sparc: Allow handling signals when stack is corrupted.

If we can't push the pending register windows onto the user's stack, we disallow signal delivery even if the signal would be delivered on a valid seperate signal stack. Add a register window save area in the signal frame, and store any unsavable windows there. On sigreturn, if any windows are still queued up in the signal frame, try to push them back onto the stack and if that fails we kill the process immediately. This allows the debug/tst-longjmp_chk2 glibc test case to pass. Signed-off-by: David S. Miller <davem@davemloft.net>
author: David S. Miller <davem@davemloft.net> 2011-08-20 20:14:54 -0400
committer: David S. Miller <davem@davemloft.net> 2011-08-20 20:14:54 -0400
commit: 5598473a5b40c47a8c5349dd2c2630797169cf1a (patch)
tree: 514474c6359d158fe1adc7477dbcf64c326b1770 /arch/sparc/kernel/signal32.c
parent: 4a0342ca8e8150bd47e7118a76e300692a1b6b7b (diff)
1 files changed, 105 insertions, 79 deletions
diff --git a/arch/sparc/kernel/signal32.c b/arch/sparc/kernel/signal32.c
index 75fad425e249..1ba95aff5d59 100644
--- a/arch/sparc/kernel/signal32.c
+++ b/arch/sparc/kernel/signal32.c
@@ -29,6 +29,8 @@
 #include <asm/visasm.h>
 #include <asm/compat_signal.h>
+#include "sigutil.h"
 #define _BLOCKABLE (~(sigmask(SIGKILL) | sigmask(SIGSTOP)))
 /* This magic should be in g_upper[0] for all upper parts
@@ -44,14 +46,14 @@ typedef struct {
 struct signal_frame32 {
        struct sparc_stackf32   ss;
        __siginfo32_t           info;
-        /* __siginfo_fpu32_t * */ u32 fpu_save;
+        /* __siginfo_fpu_t * */ u32 fpu_save;
        unsigned int            insns[2];
        unsigned int            extramask[_COMPAT_NSIG_WORDS - 1];
        unsigned int            extra_size; /* Should be sizeof(siginfo_extra_v8plus_t) */
        /* Only valid if (info.si_regs.psr & (PSR_VERS|PSR_IMPL)) == PSR_V8PLUS */
        siginfo_extra_v8plus_t  v8plus;
-        __siginfo_fpu_t         fpu_state;
+        /* __siginfo_rwin_t * */u32 rwin_save;
-};
+} __attribute__((aligned(8)));
 typedef struct compat_siginfo{
        int si_signo;
@@ -110,18 +112,14 @@ struct rt_signal_frame32 {
        compat_siginfo_t        info;
        struct pt_regs32        regs;
        compat_sigset_t         mask;
-        /* __siginfo_fpu32_t * */ u32 fpu_save;
+        /* __siginfo_fpu_t * */ u32 fpu_save;
        unsigned int            insns[2];
        stack_t32               stack;
        unsigned int            extra_size; /* Should be sizeof(siginfo_extra_v8plus_t) */
        /* Only valid if (regs.psr & (PSR_VERS|PSR_IMPL)) == PSR_V8PLUS */
        siginfo_extra_v8plus_t  v8plus;
-        __siginfo_fpu_t         fpu_state;
+        /* __siginfo_rwin_t * */u32 rwin_save;
-};
+} __attribute__((aligned(8)));
-/* Align macros */
-#define SF_ALIGNEDSZ  (((sizeof(struct signal_frame32) + 15) & (~15)))
-#define RT_ALIGNEDSZ  (((sizeof(struct rt_signal_frame32) + 15) & (~15)))
 int copy_siginfo_to_user32(compat_siginfo_t __user *to, siginfo_t *from)
 {
@@ -192,30 +190,13 @@ int copy_siginfo_from_user32(siginfo_t *to, compat_siginfo_t __user *from)
        return 0;
 }
-static int restore_fpu_state32(struct pt_regs *regs, __siginfo_fpu_t __user *fpu)
-{
-        unsigned long *fpregs = current_thread_info()->fpregs;
-        unsigned long fprs;
-        int err;
-        
-        err = __get_user(fprs, &fpu->si_fprs);
-        fprs_write(0);
-        regs->tstate &= ~TSTATE_PEF;
-        if (fprs & FPRS_DL)
-                err |= copy_from_user(fpregs, &fpu->si_float_regs[0], (sizeof(unsigned int) * 32));
-        if (fprs & FPRS_DU)
-                err |= copy_from_user(fpregs+16, &fpu->si_float_regs[32], (sizeof(unsigned int) * 32));
-        err |= __get_user(current_thread_info()->xfsr[0], &fpu->si_fsr);
