1 // SPDX-License-Identifier: GPL-2.0-only
3 * "splice": joining two ropes together by interweaving their strands.
5 * This is the "extended pipe" functionality, where a pipe is used as
6 * an arbitrary in-memory buffer. Think of a pipe as a small kernel
7 * buffer that you can use to transfer data from one end to the other.
9 * The traditional unix read/write is extended with a "splice()" operation
10 * that transfers data buffers to or from a pipe buffer.
12 * Named by Larry McVoy, original implementation from Linus, extended by
13 * Jens to support splicing to files, network, direct splicing, etc and
14 * fixing lots of bugs.
16 * Copyright (C) 2005-2006 Jens Axboe <axboe@kernel.dk>
17 * Copyright (C) 2005-2006 Linus Torvalds <torvalds@osdl.org>
18 * Copyright (C) 2006 Ingo Molnar <mingo@elte.hu>
21 #include <linux/bvec.h>
23 #include <linux/file.h>
24 #include <linux/pagemap.h>
25 #include <linux/splice.h>
26 #include <linux/memcontrol.h>
27 #include <linux/mm_inline.h>
28 #include <linux/swap.h>
29 #include <linux/writeback.h>
30 #include <linux/export.h>
31 #include <linux/syscalls.h>
32 #include <linux/uio.h>
33 #include <linux/fsnotify.h>
34 #include <linux/security.h>
35 #include <linux/gfp.h>
36 #include <linux/net.h>
37 #include <linux/socket.h>
38 #include <linux/sched/signal.h>
43 * Splice doesn't support FMODE_NOWAIT. Since pipes may set this flag to
44 * indicate they support non-blocking reads or writes, we must clear it
45 * here if set to avoid blocking other users of this pipe if splice is
48 static noinline void noinline pipe_clear_nowait(struct file *file)
50 fmode_t fmode = READ_ONCE(file->f_mode);
53 if (!(fmode & FMODE_NOWAIT))
55 } while (!try_cmpxchg(&file->f_mode, &fmode, fmode & ~FMODE_NOWAIT));
59 * Attempt to steal a page from a pipe buffer. This should perhaps go into
60 * a vm helper function, it's already simplified quite a bit by the
61 * addition of remove_mapping(). If success is returned, the caller may
62 * attempt to reuse this page for another destination.
64 static bool page_cache_pipe_buf_try_steal(struct pipe_inode_info *pipe,
65 struct pipe_buffer *buf)
67 struct folio *folio = page_folio(buf->page);
68 struct address_space *mapping;
72 mapping = folio_mapping(folio);
74 WARN_ON(!folio_test_uptodate(folio));
77 * At least for ext2 with nobh option, we need to wait on
78 * writeback completing on this folio, since we'll remove it
79 * from the pagecache. Otherwise truncate wont wait on the
80 * folio, allowing the disk blocks to be reused by someone else
81 * before we actually wrote our data to them. fs corruption
84 folio_wait_writeback(folio);
86 if (folio_has_private(folio) &&
87 !filemap_release_folio(folio, GFP_KERNEL))
91 * If we succeeded in removing the mapping, set LRU flag
94 if (remove_mapping(mapping, folio)) {
95 buf->flags |= PIPE_BUF_FLAG_LRU;
101 * Raced with truncate or failed to remove folio from current
102 * address space, unlock and return failure.
109 static void page_cache_pipe_buf_release(struct pipe_inode_info *pipe,
110 struct pipe_buffer *buf)
113 buf->flags &= ~PIPE_BUF_FLAG_LRU;
117 * Check whether the contents of buf is OK to access. Since the content
118 * is a page cache page, IO may be in flight.
120 static int page_cache_pipe_buf_confirm(struct pipe_inode_info *pipe,
121 struct pipe_buffer *buf)
123 struct page *page = buf->page;
126 if (!PageUptodate(page)) {
130 * Page got truncated/unhashed. This will cause a 0-byte
131 * splice, if this is the first page.
133 if (!page->mapping) {
139 * Uh oh, read-error from disk.
141 if (!PageUptodate(page)) {
147 * Page is ok afterall, we are done.
158 const struct pipe_buf_operations page_cache_pipe_buf_ops = {
159 .confirm = page_cache_pipe_buf_confirm,
160 .release = page_cache_pipe_buf_release,
161 .try_steal = page_cache_pipe_buf_try_steal,
162 .get = generic_pipe_buf_get,
165 static bool user_page_pipe_buf_try_steal(struct pipe_inode_info *pipe,
166 struct pipe_buffer *buf)
168 if (!(buf->flags & PIPE_BUF_FLAG_GIFT))
171 buf->flags |= PIPE_BUF_FLAG_LRU;
172 return generic_pipe_buf_try_steal(pipe, buf);
175 static const struct pipe_buf_operations user_page_pipe_buf_ops = {
176 .release = page_cache_pipe_buf_release,
177 .try_steal = user_page_pipe_buf_try_steal,
178 .get = generic_pipe_buf_get,
181 static void wakeup_pipe_readers(struct pipe_inode_info *pipe)
184 if (waitqueue_active(&pipe->rd_wait))
185 wake_up_interruptible(&pipe->rd_wait);
186 kill_fasync(&pipe->fasync_readers, SIGIO, POLL_IN);
190 * splice_to_pipe - fill passed data into a pipe
191 * @pipe: pipe to fill
195 * @spd contains a map of pages and len/offset tuples, along with
196 * the struct pipe_buf_operations associated with these pages. This
197 * function will link that data to the pipe.
