Merge branch 'for-4.12/asus' into for-linus

author: Jiri Kosina <jkosina@suse.cz> 2017-05-02 05:02:41 -0400
committer: Jiri Kosina <jkosina@suse.cz> 2017-05-02 05:02:41 -0400
commit: 4d6ca227c768b50b05cf183974b40abe444e9d0c (patch)
tree: bf953d8e895281053548b9967a2c4b58d641df00 /lib/test_user_copy.c
parent: 800f3eef8ebc1264e9c135bfa892c8ae41fa4792 (diff)
parent: af22a610bc38508d5ea760507d31be6b6983dfa8 (diff)
1 files changed, 104 insertions, 14 deletions
diff --git a/lib/test_user_copy.c b/lib/test_user_copy.c
index 0ecef3e4690e..1a8d71a68531 100644
--- a/lib/test_user_copy.c
+++ b/lib/test_user_copy.c
@@ -25,6 +25,24 @@
 #include <linux/uaccess.h>
 #include <linux/vmalloc.h>
+/*
+ * Several 32-bit architectures support 64-bit {get,put}_user() calls.
+ * As there doesn't appear to be anything that can safely determine
+ * their capability at compile-time, we just have to opt-out certain archs.
+ */
+#if BITS_PER_LONG == 64 || (!(defined(CONFIG_ARM) && !defined(MMU)) && \
+                            !defined(CONFIG_AVR32) &&           \
+                            !defined(CONFIG_BLACKFIN) &&        \
+                            !defined(CONFIG_M32R) &&            \
+                            !defined(CONFIG_M68K) &&            \
+                            !defined(CONFIG_MICROBLAZE) &&      \
+                            !defined(CONFIG_MN10300) &&         \
+                            !defined(CONFIG_NIOS2) &&           \
+                            !defined(CONFIG_PPC32) &&           \
+                            !defined(CONFIG_SUPERH))
+# define TEST_U64
+#endif
 #define test(condition, msg)            \
 ({                                      \
        int cond = (condition);         \
@@ -40,7 +58,12 @@ static int __init test_user_copy_init(void)
        char __user *usermem;
        char *bad_usermem;
        unsigned long user_addr;
-        unsigned long value = 0x5A;
+        u8 val_u8;
+        u16 val_u16;
+        u32 val_u32;
+#ifdef TEST_U64
+        u64 val_u64;
+#endif
        kmem = kmalloc(PAGE_SIZE * 2, GFP_KERNEL);
        if (!kmem)
@@ -58,33 +81,100 @@ static int __init test_user_copy_init(void)
        usermem = (char __user *)user_addr;
        bad_usermem = (char *)user_addr;
-        /* Legitimate usage: none of these should fail. */
+        /*
-        ret |= test(copy_from_user(kmem, usermem, PAGE_SIZE),
+         * Legitimate usage: none of these copies should fail.
-                    "legitimate copy_from_user failed");
+         */
+        memset(kmem, 0x3a, PAGE_SIZE * 2);
        ret |= test(copy_to_user(usermem, kmem, PAGE_SIZE),
                    "legitimate copy_to_user failed");
-        ret |= test(get_user(value, (unsigned long __user *)usermem),
+        memset(kmem, 0x0, PAGE_SIZE);
-                    "legitimate get_user failed");
+        ret |= test(copy_from_user(kmem, usermem, PAGE_SIZE),
-        ret |= test(put_user(value, (unsigned long __user *)usermem),
+                    "legitimate copy_from_user failed");
-                    "legitimate put_user failed");
+        ret |= test(memcmp(kmem, kmem + PAGE_SIZE, PAGE_SIZE),
+                    "legitimate usercopy failed to copy data");
-        /* Invalid usage: none of these should succeed. */
+#define test_legit(size, check)                                           \
+        do {                                                              \
+                val_##size = check;                                       \
+                ret |= test(put_user(val_##size, (size __user *)usermem), \
+                    "legitimate put_user (" #size ") failed");            \
+                val_##size = 0;                                           \
+                ret |= test(get_user(val_##size, (size __user *)usermem), \
+                    "legitimate get_user (" #size ") failed");            \
+                ret |= test(val_##size != check,                          \
+                    "legitimate get_user (" #size ") failed to do copy"); \
+                if (val_##size != check) {                                \
+                        pr_info("0x%llx != 0x%llx\n",                     \
+                                (unsigned long long)val_##size,           \
+                                (unsigned long long)check);               \
+                }                                                         \
+        } while (0)
+        test_legit(u8,  0x5a);
+        test_legit(u16, 0x5a5b);
+        test_legit(u32, 0x5a5b5c5d);
+#ifdef TEST_U64
+        test_legit(u64, 0x5a5b5c5d6a6b6c6d);
+#endif
+#undef test_legit
+        /*
+         * Invalid usage: none of these copies should succeed.
