]> git.proxmox.com Git - mirror_ubuntu-artful-kernel.git/blob - fs/read_write.c
projects / mirror_ubuntu-artful-kernel.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
UBUNTU: [config] update config for master changes
[mirror_ubuntu-artful-kernel.git] / fs / read_write.c
1 /*
2 * linux/fs/read_write.c
3 *
4 * Copyright (C) 1991, 1992 Linus Torvalds
5 */
6
7 #include <linux/slab.h>
8 #include <linux/stat.h>
9 #include <linux/fcntl.h>
10 #include <linux/file.h>
11 #include <linux/uio.h>
12 #include <linux/fsnotify.h>
13 #include <linux/security.h>
14 #include <linux/export.h>
15 #include <linux/syscalls.h>
16 #include <linux/pagemap.h>
17 #include <linux/splice.h>
18 #include <linux/compat.h>
19 #include "internal.h"
20
21 #include <asm/uaccess.h>
22 #include <asm/unistd.h>
23
24 typedef ssize_t (*io_fn_t)(struct file *, char __user *, size_t, loff_t *);
25 typedef ssize_t (*iter_fn_t)(struct kiocb *, struct iov_iter *);
26
27 const struct file_operations generic_ro_fops = {
28 .llseek = generic_file_llseek,
29 .read_iter = generic_file_read_iter,
30 .mmap = generic_file_readonly_mmap,
31 .splice_read = generic_file_splice_read,
32 };
33
34 EXPORT_SYMBOL(generic_ro_fops);
35
36 static inline int unsigned_offsets(struct file *file)
37 {
38 return file->f_mode & FMODE_UNSIGNED_OFFSET;
39 }
40
41 /**
42 * vfs_setpos - update the file offset for lseek
43 * @file: file structure in question
44 * @offset: file offset to seek to
45 * @maxsize: maximum file size
46 *
47 * This is a low-level filesystem helper for updating the file offset to
48 * the value specified by @offset if the given offset is valid and it is
49 * not equal to the current file offset.
50 *
51 * Return the specified offset on success and -EINVAL on invalid offset.
52 */
53 loff_t vfs_setpos(struct file *file, loff_t offset, loff_t maxsize)
54 {
55 if (offset < 0 && !unsigned_offsets(file))
56 return -EINVAL;
57 if (offset > maxsize)
58 return -EINVAL;
59
60 if (offset != file->f_pos) {
61 file->f_pos = offset;
62 file->f_version = 0;
63 }
64 return offset;
65 }
66 EXPORT_SYMBOL(vfs_setpos);
67
68 /**
69 * generic_file_llseek_size - generic llseek implementation for regular files
70 * @file: file structure to seek on
71 * @offset: file offset to seek to
72 * @whence: type of seek
73 * @size: max size of this file in file system
74 * @eof: offset used for SEEK_END position
75 *
76 * This is a variant of generic_file_llseek that allows passing in a custom
77 * maximum file size and a custom EOF position, for e.g. hashed directories
78 *
79 * Synchronization:
80 * SEEK_SET and SEEK_END are unsynchronized (but atomic on 64bit platforms)
81 * SEEK_CUR is synchronized against other SEEK_CURs, but not read/writes.
82 * read/writes behave like SEEK_SET against seeks.
83 */
84 loff_t
85 generic_file_llseek_size(struct file *file, loff_t offset, int whence,
86 loff_t maxsize, loff_t eof)
87 {
88 switch (whence) {
89 case SEEK_END:
90 offset += eof;
91 break;
92 case SEEK_CUR:
93 /*
94 * Here we special-case the lseek(fd, 0, SEEK_CUR)
95 * position-querying operation. Avoid rewriting the "same"
96 * f_pos value back to the file because a concurrent read(),
97 * write() or lseek() might have altered it
98 */
99 if (offset == 0)
100 return file->f_pos;
101 /*
102 * f_lock protects against read/modify/write race with other
103 * SEEK_CURs. Note that parallel writes and reads behave
104 * like SEEK_SET.
105 */
106 spin_lock(&file->f_lock);
107 offset = vfs_setpos(file, file->f_pos + offset, maxsize);
108 spin_unlock(&file->f_lock);
109 return offset;
110 case SEEK_DATA:
111 /*
112 * In the generic case the entire file is data, so as long as
113 * offset isn't at the end of the file then the offset is data.
114 */
115 if ((unsigned long long)offset >= eof)
116 return -ENXIO;
117 break;
118 case SEEK_HOLE:
119 /*
120 * There is a virtual hole at the end of the file, so as long as
121 * offset isn't i_size or larger, return i_size.
122 */
123 if ((unsigned long long)offset >= eof)
124 return -ENXIO;
125 offset = eof;
126 break;
127 }
128
129 return vfs_setpos(file, offset, maxsize);
130 }
131 EXPORT_SYMBOL(generic_file_llseek_size);
132
133 /**
134 * generic_file_llseek - generic llseek implementation for regular files
135 * @file: file structure to seek on
136 * @offset: file offset to seek to
137 * @whence: type of seek
138 *
139 * This is a generic implemenation of ->llseek useable for all normal local
140 * filesystems. It just updates the file offset to the value specified by
141 * @offset and @whence.
