Merge branch 'work.compat' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs

Pull compat updates from Al Viro: "Some biarch patches - getting rid of assorted (mis)uses of compat_alloc_user_space(). Not much in that area this cycle..." * 'work.compat' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs: orangefs: simplify compat ioctl handling signalfd: lift sigmask copyin and size checks to callers of do_signalfd4() vmsplice(): lift importing iovec into vmsplice(2) and compat counterpart
2024-11-21 19:41:42 +00:00 · 2018-06-16 16:21:50 +09:00 · 2018-06-16 16:21:50 +09:00 · 29d6849d88
commit 29d6849d88
parent a5b729ea18 430ff79170
3 changed files with 112 additions and 136 deletions
--- a/fs/orangefs/devorangefs-req.c
+++ b/fs/orangefs/devorangefs-req.c
@ -719,37 +719,6 @@ struct ORANGEFS_dev_map_desc32 {
 	__s32 count;
 };
 static unsigned long translate_dev_map26(unsigned long args, long *error)
 {
 	struct ORANGEFS_dev_map_desc32 __user *p32 = (void __user *)args;
 	/*
 	 * Depending on the architecture, allocate some space on the
 	 * user-call-stack based on our expected layout.
 	 */
 	struct ORANGEFS_dev_map_desc __user *p =
 	    compat_alloc_user_space(sizeof(*p));
 	compat_uptr_t addr;
 	*error = 0;
 	/* get the ptr from the 32 bit user-space */
 	if (get_user(addr, &p32->ptr))
 		goto err;
 	/* try to put that into a 64-bit layout */
 	if (put_user(compat_ptr(addr), &p->ptr))
 		goto err;
 	/* copy the remaining fields */
 	if (copy_in_user(&p->total_size, &p32->total_size, sizeof(__s32)))
 		goto err;
 	if (copy_in_user(&p->size, &p32->size, sizeof(__s32)))
 		goto err;
 	if (copy_in_user(&p->count, &p32->count, sizeof(__s32)))
 		goto err;
 	return (unsigned long)p;
 err:
 	*error = -EFAULT;
 	return 0;
 }
 /*
 * 32 bit user-space apps' ioctl handlers when kernel modules
 * is compiled as a 64 bit one
@ -758,25 +727,26 @@ static long orangefs_devreq_compat_ioctl(struct file *filp, unsigned int cmd,
 				      unsigned long args)
 {
 	long ret;
 	unsigned long arg = args;
 	/* Check for properly constructed commands */
 	ret = check_ioctl_command(cmd);
 	if (ret < 0)
 		return ret;
 	if (cmd == ORANGEFS_DEV_MAP) {
-		/*
+		struct ORANGEFS_dev_map_desc desc;
-		 * convert the arguments to what we expect internally
+		struct ORANGEFS_dev_map_desc32 d32;
-		 * in kernel space
+
-		 */
+		if (copy_from_user(&d32, (void __user *)args, sizeof(d32)))
-		arg = translate_dev_map26(args, &ret);
+			return -EFAULT;
-		if (ret < 0) {
+
-			gossip_err("Could not translate dev map\n");
+		desc.ptr = compat_ptr(d32.ptr);
-			return ret;
+		desc.total_size = d32.total_size;
-		}
+		desc.size = d32.size;
 		desc.count = d32.count;
 		return orangefs_bufmap_initialize(&desc);
 	}
 	/* no other ioctl requires translation */
-	return dispatch_ioctl_command(cmd, arg);
+	return dispatch_ioctl_command(cmd, args);
 }
 #endif /* CONFIG_COMPAT is in .config */
--- a/fs/signalfd.c
+++ b/fs/signalfd.c
@ -259,10 +259,8 @@ static const struct file_operations signalfd_fops = {
 	.llseek		= noop_llseek,
 };
-static int do_signalfd4(int ufd, sigset_t __user *user_mask, size_t sizemask,
+static int do_signalfd4(int ufd, sigset_t *mask, int flags)
 			int flags)
 {
 	sigset_t sigmask;
 	struct signalfd_ctx *ctx;
 	/* Check the SFD_* constants for consistency.  */
