Linaro Git Browser
Code Review Sign In
review.linaro.org / people / peter.maydell / qemu-arm.git / refs/heads/3phase-conversions / . / linux-user / uaccess.c
blob: 425cbf677f760351a5d70ac3d6fe9f8197c85694 [file] [log] [blame]
bellard579a97f2007-11-11 14:26:47 +0000[diff] [blame]1/* User memory access */
Peter Maydelld39594e2016-01-26 18:17:02 +0000[diff] [blame]2#include "qemu/osdep.h"
Veronia Bahaaf348b6d2016-03-20 19:16:19 +0200[diff] [blame]3#include "qemu/cutils.h"
bellard579a97f2007-11-11 14:26:47 +0000[diff] [blame]4
5#include "qemu.h"
Peter Maydell3b249d22021-09-08 16:44:03 +0100[diff] [blame]6#include "user-internals.h"
bellard579a97f2007-11-11 14:26:47 +0000[diff] [blame]7
Richard Henderson360f0ab2021-03-15 14:40:04 -0600[diff] [blame]8void *lock_user(int type, abi_ulong guest_addr, ssize_t len, bool copy)
Richard Henderson687ca792021-02-12 10:48:48 -0800[diff] [blame]9{
Richard Henderson31c04832021-02-12 10:48:50 -0800[diff] [blame]10 void *host_addr;
11
12 guest_addr = cpu_untagged_addr(thread_cpu, guest_addr);
Richard Henderson687ca792021-02-12 10:48:48 -0800[diff] [blame]13 if (!access_ok_untagged(type, guest_addr, len)) {
14 return NULL;
15 }
Richard Henderson31c04832021-02-12 10:48:50 -0800[diff] [blame]16 host_addr = g2h_untagged(guest_addr);
Richard Henderson687ca792021-02-12 10:48:48 -0800[diff] [blame]17#ifdef DEBUG_REMAP
Richard Henderson31c04832021-02-12 10:48:50 -0800[diff] [blame]18 if (copy) {
19 host_addr = g_memdup(host_addr, len);
20 } else {
21 host_addr = g_malloc0(len);
Richard Henderson687ca792021-02-12 10:48:48 -0800[diff] [blame]22 }
Richard Henderson687ca792021-02-12 10:48:48 -0800[diff] [blame]23#endif
Richard Henderson31c04832021-02-12 10:48:50 -0800[diff] [blame]24 return host_addr;
Richard Henderson687ca792021-02-12 10:48:48 -0800[diff] [blame]25}
26
27#ifdef DEBUG_REMAP
Richard Henderson360f0ab2021-03-15 14:40:04 -0600[diff] [blame]28void unlock_user(void *host_ptr, abi_ulong guest_addr, ssize_t len)
Richard Henderson687ca792021-02-12 10:48:48 -0800[diff] [blame]29{
Richard Henderson31c04832021-02-12 10:48:50 -0800[diff] [blame]30 void *host_ptr_conv;
31
Richard Henderson687ca792021-02-12 10:48:48 -0800[diff] [blame]32 if (!host_ptr) {
33 return;
34 }
Richard Henderson31c04832021-02-12 10:48:50 -0800[diff] [blame]35 host_ptr_conv = g2h(thread_cpu, guest_addr);
36 if (host_ptr == host_ptr_conv) {
Richard Henderson687ca792021-02-12 10:48:48 -0800[diff] [blame]37 return;
38 }
Richard Henderson360f0ab2021-03-15 14:40:04 -0600[diff] [blame]39 if (len > 0) {
Richard Henderson31c04832021-02-12 10:48:50 -0800[diff] [blame]40 memcpy(host_ptr_conv, host_ptr, len);
Richard Henderson687ca792021-02-12 10:48:48 -0800[diff] [blame]41 }
42 g_free(host_ptr);
43}
44#endif
45
46void *lock_user_string(abi_ulong guest_addr)
47{
Richard Henderson09f679b2021-02-12 10:48:49 -0800[diff] [blame]48 ssize_t len = target_strlen(guest_addr);
Richard Henderson687ca792021-02-12 10:48:48 -0800[diff] [blame]49 if (len < 0) {
50 return NULL;
51 }
Richard Henderson360f0ab2021-03-15 14:40:04 -0600[diff] [blame]52 return lock_user(VERIFY_READ, guest_addr, len + 1, 1);
Richard Henderson687ca792021-02-12 10:48:48 -0800[diff] [blame]53}
54
bellard579a97f2007-11-11 14:26:47 +0000[diff] [blame]55/* copy_from_user() and copy_to_user() are usually used to copy data
56 * buffers between the target and host. These internally perform
57 * locking/unlocking of the memory.