142 */
143 loff_t generic_file_llseek(struct file *file, loff_t offset, int whence)
144 {
145 struct inode *inode = file->f_mapping->host;
146
147 return generic_file_llseek_size(file, offset, whence,
148 inode->i_sb->s_maxbytes,
149 i_size_read(inode));
150 }
151 EXPORT_SYMBOL(generic_file_llseek);
152
153 /**
154 * fixed_size_llseek - llseek implementation for fixed-sized devices
155 * @file: file structure to seek on
156 * @offset: file offset to seek to
157 * @whence: type of seek
158 * @size: size of the file
159 *
160 */
161 loff_t fixed_size_llseek(struct file *file, loff_t offset, int whence, loff_t size)
162 {
163 switch (whence) {
164 case SEEK_SET: case SEEK_CUR: case SEEK_END:
165 return generic_file_llseek_size(file, offset, whence,
166 size, size);
167 default:
168 return -EINVAL;
169 }
170 }
171 EXPORT_SYMBOL(fixed_size_llseek);
172
173 /**
174 * noop_llseek - No Operation Performed llseek implementation
175 * @file: file structure to seek on
176 * @offset: file offset to seek to
177 * @whence: type of seek
178 *
179 * This is an implementation of ->llseek useable for the rare special case when
180 * userspace expects the seek to succeed but the (device) file is actually not
181 * able to perform the seek. In this case you use noop_llseek() instead of
182 * falling back to the default implementation of ->llseek.
183 */
184 loff_t noop_llseek(struct file *file, loff_t offset, int whence)
185 {
186 return file->f_pos;
187 }
188 EXPORT_SYMBOL(noop_llseek);
189
190 loff_t no_llseek(struct file *file, loff_t offset, int whence)
191 {
192 return -ESPIPE;
193 }
194 EXPORT_SYMBOL(no_llseek);
195
196 loff_t default_llseek(struct file *file, loff_t offset, int whence)
197 {
198 struct inode *inode = file_inode(file);
199 loff_t retval;
200
201 mutex_lock(&inode->i_mutex);
202 switch (whence) {
203 case SEEK_END:
204 offset += i_size_read(inode);
205 break;
206 case SEEK_CUR:
207 if (offset == 0) {
208 retval = file->f_pos;
209 goto out;
210 }
211 offset += file->f_pos;
212 break;
213 case SEEK_DATA:
214 /*
215 * In the generic case the entire file is data, so as
216 * long as offset isn't at the end of the file then the
217 * offset is data.
218 */
219 if (offset >= inode->i_size) {
220 retval = -ENXIO;
221 goto out;
222 }
223 break;
224 case SEEK_HOLE:
225 /*
226 * There is a virtual hole at the end of the file, so
227 * as long as offset isn't i_size or larger, return
228 * i_size.
229 */
230 if (offset >= inode->i_size) {
231 retval = -ENXIO;
232 goto out;
233 }
234 offset = inode->i_size;
235 break;
236 }
237 retval = -EINVAL;
238 if (offset >= 0 || unsigned_offsets(file)) {
239 if (offset != file->f_pos) {
240 file->f_pos = offset;
241 file->f_version = 0;
242 }
243 retval = offset;
244 }
245 out:
246 mutex_unlock(&inode->i_mutex);
247 return retval;
248 }
249 EXPORT_SYMBOL(default_llseek);
250
251 loff_t vfs_llseek(struct file *file, loff_t offset, int whence)
252 {
253 loff_t (*fn)(struct file *, loff_t, int);
254
255 fn = no_llseek;
256 if (file->f_mode & FMODE_LSEEK) {
257 if (file->f_op->llseek)
258 fn = file->f_op->llseek;
259 }
260 return fn(file, offset, whence);
261 }
262 EXPORT_SYMBOL(vfs_llseek);
263
264 static inline struct fd fdget_pos(int fd)
265 {
266 return __to_fd(__fdget_pos(fd));
267 }
268
269 static inline void fdput_pos(struct fd f)
270 {
271 if (f.flags & FDPUT_POS_UNLOCK)
272 mutex_unlock(&f.file->f_pos_lock);
273 fdput(f);
274 }
275
276 SYSCALL_DEFINE3(lseek, unsigned int, fd, off_t, offset, unsigned int, whence)
277 {
278 off_t retval;
279 struct fd f = fdget_pos(fd);
280 if (!f.file)
281 return -EBADF;
282
283 retval = -EINVAL;
284 if (whence <= SEEK_MAX) {
285 loff_t res = vfs_llseek(f.file, offset, whence);
286 retval = res;
287 if (res != (loff_t)retval)
288 retval = -EOVERFLOW; /* LFS: should only happen on 32 bit platforms */
289 }
290 fdput_pos(f);
291 return retval;
292 }
293
294 #ifdef CONFIG_COMPAT
295 COMPAT_SYSCALL_DEFINE3(lseek, unsigned int, fd, compat_off_t, offset, unsigned int, whence)
296 {
297 return sys_lseek(fd, offset, whence);
298 }
299 #endif
300
301 #ifdef __ARCH_WANT_SYS_LLSEEK
302 SYSCALL_DEFINE5(llseek, unsigned int, fd, unsigned long, offset_high,
303 unsigned long, offset_low, loff_t __user *, result,
304 unsigned int, whence)
305 {
306 int retval;
307 struct fd f = fdget_pos(fd);
308 loff_t offset;
309
310 if (!f.file)
311 return -EBADF;
312
313 retval = -EINVAL;
314 if (whence > SEEK_MAX)
315 goto out_putf;
316
317 offset = vfs_llseek(f.file, ((loff_t) offset_high << 32) | offset_low,
318 whence);
319
320 retval = (int)offset;
321 if (offset >= 0) {
322 retval = -EFAULT;
323 if (!copy_to_user(result, &offset, sizeof(offset)))
324 retval = 0;
325 }
326 out_putf:
327 fdput_pos(f);
328 return retval;
329 }
330 #endif
331
332 ssize_t vfs_iter_read(struct file *file, struct iov_iter *iter, loff_t *ppos)
333 {
334 struct kiocb kiocb;
335 ssize_t ret;
336
337 if (!file->f_op->read_iter)
338 return -EINVAL;
339
340 init_sync_kiocb(&kiocb, file);
341 kiocb.ki_pos = *ppos;
342
343 iter->type |= READ;
344 ret = file->f_op->read_iter(&kiocb, iter);
345 BUG_ON(ret == -EIOCBQUEUED);
346 if (ret > 0)
347 *ppos = kiocb.ki_pos;
348 return ret;
349 }
350 EXPORT_SYMBOL(vfs_iter_read);
351
352 ssize_t vfs_iter_write(struct file *file, struct iov_iter *iter, loff_t *ppos)
353 {
354 struct kiocb kiocb;
355 ssize_t ret;
356
357 if (!file->f_op->write_iter)
358 return -EINVAL;
359
360 init_sync_kiocb(&kiocb, file);
361 kiocb.ki_pos = *ppos;
362
363 iter->type |= WRITE;
364 ret = file->f_op->write_iter(&kiocb, iter);
365 BUG_ON(ret == -EIOCBQUEUED);
366 if (ret > 0)
367 *ppos = kiocb.ki_pos;
368 return ret;
369 }
370 EXPORT_SYMBOL(vfs_iter_write);
371
372 /*
373 * rw_verify_area doesn't like huge counts. We limit
374 * them to something that fits in "int" so that others
375 * won't have to do range checks all the time.
