The introduced line even handling ABI in the commit
61f922db7221 ("gpio: userspace ABI for reading GPIO line events")
missed the fact that 64-bit kernel may serve for 32-bit applications.
In such case the very first check in the lineevent_read() will fail
due to alignment differences.
To workaround this introduce lineeven_to_user() helper which returns actual
size of the structure and copies its content to user if asked.
Fixes: 61f922db7221 ("gpio: userspace ABI for reading GPIO line events")
Suggested-by: Arnd Bergmann <arnd@xxxxxxxx>
Signed-off-by: Andy Shevchenko <andriy.shevchenko@xxxxxxxxxxxxxxx>
---
drivers/gpio/gpiolib-cdev.c | 41 ++++++++++++++++++++++++++++++++-----
1 file changed, 36 insertions(+), 5 deletions(-)
diff --git a/drivers/gpio/gpiolib-cdev.c b/drivers/gpio/gpiolib-cdev.c
index e6c9b78adfc2..a6a8384c8255 100644
--- a/drivers/gpio/gpiolib-cdev.c
+++ b/drivers/gpio/gpiolib-cdev.c
@@ -423,6 +423,33 @@ static __poll_t lineevent_poll(struct file *file,
return events;
}
+static ssize_t lineevent_to_user(char __user *buf, struct gpioevent_data *ge)
+{
+#ifdef __x86_64__
+ /* i386 has no padding after 'id' */
+ if (in_ia32_syscall()) {
+ struct compat_ge {
+ compat_u64 timestamp __packed;
+ u32 id;
+ } cge;
+
+ if (buf && ge) {
+ cge = (struct compat_ge){ ge->timestamp, ge->id };
+ if (copy_to_user(buf, &cge, sizeof(cge)))
+ return -EFAULT;
+ }
+
+ return sizeof(cge);
+ }
+#endif
+
+ if (buf && ge) {
+ if (copy_to_user(buf, ge, sizeof(*ge)))
+ return -EFAULT;
+ }
+
+ return sizeof(*ge);
+}
static ssize_t lineevent_read(struct file *file,
char __user *buf,
@@ -432,9 +459,12 @@ static ssize_t lineevent_read(struct file *file,
struct lineevent_state *le = file->private_data;
struct gpioevent_data ge;
ssize_t bytes_read = 0;
+ ssize_t ge_size;
int ret;
- if (count < sizeof(ge))
+ /* When argument is NULL it returns size of the structure in user space */
+ ge_size = lineevent_to_user(NULL, NULL);
+ if (count < ge_size)
return -EINVAL;
do {
@@ -470,10 +500,11 @@ static ssize_t lineevent_read(struct file *file,
break;
}
- if (copy_to_user(buf + bytes_read, &ge, sizeof(ge)))
- return -EFAULT;
- bytes_read += sizeof(ge);
- } while (count >= bytes_read + sizeof(ge));
+ ret = lineevent_to_user(buf + bytes_read, &ge);
+ if (ret < 0)
+ return ret;
+ bytes_read += ret;
+ } while (count >= bytes_read + ge_size);
return bytes_read;
}
--
2.28.0
[PATCH v1 1/2] gpiolib: Fix line event handling in syscall compatible mode
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- Subject: [PATCH v1 1/2] gpiolib: Fix line event handling in syscall compatible mode
- From: Andy Shevchenko <andriy.shevchenko@xxxxxxxxxxxxxxx>
- Date: Thu, 10 Sep 2020 13:19:34 +0300
- Ironport-sdr: 3W5Nzn5KVWcqNSmV0lbpf7ZB1jEl1NbZLdJ6S8xmd1DsinYHt7NmT9w3npWE4+9OeuMBk/1WHO Qp3KB+l5sdqQ==
- Ironport-sdr: 7f8fO1WVQXeA1DFSt1LyASPVZpCKsb+LYOjO2Zjj0a6yCt78ljSLXH4ztCfVY+gqzsIped2DiA y+oID+k0J6Jg==
- Follow-Ups:
- Re: [PATCH v1 1/2] gpiolib: Fix line event handling in syscall compatible mode
- From: Arnd Bergmann
- Re: [PATCH v1 1/2] gpiolib: Fix line event handling in syscall compatible mode
- From: Kent Gibson
- Re: [PATCH v1 1/2] gpiolib: Fix line event handling in syscall compatible mode
- From: kernel test robot
- [PATCH v1 2/2] gpiolib: convert to use DEFINE_SEQ_ATTRIBUTE macro
- From: Andy Shevchenko
- Re: [PATCH v1 1/2] gpiolib: Fix line event handling in syscall compatible mode
- Prev by Date: Re: [PATCH v5 3/6] genirq/PM: Introduce IRQCHIP_ENABLE_WAKEUP_ON_SUSPEND flag
- Next by Date: [PATCH v1 2/2] gpiolib: convert to use DEFINE_SEQ_ATTRIBUTE macro
- Previous by thread: [PATCH v2 0/3] pinctrl: aspeed: AST2600 pinconf fixes
- Next by thread: [PATCH v1 2/2] gpiolib: convert to use DEFINE_SEQ_ATTRIBUTE macro
- Index(es):
 |