starnix_modules_procfs/

pid_directory.rs

// Copyright 2021 The Fuchsia Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.

use itertools::Itertools;
use regex_lite::Regex;
use starnix_core::mm::{
    MemoryAccessor, MemoryAccessorExt, MemoryManager, PAGE_SIZE, ProcMapsFile, ProcSmapsFile,
};
use starnix_core::security;
use starnix_core::task::{
    CurrentTask, Task, TaskPersistentInfo, TaskStateCode, ThreadGroup, ThreadGroupKey,
    path_from_root,
};
use starnix_core::vfs::buffers::{InputBuffer, OutputBuffer};
use starnix_core::vfs::pseudo::dynamic_file::{DynamicFile, DynamicFileBuf, DynamicFileSource};
use starnix_core::vfs::pseudo::simple_directory::SimpleDirectory;
use starnix_core::vfs::pseudo::simple_file::{
    BytesFile, BytesFileOps, SimpleFileNode, parse_i32_file, parse_unsigned_file,
    serialize_for_file,
};
use starnix_core::vfs::pseudo::stub_empty_file::StubEmptyFile;
use starnix_core::vfs::pseudo::vec_directory::{VecDirectory, VecDirectoryEntry};
use starnix_core::vfs::{
    CallbackSymlinkNode, CloseFreeSafe, DirectoryEntryType, DirentSink, FdNumber, FileObject,
    FileOps, FileSystemHandle, FsNode, FsNodeHandle, FsNodeInfo, FsNodeOps, FsStr, FsString,
    ProcMountinfoFile, ProcMountsFile, SeekTarget, SymlinkTarget, default_seek, emit_dotdot,
    fileops_impl_directory, fileops_impl_noop_sync, fileops_impl_seekable,
    fileops_impl_unbounded_seek, fs_node_impl_dir_readonly,
};
use starnix_logging::{bug_ref, track_stub};
use starnix_sync::{FileOpsCore, Locked};
use starnix_task_command::TaskCommand;
use starnix_types::time::duration_to_scheduler_clock;
use starnix_uapi::auth::{
    CAP_SYS_NICE, CAP_SYS_RESOURCE, Capabilities, PTRACE_MODE_ATTACH_FSCREDS, PTRACE_MODE_NOAUDIT,
    PTRACE_MODE_READ_FSCREDS, PtraceAccessMode,
};
use starnix_uapi::device_id::DeviceId;
use starnix_uapi::errors::Errno;
use starnix_uapi::file_mode::{Access, FileMode, mode};
use starnix_uapi::open_flags::OpenFlags;
use starnix_uapi::resource_limits::Resource;
use starnix_uapi::user_address::UserAddress;
use starnix_uapi::{
    OOM_ADJUST_MIN, OOM_DISABLE, OOM_SCORE_ADJ_MIN, RLIM_INFINITY, errno, error, ino_t, off_t,
    pid_t, uapi,
};
use std::borrow::Cow;
use std::ops::{Deref, Range};
use std::sync::{Arc, LazyLock, Weak};

/// Loads entries for the `scope` of a task.
fn task_entries(scope: TaskEntryScope) -> Vec<(FsString, FileMode)> {
    // NOTE: keep entries in sync with `TaskDirectory::lookup()`.
    let mut entries = vec![
        (b"cgroup".into(), mode!(IFREG, 0o444)),
        (b"cwd".into(), mode!(IFLNK, 0o777)),
        (b"exe".into(), mode!(IFLNK, 0o777)),
        (b"fd".into(), mode!(IFDIR, 0o500)),
        (b"fdinfo".into(), mode!(IFDIR, 0o555)),
        (b"io".into(), mode!(IFREG, 0o400)),
        (b"limits".into(), mode!(IFREG, 0o444)),
        (b"maps".into(), mode!(IFREG, 0o444)),
        (b"mem".into(), mode!(IFREG, 0o600)),
        (b"root".into(), mode!(IFLNK, 0o777)),
        (b"sched".into(), mode!(IFREG, 0o644)),
        (b"schedstat".into(), mode!(IFREG, 0o444)),
        (b"smaps".into(), mode!(IFREG, 0o444)),
        (b"stat".into(), mode!(IFREG, 0o444)),
        (b"statm".into(), mode!(IFREG, 0o444)),
        (b"status".into(), mode!(IFREG, 0o444)),
        (b"cmdline".into(), mode!(IFREG, 0o444)),
        (b"environ".into(), mode!(IFREG, 0o400)),
        (b"auxv".into(), mode!(IFREG, 0o400)),
        (b"comm".into(), mode!(IFREG, 0o644)),
        (b"attr".into(), mode!(IFDIR, 0o555)),
        (b"ns".into(), mode!(IFDIR, 0o511)),
        (b"mountinfo".into(), mode!(IFREG, 0o444)),
        (b"mounts".into(), mode!(IFREG, 0o444)),
        (b"oom_adj".into(), mode!(IFREG, 0o744)),
        (b"oom_score".into(), mode!(IFREG, 0o444)),
        (b"oom_score_adj".into(), mode!(IFREG, 0o744)),
        (b"timerslack_ns".into(), mode!(IFREG, 0o666)),
        (b"wchan".into(), mode!(IFREG, 0o444)),
        (b"clear_refs".into(), mode!(IFREG, 0o200)),
        (b"pagemap".into(), mode!(IFREG, 0o400)),
    ];

    if scope == TaskEntryScope::ThreadGroup {
        entries.push((b"task".into(), mode!(IFDIR, 0o555)));
    }

    entries
}

#[derive(Copy, Clone, Eq, PartialEq)]
pub enum TaskEntryScope {
    Task,
    ThreadGroup,
}

/// Represents a directory node for either `/proc/<pid>` or `/proc/<pid>/task/<tid>`.
///
/// This directory lazily creates its child entries to save memory.
///
/// It pre-allocates a range of inode numbers (`inode_range`) for all its child entries to mark
/// them as unchanged when re-accessed.
/// The `creds` stored within is applied to the directory node itself and child entries.
pub struct TaskDirectory {
    task_weak: Weak<Task>,
    scope: TaskEntryScope,
    inode_range: Range<ino_t>,
}

#[derive(Clone)]
struct TaskDirectoryNode(Arc<TaskDirectory>);

impl Deref for TaskDirectoryNode {
    type Target = TaskDirectory;

    fn deref(&self) -> &Self::Target {
        &self.0
    }
}

impl TaskDirectory {
    fn new(fs: &FileSystemHandle, task: &Arc<Task>, scope: TaskEntryScope) -> FsNodeHandle {
        let creds = task.real_creds().euid_as_fscred();
        let task_weak = Arc::downgrade(task);
        fs.create_node_and_allocate_node_id(
            TaskDirectoryNode(Arc::new(TaskDirectory {
                task_weak,
                scope,
                inode_range: fs.allocate_ino_range(task_entries(scope).len()),
            })),
            FsNodeInfo::new(mode!(IFDIR, 0o555), creds),
        )
    }
}

impl FsNodeOps for TaskDirectoryNode {
    fs_node_impl_dir_readonly!();

    fn create_file_ops(
        &self,
        _locked: &mut Locked<FileOpsCore>,
        _node: &FsNode,
        _current_task: &CurrentTask,
        _flags: OpenFlags,
    ) -> Result<Box<dyn FileOps>, Errno> {
        Ok(Box::new(self.clone()))
    }

    fn lookup(
        &self,
        _locked: &mut Locked<FileOpsCore>,
        node: &FsNode,
        _current_task: &CurrentTask,
        name: &FsStr,
    ) -> Result<FsNodeHandle, Errno> {
        let task_weak = self.task_weak.clone();
        let creds = node.info().cred();
        let fs = node.fs();
        let (mode, ino) = task_entries(self.scope)
            .into_iter()
            .enumerate()
            .find_map(|(index, (n, mode))| {
                if name == *n {
                    Some((mode, self.inode_range.start + index as ino_t))
                } else {
                    None
                }
            })
            .ok_or_else(|| errno!(ENOENT))?;