376 */
377 int rw_verify_area(int read_write, struct file *file, const loff_t *ppos, size_t count)
378 {
379 struct inode *inode;
380 loff_t pos;
381 int retval = -EINVAL;
382
383 inode = file_inode(file);
384 if (unlikely((ssize_t) count < 0))
385 return retval;
386 pos = *ppos;
387 if (unlikely(pos < 0)) {
388 if (!unsigned_offsets(file))
389 return retval;
390 if (count >= -pos) /* both values are in 0..LLONG_MAX */
391 return -EOVERFLOW;
392 } else if (unlikely((loff_t) (pos + count) < 0)) {
393 if (!unsigned_offsets(file))
394 return retval;
395 }
396
397 if (unlikely(inode->i_flctx && mandatory_lock(inode))) {
398 retval = locks_mandatory_area(
399 read_write == READ ? FLOCK_VERIFY_READ : FLOCK_VERIFY_WRITE,
400 inode, file, pos, count);
401 if (retval < 0)
402 return retval;
403 }
404 retval = security_file_permission(file,
405 read_write == READ ? MAY_READ : MAY_WRITE);
406 if (retval)
407 return retval;
408 return count > MAX_RW_COUNT ? MAX_RW_COUNT : count;
409 }
410
411 static ssize_t new_sync_read(struct file *filp, char __user *buf, size_t len, loff_t *ppos)
412 {
413 struct iovec iov = { .iov_base = buf, .iov_len = len };
414 struct kiocb kiocb;
415 struct iov_iter iter;
416 ssize_t ret;
417
418 init_sync_kiocb(&kiocb, filp);
419 kiocb.ki_pos = *ppos;
420 iov_iter_init(&iter, READ, &iov, 1, len);
421
422 ret = filp->f_op->read_iter(&kiocb, &iter);
423 BUG_ON(ret == -EIOCBQUEUED);
424 *ppos = kiocb.ki_pos;
425 return ret;
426 }
427
428 ssize_t __vfs_read(struct file *file, char __user *buf, size_t count,
429 loff_t *pos)
430 {
431 if (file->f_op->read)
432 return file->f_op->read(file, buf, count, pos);
433 else if (file->f_op->read_iter)
434 return new_sync_read(file, buf, count, pos);
435 else
436 return -EINVAL;
437 }
438 EXPORT_SYMBOL(__vfs_read);
439
440 ssize_t vfs_read(struct file *file, char __user *buf, size_t count, loff_t *pos)
441 {
442 ssize_t ret;
443
444 if (!(file->f_mode & FMODE_READ))
445 return -EBADF;
446 if (!(file->f_mode & FMODE_CAN_READ))
447 return -EINVAL;
448 if (unlikely(!access_ok(VERIFY_WRITE, buf, count)))
449 return -EFAULT;
450
451 ret = rw_verify_area(READ, file, pos, count);
452 if (ret >= 0) {
453 count = ret;
454 ret = __vfs_read(file, buf, count, pos);
455 if (ret > 0) {
456 fsnotify_access(file);
457 add_rchar(current, ret);
458 }
459 inc_syscr(current);
460 }
461
462 return ret;
463 }
464
465 EXPORT_SYMBOL(vfs_read);
466
467 static ssize_t new_sync_write(struct file *filp, const char __user *buf, size_t len, loff_t *ppos)
468 {
469 struct iovec iov = { .iov_base = (void __user *)buf, .iov_len = len };
470 struct kiocb kiocb;
471 struct iov_iter iter;
472 ssize_t ret;
473
474 init_sync_kiocb(&kiocb, filp);
475 kiocb.ki_pos = *ppos;
476 iov_iter_init(&iter, WRITE, &iov, 1, len);
477
478 ret = filp->f_op->write_iter(&kiocb, &iter);
479 BUG_ON(ret == -EIOCBQUEUED);
480 if (ret > 0)
481 *ppos = kiocb.ki_pos;
482 return ret;
483 }
484
485 ssize_t __vfs_write(struct file *file, const char __user *p, size_t count,
486 loff_t *pos)
487 {
488 if (file->f_op->write)
489 return file->f_op->write(file, p, count, pos);
490 else if (file->f_op->write_iter)
491 return new_sync_write(file, p, count, pos);
492 else
493 return -EINVAL;
494 }
495 EXPORT_SYMBOL(__vfs_write);
496
497 vfs_readf_t vfs_readf(struct file *file)
498 {
499 const struct file_operations *fop = file->f_op;
500
501 if (fop->read)
502 return fop->read;
503 if (fop->read_iter)
504 return new_sync_read;
505 return ERR_PTR(-ENOSYS);
506 }
507 EXPORT_SYMBOL(vfs_readf);
508
509 vfs_writef_t vfs_writef(struct file *file)
510 {
511 const struct file_operations *fop = file->f_op;
512
513 if (fop->write)
514 return fop->write;
515 if (fop->write_iter)
516 return new_sync_write;
517 return ERR_PTR(-ENOSYS);
518 }
519 EXPORT_SYMBOL(vfs_writef);
520
521 ssize_t __kernel_write(struct file *file, const char *buf, size_t count, loff_t *pos)
522 {
523 mm_segment_t old_fs;
524 const char __user *p;
