asterinas/kernel/src/syscall/prctl.rs

// SPDX-License-Identifier: MPL-2.0

use super::SyscallReturn;
use crate::{
    prelude::*,
    process::{
        credentials::SecureBits, posix_thread::MAX_THREAD_NAME_LEN, signal::sig_num::SigNum,
    },
};

pub fn sys_prctl(
    option: i32,
    arg2: u64,
    arg3: u64,
    arg4: u64,
    arg5: u64,
    ctx: &Context,
) -> Result<SyscallReturn> {
    let prctl_cmd = PrctlCmd::from_args(option, arg2, arg3, arg4, arg5)?;
    debug!("prctl cmd = {:x?}", prctl_cmd);
    match prctl_cmd {
        PrctlCmd::PR_SET_PDEATHSIG(signum) => {
            ctx.process.set_parent_death_signal(signum);
        }
        PrctlCmd::PR_GET_PDEATHSIG(write_to_addr) => {
            let write_val = {
                match ctx.process.parent_death_signal() {
                    None => 0i32,
                    Some(signum) => signum.as_u8() as i32,
                }
            };

            ctx.user_space().write_val(write_to_addr, &write_val)?;
        }
        PrctlCmd::PR_GET_DUMPABLE => {
            // TODO: when coredump is supported, return the actual value
            return Ok(SyscallReturn::Return(Dumpable::Disable as _));
        }
        PrctlCmd::PR_SET_DUMPABLE(dumpable) => {
            if dumpable != Dumpable::Disable && dumpable != Dumpable::User {
                return_errno!(Errno::EINVAL)
            }

            // TODO: implement coredump
        }
        PrctlCmd::PR_GET_KEEPCAPS => {
            let keep_cap = {
                let credentials = ctx.posix_thread.credentials();
                if credentials.keep_capabilities() {
                    1
                } else {
                    0
                }
            };

            return Ok(SyscallReturn::Return(keep_cap as _));
        }
        PrctlCmd::PR_SET_KEEPCAPS(keep_cap) => {
            if keep_cap > 1 {
                return_errno!(Errno::EINVAL)
            }
            let credentials = ctx.posix_thread.credentials_mut();
            credentials.set_keep_capabilities(keep_cap != 0)?;
        }
        PrctlCmd::PR_GET_NAME(write_to_addr) => {
            let thread_name = ctx.posix_thread.thread_name().lock();
            ctx.user_space().write_bytes(
                write_to_addr,
                &mut VmReader::from(thread_name.name().to_bytes_with_nul()),
            )?;
        }
        PrctlCmd::PR_SET_NAME(read_addr) => {
            let new_thread_name = ctx
                .user_space()
                .read_cstring(read_addr, MAX_THREAD_NAME_LEN)?;
            let mut thread_name = ctx.posix_thread.thread_name().lock();
            thread_name.set_name(&new_thread_name);
        }
        PrctlCmd::PR_SET_CHILD_SUBREAPER(is_set) => {
            let process = ctx.process.as_ref();
            if is_set {
                process.set_child_subreaper();
            } else {
                process.unset_child_subreaper();
            }
        }
        PrctlCmd::PR_GET_CHILD_SUBREAPER(write_addr) => {
            let process = ctx.process.as_ref();
            ctx.user_space()
                .write_val(write_addr, &(process.is_child_subreaper() as u32))?;
        }
        PrctlCmd::PR_GET_SECUREBITS => {
            let credentials = ctx.posix_thread.credentials();
            let securebits = credentials.securebits();
            return Ok(SyscallReturn::Return(securebits.bits() as _));
        }
        PrctlCmd::PR_SET_SECUREBITS(securebits) => {
            let credentials = ctx.posix_thread.credentials_mut();
            credentials.set_securebits(securebits)?;
        }
        _ => todo!(),
    }
    Ok(SyscallReturn::Return(0))
}

const PR_SET_PDEATHSIG: i32 = 1;
const PR_GET_PDEATHSIG: i32 = 2;
const PR_GET_DUMPABLE: i32 = 3;
const PR_SET_DUMPABLE: i32 = 4;
const PR_GET_KEEPCAPS: i32 = 7;
const PR_SET_KEEPCAPS: i32 = 8;
const PR_SET_NAME: i32 = 15;
const PR_GET_NAME: i32 = 16;
const PR_GET_SECUREBITS: i32 = 27;
const PR_SET_SECUREBITS: i32 = 28;
const PR_SET_TIMERSLACK: i32 = 29;
const PR_GET_TIMERSLACK: i32 = 30;
const PR_SET_CHILD_SUBREAPER: i32 = 36;
const PR_GET_CHILD_SUBREAPER: i32 = 37;

