[linux-block.git] / lib / string_helpers.c

// SPDX-License-Identifier: GPL-2.0-only
/*
 * Helpers for formatting and printing strings
 *
 * Copyright 31 August 2008 James Bottomley
 * Copyright (C) 2013, Intel Corporation
 */
#include <linux/bug.h>
#include <linux/kernel.h>
#include <linux/math64.h>
#include <linux/export.h>
#include <linux/ctype.h>
#include <linux/errno.h>
#include <linux/fs.h>
#include <linux/limits.h>
#include <linux/mm.h>
#include <linux/slab.h>
#include <linux/string.h>
#include <linux/string_helpers.h>

/**
 * string_get_size - get the size in the specified units
 * @size:	The size to be converted in blocks
 * @blk_size:	Size of the block (use 1 for size in bytes)
 * @units:	units to use (powers of 1000 or 1024)
 * @buf:	buffer to format to
 * @len:	length of buffer
 *
 * This function returns a string formatted to 3 significant figures
 * giving the size in the required units.  @buf should have room for
 * at least 9 bytes and will always be zero terminated.
 *
 */
void string_get_size(u64 size, u64 blk_size, const enum string_size_units units,
		     char *buf, int len)
{
	static const char *const units_10[] = {
		"B", "kB", "MB", "GB", "TB", "PB", "EB", "ZB", "YB"
	};
	static const char *const units_2[] = {
		"B", "KiB", "MiB", "GiB", "TiB", "PiB", "EiB", "ZiB", "YiB"
	};
	static const char *const *const units_str[] = {
		[STRING_UNITS_10] = units_10,
		[STRING_UNITS_2] = units_2,
	};
	static const unsigned int divisor[] = {
		[STRING_UNITS_10] = 1000,
		[STRING_UNITS_2] = 1024,
	};
	static const unsigned int rounding[] = { 500, 50, 5 };
	int i = 0, j;
	u32 remainder = 0, sf_cap;
	char tmp[8];
	const char *unit;

	tmp[0] = '\0';

	if (blk_size == 0)
		size = 0;
	if (size == 0)
		goto out;

	/* This is Napier's algorithm.  Reduce the original block size to
	 *
	 * coefficient * divisor[units]^i
	 *
	 * we do the reduction so both coefficients are just under 32 bits so
	 * that multiplying them together won't overflow 64 bits and we keep
	 * as much precision as possible in the numbers.
	 *
	 * Note: it's safe to throw away the remainders here because all the
	 * precision is in the coefficients.
	 */
	while (blk_size >> 32) {
		do_div(blk_size, divisor[units]);
		i++;
	}

	while (size >> 32) {
		do_div(size, divisor[units]);
		i++;
	}

	/* now perform the actual multiplication keeping i as the sum of the
	 * two logarithms */
	size *= blk_size;

	/* and logarithmically reduce it until it's just under the divisor */
	while (size >= divisor[units]) {
		remainder = do_div(size, divisor[units]);
		i++;
	}

	/* work out in j how many digits of precision we need from the
	 * remainder */
	sf_cap = size;
	for (j = 0; sf_cap*10 < 1000; j++)
		sf_cap *= 10;

	if (units == STRING_UNITS_2) {
		/* express the remainder as a decimal.  It's currently the
		 * numerator of a fraction whose denominator is
		 * divisor[units], which is 1 << 10 for STRING_UNITS_2 */
		remainder *= 1000;
		remainder >>= 10;
	}

	/* add a 5 to the digit below what will be printed to ensure
	 * an arithmetical round up and carry it through to size */
	remainder += rounding[j];
	if (remainder >= 1000) {
		remainder -= 1000;
		size += 1;
	}

	if (j) {
		snprintf(tmp, sizeof(tmp), ".%03u", remainder);
		tmp[j+1] = '\0';
	}

 out:
	if (i >= ARRAY_SIZE(units_2))
		unit = "UNK";
	else
		unit = units_str[units][i];

	snprintf(buf, len, "%u%s %s", (u32)size,
		 tmp, unit);
}
EXPORT_SYMBOL(string_get_size);

static bool unescape_space(char **src, char **dst)
{
	char *p = *dst, *q = *src;

	switch (*q) {
	case 'n':
		*p = '\n';
		break;
	case 'r':
		*p = '\r';
		break;
	case 't':
		*p = '\t';
		break;
	case 'v':
		*p = '\v';
		break;
	case 'f':
		*p = '\f';
		break;
	default:
		return false;
	}
	*dst += 1;
	*src += 1;
	return true;
}