-        err |= __get_user(current_thread_info()->gsr[0], &fpu->si_gsr);
-        current_thread_info()->fpsaved[0] |= fprs;
-        return err;
-}
 void do_sigreturn32(struct pt_regs *regs)
 {
        struct signal_frame32 __user *sf;
+        compat_uptr_t fpu_save;
+        compat_uptr_t rwin_save;
        unsigned int psr;
-        unsigned pc, npc, fpu_save;
+        unsigned pc, npc;
        sigset_t set;
        unsigned seta[_COMPAT_NSIG_WORDS];
        int err, i;
@@ -273,8 +254,13 @@ void do_sigreturn32(struct pt_regs *regs)
        pt_regs_clear_syscall(regs);
        err |= __get_user(fpu_save, &sf->fpu_save);
-        if (fpu_save)
+        if (!err && fpu_save)
-                err |= restore_fpu_state32(regs, &sf->fpu_state);
+                err |= restore_fpu_state(regs, compat_ptr(fpu_save));
+        err |= __get_user(rwin_save, &sf->rwin_save);
+        if (!err && rwin_save) {
+                if (restore_rwin_state(compat_ptr(rwin_save)))
+                        goto segv;
+        }
        err |= __get_user(seta[0], &sf->info.si_mask);
        err |= copy_from_user(seta+1, &sf->extramask,
                              (_COMPAT_NSIG_WORDS - 1) * sizeof(unsigned int));
@@ -300,7 +286,9 @@ segv:
 asmlinkage void do_rt_sigreturn32(struct pt_regs *regs)
 {
        struct rt_signal_frame32 __user *sf;
-        unsigned int psr, pc, npc, fpu_save, u_ss_sp;
+        unsigned int psr, pc, npc, u_ss_sp;
+        compat_uptr_t fpu_save;
+        compat_uptr_t rwin_save;
        mm_segment_t old_fs;
        sigset_t set;
        compat_sigset_t seta;
@@ -359,8 +347,8 @@ asmlinkage void do_rt_sigreturn32(struct pt_regs *regs)
        pt_regs_clear_syscall(regs);
        err |= __get_user(fpu_save, &sf->fpu_save);
-        if (fpu_save)
+        if (!err && fpu_save)
-                err |= restore_fpu_state32(regs, &sf->fpu_state);
+                err |= restore_fpu_state(regs, compat_ptr(fpu_save));
        err |= copy_from_user(&seta, &sf->mask, sizeof(compat_sigset_t));
        err |= __get_user(u_ss_sp, &sf->stack.ss_sp);
        st.ss_sp = compat_ptr(u_ss_sp);
@@ -376,6 +364,12 @@ asmlinkage void do_rt_sigreturn32(struct pt_regs *regs)
        do_sigaltstack((stack_t __user *) &st, NULL, (unsigned long)sf);
        set_fs(old_fs);
        
+        err |= __get_user(rwin_save, &sf->rwin_save);
+        if (!err && rwin_save) {
+                if (restore_rwin_state(compat_ptr(rwin_save)))
+                        goto segv;
+        }
        switch (_NSIG_WORDS) {
                case 4: set.sig[3] = seta.sig[6] + (((long)seta.sig[7]) << 32);
                case 3: set.sig[2] = seta.sig[4] + (((long)seta.sig[5]) << 32);
@@ -433,26 +427,6 @@ static void __user *get_sigframe(struct sigaction *sa, struct pt_regs *regs, uns
        return (void __user *) sp;
 }
-static int save_fpu_state32(struct pt_regs *regs, __siginfo_fpu_t __user *fpu)
-{
-        unsigned long *fpregs = current_thread_info()->fpregs;
-        unsigned long fprs;
-        int err = 0;
-        
-        fprs = current_thread_info()->fpsaved[0];
-        if (fprs & FPRS_DL)
-                err |= copy_to_user(&fpu->si_float_regs[0], fpregs,
-                                    (sizeof(unsigned int) * 32));
-        if (fprs & FPRS_DU)
-                err |= copy_to_user(&fpu->si_float_regs[32], fpregs+16,
-                                    (sizeof(unsigned int) * 32));
-        err |= __put_user(current_thread_info()->xfsr[0], &fpu->si_fsr);
-        err |= __put_user(current_thread_info()->gsr[0], &fpu->si_gsr);
-        err |= __put_user(fprs, &fpu->si_fprs);
-        return err;
-}
 /* The I-cache flush instruction only works in the primary ASI, which
 * right now is the nucleus, aka. kernel space.
