2 * Copyright (c) 2010 The FreeBSD Foundation
5 * This software was developed by Edward Tomasz Napierala under sponsorship
6 * from the FreeBSD Foundation.
8 * Redistribution and use in source and binary forms, with or without
9 * modification, are permitted provided that the following conditions
11 * 1. Redistributions of source code must retain the above copyright
12 * notice, this list of conditions and the following disclaimer.
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in the
15 * documentation and/or other materials provided with the distribution.
17 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
18 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
19 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
20 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
21 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
22 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
23 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
24 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
25 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
26 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
32 #include <sys/cdefs.h>
33 __FBSDID("$FreeBSD$");
35 #include <sys/param.h>
37 #include <sys/malloc.h>
38 #include <sys/queue.h>
39 #include <sys/refcount.h>
41 #include <sys/kernel.h>
42 #include <sys/limits.h>
43 #include <sys/loginclass.h>
46 #include <sys/racct.h>
48 #include <sys/resourcevar.h>
50 #include <sys/sysent.h>
51 #include <sys/sysproto.h>
52 #include <sys/systm.h>
53 #include <sys/types.h>
54 #include <sys/eventhandler.h>
56 #include <sys/mutex.h>
57 #include <sys/rwlock.h>
59 #include <sys/taskqueue.h>
65 #error "The RCTL option requires the RACCT option"
68 FEATURE(rctl, "Resource Limits");
71 #define HRF_DONT_INHERIT 1
72 #define HRF_DONT_ACCUMULATE 2
74 /* Default buffer size for rctl_get_rules(2). */
75 #define RCTL_DEFAULT_BUFSIZE 4096
76 #define RCTL_LOG_BUFSIZE 128
79 * 'rctl_rule_link' connects a rule with every racct it's related to.
80 * For example, rule 'user:X:openfiles:deny=N/process' is linked
81 * with uidinfo for user X, and to each process of that user.
83 struct rctl_rule_link {
84 LIST_ENTRY(rctl_rule_link) rrl_next;
85 struct rctl_rule *rrl_rule;
94 static struct dict subjectnames[] = {
95 { "process", RCTL_SUBJECT_TYPE_PROCESS },
96 { "user", RCTL_SUBJECT_TYPE_USER },
97 { "loginclass", RCTL_SUBJECT_TYPE_LOGINCLASS },
98 { "jail", RCTL_SUBJECT_TYPE_JAIL },
101 static struct dict resourcenames[] = {
102 { "cputime", RACCT_CPU },
103 { "datasize", RACCT_DATA },
104 { "stacksize", RACCT_STACK },
105 { "coredumpsize", RACCT_CORE },
106 { "memoryuse", RACCT_RSS },
107 { "memorylocked", RACCT_MEMLOCK },
108 { "maxproc", RACCT_NPROC },
109 { "openfiles", RACCT_NOFILE },
110 { "vmemoryuse", RACCT_VMEM },
111 { "pseudoterminals", RACCT_NPTS },
112 { "swapuse", RACCT_SWAP },
113 { "nthr", RACCT_NTHR },
114 { "msgqqueued", RACCT_MSGQQUEUED },
115 { "msgqsize", RACCT_MSGQSIZE },
116 { "nmsgq", RACCT_NMSGQ },
117 { "nsem", RACCT_NSEM },
118 { "nsemop", RACCT_NSEMOP },
119 { "nshm", RACCT_NSHM },
120 { "shmsize", RACCT_SHMSIZE },
121 { "wallclock", RACCT_WALLCLOCK },
124 static struct dict actionnames[] = {
125 { "sighup", RCTL_ACTION_SIGHUP },
126 { "sigint", RCTL_ACTION_SIGINT },
127 { "sigquit", RCTL_ACTION_SIGQUIT },
128 { "sigill", RCTL_ACTION_SIGILL },
129 { "sigtrap", RCTL_ACTION_SIGTRAP },
130 { "sigabrt", RCTL_ACTION_SIGABRT },
131 { "sigemt", RCTL_ACTION_SIGEMT },
132 { "sigfpe", RCTL_ACTION_SIGFPE },
133 { "sigkill", RCTL_ACTION_SIGKILL },
134 { "sigbus", RCTL_ACTION_SIGBUS },
135 { "sigsegv", RCTL_ACTION_SIGSEGV },
136 { "sigsys", RCTL_ACTION_SIGSYS },
137 { "sigpipe", RCTL_ACTION_SIGPIPE },
138 { "sigalrm", RCTL_ACTION_SIGALRM },
139 { "sigterm", RCTL_ACTION_SIGTERM },
140 { "sigurg", RCTL_ACTION_SIGURG },
141 { "sigstop", RCTL_ACTION_SIGSTOP },
142 { "sigtstp", RCTL_ACTION_SIGTSTP },
143 { "sigchld", RCTL_ACTION_SIGCHLD },
144 { "sigttin", RCTL_ACTION_SIGTTIN },
145 { "sigttou", RCTL_ACTION_SIGTTOU },
146 { "sigio", RCTL_ACTION_SIGIO },
147 { "sigxcpu", RCTL_ACTION_SIGXCPU },
148 { "sigxfsz", RCTL_ACTION_SIGXFSZ },
149 { "sigvtalrm", RCTL_ACTION_SIGVTALRM },
150 { "sigprof", RCTL_ACTION_SIGPROF },
151 { "sigwinch", RCTL_ACTION_SIGWINCH },
152 { "siginfo", RCTL_ACTION_SIGINFO },
153 { "sigusr1", RCTL_ACTION_SIGUSR1 },
154 { "sigusr2", RCTL_ACTION_SIGUSR2 },
155 { "sigthr", RCTL_ACTION_SIGTHR },
156 { "deny", RCTL_ACTION_DENY },
157 { "log", RCTL_ACTION_LOG },
158 { "devctl", RCTL_ACTION_DEVCTL },
161 static void rctl_init(void);
162 SYSINIT(rctl, SI_SUB_RACCT, SI_ORDER_FIRST, rctl_init, NULL);
164 static uma_zone_t rctl_rule_link_zone;
165 static uma_zone_t rctl_rule_zone;
166 static struct rwlock rctl_lock;
167 RW_SYSINIT(rctl_lock, &rctl_lock, "RCTL lock");
169 static int rctl_rule_fully_specified(const struct rctl_rule *rule);
170 static void rctl_rule_to_sbuf(struct sbuf *sb, const struct rctl_rule *rule);
172 MALLOC_DEFINE(M_RCTL, "rctl", "Resource Limits");
175 rctl_subject_type_name(int subject)
179 for (i = 0; subjectnames[i].d_name != NULL; i++) {
180 if (subjectnames[i].d_value == subject)
181 return (subjectnames[i].d_name);
184 panic("rctl_subject_type_name: unknown subject type %d", subject);
188 rctl_action_name(int action)
192 for (i = 0; actionnames[i].d_name != NULL; i++) {
193 if (actionnames[i].d_value == action)
194 return (actionnames[i].d_name);
197 panic("rctl_action_name: unknown action %d", action);
201 rctl_resource_name(int resource)
205 for (i = 0; resourcenames[i].d_name != NULL; i++) {
206 if (resourcenames[i].d_value == resource)
207 return (resourcenames[i].d_name);
210 panic("rctl_resource_name: unknown resource %d", resource);
214 * Return the amount of resource that can be allocated by 'p' before
218 rctl_available_resource(const struct proc *p, const struct rctl_rule *rule)
221 int64_t available = INT64_MAX;
222 struct ucred *cred = p->p_ucred;
224 rw_assert(&rctl_lock, RA_LOCKED);
226 resource = rule->rr_resource;
227 switch (rule->rr_per) {
228 case RCTL_SUBJECT_TYPE_PROCESS:
229 available = rule->rr_amount -
230 p->p_racct->r_resources[resource];
232 case RCTL_SUBJECT_TYPE_USER:
233 available = rule->rr_amount -
234 cred->cr_ruidinfo->ui_racct->r_resources[resource];
236 case RCTL_SUBJECT_TYPE_LOGINCLASS:
237 available = rule->rr_amount -
238 cred->cr_loginclass->lc_racct->r_resources[resource];
240 case RCTL_SUBJECT_TYPE_JAIL:
241 available = rule->rr_amount -
242 cred->cr_prison->pr_prison_racct->prr_racct->
243 r_resources[resource];
246 panic("rctl_compute_available: unknown per %d",
254 * Return non-zero if allocating 'amount' by proc 'p' would exceed
255 * resource limit specified by 'rule'.