@ -272,18 +270,15 @@ static int do_signalfd4(int ufd, sigset_t __user *user_mask, size_t sizemask,
 	if (flags & ~(SFD_CLOEXEC | SFD_NONBLOCK))
 		return -EINVAL;
-	if (sizemask != sizeof(sigset_t) ||
+	sigdelsetmask(mask, sigmask(SIGKILL) | sigmask(SIGSTOP));
-	    copy_from_user(&sigmask, user_mask, sizeof(sigmask)))
+	signotset(mask);
 		return -EINVAL;
 	sigdelsetmask(&sigmask, sigmask(SIGKILL) | sigmask(SIGSTOP));
 	signotset(&sigmask);
 	if (ufd == -1) {
 		ctx = kmalloc(sizeof(*ctx), GFP_KERNEL);
 		if (!ctx)
 			return -ENOMEM;
-		ctx->sigmask = sigmask;
+		ctx->sigmask = *mask;
 		/*
 		 * When we call this, the initialization must be complete, since
@ -303,7 +298,7 @@ static int do_signalfd4(int ufd, sigset_t __user *user_mask, size_t sizemask,
 			return -EINVAL;
 		}
 		spin_lock_irq(&current->sighand->siglock);
-		ctx->sigmask = sigmask;
+		ctx->sigmask = *mask;
 		spin_unlock_irq(&current->sighand->siglock);
 		wake_up(&current->sighand->signalfd_wqh);
@ -316,46 +311,51 @@ static int do_signalfd4(int ufd, sigset_t __user *user_mask, size_t sizemask,
 SYSCALL_DEFINE4(signalfd4, int, ufd, sigset_t __user *, user_mask,
 		size_t, sizemask, int, flags)
 {
-	return do_signalfd4(ufd, user_mask, sizemask, flags);
+	sigset_t mask;
 	if (sizemask != sizeof(sigset_t) ||
 	    copy_from_user(&mask, user_mask, sizeof(mask)))
 		return -EINVAL;
 	return do_signalfd4(ufd, &mask, flags);
 }
 SYSCALL_DEFINE3(signalfd, int, ufd, sigset_t __user *, user_mask,
 		size_t, sizemask)
 {
-	return do_signalfd4(ufd, user_mask, sizemask, 0);
+	sigset_t mask;
 	if (sizemask != sizeof(sigset_t) ||
 	    copy_from_user(&mask, user_mask, sizeof(mask)))
 		return -EINVAL;
 	return do_signalfd4(ufd, &mask, 0);
 }
 #ifdef CONFIG_COMPAT
 static long do_compat_signalfd4(int ufd,
-			const compat_sigset_t __user *sigmask,
+			const compat_sigset_t __user *user_mask,
 			compat_size_t sigsetsize, int flags)
 {
-	sigset_t tmp;
+	sigset_t mask;
 	sigset_t __user *ksigmask;
 	if (sigsetsize != sizeof(compat_sigset_t))
 		return -EINVAL;
-	if (get_compat_sigset(&tmp, sigmask))
+	if (get_compat_sigset(&mask, user_mask))
 		return -EFAULT;
-	ksigmask = compat_alloc_user_space(sizeof(sigset_t));
+	return do_signalfd4(ufd, &mask, flags);
 	if (copy_to_user(ksigmask, &tmp, sizeof(sigset_t)))
 		return -EFAULT;
 	return do_signalfd4(ufd, ksigmask, sizeof(sigset_t), flags);
 }
 COMPAT_SYSCALL_DEFINE4(signalfd4, int, ufd,
-		     const compat_sigset_t __user *, sigmask,
+		     const compat_sigset_t __user *, user_mask,
 		     compat_size_t, sigsetsize,
 		     int, flags)
 {
-	return do_compat_signalfd4(ufd, sigmask, sigsetsize, flags);
+	return do_compat_signalfd4(ufd, user_mask, sigsetsize, flags);
 }
 COMPAT_SYSCALL_DEFINE3(signalfd, int, ufd,
-		     const compat_sigset_t __user *,sigmask,
+		     const compat_sigset_t __user *, user_mask,
 		     compat_size_t, sigsetsize)
 {
-	return do_compat_signalfd4(ufd, sigmask, sigsetsize, 0);
+	return do_compat_signalfd4(ufd, user_mask, sigsetsize, 0);
 }
 #endif
--- a/fs/splice.c
+++ b/fs/splice.c
@ -1243,38 +1243,26 @@ static int pipe_to_user(struct pipe_inode_info *pipe, struct pipe_buffer *buf,
 * For lack of a better implementation, implement vmsplice() to userspace
 * as a simple copy of the pipes pages to the user iov.