static bool unescape_octal(char **src, char **dst)
{
	char *p = *dst, *q = *src;
	u8 num;

	if (isodigit(*q) == 0)
		return false;

	num = (*q++) & 7;
	while (num < 32 && isodigit(*q) && (q - *src < 3)) {
		num <<= 3;
		num += (*q++) & 7;
	}
	*p = num;
	*dst += 1;
	*src = q;
	return true;
}

static bool unescape_hex(char **src, char **dst)
{
	char *p = *dst, *q = *src;
	int digit;
	u8 num;

	if (*q++ != 'x')
		return false;

	num = digit = hex_to_bin(*q++);
	if (digit < 0)
		return false;

	digit = hex_to_bin(*q);
	if (digit >= 0) {
		q++;
		num = (num << 4) | digit;
	}
	*p = num;
	*dst += 1;
	*src = q;
	return true;
}

static bool unescape_special(char **src, char **dst)
{
	char *p = *dst, *q = *src;

	switch (*q) {
	case '\"':
		*p = '\"';
		break;
	case '\\':
		*p = '\\';
		break;
	case 'a':
		*p = '\a';
		break;
	case 'e':
		*p = '\e';
		break;
	default:
		return false;
	}
	*dst += 1;
	*src += 1;
	return true;
}

/**
 * string_unescape - unquote characters in the given string
 * @src:	source buffer (escaped)
 * @dst:	destination buffer (unescaped)
 * @size:	size of the destination buffer (0 to unlimit)
 * @flags:	combination of the flags.
 *
 * Description:
 * The function unquotes characters in the given string.
 *
 * Because the size of the output will be the same as or less than the size of
 * the input, the transformation may be performed in place.
 *
 * Caller must provide valid source and destination pointers. Be aware that
 * destination buffer will always be NULL-terminated. Source string must be
 * NULL-terminated as well.  The supported flags are::
 *
 *	UNESCAPE_SPACE:
 *		'\f' - form feed
 *		'\n' - new line
 *		'\r' - carriage return
 *		'\t' - horizontal tab
 *		'\v' - vertical tab
 *	UNESCAPE_OCTAL:
 *		'\NNN' - byte with octal value NNN (1 to 3 digits)
 *	UNESCAPE_HEX:
 *		'\xHH' - byte with hexadecimal value HH (1 to 2 digits)
 *	UNESCAPE_SPECIAL:
 *		'\"' - double quote
 *		'\\' - backslash
 *		'\a' - alert (BEL)
 *		'\e' - escape
 *	UNESCAPE_ANY:
 *		all previous together
 *
 * Return:
 * The amount of the characters processed to the destination buffer excluding
 * trailing '\0' is returned.
 */
int string_unescape(char *src, char *dst, size_t size, unsigned int flags)
{
	char *out = dst;

	while (*src && --size) {
		if (src[0] == '\\' && src[1] != '\0' && size > 1) {
			src++;
			size--;

			if (flags & UNESCAPE_SPACE &&
					unescape_space(&src, &out))
				continue;

			if (flags & UNESCAPE_OCTAL &&
					unescape_octal(&src, &out))
				continue;

			if (flags & UNESCAPE_HEX &&
					unescape_hex(&src, &out))
				continue;

			if (flags & UNESCAPE_SPECIAL &&
					unescape_special(&src, &out))
				continue;

			*out++ = '\\';
		}
		*out++ = *src++;
	}
	*out = '\0';

	return out - dst;
}
EXPORT_SYMBOL(string_unescape);

static bool escape_passthrough(unsigned char c, char **dst, char *end)
{
	char *out = *dst;

	if (out < end)
		*out = c;
	*dst = out + 1;
	return true;
}

static bool escape_space(unsigned char c, char **dst, char *end)
{
	char *out = *dst;
	unsigned char to;

	switch (c) {
	case '\n':
		to = 'n';
		break;
	case '\r':
		to = 'r';
		break;
	case '\t':
		to = 't';
		break;
	case '\v':
		to = 'v';
		break;
	case '\f':
		to = 'f';
		break;
	default:
		return false;
	}

	if (out < end)
		*out = '\\';
	++out;
	if (out < end)
		*out = to;
	++out;

	*dst = out;
	return true;
}

static bool escape_special(unsigned char c, char **dst, char *end)
{
	char *out = *dst;
	unsigned char to;

	switch (c) {
	case '\\':
		to = '\\';
		break;
	case '\a':
		to = 'a';
		break;
	case '\e':
		to = 'e';
		break;
	default:
		return false;
	}

	if (out < end)
		*out = '\\';
	++out;
	if (out < end)
		*out = to;
	++out;