+         */
+        /* Prepare kernel memory with check values. */
+        memset(kmem, 0x5a, PAGE_SIZE);
+        memset(kmem + PAGE_SIZE, 0, PAGE_SIZE);
+        /* Reject kernel-to-kernel copies through copy_from_user(). */
        ret |= test(!copy_from_user(kmem, (char __user *)(kmem + PAGE_SIZE),
                                    PAGE_SIZE),
                    "illegal all-kernel copy_from_user passed");
+        /* Destination half of buffer should have been zeroed. */
+        ret |= test(memcmp(kmem + PAGE_SIZE, kmem, PAGE_SIZE),
+                    "zeroing failure for illegal all-kernel copy_from_user");
+#if 0
+        /*
+         * When running with SMAP/PAN/etc, this will Oops the kernel
+         * due to the zeroing of userspace memory on failure. This needs
+         * to be tested in LKDTM instead, since this test module does not
+         * expect to explode.
+         */
        ret |= test(!copy_from_user(bad_usermem, (char __user *)kmem,
                                    PAGE_SIZE),
                    "illegal reversed copy_from_user passed");
+#endif
        ret |= test(!copy_to_user((char __user *)kmem, kmem + PAGE_SIZE,
                                  PAGE_SIZE),
                    "illegal all-kernel copy_to_user passed");
        ret |= test(!copy_to_user((char __user *)kmem, bad_usermem,
                                  PAGE_SIZE),
                    "illegal reversed copy_to_user passed");
-        ret |= test(!get_user(value, (unsigned long __user *)kmem),
-                    "illegal get_user passed");
+#define test_illegal(size, check)                                           \
-        ret |= test(!put_user(value, (unsigned long __user *)kmem),
+        do {                                                                \
-                    "illegal put_user passed");
+                val_##size = (check);                                       \
+                ret |= test(!get_user(val_##size, (size __user *)kmem),     \
+                    "illegal get_user (" #size ") passed");                 \
+                ret |= test(val_##size != (size)0,                          \
+                    "zeroing failure for illegal get_user (" #size ")");    \
+                if (val_##size != (size)0) {                                \
+                        pr_info("0x%llx != 0\n",                            \
+                                (unsigned long long)val_##size);            \
+                }                                                           \
+                ret |= test(!put_user(val_##size, (size __user *)kmem),     \
+                    "illegal put_user (" #size ") passed");                 \
+        } while (0)
+        test_illegal(u8,  0x5a);
+        test_illegal(u16, 0x5a5b);
+        test_illegal(u32, 0x5a5b5c5d);
+#ifdef TEST_U64
+        test_illegal(u64, 0x5a5b5c5d6a6b6c6d);
+#endif
+#undef test_illegal
        vm_munmap(user_addr, PAGE_SIZE * 2);
        kfree(kmem);
author	Jiri Kosina <jkosina@suse.cz>	2017-05-02 05:02:41 -0400
committer	Jiri Kosina <jkosina@suse.cz>	2017-05-02 05:02:41 -0400
commit	4d6ca227c768b50b05cf183974b40abe444e9d0c (patch)
tree	bf953d8e895281053548b9967a2c4b58d641df00 /lib/test_user_copy.c
parent	800f3eef8ebc1264e9c135bfa892c8ae41fa4792 (diff)
parent	af22a610bc38508d5ea760507d31be6b6983dfa8 (diff)

diff --git a/lib/test_user_copy.c b/lib/test_user_copy.c index 0ecef3e4690e..1a8d71a68531 100644 --- a/lib/test_user_copy.c +++ b/lib/test_user_copy.c
@@ -25,6 +25,24 @@
25	#include <linux/uaccess.h>	25	#include <linux/uaccess.h>
26	#include <linux/vmalloc.h>	26	#include <linux/vmalloc.h>
27		27
		28	/*
		29	* Several 32-bit architectures support 64-bit {get,put}_user() calls.
