qemu
114 строк · 2.7 Кб
1/* User memory access */
2#include "qemu/osdep.h"3#include "qemu/cutils.h"4
5#include "qemu.h"6#include "user-internals.h"7
8void *lock_user(int type, abi_ulong guest_addr, ssize_t len, bool copy)9{
10void *host_addr;11
12guest_addr = cpu_untagged_addr(thread_cpu, guest_addr);13if (!access_ok_untagged(type, guest_addr, len)) {14return NULL;15}16host_addr = g2h_untagged(guest_addr);17#ifdef CONFIG_DEBUG_REMAP18if (copy) {19host_addr = g_memdup(host_addr, len);20} else {21host_addr = g_malloc0(len);22}23#endif24return host_addr;25}
26
27#ifdef CONFIG_DEBUG_REMAP28void unlock_user(void *host_ptr, abi_ulong guest_addr, ssize_t len)29{
30void *host_ptr_conv;31
32if (!host_ptr) {33return;34}35host_ptr_conv = g2h(thread_cpu, guest_addr);36if (host_ptr == host_ptr_conv) {37return;38}39if (len > 0) {40memcpy(host_ptr_conv, host_ptr, len);41}42g_free(host_ptr);43}
44#endif45
46void *lock_user_string(abi_ulong guest_addr)47{
48ssize_t len = target_strlen(guest_addr);49if (len < 0) {50return NULL;51}52return lock_user(VERIFY_READ, guest_addr, len + 1, 1);53}
54
55/* copy_from_user() and copy_to_user() are usually used to copy data
56* buffers between the target and host. These internally perform
57* locking/unlocking of the memory.
58*/
59int copy_from_user(void *hptr, abi_ulong gaddr, ssize_t len)60{
61int ret = 0;62void *ghptr = lock_user(VERIFY_READ, gaddr, len, 1);63
64if (ghptr) {65memcpy(hptr, ghptr, len);66unlock_user(ghptr, gaddr, 0);67} else {68ret = -TARGET_EFAULT;69}70return ret;71}
72
73int copy_to_user(abi_ulong gaddr, void *hptr, ssize_t len)74{
75int ret = 0;76void *ghptr = lock_user(VERIFY_WRITE, gaddr, len, 0);77
78if (ghptr) {79memcpy(ghptr, hptr, len);80unlock_user(ghptr, gaddr, len);81} else {82ret = -TARGET_EFAULT;83}84
85return ret;86}
87
88/* Return the length of a string in target memory or -TARGET_EFAULT if
89access error */
90ssize_t target_strlen(abi_ulong guest_addr1)91{
92uint8_t *ptr;93abi_ulong guest_addr;94size_t max_len, len;95
96guest_addr = guest_addr1;97for(;;) {98max_len = TARGET_PAGE_SIZE - (guest_addr & ~TARGET_PAGE_MASK);99ptr = lock_user(VERIFY_READ, guest_addr, max_len, 1);100if (!ptr)101return -TARGET_EFAULT;102len = qemu_strnlen((const char *)ptr, max_len);103unlock_user(ptr, guest_addr, 0);104guest_addr += len;105/* we don't allow wrapping or integer overflow */106if (guest_addr == 0 || (guest_addr - guest_addr1) > 0x7fffffff) {107return -TARGET_EFAULT;108}109if (len != max_len) {110break;111}112}113return guest_addr - guest_addr1;114}
115