200 ssize_t splice_to_pipe(struct pipe_inode_info *pipe,
201 struct splice_pipe_desc *spd)
203 unsigned int spd_pages = spd->nr_pages;
204 unsigned int tail = pipe->tail;
205 unsigned int head = pipe->head;
206 unsigned int mask = pipe->ring_size - 1;
207 int ret = 0, page_nr = 0;
212 if (unlikely(!pipe->readers)) {
213 send_sig(SIGPIPE, current, 0);
218 while (!pipe_full(head, tail, pipe->max_usage)) {
219 struct pipe_buffer *buf = &pipe->bufs[head & mask];
221 buf->page = spd->pages[page_nr];
222 buf->offset = spd->partial[page_nr].offset;
223 buf->len = spd->partial[page_nr].len;
224 buf->private = spd->partial[page_nr].private;
233 if (!--spd->nr_pages)
241 while (page_nr < spd_pages)
242 spd->spd_release(spd, page_nr++);
246 EXPORT_SYMBOL_GPL(splice_to_pipe);
248 ssize_t add_to_pipe(struct pipe_inode_info *pipe, struct pipe_buffer *buf)
250 unsigned int head = pipe->head;
251 unsigned int tail = pipe->tail;
252 unsigned int mask = pipe->ring_size - 1;
255 if (unlikely(!pipe->readers)) {
256 send_sig(SIGPIPE, current, 0);
258 } else if (pipe_full(head, tail, pipe->max_usage)) {
261 pipe->bufs[head & mask] = *buf;
262 pipe->head = head + 1;
265 pipe_buf_release(pipe, buf);
268 EXPORT_SYMBOL(add_to_pipe);
271 * Check if we need to grow the arrays holding pages and partial page
274 int splice_grow_spd(const struct pipe_inode_info *pipe, struct splice_pipe_desc *spd)
276 unsigned int max_usage = READ_ONCE(pipe->max_usage);
278 spd->nr_pages_max = max_usage;
279 if (max_usage <= PIPE_DEF_BUFFERS)
282 spd->pages = kmalloc_array(max_usage, sizeof(struct page *), GFP_KERNEL);
283 spd->partial = kmalloc_array(max_usage, sizeof(struct partial_page),
286 if (spd->pages && spd->partial)
294 void splice_shrink_spd(struct splice_pipe_desc *spd)
296 if (spd->nr_pages_max <= PIPE_DEF_BUFFERS)
304 * Splice data from an O_DIRECT file into pages and then add them to the output
307 ssize_t direct_splice_read(struct file *in, loff_t *ppos,
308 struct pipe_inode_info *pipe,
309 size_t len, unsigned int flags)
316 size_t used, npages, chunk, remain, reclaim;
319 /* Work out how much data we can actually add into the pipe */
320 used = pipe_occupancy(pipe->head, pipe->tail);
321 npages = max_t(ssize_t, pipe->max_usage - used, 0);
322 len = min_t(size_t, len, npages * PAGE_SIZE);
323 npages = DIV_ROUND_UP(len, PAGE_SIZE);
325 bv = kzalloc(array_size(npages, sizeof(bv[0])) +
326 array_size(npages, sizeof(struct page *)), GFP_KERNEL);
330 pages = (void *)(bv + npages);
331 npages = alloc_pages_bulk_array(GFP_USER, npages, pages);
337 remain = len = min_t(size_t, len, npages * PAGE_SIZE);
339 for (i = 0; i < npages; i++) {
340 chunk = min_t(size_t, PAGE_SIZE, remain);
341 bv[i].bv_page = pages[i];
343 bv[i].bv_len = chunk;
348 iov_iter_bvec(&to, ITER_DEST, bv, npages, len);
349 init_sync_kiocb(&kiocb, in);
350 kiocb.ki_pos = *ppos;
351 ret = call_read_iter(in, &kiocb, &to);
353 reclaim = npages * PAGE_SIZE;
358 *ppos = kiocb.ki_pos;
360 } else if (ret < 0) {
362 * callers of ->splice_read() expect -EAGAIN on
363 * "can't put anything in there", rather than -EFAULT.
369 /* Free any pages that didn't get touched at all. */
370 reclaim /= PAGE_SIZE;
373 release_pages(pages + npages, reclaim);
376 /* Push the remaining pages into the pipe. */
377 for (i = 0; i < npages; i++) {
378 struct pipe_buffer *buf = pipe_head_buf(pipe);
380 chunk = min_t(size_t, remain, PAGE_SIZE);
381 *buf = (struct pipe_buffer) {
382 .ops = &default_pipe_buf_ops,
383 .page = bv[i].bv_page,
394 EXPORT_SYMBOL(direct_splice_read);
397 * generic_file_splice_read - splice data from file to a pipe
398 * @in: file to splice from
399 * @ppos: position in @in
400 * @pipe: pipe to splice to
401 * @len: number of bytes to splice
402 * @flags: splice modifier flags
405 * Will read pages from given file and fill them into a pipe. Can be
406 * used as long as it has more or less sane ->read_iter().
409 ssize_t generic_file_splice_read(struct file *in, loff_t *ppos,
410 struct pipe_inode_info *pipe, size_t len,
417 iov_iter_pipe(&to, ITER_DEST, pipe, len);
418 init_sync_kiocb(&kiocb, in);
419 kiocb.ki_pos = *ppos;
420 ret = call_read_iter(in, &kiocb, &to);
422 *ppos = kiocb.ki_pos;
424 } else if (ret < 0) {
425 /* free what was emitted */
426 pipe_discard_from(pipe, to.start_head);
428 * callers of ->splice_read() expect -EAGAIN on
429 * "can't put anything in there", rather than -EFAULT.