 *
@@ -515,18 +489,23 @@ static int setup_frame32(struct k_sigaction *ka, struct pt_regs *regs,
                         int signo, sigset_t *oldset)
 {
        struct signal_frame32 __user *sf;
+        int i, err, wsaved;
+        void __user *tail;
        int sigframe_size;
        u32 psr;
-        int i, err;
        unsigned int seta[_COMPAT_NSIG_WORDS];
        /* 1. Make sure everything is clean */
        synchronize_user_stack();
        save_and_clear_fpu();
        
-        sigframe_size = SF_ALIGNEDSZ;
+        wsaved = get_thread_wsaved();
-        if (!(current_thread_info()->fpsaved[0] & FPRS_FEF))
-                sigframe_size -= sizeof(__siginfo_fpu_t);
+        sigframe_size = sizeof(*sf);
+        if (current_thread_info()->fpsaved[0] & FPRS_FEF)
+                sigframe_size += sizeof(__siginfo_fpu_t);
+        if (wsaved)
+                sigframe_size += sizeof(__siginfo_rwin_t);
        sf = (struct signal_frame32 __user *)
                get_sigframe(&ka->sa, regs, sigframe_size);
@@ -534,8 +513,7 @@ static int setup_frame32(struct k_sigaction *ka, struct pt_regs *regs,
        if (invalid_frame_pointer(sf, sigframe_size))
                goto sigill;
-        if (get_thread_wsaved() != 0)
+        tail = (sf + 1);
-                goto sigill;
        /* 2. Save the current process state */
        if (test_thread_flag(TIF_32BIT)) {
@@ -560,11 +538,22 @@ static int setup_frame32(struct k_sigaction *ka, struct pt_regs *regs,
                          &sf->v8plus.asi);
        if (psr & PSR_EF) {
-                err |= save_fpu_state32(regs, &sf->fpu_state);
+                __siginfo_fpu_t __user *fp = tail;
-                err |= __put_user((u64)&sf->fpu_state, &sf->fpu_save);
+                tail += sizeof(*fp);
+                err |= save_fpu_state(regs, fp);
+                err |= __put_user((u64)fp, &sf->fpu_save);
        } else {
                err |= __put_user(0, &sf->fpu_save);
        }
+        if (wsaved) {
+                __siginfo_rwin_t __user *rwp = tail;
+                tail += sizeof(*rwp);
+                err |= save_rwin_state(wsaved, rwp);
+                err |= __put_user((u64)rwp, &sf->rwin_save);
+                set_thread_wsaved(0);
+        } else {
+                err |= __put_user(0, &sf->rwin_save);
+        }
        switch (_NSIG_WORDS) {
        case 4: seta[7] = (oldset->sig[3] >> 32);
@@ -580,10 +569,21 @@ static int setup_frame32(struct k_sigaction *ka, struct pt_regs *regs,
        err |= __copy_to_user(sf->extramask, seta + 1,
                              (_COMPAT_NSIG_WORDS - 1) * sizeof(unsigned int));
-        err |= copy_in_user((u32 __user *)sf,
+        if (!wsaved) {
-                            (u32 __user *)(regs->u_regs[UREG_FP]),
+                err |= copy_in_user((u32 __user *)sf,
-                            sizeof(struct reg_window32));
+                                    (u32 __user *)(regs->u_regs[UREG_FP]),
-        
+                                    sizeof(struct reg_window32));
+        } else {
+                struct reg_window *rp;
+                rp = &current_thread_info()->reg_window[wsaved - 1];
+                for (i = 0; i < 8; i++)
+                        err |= __put_user(rp->locals[i], &sf->ss.locals[i]);
+                for (i = 0; i < 6; i++)
+                        err |= __put_user(rp->ins[i], &sf->ss.ins[i]);
+                err |= __put_user(rp->ins[6], &sf->ss.fp);
+                err |= __put_user(rp->ins[7], &sf->ss.callers_pc);
+        }       
        if (err)
                goto sigsegv;
@@ -613,7 +613,6 @@ static int setup_frame32(struct k_sigaction *ka, struct pt_regs *regs,
                err |= __put_user(0x91d02010, &sf->insns[1]); /*t 0x10*/
                if (err)
                        goto sigsegv;
                flush_signal_insns(address);
        }
        return 0;
@@ -632,18 +631,23 @@ static int setup_rt_frame32(struct k_sigaction *ka, struct pt_regs *regs,
