Greg Kroah-Hartman | b244131 | 2017-11-01 15:07:57 +0100 | [diff] [blame] | 1 | /* SPDX-License-Identifier: GPL-2.0 */ |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 2 | #ifndef _LINUX_BINFMTS_H |
| 3 | #define _LINUX_BINFMTS_H |
| 4 | |
Heiko Carstens | 96e02d1 | 2012-02-04 10:47:10 +0100 | [diff] [blame] | 5 | #include <linux/sched.h> |
Al Viro | 282124d | 2012-09-30 13:20:09 -0400 | [diff] [blame] | 6 | #include <linux/unistd.h> |
Al Viro | 826eba4 | 2012-08-03 12:14:44 +0400 | [diff] [blame] | 7 | #include <asm/exec.h> |
David Howells | 607ca46 | 2012-10-13 10:46:48 +0100 | [diff] [blame] | 8 | #include <uapi/linux/binfmts.h> |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 9 | |
Ingo Molnar | 2885175 | 2017-02-05 14:24:31 +0100 | [diff] [blame] | 10 | struct filename; |
| 11 | |
Dan Aloni | 71ce92f | 2007-05-16 22:11:16 -0700 | [diff] [blame] | 12 | #define CORENAME_MAX_SIZE 128 |
| 13 | |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 14 | /* |
| 15 | * This structure is used to hold the arguments that are used when loading binaries. |
| 16 | */ |
Mikael Pettersson | f670d0e | 2011-01-12 17:00:02 -0800 | [diff] [blame] | 17 | struct linux_binprm { |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 18 | char buf[BINPRM_BUF_SIZE]; |
Ollie Wild | b6a2fea | 2007-07-19 01:48:16 -0700 | [diff] [blame] | 19 | #ifdef CONFIG_MMU |
| 20 | struct vm_area_struct *vma; |
Oleg Nesterov | 3c77f84 | 2010-11-30 20:55:34 +0100 | [diff] [blame] | 21 | unsigned long vma_pages; |
Ollie Wild | b6a2fea | 2007-07-19 01:48:16 -0700 | [diff] [blame] | 22 | #else |
| 23 | # define MAX_ARG_PAGES 32 |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 24 | struct page *page[MAX_ARG_PAGES]; |
Ollie Wild | b6a2fea | 2007-07-19 01:48:16 -0700 | [diff] [blame] | 25 | #endif |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 26 | struct mm_struct *mm; |
| 27 | unsigned long p; /* current top of mem */ |
Kirill A. Shutemov | a50b0aa | 2009-04-02 16:58:29 -0700 | [diff] [blame] | 28 | unsigned int |
Kees Cook | ddb4a14 | 2017-07-18 15:25:23 -0700 | [diff] [blame] | 29 | /* |
| 30 | * True after the bprm_set_creds hook has been called once |
| 31 | * (multiple calls can be made via prepare_binprm() for |
| 32 | * binfmt_script/misc). |
| 33 | */ |
| 34 | called_set_creds:1, |
Kees Cook | c425e18 | 2017-07-18 15:25:22 -0700 | [diff] [blame] | 35 | /* |
Kees Cook | 46d98eb | 2017-07-18 15:25:27 -0700 | [diff] [blame] | 36 | * True if most recent call to the commoncaps bprm_set_creds |
| 37 | * hook (due to multiple prepare_binprm() calls from the |
| 38 | * binfmt_script/misc handlers) resulted in elevated |
| 39 | * privileges. |
| 40 | */ |
| 41 | cap_elevated:1, |
| 42 | /* |
Kees Cook | c425e18 | 2017-07-18 15:25:22 -0700 | [diff] [blame] | 43 | * Set by bprm_set_creds hook to indicate a privilege-gaining |
| 44 | * exec has happened. Used to sanitize execution environment |
| 45 | * and to set AT_SECURE auxv for glibc. |
| 46 | */ |
| 47 | secureexec:1; |
Kirill A. Shutemov | 5311248 | 2008-10-15 22:02:37 -0700 | [diff] [blame] | 48 | #ifdef __alpha__ |
| 49 | unsigned int taso:1; |
| 50 | #endif |
Oleg Nesterov | 131b2f9 | 2013-09-11 14:24:39 -0700 | [diff] [blame] | 51 | unsigned int recursion_depth; /* only for search_binary_handler() */ |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 52 | struct file * file; |
David Howells | a6f76f2 | 2008-11-14 10:39:24 +1100 | [diff] [blame] | 53 | struct cred *cred; /* new credentials */ |
| 54 | int unsafe; /* how unsafe this exec is (mask of LSM_UNSAFE_*) */ |
| 55 | unsigned int per_clear; /* bits to clear in current->personality */ |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 56 | int argc, envc; |
David Howells | d762746 | 2010-08-17 23:52:56 +0100 | [diff] [blame] | 57 | const char * filename; /* Name of binary as seen by procps */ |