        // NOTE: keep entries in sync with `task_entries()`.
        let ops: Box<dyn FsNodeOps> = match &**name {
            b"cgroup" => Box::new(CgroupFile::new_node(task_weak)),
            b"cwd" => Box::new(CallbackSymlinkNode::new({
                move || {
                    Ok(SymlinkTarget::Node(
                        Task::from_weak(&task_weak)?.running_state()?.fs().cwd(),
                    ))
                }
            })),
            b"exe" => Box::new(CallbackSymlinkNode::new({
                move || {
                    let task = Task::from_weak(&task_weak)?;
                    if let Some(node) = task.mm().ok().and_then(|mm| mm.executable_node()) {
                        Ok(SymlinkTarget::Node(node))
                    } else {
                        error!(ENOENT)
                    }
                }
            })),
            b"fd" => Box::new(FdDirectory::new(task_weak)),
            b"fdinfo" => Box::new(FdInfoDirectory::new(task_weak)),
            b"io" => Box::new(IoFile::new_node()),
            b"limits" => Box::new(LimitsFile::new_node(task_weak)),
            b"maps" => Box::new(PtraceCheckedNode::new_node(
                task_weak,
                PTRACE_MODE_READ_FSCREDS,
                |_, _, task| Ok(ProcMapsFile::new(task)),
            )),
            b"mem" => Box::new(MemFile::new_node(task_weak)),
            b"root" => Box::new(CallbackSymlinkNode::new({
                move || {
                    Ok(SymlinkTarget::Node(
                        Task::from_weak(&task_weak)?.running_state()?.fs().root(),
                    ))
                }
            })),
            b"sched" => Box::new(StubEmptyFile::new_node(bug_ref!("https://fxbug.dev/322893980"))),
            b"schedstat" => {
                Box::new(StubEmptyFile::new_node(bug_ref!("https://fxbug.dev/322894256")))
            }
            b"smaps" => Box::new(PtraceCheckedNode::new_node(
                task_weak,
                PTRACE_MODE_READ_FSCREDS,
                |_, _, task| Ok(ProcSmapsFile::new(task)),
            )),
            b"stat" => Box::new(StatFile::new_node(task_weak, self.scope)),
            b"statm" => Box::new(StatmFile::new_node(task_weak)),
            b"status" => Box::new(StatusFile::new_node(task_weak)),
            b"cmdline" => Box::new(CmdlineFile::new_node(task_weak)),
            b"environ" => Box::new(EnvironFile::new_node(task_weak)),
            b"auxv" => Box::new(AuxvFile::new_node(task_weak)),
            b"comm" => {
                let task = self.task_weak.upgrade().ok_or_else(|| errno!(ESRCH))?;
                Box::new(CommFile::new_node(task_weak, task.persistent_info.clone()))
            }
            b"attr" => {
                let dir = SimpleDirectory::new();
                dir.edit(&fs, |dir| {
                    for (attr, name) in [
                        (security::ProcAttr::Current, "current"),
                        (security::ProcAttr::Exec, "exec"),
                        (security::ProcAttr::FsCreate, "fscreate"),
                        (security::ProcAttr::KeyCreate, "keycreate"),
                        (security::ProcAttr::SockCreate, "sockcreate"),
                    ] {
                        dir.entry_etc(
                            name.into(),
                            AttrNode::new(task_weak.clone(), attr),
                            mode!(IFREG, 0o666),
                            DeviceId::NONE,
                            creds,
                        );
                    }
                    dir.entry_etc(
                        "prev".into(),
                        AttrNode::new(task_weak, security::ProcAttr::Previous),
                        mode!(IFREG, 0o444),
                        DeviceId::NONE,
                        creds,
                    );
                });
                Box::new(dir)
            }
            b"ns" => Box::new(NsDirectory { task: task_weak }),
            b"mountinfo" => Box::new(ProcMountinfoFile::new_node(task_weak)),
            b"mounts" => Box::new(ProcMountsFile::new_node(task_weak)),
            b"oom_adj" => Box::new(OomAdjFile::new_node(task_weak)),
            b"oom_score" => Box::new(OomScoreFile::new_node(task_weak)),
            b"oom_score_adj" => Box::new(OomScoreAdjFile::new_node(task_weak)),
            b"timerslack_ns" => Box::new(TimerslackNsFile::new_node(task_weak)),
            b"wchan" => Box::new(BytesFile::new_node(b"0".to_vec())),
            b"clear_refs" => Box::new(ClearRefsFile::new_node(task_weak)),
            b"pagemap" => Box::new(PtraceCheckedNode::new_node(
                task_weak,
                PTRACE_MODE_READ_FSCREDS,
                |_, _, _| Ok(StubEmptyFile::new(bug_ref!("https://fxbug.dev/452096300"))),
            )),
            b"task" => {
                let task = self.task_weak.upgrade().ok_or_else(|| errno!(ESRCH))?;
                Box::new(TaskListDirectory { thread_group: Arc::downgrade(&task.thread_group()) })
            }
            name => unreachable!(
                "entry \"{:?}\" should be supported to keep in sync with task_entries()",
                name
            ),
        };

        Ok(fs.create_node(ino, ops, FsNodeInfo::new(mode, creds)))
    }
}

/// `TaskDirectory` doesn't implement the `close` method.
impl CloseFreeSafe for TaskDirectory {}
impl FileOps for TaskDirectory {
    fileops_impl_directory!();
    fileops_impl_noop_sync!();
    fileops_impl_unbounded_seek!();

    fn readdir(
        &self,
        _locked: &mut Locked<FileOpsCore>,
        file: &FileObject,
        _current_task: &CurrentTask,
        sink: &mut dyn DirentSink,
    ) -> Result<(), Errno> {
        emit_dotdot(file, sink)?;

        // Skip through the entries until the current offset is reached.
        // Subtract 2 from the offset to account for `.` and `..`.
        for (index, (name, mode)) in
            task_entries(self.scope).into_iter().enumerate().skip(sink.offset() as usize - 2)
        {
            sink.add(
                self.inode_range.start + index as ino_t,
                sink.offset() + 1,
                DirectoryEntryType::from_mode(mode),
                name.as_ref(),
            )?;
        }
        Ok(())
    }

    fn as_thread_group_key(&self, _file: &FileObject) -> Result<ThreadGroupKey, Errno> {
        let task = self.task_weak.upgrade().ok_or_else(|| errno!(ESRCH))?;
        Ok(task.thread_group().into())
    }
}