437 EXPORT_SYMBOL(generic_file_splice_read);
439 const struct pipe_buf_operations default_pipe_buf_ops = {
440 .release = generic_pipe_buf_release,
441 .try_steal = generic_pipe_buf_try_steal,
442 .get = generic_pipe_buf_get,
445 /* Pipe buffer operations for a socket and similar. */
446 const struct pipe_buf_operations nosteal_pipe_buf_ops = {
447 .release = generic_pipe_buf_release,
448 .get = generic_pipe_buf_get,
450 EXPORT_SYMBOL(nosteal_pipe_buf_ops);
452 static void wakeup_pipe_writers(struct pipe_inode_info *pipe)
455 if (waitqueue_active(&pipe->wr_wait))
456 wake_up_interruptible(&pipe->wr_wait);
457 kill_fasync(&pipe->fasync_writers, SIGIO, POLL_OUT);
461 * splice_from_pipe_feed - feed available data from a pipe to a file
462 * @pipe: pipe to splice from
463 * @sd: information to @actor
464 * @actor: handler that splices the data
467 * This function loops over the pipe and calls @actor to do the
468 * actual moving of a single struct pipe_buffer to the desired
469 * destination. It returns when there's no more buffers left in
470 * the pipe or if the requested number of bytes (@sd->total_len)
471 * have been copied. It returns a positive number (one) if the
472 * pipe needs to be filled with more data, zero if the required
473 * number of bytes have been copied and -errno on error.
475 * This, together with splice_from_pipe_{begin,end,next}, may be
476 * used to implement the functionality of __splice_from_pipe() when
477 * locking is required around copying the pipe buffers to the
480 static int splice_from_pipe_feed(struct pipe_inode_info *pipe, struct splice_desc *sd,
483 unsigned int head = pipe->head;
484 unsigned int tail = pipe->tail;
485 unsigned int mask = pipe->ring_size - 1;
488 while (!pipe_empty(head, tail)) {
489 struct pipe_buffer *buf = &pipe->bufs[tail & mask];
492 if (sd->len > sd->total_len)
493 sd->len = sd->total_len;
495 ret = pipe_buf_confirm(pipe, buf);
502 ret = actor(pipe, buf, sd);
509 sd->num_spliced += ret;
512 sd->total_len -= ret;
515 pipe_buf_release(pipe, buf);
519 sd->need_wakeup = true;
529 /* We know we have a pipe buffer, but maybe it's empty? */
530 static inline bool eat_empty_buffer(struct pipe_inode_info *pipe)
532 unsigned int tail = pipe->tail;
533 unsigned int mask = pipe->ring_size - 1;
534 struct pipe_buffer *buf = &pipe->bufs[tail & mask];
536 if (unlikely(!buf->len)) {
537 pipe_buf_release(pipe, buf);
546 * splice_from_pipe_next - wait for some data to splice from
547 * @pipe: pipe to splice from
548 * @sd: information about the splice operation
551 * This function will wait for some data and return a positive
552 * value (one) if pipe buffers are available. It will return zero
553 * or -errno if no more data needs to be spliced.
555 static int splice_from_pipe_next(struct pipe_inode_info *pipe, struct splice_desc *sd)
558 * Check for signal early to make process killable when there are
559 * always buffers available
561 if (signal_pending(current))
565 while (pipe_empty(pipe->head, pipe->tail)) {
572 if (sd->flags & SPLICE_F_NONBLOCK)
575 if (signal_pending(current))
578 if (sd->need_wakeup) {
579 wakeup_pipe_writers(pipe);
580 sd->need_wakeup = false;
583 pipe_wait_readable(pipe);
586 if (eat_empty_buffer(pipe))
593 * splice_from_pipe_begin - start splicing from pipe
594 * @sd: information about the splice operation
597 * This function should be called before a loop containing
598 * splice_from_pipe_next() and splice_from_pipe_feed() to
599 * initialize the necessary fields of @sd.
601 static void splice_from_pipe_begin(struct splice_desc *sd)
604 sd->need_wakeup = false;
608 * splice_from_pipe_end - finish splicing from pipe
609 * @pipe: pipe to splice from
610 * @sd: information about the splice operation
613 * This function will wake up pipe writers if necessary. It should
614 * be called after a loop containing splice_from_pipe_next() and
615 * splice_from_pipe_feed().
617 static void splice_from_pipe_end(struct pipe_inode_info *pipe, struct splice_desc *sd)
620 wakeup_pipe_writers(pipe);
624 * __splice_from_pipe - splice data from a pipe to given actor
625 * @pipe: pipe to splice from
626 * @sd: information to @actor
627 * @actor: handler that splices the data
630 * This function does little more than loop over the pipe and call
631 * @actor to do the actual moving of a single struct pipe_buffer to
632 * the desired destination. See pipe_to_file, pipe_to_sendmsg, or
636 ssize_t __splice_from_pipe(struct pipe_inode_info *pipe, struct splice_desc *sd,
641 splice_from_pipe_begin(sd);
644 ret = splice_from_pipe_next(pipe, sd);
646 ret = splice_from_pipe_feed(pipe, sd, actor);
648 splice_from_pipe_end(pipe, sd);
650 return sd->num_spliced ? sd->num_spliced : ret;
652 EXPORT_SYMBOL(__splice_from_pipe);
655 * splice_from_pipe - splice data from a pipe to a file
656 * @pipe: pipe to splice from
657 * @out: file to splice to
658 * @ppos: position in @out
659 * @len: how many bytes to splice
660 * @flags: splice modifier flags
661 * @actor: handler that splices the data
664 * See __splice_from_pipe. This function locks the pipe inode,
665 * otherwise it's identical to __splice_from_pipe().