258 rctl_would_exceed(const struct proc *p, const struct rctl_rule *rule,
263 rw_assert(&rctl_lock, RA_LOCKED);
265 available = rctl_available_resource(p, rule);
266 if (available >= amount)
273 * Check whether the proc 'p' can allocate 'amount' of 'resource' in addition
274 * to what it keeps allocated now. Returns non-zero if the allocation should
275 * be denied, 0 otherwise.
278 rctl_enforce(struct proc *p, int resource, uint64_t amount)
280 struct rctl_rule *rule;
281 struct rctl_rule_link *link;
285 static int curtime = 0;
286 static struct timeval lasttime;
288 rw_rlock(&rctl_lock);
291 * There may be more than one matching rule; go through all of them.
292 * Denial should be done last, after logging and sending signals.
294 LIST_FOREACH(link, &p->p_racct->r_rule_links, rrl_next) {
295 rule = link->rrl_rule;
296 if (rule->rr_resource != resource)
298 if (!rctl_would_exceed(p, rule, amount)) {
299 link->rrl_exceeded = 0;
303 switch (rule->rr_action) {
304 case RCTL_ACTION_DENY:
307 case RCTL_ACTION_LOG:
309 * If rrl_exceeded != 0, it means we've already
310 * logged a warning for this process.
312 if (link->rrl_exceeded != 0)
315 if (!ppsratecheck(&lasttime, &curtime, 10))
318 buf = malloc(RCTL_LOG_BUFSIZE, M_RCTL, M_NOWAIT);
320 printf("rctl_enforce: out of memory\n");
323 sbuf_new(&sb, buf, RCTL_LOG_BUFSIZE, SBUF_FIXEDLEN);
324 rctl_rule_to_sbuf(&sb, rule);
326 printf("rctl: rule \"%s\" matched by pid %d "
327 "(%s), uid %d, jail %s\n", sbuf_data(&sb),
328 p->p_pid, p->p_comm, p->p_ucred->cr_uid,
329 p->p_ucred->cr_prison->pr_prison_racct->prr_name);
332 link->rrl_exceeded = 1;
334 case RCTL_ACTION_DEVCTL:
335 if (link->rrl_exceeded != 0)
338 buf = malloc(RCTL_LOG_BUFSIZE, M_RCTL, M_NOWAIT);
340 printf("rctl_enforce: out of memory\n");
343 sbuf_new(&sb, buf, RCTL_LOG_BUFSIZE, SBUF_FIXEDLEN);
344 sbuf_printf(&sb, "rule=");
345 rctl_rule_to_sbuf(&sb, rule);
346 sbuf_printf(&sb, " pid=%d ruid=%d jail=%s",
347 p->p_pid, p->p_ucred->cr_ruid,
348 p->p_ucred->cr_prison->pr_prison_racct->prr_name);
350 devctl_notify_f("RCTL", "rule", "matched",
351 sbuf_data(&sb), M_NOWAIT);
354 link->rrl_exceeded = 1;
357 if (link->rrl_exceeded != 0)
360 KASSERT(rule->rr_action > 0 &&
361 rule->rr_action <= RCTL_ACTION_SIGNAL_MAX,
362 ("rctl_enforce: unknown action %d",
366 * We're supposed to send a signal, but the process
367 * is not fully initialized yet, probably because we
368 * got called from fork1(). For now just deny the
369 * allocation instead.
371 if (p->p_state != PRS_NORMAL) {
377 * We're using the fact that RCTL_ACTION_SIG* values
378 * are equal to their counterparts from sys/signal.h.
380 kern_psignal(p, rule->rr_action);
381 link->rrl_exceeded = 1;
386 rw_runlock(&rctl_lock);
390 * Return fake error code; the caller should change it
391 * into one proper for the situation - EFSIZ, ENOMEM etc.
400 rctl_get_limit(struct proc *p, int resource)
402 struct rctl_rule *rule;
403 struct rctl_rule_link *link;
404 uint64_t amount = UINT64_MAX;
406 rw_rlock(&rctl_lock);
409 * There may be more than one matching rule; go through all of them.
410 * Denial should be done last, after logging and sending signals.
412 LIST_FOREACH(link, &p->p_racct->r_rule_links, rrl_next) {
413 rule = link->rrl_rule;
414 if (rule->rr_resource != resource)
416 if (rule->rr_action != RCTL_ACTION_DENY)
418 if (rule->rr_amount < amount)
419 amount = rule->rr_amount;
422 rw_runlock(&rctl_lock);
428 rctl_get_available(struct proc *p, int resource)
430 struct rctl_rule *rule;
431 struct rctl_rule_link *link;
432 int64_t available, minavailable, allocated;
434 minavailable = INT64_MAX;
436 rw_rlock(&rctl_lock);
439 * There may be more than one matching rule; go through all of them.
