Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-4.9 / 10a6007bda48e3524e24ce1ad46dc7be1add6a0e / . / include / asm-generic / uaccess.h
blob: 5f6ee6138f9a338d59d12b2b8bc1d37bf7547c4e [file] [log] [blame]
Arnd Bergmanneed417d2009-05-13 22:56:37 +0000[diff] [blame]1#ifndef __ASM_GENERIC_UACCESS_H
2#define __ASM_GENERIC_UACCESS_H
3
4/*
5 * User space memory access functions, these should work
6 * on a ny machine that has kernel and user data in the same
7 * address space, e.g. all NOMMU machines.
8 */
9#include <linux/sched.h>
Arnd Bergmanneed417d2009-05-13 22:56:37 +0000[diff] [blame]10#include <linux/string.h>
11
12#include <asm/segment.h>
13
14#define MAKE_MM_SEG(s) ((mm_segment_t) { (s) })
15
16#ifndef KERNEL_DS
17#define KERNEL_DS MAKE_MM_SEG(~0UL)
18#endif
19
20#ifndef USER_DS
21#define USER_DS MAKE_MM_SEG(TASK_SIZE - 1)
22#endif
23
24#ifndef get_fs
25#define get_ds() (KERNEL_DS)
26#define get_fs() (current_thread_info()->addr_limit)
27
28static inline void set_fs(mm_segment_t fs)
29{
30 current_thread_info()->addr_limit = fs;
31}
32#endif
33
Vineet Gupta10a60072013-01-18 15:12:16 +0530[diff] [blame^]34#ifndef segment_eq
Arnd Bergmanneed417d2009-05-13 22:56:37 +0000[diff] [blame]35#define segment_eq(a, b) ((a).seg == (b).seg)
Vineet Gupta10a60072013-01-18 15:12:16 +0530[diff] [blame^]36#endif
Arnd Bergmanneed417d2009-05-13 22:56:37 +0000[diff] [blame]37
38#define VERIFY_READ 0
39#define VERIFY_WRITE 1
40
41#define access_ok(type, addr, size) __access_ok((unsigned long)(addr),(size))
42
43/*
44 * The architecture should really override this if possible, at least
45 * doing a check on the get_fs()
46 */
47#ifndef __access_ok
48static inline int __access_ok(unsigned long addr, unsigned long size)
49{
50 return 1;
51}
52#endif
53
54/*
55 * The exception table consists of pairs of addresses: the first is the
56 * address of an instruction that is allowed to fault, and the second is
57 * the address at which the program should continue. No registers are
58 * modified, so it is entirely up to the continuation code to figure out
59 * what to do.
60 *
61 * All the routines below use bits of fixup code that are out of line
62 * with the main instruction path. This means when everything is well,
63 * we don't even have to jump over them. Further, they do not intrude
64 * on our cache or tlb entries.
65 */
66
67struct exception_table_entry
68{
69 unsigned long insn, fixup;
70};
71
72/* Returns 0 if exception not found and fixup otherwise. */
73extern unsigned long search_exception_table(unsigned long);
74
75/*
76 * architectures with an MMU should override these two
77 */
78#ifndef __copy_from_user
79static inline __must_check long __copy_from_user(void *to,
80 const void __user * from, unsigned long n)
81{
82 if (__builtin_constant_p(n)) {
83 switch(n) {
84 case 1:
85 *(u8 *)to = *(u8 __force *)from;
86 return 0;
87 case 2:
88 *(u16 *)to = *(u16 __force *)from;
89 return 0;
90 case 4:
91 *(u32 *)to = *(u32 __force *)from;
92 return 0;
93#ifdef CONFIG_64BIT
94 case 8:
95 *(u64 *)to = *(u64 __force *)from;
96 return 0;
97#endif
98 default:
99 break;
100 }
101 }
102
103 memcpy(to, (const void __force *)from, n);
104 return 0;
105}
106#endif
107
108#ifndef __copy_to_user
109static inline __must_check long __copy_to_user(void __user *to,
110 const void *from, unsigned long n)
111{
112 if (__builtin_constant_p(n)) {
113 switch(n) {
114 case 1:
115 *(u8 __force *)to = *(u8 *)from;
116 return 0;
117 case 2:
118 *(u16 __force *)to = *(u16 *)from;
119 return 0;
120 case 4:
121 *(u32 __force *)to = *(u32 *)from;
122 return 0;
123#ifdef CONFIG_64BIT
124 case 8:
125 *(u64 __force *)to = *(u64 *)from;
126 return 0;
127#endif
128 default:
129 break;
130 }
131 }
132
133 memcpy((void __force *)to, from, n);
134 return 0;
135}
136#endif
137
138/*
139 * These are the main single-value transfer routines. They automatically
140 * use the right size if we just have the right pointer type.