	*dst = out;
	return true;
}

static bool escape_null(unsigned char c, char **dst, char *end)
{
	char *out = *dst;

	if (c)
		return false;

	if (out < end)
		*out = '\\';
	++out;
	if (out < end)
		*out = '0';
	++out;

	*dst = out;
	return true;
}

static bool escape_octal(unsigned char c, char **dst, char *end)
{
	char *out = *dst;

	if (out < end)
		*out = '\\';
	++out;
	if (out < end)
		*out = ((c >> 6) & 0x07) + '0';
	++out;
	if (out < end)
		*out = ((c >> 3) & 0x07) + '0';
	++out;
	if (out < end)
		*out = ((c >> 0) & 0x07) + '0';
	++out;

	*dst = out;
	return true;
}

static bool escape_hex(unsigned char c, char **dst, char *end)
{
	char *out = *dst;

	if (out < end)
		*out = '\\';
	++out;
	if (out < end)
		*out = 'x';
	++out;
	if (out < end)
		*out = hex_asc_hi(c);
	++out;
	if (out < end)
		*out = hex_asc_lo(c);
	++out;

	*dst = out;
	return true;
}

/**
 * string_escape_mem - quote characters in the given memory buffer
 * @src:	source buffer (unescaped)
 * @isz:	source buffer size
 * @dst:	destination buffer (escaped)
 * @osz:	destination buffer size
 * @flags:	combination of the flags
 * @only:	NULL-terminated string containing characters used to limit
 *		the selected escape class. If characters are included in @only
 *		that would not normally be escaped by the classes selected
 *		in @flags, they will be copied to @dst unescaped.
 *
 * Description:
 * The process of escaping byte buffer includes several parts. They are applied
 * in the following sequence.
 *
 *	1. The character is not matched to the one from @only string and thus
 *	   must go as-is to the output.
 *	2. The character is matched to the printable or ASCII class, if asked,
 *	   and in case of match it passes through to the output.
 *	3. The character is checked if it falls into the class given by @flags.
 *	   %ESCAPE_OCTAL and %ESCAPE_HEX are going last since they cover any
 *	   character. Note that they actually can't go together, otherwise
 *	   %ESCAPE_HEX will be ignored.
 *
 * Caller must provide valid source and destination pointers. Be aware that
 * destination buffer will not be NULL-terminated, thus caller have to append
 * it if needs. The supported flags are::
 *
 *	%ESCAPE_SPACE: (special white space, not space itself)
 *		'\f' - form feed
 *		'\n' - new line
 *		'\r' - carriage return
 *		'\t' - horizontal tab
 *		'\v' - vertical tab
 *	%ESCAPE_SPECIAL:
 *		'\\' - backslash
 *		'\a' - alert (BEL)
 *		'\e' - escape
 *	%ESCAPE_NULL:
 *		'\0' - null
 *	%ESCAPE_OCTAL:
 *		'\NNN' - byte with octal value NNN (3 digits)
 *	%ESCAPE_ANY:
 *		all previous together
 *	%ESCAPE_NP:
 *		escape only non-printable characters, checked by isprint()
 *	%ESCAPE_ANY_NP:
 *		all previous together
 *	%ESCAPE_HEX:
 *		'\xHH' - byte with hexadecimal value HH (2 digits)
 *	%ESCAPE_NA:
 *		escape only non-ascii characters, checked by isascii()
 *
 * One notable caveat, the %ESCAPE_NP and %ESCAPE_NA have higher priority
 * than the rest of the flags (%ESCAPE_NP is higher than %ESCAPE_NA).
 * It doesn't make much sense to use either of them without %ESCAPE_OCTAL
 * or %ESCAPE_HEX, because they cover most of the other character classes.
 *
 * Return:
 * The total size of the escaped output that would be generated for
 * the given input and flags. To check whether the output was
 * truncated, compare the return value to osz. There is room left in
 * dst for a '\0' terminator if and only if ret < osz.
 */
int string_escape_mem(const char *src, size_t isz, char *dst, size_t osz,
		      unsigned int flags, const char *only)
{
	char *p = dst;
	char *end = p + osz;
	bool is_dict = only && *only;

	while (isz--) {
		unsigned char c = *src++;