440 * Denial should be done last, after logging and sending signals.
442 LIST_FOREACH(link, &p->p_racct->r_rule_links, rrl_next) {
443 rule = link->rrl_rule;
444 if (rule->rr_resource != resource)
446 if (rule->rr_action != RCTL_ACTION_DENY)
448 available = rctl_available_resource(p, rule);
449 if (available < minavailable)
450 minavailable = available;
453 rw_runlock(&rctl_lock);
456 * XXX: Think about this _hard_.
458 allocated = p->p_racct->r_resources[resource];
459 if (minavailable < INT64_MAX - allocated)
460 minavailable += allocated;
461 if (minavailable < 0)
463 return (minavailable);
467 rctl_rule_matches(const struct rctl_rule *rule, const struct rctl_rule *filter)
470 if (filter->rr_subject_type != RCTL_SUBJECT_TYPE_UNDEFINED) {
471 if (rule->rr_subject_type != filter->rr_subject_type)
474 switch (filter->rr_subject_type) {
475 case RCTL_SUBJECT_TYPE_PROCESS:
476 if (filter->rr_subject.rs_proc != NULL &&
477 rule->rr_subject.rs_proc !=
478 filter->rr_subject.rs_proc)
481 case RCTL_SUBJECT_TYPE_USER:
482 if (filter->rr_subject.rs_uip != NULL &&
483 rule->rr_subject.rs_uip !=
484 filter->rr_subject.rs_uip)
487 case RCTL_SUBJECT_TYPE_LOGINCLASS:
488 if (filter->rr_subject.rs_loginclass != NULL &&
489 rule->rr_subject.rs_loginclass !=
490 filter->rr_subject.rs_loginclass)
493 case RCTL_SUBJECT_TYPE_JAIL:
494 if (filter->rr_subject.rs_prison_racct != NULL &&
495 rule->rr_subject.rs_prison_racct !=
496 filter->rr_subject.rs_prison_racct)
500 panic("rctl_rule_matches: unknown subject type %d",
501 filter->rr_subject_type);
505 if (filter->rr_resource != RACCT_UNDEFINED) {
506 if (rule->rr_resource != filter->rr_resource)
510 if (filter->rr_action != RCTL_ACTION_UNDEFINED) {
511 if (rule->rr_action != filter->rr_action)
515 if (filter->rr_amount != RCTL_AMOUNT_UNDEFINED) {
516 if (rule->rr_amount != filter->rr_amount)
520 if (filter->rr_per != RCTL_SUBJECT_TYPE_UNDEFINED) {
521 if (rule->rr_per != filter->rr_per)
529 str2value(const char *str, int *value, struct dict *table)
536 for (i = 0; table[i].d_name != NULL; i++) {
537 if (strcasecmp(table[i].d_name, str) == 0) {
538 *value = table[i].d_value;
547 str2id(const char *str, id_t *value)
554 *value = strtoul(str, &end, 10);
555 if ((size_t)(end - str) != strlen(str))
562 str2int64(const char *str, int64_t *value)
569 *value = strtoul(str, &end, 10);
570 if ((size_t)(end - str) != strlen(str))
577 * Connect the rule to the racct, increasing refcount for the rule.
580 rctl_racct_add_rule(struct racct *racct, struct rctl_rule *rule)
582 struct rctl_rule_link *link;
584 KASSERT(rctl_rule_fully_specified(rule), ("rule not fully specified"));
586 rctl_rule_acquire(rule);
587 link = uma_zalloc(rctl_rule_link_zone, M_WAITOK);
588 link->rrl_rule = rule;
589 link->rrl_exceeded = 0;
591 rw_wlock(&rctl_lock);
592 LIST_INSERT_HEAD(&racct->r_rule_links, link, rrl_next);
593 rw_wunlock(&rctl_lock);
597 rctl_racct_add_rule_locked(struct racct *racct, struct rctl_rule *rule)
599 struct rctl_rule_link *link;
601 KASSERT(rctl_rule_fully_specified(rule), ("rule not fully specified"));
602 rw_assert(&rctl_lock, RA_WLOCKED);
604 link = uma_zalloc(rctl_rule_link_zone, M_NOWAIT);
607 rctl_rule_acquire(rule);
608 link->rrl_rule = rule;
609 link->rrl_exceeded = 0;
611 LIST_INSERT_HEAD(&racct->r_rule_links, link, rrl_next);
616 * Remove limits for a rules matching the filter and release
617 * the refcounts for the rules, possibly freeing them. Returns
618 * the number of limit structures removed.
621 rctl_racct_remove_rules(struct racct *racct,
622 const struct rctl_rule *filter)
625 struct rctl_rule_link *link, *linktmp;
627 rw_assert(&rctl_lock, RA_WLOCKED);
629 LIST_FOREACH_SAFE(link, &racct->r_rule_links, rrl_next, linktmp) {
630 if (!rctl_rule_matches(link->rrl_rule, filter))
633 LIST_REMOVE(link, rrl_next);
634 rctl_rule_release(link->rrl_rule);
635 uma_zfree(rctl_rule_link_zone, link);
642 rctl_rule_acquire_subject(struct rctl_rule *rule)
645 switch (rule->rr_subject_type) {
646 case RCTL_SUBJECT_TYPE_UNDEFINED:
647 case RCTL_SUBJECT_TYPE_PROCESS:
649 case RCTL_SUBJECT_TYPE_JAIL:
650 if (rule->rr_subject.rs_prison_racct != NULL)
651 prison_racct_hold(rule->rr_subject.rs_prison_racct);
653 case RCTL_SUBJECT_TYPE_USER:
654 if (rule->rr_subject.rs_uip != NULL)
655 uihold(rule->rr_subject.rs_uip);
657 case RCTL_SUBJECT_TYPE_LOGINCLASS:
658 if (rule->rr_subject.rs_loginclass != NULL)
659 loginclass_hold(rule->rr_subject.rs_loginclass);
662 panic("rctl_rule_acquire_subject: unknown subject type %d",
663 rule->rr_subject_type);
668 rctl_rule_release_subject(struct rctl_rule *rule)
671 switch (rule->rr_subject_type) {
672 case RCTL_SUBJECT_TYPE_UNDEFINED:
673 case RCTL_SUBJECT_TYPE_PROCESS:
675 case RCTL_SUBJECT_TYPE_JAIL:
676 if (rule->rr_subject.rs_prison_racct != NULL)
677 prison_racct_free(rule->rr_subject.rs_prison_racct);
679 case RCTL_SUBJECT_TYPE_USER:
680 if (rule->rr_subject.rs_uip != NULL)
681 uifree(rule->rr_subject.rs_uip);
683 case RCTL_SUBJECT_TYPE_LOGINCLASS:
684 if (rule->rr_subject.rs_loginclass != NULL)
685 loginclass_free(rule->rr_subject.rs_loginclass);
688 panic("rctl_rule_release_subject: unknown subject type %d",
689 rule->rr_subject_type);
694 rctl_rule_alloc(int flags)
696 struct rctl_rule *rule;
698 rule = uma_zalloc(rctl_rule_zone, flags);
701 rule->rr_subject_type = RCTL_SUBJECT_TYPE_UNDEFINED;
