#include <unistd.h>
#include <rctl.h>
#include <libproc.h>
#include <stdio.h>
#include <libintl.h>
#include <locale.h>
#include <string.h>
#include <signal.h>
#include <strings.h>
#include <ctype.h>
#include <project.h>
#include <sys/types.h>
#include <dirent.h>
#include <errno.h>
#include <stdlib.h>
#include <sys/varargs.h>
#include <priv.h>
#include <zone.h>
#include "utils.h"
#define ACTION_DISABLE 0x01
#define ACTION_ENABLE 0x02
#define ACTION_SET 0x04
#define ACTION_REPLACE 0x08
#define ACTION_DELETE 0x10
#define PRCTL_VALUE_WIDTH 4
#define GLOBAL_ERR_SZ 1024
typedef struct pr_info_handle {
struct ps_prochandle *pr;
pid_t pid;
psinfo_t psinfo;
taskid_t taskid;
projid_t projid;
char *projname;
zoneid_t zoneid;
char *zonename;
} pr_info_handle_t;
typedef struct prctl_value {
rctlblk_t *rblk;
struct prctl_value *next;
} prctl_value_t;
typedef struct prctl_list {
char *name;
rctl_qty_t *usage;
prctl_value_t *val_list;
struct prctl_list *next;
} prctl_list_t;
static volatile int interrupt;
static prctl_list_t *global_rctl_list_head = NULL;
static prctl_list_t *global_rctl_list_tail = NULL;
static char global_error[GLOBAL_ERR_SZ];
static int arg_operation = 0;
static int arg_force = 0;
static rctl_entity_t arg_entity_type = RCENTITY_PROCESS;
static char *arg_entity_string = NULL;
static char *arg_name = NULL;
static rctl_entity_t arg_name_entity = 0;
static int arg_priv = 0;
static char *arg_valuestring = NULL;
static int arg_global_flags = 0;
static rctl_qty_t arg_global_max;
scale_t *arg_scale;
static char *arg_unit = NULL;
static uint64_t arg_value = 0;
static char *arg_modifier = NULL;
static char *arg_action_string = NULL;
static int arg_action = 0;
static int arg_signal = 0;
static int arg_pid = -1;
static char *arg_pid_string = NULL;
static int arg_parseable_mode = 0;
static void intr(int);
static int get_rctls(struct ps_prochandle *);
static int store_rctls(const char *rctlname, void *walk_data);
static prctl_value_t *store_value_entry(rctlblk_t *rblk, prctl_list_t *list);
static prctl_list_t *store_list_entry(const char *name);
static void free_lists();
static int change_action(rctlblk_t *blk);
static int prctl_setrctl(struct ps_prochandle *Pr, const char *name,
rctlblk_t *, rctlblk_t *, uint_t);
static int match_rctl(struct ps_prochandle *Pr, rctlblk_t **rctl, char *name,
char *valuestringin, int valuein, rctl_priv_t privin,
int pidin);
static int match_rctl_blk(rctlblk_t *rctl, char *valuestringin,
uint64_t valuein,
rctl_priv_t privin, int pidin);
static pid_t regrab_process(pid_t pid, pr_info_handle_t *p, int, int *gret);
static pid_t grab_process_by_id(char *idname, rctl_entity_t type,
pr_info_handle_t *p, int, int *gret);
static int grab_process(pr_info_handle_t *p, int *gret);
static void release_process(struct ps_prochandle *Pr);
static void preserve_error(char *format, ...);
static void print_rctls(pr_info_handle_t *p);
static void print_priv(rctl_priv_t local_priv, char *format);
static void print_local_action(int action, int *signalp, char *format);
static const char USAGE[] = ""
"usage:\n"
" Report resource control values and actions:\n"
" prctl [-P] [-t [basic | privileged | system]\n"
" [-n name] [-i process | task | project | zone] id ...\n"
" -P space delimited output\n"
" -t privilege level of rctl values to get\n"
" -n name of resource control values to get\n"
" -i idtype of operand list\n"
" Manipulate resource control values:\n"
" prctl [-t [basic | privileged | system]\n"
" -n name [-srx] [-v value] [-p pid ] [-e | -d action]\n"
" [-i process | task | project | zone] id ...\n"
" -t privilege level of rctl value to set/replace/delete/modify\n"
" -n name of resource control to set/replace/delete/modify\n"
" -s set new resource control value\n"
" -r replace first rctl value of matching privilege\n"
" -x delete first rctl value of matching privilege, value, and \n"
" recipient pid\n"
" -v value of rctl to set/replace/delete/modify\n"
" -p recipient pid of rctl to set/replace/delete/modify\n"
" -e enable action of first rctl value of matching privilege,\n"
" value, and recipient pid\n"
" -d disable action of first rctl value of matching privilege,\n"
" value, and recipient pid\n"
" -i idtype of operand list\n";
static void
usage()
{
(void) fprintf(stderr, gettext(USAGE));
exit(2);
}
int
main(int argc, char **argv)
{
int flags;
int opt, errflg = 0;
rctlblk_t *rctlblkA = NULL;
rctlblk_t *rctlblkB = NULL;
rctlblk_t *tmp = NULL;
pid_t pid;
char *target_id;
int search_type;
int signal;
int localaction;
int printed = 0;
int gret;
char *end;
(void) setlocale(LC_ALL, "");
(void) textdomain(TEXT_DOMAIN);
(void) setpname(argv[0]);
while ((opt = getopt(argc, argv, "sPp:Fd:e:i:n:rt:v:x")) != EOF) {
switch (opt) {
case 'F':
arg_force = PGRAB_FORCE;
break;
case 'i':
arg_entity_string = optarg;
if (strcmp(optarg, "process") == 0 ||
strcmp(optarg, "pid") == 0)
arg_entity_type = RCENTITY_PROCESS;
else if (strcmp(optarg, "project") == 0 ||