 */
-static long vmsplice_to_user(struct file *file, const struct iovec __user *uiov,
+static long vmsplice_to_user(struct file *file, struct iov_iter *iter,
-			     unsigned long nr_segs, unsigned int flags)
+			     unsigned int flags)
 {
-	struct pipe_inode_info *pipe;
+	struct pipe_inode_info *pipe = get_pipe_info(file);
-	struct splice_desc sd;
+	struct splice_desc sd = {
-	long ret;
+		.total_len = iov_iter_count(iter),
-	struct iovec iovstack[UIO_FASTIOV];
+		.flags = flags,
-	struct iovec *iov = iovstack;
+		.u.data = iter
-	struct iov_iter iter;
+	};
 	long ret = 0;
 	pipe = get_pipe_info(file);
 	if (!pipe)
 		return -EBADF;
 	ret = import_iovec(READ, uiov, nr_segs,
 			   ARRAY_SIZE(iovstack), &iov, &iter);
 	if (ret < 0)
 		return ret;
 	sd.total_len = iov_iter_count(&iter);
 	sd.len = 0;
 	sd.flags = flags;
 	sd.u.data = &iter;
 	sd.pos = 0;
 	if (sd.total_len) {
 		pipe_lock(pipe);
 		ret = __splice_from_pipe(pipe, &sd, pipe_to_user);
 		pipe_unlock(pipe);
 	}
 	kfree(iov);
 	return ret;
 }
@ -1283,14 +1271,11 @@ static long vmsplice_to_user(struct file *file, const struct iovec __user *uiov,
 * as splice-from-memory, where the regular splice is splice-from-file (or
 * to file). In both cases the output is a pipe, naturally.
 */
-static long vmsplice_to_pipe(struct file *file, const struct iovec __user *uiov,
+static long vmsplice_to_pipe(struct file *file, struct iov_iter *iter,
-			     unsigned long nr_segs, unsigned int flags)
+			     unsigned int flags)
 {
 	struct pipe_inode_info *pipe;
-	struct iovec iovstack[UIO_FASTIOV];
+	long ret = 0;
 	struct iovec *iov = iovstack;
 	struct iov_iter from;
 	long ret;
 	unsigned buf_flag = 0;
 	if (flags & SPLICE_F_GIFT)
@ -1300,22 +1285,31 @@ static long vmsplice_to_pipe(struct file *file, const struct iovec __user *uiov,
 	if (!pipe)
 		return -EBADF;
 	ret = import_iovec(WRITE, uiov, nr_segs,
 			   ARRAY_SIZE(iovstack), &iov, &from);
 	if (ret < 0)
 		return ret;
 	pipe_lock(pipe);
 	ret = wait_for_space(pipe, flags);
 	if (!ret)
-		ret = iter_to_pipe(&from, pipe, buf_flag);
+		ret = iter_to_pipe(iter, pipe, buf_flag);
 	pipe_unlock(pipe);
 	if (ret > 0)
 		wakeup_pipe_readers(pipe);
 	kfree(iov);
 	return ret;
 }
 static int vmsplice_type(struct fd f, int *type)
 {
 	if (!f.file)
 		return -EBADF;
 	if (f.file->f_mode & FMODE_WRITE) {
 		*type = WRITE;
 	} else if (f.file->f_mode & FMODE_READ) {
 		*type = READ;
 	} else {
 		fdput(f);
 		return -EBADF;
 	}
 	return 0;
 }
 /*
 * Note that vmsplice only really supports true splicing _from_ user memory
 * to a pipe, not the other way around. Splicing from user memory is a simple
@ -1332,57 +1326,69 @@ static long vmsplice_to_pipe(struct file *file, const struct iovec __user *uiov,
 * Currently we punt and implement it as a normal copy, see pipe_to_user().