#[expect(non_camel_case_types)]
#[derive(Debug, Clone, Copy)]
pub enum PrctlCmd {
    PR_SET_PDEATHSIG(SigNum),
    PR_GET_PDEATHSIG(Vaddr),
    PR_SET_NAME(Vaddr),
    PR_GET_NAME(Vaddr),
    PR_GET_KEEPCAPS,
    PR_SET_KEEPCAPS(u32),
    #[expect(dead_code)]
    PR_SET_TIMERSLACK(u64),
    #[expect(dead_code)]
    PR_GET_TIMERSLACK,
    PR_SET_DUMPABLE(Dumpable),
    PR_GET_DUMPABLE,
    PR_SET_CHILD_SUBREAPER(bool),
    PR_GET_CHILD_SUBREAPER(Vaddr),
    PR_GET_SECUREBITS,
    PR_SET_SECUREBITS(SecureBits),
}

#[repr(u64)]
#[derive(Debug, Clone, Copy, PartialEq, Eq, TryFromInt)]
pub enum Dumpable {
    Disable = 0, /* No setuid dumping */
    User = 1,    /* Dump as user of process */
    Root = 2,    /* Dump as root */
}

impl PrctlCmd {
    fn from_args(option: i32, arg2: u64, _arg3: u64, _arg4: u64, _arg5: u64) -> Result<PrctlCmd> {
        match option {
            PR_SET_PDEATHSIG => {
                let signum = SigNum::try_from(arg2 as u8)?;
                Ok(PrctlCmd::PR_SET_PDEATHSIG(signum))
            }
            PR_GET_PDEATHSIG => Ok(PrctlCmd::PR_GET_PDEATHSIG(arg2 as _)),
            PR_GET_DUMPABLE => Ok(PrctlCmd::PR_GET_DUMPABLE),
            PR_SET_DUMPABLE => Ok(PrctlCmd::PR_SET_DUMPABLE(Dumpable::try_from(arg2)?)),
            PR_SET_NAME => Ok(PrctlCmd::PR_SET_NAME(arg2 as _)),
            PR_GET_NAME => Ok(PrctlCmd::PR_GET_NAME(arg2 as _)),
            PR_GET_TIMERSLACK => todo!(),
            PR_SET_TIMERSLACK => todo!(),
            PR_GET_KEEPCAPS => Ok(PrctlCmd::PR_GET_KEEPCAPS),
            PR_SET_KEEPCAPS => Ok(PrctlCmd::PR_SET_KEEPCAPS(arg2 as _)),
            PR_SET_CHILD_SUBREAPER => Ok(PrctlCmd::PR_SET_CHILD_SUBREAPER(arg2 > 0)),
            PR_GET_CHILD_SUBREAPER => Ok(PrctlCmd::PR_GET_CHILD_SUBREAPER(arg2 as _)),
            PR_GET_SECUREBITS => Ok(PrctlCmd::PR_GET_SECUREBITS),
            PR_SET_SECUREBITS => Ok(PrctlCmd::PR_SET_SECUREBITS(SecureBits::try_from(
                arg2 as u16,
            )?)),
            _ => {
                debug!("prctl cmd number: {}", option);
                return_errno_with_message!(Errno::EINVAL, "unsupported prctl command");
            }
        }
    }
}
License rust and c source files 2024-01-03 03:22:36 +00:00			`// SPDX-License-Identifier: MPL-2.0`

