1 files changed, 9 insertions, 60 deletions
diff --git a/arch/x86/include/asm/uaccess.h b/arch/x86/include/asm/uaccess.h
index a0ae610b9280..c3f291195294 100644
--- a/arch/x86/include/asm/uaccess.h
+++ b/arch/x86/include/asm/uaccess.h
@@ -697,43 +697,14 @@ unsigned long __must_check _copy_from_user(void *to, const void __user *from,
 unsigned long __must_check _copy_to_user(void __user *to, const void *from,
                                         unsigned n);
-#ifdef CONFIG_DEBUG_STRICT_USER_COPY_CHECKS
+extern void __compiletime_error("usercopy buffer size is too small")
-# define copy_user_diag __compiletime_error
+__bad_copy_user(void);
-#else
-# define copy_user_diag __compiletime_warning
-#endif
-extern void copy_user_diag("copy_from_user() buffer size is too small")
-copy_from_user_overflow(void);
-extern void copy_user_diag("copy_to_user() buffer size is too small")
-copy_to_user_overflow(void) __asm__("copy_from_user_overflow");
-#undef copy_user_diag
-#ifdef CONFIG_DEBUG_STRICT_USER_COPY_CHECKS
-extern void
-__compiletime_warning("copy_from_user() buffer size is not provably correct")
-__copy_from_user_overflow(void) __asm__("copy_from_user_overflow");
-#define __copy_from_user_overflow(size, count) __copy_from_user_overflow()
-extern void
-__compiletime_warning("copy_to_user() buffer size is not provably correct")
-__copy_to_user_overflow(void) __asm__("copy_from_user_overflow");
-#define __copy_to_user_overflow(size, count) __copy_to_user_overflow()
-#else
-static inline void
+static inline void copy_user_overflow(int size, unsigned long count)
-__copy_from_user_overflow(int size, unsigned long count)
 {
        WARN(1, "Buffer overflow detected (%d < %lu)!\n", size, count);
 }
-#define __copy_to_user_overflow __copy_from_user_overflow
-#endif
 static inline unsigned long __must_check
 copy_from_user(void *to, const void __user *from, unsigned long n)
 {
@@ -743,31 +714,13 @@ copy_from_user(void *to, const void __user *from, unsigned long n)
        kasan_check_write(to, n);
-        /*
-         * While we would like to have the compiler do the checking for us
-         * even in the non-constant size case, any false positives there are
-         * a problem (especially when DEBUG_STRICT_USER_COPY_CHECKS, but even
-         * without - the [hopefully] dangerous looking nature of the warning
-         * would make people go look at the respecitive call sites over and
-         * over again just to find that there's no problem).
-         *
-         * And there are cases where it's just not realistic for the compiler
-         * to prove the count to be in range. For example when multiple call
-         * sites of a helper function - perhaps in different source files -
-         * all doing proper range checking, yet the helper function not doing
-         * so again.
-         *
-         * Therefore limit the compile time checking to the constant size
-         * case, and do only runtime checking for non-constant sizes.
-         */
        if (likely(sz < 0 || sz >= n)) {
                check_object_size(to, n, false);
                n = _copy_from_user(to, from, n);
-        } else if (__builtin_constant_p(n))
+        } else if (!__builtin_constant_p(n))
-                copy_from_user_overflow();
+                copy_user_overflow(sz, n);
        else
-                __copy_from_user_overflow(sz, n);
+                __bad_copy_user();
        return n;
 }
@@ -781,21 +734,17 @@ copy_to_user(void __user *to, const void *from, unsigned long n)
        might_fault();
-        /* See the comment in copy_from_user() above. */
        if (likely(sz < 0 || sz >= n)) {
                check_object_size(from, n, true);
                n = _copy_to_user(to, from, n);
-        } else if (__builtin_constant_p(n))
+        } else if (!__builtin_constant_p(n))
-                copy_to_user_overflow();
+                copy_user_overflow(sz, n);
        else
-                __copy_to_user_overflow(sz, n);
+                __bad_copy_user();
        return n;
 }
-#undef __copy_from_user_overflow
-#undef __copy_to_user_overflow
 /*
 * We rely on the nested NMI work to allow atomic faults from the NMI path; the
 * nested NMI paths are careful to preserve CR2.