668 ssize_t splice_from_pipe(struct pipe_inode_info *pipe, struct file *out,
669 loff_t *ppos, size_t len, unsigned int flags,
673 struct splice_desc sd = {
681 ret = __splice_from_pipe(pipe, &sd, actor);
688 * iter_file_splice_write - splice data from a pipe to a file
690 * @out: file to write to
691 * @ppos: position in @out
692 * @len: number of bytes to splice
693 * @flags: splice modifier flags
696 * Will either move or copy pages (determined by @flags options) from
697 * the given pipe inode to the given file.
698 * This one is ->write_iter-based.
702 iter_file_splice_write(struct pipe_inode_info *pipe, struct file *out,
703 loff_t *ppos, size_t len, unsigned int flags)
705 struct splice_desc sd = {
711 int nbufs = pipe->max_usage;
712 struct bio_vec *array = kcalloc(nbufs, sizeof(struct bio_vec),
716 if (unlikely(!array))
721 splice_from_pipe_begin(&sd);
722 while (sd.total_len) {
723 struct iov_iter from;
724 unsigned int head, tail, mask;
728 ret = splice_from_pipe_next(pipe, &sd);
732 if (unlikely(nbufs < pipe->max_usage)) {
734 nbufs = pipe->max_usage;
735 array = kcalloc(nbufs, sizeof(struct bio_vec),
745 mask = pipe->ring_size - 1;
747 /* build the vector */
749 for (n = 0; !pipe_empty(head, tail) && left && n < nbufs; tail++) {
750 struct pipe_buffer *buf = &pipe->bufs[tail & mask];
751 size_t this_len = buf->len;
753 /* zero-length bvecs are not supported, skip them */
756 this_len = min(this_len, left);
758 ret = pipe_buf_confirm(pipe, buf);
765 bvec_set_page(&array[n], buf->page, this_len,
771 iov_iter_bvec(&from, ITER_SOURCE, array, n, sd.total_len - left);
772 ret = vfs_iter_write(out, &from, &sd.pos, 0);
776 sd.num_spliced += ret;
780 /* dismiss the fully eaten buffers, adjust the partial one */
783 struct pipe_buffer *buf = &pipe->bufs[tail & mask];
784 if (ret >= buf->len) {
787 pipe_buf_release(pipe, buf);
791 sd.need_wakeup = true;
801 splice_from_pipe_end(pipe, &sd);
806 ret = sd.num_spliced;
811 EXPORT_SYMBOL(iter_file_splice_write);
815 * splice_to_socket - splice data from a pipe to a socket
816 * @pipe: pipe to splice from
817 * @out: socket to write to
818 * @ppos: position in @out
819 * @len: number of bytes to splice
820 * @flags: splice modifier flags
823 * Will send @len bytes from the pipe to a network socket. No data copying
827 ssize_t splice_to_socket(struct pipe_inode_info *pipe, struct file *out,
828 loff_t *ppos, size_t len, unsigned int flags)
830 struct socket *sock = sock_from_file(out);
831 struct bio_vec bvec[16];
832 struct msghdr msg = {};
835 bool need_wakeup = false;
840 unsigned int head, tail, mask, bc = 0;
844 * Check for signal early to make process killable when there
845 * are always buffers available
848 if (signal_pending(current))
851 while (pipe_empty(pipe->head, pipe->tail)) {
860 if (flags & SPLICE_F_NONBLOCK)
864 if (signal_pending(current))
868 wakeup_pipe_writers(pipe);
872 pipe_wait_readable(pipe);
877 mask = pipe->ring_size - 1;
879 while (!pipe_empty(head, tail)) {
880 struct pipe_buffer *buf = &pipe->bufs[tail & mask];
888 seg = min_t(size_t, remain, buf->len);
890 ret = pipe_buf_confirm(pipe, buf);
897 bvec_set_page(&bvec[bc++], buf->page, seg, buf->offset);
899 if (remain == 0 || bc >= ARRAY_SIZE(bvec))
907 msg.msg_flags = MSG_SPLICE_PAGES;
908 if (flags & SPLICE_F_MORE)
909 msg.msg_flags |= MSG_MORE;
910 if (remain && pipe_occupancy(pipe->head, tail) > 0)
911 msg.msg_flags |= MSG_MORE;
913 iov_iter_bvec(&msg.msg_iter, ITER_SOURCE, bvec, bc,
915 ret = sock_sendmsg(sock, &msg);
923 struct pipe_buffer *buf = &pipe->bufs[tail & mask];
924 size_t seg = min_t(size_t, ret, buf->len);
931 pipe_buf_release(pipe, buf);
936 if (tail != pipe->tail) {
946 wakeup_pipe_writers(pipe);
947 return spliced ?: ret;
951 static int warn_unsupported(struct file *file, const char *op)
953 pr_debug_ratelimited(
954 "splice %s not supported for file %pD4 (pid: %d comm: %.20s)\n",
955 op, file, current->pid, current->comm);
960 * Attempt to initiate a splice from pipe to file.