702 rule->rr_subject.rs_proc = NULL;
703 rule->rr_subject.rs_uip = NULL;
704 rule->rr_subject.rs_loginclass = NULL;
705 rule->rr_subject.rs_prison_racct = NULL;
706 rule->rr_per = RCTL_SUBJECT_TYPE_UNDEFINED;
707 rule->rr_resource = RACCT_UNDEFINED;
708 rule->rr_action = RCTL_ACTION_UNDEFINED;
709 rule->rr_amount = RCTL_AMOUNT_UNDEFINED;
710 refcount_init(&rule->rr_refcount, 1);
716 rctl_rule_duplicate(const struct rctl_rule *rule, int flags)
718 struct rctl_rule *copy;
720 copy = uma_zalloc(rctl_rule_zone, flags);
723 copy->rr_subject_type = rule->rr_subject_type;
724 copy->rr_subject.rs_proc = rule->rr_subject.rs_proc;
725 copy->rr_subject.rs_uip = rule->rr_subject.rs_uip;
726 copy->rr_subject.rs_loginclass = rule->rr_subject.rs_loginclass;
727 copy->rr_subject.rs_prison_racct = rule->rr_subject.rs_prison_racct;
728 copy->rr_per = rule->rr_per;
729 copy->rr_resource = rule->rr_resource;
730 copy->rr_action = rule->rr_action;
731 copy->rr_amount = rule->rr_amount;
732 refcount_init(©->rr_refcount, 1);
733 rctl_rule_acquire_subject(copy);
739 rctl_rule_acquire(struct rctl_rule *rule)
742 KASSERT(rule->rr_refcount > 0, ("rule->rr_refcount <= 0"));
744 refcount_acquire(&rule->rr_refcount);
748 rctl_rule_free(void *context, int pending)
750 struct rctl_rule *rule;
752 rule = (struct rctl_rule *)context;
754 KASSERT(rule->rr_refcount == 0, ("rule->rr_refcount != 0"));
757 * We don't need locking here; rule is guaranteed to be inaccessible.
760 rctl_rule_release_subject(rule);
761 uma_zfree(rctl_rule_zone, rule);
765 rctl_rule_release(struct rctl_rule *rule)
768 KASSERT(rule->rr_refcount > 0, ("rule->rr_refcount <= 0"));
770 if (refcount_release(&rule->rr_refcount)) {
772 * rctl_rule_release() is often called when iterating
773 * over all the uidinfo structures in the system,
774 * holding uihashtbl_lock. Since rctl_rule_free()
775 * might end up calling uifree(), this would lead
776 * to lock recursion. Use taskqueue to avoid this.
778 TASK_INIT(&rule->rr_task, 0, rctl_rule_free, rule);
779 taskqueue_enqueue(taskqueue_thread, &rule->rr_task);
784 rctl_rule_fully_specified(const struct rctl_rule *rule)
787 switch (rule->rr_subject_type) {
788 case RCTL_SUBJECT_TYPE_UNDEFINED:
790 case RCTL_SUBJECT_TYPE_PROCESS:
791 if (rule->rr_subject.rs_proc == NULL)
794 case RCTL_SUBJECT_TYPE_USER:
795 if (rule->rr_subject.rs_uip == NULL)
798 case RCTL_SUBJECT_TYPE_LOGINCLASS:
799 if (rule->rr_subject.rs_loginclass == NULL)
802 case RCTL_SUBJECT_TYPE_JAIL:
803 if (rule->rr_subject.rs_prison_racct == NULL)
807 panic("rctl_rule_fully_specified: unknown subject type %d",
808 rule->rr_subject_type);
810 if (rule->rr_resource == RACCT_UNDEFINED)
812 if (rule->rr_action == RCTL_ACTION_UNDEFINED)
814 if (rule->rr_amount == RCTL_AMOUNT_UNDEFINED)
816 if (rule->rr_per == RCTL_SUBJECT_TYPE_UNDEFINED)
823 rctl_string_to_rule(char *rulestr, struct rctl_rule **rulep)
826 char *subjectstr, *subject_idstr, *resourcestr, *actionstr,
828 struct rctl_rule *rule;
831 rule = rctl_rule_alloc(M_WAITOK);
833 subjectstr = strsep(&rulestr, ":");
834 subject_idstr = strsep(&rulestr, ":");
835 resourcestr = strsep(&rulestr, ":");
836 actionstr = strsep(&rulestr, "=/");
837 amountstr = strsep(&rulestr, "/");
840 if (subjectstr == NULL || subjectstr[0] == '\0')
841 rule->rr_subject_type = RCTL_SUBJECT_TYPE_UNDEFINED;
843 error = str2value(subjectstr, &rule->rr_subject_type, subjectnames);
848 if (subject_idstr == NULL || subject_idstr[0] == '\0') {
849 rule->rr_subject.rs_proc = NULL;
850 rule->rr_subject.rs_uip = NULL;
851 rule->rr_subject.rs_loginclass = NULL;
852 rule->rr_subject.rs_prison_racct = NULL;
854 switch (rule->rr_subject_type) {
855 case RCTL_SUBJECT_TYPE_UNDEFINED:
858 case RCTL_SUBJECT_TYPE_PROCESS:
859 error = str2id(subject_idstr, &id);
862 sx_assert(&allproc_lock, SA_LOCKED);
863 rule->rr_subject.rs_proc = pfind(id);
864 if (rule->rr_subject.rs_proc == NULL) {
868 PROC_UNLOCK(rule->rr_subject.rs_proc);
870 case RCTL_SUBJECT_TYPE_USER:
871 error = str2id(subject_idstr, &id);
874 rule->rr_subject.rs_uip = uifind(id);
876 case RCTL_SUBJECT_TYPE_LOGINCLASS:
877 rule->rr_subject.rs_loginclass =
878 loginclass_find(subject_idstr);
879 if (rule->rr_subject.rs_loginclass == NULL) {
880 error = ENAMETOOLONG;
884 case RCTL_SUBJECT_TYPE_JAIL:
885 rule->rr_subject.rs_prison_racct =
886 prison_racct_find(subject_idstr);
887 if (rule->rr_subject.rs_prison_racct == NULL) {
888 error = ENAMETOOLONG;
893 panic("rctl_string_to_rule: unknown subject type %d",
894 rule->rr_subject_type);
898 if (resourcestr == NULL || resourcestr[0] == '\0')
899 rule->rr_resource = RACCT_UNDEFINED;
901 error = str2value(resourcestr, &rule->rr_resource,
907 if (actionstr == NULL || actionstr[0] == '\0')
908 rule->rr_action = RCTL_ACTION_UNDEFINED;
910 error = str2value(actionstr, &rule->rr_action, actionnames);
915 if (amountstr == NULL || amountstr[0] == '\0')
916 rule->rr_amount = RCTL_AMOUNT_UNDEFINED;
918 error = str2int64(amountstr, &rule->rr_amount);
921 if (RACCT_IS_IN_MILLIONS(rule->rr_resource))
922 rule->rr_amount *= 1000000;
925 if (perstr == NULL || perstr[0] == '\0')
926 rule->rr_per = RCTL_SUBJECT_TYPE_UNDEFINED;
928 error = str2value(perstr, &rule->rr_per, subjectnames);
937 rctl_rule_release(rule);
943 * Link a rule with all the subjects it applies to.