diff --git a/arch/x86/include/asm/uaccess.h b/arch/x86/include/asm/uaccess.h index a0ae610b9280..c3f291195294 100644 --- a/arch/x86/include/asm/uaccess.h +++ b/arch/x86/include/asm/uaccess.h
@@ -697,43 +697,14 @@ unsigned long __must_check _copy_from_user(void to, const void __user from,
697	unsigned long __must_check _copy_to_user(void __user to, const void from,	697	unsigned long __must_check _copy_to_user(void __user to, const void from,
698	unsigned n);	698	unsigned n);
699		699
700	#ifdef CONFIG_DEBUG_STRICT_USER_COPY_CHECKS	700	extern void __compiletime_error("usercopy buffer size is too small")
701	# define copy_user_diag __compiletime_error	701	__bad_copy_user(void);
702	#else
703	# define copy_user_diag __compiletime_warning
704	#endif
705
706	extern void copy_user_diag("copy_from_user() buffer size is too small")
707	copy_from_user_overflow(void);
708	extern void copy_user_diag("copy_to_user() buffer size is too small")
709	copy_to_user_overflow(void) __asm__("copy_from_user_overflow");
710
711	#undef copy_user_diag
712
713	#ifdef CONFIG_DEBUG_STRICT_USER_COPY_CHECKS
714
715	extern void
716	__compiletime_warning("copy_from_user() buffer size is not provably correct")
717	__copy_from_user_overflow(void) __asm__("copy_from_user_overflow");
718	#define __copy_from_user_overflow(size, count) __copy_from_user_overflow()
719
720	extern void
721	__compiletime_warning("copy_to_user() buffer size is not provably correct")
722	__copy_to_user_overflow(void) __asm__("copy_from_user_overflow");
723	#define __copy_to_user_overflow(size, count) __copy_to_user_overflow()
724
725	#else
726		702
727	static inline void	703	static inline void copy_user_overflow(int size, unsigned long count)
728	__copy_from_user_overflow(int size, unsigned long count)
729	{	704	{
730	WARN(1, "Buffer overflow detected (%d < %lu)!\n", size, count);	705	WARN(1, "Buffer overflow detected (%d < %lu)!\n", size, count);
731	}	706	}
732		707
733	#define __copy_to_user_overflow __copy_from_user_overflow
734
735	#endif
736
737	static inline unsigned long __must_check	708	static inline unsigned long __must_check
738	copy_from_user(void to, const void __user from, unsigned long n)	709	copy_from_user(void to, const void __user from, unsigned long n)
739	{	710	{
@@ -743,31 +714,13 @@ copy_from_user(void to, const void __user from, unsigned long n)
743		714
744	kasan_check_write(to, n);	715	kasan_check_write(to, n);
745		716
746	/*
747	* While we would like to have the compiler do the checking for us
748	* even in the non-constant size case, any false positives there are
749	* a problem (especially when DEBUG_STRICT_USER_COPY_CHECKS, but even
750	* without - the [hopefully] dangerous looking nature of the warning
751	* would make people go look at the respecitive call sites over and
752	* over again just to find that there's no problem).
753	*
754	* And there are cases where it's just not realistic for the compiler
755	* to prove the count to be in range. For example when multiple call
756	* sites of a helper function - perhaps in different source files -
757	* all doing proper range checking, yet the helper function not doing
758	* so again.
759	*
760	* Therefore limit the compile time checking to the constant size
761	* case, and do only runtime checking for non-constant sizes.
762	*/
763
764	if (likely(sz < 0 \|\| sz >= n)) {	717	if (likely(sz < 0 \|\| sz >= n)) {
765	check_object_size(to, n, false);	718	check_object_size(to, n, false);
766	n = _copy_from_user(to, from, n);	719	n = _copy_from_user(to, from, n);
767	} else if (__builtin_constant_p(n))	720	} else if (!__builtin_constant_p(n))
768	copy_from_user_overflow();	721	copy_user_overflow(sz, n);
769	else	722	else
770	__copy_from_user_overflow(sz, n);	723	__bad_copy_user();
771		724
772	return n;	725	return n;
773	}	726	}
@@ -781,21 +734,17 @@ copy_to_user(void __user to, const void from, unsigned long n)
781		734
782	might_fault();	735	might_fault();
783		736
784	/* See the comment in copy_from_user() above. */
785	if (likely(sz < 0 \|\| sz >= n)) {	737	if (likely(sz < 0 \|\| sz >= n)) {
786	check_object_size(from, n, true);	738	check_object_size(from, n, true);
787	n = _copy_to_user(to, from, n);	739	n = _copy_to_user(to, from, n);
788	} else if (__builtin_constant_p(n))	740	} else if (!__builtin_constant_p(n))
789	copy_to_user_overflow();	741	copy_user_overflow(sz, n);
790	else	742	else
791	__copy_to_user_overflow(sz, n);	743	__bad_copy_user();
792		744
793	return n;	745	return n;
794	}	746	}
795		747
796	#undef __copy_from_user_overflow
797	#undef __copy_to_user_overflow
798
799	/*	748	/*
800	* We rely on the nested NMI work to allow atomic faults from the NMI path; the	749	* We rely on the nested NMI work to allow atomic faults from the NMI path; the
801	* nested NMI paths are careful to preserve CR2.	750	* nested NMI paths are careful to preserve CR2.