Extract x86-specific syscall dispatch to arch/x86 2024-05-03 20:36:19 +00:00			`use super::SyscallReturn;`
Adjust the format of imports in Asterinas 2024-02-25 14:09:24 +00:00			`use crate::{`
			`prelude::*,`
Support PR_SET/GET_SECUREBITS 2025-11-21 09:27:13 +00:00			`process::{`
			`credentials::SecureBits, posix_thread::MAX_THREAD_NAME_LEN, signal::sig_num::SigNum,`
			`},`
Adjust the format of imports in Asterinas 2024-02-25 14:09:24 +00:00			`};`
Support parent death signal & Refactor do_exit 2024-01-08 03:36:16 +00:00
Allow passing the process `Context` to syscall handlers 2024-08-04 06:37:50 +00:00			`pub fn sys_prctl(`
			`option: i32,`
			`arg2: u64,`
			`arg3: u64,`
			`arg4: u64,`
			`arg5: u64,`
Replace a myriad of `current!` usages via `Context` 2024-08-11 13:35:27 +00:00			`ctx: &Context,`
Allow passing the process `Context` to syscall handlers 2024-08-04 06:37:50 +00:00			`) -> Result<SyscallReturn> {`
add process group 2022-11-10 09:57:39 +00:00			`let prctl_cmd = PrctlCmd::from_args(option, arg2, arg3, arg4, arg5)?;`
support running shell scripts 2023-03-13 07:59:01 +00:00			`debug!("prctl cmd = {:x?}", prctl_cmd);`
add process group 2022-11-10 09:57:39 +00:00			`match prctl_cmd {`
Support parent death signal & Refactor do_exit 2024-01-08 03:36:16 +00:00			`PrctlCmd::PR_SET_PDEATHSIG(signum) => {`
Replace a myriad of `current!` usages via `Context` 2024-08-11 13:35:27 +00:00			`ctx.process.set_parent_death_signal(signum);`
Support parent death signal & Refactor do_exit 2024-01-08 03:36:16 +00:00			`}`
			`PrctlCmd::PR_GET_PDEATHSIG(write_to_addr) => {`
			`let write_val = {`
Replace a myriad of `current!` usages via `Context` 2024-08-11 13:35:27 +00:00			`match ctx.process.parent_death_signal() {`
Support parent death signal & Refactor do_exit 2024-01-08 03:36:16 +00:00			`None => 0i32,`
			`Some(signum) => signum.as_u8() as i32,`
			`}`
			`};`

Rename `get_user_space` to `user_space` 2024-11-13 15:39:10 +00:00			`ctx.user_space().write_val(write_to_addr, &write_val)?;`
Support parent death signal & Refactor do_exit 2024-01-08 03:36:16 +00:00			`}`
Add prctl subcommand PR_GET_DUMPABLE/PR_SET_DUMPABLE 2024-07-15 07:46:23 +00:00			`PrctlCmd::PR_GET_DUMPABLE => {`
			`// TODO: when coredump is supported, return the actual value`
			`return Ok(SyscallReturn::Return(Dumpable::Disable as _));`
			`}`
			`PrctlCmd::PR_SET_DUMPABLE(dumpable) => {`
			`if dumpable != Dumpable::Disable && dumpable != Dumpable::User {`
			`return_errno!(Errno::EINVAL)`
			`}`

			`// TODO: implement coredump`
			`}`
Support prctl(PR_SET_KEEPCAPS/PR_GET_KEEPCAPS) 2024-12-05 07:49:43 +00:00			`PrctlCmd::PR_GET_KEEPCAPS => {`
			`let keep_cap = {`
			`let credentials = ctx.posix_thread.credentials();`
			`if credentials.keep_capabilities() {`
			`1`
			`} else {`
			`0`
			`}`
			`};`

			`return Ok(SyscallReturn::Return(keep_cap as _));`
			`}`
			`PrctlCmd::PR_SET_KEEPCAPS(keep_cap) => {`
			`if keep_cap > 1 {`
			`return_errno!(Errno::EINVAL)`
			`}`
			`let credentials = ctx.posix_thread.credentials_mut();`
Support PR_SET/GET_SECUREBITS 2025-11-21 09:27:13 +00:00			`credentials.set_keep_capabilities(keep_cap != 0)?;`
Support prctl(PR_SET_KEEPCAPS/PR_GET_KEEPCAPS) 2024-12-05 07:49:43 +00:00			`}`
add process group 2022-11-10 09:57:39 +00:00			`PrctlCmd::PR_GET_NAME(write_to_addr) => {`
Replace most of the `current_thread!` usages via `Context` 2024-08-11 14:32:47 +00:00			`let thread_name = ctx.posix_thread.thread_name().lock();`
Cleanup ThreadName related code 2025-09-24 09:13:23 +00:00			`ctx.user_space().write_bytes(`
			`write_to_addr,`
			`&mut VmReader::from(thread_name.name().to_bytes_with_nul()),`
			`)?;`
add process group 2022-11-10 09:57:39 +00:00			`}`
			`PrctlCmd::PR_SET_NAME(read_addr) => {`
Cleanup ThreadName related code 2025-09-24 09:13:23 +00:00			`let new_thread_name = ctx`
			`.user_space()`
			`.read_cstring(read_addr, MAX_THREAD_NAME_LEN)?;`
Replace most of the `current_thread!` usages via `Context` 2024-08-11 14:32:47 +00:00			`let mut thread_name = ctx.posix_thread.thread_name().lock();`
Cleanup ThreadName related code 2025-09-24 09:13:23 +00:00			`thread_name.set_name(&new_thread_name);`
add process group 2022-11-10 09:57:39 +00:00			`}`
Support PR_SET/GET_CHILD_SUBREAPER for sys_prctl 2025-03-03 09:02:08 +00:00			`PrctlCmd::PR_SET_CHILD_SUBREAPER(is_set) => {`
Support CLONE_PARENT flag 2025-09-22 08:02:43 +00:00			`let process = ctx.process.as_ref();`
Support PR_SET/GET_CHILD_SUBREAPER for sys_prctl 2025-03-03 09:02:08 +00:00			`if is_set {`
			`process.set_child_subreaper();`
			`} else {`
			`process.unset_child_subreaper();`
			`}`
			`}`
			`PrctlCmd::PR_GET_CHILD_SUBREAPER(write_addr) => {`
Support CLONE_PARENT flag 2025-09-22 08:02:43 +00:00			`let process = ctx.process.as_ref();`
Support PR_SET/GET_CHILD_SUBREAPER for sys_prctl 2025-03-03 09:02:08 +00:00			`ctx.user_space()`
			`.write_val(write_addr, &(process.is_child_subreaper() as u32))?;`
			`}`
Support PR_SET/GET_SECUREBITS 2025-11-21 09:27:13 +00:00			`PrctlCmd::PR_GET_SECUREBITS => {`
			`let credentials = ctx.posix_thread.credentials();`
			`let securebits = credentials.securebits();`
			`return Ok(SyscallReturn::Return(securebits.bits() as _));`
			`}`
			`PrctlCmd::PR_SET_SECUREBITS(securebits) => {`
			`let credentials = ctx.posix_thread.credentials_mut();`
			`credentials.set_securebits(securebits)?;`
			`}`
add process group 2022-11-10 09:57:39 +00:00			`_ => todo!(),`
			`}`
			`Ok(SyscallReturn::Return(0))`
			`}`

