %d\n# Start %ju.%06ju\nV %d\n",
1982b198fe9SBryan Drewery FILEMON_VERSION, curproc->p_pid, (uintmax_t)now.tv_sec,
1992b198fe9SBryan Drewery (uintmax_t)now.tv_usec, FILEMON_VERSION);
200bc0d7285SBryan Drewery if (len < sizeof(filemon->msgbufr))
2012b198fe9SBryan Drewery filemon_output(filemon, filemon->msgbufr, len);
2022b198fe9SBryan Drewery }
2032b198fe9SBryan Drewery
204e0d84b9eSBryan Drewery /*
205e0d84b9eSBryan Drewery * Invalidate the passed filemon in all processes.
206e0d84b9eSBryan Drewery */
207e0d84b9eSBryan Drewery static void
filemon_untrack_processes(struct filemon * filemon)208e0d84b9eSBryan Drewery filemon_untrack_processes(struct filemon *filemon)
209e0d84b9eSBryan Drewery {
210e0d84b9eSBryan Drewery struct proc *p;
211e0d84b9eSBryan Drewery
212e0d84b9eSBryan Drewery sx_assert(&filemon->lock, SA_XLOCKED);
213e0d84b9eSBryan Drewery
214e0d84b9eSBryan Drewery /* Avoid allproc loop if there is no need. */
215e0d84b9eSBryan Drewery if (filemon->proccnt == 0)
216e0d84b9eSBryan Drewery return;
217e0d84b9eSBryan Drewery
218e0d84b9eSBryan Drewery /*
219e0d84b9eSBryan Drewery * Processes in this list won't go away while here since
220e0d84b9eSBryan Drewery * filemon_event_process_exit() will lock on filemon->lock
221e0d84b9eSBryan Drewery * which we hold.
222e0d84b9eSBryan Drewery */
223e0d84b9eSBryan Drewery sx_slock(&allproc_lock);
224e0d84b9eSBryan Drewery FOREACH_PROC_IN_SYSTEM(p) {
225e0d84b9eSBryan Drewery /*
226e0d84b9eSBryan Drewery * No PROC_LOCK is needed to compare here since it is
227e0d84b9eSBryan Drewery * guaranteed to not change since we have its filemon
228e0d84b9eSBryan Drewery * locked. Everything that changes this p_filemon will
229e0d84b9eSBryan Drewery * be locked on it.
230e0d84b9eSBryan Drewery */
231e0d84b9eSBryan Drewery if (p->p_filemon == filemon)
232e0d84b9eSBryan Drewery filemon_proc_drop(p);
233e0d84b9eSBryan Drewery }
234e0d84b9eSBryan Drewery sx_sunlock(&allproc_lock);
235e0d84b9eSBryan Drewery
236e0d84b9eSBryan Drewery /*
237e0d84b9eSBryan Drewery * It's possible some references were acquired but will be
238e0d84b9eSBryan Drewery * dropped shortly as they are restricted from being
239e0d84b9eSBryan Drewery * inherited. There is at least the reference in cdevpriv remaining.
240e0d84b9eSBryan Drewery */
241e0d84b9eSBryan Drewery KASSERT(filemon->refcnt > 0, ("%s: filemon %p should have "
242e0d84b9eSBryan Drewery "references still.", __func__, filemon));
243e0d84b9eSBryan Drewery KASSERT(filemon->proccnt == 0, ("%s: filemon %p should not have "
244e0d84b9eSBryan Drewery "attached procs still.", __func__, filemon));
245e0d84b9eSBryan Drewery }
246e0d84b9eSBryan Drewery
2474d9fbc55SBryan Drewery /*
2484d9fbc55SBryan Drewery * Close out the log.
