Merge pull request torvalds#222 from wedsonaf/clear

ojeda · web-flow · commit e3dea0498bf8 · 2021-04-27T18:38:46.000+02:00
Add `UserSlicePtrWriter::clear`.
diff --git a/rust/helpers.c b/rust/helpers.c
@@ -22,6 +22,11 @@ unsigned long rust_helper_copy_to_user(void __user *to, const void *from, unsign
 	return copy_to_user(to, from, n);
 }
 
+unsigned long rust_helper_clear_user(void __user *to, unsigned long n)
+{
+	return clear_user(to, n);
+}
+
 void rust_helper_spin_lock_init(spinlock_t *lock, const char *name,
 				struct lock_class_key *key)
 {
diff --git a/rust/kernel/user_ptr.rs b/rust/kernel/user_ptr.rs
@@ -20,6 +20,8 @@ extern "C" {
         from: *const c_types::c_void,
         n: c_types::c_ulong,
     ) -> c_types::c_ulong;
+
+    fn rust_helper_clear_user(to: *mut c_types::c_void, n: c_types::c_ulong) -> c_types::c_ulong;
 }
 
 /// Specifies that a type is safely readable from byte slices.
@@ -242,6 +244,34 @@ impl UserSlicePtrWriter {
         self.len() == 0
     }
 
+    /// Writes zeroes to the user slice.
+    ///
+    /// Differently from the other write functions, `clear` will zero as much as it can and update
+    /// the writer internal state to reflect this. It will, however, return an error if it cannot
+    /// clear `len` bytes.
+    ///
+    /// For example, if a caller requests that 100 bytes be cleared but a segfault happens after
+    /// 20 bytes, then EFAULT is returned and the writer is advanced by 20 bytes.
+    pub fn clear(&mut self, mut len: usize) -> KernelResult {
+        let mut ret = Ok(());
+        if len > self.1 {
+            ret = Err(Error::EFAULT);
+            len = self.1;
+        }
+
+        // SAFETY: The buffer will be validated by `clear_user`. We ensure that `len` is within
+        // bounds in the check above.
+        let left = unsafe { rust_helper_clear_user(self.0, len as _) } as usize;
+        if left != 0 {
+            ret = Err(Error::EFAULT);
+            len -= left;
+        }
+
+        self.0 = self.0.wrapping_add(len);
+        self.1 -= len;
+        ret
+    }
+
     /// Writes a byte slice to the user slice.
     ///
     /// Returns `EFAULT` if the byte slice is bigger than the remaining size

Original file line number	Diff line number	Diff line change
`@@ -22,6 +22,11 @@ unsigned long rust_helper_copy_to_user(void __user to, const void from, unsign`
`22`	`22`	`return copy_to_user(to, from, n);`
`23`	`23`	`}`
`24`	`24`
	`25`	`+unsigned long rust_helper_clear_user(void __user *to, unsigned long n)`
	`26`	`+{`
	`27`	`+ return clear_user(to, n);`
	`28`	`+}`
	`29`	`+`
`25`	`30`	`void rust_helper_spin_lock_init(spinlock_t lock, const char name,`
`26`	`31`	`struct lock_class_key *key)`
`27`	`32`	`{`