strcmp(optarg, "projid") == 0)
arg_entity_type = RCENTITY_PROJECT;
else if (strcmp(optarg, "task") == 0 ||
strcmp(optarg, "taskid") == 0)
arg_entity_type = RCENTITY_TASK;
else if (strcmp(optarg, "zone") == 0 ||
strcmp(optarg, "zoneid") == 0)
arg_entity_type = RCENTITY_ZONE;
else {
warn(gettext("unknown idtype %s"), optarg);
errflg = 1;
}
break;
case 'd':
arg_action_string = optarg;
arg_operation |= ACTION_DISABLE;
break;
case 'e':
arg_action_string = optarg;
arg_operation |= ACTION_ENABLE;
break;
case 'n':
arg_name = optarg;
if (strncmp(optarg, "process.",
strlen("process.")) == 0)
arg_name_entity = RCENTITY_PROCESS;
else if (strncmp(optarg, "project.",
strlen("project.")) == 0)
arg_name_entity = RCENTITY_PROJECT;
else if (strncmp(optarg, "task.",
strlen("task.")) == 0)
arg_name_entity = RCENTITY_TASK;
else if (strncmp(optarg, "zone.",
strlen("zone.")) == 0)
arg_name_entity = RCENTITY_ZONE;
break;
case 'r':
arg_operation |= ACTION_REPLACE;
break;
case 't':
if (strcmp(optarg, "basic") == 0)
arg_priv = RCPRIV_BASIC;
else if (strcmp(optarg, "privileged") == 0)
arg_priv = RCPRIV_PRIVILEGED;
else if (strcmp(optarg, "priv") == 0)
arg_priv = RCPRIV_PRIVILEGED;
else if (strcmp(optarg, "system") == 0)
arg_priv = RCPRIV_SYSTEM;
else {
warn(gettext("unknown privilege %s"), optarg);
errflg = 1;
}
break;
case 'v':
arg_valuestring = optarg;
break;
case 's':
arg_operation |= ACTION_SET;
break;
case 'x':
arg_operation |= ACTION_DELETE;
break;
case 'p':
errno = 0;
if (strcmp("-", optarg) == 0)
break;
arg_pid_string = optarg;
arg_pid = strtoul(optarg, &end, 10);
if (errno || *end != '\0' || end == optarg) {
warn(gettext("invalid pid %s"), optarg);
errflg = 1;
break;
}
break;
case 'P':
arg_parseable_mode = 1;
break;
default:
warn(gettext("unknown option"));
errflg = 1;
break;
}
}
argc -= optind;
argv += optind;
if (argc < 1) {
warn(gettext("no arguments specified"));
errflg = 1;
goto done_parse;
}
if (arg_valuestring &&
(!(arg_operation & (ACTION_REPLACE | ACTION_DELETE |
ACTION_DISABLE | ACTION_ENABLE)))) {
arg_operation |= ACTION_SET;
}
if (arg_operation && (arg_name == NULL)) {
warn(gettext("-n is required with -s, -r, -x, -e, or -d"));
errflg = 1;
goto done_parse;
}
if ((arg_operation & ACTION_ENABLE) &&
(arg_operation & ACTION_DISABLE)) {
warn(gettext("options -d and -e are exclusive"));
errflg = 1;
goto done_parse;
}
flags = arg_operation &
(ACTION_REPLACE | ACTION_SET | ACTION_DELETE);
if (flags & (flags - 1)) {
warn(gettext("options -s, -r, and -x are exclusive"));
errflg = 1;
goto done_parse;
}
if ((arg_operation & ACTION_DELETE) &
(arg_operation & (ACTION_ENABLE | ACTION_DISABLE))) {
warn(gettext("options -e or -d not allowed with -x"));
errflg = 1;
goto done_parse;
}
if ((arg_operation & ACTION_REPLACE) && (!arg_valuestring)) {
warn(gettext("option -r requires use of option -v"));
errflg = 1;
goto done_parse;
}
if ((arg_operation & ACTION_SET) && (!arg_valuestring)) {
warn(gettext("option -s requires use of option -v"));
errflg = 1;
goto done_parse;
}
if (arg_pid != -1 && arg_priv > RCPRIV_BASIC) {
warn(gettext("option -p not allowed on non-basic rctl"));
errflg = 1;
goto done_parse;
}
if (arg_pid != -1 &&
arg_priv == RCPRIV_PRIVILEGED) {
warn(gettext("option -p not allowed with privileged rctl"));
errflg = 1;
goto done_parse;
}
if (arg_operation) {
if (arg_parseable_mode == 1) {
warn(gettext("-P not valid when manipulating "
"resource control values"));
errflg = 1;
goto done_parse;
}
if ((rctlblkA = calloc(1, rctlblk_size())) == NULL) {
warn(gettext("malloc failed: %s"),
strerror(errno));
errflg = 1;
goto done_parse;
}
if ((rctlblkB = calloc(1, rctlblk_size())) == NULL) {
warn(gettext("malloc failed: %s"),
strerror(errno));
errflg = 1;
goto done_parse;
}
if (getrctl(arg_name, NULL, rctlblkA, RCTL_FIRST)) {
warn(gettext("failed to get resource control "
"for %s: %s"), arg_name, strerror(errno));
errflg = 1;
goto done_parse;
}
while (getrctl(arg_name, rctlblkA, rctlblkB, RCTL_NEXT) == 0) {
if (interrupt) {
errflg = 1;
goto done_parse;
}
tmp = rctlblkB;
rctlblkB = rctlblkA;
rctlblkA = tmp;
if (rctlblk_get_privilege(rctlblkA) ==
RCPRIV_SYSTEM) {
break;
}
}
if (rctlblk_get_privilege(rctlblkA) != RCPRIV_SYSTEM) {
warn(gettext("failed to get system resource control "
"for %s: %s"), arg_name, strerror(errno));
errflg = 1;
goto done_parse;
}
arg_global_flags = rctlblk_get_global_flags(rctlblkA);
arg_global_max = rctlblk_get_value(rctlblkA);
if (arg_global_flags & RCTL_GLOBAL_BYTES) {
arg_unit = SCALED_UNIT_BYTES;
arg_scale = scale_binary;
} else if (arg_global_flags & RCTL_GLOBAL_SECONDS) {
arg_unit = SCALED_UNIT_SECONDS;
arg_scale = scale_metric;
} else {
arg_unit = SCALED_UNIT_NONE;
arg_scale = scale_metric;
}
if (arg_valuestring) {
if (scaledtouint64(arg_valuestring,
&arg_value, NULL, &arg_modifier, NULL,
arg_scale, arg_unit,
SCALED_ALL_FLAGS)) {
warn(gettext("invalid -v value %s"),
arg_valuestring);
errflg = 1;
goto done_parse;
}
if (arg_value > arg_global_max) {