| 58 | const char * interp; /* Name of the binary really executed. Most |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 59 | of the time same as filename, but could be |
| 60 | different for binfmt_{misc,script} */ |
| 61 | unsigned interp_flags; |
| 62 | unsigned interp_data; |
| 63 | unsigned long loader, exec; |
Kees Cook | c31dbb14 | 2018-04-10 16:35:01 -0700 | [diff] [blame] | 64 | |
| 65 | struct rlimit rlim_stack; /* Saved RLIMIT_STACK used during exec. */ |
Kees Cook | 3859a27 | 2016-10-28 01:22:25 -0700 | [diff] [blame] | 66 | } __randomize_layout; |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 67 | |
| 68 | #define BINPRM_FLAGS_ENFORCE_NONDUMP_BIT 0 |
| 69 | #define BINPRM_FLAGS_ENFORCE_NONDUMP (1 << BINPRM_FLAGS_ENFORCE_NONDUMP_BIT) |
| 70 | |
| 71 | /* fd of the binary should be passed to the interpreter */ |
| 72 | #define BINPRM_FLAGS_EXECFD_BIT 1 |
| 73 | #define BINPRM_FLAGS_EXECFD (1 << BINPRM_FLAGS_EXECFD_BIT) |
| 74 | |
David Drysdale | 51f39a1 | 2014-12-12 16:57:29 -0800 | [diff] [blame] | 75 | /* filename of the binary will be inaccessible after exec */ |
| 76 | #define BINPRM_FLAGS_PATH_INACCESSIBLE_BIT 2 |
| 77 | #define BINPRM_FLAGS_PATH_INACCESSIBLE (1 << BINPRM_FLAGS_PATH_INACCESSIBLE_BIT) |
| 78 | |
Masami Hiramatsu | f6151df | 2009-12-17 15:27:16 -0800 | [diff] [blame] | 79 | /* Function parameter for binfmt->coredump */ |
| 80 | struct coredump_params { |
Al Viro | ec57941 | 2013-10-13 17:57:29 -0400 | [diff] [blame] | 81 | const siginfo_t *siginfo; |
Masami Hiramatsu | f6151df | 2009-12-17 15:27:16 -0800 | [diff] [blame] | 82 | struct pt_regs *regs; |
| 83 | struct file *file; |
| 84 | unsigned long limit; |
Masami Hiramatsu | 30736a4 | 2010-03-05 13:44:12 -0800 | [diff] [blame] | 85 | unsigned long mm_flags; |
Al Viro | ecc8c77 | 2013-10-05 15:32:35 -0400 | [diff] [blame] | 86 | loff_t written; |
Mateusz Guzik | 1607f09 | 2016-06-05 23:14:14 +0200 | [diff] [blame] | 87 | loff_t pos; |
Masami Hiramatsu | f6151df | 2009-12-17 15:27:16 -0800 | [diff] [blame] | 88 | }; |
| 89 | |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 90 | /* |
| 91 | * This structure defines the functions that are used to load the binary formats that |
| 92 | * linux accepts. |
| 93 | */ |
| 94 | struct linux_binfmt { |
Alexey Dobriyan | e4dc1b1 | 2007-10-16 23:26:03 -0700 | [diff] [blame] | 95 | struct list_head lh; |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 96 | struct module *module; |
Al Viro | 71613c3 | 2012-10-20 22:00:48 -0400 | [diff] [blame] | 97 | int (*load_binary)(struct linux_binprm *); |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 98 | int (*load_shlib)(struct file *); |
Masami Hiramatsu | f6151df | 2009-12-17 15:27:16 -0800 | [diff] [blame] | 99 | int (*core_dump)(struct coredump_params *cprm); |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 100 | unsigned long min_coredump; /* minimal dump size */ |
Kees Cook | 3859a27 | 2016-10-28 01:22:25 -0700 | [diff] [blame] | 101 | } __randomize_layout; |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 102 | |
Al Viro | 8fc3dc5 | 2012-03-17 03:05:16 -0400 | [diff] [blame] | 103 | extern void __register_binfmt(struct linux_binfmt *fmt, int insert); |
Ivan Kokshaysky | 74641f5 | 2009-04-30 15:08:49 -0700 | [diff] [blame] | 104 | |
| 105 | /* Registration of default binfmt handlers */ |
Al Viro | 8fc3dc5 | 2012-03-17 03:05:16 -0400 | [diff] [blame] | 106 | static inline void register_binfmt(struct linux_binfmt *fmt) |
Ivan Kokshaysky | 74641f5 | 2009-04-30 15:08:49 -0700 | [diff] [blame] | 107 | { |
Al Viro | 8fc3dc5 | 2012-03-17 03:05:16 -0400 | [diff] [blame] | 108 | __register_binfmt(fmt, 0); |
Ivan Kokshaysky | 74641f5 | 2009-04-30 15:08:49 -0700 | [diff] [blame] | 109 | } |