962 static long do_splice_from(struct pipe_inode_info *pipe, struct file *out,
963 loff_t *ppos, size_t len, unsigned int flags)
965 if (unlikely(!out->f_op->splice_write))
966 return warn_unsupported(out, "write");
967 return out->f_op->splice_write(pipe, out, ppos, len, flags);
971 * Indicate to the caller that there was a premature EOF when reading from the
972 * source and the caller didn't indicate they would be sending more data after
975 static void do_splice_eof(struct splice_desc *sd)
982 * Attempt to initiate a splice from a file to a pipe.
984 static long do_splice_to(struct file *in, loff_t *ppos,
985 struct pipe_inode_info *pipe, size_t len,
988 unsigned int p_space;
991 if (unlikely(!(in->f_mode & FMODE_READ)))
994 /* Don't try to read more the pipe has space for. */
995 p_space = pipe->max_usage - pipe_occupancy(pipe->head, pipe->tail);
996 len = min_t(size_t, len, p_space << PAGE_SHIFT);
998 ret = rw_verify_area(READ, in, ppos, len);
999 if (unlikely(ret < 0))
1002 if (unlikely(len > MAX_RW_COUNT))
1005 if (unlikely(!in->f_op->splice_read))
1006 return warn_unsupported(in, "read");
1007 return in->f_op->splice_read(in, ppos, pipe, len, flags);
1011 * splice_direct_to_actor - splices data directly between two non-pipes
1012 * @in: file to splice from
1013 * @sd: actor information on where to splice to
1014 * @actor: handles the data splicing
1017 * This is a special case helper to splice directly between two
1018 * points, without requiring an explicit pipe. Internally an allocated
1019 * pipe is cached in the process, and reused during the lifetime of
1023 ssize_t splice_direct_to_actor(struct file *in, struct splice_desc *sd,
1024 splice_direct_actor *actor)
1026 struct pipe_inode_info *pipe;
1032 * We require the input to be seekable, as we don't want to randomly
1033 * drop data for eg socket -> socket splicing. Use the piped splicing
1036 if (unlikely(!(in->f_mode & FMODE_LSEEK)))
1040 * neither in nor out is a pipe, setup an internal pipe attached to
1041 * 'out' and transfer the wanted data from 'in' to 'out' through that
1043 pipe = current->splice_pipe;
1044 if (unlikely(!pipe)) {
1045 pipe = alloc_pipe_info();
1050 * We don't have an immediate reader, but we'll read the stuff
1051 * out of the pipe right after the splice_to_pipe(). So set
1052 * PIPE_READERS appropriately.
1056 current->splice_pipe = pipe;
1063 len = sd->total_len;
1065 /* Don't block on output, we have to drain the direct pipe. */
1067 sd->flags &= ~SPLICE_F_NONBLOCK;
1070 * We signal MORE until we've read sufficient data to fulfill the
1071 * request and we keep signalling it if the caller set it.
1073 more = sd->flags & SPLICE_F_MORE;
1074 sd->flags |= SPLICE_F_MORE;
1076 WARN_ON_ONCE(!pipe_empty(pipe->head, pipe->tail));
1080 loff_t pos = sd->pos, prev_pos = pos;
1082 ret = do_splice_to(in, &pos, pipe, len, flags);
1083 if (unlikely(ret <= 0))
1087 sd->total_len = read_len;
1090 * If we now have sufficient data to fulfill the request then
1091 * we clear SPLICE_F_MORE if it was not set initially.
1093 if (read_len >= len && !more)
1094 sd->flags &= ~SPLICE_F_MORE;
1097 * NOTE: nonblocking mode only applies to the input. We
1098 * must not do the output in nonblocking mode as then we
1099 * could get stuck data in the internal pipe:
1101 ret = actor(pipe, sd);
1102 if (unlikely(ret <= 0)) {
1111 if (ret < read_len) {
1112 sd->pos = prev_pos + ret;
1118 pipe->tail = pipe->head = 0;
1124 * If the user did *not* set SPLICE_F_MORE *and* we didn't hit that
1125 * "use all of len" case that cleared SPLICE_F_MORE, *and* we did a
1126 * "->splice_in()" that returned EOF (ie zero) *and* we have sent at
1127 * least 1 byte *then* we will also do the ->splice_eof() call.
1129 if (ret == 0 && !more && len > 0 && bytes)
1133 * If we did an incomplete transfer we must release
1134 * the pipe buffers in question:
1136 for (i = 0; i < pipe->ring_size; i++) {
1137 struct pipe_buffer *buf = &pipe->bufs[i];
1140 pipe_buf_release(pipe, buf);
1148 EXPORT_SYMBOL(splice_direct_to_actor);
1150 static int direct_splice_actor(struct pipe_inode_info *pipe,
1151 struct splice_desc *sd)
1153 struct file *file = sd->u.file;
1155 return do_splice_from(pipe, file, sd->opos, sd->total_len,
1159 static void direct_file_splice_eof(struct splice_desc *sd)
1161 struct file *file = sd->u.file;
1163 if (file->f_op->splice_eof)
1164 file->f_op->splice_eof(file);
1168 * do_splice_direct - splices data directly between two files
1169 * @in: file to splice from
1170 * @ppos: input file offset
1171 * @out: file to splice to
1172 * @opos: output file offset
1173 * @len: number of bytes to splice
1174 * @flags: splice modifier flags
1177 * For use by do_sendfile(). splice can easily emulate sendfile, but
1178 * doing it in the application would incur an extra system call
1179 * (splice in + splice out, as compared to just sendfile()). So this helper
1180 * can splice directly through a process-private pipe.