warn(gettext("-v value %s exceeds system "
"limit for resource control: %s"),
arg_valuestring, arg_name);
errflg = 1;
goto done_parse;
}
}
if (arg_action_string) {
char *sigchr;
char *iter;
if ((strcmp(arg_action_string, "signal") == 0) ||
(strcmp(arg_action_string, "sig") == 0)) {
if (arg_operation & ACTION_ENABLE) {
warn(gettext(
"signal name or number must be "
"specified with -e"));
errflg = 1;
goto done_parse;
}
arg_action = RCTL_LOCAL_SIGNAL;
arg_signal = -1;
} else if ((strncmp(arg_action_string,
"signal=", strlen("signal=")) == 0) ||
(strncmp(arg_action_string,
"sig=", strlen("sig=")) == 0)) {
arg_action = RCTL_LOCAL_SIGNAL;
sigchr = strrchr(arg_action_string, '=');
sigchr++;
iter = sigchr;
while (*iter) {
*iter = toupper(*iter);
iter++;
}
if (strncmp("SIG", sigchr, 3) == 0)
sigchr += 3;
if (str2sig(sigchr, &arg_signal) != 0) {
warn(gettext("signal invalid"));
errflg = 1;
goto done_parse;
}
} else if (strcmp(arg_action_string, "deny") == 0) {
arg_action = RCTL_LOCAL_DENY;
} else if (strcmp(arg_action_string, "all") == 0) {
if (arg_operation & ACTION_ENABLE) {
warn(gettext(
"cannot use action 'all' with -e"));
errflg = 1;
goto done_parse;
}
arg_action = RCTL_LOCAL_DENY |
RCTL_LOCAL_SIGNAL;
arg_signal = -1;
goto done_parse;
} else {
warn(gettext("action invalid"));
errflg = 1;
goto done_parse;
}
}
if (arg_priv == RCPRIV_SYSTEM) {
warn(gettext("cannot modify system values"));
errflg = 1;
goto done_parse;
}
if ((arg_priv == RCPRIV_BASIC) &&
(arg_global_flags & RCTL_GLOBAL_NOBASIC)) {
warn(gettext("basic values not allowed on rctl %s"),
arg_name);
errflg = 1;
goto done_parse;
}
if ((arg_operation & ACTION_ENABLE) &&
(arg_action & RCTL_LOCAL_DENY) &&
(arg_global_flags & RCTL_GLOBAL_DENY_NEVER)) {
warn(gettext("unable to enable deny on rctl with "
"global flag 'no-deny'"));
errflg = 1;
goto done_parse;
}
if ((arg_operation & ACTION_DISABLE) &&
(arg_action & RCTL_LOCAL_DENY) &&
(arg_global_flags & RCTL_GLOBAL_DENY_ALWAYS)) {
warn(gettext("unable to disable deny on rctl with "
"global flag 'deny'"));
errflg = 1;
goto done_parse;
}
if ((arg_operation & ACTION_ENABLE) &&
(arg_action & RCTL_LOCAL_SIGNAL) &&
(arg_global_flags & RCTL_GLOBAL_SIGNAL_NEVER)) {
warn(gettext("unable to enable signal on rctl with "
"global flag 'no-signal'"));
errflg = 1;
goto done_parse;
}
if (arg_operation & ACTION_SET) {
if (arg_priv == 0) {
arg_priv = RCPRIV_BASIC;
}
}
if ((arg_pid == -1) &&
(arg_priv == RCPRIV_BASIC) &&
(arg_entity_type != RCENTITY_PROCESS) &&
(arg_operation & ACTION_SET) &&
(arg_name) &&
(arg_name_entity == RCENTITY_TASK ||
arg_name_entity == RCENTITY_PROJECT ||
arg_name_entity == RCENTITY_ZONE)) {
warn(gettext("-p pid required when setting or "
"replacing task or project rctl"));
errflg = 1;
goto done_parse;
}
} else {
if (arg_pid != -1) {
warn(gettext("-p pid requires -s, -r, -x, -e, or -d"));
errflg = 1;
goto done_parse;
}
}
if ((arg_name && (arg_name_entity == RCENTITY_PROCESS)) &&
((arg_entity_type == RCENTITY_TASK) ||
(arg_entity_type == RCENTITY_PROJECT))) {
warn(gettext("cannot get/set process rctl on task "
"or project"));
errflg = 1;
goto done_parse;
}
if ((arg_name && (arg_name_entity == RCENTITY_TASK)) &&
(arg_entity_type == RCENTITY_PROJECT)) {
warn(gettext("cannot get/set task rctl on project"));
errflg = 1;
goto done_parse;
}
done_parse:
if (rctlblkA) {
free(rctlblkA);
rctlblkA = NULL;
}
if (rctlblkB) {
free(rctlblkB);
rctlblkB = NULL;
}
if (errflg)
usage();
if (sigset(SIGHUP, SIG_IGN) == SIG_DFL)
(void) sigset(SIGHUP, intr);
if (sigset(SIGINT, SIG_IGN) == SIG_DFL)
(void) sigset(SIGINT, intr);
if (sigset(SIGQUIT, SIG_IGN) == SIG_DFL)
(void) sigset(SIGQUIT, intr);
(void) sigset(SIGTERM, intr);
while (--argc >= 0 && !interrupt) {
pr_info_handle_t p;
char *arg = *argv++;
int intarg;
char *end;
errflg = 0;
gret = 0;
errno = 0;
intarg = strtoul(arg, &end, 10);
if (errno || *end != '\0' || end == arg) {
intarg = -1;
}
if ((arg_pid == -1) &&
(arg_priv == RCPRIV_BASIC) &&
(arg_entity_type == RCENTITY_PROCESS) &&
(arg_name) &&
(arg_name_entity == RCENTITY_TASK ||
arg_name_entity == RCENTITY_PROJECT)) {
arg_pid_string = arg;
errno = 0;
arg_pid = intarg;
}
if (arg_pid != -1 && arg_entity_type == RCENTITY_PROCESS &&
arg_pid != intarg) {
warn(gettext("option -p pid must match -i process"));
errflg = 1;
continue;
}
if (arg_pid_string != NULL) {
target_id = arg_pid_string;
search_type = RCENTITY_PROCESS;
} else {
target_id = arg;
search_type = arg_entity_type;
}
(void) fflush(stdout);
if (arg_operation != 0) {
if ((pid = grab_process_by_id(target_id,
search_type, &p, arg_priv, &gret)) < 0) {
errflg = 1;
continue;
}
errflg = get_rctls(p.pr);
if (arg_operation & ACTION_DELETE) {
if (match_rctl(p.pr, &rctlblkA, arg_name,
arg_valuestring, arg_value, arg_priv,
arg_pid) != 0 || rctlblkA == NULL) {
if (interrupt)
goto out;
preserve_error(gettext("no matching "
"resource control found for "
"deletion"));
errflg = 1;
goto out;
}
pid = regrab_process(