/// Creates an [`FsNode`] that represents the `/proc/<pid>` directory for `task`.
pub fn pid_directory(
    current_task: &CurrentTask,
    fs: &FileSystemHandle,
    task: &Arc<Task>,
) -> FsNodeHandle {
    // proc(5): "The files inside each /proc/pid directory are normally
    // owned by the effective user and effective group ID of the process."
    let fs_node = TaskDirectory::new(fs, task, TaskEntryScope::ThreadGroup);

    security::task_to_fs_node(current_task, task, &fs_node);
    fs_node
}

/// Creates an [`FsNode`] that represents the `/proc/<pid>/task/<tid>` directory for `task`.
fn tid_directory(fs: &FileSystemHandle, task: &Arc<Task>) -> FsNodeHandle {
    TaskDirectory::new(fs, task, TaskEntryScope::Task)
}

/// `FdDirectory` implements the directory listing operations for a `proc/<pid>/fd` directory.
///
/// Reading the directory returns a list of all the currently open file descriptors for the
/// associated task.
struct FdDirectory {
    task: Weak<Task>,
}

impl FdDirectory {
    fn new(task: Weak<Task>) -> Self {
        Self { task }
    }
}

impl FsNodeOps for FdDirectory {
    fs_node_impl_dir_readonly!();

    fn create_file_ops(
        &self,
        _locked: &mut Locked<FileOpsCore>,
        _node: &FsNode,
        _current_task: &CurrentTask,
        _flags: OpenFlags,
    ) -> Result<Box<dyn FileOps>, Errno> {
        Ok(VecDirectory::new_file(fds_to_directory_entries(
            Task::from_weak(&self.task)?.running_state()?.files.get_all_fds(),
        )))
    }

    fn lookup(
        &self,
        _locked: &mut Locked<FileOpsCore>,
        node: &FsNode,
        _current_task: &CurrentTask,
        name: &FsStr,
    ) -> Result<FsNodeHandle, Errno> {
        let fd = FdNumber::from_fs_str(name).map_err(|_| errno!(ENOENT))?;
        let task = Task::from_weak(&self.task)?;
        // Make sure that the file descriptor exists before creating the node.
        let file =
            task.running_state()?.files.get_allowing_opath(fd).map_err(|_| errno!(ENOENT))?;
        // Derive the symlink's mode from the mode in which the file was opened.
        let mode = FileMode::IFLNK | Access::from_open_flags(file.flags()).user_mode();
        let task_reference = self.task.clone();
        Ok(node.fs().create_node_and_allocate_node_id(
            CallbackSymlinkNode::new(move || {
                let task = Task::from_weak(&task_reference)?;
                let file = task
                    .running_state()?
                    .files
                    .get_allowing_opath(fd)
                    .map_err(|_| errno!(ENOENT))?;
                Ok(SymlinkTarget::Node(file.name.to_passive()))
            }),
            FsNodeInfo::new(mode, task.real_fscred()),
        ))
    }
}

const NS_ENTRIES: &[&str] = &[
    "cgroup",
    "ipc",
    "mnt",
    "net",
    "pid",
    "pid_for_children",
    "time",
    "time_for_children",
    "user",
    "uts",
];

/// /proc/<pid>/attr directory entry.
struct AttrNode {
    attr: security::ProcAttr,
    task: Weak<Task>,
}

impl AttrNode {
    fn new(task: Weak<Task>, attr: security::ProcAttr) -> impl FsNodeOps {
        SimpleFileNode::new(move |_, _| Ok(AttrNode { attr, task: task.clone() }))
    }
}

impl FileOps for AttrNode {
    fileops_impl_seekable!();
    fileops_impl_noop_sync!();

    fn writes_update_seek_offset(&self) -> bool {
        false
    }

    fn read(
        &self,
        _locked: &mut Locked<FileOpsCore>,
        _file: &FileObject,
        current_task: &CurrentTask,
        offset: usize,
        data: &mut dyn OutputBuffer,
    ) -> Result<usize, Errno> {
        let task = Task::from_weak(&self.task)?;
        let response = security::get_procattr(current_task, &task, self.attr)?;
        data.write(&response[offset..])
    }

    fn write(
        &self,
        _locked: &mut Locked<FileOpsCore>,
        _file: &FileObject,
        current_task: &CurrentTask,
        offset: usize,
        data: &mut dyn InputBuffer,
    ) -> Result<usize, Errno> {
        let task = Task::from_weak(&self.task)?;

        // If the current task is not the target then writes are not allowed.
        if current_task.task != task {
            return error!(EPERM);
        }
        if offset != 0 {
            return error!(EINVAL);
        }

        let data = data.read_all()?;
        let data_len = data.len();
        security::set_procattr(current_task, self.attr, data.as_slice())?;
        Ok(data_len)
    }
}

/// /proc/[pid]/ns directory
struct NsDirectory {
    task: Weak<Task>,
}

impl FsNodeOps for NsDirectory {
    fs_node_impl_dir_readonly!();

    fn create_file_ops(
        &self,
        _locked: &mut Locked<FileOpsCore>,
        _node: &FsNode,
        _current_task: &CurrentTask,
        _flags: OpenFlags,
    ) -> Result<Box<dyn FileOps>, Errno> {
        // For each namespace, this contains a link to the current identifier of the given namespace
        // for the current task.
        Ok(VecDirectory::new_file(
            NS_ENTRIES
                .iter()
                .map(|&name| VecDirectoryEntry {
                    entry_type: DirectoryEntryType::LNK,
                    name: FsString::from(name),
                    inode: None,
                })
                .collect(),
        ))
    }

    fn lookup(
        &self,
        _locked: &mut Locked<FileOpsCore>,
        node: &FsNode,
        current_task: &CurrentTask,
        name: &FsStr,
    ) -> Result<FsNodeHandle, Errno> {
        // If name is a given namespace, link to the current identifier of the that namespace for
        // the current task.
        // If name is {namespace}:[id], get a file descriptor for the given namespace.

        let name = String::from_utf8(name.to_vec()).map_err(|_| errno!(ENOENT))?;
        let mut elements = name.split(':');
        let ns = elements.next().expect("name must not be empty");
        // The name doesn't starts with a known namespace.
        if !NS_ENTRIES.contains(&ns) {
            return error!(ENOENT);
        }