58 */
Richard Henderson360f0ab2021-03-15 14:40:04 -0600[diff] [blame]59int copy_from_user(void *hptr, abi_ulong gaddr, ssize_t len)
bellard579a97f2007-11-11 14:26:47 +0000[diff] [blame]60{
Richard Henderson09f679b2021-02-12 10:48:49 -0800[diff] [blame]61 int ret = 0;
62 void *ghptr = lock_user(VERIFY_READ, gaddr, len, 1);
bellard579a97f2007-11-11 14:26:47 +0000[diff] [blame]63
Richard Henderson09f679b2021-02-12 10:48:49 -0800[diff] [blame]64 if (ghptr) {
bellard579a97f2007-11-11 14:26:47 +0000[diff] [blame]65 memcpy(hptr, ghptr, len);
66 unlock_user(ghptr, gaddr, 0);
Richard Henderson09f679b2021-02-12 10:48:49 -0800[diff] [blame]67 } else {
bellard579a97f2007-11-11 14:26:47 +0000[diff] [blame]68 ret = -TARGET_EFAULT;
Richard Henderson09f679b2021-02-12 10:48:49 -0800[diff] [blame]69 }
bellard579a97f2007-11-11 14:26:47 +0000[diff] [blame]70 return ret;
71}
72
Richard Henderson360f0ab2021-03-15 14:40:04 -0600[diff] [blame]73int copy_to_user(abi_ulong gaddr, void *hptr, ssize_t len)
bellard579a97f2007-11-11 14:26:47 +0000[diff] [blame]74{
Richard Henderson09f679b2021-02-12 10:48:49 -0800[diff] [blame]75 int ret = 0;
76 void *ghptr = lock_user(VERIFY_WRITE, gaddr, len, 0);
bellard579a97f2007-11-11 14:26:47 +0000[diff] [blame]77
Richard Henderson09f679b2021-02-12 10:48:49 -0800[diff] [blame]78 if (ghptr) {
bellard579a97f2007-11-11 14:26:47 +0000[diff] [blame]79 memcpy(ghptr, hptr, len);
Paolo Bonzini7d374352018-12-13 23:37:37 +0100[diff] [blame]80 unlock_user(ghptr, gaddr, len);
Richard Henderson09f679b2021-02-12 10:48:49 -0800[diff] [blame]81 } else {
bellard579a97f2007-11-11 14:26:47 +0000[diff] [blame]82 ret = -TARGET_EFAULT;
Richard Henderson09f679b2021-02-12 10:48:49 -0800[diff] [blame]83 }
bellard579a97f2007-11-11 14:26:47 +0000[diff] [blame]84
85 return ret;
86}
87
bellard3dd98412007-11-14 10:17:35 +0000[diff] [blame]88/* Return the length of a string in target memory or -TARGET_EFAULT if
89 access error */
Richard Henderson09f679b2021-02-12 10:48:49 -0800[diff] [blame]90ssize_t target_strlen(abi_ulong guest_addr1)
bellard3dd98412007-11-14 10:17:35 +0000[diff] [blame]91{
92 uint8_t *ptr;
93 abi_ulong guest_addr;
Richard Henderson09f679b2021-02-12 10:48:49 -0800[diff] [blame]94 size_t max_len, len;
bellard3dd98412007-11-14 10:17:35 +0000[diff] [blame]95
96 guest_addr = guest_addr1;
97 for(;;) {
98 max_len = TARGET_PAGE_SIZE - (guest_addr & ~TARGET_PAGE_MASK);
99 ptr = lock_user(VERIFY_READ, guest_addr, max_len, 1);
100 if (!ptr)
101 return -TARGET_EFAULT;
blueswir1b55266b2008-09-20 08:07:15 +0000[diff] [blame]102 len = qemu_strnlen((const char *)ptr, max_len);
bellard3dd98412007-11-14 10:17:35 +0000[diff] [blame]103 unlock_user(ptr, guest_addr, 0);
104 guest_addr += len;
105 /* we don't allow wrapping or integer overflow */
Richard Henderson09f679b2021-02-12 10:48:49 -0800[diff] [blame]106 if (guest_addr == 0 || (guest_addr - guest_addr1) > 0x7fffffff) {
bellard3dd98412007-11-14 10:17:35 +0000[diff] [blame]107 return -TARGET_EFAULT;
Richard Henderson09f679b2021-02-12 10:48:49 -0800[diff] [blame]108 }
109 if (len != max_len) {
bellard3dd98412007-11-14 10:17:35 +0000[diff] [blame]110 break;
Richard Henderson09f679b2021-02-12 10:48:49 -0800[diff] [blame]111 }
bellard3dd98412007-11-14 10:17:35 +0000[diff] [blame]112 }
113 return guest_addr - guest_addr1;
bellard579a97f2007-11-11 14:26:47 +0000[diff] [blame]114}