rctlblk_get_recipient_pid(rctlblkA),
&p, arg_priv, &gret);
if (pid < 0) {
errflg = 1;
goto out;
}
if (prctl_setrctl(p.pr, arg_name, NULL,
rctlblkA, RCTL_DELETE) != 0) {
errflg = 1;
goto out;
}
} else if (arg_operation & ACTION_SET) {
if (match_rctl(p.pr, &rctlblkA, arg_name,
arg_valuestring, arg_value, arg_priv,
arg_pid) == 0) {
if (interrupt)
goto out;
preserve_error(gettext("resource "
"control already exists"));
errflg = 1;
goto out;
}
rctlblkB = calloc(1, rctlblk_size());
if (rctlblkB == NULL) {
preserve_error(gettext(
"malloc failed"), strerror(errno));
errflg = 1;
goto out;
}
rctlblk_set_value(rctlblkB, arg_value);
rctlblk_set_privilege(rctlblkB, arg_priv);
if (change_action(rctlblkB)) {
errflg = 1;
goto out;
}
if (prctl_setrctl(p.pr, arg_name, NULL,
rctlblkB, RCTL_INSERT) != 0) {
errflg = 1;
goto out;
}
} else if (arg_operation & ACTION_REPLACE) {
if (match_rctl(p.pr, &rctlblkA, arg_name,
NULL, 0, arg_priv,
arg_pid) != 0 || rctlblkA == NULL) {
if (interrupt)
goto out;
preserve_error(gettext("no matching "
"resource control to replace"));
errflg = 1;
goto out;
}
pid = regrab_process(
rctlblk_get_recipient_pid(rctlblkA),
&p, arg_priv, &gret);
if (pid < 0) {
errflg = 1;
goto out;
}
pid = rctlblk_get_recipient_pid(rctlblkA);
if (match_rctl(p.pr, &rctlblkB, arg_name,
arg_valuestring, arg_value, arg_priv,
pid) < 0) {
if (interrupt)
goto out;
preserve_error(gettext(
"Internal Error"));
errflg = 1;
goto out;
}
if (rctlblkB != NULL &&
arg_value != rctlblk_get_value(rctlblkA)) {
preserve_error(gettext("replacement "
"resource control already "
"exists"));
errflg = 1;
goto out;
}
rctlblkB = calloc(1, rctlblk_size());
if (rctlblkB == NULL) {
preserve_error(gettext(
"malloc failed"), strerror(errno));
errflg = 1;
goto out;
}
localaction =
rctlblk_get_local_action(rctlblkA, &signal);
rctlblk_set_local_action(rctlblkB, localaction,
signal);
rctlblk_set_value(rctlblkB, arg_value);
rctlblk_set_privilege(rctlblkB,
rctlblk_get_privilege(rctlblkA));
if (change_action(rctlblkB)) {
errflg = 1;
goto out;
}
if (prctl_setrctl(p.pr, arg_name, rctlblkA,
rctlblkB, RCTL_REPLACE) != 0) {
errflg = 1;
goto out;
}
} else if (arg_operation &
(ACTION_ENABLE | ACTION_DISABLE)) {
rctlblkB = calloc(1, rctlblk_size());
if (rctlblkB == NULL) {
preserve_error(gettext(
"malloc failed"), strerror(errno));
errflg = 1;
goto out;
}
if (match_rctl(p.pr, &rctlblkA, arg_name,
arg_valuestring, arg_value, arg_priv,
arg_pid) != 0) {
if (interrupt)
goto out;
if (arg_priv == 0)
arg_priv = RCPRIV_BASIC;
if ((arg_priv == RCPRIV_BASIC) &&
(arg_entity_type !=
RCENTITY_PROCESS) &&
(arg_pid_string == NULL)) {
preserve_error(gettext(
"-p required when setting "
"basic rctls"));
errflg = 1;
goto out;
}
rctlblk_set_value(rctlblkB,
arg_value);
rctlblk_set_privilege(
rctlblkB, arg_priv);
if (change_action(rctlblkB)) {
errflg = 1;
goto out;
}
if (prctl_setrctl(p.pr,
arg_name, NULL, rctlblkB,
RCTL_INSERT) != 0) {
errflg = 1;
goto out;
}
goto out;
}
if (rctlblkA == NULL) {
preserve_error(gettext("no matching "
"resource control found"));
errflg = 1;
goto out;
}
pid = regrab_process(
rctlblk_get_recipient_pid(rctlblkA),
&p, arg_priv, &gret);
if (pid < 0) {
errflg = 1;
goto out;
}
localaction =
rctlblk_get_local_action(rctlblkA,
&signal);
rctlblk_set_local_action(rctlblkB, localaction,
signal);
rctlblk_set_privilege(rctlblkB,
rctlblk_get_privilege(rctlblkA));
rctlblk_set_value(rctlblkB,
rctlblk_get_value(rctlblkA));
if (change_action(rctlblkB)) {
errflg = 1;
goto out;
}
if (prctl_setrctl(p.pr, arg_name, rctlblkA,
rctlblkB, RCTL_REPLACE) != 0) {
errflg = 1;
goto out;
}
}
out:
release_process(p.pr);
if (rctlblkA)
free(rctlblkA);
if (rctlblkB)
free(rctlblkB);
if (errflg && *global_error != '\0') {
proc_unctrl_psinfo(&(p.psinfo));
(void) fprintf(stderr, "%d:\t%.70s\n",
(int)p.pid, p.psinfo.pr_psargs);
warn("%s\n", global_error);
break;
}
} else {
struct project projent;
char buf[PROJECT_BUFSZ];
char zonename[ZONENAME_MAX];
gret = G_SYS;
pid = grab_process_by_id(
target_id, search_type, &p, RCPRIV_BASIC, &gret);
if (arg_entity_type == RCENTITY_PROCESS &&
pid < 0 &&
gret == G_SYS) {
if (printed) {
(void) fprintf(stdout, "\n");
}
proc_unctrl_psinfo(&(p.psinfo));
(void) printf(
"process: %d: %s [ system process ]\n",
(int)p.pid, p.psinfo.pr_psargs);
printed = 1;
continue;
} else if (pid < 0) {
errflg = 1;
continue;
}
errflg = get_rctls(p.pr);
release_process(p.pr);
if (interrupt)
break;
if (printed) {
(void) fprintf(stdout, "\n");
}
if (errflg) {
warn("%s\n", global_error);
free_lists();
break;
}
if (getprojbyid(p.projid, &projent, buf,
sizeof (buf))) {
p.projname = projent.pj_name;
} else {
p.projname = "";
}
if (getzonenamebyid(p.zoneid, zonename,
sizeof (zonename)) > 0) {
p.zonename = zonename;
} else {
p.zonename = "";
}
print_rctls(&p);
printed = 1;
free_lists();
}
}
if (interrupt)
errflg = 1;
return (errflg);
}
static void
intr(int sig)
{
interrupt = sig;
}
static int
get_rctls(struct ps_prochandle *Pr)
