arm64: uaccess: Formalise types for access_ok()

author Robin Murphy <robin.murphy@arm.com>

Mon, 19 Feb 2018 13:38:00 +0000 (13:38 +0000)

committer Catalin Marinas <catalin.marinas@arm.com>

Mon, 19 Feb 2018 13:59:58 +0000 (13:59 +0000)
author Robin Murphy <robin.murphy@arm.com>
Mon, 19 Feb 2018 13:38:00 +0000 (13:38 +0000)
committer Catalin Marinas <catalin.marinas@arm.com>
Mon, 19 Feb 2018 13:59:58 +0000 (13:59 +0000)
diff --git a/arch/arm64/include/asm/uaccess.h b/arch/arm64/include/asm/uaccess.h

index 543e11f0f657e932aa17916a0750f7d83cf5d7b8..e66b0fca99c2f9e500788db6fa2e24693ade11c3 100644 (file)
--- a/arch/arm64/include/asm/uaccess.h
+++ b/arch/arm64/include/asm/uaccess.h
@@ -72,15 +72,15 @@ static inline void set_fs(mm_segment_t fs)
   * This is equivalent to the following test:
   * (u65)addr + (u65)size <= (u65)current->addr_limit + 1
   */
-static inline unsigned long __range_ok(unsigned long addr, unsigned long size)
+static inline unsigned long __range_ok(const void __user *addr, unsigned long size)
  {
-       unsigned long limit = current_thread_info()->addr_limit;
+       unsigned long ret, limit = current_thread_info()->addr_limit;
  
         __chk_user_ptr(addr);
         asm volatile(
         // A + B <= C + 1 for all A,B,C, in four easy steps:
         // 1: X = A + B; X' = X % 2^64
-       "       adds    %0, %0, %2\n"
+       "       adds    %0, %3, %2\n"
         // 2: Set C = 0 if X > 2^64, to guarantee X' > C in step 4
         "       csel    %1, xzr, %1, hi\n"
         // 3: Set X' = ~0 if X >= 2^64. For X == 2^64, this decrements X'
@@ -92,9 +92,9 @@ static inline unsigned long __range_ok(unsigned long addr, unsigned long size)
         //    testing X' - C == 0, subject to the previous adjustments.
         "       sbcs    xzr, %0, %1\n"
         "       cset    %0, ls\n"
-       : "+r" (addr), "+r" (limit) : "Ir" (size) : "cc");
+       : "=&r" (ret), "+r" (limit) : "Ir" (size), "0" (addr) : "cc");
  
-       return addr;
+       return ret;
  }
  
  /*
@@ -104,7 +104,7 @@ static inline unsigned long __range_ok(unsigned long addr, unsigned long size)
   */
  #define untagged_addr(addr)            sign_extend64(addr, 55)
  
-#define access_ok(type, addr, size)    __range_ok((unsigned long)(addr), size)
+#define access_ok(type, addr, size)    __range_ok(addr, size)
  #define user_addr_max                  get_fs
  
  #define _ASM_EXTABLE(from, to)                                         \
diff --git a/arch/arm64/kernel/armv8_deprecated.c b/arch/arm64/kernel/armv8_deprecated.c

index c33b5e4010ab7660140025f9c17d6be10b66706d..68450e954d47d7d241740d0de4ca3b9d2df53b75 100644 (file)
--- a/arch/arm64/kernel/armv8_deprecated.c
+++ b/arch/arm64/kernel/armv8_deprecated.c
@@ -370,6 +370,7 @@ static unsigned int __kprobes aarch32_check_condition(u32 opcode, u32 psr)
  static int swp_handler(struct pt_regs *regs, u32 instr)
  {
         u32 destreg, data, type, address = 0;
+       const void __user *user_ptr;
         int rn, rt2, res = 0;
  
         perf_sw_event(PERF_COUNT_SW_EMULATION_FAULTS, 1, regs, regs->pc);
@@ -401,7 +402,8 @@ static int swp_handler(struct pt_regs *regs, u32 instr)
                 aarch32_insn_extract_reg_num(instr, A32_RT2_OFFSET), data);
  
         /* Check access in reasonable access range for both SWP and SWPB */
-       if (!access_ok(VERIFY_WRITE, (address & ~3), 4)) {
+       user_ptr = (const void __user *)(unsigned long)(address & ~3);
+       if (!access_ok(VERIFY_WRITE, user_ptr, 4)) {
                 pr_debug("SWP{B} emulation: access to 0x%08x not allowed!\n",
                         address);
                 goto fault;
diff --git a/arch/arm64/kernel/sys_compat.c b/arch/arm64/kernel/sys_compat.c

index 8b8bbd3eaa52cc8df71d66ab1063427232319692..a382b2a1b84e3204b5794fb5f367ac15a0bddf43 100644 (file)
--- a/arch/arm64/kernel/sys_compat.c
+++ b/arch/arm64/kernel/sys_compat.c
@@ -57,7 +57,7 @@ do_compat_cache_op(unsigned long start, unsigned long end, int flags)
         if (end < start || flags)
                 return -EINVAL;
  
-       if (!access_ok(VERIFY_READ, start, end - start))
+       if (!access_ok(VERIFY_READ, (const void __user *)start, end - start))
                 return -EFAULT;
  
         return __do_compat_cache_op(start, end);
author	Robin Murphy <robin.murphy@arm.com>
	Mon, 19 Feb 2018 13:38:00 +0000 (13:38 +0000)
committer	Catalin Marinas <catalin.marinas@arm.com>
	Mon, 19 Feb 2018 13:59:58 +0000 (13:59 +0000)
arch/arm64/include/asm/uaccess.h		patch \| blob \| blame \| history
arch/arm64/kernel/armv8_deprecated.c		patch \| blob \| blame \| history
arch/arm64/kernel/sys_compat.c		patch \| blob \| blame \| history