        let task = Task::from_weak(&self.task)?;
        if let Some(id) = elements.next() {
            // The name starts with {namespace}:, check that it matches {namespace}:[id]
            static NS_IDENTIFIER_RE: LazyLock<Regex> =
                LazyLock::new(|| Regex::new("^\\[[0-9]+\\]$").unwrap());
            if !NS_IDENTIFIER_RE.is_match(id) {
                return error!(ENOENT);
            }
            let node_info = || FsNodeInfo::new(mode!(IFREG, 0o444), task.real_fscred());
            let fallback = || {
                node.fs().create_node_and_allocate_node_id(BytesFile::new_node(vec![]), node_info())
            };
            Ok(match ns {
                "cgroup" => {
                    track_stub!(TODO("https://fxbug.dev/297313673"), "cgroup namespaces");
                    fallback()
                }
                "ipc" => {
                    track_stub!(TODO("https://fxbug.dev/297313673"), "ipc namespaces");
                    fallback()
                }
                "mnt" => node
                    .fs()
                    .create_node_and_allocate_node_id(current_task.fs().namespace(), node_info()),
                "net" => {
                    track_stub!(TODO("https://fxbug.dev/297313673"), "net namespaces");
                    fallback()
                }
                "pid" => {
                    track_stub!(TODO("https://fxbug.dev/297313673"), "pid namespaces");
                    fallback()
                }
                "pid_for_children" => {
                    track_stub!(TODO("https://fxbug.dev/297313673"), "pid_for_children namespaces");
                    fallback()
                }
                "time" => {
                    track_stub!(TODO("https://fxbug.dev/297313673"), "time namespaces");
                    fallback()
                }
                "time_for_children" => {
                    track_stub!(
                        TODO("https://fxbug.dev/297313673"),
                        "time_for_children namespaces"
                    );
                    fallback()
                }
                "user" => {
                    track_stub!(TODO("https://fxbug.dev/297313673"), "user namespaces");
                    fallback()
                }
                "uts" => {
                    track_stub!(TODO("https://fxbug.dev/297313673"), "uts namespaces");
                    fallback()
                }
                _ => return error!(ENOENT),
            })
        } else {
            // The name is {namespace}, link to the correct one of the current task.
            let id = current_task.fs().namespace().id;
            Ok(node.fs().create_node_and_allocate_node_id(
                CallbackSymlinkNode::new(move || {
                    Ok(SymlinkTarget::Path(format!("{name}:[{id}]").into()))
                }),
                FsNodeInfo::new(mode!(IFLNK, 0o7777), task.real_fscred()),
            ))
        }
    }
}

/// `FdInfoDirectory` implements the directory listing operations for a `proc/<pid>/fdinfo`
/// directory.
///
/// Reading the directory returns a list of all the currently open file descriptors for the
/// associated task.
struct FdInfoDirectory {
    task: Weak<Task>,
}

impl FdInfoDirectory {
    fn new(task: Weak<Task>) -> Self {
        Self { task }
    }
}

impl FsNodeOps for FdInfoDirectory {
    fs_node_impl_dir_readonly!();

    fn create_file_ops(
        &self,
        locked: &mut Locked<FileOpsCore>,
        _node: &FsNode,
        current_task: &CurrentTask,
        _flags: OpenFlags,
    ) -> Result<Box<dyn FileOps>, Errno> {
        let task = Task::from_weak(&self.task)?;
        current_task
            .check_ptrace_access_mode(locked, PTRACE_MODE_READ_FSCREDS, &task)
            .map_err(|_| errno!(EACCES))?;

        Ok(VecDirectory::new_file(fds_to_directory_entries(
            task.running_state()?.files.get_all_fds(),
        )))
    }

    fn lookup(
        &self,
        locked: &mut Locked<FileOpsCore>,
        node: &FsNode,
        current_task: &CurrentTask,
        name: &FsStr,
    ) -> Result<FsNodeHandle, Errno> {
        let task = Task::from_weak(&self.task)?;
        let fd = FdNumber::from_fs_str(name).map_err(|_| errno!(ENOENT))?;
        let file =
            task.running_state()?.files.get_allowing_opath(fd).map_err(|_| errno!(ENOENT))?;
        let pos = file.offset.read();
        let flags = file.flags();
        let mut data = format!("pos:\t{}\nflags:\t0{:o}\n", pos, flags.bits()).into_bytes();
        if let Some(extra_fdinfo) = file.extra_fdinfo(locked, current_task) {
            data.extend_from_slice(extra_fdinfo.as_slice());
        }
        Ok(node.fs().create_node_and_allocate_node_id(
            BytesFile::new_node(data),
            FsNodeInfo::new(mode!(IFREG, 0o444), task.real_fscred()),
        ))
    }
}

fn fds_to_directory_entries(fds: Vec<FdNumber>) -> Vec<VecDirectoryEntry> {
    fds.into_iter()
        .map(|fd| VecDirectoryEntry {
            entry_type: DirectoryEntryType::DIR,
            name: fd.raw().to_string().into(),
            inode: None,
        })
        .collect()
}

/// Directory that lists the task IDs (tid) in a process. Located at `/proc/<pid>/task/`.
struct TaskListDirectory {
    thread_group: Weak<ThreadGroup>,
}

impl TaskListDirectory {
    fn thread_group(&self) -> Result<Arc<ThreadGroup>, Errno> {
        self.thread_group.upgrade().ok_or_else(|| errno!(ESRCH))
    }
}

impl FsNodeOps for TaskListDirectory {
    fs_node_impl_dir_readonly!();

    fn create_file_ops(
        &self,
        _locked: &mut Locked<FileOpsCore>,
        _node: &FsNode,
        _current_task: &CurrentTask,
        _flags: OpenFlags,
    ) -> Result<Box<dyn FileOps>, Errno> {
        Ok(VecDirectory::new_file(
            self.thread_group()?
                .read()
                .task_ids()
                .map(|tid| VecDirectoryEntry {
                    entry_type: DirectoryEntryType::DIR,
                    name: tid.to_string().into(),
                    inode: None,
                })
                .collect(),
        ))
    }

    fn lookup(
        &self,
        _locked: &mut Locked<FileOpsCore>,
        node: &FsNode,
        _current_task: &CurrentTask,
        name: &FsStr,
    ) -> Result<FsNodeHandle, Errno> {
        let thread_group = self.thread_group()?;
        let tid = std::str::from_utf8(name)
            .map_err(|_| errno!(ENOENT))?
            .parse::<pid_t>()
            .map_err(|_| errno!(ENOENT))?;
        // Make sure the tid belongs to this process.
        if !thread_group.read().contains_task(tid) {
            return error!(ENOENT);
        }

        let pid_state = thread_group.kernel.pids.read();
        let task = pid_state.get_task(tid).map_err(|_| errno!(ENOENT))?;
        std::mem::drop(pid_state);

        Ok(tid_directory(&node.fs(), &task))
    }
}

#[derive(Clone)]
struct CgroupFile(Weak<Task>);
impl CgroupFile {
    pub fn new_node(task: Weak<Task>) -> impl FsNodeOps {
        DynamicFile::new_node(Self(task))
    }
}
impl DynamicFileSource for CgroupFile {
    fn generate(
        &self,
        _current_task: &CurrentTask,
        sink: &mut DynamicFileBuf,
    ) -> Result<(), Errno> {
        let task = Task::from_weak(&self.0)?;
        let cgroup = task.kernel().cgroups.cgroup2.get_cgroup(task.thread_group());
        let path = path_from_root(cgroup)?;
        sink.write(format!("0::{}\n", path).as_bytes());
        Ok(())
    }
}

fn fill_buf_from_addr_range(
    task: &Task,
    range_start: UserAddress,
    range_end: UserAddress,
    sink: &mut DynamicFileBuf,
) -> Result<(), Errno> {
    #[allow(clippy::manual_saturating_arithmetic)]
    let len = range_end.ptr().checked_sub(range_start.ptr()).unwrap_or(0);
    // NB: If this is exercised in a hot-path, we can plumb the reading task
    // (`CurrentTask`) here to perform a copy without going through the VMO when
    // unified aspaces is enabled.
    let buf = task.read_memory_partial_to_vec(range_start, len)?;
    sink.write(&buf[..]);
    Ok(())
}