1183 long do_splice_direct(struct file *in, loff_t *ppos, struct file *out,
1184 loff_t *opos, size_t len, unsigned int flags)
1186 struct splice_desc sd = {
1192 .splice_eof = direct_file_splice_eof,
1197 if (unlikely(!(out->f_mode & FMODE_WRITE)))
1200 if (unlikely(out->f_flags & O_APPEND))
1203 ret = rw_verify_area(WRITE, out, opos, len);
1204 if (unlikely(ret < 0))
1207 ret = splice_direct_to_actor(in, &sd, direct_splice_actor);
1213 EXPORT_SYMBOL(do_splice_direct);
1215 static int wait_for_space(struct pipe_inode_info *pipe, unsigned flags)
1218 if (unlikely(!pipe->readers)) {
1219 send_sig(SIGPIPE, current, 0);
1222 if (!pipe_full(pipe->head, pipe->tail, pipe->max_usage))
1224 if (flags & SPLICE_F_NONBLOCK)
1226 if (signal_pending(current))
1227 return -ERESTARTSYS;
1228 pipe_wait_writable(pipe);
1232 static int splice_pipe_to_pipe(struct pipe_inode_info *ipipe,
1233 struct pipe_inode_info *opipe,
1234 size_t len, unsigned int flags);
1236 long splice_file_to_pipe(struct file *in,
1237 struct pipe_inode_info *opipe,
1239 size_t len, unsigned int flags)
1244 ret = wait_for_space(opipe, flags);
1246 ret = do_splice_to(in, offset, opipe, len, flags);
1249 wakeup_pipe_readers(opipe);
1254 * Determine where to splice to/from.
1256 long do_splice(struct file *in, loff_t *off_in, struct file *out,
1257 loff_t *off_out, size_t len, unsigned int flags)
1259 struct pipe_inode_info *ipipe;
1260 struct pipe_inode_info *opipe;
1264 if (unlikely(!(in->f_mode & FMODE_READ) ||
1265 !(out->f_mode & FMODE_WRITE)))
1268 ipipe = get_pipe_info(in, true);
1269 opipe = get_pipe_info(out, true);
1271 if (ipipe && opipe) {
1272 if (off_in || off_out)
1275 /* Splicing to self would be fun, but... */
1279 if ((in->f_flags | out->f_flags) & O_NONBLOCK)
1280 flags |= SPLICE_F_NONBLOCK;
1282 return splice_pipe_to_pipe(ipipe, opipe, len, flags);
1289 if (!(out->f_mode & FMODE_PWRITE))
1293 offset = out->f_pos;
1296 if (unlikely(out->f_flags & O_APPEND))
1299 ret = rw_verify_area(WRITE, out, &offset, len);
1300 if (unlikely(ret < 0))
1303 if (in->f_flags & O_NONBLOCK)
1304 flags |= SPLICE_F_NONBLOCK;
1306 file_start_write(out);
1307 ret = do_splice_from(ipipe, out, &offset, len, flags);
1308 file_end_write(out);
1311 fsnotify_modify(out);
1314 out->f_pos = offset;
1325 if (!(in->f_mode & FMODE_PREAD))
1332 if (out->f_flags & O_NONBLOCK)
1333 flags |= SPLICE_F_NONBLOCK;
1335 ret = splice_file_to_pipe(in, opipe, &offset, len, flags);
1338 fsnotify_access(in);
1351 static long __do_splice(struct file *in, loff_t __user *off_in,
1352 struct file *out, loff_t __user *off_out,
1353 size_t len, unsigned int flags)
1355 struct pipe_inode_info *ipipe;
1356 struct pipe_inode_info *opipe;
1357 loff_t offset, *__off_in = NULL, *__off_out = NULL;
1360 ipipe = get_pipe_info(in, true);
1361 opipe = get_pipe_info(out, true);
1366 pipe_clear_nowait(in);
1371 pipe_clear_nowait(out);
1375 if (copy_from_user(&offset, off_out, sizeof(loff_t)))
1377 __off_out = &offset;
1380 if (copy_from_user(&offset, off_in, sizeof(loff_t)))
1385 ret = do_splice(in, __off_in, out, __off_out, len, flags);
1389 if (__off_out && copy_to_user(off_out, __off_out, sizeof(loff_t)))
1391 if (__off_in && copy_to_user(off_in, __off_in, sizeof(loff_t)))
1397 static int iter_to_pipe(struct iov_iter *from,
1398 struct pipe_inode_info *pipe,
1401 struct pipe_buffer buf = {
1402 .ops = &user_page_pipe_buf_ops,
1408 while (iov_iter_count(from)) {
1409 struct page *pages[16];
1414 left = iov_iter_get_pages2(from, pages, ~0UL, 16, &start);
1420 n = DIV_ROUND_UP(left + start, PAGE_SIZE);
1421 for (i = 0; i < n; i++) {
1422 int size = min_t(int, left, PAGE_SIZE - start);
1424 buf.page = pages[i];
1427 ret = add_to_pipe(pipe, &buf);
1428 if (unlikely(ret < 0)) {
1429 iov_iter_revert(from, left);
1430 // this one got dropped by add_to_pipe()
1441 return total ? total : ret;
1444 static int pipe_to_user(struct pipe_inode_info *pipe, struct pipe_buffer *buf,
1445 struct splice_desc *sd)
1447 int n = copy_page_to_iter(buf->page, buf->offset, sd->len, sd->u.data);
1448 return n == sd->len ? n : -EFAULT;
1452 * For lack of a better implementation, implement vmsplice() to userspace
1453 * as a simple copy of the pipes pages to the user iov.