141 * This version just falls back to copy_{from,to}_user, which should
142 * provide a fast-path for small values.
143 */
144#define __put_user(x, ptr) \
145({ \
146 __typeof__(*(ptr)) __x = (x); \
147 int __pu_err = -EFAULT; \
148 __chk_user_ptr(ptr); \
149 switch (sizeof (*(ptr))) { \
150 case 1: \
151 case 2: \
152 case 4: \
153 case 8: \
154 __pu_err = __put_user_fn(sizeof (*(ptr)), \
155 ptr, &__x); \
156 break; \
157 default: \
158 __put_user_bad(); \
159 break; \
160 } \
161 __pu_err; \
162})
163
164#define put_user(x, ptr) \
165({ \
166 might_sleep(); \
Mike Frysingera9ede5b2009-06-14 02:00:03 -0400[diff] [blame]167 access_ok(VERIFY_WRITE, ptr, sizeof(*ptr)) ? \
Arnd Bergmanneed417d2009-05-13 22:56:37 +0000[diff] [blame]168 __put_user(x, ptr) : \
169 -EFAULT; \
170})
171
172static inline int __put_user_fn(size_t size, void __user *ptr, void *x)
173{
174 size = __copy_to_user(ptr, x, size);
175 return size ? -EFAULT : size;
176}
177
178extern int __put_user_bad(void) __attribute__((noreturn));
179
180#define __get_user(x, ptr) \
181({ \
182 int __gu_err = -EFAULT; \
183 __chk_user_ptr(ptr); \
184 switch (sizeof(*(ptr))) { \
185 case 1: { \
186 unsigned char __x; \
187 __gu_err = __get_user_fn(sizeof (*(ptr)), \
188 ptr, &__x); \
189 (x) = *(__force __typeof__(*(ptr)) *) &__x; \
190 break; \
191 }; \
192 case 2: { \
193 unsigned short __x; \
194 __gu_err = __get_user_fn(sizeof (*(ptr)), \
195 ptr, &__x); \
196 (x) = *(__force __typeof__(*(ptr)) *) &__x; \
197 break; \
198 }; \
199 case 4: { \
200 unsigned int __x; \
201 __gu_err = __get_user_fn(sizeof (*(ptr)), \
202 ptr, &__x); \
203 (x) = *(__force __typeof__(*(ptr)) *) &__x; \
204 break; \
205 }; \
206 case 8: { \
207 unsigned long long __x; \
208 __gu_err = __get_user_fn(sizeof (*(ptr)), \
209 ptr, &__x); \
210 (x) = *(__force __typeof__(*(ptr)) *) &__x; \
211 break; \
212 }; \
213 default: \
214 __get_user_bad(); \
215 break; \
216 } \
217 __gu_err; \
218})
219
220#define get_user(x, ptr) \
221({ \
222 might_sleep(); \
Mike Frysingera9ede5b2009-06-14 02:00:03 -0400[diff] [blame]223 access_ok(VERIFY_READ, ptr, sizeof(*ptr)) ? \
Arnd Bergmanneed417d2009-05-13 22:56:37 +0000[diff] [blame]224 __get_user(x, ptr) : \
225 -EFAULT; \
226})
227
228static inline int __get_user_fn(size_t size, const void __user *ptr, void *x)
229{
230 size = __copy_from_user(x, ptr, size);
231 return size ? -EFAULT : size;
232}
233
234extern int __get_user_bad(void) __attribute__((noreturn));
235
236#ifndef __copy_from_user_inatomic
237#define __copy_from_user_inatomic __copy_from_user
238#endif
239
240#ifndef __copy_to_user_inatomic
241#define __copy_to_user_inatomic __copy_to_user
242#endif
243
244static inline long copy_from_user(void *to,
245 const void __user * from, unsigned long n)
246{
247 might_sleep();
Mike Frysingera9ede5b2009-06-14 02:00:03 -0400[diff] [blame]248 if (access_ok(VERIFY_READ, from, n))
Arnd Bergmanneed417d2009-05-13 22:56:37 +0000[diff] [blame]249 return __copy_from_user(to, from, n);
250 else
251 return n;
252}
253
254static inline long copy_to_user(void __user *to,
255 const void *from, unsigned long n)
256{
257 might_sleep();
Mike Frysingera9ede5b2009-06-14 02:00:03 -0400[diff] [blame]258 if (access_ok(VERIFY_WRITE, to, n))
Arnd Bergmanneed417d2009-05-13 22:56:37 +0000[diff] [blame]259 return __copy_to_user(to, from, n);
260 else
261 return n;
262}
263
264/*
265 * Copy a null terminated string from userspace.