		/*
		 * Apply rules in the following sequence:
		 *	- the @only string is supplied and does not contain a
		 *	  character under question
		 *	- the character is printable, when @flags has
		 *	  %ESCAPE_NP bit set
		 *	- the character is ASCII, when @flags has
		 *	  %ESCAPE_NA bit set
		 *	- the character doesn't fall into a class of symbols
		 *	  defined by given @flags
		 * In these cases we just pass through a character to the
		 * output buffer.
		 */
		if (is_dict && !strchr(only, c) &&
					  escape_passthrough(c, &p, end))
			continue;

		if (isprint(c) &&
		    flags & ESCAPE_NP && escape_passthrough(c, &p, end))
			continue;

		if (isascii(c) &&
		    flags & ESCAPE_NA && escape_passthrough(c, &p, end))
			continue;

		if (flags & ESCAPE_SPACE && escape_space(c, &p, end))
			continue;

		if (flags & ESCAPE_SPECIAL && escape_special(c, &p, end))
			continue;

		if (flags & ESCAPE_NULL && escape_null(c, &p, end))
			continue;

		/* ESCAPE_OCTAL and ESCAPE_HEX always go last */
		if (flags & ESCAPE_OCTAL && escape_octal(c, &p, end))
			continue;

		if (flags & ESCAPE_HEX && escape_hex(c, &p, end))
			continue;

		escape_passthrough(c, &p, end);
	}

	return p - dst;
}
EXPORT_SYMBOL(string_escape_mem);

int string_escape_mem_ascii(const char *src, size_t isz, char *dst,
					size_t osz)
{
	char *p = dst;
	char *end = p + osz;

	while (isz--) {
		unsigned char c = *src++;

		if (!isprint(c) || !isascii(c) || c == '"' || c == '\\')
			escape_hex(c, &p, end);
		else
			escape_passthrough(c, &p, end);
	}

	return p - dst;
}
EXPORT_SYMBOL(string_escape_mem_ascii);

/*
 * Return an allocated string that has been escaped of special characters
 * and double quotes, making it safe to log in quotes.
 */
char *kstrdup_quotable(const char *src, gfp_t gfp)
{
	size_t slen, dlen;
	char *dst;
	const int flags = ESCAPE_HEX;
	const char esc[] = "\f\n\r\t\v\a\e\\\"";

	if (!src)
		return NULL;
	slen = strlen(src);

	dlen = string_escape_mem(src, slen, NULL, 0, flags, esc);
	dst = kmalloc(dlen + 1, gfp);
	if (!dst)
		return NULL;

	WARN_ON(string_escape_mem(src, slen, dst, dlen, flags, esc) != dlen);
	dst[dlen] = '\0';

	return dst;
}
EXPORT_SYMBOL_GPL(kstrdup_quotable);

/*
 * Returns allocated NULL-terminated string containing process
 * command line, with inter-argument NULLs replaced with spaces,
 * and other special characters escaped.
 */
char *kstrdup_quotable_cmdline(struct task_struct *task, gfp_t gfp)
{
	char *buffer, *quoted;
	int i, res;

	buffer = kmalloc(PAGE_SIZE, GFP_KERNEL);
	if (!buffer)
		return NULL;

	res = get_cmdline(task, buffer, PAGE_SIZE - 1);
	buffer[res] = '\0';

	/* Collapse trailing NULLs, leave res pointing to last non-NULL. */
	while (--res >= 0 && buffer[res] == '\0')
		;

	/* Replace inter-argument NULLs. */
	for (i = 0; i <= res; i++)
		if (buffer[i] == '\0')
			buffer[i] = ' ';

	/* Make sure result is printable. */
	quoted = kstrdup_quotable(buffer, gfp);
	kfree(buffer);
	return quoted;
}
EXPORT_SYMBOL_GPL(kstrdup_quotable_cmdline);

/*
 * Returns allocated NULL-terminated string containing pathname,
 * with special characters escaped, able to be safely logged. If
 * there is an error, the leading character will be "<".
 */
char *kstrdup_quotable_file(struct file *file, gfp_t gfp)
{
	char *temp, *pathname;

	if (!file)
		return kstrdup("<unknown>", gfp);

	/* We add 11 spaces for ' (deleted)' to be appended */
	temp = kmalloc(PATH_MAX + 11, GFP_KERNEL);
	if (!temp)
		return kstrdup("<no_memory>", gfp);

	pathname = file_path(file, temp, PATH_MAX + 11);
	if (IS_ERR(pathname))
		pathname = kstrdup("<too_long>", gfp);
	else
		pathname = kstrdup_quotable(pathname, gfp);

	kfree(temp);
	return pathname;
}
EXPORT_SYMBOL_GPL(kstrdup_quotable_file);