/// `CmdlineFile` implements `proc/<pid>/cmdline` file.
#[derive(Clone)]
pub struct CmdlineFile {
    task: Weak<Task>,
}
impl CmdlineFile {
    pub fn new_node(task: Weak<Task>) -> impl FsNodeOps {
        DynamicFile::new_node(Self { task })
    }
}
impl DynamicFileSource for CmdlineFile {
    fn generate(
        &self,
        _current_task: &CurrentTask,
        sink: &mut DynamicFileBuf,
    ) -> Result<(), Errno> {
        // Opened cmdline file should still be functional once the task is a zombie.
        let Some(task) = self.task.upgrade() else {
            return Ok(());
        };
        // /proc/<pid>/cmdline is empty for kthreads.
        let Ok(mm) = task.mm() else {
            return Ok(());
        };
        let (start, end) = {
            let mm_state = mm.state.read();
            (mm_state.argv_start, mm_state.argv_end)
        };
        fill_buf_from_addr_range(&task, start, end, sink)
    }
}

struct PtraceCheckedNode {}

impl PtraceCheckedNode {
    pub fn new_node<F, O>(task: Weak<Task>, mode: PtraceAccessMode, create_ops: F) -> impl FsNodeOps
    where
        F: Fn(&mut Locked<FileOpsCore>, &CurrentTask, Arc<Task>) -> Result<O, Errno>
            + Send
            + Sync
            + 'static,
        O: FileOps,
    {
        SimpleFileNode::new(move |locked, current_task: &CurrentTask| {
            let task = Task::from_weak(&task)?;
            // proc-pid nodes for kthreads do not require ptrace access checks.
            if task.mm().is_ok() {
                current_task
                    .check_ptrace_access_mode(locked, mode, &task)
                    .map_err(|_| errno!(EACCES))?;
            }
            create_ops(locked, current_task, task)
        })
    }
}

/// `EnvironFile` implements `proc/<pid>/environ` file.
#[derive(Clone)]
pub struct EnvironFile {
    task: Weak<Task>,
}
impl EnvironFile {
    pub fn new_node(task: Weak<Task>) -> impl FsNodeOps {
        PtraceCheckedNode::new_node(task, PTRACE_MODE_READ_FSCREDS, |_, _, task| {
            Ok(DynamicFile::new(Self { task: Arc::downgrade(&task) }))
        })
    }
}
impl DynamicFileSource for EnvironFile {
    fn generate(
        &self,
        _current_task: &CurrentTask,
        sink: &mut DynamicFileBuf,
    ) -> Result<(), Errno> {
        let task = Task::from_weak(&self.task)?;
        // /proc/<pid>/environ is empty for kthreads.
        let Ok(mm) = task.mm() else {
            return Ok(());
        };
        let (start, end) = {
            let mm_state = mm.state.read();
            (mm_state.environ_start, mm_state.environ_end)
        };
        fill_buf_from_addr_range(&task, start, end, sink)
    }
}

/// `AuxvFile` implements `proc/<pid>/auxv` file.
#[derive(Clone)]
pub struct AuxvFile {
    task: Weak<Task>,
}
impl AuxvFile {
    pub fn new_node(task: Weak<Task>) -> impl FsNodeOps {
        PtraceCheckedNode::new_node(task, PTRACE_MODE_READ_FSCREDS, |_, _, task| {
            Ok(DynamicFile::new(Self { task: Arc::downgrade(&task) }))
        })
    }
}
impl DynamicFileSource for AuxvFile {
    fn generate(
        &self,
        _current_task: &CurrentTask,
        sink: &mut DynamicFileBuf,
    ) -> Result<(), Errno> {
        let task = Task::from_weak(&self.task)?;
        // /proc/<pid>/auxv is empty for kthreads.
        let Ok(mm) = task.mm() else {
            return Ok(());
        };
        let (start, end) = {
            let mm_state = mm.state.read();
            (mm_state.auxv_start, mm_state.auxv_end)
        };
        fill_buf_from_addr_range(&task, start, end, sink)
    }
}

/// `CommFile` implements `proc/<pid>/comm` file.
pub struct CommFile {
    task: Weak<Task>,
    info: TaskPersistentInfo,
}
impl CommFile {
    pub fn new_node(task: Weak<Task>, info: TaskPersistentInfo) -> impl FsNodeOps {
        SimpleFileNode::new(move |_, _| {
            Ok(DynamicFile::new(CommFile { task: task.clone(), info: info.clone() }))
        })
    }
}

impl DynamicFileSource for CommFile {
    fn generate(
        &self,
        _current_task: &CurrentTask,
        sink: &mut DynamicFileBuf,
    ) -> Result<(), Errno> {
        sink.write(self.info.command_guard().comm_name());
        sink.write(b"\n");
        Ok(())
    }

    fn write(
        &self,
        _locked: &mut Locked<FileOpsCore>,
        current_task: &CurrentTask,
        _offset: usize,
        data: &mut dyn InputBuffer,
    ) -> Result<usize, Errno> {
        let task = Task::from_weak(&self.task)?;
        if !Arc::ptr_eq(&task.thread_group(), &current_task.thread_group()) {
            return error!(EINVAL);
        }
        // What happens if userspace writes to this file in multiple syscalls? We need more
        // detailed tests to see when the data is actually committed back to the task.
        let bytes = data.read_all()?;
        task.set_command_name(TaskCommand::new(&bytes));
        Ok(bytes.len())
    }
}

/// `IoFile` implements `proc/<pid>/io` file.
#[derive(Clone)]
pub struct IoFile {}
impl IoFile {
    pub fn new_node() -> impl FsNodeOps {
        DynamicFile::new_node(Self {})
    }
}
impl DynamicFileSource for IoFile {
    fn generate(
        &self,
        _current_task: &CurrentTask,
        sink: &mut DynamicFileBuf,
    ) -> Result<(), Errno> {
        track_stub!(TODO("https://fxbug.dev/322874250"), "/proc/pid/io");
        sink.write(b"rchar: 0\n");
        sink.write(b"wchar: 0\n");
        sink.write(b"syscr: 0\n");
        sink.write(b"syscw: 0\n");
        sink.write(b"read_bytes: 0\n");
        sink.write(b"write_bytes: 0\n");
        sink.write(b"cancelled_write_bytes: 0\n");
        Ok(())
    }
}

/// `LimitsFile` implements `proc/<pid>/limits` file.
#[derive(Clone)]
pub struct LimitsFile(Weak<Task>);
impl LimitsFile {
    pub fn new_node(task: Weak<Task>) -> impl FsNodeOps {
        DynamicFile::new_node(Self(task))
    }
}
impl DynamicFileSource for LimitsFile {
    fn generate_locked(
        &self,
        locked: &mut Locked<FileOpsCore>,
        _current_task: &CurrentTask,
        sink: &mut DynamicFileBuf,
    ) -> Result<(), Errno> {
        let task = Task::from_weak(&self.0)?;
        let limits = task.thread_group().limits.lock(locked);

        let write_limit = |sink: &mut DynamicFileBuf, value| {
            if value == RLIM_INFINITY as u64 {
                sink.write(format!("{:<20}", "unlimited").as_bytes());
            } else {
                sink.write(format!("{:<20}", value).as_bytes());
            }
        };
        sink.write(
            format!("{:<25}{:<20}{:<20}{:<10}\n", "Limit", "Soft Limit", "Hard Limit", "Units")
                .as_bytes(),
        );
        for resource in Resource::ALL {
            let desc = resource.desc();
            let limit = limits.get(resource);
            sink.write(format!("{:<25}", desc.name).as_bytes());
            write_limit(sink, limit.rlim_cur);
            write_limit(sink, limit.rlim_max);
            if !desc.unit.is_empty() {
                sink.write(format!("{:<10}", desc.unit).as_bytes());
            }
            sink.write(b"\n");
        }
        Ok(())
    }
}