2494d9fbc55SBryan Drewery */
2504d9fbc55SBryan Drewery static void
filemon_close_log(struct filemon * filemon)2514d9fbc55SBryan Drewery filemon_close_log(struct filemon *filemon)
2524d9fbc55SBryan Drewery {
2534d9fbc55SBryan Drewery struct file *fp;
2544d9fbc55SBryan Drewery struct timeval now;
2554d9fbc55SBryan Drewery size_t len;
2564d9fbc55SBryan Drewery
2574d9fbc55SBryan Drewery sx_assert(&filemon->lock, SA_XLOCKED);
2584d9fbc55SBryan Drewery if (filemon->fp == NULL)
2594d9fbc55SBryan Drewery return;
2604d9fbc55SBryan Drewery
2614d9fbc55SBryan Drewery getmicrotime(&now);
2624d9fbc55SBryan Drewery
2634d9fbc55SBryan Drewery len = snprintf(filemon->msgbufr,
2644d9fbc55SBryan Drewery sizeof(filemon->msgbufr),
2654d9fbc55SBryan Drewery "# Stop %ju.%06ju\n# Bye bye\n",
2664d9fbc55SBryan Drewery (uintmax_t)now.tv_sec, (uintmax_t)now.tv_usec);
2674d9fbc55SBryan Drewery
268bc0d7285SBryan Drewery if (len < sizeof(filemon->msgbufr))
2694d9fbc55SBryan Drewery filemon_output(filemon, filemon->msgbufr, len);
2704d9fbc55SBryan Drewery fp = filemon->fp;
2714d9fbc55SBryan Drewery filemon->fp = NULL;
2724d9fbc55SBryan Drewery
2734d9fbc55SBryan Drewery sx_xunlock(&filemon->lock);
2744d9fbc55SBryan Drewery fdrop(fp, curthread);
2754d9fbc55SBryan Drewery sx_xlock(&filemon->lock);
2764d9fbc55SBryan Drewery }
277e0d84b9eSBryan Drewery
2784177d9f7SBryan Drewery /*
2794177d9f7SBryan Drewery * The devfs file is being closed. Untrace all processes. It is possible
2804177d9f7SBryan Drewery * filemon_close/close(2) was not called.
2814177d9f7SBryan Drewery */
2822b198fe9SBryan Drewery static void
filemon_dtr(void * data)283eb9aea5aSDavid E. O'Brien filemon_dtr(void *data)
284eb9aea5aSDavid E. O'Brien {
285eb9aea5aSDavid E. O'Brien struct filemon *filemon = data;
286eb9aea5aSDavid E. O'Brien
287e0d84b9eSBryan Drewery if (filemon == NULL)
288e0d84b9eSBryan Drewery return;
289eb9aea5aSDavid E. O'Brien
290e0dae8f1SBryan Drewery sx_xlock(&filemon->lock);
291e0d84b9eSBryan Drewery /*
2924d9fbc55SBryan Drewery * Detach the filemon. It cannot be inherited after this.
293e0d84b9eSBryan Drewery */
294e0d84b9eSBryan Drewery filemon_untrack_processes(filemon);
2954d9fbc55SBryan Drewery filemon_close_log(filemon);
296e0d84b9eSBryan Drewery filemon_drop(filemon);
297eb9aea5aSDavid E. O'Brien }
298e0d84b9eSBryan Drewery
299e0d84b9eSBryan Drewery /* Attach the filemon to the process. */
300e0d84b9eSBryan Drewery static int
filemon_attach_proc(struct filemon * filemon,struct proc * p)301e0d84b9eSBryan Drewery filemon_attach_proc(struct filemon *filemon, struct proc *p)
302e0d84b9eSBryan Drewery {
303e0d84b9eSBryan Drewery struct filemon *filemon2;
304e0d84b9eSBryan Drewery
305e0d84b9eSBryan Drewery sx_assert(&filemon->lock, SA_XLOCKED);
306e0d84b9eSBryan Drewery PROC_LOCK_ASSERT(p, MA_OWNED);
307e0d84b9eSBryan Drewery KASSERT((p->p_flag & P_WEXIT) == 0,
308e0d84b9eSBryan Drewery ("%s: filemon %p attaching to exiting process %p",
309e0d84b9eSBryan Drewery __func__, filemon, p));
310f14fbe72SBryan Drewery KASSERT((p->p_flag & P_INEXEC) == 0,
311f14fbe72SBryan Drewery ("%s: filemon %p attaching to execing process %p",
312f14fbe72SBryan Drewery __func__, filemon, p));
313e0d84b9eSBryan Drewery
314e0d84b9eSBryan Drewery if (p->p_filemon == filemon)
315e0d84b9eSBryan Drewery return (0);
316e0d84b9eSBryan Drewery /*
317e0d84b9eSBryan Drewery * Don't allow truncating other process traces. It is
318e0d84b9eSBryan Drewery * not really intended to trace procs other than curproc
319e0d84b9eSBryan Drewery * anyhow.
320e0d84b9eSBryan Drewery */
321e0d84b9eSBryan Drewery if (p->p_filemon != NULL && p != curproc)
322e0d84b9eSBryan Drewery return (EBUSY);
323e0d84b9eSBryan Drewery /*
324e0d84b9eSBryan Drewery * Historic behavior of filemon has been to let a child initiate
325e0d84b9eSBryan Drewery * tracing on itself and cease existing tracing. Bmake
326e0d84b9eSBryan Drewery * .META + .MAKE relies on this. It is only relevant for attaching to
327e0d84b9eSBryan Drewery * curproc.