525 ssize_t ret;
526
527 if (!(file->f_mode & FMODE_CAN_WRITE))
528 return -EINVAL;
529
530 old_fs = get_fs();
531 set_fs(get_ds());
532 p = (__force const char __user *)buf;
533 if (count > MAX_RW_COUNT)
534 count = MAX_RW_COUNT;
535 ret = __vfs_write(file, p, count, pos);
536 set_fs(old_fs);
537 if (ret > 0) {
538 fsnotify_modify(file);
539 add_wchar(current, ret);
540 }
541 inc_syscw(current);
542 return ret;
543 }
544
545 EXPORT_SYMBOL(__kernel_write);
546
547 ssize_t vfs_write(struct file *file, const char __user *buf, size_t count, loff_t *pos)
548 {
549 ssize_t ret;
550
551 if (!(file->f_mode & FMODE_WRITE))
552 return -EBADF;
553 if (!(file->f_mode & FMODE_CAN_WRITE))
554 return -EINVAL;
555 if (unlikely(!access_ok(VERIFY_READ, buf, count)))
556 return -EFAULT;
557
558 ret = rw_verify_area(WRITE, file, pos, count);
559 if (ret >= 0) {
560 count = ret;
561 file_start_write(file);
562 ret = __vfs_write(file, buf, count, pos);
563 if (ret > 0) {
564 fsnotify_modify(file);
565 add_wchar(current, ret);
566 }
567 inc_syscw(current);
568 file_end_write(file);
569 }
570
571 return ret;
572 }
573
574 EXPORT_SYMBOL(vfs_write);
575
576 static inline loff_t file_pos_read(struct file *file)
577 {
578 return file->f_pos;
579 }
580
581 static inline void file_pos_write(struct file *file, loff_t pos)
582 {
583 file->f_pos = pos;
584 }
585
586 SYSCALL_DEFINE3(read, unsigned int, fd, char __user *, buf, size_t, count)
587 {
588 struct fd f = fdget_pos(fd);
589 ssize_t ret = -EBADF;
590
591 if (f.file) {
592 loff_t pos = file_pos_read(f.file);
593 ret = vfs_read(f.file, buf, count, &pos);
594 if (ret >= 0)
595 file_pos_write(f.file, pos);
596 fdput_pos(f);
597 }
598 return ret;
599 }
600
601 SYSCALL_DEFINE3(write, unsigned int, fd, const char __user *, buf,
602 size_t, count)
603 {
604 struct fd f = fdget_pos(fd);
605 ssize_t ret = -EBADF;
606
607 if (f.file) {
608 loff_t pos = file_pos_read(f.file);
609 ret = vfs_write(f.file, buf, count, &pos);
610 if (ret >= 0)
611 file_pos_write(f.file, pos);
612 fdput_pos(f);
613 }
614
615 return ret;
616 }
617
618 SYSCALL_DEFINE4(pread64, unsigned int, fd, char __user *, buf,
619 size_t, count, loff_t, pos)
620 {
621 struct fd f;
622 ssize_t ret = -EBADF;
623
624 if (pos < 0)
625 return -EINVAL;
626
627 f = fdget(fd);
628 if (f.file) {
629 ret = -ESPIPE;
630 if (f.file->f_mode & FMODE_PREAD)
631 ret = vfs_read(f.file, buf, count, &pos);
632 fdput(f);
633 }
634
635 return ret;
636 }
637
638 SYSCALL_DEFINE4(pwrite64, unsigned int, fd, const char __user *, buf,
639 size_t, count, loff_t, pos)
640 {
641 struct fd f;
642 ssize_t ret = -EBADF;
643
644 if (pos < 0)
645 return -EINVAL;
646
647 f = fdget(fd);
648 if (f.file) {
649 ret = -ESPIPE;
650 if (f.file->f_mode & FMODE_PWRITE)
651 ret = vfs_write(f.file, buf, count, &pos);
652 fdput(f);
653 }
654
655 return ret;
656 }
657
658 /*
659 * Reduce an iovec's length in-place. Return the resulting number of segments
660 */
661 unsigned long iov_shorten(struct iovec *iov, unsigned long nr_segs, size_t to)
662 {
663 unsigned long seg = 0;
664 size_t len = 0;
665
666 while (seg < nr_segs) {
667 seg++;
668 if (len + iov->iov_len >= to) {
669 iov->iov_len = to - len;
670 break;
671 }
672 len += iov->iov_len;
673 iov++;
674 }
675 return seg;
676 }
677 EXPORT_SYMBOL(iov_shorten);
678
679 static ssize_t do_iter_readv_writev(struct file *filp, struct iov_iter *iter,
680 loff_t *ppos, iter_fn_t fn)
681 {
682 struct kiocb kiocb;
683 ssize_t ret;
684
685 init_sync_kiocb(&kiocb, filp);
686 kiocb.ki_pos = *ppos;
687
688 ret = fn(&kiocb, iter);
689 BUG_ON(ret == -EIOCBQUEUED);
690 *ppos = kiocb.ki_pos;
691 return ret;
692 }
693
694 /* Do it by hand, with file-ops */
695 static ssize_t do_loop_readv_writev(struct file *filp, struct iov_iter *iter,
696 loff_t *ppos, io_fn_t fn)
697 {
698 ssize_t ret = 0;
699
700 while (iov_iter_count(iter)) {
701 struct iovec iovec = iov_iter_iovec(iter);
702 ssize_t nr;
703