{
int ret = 0;
if (arg_name == NULL) {
if (rctl_walk(store_rctls, Pr) != 0)
ret = 1;
} else {
ret = store_rctls(arg_name, Pr);
}
return (ret);
}
static int
store_rctls(const char *rctlname, void *walk_data)
{
struct ps_prochandle *Pr = walk_data;
rctlblk_t *rblk2, *rblk_tmp, *rblk1 = NULL;
prctl_list_t *list = NULL;
rctl_priv_t rblk_priv;
rctl_entity_t rblk_entity;
if (((rblk1 = calloc(1, rctlblk_size())) == NULL) ||
((rblk2 = calloc(1, rctlblk_size())) == NULL)) {
if (rblk1 != NULL)
free(rblk1);
preserve_error(gettext("malloc failed: %s"),
strerror(errno));
return (1);
}
if (pr_getrctl(Pr, rctlname, NULL, rblk1, RCTL_FIRST)) {
preserve_error(gettext("failed to get resource control "
"for %s: %s"), rctlname, strerror(errno));
free(rblk1);
free(rblk2);
return (1);
}
rblk_priv = rctlblk_get_privilege(rblk1);
rblk_entity = 0;
if (strncmp(rctlname, "process.",
strlen("process.")) == 0)
rblk_entity = RCENTITY_PROCESS;
else if (strncmp(rctlname, "project.",
strlen("project.")) == 0)
rblk_entity = RCENTITY_PROJECT;
else if (strncmp(rctlname, "task.",
strlen("task.")) == 0)
rblk_entity = RCENTITY_TASK;
else if (strncmp(rctlname, "zone.",
strlen("zone.")) == 0)
rblk_entity = RCENTITY_ZONE;
if (((arg_priv == 0) || (rblk_priv == arg_priv)) &&
((arg_name == NULL) ||
strncmp(rctlname, arg_name, strlen(arg_name)) == 0) &&
(arg_entity_string == NULL || rblk_entity >= arg_entity_type)) {
if ((list = store_list_entry(rctlname)) == NULL) {
free(rblk1);
free(rblk2);
return (1);
}
if (store_value_entry(rblk1, list) == NULL) {
free(rblk1);
free(rblk2);
return (1);
}
}
while (pr_getrctl(Pr, rctlname, rblk1, rblk2, RCTL_NEXT) == 0) {
if (interrupt) {
free(rblk1);
free(rblk2);
return (1);
}
rblk_priv = rctlblk_get_privilege(rblk2);
if (((arg_priv == 0) || (rblk_priv == arg_priv)) &&
((arg_name == NULL) ||
strncmp(rctlname, arg_name, strlen(arg_name)) == 0) &&
(arg_entity_string == NULL ||
rblk_entity == arg_entity_type)) {
if (list == NULL) {
if ((list = store_list_entry(rctlname))
== NULL) {
free(rblk1);
free(rblk2);
return (1);
}
}
if (store_value_entry(rblk2, list) == NULL) {
free(rblk1);
free(rblk2);
return (1);
}
}
rblk_tmp = rblk1;
rblk1 = rblk2;
rblk2 = rblk_tmp;
}
if (list != NULL) {
if (pr_getrctl(Pr, rctlname, NULL, rblk2, RCTL_USAGE) == 0) {
list->usage = (rctl_qty_t *)malloc(sizeof (rctl_qty_t));
if (list->usage == NULL) {
preserve_error(gettext("malloc failed: %s"),
strerror(errno));
free(rblk1);
free(rblk2);
return (1);
}
*list->usage = rctlblk_get_value(rblk2);
} else {
list->usage = NULL;
if (errno != ENOTSUP) {
preserve_error(gettext("failed to get "
"resource control usage for %s: %s"),
rctlname, strerror(errno));
free(rblk1);
free(rblk2);
return (1);
}
}
}
free(rblk1);
free(rblk2);
return (0);
}
prctl_value_t *
store_value_entry(rctlblk_t *rblk, prctl_list_t *list)
{
prctl_value_t *e = calloc(1, sizeof (prctl_value_t));
rctlblk_t *store_blk = calloc(1, rctlblk_size());
prctl_value_t *iter = list->val_list;
if (e == NULL || store_blk == NULL) {
preserve_error(gettext("malloc failed %s"),
strerror(errno));
if (e != NULL)
free(e);
if (store_blk != NULL)
free(store_blk);
return (NULL);
}
if (iter == NULL)
list->val_list = e;
else {
while (iter->next != NULL) {
iter = iter->next;
}
iter->next = e;
}
bcopy(rblk, store_blk, rctlblk_size());
e->rblk = store_blk;
e->next = NULL;
return (e);
}
prctl_list_t *
store_list_entry(const char *name)
{
prctl_list_t *e = calloc(1, sizeof (prctl_list_t));
if (e == NULL) {
preserve_error(gettext("malloc failed %s"),
strerror(errno));
return (NULL);
}
if ((e->name = calloc(1, strlen(name) + 1)) == NULL) {
preserve_error(gettext("malloc failed %s"),
strerror(errno));
free(e);
return (NULL);
}
(void) strcpy(e->name, name);
e->val_list = NULL;
if (global_rctl_list_head == NULL) {
global_rctl_list_head = e;
global_rctl_list_tail = e;
} else {
global_rctl_list_tail->next = e;
global_rctl_list_tail = e;
}
e->next = NULL;
return (e);
}
void
free_lists()
{
prctl_list_t *new_list, *old_list = global_rctl_list_head;
prctl_value_t *old_val, *new_val;
while (old_list != NULL) {
old_val = old_list->val_list;
while (old_val != NULL) {
free(old_val->rblk);
new_val = old_val->next;
free(old_val);
old_val = new_val;
}
free(old_list->name);
free(old_list->usage);
new_list = old_list->next;
free(old_list);
old_list = new_list;
}
global_rctl_list_head = NULL;
global_rctl_list_tail = NULL;
}
void
print_heading()
{
(void) fprintf(stdout, "%-8s%-16s%-9s%-7s%-28s%10s\n",
"NAME", "PRIVILEGE", "VALUE",
"FLAG", "ACTION", "RECIPIENT");
}
void
print_rctls(pr_info_handle_t *p)
{
prctl_list_t *iter_list = global_rctl_list_head;
prctl_value_t *iter_val;
rctl_qty_t rblk_value;
rctl_priv_t rblk_priv;
uint_t local_action;
int signal, local_flags, global_flags;
pid_t pid;
char rctl_valuestring[SCALED_STRLEN];
char *unit = NULL;
scale_t *scale;
char *string;
int doneheading = 0;
if (iter_list == NULL)
return;
while (iter_list != NULL) {