946 rctl_rule_add(struct rctl_rule *rule)
952 struct prison_racct *prr;
953 struct loginclass *lc;
954 struct rctl_rule *rule2;
957 KASSERT(rctl_rule_fully_specified(rule), ("rule not fully specified"));
960 * Some rules just don't make sense. Note that the one below
961 * cannot be rewritten using RACCT_IS_DENIABLE(); the RACCT_PCTCPU,
962 * for example, is not deniable in the racct sense, but the
963 * limit is enforced in a different way, so "deny" rules for %CPU
966 if (rule->rr_action == RCTL_ACTION_DENY &&
967 (rule->rr_resource == RACCT_CPU ||
968 rule->rr_resource == RACCT_WALLCLOCK))
971 if (rule->rr_per == RCTL_SUBJECT_TYPE_PROCESS &&
972 RACCT_IS_SLOPPY(rule->rr_resource))
976 * Make sure there are no duplicated rules. Also, for the "deny"
977 * rules, remove ones differing only by "amount".
979 if (rule->rr_action == RCTL_ACTION_DENY) {
980 rule2 = rctl_rule_duplicate(rule, M_WAITOK);
981 rule2->rr_amount = RCTL_AMOUNT_UNDEFINED;
982 rctl_rule_remove(rule2);
983 rctl_rule_release(rule2);
985 rctl_rule_remove(rule);
987 switch (rule->rr_subject_type) {
988 case RCTL_SUBJECT_TYPE_PROCESS:
989 p = rule->rr_subject.rs_proc;
990 KASSERT(p != NULL, ("rctl_rule_add: NULL proc"));
992 * No resource limits for system processes.
994 if (p->p_flag & P_SYSTEM)
997 rctl_racct_add_rule(p->p_racct, rule);
999 * In case of per-process rule, we don't have anything more
1004 case RCTL_SUBJECT_TYPE_USER:
1005 uip = rule->rr_subject.rs_uip;
1006 KASSERT(uip != NULL, ("rctl_rule_add: NULL uip"));
1007 rctl_racct_add_rule(uip->ui_racct, rule);
1010 case RCTL_SUBJECT_TYPE_LOGINCLASS:
1011 lc = rule->rr_subject.rs_loginclass;
1012 KASSERT(lc != NULL, ("rctl_rule_add: NULL loginclass"));
1013 rctl_racct_add_rule(lc->lc_racct, rule);
1016 case RCTL_SUBJECT_TYPE_JAIL:
1017 prr = rule->rr_subject.rs_prison_racct;
1018 KASSERT(prr != NULL, ("rctl_rule_add: NULL pr"));
1019 rctl_racct_add_rule(prr->prr_racct, rule);
1023 panic("rctl_rule_add: unknown subject type %d",
1024 rule->rr_subject_type);
1028 * Now go through all the processes and add the new rule to the ones
1031 sx_assert(&allproc_lock, SA_LOCKED);
1032 FOREACH_PROC_IN_SYSTEM(p) {
1033 if (p->p_flag & P_SYSTEM)
1036 switch (rule->rr_subject_type) {
1037 case RCTL_SUBJECT_TYPE_USER:
1038 if (cred->cr_uidinfo == rule->rr_subject.rs_uip ||
1039 cred->cr_ruidinfo == rule->rr_subject.rs_uip)
1042 case RCTL_SUBJECT_TYPE_LOGINCLASS:
1043 if (cred->cr_loginclass == rule->rr_subject.rs_loginclass)
1046 case RCTL_SUBJECT_TYPE_JAIL:
1048 for (pr = cred->cr_prison; pr != NULL; pr = pr->pr_parent) {
1049 if (pr->pr_prison_racct == rule->rr_subject.rs_prison_racct) {
1058 panic("rctl_rule_add: unknown subject type %d",
1059 rule->rr_subject_type);
1062 rctl_racct_add_rule(p->p_racct, rule);
1069 rctl_rule_remove_callback(struct racct *racct, void *arg2, void *arg3)
1071 struct rctl_rule *filter = (struct rctl_rule *)arg2;
1074 rw_wlock(&rctl_lock);
1075 found += rctl_racct_remove_rules(racct, filter);
1076 rw_wunlock(&rctl_lock);
1078 *((int *)arg3) += found;
1082 * Remove all rules that match the filter.
1085 rctl_rule_remove(struct rctl_rule *filter)
1090 if (filter->rr_subject_type == RCTL_SUBJECT_TYPE_PROCESS &&
1091 filter->rr_subject.rs_proc != NULL) {
1092 p = filter->rr_subject.rs_proc;
1093 rw_wlock(&rctl_lock);
1094 found = rctl_racct_remove_rules(p->p_racct, filter);
1095 rw_wunlock(&rctl_lock);
1101 loginclass_racct_foreach(rctl_rule_remove_callback, filter,
1103 ui_racct_foreach(rctl_rule_remove_callback, filter,
1105 prison_racct_foreach(rctl_rule_remove_callback, filter,
1108 sx_assert(&allproc_lock, SA_LOCKED);
1109 rw_wlock(&rctl_lock);
1110 FOREACH_PROC_IN_SYSTEM(p) {
1111 found += rctl_racct_remove_rules(p->p_racct, filter);
1113 rw_wunlock(&rctl_lock);
1121 * Appends a rule to the sbuf.