 *
 */
-static long do_vmsplice(int fd, const struct iovec __user *iov,
+static long do_vmsplice(struct file *f, struct iov_iter *iter, unsigned int flags)
 			unsigned long nr_segs, unsigned int flags)
 {
 	struct fd f;
 	long error;
 	if (unlikely(flags & ~SPLICE_F_ALL))
 		return -EINVAL;
-	if (unlikely(nr_segs > UIO_MAXIOV))
+
-		return -EINVAL;
+	if (!iov_iter_count(iter))
 	else if (unlikely(!nr_segs))
 		return 0;
-	error = -EBADF;
+	if (iov_iter_rw(iter) == WRITE)
-	f = fdget(fd);
+		return vmsplice_to_pipe(f, iter, flags);
-	if (f.file) {
+	else
-		if (f.file->f_mode & FMODE_WRITE)
+		return vmsplice_to_user(f, iter, flags);
 			error = vmsplice_to_pipe(f.file, iov, nr_segs, flags);
 		else if (f.file->f_mode & FMODE_READ)
 			error = vmsplice_to_user(f.file, iov, nr_segs, flags);
 		fdput(f);
 	}
 	return error;
 }
-SYSCALL_DEFINE4(vmsplice, int, fd, const struct iovec __user *, iov,
+SYSCALL_DEFINE4(vmsplice, int, fd, const struct iovec __user *, uiov,
 		unsigned long, nr_segs, unsigned int, flags)
 {
-	return do_vmsplice(fd, iov, nr_segs, flags);
+	struct iovec iovstack[UIO_FASTIOV];
 	struct iovec *iov = iovstack;
 	struct iov_iter iter;
 	long error;
 	struct fd f;
 	int type;
 	f = fdget(fd);
 	error = vmsplice_type(f, &type);
 	if (error)
 		return error;
 	error = import_iovec(type, uiov, nr_segs,
 			     ARRAY_SIZE(iovstack), &iov, &iter);
 	if (!error) {
 		error = do_vmsplice(f.file, &iter, flags);
 		kfree(iov);
 	}
 	fdput(f);
 	return error;
 }
 #ifdef CONFIG_COMPAT
 COMPAT_SYSCALL_DEFINE4(vmsplice, int, fd, const struct compat_iovec __user *, iov32,
 		    unsigned int, nr_segs, unsigned int, flags)
 {
-	unsigned i;
+	struct iovec iovstack[UIO_FASTIOV];
-	struct iovec __user *iov;
+	struct iovec *iov = iovstack;
-	if (nr_segs > UIO_MAXIOV)
+	struct iov_iter iter;
-		return -EINVAL;
+	long error;
-	iov = compat_alloc_user_space(nr_segs * sizeof(struct iovec));
+	struct fd f;
-	for (i = 0; i < nr_segs; i++) {
+	int type;
-		struct compat_iovec v;
+
-		if (get_user(v.iov_base, &iov32[i].iov_base) ||
+	f = fdget(fd);
-		    get_user(v.iov_len, &iov32[i].iov_len) ||
+	error = vmsplice_type(f, &type);
-		    put_user(compat_ptr(v.iov_base), &iov[i].iov_base) ||
+	if (error)
-		    put_user(v.iov_len, &iov[i].iov_len))
+		return error;
-			return -EFAULT;
+
 	error = compat_import_iovec(type, iov32, nr_segs,
 			     ARRAY_SIZE(iovstack), &iov, &iter);
 	if (!error) {
 		error = do_vmsplice(f.file, &iter, flags);
 		kfree(iov);
 	}
-	return do_vmsplice(fd, iov, nr_segs, flags);
+	fdput(f);
 	return error;
 }
 #endif