1455 static long vmsplice_to_user(struct file *file, struct iov_iter *iter,
1458 struct pipe_inode_info *pipe = get_pipe_info(file, true);
1459 struct splice_desc sd = {
1460 .total_len = iov_iter_count(iter),
1469 pipe_clear_nowait(file);
1473 ret = __splice_from_pipe(pipe, &sd, pipe_to_user);
1481 * vmsplice splices a user address range into a pipe. It can be thought of
1482 * as splice-from-memory, where the regular splice is splice-from-file (or
1483 * to file). In both cases the output is a pipe, naturally.
1485 static long vmsplice_to_pipe(struct file *file, struct iov_iter *iter,
1488 struct pipe_inode_info *pipe;
1490 unsigned buf_flag = 0;
1492 if (flags & SPLICE_F_GIFT)
1493 buf_flag = PIPE_BUF_FLAG_GIFT;
1495 pipe = get_pipe_info(file, true);
1499 pipe_clear_nowait(file);
1502 ret = wait_for_space(pipe, flags);
1504 ret = iter_to_pipe(iter, pipe, buf_flag);
1507 wakeup_pipe_readers(pipe);
1511 static int vmsplice_type(struct fd f, int *type)
1515 if (f.file->f_mode & FMODE_WRITE) {
1516 *type = ITER_SOURCE;
1517 } else if (f.file->f_mode & FMODE_READ) {
1527 * Note that vmsplice only really supports true splicing _from_ user memory
1528 * to a pipe, not the other way around. Splicing from user memory is a simple
1529 * operation that can be supported without any funky alignment restrictions
1530 * or nasty vm tricks. We simply map in the user memory and fill them into
1531 * a pipe. The reverse isn't quite as easy, though. There are two possible
1532 * solutions for that:
1534 * - memcpy() the data internally, at which point we might as well just
1535 * do a regular read() on the buffer anyway.
1536 * - Lots of nasty vm tricks, that are neither fast nor flexible (it
1537 * has restriction limitations on both ends of the pipe).
1539 * Currently we punt and implement it as a normal copy, see pipe_to_user().
1542 SYSCALL_DEFINE4(vmsplice, int, fd, const struct iovec __user *, uiov,
1543 unsigned long, nr_segs, unsigned int, flags)
1545 struct iovec iovstack[UIO_FASTIOV];
1546 struct iovec *iov = iovstack;
1547 struct iov_iter iter;
1552 if (unlikely(flags & ~SPLICE_F_ALL))
1556 error = vmsplice_type(f, &type);
1560 error = import_iovec(type, uiov, nr_segs,
1561 ARRAY_SIZE(iovstack), &iov, &iter);
1565 if (!iov_iter_count(&iter))
1567 else if (type == ITER_SOURCE)
1568 error = vmsplice_to_pipe(f.file, &iter, flags);
1570 error = vmsplice_to_user(f.file, &iter, flags);
1578 SYSCALL_DEFINE6(splice, int, fd_in, loff_t __user *, off_in,
1579 int, fd_out, loff_t __user *, off_out,
1580 size_t, len, unsigned int, flags)
1588 if (unlikely(flags & ~SPLICE_F_ALL))
1594 out = fdget(fd_out);
1596 error = __do_splice(in.file, off_in, out.file, off_out,
1606 * Make sure there's data to read. Wait for input if we can, otherwise
1607 * return an appropriate error.
1609 static int ipipe_prep(struct pipe_inode_info *pipe, unsigned int flags)
1614 * Check the pipe occupancy without the inode lock first. This function
1615 * is speculative anyways, so missing one is ok.
1617 if (!pipe_empty(pipe->head, pipe->tail))
1623 while (pipe_empty(pipe->head, pipe->tail)) {
1624 if (signal_pending(current)) {
1630 if (flags & SPLICE_F_NONBLOCK) {
1634 pipe_wait_readable(pipe);
1642 * Make sure there's writeable room. Wait for room if we can, otherwise
1643 * return an appropriate error.
1645 static int opipe_prep(struct pipe_inode_info *pipe, unsigned int flags)
1650 * Check pipe occupancy without the inode lock first. This function
1651 * is speculative anyways, so missing one is ok.
1653 if (!pipe_full(pipe->head, pipe->tail, pipe->max_usage))
1659 while (pipe_full(pipe->head, pipe->tail, pipe->max_usage)) {
1660 if (!pipe->readers) {
1661 send_sig(SIGPIPE, current, 0);
1665 if (flags & SPLICE_F_NONBLOCK) {
1669 if (signal_pending(current)) {
1673 pipe_wait_writable(pipe);
1681 * Splice contents of ipipe to opipe.
1683 static int splice_pipe_to_pipe(struct pipe_inode_info *ipipe,
1684 struct pipe_inode_info *opipe,
1685 size_t len, unsigned int flags)
1687 struct pipe_buffer *ibuf, *obuf;
1688 unsigned int i_head, o_head;
1689 unsigned int i_tail, o_tail;
1690 unsigned int i_mask, o_mask;
1692 bool input_wakeup = false;
1696 ret = ipipe_prep(ipipe, flags);
1700 ret = opipe_prep(opipe, flags);
1705 * Potential ABBA deadlock, work around it by ordering lock
1706 * grabbing by pipe info address. Otherwise two different processes
1707 * could deadlock (one doing tee from A -> B, the other from B -> A).