704 nr = fn(filp, iovec.iov_base, iovec.iov_len, ppos);
705
706 if (nr < 0) {
707 if (!ret)
708 ret = nr;
709 break;
710 }
711 ret += nr;
712 if (nr != iovec.iov_len)
713 break;
714 iov_iter_advance(iter, nr);
715 }
716
717 return ret;
718 }
719
720 /* A write operation does a read from user space and vice versa */
721 #define vrfy_dir(type) ((type) == READ ? VERIFY_WRITE : VERIFY_READ)
722
723 ssize_t rw_copy_check_uvector(int type, const struct iovec __user * uvector,
724 unsigned long nr_segs, unsigned long fast_segs,
725 struct iovec *fast_pointer,
726 struct iovec **ret_pointer)
727 {
728 unsigned long seg;
729 ssize_t ret;
730 struct iovec *iov = fast_pointer;
731
732 /*
733 * SuS says "The readv() function *may* fail if the iovcnt argument
734 * was less than or equal to 0, or greater than {IOV_MAX}. Linux has
735 * traditionally returned zero for zero segments, so...
736 */
737 if (nr_segs == 0) {
738 ret = 0;
739 goto out;
740 }
741
742 /*
743 * First get the "struct iovec" from user memory and
744 * verify all the pointers
745 */
746 if (nr_segs > UIO_MAXIOV) {
747 ret = -EINVAL;
748 goto out;
749 }
750 if (nr_segs > fast_segs) {
751 iov = kmalloc(nr_segs*sizeof(struct iovec), GFP_KERNEL);
752 if (iov == NULL) {
753 ret = -ENOMEM;
754 goto out;
755 }
756 }
757 if (copy_from_user(iov, uvector, nr_segs*sizeof(*uvector))) {
758 ret = -EFAULT;
759 goto out;
760 }
761
762 /*
763 * According to the Single Unix Specification we should return EINVAL
764 * if an element length is < 0 when cast to ssize_t or if the
765 * total length would overflow the ssize_t return value of the
766 * system call.
767 *
768 * Linux caps all read/write calls to MAX_RW_COUNT, and avoids the
769 * overflow case.
770 */
771 ret = 0;
772 for (seg = 0; seg < nr_segs; seg++) {
773 void __user *buf = iov[seg].iov_base;
774 ssize_t len = (ssize_t)iov[seg].iov_len;
775
776 /* see if we we're about to use an invalid len or if
777 * it's about to overflow ssize_t */
778 if (len < 0) {
779 ret = -EINVAL;
780 goto out;
781 }
782 if (type >= 0
783 && unlikely(!access_ok(vrfy_dir(type), buf, len))) {
784 ret = -EFAULT;
785 goto out;
786 }
787 if (len > MAX_RW_COUNT - ret) {
788 len = MAX_RW_COUNT - ret;
789 iov[seg].iov_len = len;
790 }
791 ret += len;
792 }
793 out:
794 *ret_pointer = iov;
795 return ret;
796 }
797
798 static ssize_t do_readv_writev(int type, struct file *file,
799 const struct iovec __user * uvector,
800 unsigned long nr_segs, loff_t *pos)
801 {
802 size_t tot_len;
803 struct iovec iovstack[UIO_FASTIOV];
804 struct iovec *iov = iovstack;
805 struct iov_iter iter;
806 ssize_t ret;
807 io_fn_t fn;
808 iter_fn_t iter_fn;
809
810 ret = import_iovec(type, uvector, nr_segs,
811 ARRAY_SIZE(iovstack), &iov, &iter);
812 if (ret < 0)
813 return ret;
814
815 tot_len = iov_iter_count(&iter);
816 if (!tot_len)
817 goto out;
818 ret = rw_verify_area(type, file, pos, tot_len);
819 if (ret < 0)
820 goto out;
821
822 if (type == READ) {
823 fn = file->f_op->read;
824 iter_fn = file->f_op->read_iter;
825 } else {
826 fn = (io_fn_t)file->f_op->write;
827 iter_fn = file->f_op->write_iter;
828 file_start_write(file);
829 }
830
831 if (iter_fn)
832 ret = do_iter_readv_writev(file, &iter, pos, iter_fn);
833 else
834 ret = do_loop_readv_writev(file, &iter, pos, fn);
835
836 if (type != READ)
837 file_end_write(file);
838
839 out:
840 kfree(iov);
841 if ((ret + (type == READ)) > 0) {
842 if (type == READ)
843 fsnotify_access(file);
844 else
845 fsnotify_modify(file);
846 }
847 return ret;
848 }
849
850 ssize_t vfs_readv(struct file *file, const struct iovec __user *vec,
851 unsigned long vlen, loff_t *pos)
852 {
853 if (!(file->f_mode & FMODE_READ))
854 return -EBADF;
855 if (!(file->f_mode & FMODE_CAN_READ))
856 return -EINVAL;
857
858 return do_readv_writev(READ, file, vec, vlen, pos);
859 }
860
861 EXPORT_SYMBOL(vfs_readv);
862
863 ssize_t vfs_writev(struct file *file, const struct iovec __user *vec,