/**
 * kfree_strarray - free a number of dynamically allocated strings contained
 *                  in an array and the array itself
 *
 * @array: Dynamically allocated array of strings to free.
 * @n: Number of strings (starting from the beginning of the array) to free.
 *
 * Passing a non-NULL @array and @n == 0 as well as NULL @array are valid
 * use-cases. If @array is NULL, the function does nothing.
 */
void kfree_strarray(char **array, size_t n)
{
	unsigned int i;

	if (!array)
		return;

	for (i = 0; i < n; i++)
		kfree(array[i]);
	kfree(array);
}
EXPORT_SYMBOL_GPL(kfree_strarray);
Commit	Line	Data
457c8996	1	// SPDX-License-Identifier: GPL-2.0-only
3c9f3681 JB	2	/*
	3	* Helpers for formatting and printing strings
	4	*
	5	* Copyright 31 August 2008 James Bottomley
16c7fa05	6	* Copyright (C) 2013, Intel Corporation
3c9f3681	7	*/
b9f28d86	8	#include <linux/bug.h>
3c9f3681 JB	9	#include <linux/kernel.h>
3c9f3681 JB	10	#include <linux/math64.h>
8bc3bcc9	11	#include <linux/export.h>
16c7fa05	12	#include <linux/ctype.h>
c8250381	13	#include <linux/errno.h>
21985319 KC	14	#include <linux/fs.h>
21985319 KC	15	#include <linux/limits.h>
0d044328	16	#include <linux/mm.h>
b53f27e4	17	#include <linux/slab.h>
c8250381	18	#include <linux/string.h>
3c9f3681 JB	19	#include <linux/string_helpers.h>
	20
	21	/**
	22	* string_get_size - get the size in the specified units
b9f28d86 JB	23	* @size: The size to be converted in blocks
b9f28d86 JB	24	* @blk_size: Size of the block (use 1 for size in bytes)
3c9f3681 JB	25	* @units: units to use (powers of 1000 or 1024)
	26	* @buf: buffer to format to
	27	* @len: length of buffer
	28	*
	29	* This function returns a string formatted to 3 significant figures
d1214c65 RV	30	* giving the size in the required units. @buf should have room for
d1214c65 RV	31	* at least 9 bytes and will always be zero terminated.
3c9f3681 JB	32	*
3c9f3681 JB	33	*/
b9f28d86	34	void string_get_size(u64 size, u64 blk_size, const enum string_size_units units,
d1214c65	35	char *buf, int len)
3c9f3681	36	{
142cda5d	37	static const char *const units_10[] = {
b9f28d86	38	"B", "kB", "MB", "GB", "TB", "PB", "EB", "ZB", "YB"
142cda5d MK	39	};
142cda5d MK	40	static const char *const units_2[] = {
b9f28d86	41	"B", "KiB", "MiB", "GiB", "TiB", "PiB", "EiB", "ZiB", "YiB"
142cda5d MK	42	};
	43	static const char const const units_str[] = {
	44	[STRING_UNITS_10] = units_10,
3c9f3681 JB	45	[STRING_UNITS_2] = units_2,
3c9f3681 JB	46	};
68aecfb9	47	static const unsigned int divisor[] = {
3c9f3681 JB	48	[STRING_UNITS_10] = 1000,
	49	[STRING_UNITS_2] = 1024,
	50	};
564b026f JB	51	static const unsigned int rounding[] = { 500, 50, 5 };
	52	int i = 0, j;
	53	u32 remainder = 0, sf_cap;
3c9f3681	54	char tmp[8];
b9f28d86	55	const char *unit;
3c9f3681 JB	56
3c9f3681 JB	57	tmp[0] = '\0';
564b026f JB	58
	59	if (blk_size == 0)
	60	size = 0;
	61	if (size == 0)
b9f28d86	62	goto out;
3c9f3681	63
564b026f JB	64	/* This is Napier's algorithm. Reduce the original block size to
	65	*
	66	* coefficient * divisor[units]^i
	67	*
	68	* we do the reduction so both coefficients are just under 32 bits so
	69	* that multiplying them together won't overflow 64 bits and we keep
	70	* as much precision as possible in the numbers.
	71	*
	72	* Note: it's safe to throw away the remainders here because all the
	73	* precision is in the coefficients.
	74	*/
	75	while (blk_size >> 32) {
	76	do_div(blk_size, divisor[units]);
b9f28d86 JB	77	i++;
	78	}
	79
564b026f JB	80	while (size >> 32) {
564b026f JB	81	do_div(size, divisor[units]);