/// `MemFile` implements `proc/<pid>/mem` file.
pub struct MemFile {
    mm: Weak<MemoryManager>,

    // TODO: https://fxbug.dev/442459337 - Tear-down MemoryManager internals on process exit, to
    // avoid extension of the MM lifetime prolonging access to memory via "/proc/pid/mem", etc
    // beyond that of the actual process/address-space.
    task: Weak<Task>,
}

impl MemFile {
    pub fn new_node(task: Weak<Task>) -> impl FsNodeOps {
        PtraceCheckedNode::new_node(task, PTRACE_MODE_ATTACH_FSCREDS, |_, _, task| {
            let mm = task.mm().ok().as_ref().map(Arc::downgrade).unwrap_or_default();
            Ok(Self { mm, task: Arc::downgrade(&task) })
        })
    }
}

impl FileOps for MemFile {
    fileops_impl_noop_sync!();

    fn is_seekable(&self) -> bool {
        true
    }

    fn seek(
        &self,
        _locked: &mut Locked<FileOpsCore>,
        _file: &FileObject,
        _current_task: &CurrentTask,
        current_offset: off_t,
        target: SeekTarget,
    ) -> Result<off_t, Errno> {
        default_seek(current_offset, target, || error!(EINVAL))
    }

    fn read(
        &self,
        _locked: &mut Locked<FileOpsCore>,
        _file: &FileObject,
        current_task: &CurrentTask,
        offset: usize,
        data: &mut dyn OutputBuffer,
    ) -> Result<usize, Errno> {
        let Some(_task) = self.task.upgrade() else {
            return Ok(0);
        };
        let Some(mm) = self.mm.upgrade() else {
            return Ok(0);
        };
        let mut addr = UserAddress::from(offset as u64);
        data.write_each(&mut |bytes| {
            let read_bytes = if current_task.has_same_address_space(Some(&mm)) {
                current_task.read_memory_partial(addr, bytes)
            } else {
                mm.syscall_read_memory_partial(addr, bytes)
            }
            .map_err(|_| errno!(EIO))?;
            let actual = read_bytes.len();
            addr = (addr + actual)?;
            Ok(actual)
        })
    }

    fn write(
        &self,
        _locked: &mut Locked<FileOpsCore>,
        _file: &FileObject,
        current_task: &CurrentTask,
        offset: usize,
        data: &mut dyn InputBuffer,
    ) -> Result<usize, Errno> {
        let Some(_task) = self.task.upgrade() else {
            return Ok(0);
        };
        let Some(mm) = self.mm.upgrade() else {
            return Ok(0);
        };
        let addr = UserAddress::from(offset as u64);
        let mut written = 0;
        let result = data.peek_each(&mut |bytes| {
            let actual = if current_task.has_same_address_space(Some(&mm)) {
                current_task.write_memory_partial((addr + written)?, bytes)
            } else {
                mm.syscall_write_memory_partial((addr + written)?, bytes)
            }
            .map_err(|_| errno!(EIO))?;
            written += actual;
            Ok(actual)
        });
        data.advance(written)?;
        result
    }
}

#[derive(Clone)]
pub struct StatFile {
    task: Weak<Task>,
    scope: TaskEntryScope,
}

impl StatFile {
    pub fn new_node(task: Weak<Task>, scope: TaskEntryScope) -> impl FsNodeOps {
        DynamicFile::new_node(Self { task, scope })
    }
}
impl DynamicFileSource for StatFile {
    fn generate_locked(
        &self,
        locked: &mut Locked<FileOpsCore>,
        current_task: &CurrentTask,
        sink: &mut DynamicFileBuf,
    ) -> Result<(), Errno> {
        let task = Task::from_weak(&self.task)?;

        // All fields and their types as specified in the man page.
        // Unimplemented fields are set to 0 here.
        let pid: pid_t; // 1
        let comm: TaskCommand;
        let state: char;
        let ppid: pid_t;
        let pgrp: pid_t; // 5
        let session: pid_t;
        let tty_nr: i32;
        let tpgid: i32 = 0;
        let flags: u32 = 0;
        let minflt: u64 = 0; // 10
        let cminflt: u64 = 0;
        let majflt: u64 = 0;
        let cmajflt: u64 = 0;
        let utime: i64;
        let stime: i64; // 15
        let cutime: i64;
        let cstime: i64;
        let priority: i64 = 0;
        let nice: i64;
        let num_threads: i64; // 20
        let itrealvalue: i64 = 0;
        let mut starttime: u64 = 0;
        let mut vsize: usize = 0;
        let mut rss: usize = 0;
        let mut rsslim: u64 = 0; // 25
        let mut startcode: u64 = 0;
        let mut endcode: u64 = 0;
        let mut startstack: usize = 0;
        let mut kstkesp: u64 = 0;
        let mut kstkeip: u64 = 0; // 30
        let signal: u64 = 0;
        let blocked: u64 = 0;
        let siginore: u64 = 0;
        let sigcatch: u64 = 0;
        let mut wchan: u64 = 0; // 35
        let nswap: u64 = 0;
        let cnswap: u64 = 0;
        let exit_signal: i32 = 0;
        let processor: i32 = 0;
        let rt_priority: u32 = 0; // 40
        let policy: u32 = 0;
        let delayacct_blkio_ticks: u64 = 0;
        let guest_time: u64 = 0;
        let cguest_time: i64 = 0;
        let mut start_data: u64 = 0; // 45
        let mut end_data: u64 = 0;
        let mut start_brk: u64 = 0;
        let mut arg_start: usize = 0;
        let mut arg_end: usize = 0;
        let mut env_start: usize = 0; // 50
        let mut env_end: usize = 0;
        let mut exit_code: i32 = 0;

        pid = task.get_tid();
        comm = task.command();
        state = task.state_code().code_char();
        nice = task.read().scheduler_state.normal_priority().as_nice() as i64;

        {
            let thread_group = task.thread_group().read();
            ppid = thread_group.get_ppid();
            pgrp = thread_group.process_group.leader;
            session = thread_group.process_group.session.leader;

            // TTY device ID.
            {
                let session = thread_group.process_group.session.read();
                tty_nr = session
                    .controlling_terminal
                    .as_ref()
                    .map(|t| t.terminal.device().bits())
                    .unwrap_or(0) as i32;
            }

            cutime = duration_to_scheduler_clock(thread_group.children_time_stats.user_time);
            cstime = duration_to_scheduler_clock(thread_group.children_time_stats.system_time);

            num_threads = thread_group.tasks_count() as i64;
        }

        let time_stats = match self.scope {
            TaskEntryScope::Task => task.time_stats(),
            TaskEntryScope::ThreadGroup => task.thread_group().time_stats(),
        };
        utime = duration_to_scheduler_clock(time_stats.user_time);
        stime = duration_to_scheduler_clock(time_stats.system_time);

        if let Ok(info) = task.thread_group().process.info() {
            starttime =
                duration_to_scheduler_clock(info.start_time - zx::MonotonicInstant::ZERO) as u64;
        }

        if let Ok(mm) = task.mm() {
            let mem_stats = mm.get_stats(current_task);
            let page_size = *PAGE_SIZE as usize;
            vsize = mem_stats.vm_size;
            rss = mem_stats.vm_rss / page_size;
            rsslim = task.thread_group().limits.lock(locked).get(Resource::RSS).rlim_max;