if (doneheading == 0 &&
arg_entity_type == RCENTITY_PROCESS) {
proc_unctrl_psinfo(&(p->psinfo));
doneheading = 1;
(void) fprintf(stdout,
"process: %d: %.70s\n", (int)p->pid,
p->psinfo.pr_psargs);
if (!arg_parseable_mode)
print_heading();
}
if (doneheading == 0 &&
arg_entity_type == RCENTITY_TASK) {
doneheading = 1;
(void) fprintf(stdout, "task: %d\n", (int)p->taskid);
if (!arg_parseable_mode)
print_heading();
}
if (doneheading == 0 &&
arg_entity_type == RCENTITY_PROJECT) {
if (!arg_parseable_mode && doneheading)
(void) fprintf(stdout, "\n");
doneheading = 1;
(void) fprintf(stdout,
"project: %d: %.70s\n", (int)p->projid,
p->projname);
if (!arg_parseable_mode)
print_heading();
}
if (doneheading == 0 &&
arg_entity_type == RCENTITY_ZONE) {
doneheading = 1;
(void) fprintf(stdout,
"zone: %d: %.70s\n", (int)p->zoneid,
p->zonename);
if (!arg_parseable_mode)
print_heading();
}
if (!arg_parseable_mode)
(void) fprintf(stdout, "%s\n", iter_list->name);
iter_val = iter_list->val_list;
if (iter_val == 0)
continue;
global_flags = rctlblk_get_global_flags(iter_val->rblk);
if (global_flags & RCTL_GLOBAL_BYTES) {
unit = SCALED_UNIT_BYTES;
scale = scale_binary;
} else if (global_flags & RCTL_GLOBAL_SECONDS) {
unit = SCALED_UNIT_SECONDS;
scale = scale_metric;
} else {
unit = SCALED_UNIT_NONE;
scale = scale_metric;
}
if (iter_list->usage != NULL) {
rblk_value = *(iter_list->usage);
if (!arg_parseable_mode) {
(void) uint64toscaled(rblk_value, 4, "E",
rctl_valuestring, NULL, NULL,
scale, NULL, 0);
(void) fprintf(stdout, "%8s%-16s%5s%-4s\n",
"", "usage", rctl_valuestring, unit);
} else {
(void) fprintf(stdout, "%s %s %llu - - -\n",
iter_list->name, "usage", rblk_value);
}
}
while (iter_val != NULL) {
if (!arg_parseable_mode)
(void) fprintf(stdout, "%8s", "");
else
(void) fprintf(stdout, "%s ", iter_list->name);
rblk_priv = rctlblk_get_privilege(iter_val->rblk);
if (!arg_parseable_mode)
print_priv(rblk_priv, "%-16s");
else
print_priv(rblk_priv, "%s ");
rblk_value = rctlblk_get_value(iter_val->rblk);
if (arg_parseable_mode) {
(void) fprintf(stdout, "%llu ", rblk_value);
} else {
(void) uint64toscaled(rblk_value, 4, "E",
rctl_valuestring, NULL, NULL,
scale, NULL, 0);
(void) fprintf(stdout, "%5s",
rctl_valuestring);
(void) fprintf(stdout, "%-4s", unit);
}
local_flags = rctlblk_get_local_flags(iter_val->rblk);
if (local_flags & RCTL_LOCAL_MAXIMAL) {
if (global_flags & RCTL_GLOBAL_INFINITE) {
string = "inf";
} else {
string = "max";
}
} else {
string = "-";
}
if (arg_parseable_mode)
(void) fprintf(stdout, "%s ", string);
else
(void) fprintf(stdout, "%4s%3s",
string, "");
local_action = rctlblk_get_local_action(iter_val->rblk,
&signal);
if (arg_parseable_mode)
print_local_action(local_action, &signal,
"%s ");
else
print_local_action(local_action, &signal,
"%-28s");
pid = rctlblk_get_recipient_pid(iter_val->rblk);
if (arg_parseable_mode) {
if (pid < 0) {
(void) fprintf(stdout, "%s\n", "-");
} else {
(void) fprintf(stdout, "%d\n",
(int)pid);
}
} else {
if (pid < 0) {
(void) fprintf(stdout, "%10s\n", "-");
} else {
(void) fprintf(stdout, "%10d\n",
(int)pid);
}
}
iter_val = iter_val->next;
}
iter_list = iter_list->next;
}
}
int
match_rctl(struct ps_prochandle *Pr, rctlblk_t **rctl, char *name,
char *valuestringin, int valuein, rctl_priv_t privin, int pidin)
{
rctlblk_t *next;
rctlblk_t *last;
rctlblk_t *tmp;
*rctl = NULL;
next = calloc(1, rctlblk_size());
last = calloc(1, rctlblk_size());
if ((last == NULL) || (next == NULL)) {
preserve_error(gettext("malloc failed"), strerror(errno));
return (-1);
}
if (pr_getrctl(Pr, name, NULL, next, RCTL_FIRST)) {
preserve_error(gettext("failed to get resource control "
"for %s: %s"), name, strerror(errno));
return (-1);
}
if (match_rctl_blk(next, valuestringin, valuein, privin, pidin) == 1) {
free(last);
*rctl = next;
return (0);
}
tmp = next;
next = last;
last = tmp;
while (pr_getrctl(Pr, name, last, next, RCTL_NEXT) == 0) {
if (interrupt)
break;
if (match_rctl_blk(next, valuestringin, valuein, privin, pidin)
== 1) {
free(last);
*rctl = next;
return (0);
}
tmp = next;
next = last;
last = tmp;
}
free(next);
free(last);
return (1);
}
int
match_rctl_blk(rctlblk_t *rctl, char *valuestringin,
uint64_t valuein, rctl_priv_t privin, int pidin)
{
rctl_qty_t value;
rctl_priv_t priv;
pid_t pid;
int valuematch = 1;
int privmatch = 1;
int pidmatch = 1;
value = rctlblk_get_value(rctl);
priv = rctlblk_get_privilege(rctl);
pid = rctlblk_get_recipient_pid(rctl);
if (valuestringin) {
if (arg_modifier == NULL) {
valuematch = (valuein == value);
} else {
valuematch = scaledequint64(valuestringin, value,
PRCTL_VALUE_WIDTH,
arg_scale, arg_unit,
SCALED_ALL_FLAGS);
}
}
if (privin != 0) {
privmatch = (privin == priv);
}
if (pidin != -1) {
pidmatch = (pidin == pid);
}
return (valuematch && privmatch && pidmatch);
}
static int
change_action(rctlblk_t *blk)
{
int signal = 0;
int action;
action = rctlblk_get_local_action(blk, &signal);
if (arg_operation & ACTION_ENABLE) {