864 unsigned long vlen, loff_t *pos)
865 {
866 if (!(file->f_mode & FMODE_WRITE))
867 return -EBADF;
868 if (!(file->f_mode & FMODE_CAN_WRITE))
869 return -EINVAL;
870
871 return do_readv_writev(WRITE, file, vec, vlen, pos);
872 }
873
874 EXPORT_SYMBOL(vfs_writev);
875
876 SYSCALL_DEFINE3(readv, unsigned long, fd, const struct iovec __user *, vec,
877 unsigned long, vlen)
878 {
879 struct fd f = fdget_pos(fd);
880 ssize_t ret = -EBADF;
881
882 if (f.file) {
883 loff_t pos = file_pos_read(f.file);
884 ret = vfs_readv(f.file, vec, vlen, &pos);
885 if (ret >= 0)
886 file_pos_write(f.file, pos);
887 fdput_pos(f);
888 }
889
890 if (ret > 0)
891 add_rchar(current, ret);
892 inc_syscr(current);
893 return ret;
894 }
895
896 SYSCALL_DEFINE3(writev, unsigned long, fd, const struct iovec __user *, vec,
897 unsigned long, vlen)
898 {
899 struct fd f = fdget_pos(fd);
900 ssize_t ret = -EBADF;
901
902 if (f.file) {
903 loff_t pos = file_pos_read(f.file);
904 ret = vfs_writev(f.file, vec, vlen, &pos);
905 if (ret >= 0)
906 file_pos_write(f.file, pos);
907 fdput_pos(f);
908 }
909
910 if (ret > 0)
911 add_wchar(current, ret);
912 inc_syscw(current);
913 return ret;
914 }
915
916 static inline loff_t pos_from_hilo(unsigned long high, unsigned long low)
917 {
918 #define HALF_LONG_BITS (BITS_PER_LONG / 2)
919 return (((loff_t)high << HALF_LONG_BITS) << HALF_LONG_BITS) | low;
920 }
921
922 SYSCALL_DEFINE5(preadv, unsigned long, fd, const struct iovec __user *, vec,
923 unsigned long, vlen, unsigned long, pos_l, unsigned long, pos_h)
924 {
925 loff_t pos = pos_from_hilo(pos_h, pos_l);
926 struct fd f;
927 ssize_t ret = -EBADF;
928
929 if (pos < 0)
930 return -EINVAL;
931
932 f = fdget(fd);
933 if (f.file) {
934 ret = -ESPIPE;
935 if (f.file->f_mode & FMODE_PREAD)
936 ret = vfs_readv(f.file, vec, vlen, &pos);
937 fdput(f);
938 }
939
940 if (ret > 0)
941 add_rchar(current, ret);
942 inc_syscr(current);
943 return ret;
944 }
945
946 SYSCALL_DEFINE5(pwritev, unsigned long, fd, const struct iovec __user *, vec,
947 unsigned long, vlen, unsigned long, pos_l, unsigned long, pos_h)
948 {
949 loff_t pos = pos_from_hilo(pos_h, pos_l);
950 struct fd f;
951 ssize_t ret = -EBADF;
952
953 if (pos < 0)
954 return -EINVAL;
955
956 f = fdget(fd);
957 if (f.file) {
958 ret = -ESPIPE;
959 if (f.file->f_mode & FMODE_PWRITE)
960 ret = vfs_writev(f.file, vec, vlen, &pos);
961 fdput(f);
962 }
963
964 if (ret > 0)
965 add_wchar(current, ret);
966 inc_syscw(current);
967 return ret;
968 }
969
970 #ifdef CONFIG_COMPAT
971
972 static ssize_t compat_do_readv_writev(int type, struct file *file,
973 const struct compat_iovec __user *uvector,
974 unsigned long nr_segs, loff_t *pos)
975 {
976 compat_ssize_t tot_len;
977 struct iovec iovstack[UIO_FASTIOV];
978 struct iovec *iov = iovstack;
979 struct iov_iter iter;
980 ssize_t ret;
981 io_fn_t fn;
982 iter_fn_t iter_fn;
983
984 ret = compat_import_iovec(type, uvector, nr_segs,
985 UIO_FASTIOV, &iov, &iter);
986 if (ret < 0)
987 return ret;
988
989 tot_len = iov_iter_count(&iter);
990 if (!tot_len)
991 goto out;
992 ret = rw_verify_area(type, file, pos, tot_len);
993 if (ret < 0)
994 goto out;
995
996 if (type == READ) {
997 fn = file->f_op->read;
998 iter_fn = file->f_op->read_iter;
999 } else {
1000 fn = (io_fn_t)file->f_op->write;
1001 iter_fn = file->f_op->write_iter;
1002 file_start_write(file);
1003 }
1004
1005 if (iter_fn)
1006 ret = do_iter_readv_writev(file, &iter, pos, iter_fn);
1007 else
1008 ret = do_loop_readv_writev(file, &iter, pos, fn);
1009
1010 if (type != READ)
1011 file_end_write(file);
1012
1013 out:
1014 kfree(iov);
1015 if ((ret + (type == READ)) > 0) {
1016 if (type == READ)
1017 fsnotify_access(file);
1018 else
1019 fsnotify_modify(file);
1020 }
1021 return ret;
1022 }
1023
1024 static size_t compat_readv(struct file *file,
1025 const struct compat_iovec __user *vec,
1026 unsigned long vlen, loff_t *pos)
1027 {
1028 ssize_t ret = -EBADF;
1029
1030 if (!(file->f_mode & FMODE_READ))