                            siginfo_t *info)
 {
        struct rt_signal_frame32 __user *sf;
+        int i, err, wsaved;
+        void __user *tail;
        int sigframe_size;
        u32 psr;
-        int i, err;
        compat_sigset_t seta;
        /* 1. Make sure everything is clean */
        synchronize_user_stack();
        save_and_clear_fpu();
        
-        sigframe_size = RT_ALIGNEDSZ;
+        wsaved = get_thread_wsaved();
-        if (!(current_thread_info()->fpsaved[0] & FPRS_FEF))
-                sigframe_size -= sizeof(__siginfo_fpu_t);
+        sigframe_size = sizeof(*sf);
+        if (current_thread_info()->fpsaved[0] & FPRS_FEF)
+                sigframe_size += sizeof(__siginfo_fpu_t);
+        if (wsaved)
+                sigframe_size += sizeof(__siginfo_rwin_t);
        sf = (struct rt_signal_frame32 __user *)
                get_sigframe(&ka->sa, regs, sigframe_size);
@@ -651,8 +655,7 @@ static int setup_rt_frame32(struct k_sigaction *ka, struct pt_regs *regs,
        if (invalid_frame_pointer(sf, sigframe_size))
                goto sigill;
-        if (get_thread_wsaved() != 0)
+        tail = (sf + 1);
-                goto sigill;
        /* 2. Save the current process state */
        if (test_thread_flag(TIF_32BIT)) {
@@ -677,11 +680,22 @@ static int setup_rt_frame32(struct k_sigaction *ka, struct pt_regs *regs,
                          &sf->v8plus.asi);
        if (psr & PSR_EF) {
-                err |= save_fpu_state32(regs, &sf->fpu_state);
+                __siginfo_fpu_t __user *fp = tail;
-                err |= __put_user((u64)&sf->fpu_state, &sf->fpu_save);
+                tail += sizeof(*fp);
+                err |= save_fpu_state(regs, fp);
+                err |= __put_user((u64)fp, &sf->fpu_save);
        } else {
                err |= __put_user(0, &sf->fpu_save);
        }
+        if (wsaved) {
+                __siginfo_rwin_t __user *rwp = tail;
+                tail += sizeof(*rwp);
+                err |= save_rwin_state(wsaved, rwp);
+                err |= __put_user((u64)rwp, &sf->rwin_save);
+                set_thread_wsaved(0);
+        } else {
+                err |= __put_user(0, &sf->rwin_save);
+        }
        /* Update the siginfo structure.  */
        err |= copy_siginfo_to_user32(&sf->info, info);
@@ -703,9 +717,21 @@ static int setup_rt_frame32(struct k_sigaction *ka, struct pt_regs *regs,
        }
        err |= __copy_to_user(&sf->mask, &seta, sizeof(compat_sigset_t));
-        err |= copy_in_user((u32 __user *)sf,
+        if (!wsaved) {
-                            (u32 __user *)(regs->u_regs[UREG_FP]),
+                err |= copy_in_user((u32 __user *)sf,
-                            sizeof(struct reg_window32));
+                                    (u32 __user *)(regs->u_regs[UREG_FP]),
+                                    sizeof(struct reg_window32));
+        } else {
+                struct reg_window *rp;
+                rp = &current_thread_info()->reg_window[wsaved - 1];
+                for (i = 0; i < 8; i++)
+                        err |= __put_user(rp->locals[i], &sf->ss.locals[i]);
+                for (i = 0; i < 6; i++)
+                        err |= __put_user(rp->ins[i], &sf->ss.ins[i]);
+                err |= __put_user(rp->ins[6], &sf->ss.fp);
+                err |= __put_user(rp->ins[7], &sf->ss.callers_pc);
+        }
        if (err)
                goto sigsegv;
author	David S. Miller <davem@davemloft.net>	2011-08-20 20:14:54 -0400
committer	David S. Miller <davem@davemloft.net>	2011-08-20 20:14:54 -0400
commit	5598473a5b40c47a8c5349dd2c2630797169cf1a (patch)
tree	514474c6359d158fe1adc7477dbcf64c326b1770 /arch/sparc/kernel/signal32.c
parent	4a0342ca8e8150bd47e7118a76e300692a1b6b7b (diff)

diff --git a/arch/sparc/kernel/signal32.c b/arch/sparc/kernel/signal32.c index 75fad425e249..1ba95aff5d59 100644 --- a/arch/sparc/kernel/signal32.c +++ b/arch/sparc/kernel/signal32.c
@@ -29,6 +29,8 @@
29	#include <asm/visasm.h>	29	#include <asm/visasm.h>