266 */
267#ifndef __strncpy_from_user
268static inline long
269__strncpy_from_user(char *dst, const char __user *src, long count)
270{
271 char *tmp;
272 strncpy(dst, (const char __force *)src, count);
273 for (tmp = dst; *tmp && count > 0; tmp++, count--)
274 ;
275 return (tmp - dst);
276}
277#endif
278
279static inline long
280strncpy_from_user(char *dst, const char __user *src, long count)
281{
Mike Frysingera9ede5b2009-06-14 02:00:03 -0400[diff] [blame]282 if (!access_ok(VERIFY_READ, src, 1))
Arnd Bergmanneed417d2009-05-13 22:56:37 +0000[diff] [blame]283 return -EFAULT;
284 return __strncpy_from_user(dst, src, count);
285}
286
287/*
288 * Return the size of a string (including the ending 0)
289 *
290 * Return 0 on exception, a value greater than N if too long
291 */
GuanXuetao7f509a92011-01-15 18:08:09 +0800[diff] [blame]292#ifndef __strnlen_user
Mark Salter830f5802011-10-04 09:17:36 -0400[diff] [blame]293#define __strnlen_user(s, n) (strnlen((s), (n)) + 1)
GuanXuetao7f509a92011-01-15 18:08:09 +0800[diff] [blame]294#endif
295
Mark Salter830f5802011-10-04 09:17:36 -0400[diff] [blame]296/*
297 * Unlike strnlen, strnlen_user includes the nul terminator in
298 * its returned count. Callers should check for a returned value
299 * greater than N as an indication the string is too long.
300 */
Arnd Bergmanneed417d2009-05-13 22:56:37 +0000[diff] [blame]301static inline long strnlen_user(const char __user *src, long n)
302{
Mike Frysinger98448132009-06-14 02:00:02 -0400[diff] [blame]303 if (!access_ok(VERIFY_READ, src, 1))
304 return 0;
GuanXuetao7f509a92011-01-15 18:08:09 +0800[diff] [blame]305 return __strnlen_user(src, n);
Arnd Bergmanneed417d2009-05-13 22:56:37 +0000[diff] [blame]306}
Arnd Bergmanneed417d2009-05-13 22:56:37 +0000[diff] [blame]307
308static inline long strlen_user(const char __user *src)
309{
310 return strnlen_user(src, 32767);
311}
312
313/*
314 * Zero Userspace
315 */
316#ifndef __clear_user
317static inline __must_check unsigned long
318__clear_user(void __user *to, unsigned long n)
319{
320 memset((void __force *)to, 0, n);
321 return 0;
322}
323#endif
324
325static inline __must_check unsigned long
326clear_user(void __user *to, unsigned long n)
327{
328 might_sleep();
Mike Frysingera9ede5b2009-06-14 02:00:03 -0400[diff] [blame]329 if (!access_ok(VERIFY_WRITE, to, n))
Arnd Bergmanneed417d2009-05-13 22:56:37 +0000[diff] [blame]330 return n;
331
332 return __clear_user(to, n);
333}
334
335#endif /* __ASM_GENERIC_UACCESS_H */