b9f28d86	82	i++;
b9f28d86 JB	83	}
b9f28d86 JB	84
564b026f JB	85	/* now perform the actual multiplication keeping i as the sum of the
564b026f JB	86	* two logarithms */
b9f28d86	87	size *= blk_size;
3c9f3681	88
564b026f	89	/* and logarithmically reduce it until it's just under the divisor */
b9f28d86 JB	90	while (size >= divisor[units]) {
	91	remainder = do_div(size, divisor[units]);
	92	i++;
3c9f3681 JB	93	}
3c9f3681 JB	94
564b026f JB	95	/* work out in j how many digits of precision we need from the
564b026f JB	96	* remainder */
b9f28d86 JB	97	sf_cap = size;
	98	for (j = 0; sf_cap*10 < 1000; j++)
	99	sf_cap *= 10;
	100
564b026f JB	101	if (units == STRING_UNITS_2) {
	102	/* express the remainder as a decimal. It's currently the
	103	* numerator of a fraction whose denominator is
	104	* divisor[units], which is 1 << 10 for STRING_UNITS_2 */
b9f28d86	105	remainder *= 1000;
564b026f JB	106	remainder >>= 10;
	107	}
	108
	109	/* add a 5 to the digit below what will be printed to ensure
	110	* an arithmetical round up and carry it through to size */
	111	remainder += rounding[j];
	112	if (remainder >= 1000) {
	113	remainder -= 1000;
	114	size += 1;
	115	}
	116
	117	if (j) {
b9f28d86 JB	118	snprintf(tmp, sizeof(tmp), ".%03u", remainder);
	119	tmp[j+1] = '\0';
	120	}
	121
	122	out:
	123	if (i >= ARRAY_SIZE(units_2))
	124	unit = "UNK";
	125	else
	126	unit = units_str[units][i];
	127
84b9fbed	128	snprintf(buf, len, "%u%s %s", (u32)size,
b9f28d86	129	tmp, unit);
3c9f3681 JB	130	}
3c9f3681 JB	131	EXPORT_SYMBOL(string_get_size);
16c7fa05 AS	132
	133	static bool unescape_space(char src, char dst)
	134	{
	135	char p = dst, q = src;
	136
	137	switch (*q) {
	138	case 'n':
	139	*p = '\n';
	140	break;
	141	case 'r':
	142	*p = '\r';
	143	break;
	144	case 't':
	145	*p = '\t';
	146	break;
	147	case 'v':
	148	*p = '\v';
	149	break;
	150	case 'f':
	151	*p = '\f';
	152	break;
	153	default:
	154	return false;
	155	}
	156	*dst += 1;
	157	*src += 1;
	158	return true;
	159	}
	160
	161	static bool unescape_octal(char src, char dst)
	162	{
	163	char p = dst, q = src;
	164	u8 num;
	165
	166	if (isodigit(*q) == 0)
	167	return false;
	168
	169	num = (*q++) & 7;
	170	while (num < 32 && isodigit(q) && (q - src < 3)) {
	171	num <<= 3;
	172	num += (*q++) & 7;
	173	}
	174	*p = num;
	175	*dst += 1;
	176	*src = q;
	177	return true;
	178	}
	179
	180	static bool unescape_hex(char src, char dst)
	181	{
	182	char p = dst, q = src;
	183	int digit;
	184	u8 num;
	185
	186	if (*q++ != 'x')
	187	return false;
	188
	189	num = digit = hex_to_bin(*q++);
	190	if (digit < 0)
	191	return false;
	192
	193	digit = hex_to_bin(*q);
	194	if (digit >= 0) {
	195	q++;
196	num = (num << 4) \| digit;
197	}
198	*p = num;
199	*dst += 1;
200	*src = q;
201	return true;
202	}
203
204	static bool unescape_special(char src, char dst)
205	{
206	char p = dst, q = src;
207
208	switch (*q) {
209	case '\"':
210	*p = '\"';
211	break;
212	case '\\':
213	*p = '\\';
214	break;
215	case 'a':
216	*p = '\a';
217	break;
218	case 'e':
219	*p = '\e';
220	break;
221	default:
222	return false;
223	}
224	*dst += 1;
225	*src += 1;
226	return true;
227	}
228
d295634e AS	229	/**
	230	* string_unescape - unquote characters in the given string
	231	* @src: source buffer (escaped)
	232	* @dst: destination buffer (unescaped)
	233	* @size: size of the destination buffer (0 to unlimit)
b4658cdd JC	234	* @flags: combination of the flags.
	235	*
	236	* Description:
	237	* The function unquotes characters in the given string.
	238	*
	239	* Because the size of the output will be the same as or less than the size of