1124 rctl_rule_to_sbuf(struct sbuf *sb, const struct rctl_rule *rule)
1128 sbuf_printf(sb, "%s:", rctl_subject_type_name(rule->rr_subject_type));
1130 switch (rule->rr_subject_type) {
1131 case RCTL_SUBJECT_TYPE_PROCESS:
1132 if (rule->rr_subject.rs_proc == NULL)
1133 sbuf_printf(sb, ":");
1135 sbuf_printf(sb, "%d:",
1136 rule->rr_subject.rs_proc->p_pid);
1138 case RCTL_SUBJECT_TYPE_USER:
1139 if (rule->rr_subject.rs_uip == NULL)
1140 sbuf_printf(sb, ":");
1142 sbuf_printf(sb, "%d:",
1143 rule->rr_subject.rs_uip->ui_uid);
1145 case RCTL_SUBJECT_TYPE_LOGINCLASS:
1146 if (rule->rr_subject.rs_loginclass == NULL)
1147 sbuf_printf(sb, ":");
1149 sbuf_printf(sb, "%s:",
1150 rule->rr_subject.rs_loginclass->lc_name);
1152 case RCTL_SUBJECT_TYPE_JAIL:
1153 if (rule->rr_subject.rs_prison_racct == NULL)
1154 sbuf_printf(sb, ":");
1156 sbuf_printf(sb, "%s:",
1157 rule->rr_subject.rs_prison_racct->prr_name);
1160 panic("rctl_rule_to_sbuf: unknown subject type %d",
1161 rule->rr_subject_type);
1164 amount = rule->rr_amount;
1165 if (amount != RCTL_AMOUNT_UNDEFINED &&
1166 RACCT_IS_IN_MILLIONS(rule->rr_resource))
1169 sbuf_printf(sb, "%s:%s=%jd",
1170 rctl_resource_name(rule->rr_resource),
1171 rctl_action_name(rule->rr_action),
1174 if (rule->rr_per != rule->rr_subject_type)
1175 sbuf_printf(sb, "/%s", rctl_subject_type_name(rule->rr_per));
1179 * Routine used by RCTL syscalls to read in input string.
1182 rctl_read_inbuf(char **inputstr, const char *inbufp, size_t inbuflen)
1190 str = malloc(inbuflen + 1, M_RCTL, M_WAITOK);
1191 error = copyinstr(inbufp, str, inbuflen, NULL);
1203 * Routine used by RCTL syscalls to write out output string.
1206 rctl_write_outbuf(struct sbuf *outputsbuf, char *outbufp, size_t outbuflen)
1210 if (outputsbuf == NULL)
1213 sbuf_finish(outputsbuf);
1214 if (outbuflen < sbuf_len(outputsbuf) + 1) {
1215 sbuf_delete(outputsbuf);
1218 error = copyout(sbuf_data(outputsbuf), outbufp,
1219 sbuf_len(outputsbuf) + 1);
1220 sbuf_delete(outputsbuf);
1224 static struct sbuf *
1225 rctl_racct_to_sbuf(struct racct *racct, int sloppy)
1231 sb = sbuf_new_auto();
1232 for (i = 0; i <= RACCT_MAX; i++) {
1233 if (sloppy == 0 && RACCT_IS_SLOPPY(i))
1235 amount = racct->r_resources[i];
1236 if (RACCT_IS_IN_MILLIONS(i))
1238 sbuf_printf(sb, "%s=%jd,", rctl_resource_name(i), amount);
1240 sbuf_setpos(sb, sbuf_len(sb) - 1);
1245 sys_rctl_get_racct(struct thread *td, struct rctl_get_racct_args *uap)
1249 struct rctl_rule *filter;
1250 struct sbuf *outputsbuf = NULL;
1252 struct uidinfo *uip;
1253 struct loginclass *lc;
1254 struct prison_racct *prr;
1256 error = priv_check(td, PRIV_RCTL_GET_RACCT);
1260 error = rctl_read_inbuf(&inputstr, uap->inbufp, uap->inbuflen);
1264 sx_slock(&allproc_lock);
1265 error = rctl_string_to_rule(inputstr, &filter);
1266 free(inputstr, M_RCTL);
1268 sx_sunlock(&allproc_lock);
1272 switch (filter->rr_subject_type) {
1273 case RCTL_SUBJECT_TYPE_PROCESS:
1274 p = filter->rr_subject.rs_proc;
1279 if (p->p_flag & P_SYSTEM) {
1283 outputsbuf = rctl_racct_to_sbuf(p->p_racct, 0);
1285 case RCTL_SUBJECT_TYPE_USER:
1286 uip = filter->rr_subject.rs_uip;
1291 outputsbuf = rctl_racct_to_sbuf(uip->ui_racct, 1);
1293 case RCTL_SUBJECT_TYPE_LOGINCLASS:
1294 lc = filter->rr_subject.rs_loginclass;
1299 outputsbuf = rctl_racct_to_sbuf(lc->lc_racct, 1);
1301 case RCTL_SUBJECT_TYPE_JAIL:
1302 prr = filter->rr_subject.rs_prison_racct;
1307 outputsbuf = rctl_racct_to_sbuf(prr->prr_racct, 1);
1313 rctl_rule_release(filter);
1314 sx_sunlock(&allproc_lock);
1318 error = rctl_write_outbuf(outputsbuf, uap->outbufp, uap->outbuflen);
1324 rctl_get_rules_callback(struct racct *racct, void *arg2, void *arg3)
1326 struct rctl_rule *filter = (struct rctl_rule *)arg2;
1327 struct rctl_rule_link *link;
1328 struct sbuf *sb = (struct sbuf *)arg3;
1330 rw_rlock(&rctl_lock);
1331 LIST_FOREACH(link, &racct->r_rule_links, rrl_next) {
1332 if (!rctl_rule_matches(link->rrl_rule, filter))
1334 rctl_rule_to_sbuf(sb, link->rrl_rule);
1335 sbuf_printf(sb, ",");
1337 rw_runlock(&rctl_lock);
1341 sys_rctl_get_rules(struct thread *td, struct rctl_get_rules_args *uap)
1344 size_t bufsize = RCTL_DEFAULT_BUFSIZE;
1345 char *inputstr, *buf;
1347 struct rctl_rule *filter;
1348 struct rctl_rule_link *link;
1351 error = priv_check(td, PRIV_RCTL_GET_RULES);
1355 error = rctl_read_inbuf(&inputstr, uap->inbufp, uap->inbuflen);
1359 sx_slock(&allproc_lock);
1360 error = rctl_string_to_rule(inputstr, &filter);
1361 free(inputstr, M_RCTL);
1363 sx_sunlock(&allproc_lock);
1368 buf = malloc(bufsize, M_RCTL, M_WAITOK);
1369 sb = sbuf_new(NULL, buf, bufsize, SBUF_FIXEDLEN);
1370 KASSERT(sb != NULL, ("sbuf_new failed"));
1372 sx_assert(&allproc_lock, SA_LOCKED);
1373 FOREACH_PROC_IN_SYSTEM(p) {
1374 rw_rlock(&rctl_lock);
1375 LIST_FOREACH(link, &p->p_racct->r_rule_links, rrl_next) {
1377 * Non-process rules will be added to the buffer later.