Support parent death signal & Refactor do_exit 2024-01-08 03:36:16 +00:00			`const PR_SET_PDEATHSIG: i32 = 1;`
			`const PR_GET_PDEATHSIG: i32 = 2;`
Add prctl subcommand PR_GET_DUMPABLE/PR_SET_DUMPABLE 2024-07-15 07:46:23 +00:00			`const PR_GET_DUMPABLE: i32 = 3;`
			`const PR_SET_DUMPABLE: i32 = 4;`
Support prctl(PR_SET_KEEPCAPS/PR_GET_KEEPCAPS) 2024-12-05 07:49:43 +00:00			`const PR_GET_KEEPCAPS: i32 = 7;`
			`const PR_SET_KEEPCAPS: i32 = 8;`
add process group 2022-11-10 09:57:39 +00:00			`const PR_SET_NAME: i32 = 15;`
			`const PR_GET_NAME: i32 = 16;`
Support PR_SET/GET_SECUREBITS 2025-11-21 09:27:13 +00:00			`const PR_GET_SECUREBITS: i32 = 27;`
			`const PR_SET_SECUREBITS: i32 = 28;`
add process group 2022-11-10 09:57:39 +00:00			`const PR_SET_TIMERSLACK: i32 = 29;`
			`const PR_GET_TIMERSLACK: i32 = 30;`
Support PR_SET/GET_CHILD_SUBREAPER for sys_prctl 2025-03-03 09:02:08 +00:00			`const PR_SET_CHILD_SUBREAPER: i32 = 36;`
			`const PR_GET_CHILD_SUBREAPER: i32 = 37;`
add process group 2022-11-10 09:57:39 +00:00
Use `#[expect(lint)]`, not `#[allow(lint)]` 2025-01-24 10:06:53 +00:00			`#[expect(non_camel_case_types)]`
add process group 2022-11-10 09:57:39 +00:00			`#[derive(Debug, Clone, Copy)]`
			`pub enum PrctlCmd {`
Support parent death signal & Refactor do_exit 2024-01-08 03:36:16 +00:00			`PR_SET_PDEATHSIG(SigNum),`
			`PR_GET_PDEATHSIG(Vaddr),`
add process group 2022-11-10 09:57:39 +00:00			`PR_SET_NAME(Vaddr),`
			`PR_GET_NAME(Vaddr),`
Support prctl(PR_SET_KEEPCAPS/PR_GET_KEEPCAPS) 2024-12-05 07:49:43 +00:00			`PR_GET_KEEPCAPS,`
			`PR_SET_KEEPCAPS(u32),`
Use `#[expect(lint)]`, not `#[allow(lint)]` 2025-01-24 10:06:53 +00:00			`#[expect(dead_code)]`
add process group 2022-11-10 09:57:39 +00:00			`PR_SET_TIMERSLACK(u64),`
Use `#[expect(lint)]`, not `#[allow(lint)]` 2025-01-24 10:06:53 +00:00			`#[expect(dead_code)]`
add process group 2022-11-10 09:57:39 +00:00			`PR_GET_TIMERSLACK,`
Add prctl subcommand PR_GET_DUMPABLE/PR_SET_DUMPABLE 2024-07-15 07:46:23 +00:00			`PR_SET_DUMPABLE(Dumpable),`
			`PR_GET_DUMPABLE,`
Support PR_SET/GET_CHILD_SUBREAPER for sys_prctl 2025-03-03 09:02:08 +00:00			`PR_SET_CHILD_SUBREAPER(bool),`
			`PR_GET_CHILD_SUBREAPER(Vaddr),`
Support PR_SET/GET_SECUREBITS 2025-11-21 09:27:13 +00:00			`PR_GET_SECUREBITS,`
			`PR_SET_SECUREBITS(SecureBits),`
Add prctl subcommand PR_GET_DUMPABLE/PR_SET_DUMPABLE 2024-07-15 07:46:23 +00:00			`}`