328e0d84b9eSBryan Drewery */
329e0d84b9eSBryan Drewery while (p->p_filemon != NULL) {
330e0d84b9eSBryan Drewery PROC_UNLOCK(p);
331e0d84b9eSBryan Drewery sx_xunlock(&filemon->lock);
332e0d84b9eSBryan Drewery while ((filemon2 = filemon_proc_get(p)) != NULL) {
333e0d84b9eSBryan Drewery /* It may have changed. */
334e0d84b9eSBryan Drewery if (p->p_filemon == filemon2)
335e0d84b9eSBryan Drewery filemon_proc_drop(p);
336e0d84b9eSBryan Drewery filemon_drop(filemon2);
337e0d84b9eSBryan Drewery }
338e0d84b9eSBryan Drewery sx_xlock(&filemon->lock);
339e0d84b9eSBryan Drewery PROC_LOCK(p);
340e0d84b9eSBryan Drewery /*
341e0d84b9eSBryan Drewery * It may have been attached to, though unlikely.
342e0d84b9eSBryan Drewery * Try again if needed.
343e0d84b9eSBryan Drewery */
344e0d84b9eSBryan Drewery }
345e0d84b9eSBryan Drewery
346e0d84b9eSBryan Drewery KASSERT(p->p_filemon == NULL,
347e0d84b9eSBryan Drewery ("%s: proc %p didn't detach filemon %p", __func__, p,
348e0d84b9eSBryan Drewery p->p_filemon));
349e0d84b9eSBryan Drewery p->p_filemon = filemon_acquire(filemon);
350e0d84b9eSBryan Drewery ++filemon->proccnt;
351e0d84b9eSBryan Drewery
352e0d84b9eSBryan Drewery return (0);
353eb9aea5aSDavid E. O'Brien }
354eb9aea5aSDavid E. O'Brien
355eb9aea5aSDavid E. O'Brien static int
filemon_ioctl(struct cdev * dev,u_long cmd,caddr_t data,int flag __unused,struct thread * td)356eb9aea5aSDavid E. O'Brien filemon_ioctl(struct cdev *dev, u_long cmd, caddr_t data, int flag __unused,
357eb9aea5aSDavid E. O'Brien struct thread *td)
358eb9aea5aSDavid E. O'Brien {
359eb9aea5aSDavid E. O'Brien struct filemon *filemon;
360b84ed4e7SMark Johnston struct file *fp;
361872ce247SHiroki Sato struct proc *p;
362b84ed4e7SMark Johnston int error;
363eb9aea5aSDavid E. O'Brien
364e8c87a09SBryan Drewery if ((error = devfs_get_cdevpriv((void **) &filemon)) != 0)
365e8c87a09SBryan Drewery return (error);
366eb9aea5aSDavid E. O'Brien
367e0dae8f1SBryan Drewery sx_xlock(&filemon->lock);
36864c368a4SBryan Drewery
369eb9aea5aSDavid E. O'Brien switch (cmd) {
370eb9aea5aSDavid E. O'Brien /* Set the output file descriptor. */
371eb9aea5aSDavid E. O'Brien case FILEMON_SET_FD:
372044fd543SBryan Drewery if (filemon->fp != NULL) {
373044fd543SBryan Drewery error = EEXIST;
374044fd543SBryan Drewery break;
375044fd543SBryan Drewery }
376fac4a7acSBryan Drewery
377b84ed4e7SMark Johnston error = fget_write(td, *(int *)data, &cap_pwrite_rights, &fp);
378b84ed4e7SMark Johnston if (error == 0) {
379b84ed4e7SMark Johnston /*
380b84ed4e7SMark Johnston * The filemon handle may be passed to another process,
381b84ed4e7SMark Johnston * so the underlying file handle must support this.