1378 * Adding them here would result in duplicated output.
1380 if (link->rrl_rule->rr_subject_type !=
1381 RCTL_SUBJECT_TYPE_PROCESS)
1383 if (!rctl_rule_matches(link->rrl_rule, filter))
1385 rctl_rule_to_sbuf(sb, link->rrl_rule);
1386 sbuf_printf(sb, ",");
1388 rw_runlock(&rctl_lock);
1391 loginclass_racct_foreach(rctl_get_rules_callback, filter, sb);
1392 ui_racct_foreach(rctl_get_rules_callback, filter, sb);
1393 prison_racct_foreach(rctl_get_rules_callback, filter, sb);
1394 if (sbuf_error(sb) == ENOMEM) {
1402 * Remove trailing ",".
1404 if (sbuf_len(sb) > 0)
1405 sbuf_setpos(sb, sbuf_len(sb) - 1);
1407 error = rctl_write_outbuf(sb, uap->outbufp, uap->outbuflen);
1409 rctl_rule_release(filter);
1410 sx_sunlock(&allproc_lock);
1416 sys_rctl_get_limits(struct thread *td, struct rctl_get_limits_args *uap)
1419 size_t bufsize = RCTL_DEFAULT_BUFSIZE;
1420 char *inputstr, *buf;
1422 struct rctl_rule *filter;
1423 struct rctl_rule_link *link;
1425 error = priv_check(td, PRIV_RCTL_GET_LIMITS);
1429 error = rctl_read_inbuf(&inputstr, uap->inbufp, uap->inbuflen);
1433 sx_slock(&allproc_lock);
1434 error = rctl_string_to_rule(inputstr, &filter);
1435 free(inputstr, M_RCTL);
1437 sx_sunlock(&allproc_lock);
1441 if (filter->rr_subject_type == RCTL_SUBJECT_TYPE_UNDEFINED) {
1442 rctl_rule_release(filter);
1443 sx_sunlock(&allproc_lock);
1446 if (filter->rr_subject_type != RCTL_SUBJECT_TYPE_PROCESS) {
1447 rctl_rule_release(filter);
1448 sx_sunlock(&allproc_lock);
1449 return (EOPNOTSUPP);
1451 if (filter->rr_subject.rs_proc == NULL) {
1452 rctl_rule_release(filter);
1453 sx_sunlock(&allproc_lock);
1458 buf = malloc(bufsize, M_RCTL, M_WAITOK);
1459 sb = sbuf_new(NULL, buf, bufsize, SBUF_FIXEDLEN);
1460 KASSERT(sb != NULL, ("sbuf_new failed"));
1462 rw_rlock(&rctl_lock);
1463 LIST_FOREACH(link, &filter->rr_subject.rs_proc->p_racct->r_rule_links,
1465 rctl_rule_to_sbuf(sb, link->rrl_rule);
1466 sbuf_printf(sb, ",");
1468 rw_runlock(&rctl_lock);
1469 if (sbuf_error(sb) == ENOMEM) {
1477 * Remove trailing ",".
1479 if (sbuf_len(sb) > 0)
1480 sbuf_setpos(sb, sbuf_len(sb) - 1);
1482 error = rctl_write_outbuf(sb, uap->outbufp, uap->outbuflen);
1483 rctl_rule_release(filter);
1484 sx_sunlock(&allproc_lock);
1490 sys_rctl_add_rule(struct thread *td, struct rctl_add_rule_args *uap)
1493 struct rctl_rule *rule;
1496 error = priv_check(td, PRIV_RCTL_ADD_RULE);
1500 error = rctl_read_inbuf(&inputstr, uap->inbufp, uap->inbuflen);
1504 sx_slock(&allproc_lock);
1505 error = rctl_string_to_rule(inputstr, &rule);
1506 free(inputstr, M_RCTL);
1508 sx_sunlock(&allproc_lock);
1512 * The 'per' part of a rule is optional.
1514 if (rule->rr_per == RCTL_SUBJECT_TYPE_UNDEFINED &&
1515 rule->rr_subject_type != RCTL_SUBJECT_TYPE_UNDEFINED)
1516 rule->rr_per = rule->rr_subject_type;
1518 if (!rctl_rule_fully_specified(rule)) {
1523 error = rctl_rule_add(rule);
1526 rctl_rule_release(rule);
1527 sx_sunlock(&allproc_lock);
1532 sys_rctl_remove_rule(struct thread *td, struct rctl_remove_rule_args *uap)
1535 struct rctl_rule *filter;
1538 error = priv_check(td, PRIV_RCTL_REMOVE_RULE);
1542 error = rctl_read_inbuf(&inputstr, uap->inbufp, uap->inbuflen);
1546 sx_slock(&allproc_lock);
1547 error = rctl_string_to_rule(inputstr, &filter);
1548 free(inputstr, M_RCTL);
1550 sx_sunlock(&allproc_lock);
1554 error = rctl_rule_remove(filter);
1555 rctl_rule_release(filter);
1556 sx_sunlock(&allproc_lock);
1562 * Update RCTL rule list after credential change.
1565 rctl_proc_ucred_changed(struct proc *p, struct ucred *newcred)
1568 struct rctl_rule_link *link, *newlink;
1569 struct uidinfo *newuip;
1570 struct loginclass *newlc;
1571 struct prison_racct *newprr;
1572 LIST_HEAD(, rctl_rule_link) newrules;
1574 newuip = newcred->cr_ruidinfo;
1575 newlc = newcred->cr_loginclass;
1576 newprr = newcred->cr_prison->pr_prison_racct;
1578 LIST_INIT(&newrules);
1582 * First, count the rules that apply to the process with new
1586 rw_rlock(&rctl_lock);
1587 LIST_FOREACH(link, &p->p_racct->r_rule_links, rrl_next) {
1588 if (link->rrl_rule->rr_subject_type ==
1589 RCTL_SUBJECT_TYPE_PROCESS)
1592 LIST_FOREACH(link, &newuip->ui_racct->r_rule_links, rrl_next)
1594 LIST_FOREACH(link, &newlc->lc_racct->r_rule_links, rrl_next)
1596 LIST_FOREACH(link, &newprr->prr_racct->r_rule_links, rrl_next)
1598 rw_runlock(&rctl_lock);
1601 * Create temporary list. We've dropped the rctl_lock in order
1604 for (i = 0; i < rulecnt; i++) {
1605 newlink = uma_zalloc(rctl_rule_link_zone, M_WAITOK);
1606 newlink->rrl_rule = NULL;
1607 LIST_INSERT_HEAD(&newrules, newlink, rrl_next);
1610 newlink = LIST_FIRST(&newrules);
1613 * Assign rules to the newly allocated list entries.