			`#[repr(u64)]`
			`#[derive(Debug, Clone, Copy, PartialEq, Eq, TryFromInt)]`
			`pub enum Dumpable {`
			`Disable = 0, /* No setuid dumping */`
			`User = 1, /* Dump as user of process */`
			`Root = 2, /* Dump as root */`
add process group 2022-11-10 09:57:39 +00:00			`}`

			`impl PrctlCmd {`
Remove module-level allowed lints in system call handlers 2024-08-11 12:17:25 +00:00			`fn from_args(option: i32, arg2: u64, _arg3: u64, _arg4: u64, _arg5: u64) -> Result<PrctlCmd> {`
add process group 2022-11-10 09:57:39 +00:00			`match option {`
Support parent death signal & Refactor do_exit 2024-01-08 03:36:16 +00:00			`PR_SET_PDEATHSIG => {`
			`let signum = SigNum::try_from(arg2 as u8)?;`
			`Ok(PrctlCmd::PR_SET_PDEATHSIG(signum))`
			`}`
			`PR_GET_PDEATHSIG => Ok(PrctlCmd::PR_GET_PDEATHSIG(arg2 as _)),`
Add prctl subcommand PR_GET_DUMPABLE/PR_SET_DUMPABLE 2024-07-15 07:46:23 +00:00			`PR_GET_DUMPABLE => Ok(PrctlCmd::PR_GET_DUMPABLE),`
			`PR_SET_DUMPABLE => Ok(PrctlCmd::PR_SET_DUMPABLE(Dumpable::try_from(arg2)?)),`
add process group 2022-11-10 09:57:39 +00:00			`PR_SET_NAME => Ok(PrctlCmd::PR_SET_NAME(arg2 as _)),`
			`PR_GET_NAME => Ok(PrctlCmd::PR_GET_NAME(arg2 as _)),`
			`PR_GET_TIMERSLACK => todo!(),`
			`PR_SET_TIMERSLACK => todo!(),`
Support prctl(PR_SET_KEEPCAPS/PR_GET_KEEPCAPS) 2024-12-05 07:49:43 +00:00			`PR_GET_KEEPCAPS => Ok(PrctlCmd::PR_GET_KEEPCAPS),`
			`PR_SET_KEEPCAPS => Ok(PrctlCmd::PR_SET_KEEPCAPS(arg2 as _)),`
Support PR_SET/GET_CHILD_SUBREAPER for sys_prctl 2025-03-03 09:02:08 +00:00			`PR_SET_CHILD_SUBREAPER => Ok(PrctlCmd::PR_SET_CHILD_SUBREAPER(arg2 > 0)),`
			`PR_GET_CHILD_SUBREAPER => Ok(PrctlCmd::PR_GET_CHILD_SUBREAPER(arg2 as _)),`
Support PR_SET/GET_SECUREBITS 2025-11-21 09:27:13 +00:00			`PR_GET_SECUREBITS => Ok(PrctlCmd::PR_GET_SECUREBITS),`
			`PR_SET_SECUREBITS => Ok(PrctlCmd::PR_SET_SECUREBITS(SecureBits::try_from(`
			`arg2 as u16,`
			`)?)),`
add process group 2022-11-10 09:57:39 +00:00			`_ => {`
			`debug!("prctl cmd number: {}", option);`
			`return_errno_with_message!(Errno::EINVAL, "unsupported prctl command");`
			`}`
			`}`
			`}`
			`}`