if (arg_action & RCTL_LOCAL_SIGNAL) {
signal = arg_signal;
}
action = action | arg_action;
rctlblk_set_local_action(blk, action, signal);
} else if (arg_operation & ACTION_DISABLE) {
if ((arg_action & RCTL_LOCAL_SIGNAL) &&
(arg_signal != -1)) {
if (arg_signal != signal) {
preserve_error(gettext("signal name or number "
"does not match existing action"));
return (-1);
}
}
action = action & (~arg_action);
rctlblk_set_local_action(blk, RCTL_LOCAL_NOACTION, 0);
rctlblk_set_local_action(blk, action, signal);
}
if (arg_global_flags & RCTL_GLOBAL_DENY_ALWAYS) {
rctlblk_set_local_action(blk, RCTL_LOCAL_DENY | action,
signal);
}
return (0);
}
int
prctl_setrctl(struct ps_prochandle *Pr, const char *name,
rctlblk_t *old_rblk, rctlblk_t *new_rblk, uint_t flags)
{
int ret = 0;
rctl_priv_t rblk_priv;
psinfo_t psinfo;
zoneid_t oldzoneid = GLOBAL_ZONEID;
prpriv_t *old_prpriv = NULL, *new_prpriv = NULL;
priv_set_t *eset, *pset;
boolean_t relinquish_failed = B_FALSE;
rblk_priv = rctlblk_get_privilege(new_rblk);
if (rblk_priv == RCPRIV_SYSTEM) {
preserve_error(gettext("cannot modify system values"));
return (1);
}
if (rblk_priv == RCPRIV_PRIVILEGED) {
new_prpriv = proc_get_priv(Pstatus(Pr)->pr_pid);
if (new_prpriv == NULL) {
preserve_error(gettext("cannot get process privileges "
"for pid %d: %s"), Pstatus(Pr)->pr_pid,
strerror(errno));
return (1);
}
eset = (priv_set_t *)
&new_prpriv->pr_sets[new_prpriv->pr_setsize *
priv_getsetbyname(PRIV_EFFECTIVE)];
pset = (priv_set_t *)
&new_prpriv->pr_sets[new_prpriv->pr_setsize *
priv_getsetbyname(PRIV_PERMITTED)];
if (!priv_ismember(eset, PRIV_SYS_RESOURCE)) {
old_prpriv = proc_get_priv(Pstatus(Pr)->pr_pid);
if (old_prpriv == NULL) {
preserve_error(gettext("cannot get process "
"privileges for pid %d: %s"),
Pstatus(Pr)->pr_pid, strerror(errno));
proc_free_priv(new_prpriv);
return (1);
}
(void) priv_addset(eset, PRIV_SYS_RESOURCE);
(void) priv_addset(pset, PRIV_SYS_RESOURCE);
if (Psetflags(Pr, PR_KLC) != 0 ||
Psetpriv(Pr, new_prpriv) != 0) {
preserve_error(gettext("cannot set process "
"privileges for pid %d: %s"),
Pstatus(Pr)->pr_pid, strerror(errno));
(void) Punsetflags(Pr, PR_KLC);
proc_free_priv(new_prpriv);
proc_free_priv(old_prpriv);
return (1);
}
}
if (arg_name &&
arg_name_entity == RCENTITY_ZONE &&
getzoneid() == GLOBAL_ZONEID &&
proc_get_psinfo(Pstatus(Pr)->pr_pid, &psinfo) == 0 &&
(oldzoneid = psinfo.pr_zoneid) != GLOBAL_ZONEID) {
if (Psetflags(Pr, PR_KLC) != 0 ||
Psetzoneid(Pr, GLOBAL_ZONEID) < 0) {
preserve_error(gettext(
"cannot set global-zone "
"privileges for pid %d: %s"),
Pstatus(Pr)->pr_pid, strerror(errno));
oldzoneid = GLOBAL_ZONEID;
ret = 1;
goto bail;
}
}
}
if (flags == RCTL_REPLACE) {
if (pr_setrctl(Pr, name, NULL,
old_rblk, RCTL_DELETE)) {
preserve_error(gettext("failed to delete resource "
"control %s for pid %d: %s"), name,
Pstatus(Pr)->pr_pid, strerror(errno));
ret = 1;
goto bail;
}
if (pr_setrctl(Pr, name, NULL,
new_rblk, RCTL_INSERT)) {
preserve_error(gettext("failed to insert resource "
"control %s for pid %d: %s"), name,
Pstatus(Pr)->pr_pid, strerror(errno));
ret = 1;
goto bail;
}
} else if (flags == RCTL_INSERT) {
if (pr_setrctl(Pr, name, NULL,
new_rblk, RCTL_INSERT)) {
preserve_error(gettext("failed to create resource "
"control %s for pid %d: %s"), name,
Pstatus(Pr)->pr_pid, strerror(errno));
ret = 1;
goto bail;
}
} else if (flags == RCTL_DELETE) {
if (pr_setrctl(Pr, name, NULL,
new_rblk, RCTL_DELETE)) {
preserve_error(gettext("failed to delete resource "
"control %s for pid %d: %s"), name,
Pstatus(Pr)->pr_pid, strerror(errno));
ret = 1;
goto bail;
}
}
bail:
if (oldzoneid != GLOBAL_ZONEID) {
if (Psetzoneid(Pr, oldzoneid) != 0)
relinquish_failed = B_TRUE;
}
if (old_prpriv != NULL) {
if (Psetpriv(Pr, old_prpriv) != 0)
relinquish_failed = B_TRUE;
proc_free_priv(old_prpriv);
}
if (relinquish_failed) {
Pdestroy_agent(Pr);
preserve_error(gettext("cannot relinquish privileges "
"for pid %d. The process was killed."),
Pstatus(Pr)->pr_pid);
} else {
if (Punsetflags(Pr, PR_KLC) != 0)
preserve_error(gettext("cannot relinquish privileges "
"for pid %d. The process was killed."),
Pstatus(Pr)->pr_pid);
}
if (new_prpriv != NULL)
proc_free_priv(new_prpriv);
return (ret);
}
void
print_priv(rctl_priv_t local_priv, char *format)
{
char pstring[11];
switch (local_priv) {
case RCPRIV_BASIC:
(void) strcpy(pstring, "basic");
break;
case RCPRIV_PRIVILEGED:
(void) strcpy(pstring, "privileged");
break;
case RCPRIV_SYSTEM:
(void) strcpy(pstring, "system");
break;
default:
(void) sprintf(pstring, "%d", local_priv);
break;
}
(void) fprintf(stdout, format, pstring);
}
void
print_local_action(int action, int *signalp, char *format)
{
char sig[SIG2STR_MAX];
char sigstring[SIG2STR_MAX + 7];
char astring[5 + SIG2STR_MAX + 7];
int set = 0;
astring[0] = '\0';
if (action == RCTL_LOCAL_NOACTION) {
(void) strcat(astring, "none");
set++;
}
if (action & RCTL_LOCAL_DENY) {
(void) strcat(astring, "deny");
set++;
}
