summaryrefslogtreecommitdiff
path: root/sys
diff options
context:
space:
mode:
authorTheo de Raadt <deraadt@cvs.openbsd.org>1999-11-13 00:11:53 +0000
committerTheo de Raadt <deraadt@cvs.openbsd.org>1999-11-13 00:11:53 +0000
commit507f8a99582dde5192dd23d99933cfb8a68f8356 (patch)
tree7afa8227467ade1d5bfbbcc7fa75e5e41abf3e8a /sys
parenta5420c4fcedf5a05a4ec00e6bd0af893766df47c (diff)
from chuq@chuq.com: several fixes to copy{in,out,}str() from charles
and myself: don't panic if maxlen == 0, just return ENAMETOLONG. treat maxlen as unsigned like the manpage indicates. avoid crashing if the userspace address is >= KERNBASE. make sure *done is 0 when no bytes are copied.
Diffstat (limited to 'sys')
-rw-r--r--sys/arch/sparc/sparc/locore.s71
1 files changed, 23 insertions, 48 deletions
diff --git a/sys/arch/sparc/sparc/locore.s b/sys/arch/sparc/sparc/locore.s
index a77985a566e..c97c659d2ff 100644
--- a/sys/arch/sparc/sparc/locore.s
+++ b/sys/arch/sparc/sparc/locore.s
@@ -1,4 +1,4 @@
-/* $OpenBSD: locore.s,v 1.26 1999/08/06 01:25:12 jason Exp $ */
+/* $OpenBSD: locore.s,v 1.27 1999/11/13 00:11:52 deraadt Exp $ */
/* $NetBSD: locore.s,v 1.73 1997/09/13 20:36:48 pk Exp $ */
/*
@@ -4061,26 +4061,19 @@ ENTRY(getfp)
*/
ENTRY(copyinstr)
! %o0 = fromaddr, %o1 = toaddr, %o2 = maxlen, %o3 = &lencopied
-#ifdef DIAGNOSTIC
- tst %o2 ! kernel should never give maxlen <= 0
- ble 1f
- EMPTY
-#endif
+ mov %o1, %o5 ! save = toaddr;
+ tst %o2 ! maxlen == 0?
+ beq,a Lcstoolong ! yes, return ENAMETOOLONG
+ sethi %hi(_cpcb), %o4
+
set KERNBASE, %o4
cmp %o0, %o4 ! fromaddr < KERNBASE?
- blu,a Lcsdocopy ! yes, go do it
- sethi %hi(_cpcb), %o4 ! (first instr of copy)
+ blu Lcsdocopy ! yes, go do it
+ sethi %hi(_cpcb), %o4 ! (first instr of copy)
b Lcsdone ! no, return EFAULT
mov EFAULT, %o0
-1:
- sethi %hi(2f), %o0
- call _panic
- or %lo(2f), %o0, %o0
-2: .asciz "copyinstr"
- _ALIGN
-
/*
* copyoutstr(fromaddr, toaddr, maxlength, &lencopied)
*
@@ -4089,33 +4082,25 @@ ENTRY(copyinstr)
*/
ENTRY(copyoutstr)
! %o0 = fromaddr, %o1 = toaddr, %o2 = maxlen, %o3 = &lencopied
-#ifdef DIAGNOSTIC
- tst %o2
- ble 1f
- EMPTY
-#endif
+ mov %o1, %o5 ! save = toaddr;
+ tst %o2 ! maxlen == 0?
+ beq,a Lcstoolong ! yes, return ENAMETOOLONG
+ sethi %hi(_cpcb), %o4
+
set KERNBASE, %o4
cmp %o1, %o4 ! toaddr < KERNBASE?
- blu,a Lcsdocopy ! yes, go do it
+ blu Lcsdocopy ! yes, go do it
sethi %hi(_cpcb), %o4 ! (first instr of copy)
b Lcsdone ! no, return EFAULT
mov EFAULT, %o0
-1:
- sethi %hi(2f), %o0
- call _panic
- or %lo(2f), %o0, %o0
-2: .asciz "copyoutstr"
- _ALIGN
-
Lcsdocopy:
! sethi %hi(_cpcb), %o4 ! (done earlier)
ld [%o4 + %lo(_cpcb)], %o4 ! catch faults
- set Lcsfault, %o5
- st %o5, [%o4 + PCB_ONFAULT]
+ set Lcsfault, %g1
+ st %g1, [%o4 + PCB_ONFAULT]
- mov %o1, %o5 ! save = toaddr;
! XXX should do this in bigger chunks when possible
0: ! loop:
ldsb [%o0], %g1 ! c = *fromaddr;
@@ -4124,10 +4109,10 @@ Lcsdocopy:
be 1f ! if (c == NULL)
inc %o1 ! goto ok;
deccc %o2 ! if (--len > 0) {
- bg 0b ! fromaddr++;
+ bgu 0b ! fromaddr++;
inc %o0 ! goto loop;
! }
- !
+Lcstoolong: !
b Lcsdone ! error = ENAMETOOLONG;
mov ENAMETOOLONG, %o0 ! goto done;
1: ! ok:
@@ -4153,12 +4138,11 @@ Lcsfault:
* it does not seem that way to the C compiler.)
*/
ENTRY(copystr)
-#ifdef DIAGNOSTIC
- tst %o2 ! if (maxlength <= 0)
- ble 4f ! panic(...);
- EMPTY
-#endif
mov %o1, %o5 ! to0 = to;
+ tst %o2 ! if (maxlength == 0)
+ beq,a 2f !
+ mov ENAMETOOLONG, %o0 ! ret = ENAMETOOLONG; goto done;
+
0: ! loop:
ldsb [%o0], %o4 ! c = *from;
tst %o4
@@ -4166,7 +4150,7 @@ ENTRY(copystr)
be 1f ! if (c == 0)
inc %o1 ! goto ok;
deccc %o2 ! if (--len > 0) {
- bg,a 0b ! from++;
+ bgu,a 0b ! from++;
inc %o0 ! goto loop;
b 2f ! }
mov ENAMETOOLONG, %o0 ! ret = ENAMETOOLONG; goto done;
@@ -4180,15 +4164,6 @@ ENTRY(copystr)
3:
retl
nop
-#ifdef DIAGNOSTIC
-4:
- sethi %hi(5f), %o0
- call _panic
- or %lo(5f), %o0, %o0
-5:
- .asciz "copystr"
- _ALIGN
-#endif
/*
* Copyin(src, dst, len)