382b84ed4e7SMark Johnston */
383b84ed4e7SMark Johnston if ((fp->f_ops->fo_flags & DFLAG_PASSABLE) == 0) {
384b84ed4e7SMark Johnston fdrop(fp, curthread);
385b84ed4e7SMark Johnston error = EINVAL;
386b84ed4e7SMark Johnston break;
387b84ed4e7SMark Johnston }
388b84ed4e7SMark Johnston filemon->fp = fp;
389eb9aea5aSDavid E. O'Brien /* Write the file header. */
39033094a87SBryan Drewery filemon_write_header(filemon);
391b84ed4e7SMark Johnston }
392eb9aea5aSDavid E. O'Brien break;
393eb9aea5aSDavid E. O'Brien
394eb9aea5aSDavid E. O'Brien /* Set the monitored process ID. */
395eb9aea5aSDavid E. O'Brien case FILEMON_SET_PID:
396e0d84b9eSBryan Drewery /* Invalidate any existing processes already set. */
397e0d84b9eSBryan Drewery filemon_untrack_processes(filemon);
398e0d84b9eSBryan Drewery
399f14fbe72SBryan Drewery error = pget(*((pid_t *)data),
400f14fbe72SBryan Drewery PGET_CANDEBUG | PGET_NOTWEXIT | PGET_NOTINEXEC, &p);
40189cac24eSHiroki Sato if (error == 0) {
402e0d84b9eSBryan Drewery KASSERT(p->p_filemon != filemon,
403e0d84b9eSBryan Drewery ("%s: proc %p didn't untrack filemon %p",
404e0d84b9eSBryan Drewery __func__, p, filemon));
405e0d84b9eSBryan Drewery error = filemon_attach_proc(filemon, p);
406872ce247SHiroki Sato PROC_UNLOCK(p);
40789cac24eSHiroki Sato }
408eb9aea5aSDavid E. O'Brien break;
409eb9aea5aSDavid E. O'Brien
410eb9aea5aSDavid E. O'Brien default:
411eb9aea5aSDavid E. O'Brien error = EINVAL;
412eb9aea5aSDavid E. O'Brien break;
413eb9aea5aSDavid E. O'Brien }
414eb9aea5aSDavid E. O'Brien
415e0dae8f1SBryan Drewery sx_xunlock(&filemon->lock);
416eb9aea5aSDavid E. O'Brien return (error);
417eb9aea5aSDavid E. O'Brien }
418eb9aea5aSDavid E. O'Brien
419eb9aea5aSDavid E. O'Brien static int
filemon_open(struct cdev * dev,int oflags __unused,int devtype __unused,struct thread * td)420eb9aea5aSDavid E. O'Brien filemon_open(struct cdev *dev, int oflags __unused, int devtype __unused,
421f14fbe72SBryan Drewery struct thread *td)
422eb9aea5aSDavid E. O'Brien {
423e0d84b9eSBryan Drewery int error;
424eb9aea5aSDavid E. O'Brien struct filemon *filemon;
425eb9aea5aSDavid E. O'Brien
426e0d84b9eSBryan Drewery filemon = malloc(sizeof(*filemon), M_FILEMON,
427eb9aea5aSDavid E. O'Brien M_WAITOK | M_ZERO);
4288183f2e3SBryan Drewery sx_init(&filemon->lock, "filemon");
429e0d84b9eSBryan Drewery refcount_init(&filemon->refcnt, 1);
430f14fbe72SBryan Drewery filemon->cred = crhold(td->td_ucred);
431eb9aea5aSDavid E. O'Brien
432e0d84b9eSBryan Drewery error = devfs_set_cdevpriv(filemon, filemon_dtr);
433e0d84b9eSBryan Drewery if (error != 0)
434e0d84b9eSBryan Drewery filemon_release(filemon);
435eb9aea5aSDavid E. O'Brien
436e0d84b9eSBryan Drewery return (error);
437eb9aea5aSDavid E. O'Brien }
438eb9aea5aSDavid E. O'Brien
4394177d9f7SBryan Drewery /* Called on close of last devfs file handle, before filemon_dtr(). */
440eb9aea5aSDavid E. O'Brien static int
filemon_close(struct cdev * dev __unused,int flag __unused,int fmt __unused,struct thread * td __unused)441eb9aea5aSDavid E. O'Brien filemon_close(struct cdev *dev __unused, int flag __unused, int fmt __unused,
442eb9aea5aSDavid E. O'Brien struct thread *td __unused)
443eb9aea5aSDavid E. O'Brien {
4444177d9f7SBryan Drewery struct filemon *filemon;
4454177d9f7SBryan Drewery int error;
446eb9aea5aSDavid E. O'Brien
4474177d9f7SBryan Drewery if ((error = devfs_get_cdevpriv((void **) &filemon)) != 0)
4484177d9f7SBryan Drewery return (error);
4494177d9f7SBryan Drewery
4504177d9f7SBryan Drewery sx_xlock(&filemon->lock);
4514177d9f7SBryan Drewery filemon_close_log(filemon);
4524177d9f7SBryan Drewery error = filemon->error;
4534177d9f7SBryan Drewery sx_xunlock(&filemon->lock);
4544177d9f7SBryan Drewery /*
4554177d9f7SBryan Drewery * Processes are still being traced but won't log anything
4564177d9f7SBryan Drewery * now. After this call returns filemon_dtr() is called which
4574177d9f7SBryan Drewery * will detach processes.