30	#include <asm/compat_signal.h>	30	#include <asm/compat_signal.h>
31		31
		32	#include "sigutil.h"
		33
32	#define _BLOCKABLE (~(sigmask(SIGKILL) \| sigmask(SIGSTOP)))	34	#define _BLOCKABLE (~(sigmask(SIGKILL) \| sigmask(SIGSTOP)))
33		35
34	/* This magic should be in g_upper[0] for all upper parts	36	/* This magic should be in g_upper[0] for all upper parts
@@ -44,14 +46,14 @@ typedef struct {
44	struct signal_frame32 {	46	struct signal_frame32 {
45	struct sparc_stackf32 ss;	47	struct sparc_stackf32 ss;
46	__siginfo32_t info;	48	__siginfo32_t info;
47	/* __siginfo_fpu32_t * */ u32 fpu_save;	49	/* __siginfo_fpu_t * */ u32 fpu_save;
48	unsigned int insns[2];	50	unsigned int insns[2];
49	unsigned int extramask[_COMPAT_NSIG_WORDS - 1];	51	unsigned int extramask[_COMPAT_NSIG_WORDS - 1];
50	unsigned int extra_size; /* Should be sizeof(siginfo_extra_v8plus_t) */	52	unsigned int extra_size; /* Should be sizeof(siginfo_extra_v8plus_t) */
51	/* Only valid if (info.si_regs.psr & (PSR_VERS\|PSR_IMPL)) == PSR_V8PLUS */	53	/* Only valid if (info.si_regs.psr & (PSR_VERS\|PSR_IMPL)) == PSR_V8PLUS */
52	siginfo_extra_v8plus_t v8plus;	54	siginfo_extra_v8plus_t v8plus;
53	__siginfo_fpu_t fpu_state;	55	/* __siginfo_rwin_t * */u32 rwin_save;
54	};	56	} __attribute__((aligned(8)));
55		57
56	typedef struct compat_siginfo{	58	typedef struct compat_siginfo{
57	int si_signo;	59	int si_signo;
@@ -110,18 +112,14 @@ struct rt_signal_frame32 {
110	compat_siginfo_t info;	112	compat_siginfo_t info;
111	struct pt_regs32 regs;	113	struct pt_regs32 regs;
112	compat_sigset_t mask;	114	compat_sigset_t mask;
113	/* __siginfo_fpu32_t * */ u32 fpu_save;	115	/* __siginfo_fpu_t * */ u32 fpu_save;
114	unsigned int insns[2];	116	unsigned int insns[2];
115	stack_t32 stack;	117	stack_t32 stack;
116	unsigned int extra_size; /* Should be sizeof(siginfo_extra_v8plus_t) */	118	unsigned int extra_size; /* Should be sizeof(siginfo_extra_v8plus_t) */
117	/* Only valid if (regs.psr & (PSR_VERS\|PSR_IMPL)) == PSR_V8PLUS */	119	/* Only valid if (regs.psr & (PSR_VERS\|PSR_IMPL)) == PSR_V8PLUS */
118	siginfo_extra_v8plus_t v8plus;	120	siginfo_extra_v8plus_t v8plus;
119	__siginfo_fpu_t fpu_state;	121	/* __siginfo_rwin_t * */u32 rwin_save;
120	};	122	} __attribute__((aligned(8)));
121
122	/* Align macros */
123	#define SF_ALIGNEDSZ (((sizeof(struct signal_frame32) + 15) & (~15)))
124	#define RT_ALIGNEDSZ (((sizeof(struct rt_signal_frame32) + 15) & (~15)))
125		123
126	int copy_siginfo_to_user32(compat_siginfo_t __user to, siginfo_t from)	124	int copy_siginfo_to_user32(compat_siginfo_t __user to, siginfo_t from)
127	{	125	{
@@ -192,30 +190,13 @@ int copy_siginfo_from_user32(siginfo_t to, compat_siginfo_t __user from)
192	return 0;	190	return 0;
193	}	191	}
194		192
195	static int restore_fpu_state32(struct pt_regs regs, __siginfo_fpu_t __user fpu)
196	{
197	unsigned long *fpregs = current_thread_info()->fpregs;
198	unsigned long fprs;
199	int err;
200
201	err = __get_user(fprs, &fpu->si_fprs);
202	fprs_write(0);
203	regs->tstate &= ~TSTATE_PEF;
204	if (fprs & FPRS_DL)
205	err \|= copy_from_user(fpregs, &fpu->si_float_regs[0], (sizeof(unsigned int) * 32));
206	if (fprs & FPRS_DU)
207	err \|= copy_from_user(fpregs+16, &fpu->si_float_regs[32], (sizeof(unsigned int) * 32));
208	err \|= __get_user(current_thread_info()->xfsr[0], &fpu->si_fsr);
209	err \|= __get_user(current_thread_info()->gsr[0], &fpu->si_gsr);
210	current_thread_info()->fpsaved[0] \|= fprs;
211	return err;
212	}
213
214	void do_sigreturn32(struct pt_regs *regs)	193	void do_sigreturn32(struct pt_regs *regs)
215	{	194	{
216	struct signal_frame32 __user *sf;	195	struct signal_frame32 __user *sf;
		196	compat_uptr_t fpu_save;
		197	compat_uptr_t rwin_save;
217	unsigned int psr;	198	unsigned int psr;
218	unsigned pc, npc, fpu_save;	199	unsigned pc, npc;
219	sigset_t set;	200	sigset_t set;
220	unsigned seta[_COMPAT_NSIG_WORDS];	201	unsigned seta[_COMPAT_NSIG_WORDS];
221	int err, i;	202	int err, i;