| 110 | /* Same as above, but adds a new binfmt at the top of the list */ |
Al Viro | 8fc3dc5 | 2012-03-17 03:05:16 -0400 | [diff] [blame] | 111 | static inline void insert_binfmt(struct linux_binfmt *fmt) |
Ivan Kokshaysky | 74641f5 | 2009-04-30 15:08:49 -0700 | [diff] [blame] | 112 | { |
Al Viro | 8fc3dc5 | 2012-03-17 03:05:16 -0400 | [diff] [blame] | 113 | __register_binfmt(fmt, 1); |
Ivan Kokshaysky | 74641f5 | 2009-04-30 15:08:49 -0700 | [diff] [blame] | 114 | } |
| 115 | |
Alexey Dobriyan | f6b450d | 2007-10-16 23:26:04 -0700 | [diff] [blame] | 116 | extern void unregister_binfmt(struct linux_binfmt *); |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 117 | |
| 118 | extern int prepare_binprm(struct linux_binprm *); |
Ollie Wild | b6a2fea | 2007-07-19 01:48:16 -0700 | [diff] [blame] | 119 | extern int __must_check remove_arg_zero(struct linux_binprm *); |
Al Viro | 3c456bf | 2012-10-20 21:53:31 -0400 | [diff] [blame] | 120 | extern int search_binary_handler(struct linux_binprm *); |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 121 | extern int flush_old_exec(struct linux_binprm * bprm); |
Linus Torvalds | 221af7f | 2010-01-28 22:14:42 -0800 | [diff] [blame] | 122 | extern void setup_new_exec(struct linux_binprm * bprm); |
Kees Cook | b838383 | 2018-04-10 16:34:57 -0700 | [diff] [blame] | 123 | extern void finalize_exec(struct linux_binprm *bprm); |
Al Viro | 1b5d783 | 2011-06-19 12:49:47 -0400 | [diff] [blame] | 124 | extern void would_dump(struct linux_binprm *, struct file *); |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 125 | |
Alan Cox | d6e7114 | 2005-06-23 00:09:43 -0700 | [diff] [blame] | 126 | extern int suid_dumpable; |
Alan Cox | d6e7114 | 2005-06-23 00:09:43 -0700 | [diff] [blame] | 127 | |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 128 | /* Stack area protections */ |
| 129 | #define EXSTACK_DEFAULT 0 /* Whatever the arch defaults to */ |
| 130 | #define EXSTACK_DISABLE_X 1 /* Disable executable stacks */ |
| 131 | #define EXSTACK_ENABLE_X 2 /* Enable executable stacks */ |
| 132 | |
| 133 | extern int setup_arg_pages(struct linux_binprm * bprm, |
| 134 | unsigned long stack_top, |
| 135 | int executable_stack); |
Nicolas Pitre | 7e7ec6a | 2016-07-24 11:30:18 -0400 | [diff] [blame] | 136 | extern int transfer_args_to_stack(struct linux_binprm *bprm, |
| 137 | unsigned long *sp_location); |
Oleg Nesterov | c2315c1 | 2017-10-03 16:15:42 -0700 | [diff] [blame] | 138 | extern int bprm_change_interp(const char *interp, struct linux_binprm *bprm); |
David Howells | d762746 | 2010-08-17 23:52:56 +0100 | [diff] [blame] | 139 | extern int copy_strings_kernel(int argc, const char *const *argv, |
| 140 | struct linux_binprm *bprm); |
Oleg Nesterov | a2a8474 | 2009-09-05 11:17:13 -0700 | [diff] [blame] | 141 | extern int prepare_bprm_creds(struct linux_binprm *bprm); |
David Howells | a6f76f2 | 2008-11-14 10:39:24 +1100 | [diff] [blame] | 142 | extern void install_exec_creds(struct linux_binprm *bprm); |
Oleg Nesterov | 964ee7d | 2009-09-23 15:56:59 -0700 | [diff] [blame] | 143 | extern void set_binfmt(struct linux_binfmt *new); |
Al Viro | 3dc20cb | 2013-04-13 20:31:37 -0400 | [diff] [blame] | 144 | extern ssize_t read_code(struct file *, unsigned long, loff_t, size_t); |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 145 | |
Ingo Molnar | 2885175 | 2017-02-05 14:24:31 +0100 | [diff] [blame] | 146 | extern int do_execve(struct filename *, |
| 147 | const char __user * const __user *, |
| 148 | const char __user * const __user *); |
| 149 | extern int do_execveat(int, struct filename *, |
| 150 | const char __user * const __user *, |
| 151 | const char __user * const __user *, |
| 152 | int); |
| 153 | |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 154 | #endif /* _LINUX_BINFMTS_H */ |