	240	* the input, the transformation may be performed in place.
	241	*
	242	* Caller must provide valid source and destination pointers. Be aware that
	243	* destination buffer will always be NULL-terminated. Source string must be
	244	* NULL-terminated as well. The supported flags are::
	245	*
	246	* UNESCAPE_SPACE:
d295634e AS	247	* '\f' - form feed
	248	* '\n' - new line
	249	* '\r' - carriage return
	250	* '\t' - horizontal tab
	251	* '\v' - vertical tab
b4658cdd	252	* UNESCAPE_OCTAL:
d295634e	253	* '\NNN' - byte with octal value NNN (1 to 3 digits)
b4658cdd	254	* UNESCAPE_HEX:
d295634e	255	* '\xHH' - byte with hexadecimal value HH (1 to 2 digits)
b4658cdd	256	* UNESCAPE_SPECIAL:
d295634e AS	257	* '\"' - double quote
	258	* '\\' - backslash
	259	* '\a' - alert (BEL)
	260	* '\e' - escape
b4658cdd	261	* UNESCAPE_ANY:
d295634e AS	262	* all previous together
d295634e AS	263	*
d295634e AS	264	* Return:
	265	* The amount of the characters processed to the destination buffer excluding
	266	* trailing '\0' is returned.
	267	*/
16c7fa05 AS	268	int string_unescape(char src, char dst, size_t size, unsigned int flags)
	269	{
	270	char *out = dst;
	271
	272	while (*src && --size) {
	273	if (src[0] == '\\' && src[1] != '\0' && size > 1) {
	274	src++;
	275	size--;
	276
	277	if (flags & UNESCAPE_SPACE &&
	278	unescape_space(&src, &out))
	279	continue;
	280
	281	if (flags & UNESCAPE_OCTAL &&
	282	unescape_octal(&src, &out))
	283	continue;
	284
	285	if (flags & UNESCAPE_HEX &&
	286	unescape_hex(&src, &out))
	287	continue;
	288
	289	if (flags & UNESCAPE_SPECIAL &&
	290	unescape_special(&src, &out))
	291	continue;
	292
	293	*out++ = '\\';
	294	}
	295	out++ = src++;
	296	}
	297	*out = '\0';
	298
	299	return out - dst;
	300	}
	301	EXPORT_SYMBOL(string_unescape);
c8250381	302
3aeddc7d	303	static bool escape_passthrough(unsigned char c, char *dst, char end)
c8250381 AS	304	{
	305	char out = dst;
	306
3aeddc7d RV	307	if (out < end)
	308	*out = c;
	309	*dst = out + 1;
	310	return true;
c8250381 AS	311	}
c8250381 AS	312
3aeddc7d	313	static bool escape_space(unsigned char c, char *dst, char end)
c8250381 AS	314	{
	315	char out = dst;
	316	unsigned char to;
	317
c8250381 AS	318	switch (c) {
	319	case '\n':
	320	to = 'n';
	321	break;
	322	case '\r':
	323	to = 'r';
	324	break;
	325	case '\t':
	326	to = 't';
	327	break;
	328	case '\v':
	329	to = 'v';
	330	break;
	331	case '\f':
	332	to = 'f';
	333	break;
	334	default:
3aeddc7d	335	return false;
c8250381 AS	336	}
c8250381 AS	337
3aeddc7d RV	338	if (out < end)
	339	*out = '\\';
	340	++out;
	341	if (out < end)
	342	*out = to;
	343	++out;
c8250381	344
3aeddc7d RV	345	*dst = out;
3aeddc7d RV	346	return true;
c8250381 AS	347	}
c8250381 AS	348
3aeddc7d	349	static bool escape_special(unsigned char c, char *dst, char end)
c8250381 AS	350	{
	351	char out = dst;
	352	unsigned char to;
	353
c8250381 AS	354	switch (c) {
	355	case '\\':
	356	to = '\\';
	357	break;
	358	case '\a':
	359	to = 'a';
	360	break;
	361	case '\e':
	362	to = 'e';
	363	break;
	364	default:
3aeddc7d	365	return false;
c8250381 AS	366	}
c8250381 AS	367
3aeddc7d RV	368	if (out < end)
	369	*out = '\\';
	370	++out;
	371	if (out < end)
	372	*out = to;
	373	++out;
c8250381	374
3aeddc7d RV	375	*dst = out;
3aeddc7d RV	376	return true;
c8250381 AS	377	}
c8250381 AS	378
3aeddc7d	379	static bool escape_null(unsigned char c, char *dst, char end)
c8250381 AS	380	{
	381	char out = dst;
	382
c8250381	383	if (c)
3aeddc7d	384	return false;
c8250381	385
3aeddc7d RV	386	if (out < end)
	387	*out = '\\';