1031 goto out;
1032
1033 ret = -EINVAL;
1034 if (!(file->f_mode & FMODE_CAN_READ))
1035 goto out;
1036
1037 ret = compat_do_readv_writev(READ, file, vec, vlen, pos);
1038
1039 out:
1040 if (ret > 0)
1041 add_rchar(current, ret);
1042 inc_syscr(current);
1043 return ret;
1044 }
1045
1046 COMPAT_SYSCALL_DEFINE3(readv, compat_ulong_t, fd,
1047 const struct compat_iovec __user *,vec,
1048 compat_ulong_t, vlen)
1049 {
1050 struct fd f = fdget_pos(fd);
1051 ssize_t ret;
1052 loff_t pos;
1053
1054 if (!f.file)
1055 return -EBADF;
1056 pos = f.file->f_pos;
1057 ret = compat_readv(f.file, vec, vlen, &pos);
1058 if (ret >= 0)
1059 f.file->f_pos = pos;
1060 fdput_pos(f);
1061 return ret;
1062 }
1063
1064 static long __compat_sys_preadv64(unsigned long fd,
1065 const struct compat_iovec __user *vec,
1066 unsigned long vlen, loff_t pos)
1067 {
1068 struct fd f;
1069 ssize_t ret;
1070
1071 if (pos < 0)
1072 return -EINVAL;
1073 f = fdget(fd);
1074 if (!f.file)
1075 return -EBADF;
1076 ret = -ESPIPE;
1077 if (f.file->f_mode & FMODE_PREAD)
1078 ret = compat_readv(f.file, vec, vlen, &pos);
1079 fdput(f);
1080 return ret;
1081 }
1082
1083 #ifdef __ARCH_WANT_COMPAT_SYS_PREADV64
1084 COMPAT_SYSCALL_DEFINE4(preadv64, unsigned long, fd,
1085 const struct compat_iovec __user *,vec,
1086 unsigned long, vlen, loff_t, pos)
1087 {
1088 return __compat_sys_preadv64(fd, vec, vlen, pos);
1089 }
1090 #endif
1091
1092 COMPAT_SYSCALL_DEFINE5(preadv, compat_ulong_t, fd,
1093 const struct compat_iovec __user *,vec,
1094 compat_ulong_t, vlen, u32, pos_low, u32, pos_high)
1095 {
1096 loff_t pos = ((loff_t)pos_high << 32) | pos_low;
1097
1098 return __compat_sys_preadv64(fd, vec, vlen, pos);
1099 }
1100
1101 static size_t compat_writev(struct file *file,
1102 const struct compat_iovec __user *vec,
1103 unsigned long vlen, loff_t *pos)
1104 {
1105 ssize_t ret = -EBADF;
1106
1107 if (!(file->f_mode & FMODE_WRITE))
1108 goto out;
1109
1110 ret = -EINVAL;
1111 if (!(file->f_mode & FMODE_CAN_WRITE))
1112 goto out;
1113
1114 ret = compat_do_readv_writev(WRITE, file, vec, vlen, pos);
1115
1116 out:
1117 if (ret > 0)
1118 add_wchar(current, ret);
1119 inc_syscw(current);
1120 return ret;
1121 }
1122
1123 COMPAT_SYSCALL_DEFINE3(writev, compat_ulong_t, fd,
1124 const struct compat_iovec __user *, vec,
1125 compat_ulong_t, vlen)
1126 {
1127 struct fd f = fdget_pos(fd);
1128 ssize_t ret;
1129 loff_t pos;
1130
1131 if (!f.file)
1132 return -EBADF;
1133 pos = f.file->f_pos;
1134 ret = compat_writev(f.file, vec, vlen, &pos);
1135 if (ret >= 0)
1136 f.file->f_pos = pos;
1137 fdput_pos(f);
1138 return ret;
1139 }
1140
1141 static long __compat_sys_pwritev64(unsigned long fd,
1142 const struct compat_iovec __user *vec,
1143 unsigned long vlen, loff_t pos)
1144 {
1145 struct fd f;
1146 ssize_t ret;
1147
1148 if (pos < 0)
1149 return -EINVAL;
1150 f = fdget(fd);
1151 if (!f.file)
1152 return -EBADF;
1153 ret = -ESPIPE;
1154 if (f.file->f_mode & FMODE_PWRITE)
1155 ret = compat_writev(f.file, vec, vlen, &pos);
1156 fdput(f);
1157 return ret;
1158 }
1159
1160 #ifdef __ARCH_WANT_COMPAT_SYS_PWRITEV64
1161 COMPAT_SYSCALL_DEFINE4(pwritev64, unsigned long, fd,
1162 const struct compat_iovec __user *,vec,
1163 unsigned long, vlen, loff_t, pos)
1164 {
1165 return __compat_sys_pwritev64(fd, vec, vlen, pos);
1166 }
1167 #endif
1168
1169 COMPAT_SYSCALL_DEFINE5(pwritev, compat_ulong_t, fd,
1170 const struct compat_iovec __user *,vec,
1171 compat_ulong_t, vlen, u32, pos_low, u32, pos_high)
1172 {
1173 loff_t pos = ((loff_t)pos_high << 32) | pos_low;
1174
1175 return __compat_sys_pwritev64(fd, vec, vlen, pos);
1176 }
1177 #endif
1178
1179 static ssize_t do_sendfile(int out_fd, int in_fd, loff_t *ppos,
1180 size_t count, loff_t max)
1181 {
1182 struct fd in, out;
1183 struct inode *in_inode, *out_inode;
1184 loff_t pos;
1185 loff_t out_pos;
1186 ssize_t retval;
1187 int fl;
1188
1189 /*
1190 * Get input file, and verify that it is ok..