4584177d9f7SBryan Drewery */
4594177d9f7SBryan Drewery
4604177d9f7SBryan Drewery return (error);
461eb9aea5aSDavid E. O'Brien }
462eb9aea5aSDavid E. O'Brien
463eb9aea5aSDavid E. O'Brien static void
filemon_load(void * dummy __unused)464eb9aea5aSDavid E. O'Brien filemon_load(void *dummy __unused)
465eb9aea5aSDavid E. O'Brien {
466eb9aea5aSDavid E. O'Brien
467eb9aea5aSDavid E. O'Brien /* Install the syscall wrappers. */
468eb9aea5aSDavid E. O'Brien filemon_wrapper_install();
469eb9aea5aSDavid E. O'Brien
470eb9aea5aSDavid E. O'Brien filemon_dev = make_dev(&filemon_cdevsw, 0, UID_ROOT, GID_WHEEL, 0666,
471eb9aea5aSDavid E. O'Brien "filemon");
472eb9aea5aSDavid E. O'Brien }
473eb9aea5aSDavid E. O'Brien
474eb9aea5aSDavid E. O'Brien static int
filemon_unload(void)475eb9aea5aSDavid E. O'Brien filemon_unload(void)
476eb9aea5aSDavid E. O'Brien {
477eb9aea5aSDavid E. O'Brien
478eb9aea5aSDavid E. O'Brien destroy_dev(filemon_dev);
479eb9aea5aSDavid E. O'Brien filemon_wrapper_deinstall();
480eb9aea5aSDavid E. O'Brien
481e0d84b9eSBryan Drewery return (0);
482eb9aea5aSDavid E. O'Brien }
483eb9aea5aSDavid E. O'Brien
484eb9aea5aSDavid E. O'Brien static int
filemon_modevent(module_t mod __unused,int type,void * data)485eb9aea5aSDavid E. O'Brien filemon_modevent(module_t mod __unused, int type, void *data)
486eb9aea5aSDavid E. O'Brien {
487eb9aea5aSDavid E. O'Brien int error = 0;
488eb9aea5aSDavid E. O'Brien
489eb9aea5aSDavid E. O'Brien switch (type) {
490eb9aea5aSDavid E. O'Brien case MOD_LOAD:
491eb9aea5aSDavid E. O'Brien filemon_load(data);
492eb9aea5aSDavid E. O'Brien break;
493eb9aea5aSDavid E. O'Brien
494eb9aea5aSDavid E. O'Brien case MOD_UNLOAD:
495eb9aea5aSDavid E. O'Brien error = filemon_unload();
496eb9aea5aSDavid E. O'Brien break;
497eb9aea5aSDavid E. O'Brien
4984039c531SBryan Drewery case MOD_QUIESCE:
4994039c531SBryan Drewery /*
5004039c531SBryan Drewery * The wrapper implementation is unsafe for reliable unload.
5014039c531SBryan Drewery * Require forcing an unload.
5024039c531SBryan Drewery */
5034039c531SBryan Drewery error = EBUSY;
5041e35cdf6SBryan Drewery break;
5054039c531SBryan Drewery
506eb9aea5aSDavid E. O'Brien case MOD_SHUTDOWN:
507eb9aea5aSDavid E. O'Brien break;
508eb9aea5aSDavid E. O'Brien
509eb9aea5aSDavid E. O'Brien default:
510eb9aea5aSDavid E. O'Brien error = EOPNOTSUPP;
511eb9aea5aSDavid E. O'Brien break;
512eb9aea5aSDavid E. O'Brien
513eb9aea5aSDavid E. O'Brien }
514eb9aea5aSDavid E. O'Brien
515eb9aea5aSDavid E. O'Brien return (error);
516eb9aea5aSDavid E. O'Brien }
517eb9aea5aSDavid E. O'Brien
518eb9aea5aSDavid E. O'Brien DEV_MODULE(filemon, filemon_modevent, NULL);
519eb9aea5aSDavid E. O'Brien MODULE_VERSION(filemon, 1);
520