@@ -273,8 +254,13 @@ void do_sigreturn32(struct pt_regs *regs)
273	pt_regs_clear_syscall(regs);	254	pt_regs_clear_syscall(regs);
274		255
275	err \|= __get_user(fpu_save, &sf->fpu_save);	256	err \|= __get_user(fpu_save, &sf->fpu_save);
276	if (fpu_save)	257	if (!err && fpu_save)
277	err \|= restore_fpu_state32(regs, &sf->fpu_state);	258	err \|= restore_fpu_state(regs, compat_ptr(fpu_save));
		259	err \|= __get_user(rwin_save, &sf->rwin_save);
		260	if (!err && rwin_save) {
		261	if (restore_rwin_state(compat_ptr(rwin_save)))
		262	goto segv;
		263	}
278	err \|= __get_user(seta[0], &sf->info.si_mask);	264	err \|= __get_user(seta[0], &sf->info.si_mask);
279	err \|= copy_from_user(seta+1, &sf->extramask,	265	err \|= copy_from_user(seta+1, &sf->extramask,
280	(_COMPAT_NSIG_WORDS - 1) * sizeof(unsigned int));	266	(_COMPAT_NSIG_WORDS - 1) * sizeof(unsigned int));
@@ -300,7 +286,9 @@ segv:
300	asmlinkage void do_rt_sigreturn32(struct pt_regs *regs)	286	asmlinkage void do_rt_sigreturn32(struct pt_regs *regs)
301	{	287	{
302	struct rt_signal_frame32 __user *sf;	288	struct rt_signal_frame32 __user *sf;
303	unsigned int psr, pc, npc, fpu_save, u_ss_sp;	289	unsigned int psr, pc, npc, u_ss_sp;
		290	compat_uptr_t fpu_save;
		291	compat_uptr_t rwin_save;
304	mm_segment_t old_fs;	292	mm_segment_t old_fs;
305	sigset_t set;	293	sigset_t set;
306	compat_sigset_t seta;	294	compat_sigset_t seta;
@@ -359,8 +347,8 @@ asmlinkage void do_rt_sigreturn32(struct pt_regs *regs)
359	pt_regs_clear_syscall(regs);	347	pt_regs_clear_syscall(regs);
360		348
361	err \|= __get_user(fpu_save, &sf->fpu_save);	349	err \|= __get_user(fpu_save, &sf->fpu_save);
362	if (fpu_save)	350	if (!err && fpu_save)
363	err \|= restore_fpu_state32(regs, &sf->fpu_state);	351	err \|= restore_fpu_state(regs, compat_ptr(fpu_save));
364	err \|= copy_from_user(&seta, &sf->mask, sizeof(compat_sigset_t));	352	err \|= copy_from_user(&seta, &sf->mask, sizeof(compat_sigset_t));
365	err \|= __get_user(u_ss_sp, &sf->stack.ss_sp);	353	err \|= __get_user(u_ss_sp, &sf->stack.ss_sp);
366	st.ss_sp = compat_ptr(u_ss_sp);	354	st.ss_sp = compat_ptr(u_ss_sp);
@@ -376,6 +364,12 @@ asmlinkage void do_rt_sigreturn32(struct pt_regs *regs)
376	do_sigaltstack((stack_t __user *) &st, NULL, (unsigned long)sf);	364	do_sigaltstack((stack_t __user *) &st, NULL, (unsigned long)sf);
377	set_fs(old_fs);	365	set_fs(old_fs);
378		366
		367	err \|= __get_user(rwin_save, &sf->rwin_save);
		368	if (!err && rwin_save) {
		369	if (restore_rwin_state(compat_ptr(rwin_save)))
		370	goto segv;
		371	}
		372
379	switch (_NSIG_WORDS) {	373	switch (_NSIG_WORDS) {
380	case 4: set.sig[3] = seta.sig[6] + (((long)seta.sig[7]) << 32);	374	case 4: set.sig[3] = seta.sig[6] + (((long)seta.sig[7]) << 32);
381	case 3: set.sig[2] = seta.sig[4] + (((long)seta.sig[5]) << 32);	375	case 3: set.sig[2] = seta.sig[4] + (((long)seta.sig[5]) << 32);
@@ -433,26 +427,6 @@ static void __user get_sigframe(struct sigaction sa, struct pt_regs *regs, uns
433	return (void __user *) sp;	427	return (void __user *) sp;
434	}	428	}
435		429
436	static int save_fpu_state32(struct pt_regs regs, __siginfo_fpu_t __user fpu)
437	{
438	unsigned long *fpregs = current_thread_info()->fpregs;
439	unsigned long fprs;
440	int err = 0;
441
442	fprs = current_thread_info()->fpsaved[0];
443	if (fprs & FPRS_DL)
444	err \|= copy_to_user(&fpu->si_float_regs[0], fpregs,
445	(sizeof(unsigned int) * 32));
446	if (fprs & FPRS_DU)
447	err \|= copy_to_user(&fpu->si_float_regs[32], fpregs+16,
448	(sizeof(unsigned int) * 32));
449	err \|= __put_user(current_thread_info()->xfsr[0], &fpu->si_fsr);
450	err \|= __put_user(current_thread_info()->gsr[0], &fpu->si_gsr);
451	err \|= __put_user(fprs, &fpu->si_fprs);
452
453	return err;
454	}
455
456	/* The I-cache flush instruction only works in the primary ASI, which	430	/* The I-cache flush instruction only works in the primary ASI, which
457	* right now is the nucleus, aka. kernel space.	431	* right now is the nucleus, aka. kernel space.