            {
                let mm_state = mm.state.read();
                startstack = mm_state.stack_start.ptr();
                arg_start = mm_state.argv_start.ptr();
                arg_end = mm_state.argv_end.ptr();
                env_start = mm_state.environ_start.ptr();
                env_end = mm_state.environ_end.ptr();
            }
        }

        // The man page describes that the following fields have "... values displayed as 0" if the
        // caller does not have ptrace read access to the target.
        // In practice the `startcode` and `endcode` fields appear to be displayed as 1.
        if !current_task
            .check_ptrace_access_mode(locked, PTRACE_MODE_READ_FSCREDS | PTRACE_MODE_NOAUDIT, &task)
            .is_ok()
        {
            startcode = 1;
            endcode = 1;
            startstack = 0;
            kstkesp = 0;
            kstkeip = 0;
            wchan = 0;
            start_data = 0;
            end_data = 0;
            start_brk = 0;
            arg_start = 0;
            arg_end = 0;
            env_start = 0;
            env_end = 0;
            exit_code = 0;
        }

        writeln!(
            sink,
            "{pid} ({comm}) {state} {ppid} {pgrp} {session} {tty_nr} {tpgid} {flags} {minflt} {cminflt} {majflt} {cmajflt} {utime} {stime} {cutime} {cstime} {priority} {nice} {num_threads} {itrealvalue} {starttime} {vsize} {rss} {rsslim} {startcode} {endcode} {startstack} {kstkesp} {kstkeip} {signal} {blocked} {siginore} {sigcatch} {wchan} {nswap} {cnswap} {exit_signal} {processor} {rt_priority} {policy} {delayacct_blkio_ticks} {guest_time} {cguest_time} {start_data} {end_data} {start_brk} {arg_start} {arg_end} {env_start} {env_end} {exit_code}"
        )?;

        Ok(())
    }
}

#[derive(Clone)]
pub struct StatmFile {
    task: Weak<Task>,
}
impl StatmFile {
    pub fn new_node(task: Weak<Task>) -> impl FsNodeOps {
        DynamicFile::new_node(Self { task })
    }
}
impl DynamicFileSource for StatmFile {
    fn generate(&self, current_task: &CurrentTask, sink: &mut DynamicFileBuf) -> Result<(), Errno> {
        // /proc/<pid>/statm reports zeroes for kthreads.
        let task = Task::from_weak(&self.task)?;
        let mem_stats = match task.mm() {
            Ok(mm) => mm.get_stats(current_task),
            Err(_) => Default::default(),
        };
        let page_size = *PAGE_SIZE as usize;

        // 5th and 7th fields are deprecated and should be set to 0.
        writeln!(
            sink,
            "{} {} {} {} 0 {} 0",
            mem_stats.vm_size / page_size,
            mem_stats.vm_rss / page_size,
            mem_stats.rss_shared / page_size,
            mem_stats.vm_exe / page_size,
            (mem_stats.vm_data + mem_stats.vm_stack) / page_size
        )?;
        Ok(())
    }
}

#[derive(Clone)]
pub struct StatusFile(Weak<Task>);
impl StatusFile {
    pub fn new_node(task: Weak<Task>) -> impl FsNodeOps {
        DynamicFile::new_node(Self(task))
    }
}
impl DynamicFileSource for StatusFile {
    fn generate(&self, current_task: &CurrentTask, sink: &mut DynamicFileBuf) -> Result<(), Errno> {
        let task = &self.0.upgrade();
        let (tgid, pid, creds_string) = {
            if let Some(task) = task {
                track_stub!(TODO("https://fxbug.dev/297440106"), "/proc/pid/status zombies");
                // Collect everything stored in info in this block.  There is a lock ordering
                // issue with the task lock acquired below, and cloning info is
                // expensive.
                write!(sink, "Name:\t")?;
                sink.write(task.persistent_info.command_guard().comm_name());
                let creds = task.persistent_info.real_creds();
                (
                    Some(task.persistent_info.pid()),
                    Some(task.persistent_info.tid()),
                    Some(format!(
                        "Uid:\t{}\t{}\t{}\t{}\nGid:\t{}\t{}\t{}\t{}\nGroups:\t{}",
                        creds.uid,
                        creds.euid,
                        creds.saved_uid,
                        creds.fsuid,
                        creds.gid,
                        creds.egid,
                        creds.saved_gid,
                        creds.fsgid,
                        creds.groups.iter().map(|n| n.to_string()).join(" ")
                    )),
                )
            } else {
                (None, None, None)
            }
        };

        writeln!(sink)?;

        if let Some(task) = task {
            if let Ok(running_state) = task.running_state() {
                writeln!(sink, "Umask:\t0{:03o}", running_state.fs().umask().bits())?;
            }
            let task_state = task.read();
            writeln!(sink, "SigBlk:\t{:016x}", task_state.signal_mask().0)?;
            writeln!(sink, "SigPnd:\t{:016x}", task_state.task_specific_pending_signals().0)?;
            writeln!(
                sink,
                "ShdPnd:\t{:x}",
                task.thread_group().pending_signals.lock().pending().0
            )?;
            writeln!(sink, "NoNewPrivs:\t{}", task_state.no_new_privs() as u8)?;

            // Since version 3.8 all nonexistent capabilities are reported as not-enabled.
            let creds = task.real_creds();
            let cap_mask = Capabilities::all_existent();
            writeln!(sink, "CapInh:\t{:016x}", creds.cap_inheritable & cap_mask)?;
            writeln!(sink, "CapPrm:\t{:016x}", creds.cap_permitted & cap_mask)?;
            writeln!(sink, "CapEff:\t{:016x}", creds.cap_effective & cap_mask)?;
            writeln!(sink, "CapBnd:\t{:016x}", creds.cap_bounding & cap_mask)?;
            writeln!(sink, "CapAmb:\t{:016x}", creds.cap_ambient & cap_mask)?;
        }

        let state_code =
            if let Some(task) = task { task.state_code() } else { TaskStateCode::Zombie };
        writeln!(sink, "State:\t{} ({})", state_code.code_char(), state_code.name())?;

        if let Some(tgid) = tgid {
            writeln!(sink, "Tgid:\t{}", tgid)?;
        }
        if let Some(pid) = pid {
            writeln!(sink, "Pid:\t{}", pid)?;
        }
        let (ppid, threads, tracer_pid) = if let Some(task) = task {
            let tracer_pid = task.read().ptrace.as_ref().map_or(0, |p| p.get_pid());
            let task_group = task.thread_group().read();
            (task_group.get_ppid(), task_group.tasks_count(), tracer_pid)
        } else {
            (1, 1, 0)
        };
        writeln!(sink, "PPid:\t{}", ppid)?;
        writeln!(sink, "TracerPid:\t{}", tracer_pid)?;

        if let Some(creds_string) = creds_string {
            writeln!(sink, "{}", creds_string)?;
        }