		30	* As there doesn't appear to be anything that can safely determine
		31	* their capability at compile-time, we just have to opt-out certain archs.
		32	*/
		33	#if BITS_PER_LONG == 64 \|\| (!(defined(CONFIG_ARM) && !defined(MMU)) && \
		34	!defined(CONFIG_AVR32) && \
		35	!defined(CONFIG_BLACKFIN) && \
		36	!defined(CONFIG_M32R) && \
		37	!defined(CONFIG_M68K) && \
		38	!defined(CONFIG_MICROBLAZE) && \
		39	!defined(CONFIG_MN10300) && \
		40	!defined(CONFIG_NIOS2) && \
		41	!defined(CONFIG_PPC32) && \
		42	!defined(CONFIG_SUPERH))
		43	# define TEST_U64
		44	#endif
		45
28	#define test(condition, msg) \	46	#define test(condition, msg) \
29	({ \	47	({ \
30	int cond = (condition); \	48	int cond = (condition); \
@@ -40,7 +58,12 @@ static int __init test_user_copy_init(void)
40	char __user *usermem;	58	char __user *usermem;
41	char *bad_usermem;	59	char *bad_usermem;
42	unsigned long user_addr;	60	unsigned long user_addr;
43	unsigned long value = 0x5A;	61	u8 val_u8;
		62	u16 val_u16;
		63	u32 val_u32;
		64	#ifdef TEST_U64
		65	u64 val_u64;
		66	#endif
44		67
45	kmem = kmalloc(PAGE_SIZE * 2, GFP_KERNEL);	68	kmem = kmalloc(PAGE_SIZE * 2, GFP_KERNEL);
46	if (!kmem)	69	if (!kmem)
@@ -58,33 +81,100 @@ static int __init test_user_copy_init(void)
58	usermem = (char __user *)user_addr;	81	usermem = (char __user *)user_addr;
59	bad_usermem = (char *)user_addr;	82	bad_usermem = (char *)user_addr;
60		83
61	/* Legitimate usage: none of these should fail. */	84	/*
62	ret \|= test(copy_from_user(kmem, usermem, PAGE_SIZE),	85	* Legitimate usage: none of these copies should fail.
63	"legitimate copy_from_user failed");	86	*/
		87	memset(kmem, 0x3a, PAGE_SIZE * 2);
64	ret \|= test(copy_to_user(usermem, kmem, PAGE_SIZE),	88	ret \|= test(copy_to_user(usermem, kmem, PAGE_SIZE),
65	"legitimate copy_to_user failed");	89	"legitimate copy_to_user failed");
66	ret \|= test(get_user(value, (unsigned long __user *)usermem),	90	memset(kmem, 0x0, PAGE_SIZE);
67	"legitimate get_user failed");	91	ret \|= test(copy_from_user(kmem, usermem, PAGE_SIZE),
68	ret \|= test(put_user(value, (unsigned long __user *)usermem),	92	"legitimate copy_from_user failed");
69	"legitimate put_user failed");	93	ret \|= test(memcmp(kmem, kmem + PAGE_SIZE, PAGE_SIZE),
70		94	"legitimate usercopy failed to copy data");
71	/* Invalid usage: none of these should succeed. */	95
		96	#define test_legit(size, check) \
		97	do { \
		98	val_##size = check; \
		99	ret \|= test(put_user(val_##size, (size __user *)usermem), \
		100	"legitimate put_user (" #size ") failed"); \
		101	val_##size = 0; \
		102	ret \|= test(get_user(val_##size, (size __user *)usermem), \
		103	"legitimate get_user (" #size ") failed"); \
		104	ret \|= test(val_##size != check, \
		105	"legitimate get_user (" #size ") failed to do copy"); \
		106	if (val_##size != check) { \
		107	pr_info("0x%llx != 0x%llx\n", \
		108	(unsigned long long)val_##size, \
		109	(unsigned long long)check); \
		110	} \
		111	} while (0)
		112
		113	test_legit(u8, 0x5a);
		114	test_legit(u16, 0x5a5b);
		115	test_legit(u32, 0x5a5b5c5d);
		116	#ifdef TEST_U64
		117	test_legit(u64, 0x5a5b5c5d6a6b6c6d);
		118	#endif
		119	#undef test_legit
		120
		121	/*
		122	* Invalid usage: none of these copies should succeed.