458	*	432	*
@@ -515,18 +489,23 @@ static int setup_frame32(struct k_sigaction ka, struct pt_regs regs,
515	int signo, sigset_t *oldset)	489	int signo, sigset_t *oldset)
516	{	490	{
517	struct signal_frame32 __user *sf;	491	struct signal_frame32 __user *sf;
		492	int i, err, wsaved;
		493	void __user *tail;
518	int sigframe_size;	494	int sigframe_size;
519	u32 psr;	495	u32 psr;
520	int i, err;
521	unsigned int seta[_COMPAT_NSIG_WORDS];	496	unsigned int seta[_COMPAT_NSIG_WORDS];
522		497
523	/* 1. Make sure everything is clean */	498	/* 1. Make sure everything is clean */
524	synchronize_user_stack();	499	synchronize_user_stack();
525	save_and_clear_fpu();	500	save_and_clear_fpu();
526		501
527	sigframe_size = SF_ALIGNEDSZ;	502	wsaved = get_thread_wsaved();
528	if (!(current_thread_info()->fpsaved[0] & FPRS_FEF))	503
529	sigframe_size -= sizeof(__siginfo_fpu_t);	504	sigframe_size = sizeof(*sf);
		505	if (current_thread_info()->fpsaved[0] & FPRS_FEF)
		506	sigframe_size += sizeof(__siginfo_fpu_t);
		507	if (wsaved)
		508	sigframe_size += sizeof(__siginfo_rwin_t);
530		509
531	sf = (struct signal_frame32 __user *)	510	sf = (struct signal_frame32 __user *)
532	get_sigframe(&ka->sa, regs, sigframe_size);	511	get_sigframe(&ka->sa, regs, sigframe_size);
@@ -534,8 +513,7 @@ static int setup_frame32(struct k_sigaction ka, struct pt_regs regs,
534	if (invalid_frame_pointer(sf, sigframe_size))	513	if (invalid_frame_pointer(sf, sigframe_size))
535	goto sigill;	514	goto sigill;
536		515
537	if (get_thread_wsaved() != 0)	516	tail = (sf + 1);
538	goto sigill;
539		517
540	/* 2. Save the current process state */	518	/* 2. Save the current process state */
541	if (test_thread_flag(TIF_32BIT)) {	519	if (test_thread_flag(TIF_32BIT)) {
@@ -560,11 +538,22 @@ static int setup_frame32(struct k_sigaction ka, struct pt_regs regs,
560	&sf->v8plus.asi);	538	&sf->v8plus.asi);
561		539
562	if (psr & PSR_EF) {	540	if (psr & PSR_EF) {
563	err \|= save_fpu_state32(regs, &sf->fpu_state);	541	__siginfo_fpu_t __user *fp = tail;
564	err \|= __put_user((u64)&sf->fpu_state, &sf->fpu_save);	542	tail += sizeof(*fp);
		543	err \|= save_fpu_state(regs, fp);
		544	err \|= __put_user((u64)fp, &sf->fpu_save);
565	} else {	545	} else {
566	err \|= __put_user(0, &sf->fpu_save);	546	err \|= __put_user(0, &sf->fpu_save);
567	}	547	}
		548	if (wsaved) {
		549	__siginfo_rwin_t __user *rwp = tail;
		550	tail += sizeof(*rwp);
		551	err \|= save_rwin_state(wsaved, rwp);
		552	err \|= __put_user((u64)rwp, &sf->rwin_save);
		553	set_thread_wsaved(0);
		554	} else {
		555	err \|= __put_user(0, &sf->rwin_save);
		556	}
568		557
569	switch (_NSIG_WORDS) {	558	switch (_NSIG_WORDS) {
570	case 4: seta[7] = (oldset->sig[3] >> 32);	559	case 4: seta[7] = (oldset->sig[3] >> 32);
@@ -580,10 +569,21 @@ static int setup_frame32(struct k_sigaction ka, struct pt_regs regs,
580	err \|= __copy_to_user(sf->extramask, seta + 1,	569	err \|= __copy_to_user(sf->extramask, seta + 1,
581	(_COMPAT_NSIG_WORDS - 1) * sizeof(unsigned int));	570	(_COMPAT_NSIG_WORDS - 1) * sizeof(unsigned int));
582		571
583	err \|= copy_in_user((u32 __user *)sf,	572	if (!wsaved) {
584	(u32 __user *)(regs->u_regs[UREG_FP]),	573	err \|= copy_in_user((u32 __user *)sf,
585	sizeof(struct reg_window32));	574	(u32 __user *)(regs->u_regs[UREG_FP]),
586		575	sizeof(struct reg_window32));
		576	} else {
		577	struct reg_window *rp;
		578
		579	rp = &current_thread_info()->reg_window[wsaved - 1];
		580	for (i = 0; i < 8; i++)
		581	err \|= __put_user(rp->locals[i], &sf->ss.locals[i]);
		582	for (i = 0; i < 6; i++)
		583	err \|= __put_user(rp->ins[i], &sf->ss.ins[i]);
		584	err \|= __put_user(rp->ins[6], &sf->ss.fp);
		585	err \|= __put_user(rp->ins[7], &sf->ss.callers_pc);
		586	}
587	if (err)	587	if (err)
588	goto sigsegv;	588	goto sigsegv;
589		589
@@ -613,7 +613,6 @@ static int setup_frame32(struct k_sigaction ka, struct pt_regs regs,
613	err \|= __put_user(0x91d02010, &sf->insns[1]); /t 0x10/	613	err \|= __put_user(0x91d02010, &sf->insns[1]); /t 0x10/