if ((action & RCTL_LOCAL_DENY) &&
(action & RCTL_LOCAL_SIGNAL)) {
(void) strcat(astring, ",");
}
if (action & RCTL_LOCAL_SIGNAL) {
if (sig2str(*signalp, sig))
(void) snprintf(sigstring, sizeof (astring),
"signal=%d", *signalp);
else
(void) snprintf(sigstring, sizeof (astring),
"signal=%s", sig);
(void) strcat(astring, sigstring);
set++;
}
if (set)
(void) fprintf(stdout, format, astring);
else
(void) fprintf(stdout, format, action);
}
pid_t
regrab_process(pid_t pid, pr_info_handle_t *p, int priv, int *gret)
{
char pidstring[24];
gret = 0;
if (pid == -1)
return (p->pid);
if (p->pid == pid)
return (p->pid);
release_process(p->pr);
(void) memset(p, 0, sizeof (*p));
(void) snprintf(pidstring, 24, "%d", pid);
return (grab_process_by_id(
pidstring, RCENTITY_PROCESS, p, priv, gret));
}
pid_t
grab_process_by_id(char *idname, rctl_entity_t type, pr_info_handle_t *p,
int priv, int *gret)
{
char prbuf[PROJECT_BUFSZ];
projid_t projid;
taskid_t taskid;
zoneid_t zoneid;
zoneid_t zone_self;
struct project proj;
DIR *dirp;
struct dirent *dentp;
int found = 0;
int pid_self;
int ret;
int gret_in;
int intidname;
char *end;
prpriv_t *prpriv;
priv_set_t *prset;
gret_in = *gret;
pid_self = getpid();
intidname = strtoul(idname, &end, 10);
if (errno || *end != '\0' || end == idname) {
intidname = -1;
}
zone_self = getzoneid();
if (idname == NULL || strcmp(idname, "") == 0) {
warn(gettext("id name cannot be nuint64\n"));
return (-1);
}
if (type == RCENTITY_ZONE) {
if (zone_get_id(idname, &zoneid) != 0) {
warn(gettext("%s: unknown zone\n"), idname);
return (-1);
}
} else if (type == RCENTITY_PROJECT) {
if (getprojbyname(idname, &proj, prbuf, PROJECT_BUFSZ)
== NULL) {
if (getprojbyid(intidname, &proj, prbuf,
PROJECT_BUFSZ) == NULL) {
warn(gettext("%s: cannot find project\n"),
idname);
return (-1);
}
}
projid = proj.pj_projid;
} else if (type == RCENTITY_TASK) {
taskid = (taskid_t)atol(idname);
}
if (type == RCENTITY_ZONE || type == RCENTITY_PROJECT ||
type == RCENTITY_TASK) {
if ((dirp = opendir("/proc")) == NULL) {
warn(gettext("%s: cannot open /proc directory\n"),
idname);
return (-1);
}
while (dentp = readdir(dirp)) {
p->pid = atoi(dentp->d_name);
if (p->pid == pid_self)
continue;
if (proc_get_psinfo(p->pid, &(p->psinfo)) != 0)
continue;
if (type == RCENTITY_ZONE &&
(p->psinfo).pr_zoneid != zoneid) {
continue;
} else if (type == RCENTITY_PROJECT &&
((p->psinfo).pr_projid != projid ||
(p->psinfo).pr_zoneid != zone_self)) {
continue;
} else if (type == RCENTITY_TASK &&
(p->psinfo).pr_taskid != taskid) {
continue;
}
if (grab_process(p, gret) != 0)
continue;
if (type == RCENTITY_PROJECT) {
if (pr_getprojid(p->pr) != projid ||
pr_getzoneid(p->pr) != zone_self) {
release_process(p->pr);
continue;
}
} else if (type == RCENTITY_TASK) {
if (pr_gettaskid(p->pr) != taskid) {
release_process(p->pr);
continue;
}
} else if (type == RCENTITY_ZONE) {
if (pr_getzoneid(p->pr) != zoneid) {
release_process(p->pr);
continue;
}
}
if (priv != RCPRIV_BASIC) {
prpriv = proc_get_priv(p->pid);
if (prpriv == NULL) {
release_process(p->pr);
continue;
}
prset = (priv_set_t *)
&prpriv->pr_sets[prpriv->pr_setsize *
priv_getsetbyname(PRIV_LIMIT)];
if (!priv_ismember(prset, PRIV_SYS_RESOURCE)) {
proc_free_priv(prpriv);
release_process(p->pr);
continue;
}
proc_free_priv(prpriv);
}
found = 1;
p->taskid = pr_gettaskid(p->pr);
p->projid = pr_getprojid(p->pr);
p->zoneid = pr_getzoneid(p->pr);
break;
}
(void) closedir(dirp);
if (found == 0) {
warn(gettext("%s: No controllable process found in "
"task, project, or zone.\n"), idname);
return (-1);
}
return (p->pid);
} else if (type == RCENTITY_PROCESS) {
if (p->pid == pid_self) {
warn(gettext("%s: cannot control self"), idname);
return (-1);
}
if ((p->pid = proc_arg_psinfo(idname, PR_ARG_PIDS,
&(p->psinfo), gret)) == -1) {
warn(gettext("%s: cannot examine: %s"), idname,
Pgrab_error(*gret));
return (-1);
}
ret = grab_process(p, gret);
if (ret == 1) {
if (gret_in == G_SYS && *gret == G_SYS) {
return (-1);
} else {
warn(gettext("%s: cannot control: %s"), idname,
Pgrab_error(*gret));
return (-1);
}
} else if (ret == 2) {
ret = errno;
warn(gettext("%s: cannot control: %s"), idname,
strerror(ret));
return (-1);
}
p->taskid = pr_gettaskid(p->pr);
p->projid = pr_getprojid(p->pr);
p->zoneid = pr_getzoneid(p->pr);
return (p->pid);
} else {
warn(gettext("%s: unknown resource entity type %d\n"), idname,
type);
return (-1);
}
}
int
grab_process(pr_info_handle_t *p, int *gret)
{
if ((p->pr = Pgrab(p->pid, arg_force, gret)) != NULL) {
if (Psetflags(p->pr, PR_RLC) != 0) {
Prelease(p->pr, 0);
return (1);
}
if (Pcreate_agent(p->pr) == 0) {
return (0);
} else {
Prelease(p->pr, 0);
return (2);
}
} else {
return (1);
}
}
void
release_process(struct ps_prochandle *Pr)
{
if (Pr == NULL)
return;
Pdestroy_agent(Pr);
Prelease(Pr, 0);
}
void
preserve_error(char *format, ...)
{
va_list alist;
va_start(alist, format);
(void) vsnprintf(global_error, GLOBAL_ERR_SZ-1, format, alist);
va_end(alist);
}