1191 */
1192 retval = -EBADF;
1193 in = fdget(in_fd);
1194 if (!in.file)
1195 goto out;
1196 if (!(in.file->f_mode & FMODE_READ))
1197 goto fput_in;
1198 retval = -ESPIPE;
1199 if (!ppos) {
1200 pos = in.file->f_pos;
1201 } else {
1202 pos = *ppos;
1203 if (!(in.file->f_mode & FMODE_PREAD))
1204 goto fput_in;
1205 }
1206 retval = rw_verify_area(READ, in.file, &pos, count);
1207 if (retval < 0)
1208 goto fput_in;
1209 count = retval;
1210
1211 /*
1212 * Get output file, and verify that it is ok..
1213 */
1214 retval = -EBADF;
1215 out = fdget(out_fd);
1216 if (!out.file)
1217 goto fput_in;
1218 if (!(out.file->f_mode & FMODE_WRITE))
1219 goto fput_out;
1220 retval = -EINVAL;
1221 in_inode = file_inode(in.file);
1222 out_inode = file_inode(out.file);
1223 out_pos = out.file->f_pos;
1224 retval = rw_verify_area(WRITE, out.file, &out_pos, count);
1225 if (retval < 0)
1226 goto fput_out;
1227 count = retval;
1228
1229 if (!max)
1230 max = min(in_inode->i_sb->s_maxbytes, out_inode->i_sb->s_maxbytes);
1231
1232 if (unlikely(pos + count > max)) {
1233 retval = -EOVERFLOW;
1234 if (pos >= max)
1235 goto fput_out;
1236 count = max - pos;
1237 }
1238
1239 fl = 0;
1240 #if 0
1241 /*
1242 * We need to debate whether we can enable this or not. The
1243 * man page documents EAGAIN return for the output at least,
1244 * and the application is arguably buggy if it doesn't expect
1245 * EAGAIN on a non-blocking file descriptor.
1246 */
1247 if (in.file->f_flags & O_NONBLOCK)
1248 fl = SPLICE_F_NONBLOCK;
1249 #endif
1250 file_start_write(out.file);
1251 retval = do_splice_direct(in.file, &pos, out.file, &out_pos, count, fl);
1252 file_end_write(out.file);
1253
1254 if (retval > 0) {
1255 add_rchar(current, retval);
1256 add_wchar(current, retval);
1257 fsnotify_access(in.file);
1258 fsnotify_modify(out.file);
1259 out.file->f_pos = out_pos;
1260 if (ppos)
1261 *ppos = pos;
1262 else
1263 in.file->f_pos = pos;
1264 }
1265
1266 inc_syscr(current);
1267 inc_syscw(current);
1268 if (pos > max)
1269 retval = -EOVERFLOW;
1270
1271 fput_out:
1272 fdput(out);
1273 fput_in:
1274 fdput(in);
1275 out:
1276 return retval;
1277 }
1278
1279 SYSCALL_DEFINE4(sendfile, int, out_fd, int, in_fd, off_t __user *, offset, size_t, count)
1280 {
1281 loff_t pos;
1282 off_t off;
1283 ssize_t ret;
1284
1285 if (offset) {
1286 if (unlikely(get_user(off, offset)))
1287 return -EFAULT;
1288 pos = off;
1289 ret = do_sendfile(out_fd, in_fd, &pos, count, MAX_NON_LFS);
1290 if (unlikely(put_user(pos, offset)))
1291 return -EFAULT;
1292 return ret;
1293 }
1294
1295 return do_sendfile(out_fd, in_fd, NULL, count, 0);
1296 }
1297
1298 SYSCALL_DEFINE4(sendfile64, int, out_fd, int, in_fd, loff_t __user *, offset, size_t, count)
1299 {
1300 loff_t pos;
1301 ssize_t ret;
1302
1303 if (offset) {
1304 if (unlikely(copy_from_user(&pos, offset, sizeof(loff_t))))
1305 return -EFAULT;
1306 ret = do_sendfile(out_fd, in_fd, &pos, count, 0);
1307 if (unlikely(put_user(pos, offset)))
1308 return -EFAULT;
1309 return ret;
1310 }
1311
1312 return do_sendfile(out_fd, in_fd, NULL, count, 0);
1313 }
1314
1315 #ifdef CONFIG_COMPAT
1316 COMPAT_SYSCALL_DEFINE4(sendfile, int, out_fd, int, in_fd,
1317 compat_off_t __user *, offset, compat_size_t, count)
1318 {
1319 loff_t pos;
1320 off_t off;
1321 ssize_t ret;
1322
1323 if (offset) {
1324 if (unlikely(get_user(off, offset)))
1325 return -EFAULT;
1326 pos = off;
1327 ret = do_sendfile(out_fd, in_fd, &pos, count, MAX_NON_LFS);
1328 if (unlikely(put_user(pos, offset)))
1329 return -EFAULT;
1330 return ret;
1331 }
1332
1333 return do_sendfile(out_fd, in_fd, NULL, count, 0);
1334 }
1335
1336 COMPAT_SYSCALL_DEFINE4(sendfile64, int, out_fd, int, in_fd,
1337 compat_loff_t __user *, offset, compat_size_t, count)
1338 {
1339 loff_t pos;
1340 ssize_t ret;
1341
1342 if (offset) {
1343 if (unlikely(copy_from_user(&pos, offset, sizeof(loff_t))))
1344 return -EFAULT;
1345 ret = do_sendfile(out_fd, in_fd, &pos, count, 0);
1346 if (unlikely(put_user(pos, offset)))
1347 return -EFAULT;
1348 return ret;
1349 }
1350
1351 return do_sendfile(out_fd, in_fd, NULL, count, 0);
1352 }
1353 #endif
Ubuntu Artful kernel mirror