614	if (err)	614	if (err)
615	goto sigsegv;	615	goto sigsegv;
616
617	flush_signal_insns(address);	616	flush_signal_insns(address);
618	}	617	}
619	return 0;	618	return 0;
@@ -632,18 +631,23 @@ static int setup_rt_frame32(struct k_sigaction ka, struct pt_regs regs,
632	siginfo_t *info)	631	siginfo_t *info)
633	{	632	{
634	struct rt_signal_frame32 __user *sf;	633	struct rt_signal_frame32 __user *sf;
		634	int i, err, wsaved;
		635	void __user *tail;
635	int sigframe_size;	636	int sigframe_size;
636	u32 psr;	637	u32 psr;
637	int i, err;
638	compat_sigset_t seta;	638	compat_sigset_t seta;
639		639
640	/* 1. Make sure everything is clean */	640	/* 1. Make sure everything is clean */
641	synchronize_user_stack();	641	synchronize_user_stack();
642	save_and_clear_fpu();	642	save_and_clear_fpu();
643		643
644	sigframe_size = RT_ALIGNEDSZ;	644	wsaved = get_thread_wsaved();
645	if (!(current_thread_info()->fpsaved[0] & FPRS_FEF))	645
646	sigframe_size -= sizeof(__siginfo_fpu_t);	646	sigframe_size = sizeof(*sf);
		647	if (current_thread_info()->fpsaved[0] & FPRS_FEF)
		648	sigframe_size += sizeof(__siginfo_fpu_t);
		649	if (wsaved)
		650	sigframe_size += sizeof(__siginfo_rwin_t);
647		651
648	sf = (struct rt_signal_frame32 __user *)	652	sf = (struct rt_signal_frame32 __user *)
649	get_sigframe(&ka->sa, regs, sigframe_size);	653	get_sigframe(&ka->sa, regs, sigframe_size);
@@ -651,8 +655,7 @@ static int setup_rt_frame32(struct k_sigaction ka, struct pt_regs regs,
651	if (invalid_frame_pointer(sf, sigframe_size))	655	if (invalid_frame_pointer(sf, sigframe_size))
652	goto sigill;	656	goto sigill;
653		657
654	if (get_thread_wsaved() != 0)	658	tail = (sf + 1);
655	goto sigill;
656		659
657	/* 2. Save the current process state */	660	/* 2. Save the current process state */
658	if (test_thread_flag(TIF_32BIT)) {	661	if (test_thread_flag(TIF_32BIT)) {
@@ -677,11 +680,22 @@ static int setup_rt_frame32(struct k_sigaction ka, struct pt_regs regs,
677	&sf->v8plus.asi);	680	&sf->v8plus.asi);
678		681
679	if (psr & PSR_EF) {	682	if (psr & PSR_EF) {
680	err \|= save_fpu_state32(regs, &sf->fpu_state);	683	__siginfo_fpu_t __user *fp = tail;
681	err \|= __put_user((u64)&sf->fpu_state, &sf->fpu_save);	684	tail += sizeof(*fp);
		685	err \|= save_fpu_state(regs, fp);
		686	err \|= __put_user((u64)fp, &sf->fpu_save);
682	} else {	687	} else {
683	err \|= __put_user(0, &sf->fpu_save);	688	err \|= __put_user(0, &sf->fpu_save);
684	}	689	}
		690	if (wsaved) {
		691	__siginfo_rwin_t __user *rwp = tail;
		692	tail += sizeof(*rwp);
		693	err \|= save_rwin_state(wsaved, rwp);
		694	err \|= __put_user((u64)rwp, &sf->rwin_save);
		695	set_thread_wsaved(0);
		696	} else {
		697	err \|= __put_user(0, &sf->rwin_save);
		698	}
685		699
686	/* Update the siginfo structure. */	700	/* Update the siginfo structure. */
687	err \|= copy_siginfo_to_user32(&sf->info, info);	701	err \|= copy_siginfo_to_user32(&sf->info, info);
@@ -703,9 +717,21 @@ static int setup_rt_frame32(struct k_sigaction ka, struct pt_regs regs,
703	}	717	}
704	err \|= __copy_to_user(&sf->mask, &seta, sizeof(compat_sigset_t));	718	err \|= __copy_to_user(&sf->mask, &seta, sizeof(compat_sigset_t));
705		719
706	err \|= copy_in_user((u32 __user *)sf,	720	if (!wsaved) {
707	(u32 __user *)(regs->u_regs[UREG_FP]),	721	err \|= copy_in_user((u32 __user *)sf,
708	sizeof(struct reg_window32));	722	(u32 __user *)(regs->u_regs[UREG_FP]),
		723	sizeof(struct reg_window32));
		724	} else {
		725	struct reg_window *rp;
		726
		727	rp = &current_thread_info()->reg_window[wsaved - 1];
		728	for (i = 0; i < 8; i++)
		729	err \|= __put_user(rp->locals[i], &sf->ss.locals[i]);
		730	for (i = 0; i < 6; i++)
		731	err \|= __put_user(rp->ins[i], &sf->ss.ins[i]);
		732	err \|= __put_user(rp->ins[6], &sf->ss.fp);
		733	err \|= __put_user(rp->ins[7], &sf->ss.callers_pc);
		734	}
709	if (err)	735	if (err)
710	goto sigsegv;	736	goto sigsegv;
711		737