1615 rw_wlock(&rctl_lock);
1616 LIST_FOREACH(link, &p->p_racct->r_rule_links, rrl_next) {
1617 if (link->rrl_rule->rr_subject_type ==
1618 RCTL_SUBJECT_TYPE_PROCESS) {
1619 if (newlink == NULL)
1621 rctl_rule_acquire(link->rrl_rule);
1622 newlink->rrl_rule = link->rrl_rule;
1623 newlink = LIST_NEXT(newlink, rrl_next);
1628 LIST_FOREACH(link, &newuip->ui_racct->r_rule_links, rrl_next) {
1629 if (newlink == NULL)
1631 rctl_rule_acquire(link->rrl_rule);
1632 newlink->rrl_rule = link->rrl_rule;
1633 newlink = LIST_NEXT(newlink, rrl_next);
1637 LIST_FOREACH(link, &newlc->lc_racct->r_rule_links, rrl_next) {
1638 if (newlink == NULL)
1640 rctl_rule_acquire(link->rrl_rule);
1641 newlink->rrl_rule = link->rrl_rule;
1642 newlink = LIST_NEXT(newlink, rrl_next);
1646 LIST_FOREACH(link, &newprr->prr_racct->r_rule_links, rrl_next) {
1647 if (newlink == NULL)
1649 rctl_rule_acquire(link->rrl_rule);
1650 newlink->rrl_rule = link->rrl_rule;
1651 newlink = LIST_NEXT(newlink, rrl_next);
1657 * Free the old rule list.
1659 while (!LIST_EMPTY(&p->p_racct->r_rule_links)) {
1660 link = LIST_FIRST(&p->p_racct->r_rule_links);
1661 LIST_REMOVE(link, rrl_next);
1662 rctl_rule_release(link->rrl_rule);
1663 uma_zfree(rctl_rule_link_zone, link);
1667 * Replace lists and we're done.
1669 * XXX: Is there any way to switch list heads instead
1670 * of iterating here?
1672 while (!LIST_EMPTY(&newrules)) {
1673 newlink = LIST_FIRST(&newrules);
1674 LIST_REMOVE(newlink, rrl_next);
1675 LIST_INSERT_HEAD(&p->p_racct->r_rule_links,
1679 rw_wunlock(&rctl_lock);
1685 rw_wunlock(&rctl_lock);
1688 * Rule list changed while we were not holding the rctl_lock.
1689 * Free the new list and try again.
1691 while (!LIST_EMPTY(&newrules)) {
1692 newlink = LIST_FIRST(&newrules);
1693 LIST_REMOVE(newlink, rrl_next);
1694 if (newlink->rrl_rule != NULL)
1695 rctl_rule_release(newlink->rrl_rule);
1696 uma_zfree(rctl_rule_link_zone, newlink);
1703 * Assign RCTL rules to the newly created process.
1706 rctl_proc_fork(struct proc *parent, struct proc *child)
1709 struct rctl_rule_link *link;
1710 struct rctl_rule *rule;
1712 LIST_INIT(&child->p_racct->r_rule_links);
1715 * No limits for kernel processes.
1717 if (child->p_flag & P_SYSTEM)
1721 * Nothing to inherit from P_SYSTEM parents.
1723 if (parent->p_racct == NULL) {
1724 KASSERT(parent->p_flag & P_SYSTEM,
1725 ("non-system process without racct; p = %p", parent));
1729 rw_wlock(&rctl_lock);
1732 * Go through limits applicable to the parent and assign them
1733 * to the child. Rules with 'process' subject have to be duplicated
1734 * in order to make their rr_subject point to the new process.
1736 LIST_FOREACH(link, &parent->p_racct->r_rule_links, rrl_next) {
1737 if (link->rrl_rule->rr_subject_type ==
1738 RCTL_SUBJECT_TYPE_PROCESS) {
1739 rule = rctl_rule_duplicate(link->rrl_rule, M_NOWAIT);
1742 KASSERT(rule->rr_subject.rs_proc == parent,
1743 ("rule->rr_subject.rs_proc != parent"));
1744 rule->rr_subject.rs_proc = child;
1745 error = rctl_racct_add_rule_locked(child->p_racct,
1747 rctl_rule_release(rule);
1751 error = rctl_racct_add_rule_locked(child->p_racct,
1758 rw_wunlock(&rctl_lock);
1762 while (!LIST_EMPTY(&child->p_racct->r_rule_links)) {
1763 link = LIST_FIRST(&child->p_racct->r_rule_links);
1764 LIST_REMOVE(link, rrl_next);
1765 rctl_rule_release(link->rrl_rule);
1766 uma_zfree(rctl_rule_link_zone, link);
1768 rw_wunlock(&rctl_lock);
1773 * Release rules attached to the racct.
1776 rctl_racct_release(struct racct *racct)
1778 struct rctl_rule_link *link;
1780 rw_wlock(&rctl_lock);
1781 while (!LIST_EMPTY(&racct->r_rule_links)) {
1782 link = LIST_FIRST(&racct->r_rule_links);
1783 LIST_REMOVE(link, rrl_next);
1784 rctl_rule_release(link->rrl_rule);
1785 uma_zfree(rctl_rule_link_zone, link);
1787 rw_wunlock(&rctl_lock);
1794 rctl_rule_link_zone = uma_zcreate("rctl_rule_link",
1795 sizeof(struct rctl_rule_link), NULL, NULL, NULL, NULL,
1796 UMA_ALIGN_PTR, UMA_ZONE_NOFREE);
1797 rctl_rule_zone = uma_zcreate("rctl_rule", sizeof(struct rctl_rule),
1798 NULL, NULL, NULL, NULL, UMA_ALIGN_PTR, UMA_ZONE_NOFREE);
1804 sys_rctl_get_racct(struct thread *td, struct rctl_get_racct_args *uap)
1811 sys_rctl_get_rules(struct thread *td, struct rctl_get_rules_args *uap)
1818 sys_rctl_get_limits(struct thread *td, struct rctl_get_limits_args *uap)
1825 sys_rctl_add_rule(struct thread *td, struct rctl_add_rule_args *uap)
1832 sys_rctl_remove_rule(struct thread *td, struct rctl_remove_rule_args *uap)