1709 pipe_double_lock(ipipe, opipe);
1711 i_tail = ipipe->tail;
1712 i_mask = ipipe->ring_size - 1;
1713 o_head = opipe->head;
1714 o_mask = opipe->ring_size - 1;
1719 if (!opipe->readers) {
1720 send_sig(SIGPIPE, current, 0);
1726 i_head = ipipe->head;
1727 o_tail = opipe->tail;
1729 if (pipe_empty(i_head, i_tail) && !ipipe->writers)
1733 * Cannot make any progress, because either the input
1734 * pipe is empty or the output pipe is full.
1736 if (pipe_empty(i_head, i_tail) ||
1737 pipe_full(o_head, o_tail, opipe->max_usage)) {
1738 /* Already processed some buffers, break */
1742 if (flags & SPLICE_F_NONBLOCK) {
1748 * We raced with another reader/writer and haven't
1749 * managed to process any buffers. A zero return
1750 * value means EOF, so retry instead.
1757 ibuf = &ipipe->bufs[i_tail & i_mask];
1758 obuf = &opipe->bufs[o_head & o_mask];
1760 if (len >= ibuf->len) {
1762 * Simply move the whole buffer from ipipe to opipe
1767 ipipe->tail = i_tail;
1768 input_wakeup = true;
1771 opipe->head = o_head;
1774 * Get a reference to this pipe buffer,
1775 * so we can copy the contents over.
1777 if (!pipe_buf_get(ipipe, ibuf)) {
1785 * Don't inherit the gift and merge flags, we need to
1786 * prevent multiple steals of this page.
1788 obuf->flags &= ~PIPE_BUF_FLAG_GIFT;
1789 obuf->flags &= ~PIPE_BUF_FLAG_CAN_MERGE;
1792 ibuf->offset += len;
1796 opipe->head = o_head;
1806 * If we put data in the output pipe, wakeup any potential readers.
1809 wakeup_pipe_readers(opipe);
1812 wakeup_pipe_writers(ipipe);
1818 * Link contents of ipipe to opipe.
1820 static int link_pipe(struct pipe_inode_info *ipipe,
1821 struct pipe_inode_info *opipe,
1822 size_t len, unsigned int flags)
1824 struct pipe_buffer *ibuf, *obuf;
1825 unsigned int i_head, o_head;
1826 unsigned int i_tail, o_tail;
1827 unsigned int i_mask, o_mask;
1831 * Potential ABBA deadlock, work around it by ordering lock
1832 * grabbing by pipe info address. Otherwise two different processes
1833 * could deadlock (one doing tee from A -> B, the other from B -> A).
1835 pipe_double_lock(ipipe, opipe);
1837 i_tail = ipipe->tail;
1838 i_mask = ipipe->ring_size - 1;
1839 o_head = opipe->head;
1840 o_mask = opipe->ring_size - 1;
1843 if (!opipe->readers) {
1844 send_sig(SIGPIPE, current, 0);
1850 i_head = ipipe->head;
1851 o_tail = opipe->tail;
1854 * If we have iterated all input buffers or run out of
1855 * output room, break.
1857 if (pipe_empty(i_head, i_tail) ||
1858 pipe_full(o_head, o_tail, opipe->max_usage))
1861 ibuf = &ipipe->bufs[i_tail & i_mask];
1862 obuf = &opipe->bufs[o_head & o_mask];
1865 * Get a reference to this pipe buffer,
1866 * so we can copy the contents over.
1868 if (!pipe_buf_get(ipipe, ibuf)) {
1877 * Don't inherit the gift and merge flag, we need to prevent
1878 * multiple steals of this page.
1880 obuf->flags &= ~PIPE_BUF_FLAG_GIFT;
1881 obuf->flags &= ~PIPE_BUF_FLAG_CAN_MERGE;
1883 if (obuf->len > len)
1889 opipe->head = o_head;
1897 * If we put data in the output pipe, wakeup any potential readers.
1900 wakeup_pipe_readers(opipe);
1906 * This is a tee(1) implementation that works on pipes. It doesn't copy
1907 * any data, it simply references the 'in' pages on the 'out' pipe.
1908 * The 'flags' used are the SPLICE_F_* variants, currently the only
1909 * applicable one is SPLICE_F_NONBLOCK.
1911 long do_tee(struct file *in, struct file *out, size_t len, unsigned int flags)
1913 struct pipe_inode_info *ipipe = get_pipe_info(in, true);
1914 struct pipe_inode_info *opipe = get_pipe_info(out, true);
1917 if (unlikely(!(in->f_mode & FMODE_READ) ||
1918 !(out->f_mode & FMODE_WRITE)))
1922 * Duplicate the contents of ipipe to opipe without actually
1925 if (ipipe && opipe && ipipe != opipe) {
1926 if ((in->f_flags | out->f_flags) & O_NONBLOCK)
1927 flags |= SPLICE_F_NONBLOCK;
1930 * Keep going, unless we encounter an error. The ipipe/opipe
1931 * ordering doesn't really matter.
1933 ret = ipipe_prep(ipipe, flags);
1935 ret = opipe_prep(opipe, flags);
1937 ret = link_pipe(ipipe, opipe, len, flags);
1944 SYSCALL_DEFINE4(tee, int, fdin, int, fdout, size_t, len, unsigned int, flags)
1949 if (unlikely(flags & ~SPLICE_F_ALL))
1960 error = do_tee(in.file, out.file, len, flags);
projects / platform / kernel / linux-rpi.git / blob