		123	*/
		124
		125	/* Prepare kernel memory with check values. */
		126	memset(kmem, 0x5a, PAGE_SIZE);
		127	memset(kmem + PAGE_SIZE, 0, PAGE_SIZE);
		128
		129	/* Reject kernel-to-kernel copies through copy_from_user(). */
72	ret \|= test(!copy_from_user(kmem, (char __user *)(kmem + PAGE_SIZE),	130	ret \|= test(!copy_from_user(kmem, (char __user *)(kmem + PAGE_SIZE),
73	PAGE_SIZE),	131	PAGE_SIZE),
74	"illegal all-kernel copy_from_user passed");	132	"illegal all-kernel copy_from_user passed");
		133
		134	/* Destination half of buffer should have been zeroed. */
		135	ret \|= test(memcmp(kmem + PAGE_SIZE, kmem, PAGE_SIZE),
		136	"zeroing failure for illegal all-kernel copy_from_user");
		137
		138	#if 0
		139	/*
		140	* When running with SMAP/PAN/etc, this will Oops the kernel
		141	* due to the zeroing of userspace memory on failure. This needs
		142	* to be tested in LKDTM instead, since this test module does not
		143	* expect to explode.
		144	*/
75	ret \|= test(!copy_from_user(bad_usermem, (char __user *)kmem,	145	ret \|= test(!copy_from_user(bad_usermem, (char __user *)kmem,
76	PAGE_SIZE),	146	PAGE_SIZE),
77	"illegal reversed copy_from_user passed");	147	"illegal reversed copy_from_user passed");
		148	#endif
78	ret \|= test(!copy_to_user((char __user *)kmem, kmem + PAGE_SIZE,	149	ret \|= test(!copy_to_user((char __user *)kmem, kmem + PAGE_SIZE,
79	PAGE_SIZE),	150	PAGE_SIZE),
80	"illegal all-kernel copy_to_user passed");	151	"illegal all-kernel copy_to_user passed");
81	ret \|= test(!copy_to_user((char __user *)kmem, bad_usermem,	152	ret \|= test(!copy_to_user((char __user *)kmem, bad_usermem,
82	PAGE_SIZE),	153	PAGE_SIZE),
83	"illegal reversed copy_to_user passed");	154	"illegal reversed copy_to_user passed");
84	ret \|= test(!get_user(value, (unsigned long __user *)kmem),	155
85	"illegal get_user passed");	156	#define test_illegal(size, check) \
86	ret \|= test(!put_user(value, (unsigned long __user *)kmem),	157	do { \
87	"illegal put_user passed");	158	val_##size = (check); \
		159	ret \|= test(!get_user(val_##size, (size __user *)kmem), \
		160	"illegal get_user (" #size ") passed"); \
		161	ret \|= test(val_##size != (size)0, \
		162	"zeroing failure for illegal get_user (" #size ")"); \
		163	if (val_##size != (size)0) { \
		164	pr_info("0x%llx != 0\n", \
		165	(unsigned long long)val_##size); \
		166	} \
		167	ret \|= test(!put_user(val_##size, (size __user *)kmem), \
		168	"illegal put_user (" #size ") passed"); \
		169	} while (0)
		170
		171	test_illegal(u8, 0x5a);
		172	test_illegal(u16, 0x5a5b);
		173	test_illegal(u32, 0x5a5b5c5d);
		174	#ifdef TEST_U64
		175	test_illegal(u64, 0x5a5b5c5d6a6b6c6d);
		176	#endif
		177	#undef test_illegal
88		178
89	vm_munmap(user_addr, PAGE_SIZE * 2);	179	vm_munmap(user_addr, PAGE_SIZE * 2);
90	kfree(kmem);	180	kfree(kmem);