| blob | b3f6f56ce0b154bef0e6f71d667a100ff79020c4 |
1 /* This file handles the EXEC system call. It performs the work as follows:
2 * - see if the permissions allow the file to be executed
3 * - read the header and extract the sizes
4 * - fetch the initial args and environment from the user space
5 * - allocate the memory for the new process
6 * - copy the initial stack from PM to the process
7 * - read in the text and data segments and copy to the process
8 * - take care of setuid and setgid bits
9 * - fix up 'mproc' table
10 * - tell kernel about EXEC
11 * - save offset to initial argc (for ps)
12 *
13 * The entry points into this file are:
14 * pm_exec: perform the EXEC system call
15 */
18 #include <sys/stat.h>
19 #include <minix/callnr.h>
20 #include <minix/endpoint.h>
21 #include <minix/com.h>
22 #include <minix/u64.h>
23 #include <a.out.h>
24 #include <signal.h>
25 #include <stdlib.h>
26 #include <string.h>
27 #include <dirent.h>
28 #include <sys/param.h>
33 #include <minix/vfsif.h>
34 #include <machine/vmparam.h>
35 #include <assert.h>
36 #include <fcntl.h>
39 #include <libexec.h>
41 /* fields only used by elf and in VFS */
51 };
68 /* Array of loaders for different object file formats */
75 };
80 };
82 /*===========================================================================*
83 * lock_exec *
84 *===========================================================================*/
86 {
90 /* First try to get it right off the bat */
102 }
104 /*===========================================================================*
105 * unlock_exec *
106 *===========================================================================*/
108 {
111 }
113 /*===========================================================================*
114 * get_read_vp *
115 *===========================================================================*/
118 {
119 /* Make the executable that we want to exec() into the binary pointed
120 * to by 'fullpath.' This function fills in necessary details in the execi
121 * structure, such as opened vnode. It unlocks and releases the vnode if
122 * it was already there. This makes it easy to change the executable
123 * during the exec(), which is often necessary, by calling this function
124 * more than once. This is specifically necessary when we discover the
125 * executable is actually a script or a dynamically linked executable.
126 */
129 /* Caller wants to switch vp to the file in 'fullpath.'
130 * unlock and put it first if there is any there.
131 */
136 }
138 /* Remember/overwrite the executable name if requested. */
145 }
147 /* Open executable */
157 else
163 /* If caller wants us to, honour suid/guid mode bits. */
165 /* Deal with setuid/setgid executables */
169 }
173 }
174 }
176 /* Read in first chunk of file. */
181 }
183 #define FAILCHECK(expr) if((r=(expr)) != OK) { goto pm_execfinal; } while(0)
184 #define Get_read_vp(e,f,p,s,rs,fp) do { \
185 r=get_read_vp(&e,f,p,s,rs,fp); if(r != OK) { FAILCHECK(r); } \
186 } while(0)
188 /*===========================================================================*
189 * pm_exec *
190 *===========================================================================*/
194 {
195 /* Perform the execve(name, argv, envp) call. The user library builds a
196 * complete stack image, including pointers, args, environ, etc. The stack
197 * is copied to a buffer inside VFS, and then to the new core image.
198 */
200 vir_bytes vsp;
214 /* unset execi values are 0. */
217 /* passed from exec() libc code */
229 /* Fetch the stack from the user before destroying the old core image. */
238 }
240 /* The default is to keep the original user and group IDs */
244 /* Get the exec file name. */
248 /* Get_read_vp will return an opened vn in execi.
249 * if necessary it releases the existing vp so we can
250 * switch after we find out what's inside the file.
251 * It reads the start of the file.
252 */
255 /* If this is a script (i.e. has a #!/interpreter line),
256 * retrieve the name of the interpreter and open that
257 * executable instead.
258 */
260 /* patch_stack will add interpreter name and
261 * args to stack and retrieve the new binary
262 * name into fullpath.
263 */
268 }
270 /* If this is a dynamically linked executable, retrieve
271 * the name of that interpreter in elf_interpreter and open that
272 * executable instead. But open the current executable in an
273 * fd for the current process.
274 */
277 /* Switch the executable vnode to the interpreter */
280 /* The interpreter (loader) needs an fd to the main program,
281 * which is currently in finalexec
282 */
287 }
289 /* ld.so is linked at 0, but it can relocate itself; we
290 * want it higher to trap NULL pointer dereferences.