        if let Some(task) = task {
            if let Ok(mm) = task.mm() {
                let mem_stats = mm.get_stats(current_task);
                writeln!(sink, "VmSize:\t{} kB", mem_stats.vm_size / 1024)?;
                writeln!(sink, "VmLck:\t{} kB", mem_stats.vm_lck / 1024)?;
                writeln!(sink, "VmRSS:\t{} kB", mem_stats.vm_rss / 1024)?;
                writeln!(sink, "RssAnon:\t{} kB", mem_stats.rss_anonymous / 1024)?;
                writeln!(sink, "RssFile:\t{} kB", mem_stats.rss_file / 1024)?;
                writeln!(sink, "RssShmem:\t{} kB", mem_stats.rss_shared / 1024)?;
                writeln!(sink, "VmData:\t{} kB", mem_stats.vm_data / 1024)?;
                writeln!(sink, "VmStk:\t{} kB", mem_stats.vm_stack / 1024)?;
                writeln!(sink, "VmExe:\t{} kB", mem_stats.vm_exe / 1024)?;
                writeln!(sink, "VmSwap:\t{} kB", mem_stats.vm_swap / 1024)?;
                writeln!(sink, "VmHWM:\t{} kB", mem_stats.vm_rss_hwm / 1024)?;
            }
            // Report seccomp filter status.
            let seccomp = task.seccomp_filter_state.get() as u8;
            writeln!(sink, "Seccomp:\t{}", seccomp)?;
        }

        // There should be at least one thread in Zombie processes.
        writeln!(sink, "Threads:\t{}", std::cmp::max(1, threads))?;

        Ok(())
    }
}

struct OomScoreFile(Weak<Task>);

impl OomScoreFile {
    fn new_node(task: Weak<Task>) -> impl FsNodeOps {
        BytesFile::new_node(Self(task))
    }
}

impl BytesFileOps for OomScoreFile {
    fn read(&self, _current_task: &CurrentTask) -> Result<Cow<'_, [u8]>, Errno> {
        let _task = Task::from_weak(&self.0)?;
        track_stub!(TODO("https://fxbug.dev/322873459"), "/proc/pid/oom_score");
        Ok(serialize_for_file(0).into())
    }
}

// Redefine these constants as i32 to avoid conversions below.
const OOM_ADJUST_MAX: i32 = uapi::OOM_ADJUST_MAX as i32;
const OOM_SCORE_ADJ_MAX: i32 = uapi::OOM_SCORE_ADJ_MAX as i32;

struct OomAdjFile(Weak<Task>);
impl OomAdjFile {
    fn new_node(task: Weak<Task>) -> impl FsNodeOps {
        BytesFile::new_node(Self(task))
    }
}

impl BytesFileOps for OomAdjFile {
    fn write(&self, current_task: &CurrentTask, data: Vec<u8>) -> Result<(), Errno> {
        let value = parse_i32_file(&data)?;
        let oom_score_adj = if value == OOM_DISABLE {
            OOM_SCORE_ADJ_MIN
        } else {
            if !(OOM_ADJUST_MIN..=OOM_ADJUST_MAX).contains(&value) {
                return error!(EINVAL);
            }
            let fraction = (value - OOM_ADJUST_MIN) / (OOM_ADJUST_MAX - OOM_ADJUST_MIN);
            fraction * (OOM_SCORE_ADJ_MAX - OOM_SCORE_ADJ_MIN) + OOM_SCORE_ADJ_MIN
        };
        security::check_task_capable(current_task, CAP_SYS_RESOURCE)?;
        let task = Task::from_weak(&self.0)?;
        task.write().oom_score_adj = oom_score_adj;
        Ok(())
    }

    fn read(&self, _current_task: &CurrentTask) -> Result<Cow<'_, [u8]>, Errno> {
        let task = Task::from_weak(&self.0)?;
        let oom_score_adj = task.read().oom_score_adj;
        let oom_adj = if oom_score_adj == OOM_SCORE_ADJ_MIN {
            OOM_DISABLE
        } else {
            let fraction =
                (oom_score_adj - OOM_SCORE_ADJ_MIN) / (OOM_SCORE_ADJ_MAX - OOM_SCORE_ADJ_MIN);
            fraction * (OOM_ADJUST_MAX - OOM_ADJUST_MIN) + OOM_ADJUST_MIN
        };
        Ok(serialize_for_file(oom_adj).into())
    }
}

struct OomScoreAdjFile(Weak<Task>);

impl OomScoreAdjFile {
    fn new_node(task: Weak<Task>) -> impl FsNodeOps {
        BytesFile::new_node(Self(task))
    }
}

impl BytesFileOps for OomScoreAdjFile {
    fn write(&self, current_task: &CurrentTask, data: Vec<u8>) -> Result<(), Errno> {
        let value = parse_i32_file(&data)?;
        if !(OOM_SCORE_ADJ_MIN..=OOM_SCORE_ADJ_MAX).contains(&value) {
            return error!(EINVAL);
        }
        security::check_task_capable(current_task, CAP_SYS_RESOURCE)?;
        let task = Task::from_weak(&self.0)?;
        task.write().oom_score_adj = value;
        Ok(())
    }

    fn read(&self, _current_task: &CurrentTask) -> Result<Cow<'_, [u8]>, Errno> {
        let task = Task::from_weak(&self.0)?;
        let oom_score_adj = task.read().oom_score_adj;
        Ok(serialize_for_file(oom_score_adj).into())
    }
}

struct TimerslackNsFile(Weak<Task>);

impl TimerslackNsFile {
    fn new_node(task: Weak<Task>) -> impl FsNodeOps {
        BytesFile::new_node(Self(task))
    }
}

impl BytesFileOps for TimerslackNsFile {
    fn write(&self, current_task: &CurrentTask, data: Vec<u8>) -> Result<(), Errno> {
        let target_task = Task::from_weak(&self.0)?;
        let same_task =
            current_task.task.thread_group().leader == target_task.thread_group().leader;
        if !same_task {
            security::check_task_capable(current_task, CAP_SYS_NICE)?;
            security::check_setsched_access(current_task, &target_task)?;
        };

        let value = parse_unsigned_file(&data)?;
        target_task.write().set_timerslack_ns(value);
        Ok(())
    }

    fn read(&self, current_task: &CurrentTask) -> Result<Cow<'_, [u8]>, Errno> {
        let target_task = Task::from_weak(&self.0)?;
        let same_task =
            current_task.task.thread_group().leader == target_task.thread_group().leader;
        if !same_task {
            security::check_task_capable(current_task, CAP_SYS_NICE)?;
            security::check_getsched_access(current_task, &target_task)?;
        };

        let timerslack_ns = target_task.read().timerslack_ns;
        Ok(serialize_for_file(timerslack_ns).into())
    }
}

struct ClearRefsFile(Weak<Task>);

impl ClearRefsFile {
    fn new_node(task: Weak<Task>) -> impl FsNodeOps {
        BytesFile::new_node(Self(task))
    }
}

impl BytesFileOps for ClearRefsFile {
    fn write(&self, _current_task: &CurrentTask, _data: Vec<u8>) -> Result<(), Errno> {
        let _task = Task::from_weak(&self.0)?;
        track_stub!(TODO("https://fxbug.dev/396221597"), "/proc/pid/clear_refs");
        Ok(())
    }
}