291 */
294 /* Remember it */
297 /* The executable we need to execute first (loader)
298 * is in elf_interpreter, and has to be in fullpath to
299 * be looked up
300 */
303 }
305 /* callback functions and data */
319 /* Loaded successfully, so no need to try other loaders */
321 }
325 /* Inform PM */
328 /* Save off PC */
331 /* call a stack-setup function if this executable type wants it */
335 /* Patch up stack and copy it from VFS to new core image. */
340 /* Return new stack pointer to caller */
346 /* If after loading the image we're still allowed to run with
347 * setuid or setgid, change credentials now */
350 }
352 /* Remember the new name of the process */
355 pm_execfinal:
359 }
362 }
366 {
379 /* exec() promises stack space. Now find it. */
382 /* find a terminating NULL entry twice: one for argv[], one for envp[]. */
389 }
391 mysp++;
392 }
394 /* Userland provides a fully filled stack frame, with argc, argv, envp
395 * and then all the argv and envp strings; consistent with ELF ABI, except
396 * for a list of Aux vectors that should be between envp points and the
397 * start of the strings.
398 *
399 * It would take some very unpleasant hackery to insert the aux vectors before
400 * the strings, and correct all the pointers, so the exec code in libc makes
401 * space for us first and indicates the fact it did this with this flag.
402 */
408 /* Create extrabytes more space */
417 }
419 /* Ok, what mysp points to now we can use for the aux vectors. */
421 #define AUXINFO(type, value) \
422 { assert((char *) a < (char *) mysp_end); a->a_type = type; a->a_v = value; a++; }
423 #if 0
426 #endif
432 /* This is where we add the AT_NULL */
435 /* Always terminate with AT_NULL */
438 /* Empty space starts here, if any. */
442 vir_bytes userp;
444 /* Make space for the real closing AT_NULL entry. */
447 /* Empty space starts here; we can put the name here. */
451 /* What will the address of the string for the user be */
454 /* Move back to where the AT_NULL is */
458 }
461 }
463 /*===========================================================================*
464 * is_script *
465 *===========================================================================*/
467 {
468 /* Is Interpreted script? */
473 }
475 /*===========================================================================*
476 * patch_stack *
477 *===========================================================================*/
483 {
484 /* Patch the argument vector to include the path name of the script to be
485 * interpreted, and all strings on the #! line. Returns the path name of
486 * the interpreter.
487 */
490 off_t pos;
492 u64_t new_pos;
496 /* Make 'path' the new argv[0]. */
501 /* Issue request */
515 /* Use the 'path' variable for temporary storage */
521 /* Move sp backwards through script[], prepending each string to stack. */
523 /* skip spaces behind argument. */
528 /* Move to the start of the argument. */
535 }
536 }
541 /* Round *stk_bytes up to the size of a pointer for alignment contraints. */
547 }
549 /*===========================================================================*
550 * insert_arg *
551 *===========================================================================*/
556 int replace
557 )
558 {
559 /* Patch the stack so that arg will become argv[0]. Be careful, the stack may
560 * be filled with garbage, although it normally looks like this:
561 * nargs argv[0] ... argv[nargs-1] NULL envp[0] ... NULL
562 * followed by the strings "pointed" to by the argv[i] and the envp[i]. The
563 * pointers are really offsets from the start of stack.
564 * Return true iff the operation succeeded.
565 */
570 /* Prepending arg adds at least one string and a zero byte. */
578 /* Move a1 to the end of argv[0][] (argv[1] if nargs > 1). */
586 }
588 /* stack will grow by offset bytes (or shrink by -offset bytes) */
591 /* Reposition the strings by offset bytes */
597 /* Make space for a new argv[0]. */
601 }
602 /* Now patch up argv[] and envp[] by offset. */
606 }
608 /*===========================================================================*
609 * read_seg *
610 *===========================================================================*/
612 {
613 /*
614 * The byte count on read is usually smaller than the segment count, because
615 * a segment is padded out to a click multiple, and the data segment is only
616 * partially initialized.
617 */
619 u64_t new_pos;
623 /* Make sure that the file is big enough */
632 }
638 }
641 /*===========================================================================*
642 * clo_exec *
643 *===========================================================================*/
645 {
646 /* Files can be marked with the FD_CLOEXEC bit (in fp->fp_cloexec).
647 */
650 /* Check the file desriptors one by one for presence of FD_CLOEXEC. */
654 }
656 /*===========================================================================*
657 * map_header *
658 *===========================================================================*/
660 {
662 u64_t new_pos;
664 off_t pos;
669 /* How much is sensible to read */
679 }
682 }