	388	++out;
	389	if (out < end)
	390	*out = '0';
	391	++out;
c8250381	392
3aeddc7d RV	393	*dst = out;
3aeddc7d RV	394	return true;
c8250381 AS	395	}
c8250381 AS	396
3aeddc7d	397	static bool escape_octal(unsigned char c, char *dst, char end)
c8250381 AS	398	{
	399	char out = dst;
	400
3aeddc7d RV	401	if (out < end)
	402	*out = '\\';
	403	++out;
	404	if (out < end)
	405	*out = ((c >> 6) & 0x07) + '0';
	406	++out;
	407	if (out < end)
	408	*out = ((c >> 3) & 0x07) + '0';
	409	++out;
	410	if (out < end)
	411	*out = ((c >> 0) & 0x07) + '0';
	412	++out;
c8250381 AS	413
c8250381 AS	414	*dst = out;
3aeddc7d	415	return true;
c8250381 AS	416	}
c8250381 AS	417
3aeddc7d	418	static bool escape_hex(unsigned char c, char *dst, char end)
c8250381 AS	419	{
	420	char out = dst;
	421
3aeddc7d RV	422	if (out < end)
	423	*out = '\\';
	424	++out;
	425	if (out < end)
	426	*out = 'x';
	427	++out;
	428	if (out < end)
	429	*out = hex_asc_hi(c);
	430	++out;
	431	if (out < end)
	432	*out = hex_asc_lo(c);
	433	++out;
c8250381 AS	434
c8250381 AS	435	*dst = out;
3aeddc7d	436	return true;
c8250381 AS	437	}
	438
	439	/**
	440	* string_escape_mem - quote characters in the given memory buffer
	441	* @src: source buffer (unescaped)
	442	* @isz: source buffer size
	443	* @dst: destination buffer (escaped)
	444	* @osz: destination buffer size
b4658cdd JC	445	* @flags: combination of the flags
	446	* @only: NULL-terminated string containing characters used to limit
	447	* the selected escape class. If characters are included in @only
	448	* that would not normally be escaped by the classes selected
	449	* in @flags, they will be copied to @dst unescaped.
	450	*
	451	* Description:
	452	* The process of escaping byte buffer includes several parts. They are applied
	453	* in the following sequence.
	454	*
62519b88	455	* 1. The character is not matched to the one from @only string and thus
b4658cdd	456	* must go as-is to the output.
a0809783 AS	457	* 2. The character is matched to the printable or ASCII class, if asked,
a0809783 AS	458	* and in case of match it passes through to the output.
b4658cdd JC	459	* 3. The character is checked if it falls into the class given by @flags.
	460	* %ESCAPE_OCTAL and %ESCAPE_HEX are going last since they cover any
	461	* character. Note that they actually can't go together, otherwise
	462	* %ESCAPE_HEX will be ignored.
	463	*
	464	* Caller must provide valid source and destination pointers. Be aware that
	465	* destination buffer will not be NULL-terminated, thus caller have to append
a0809783	466	* it if needs. The supported flags are::
b4658cdd	467	*
d89a3f73	468	* %ESCAPE_SPACE: (special white space, not space itself)
c8250381 AS	469	* '\f' - form feed
	470	* '\n' - new line
	471	* '\r' - carriage return
	472	* '\t' - horizontal tab
	473	* '\v' - vertical tab
	474	* %ESCAPE_SPECIAL:
	475	* '\\' - backslash
	476	* '\a' - alert (BEL)
	477	* '\e' - escape
	478	* %ESCAPE_NULL:
	479	* '\0' - null
	480	* %ESCAPE_OCTAL:
	481	* '\NNN' - byte with octal value NNN (3 digits)
	482	* %ESCAPE_ANY:
	483	* all previous together
	484	* %ESCAPE_NP:
a0809783	485	* escape only non-printable characters, checked by isprint()
c8250381 AS	486	* %ESCAPE_ANY_NP:
	487	* all previous together
	488	* %ESCAPE_HEX:
	489	* '\xHH' - byte with hexadecimal value HH (2 digits)
a0809783 AS	490	* %ESCAPE_NA:
	491	* escape only non-ascii characters, checked by isascii()
	492	*
	493	* One notable caveat, the %ESCAPE_NP and %ESCAPE_NA have higher priority
	494	* than the rest of the flags (%ESCAPE_NP is higher than %ESCAPE_NA).
	495	* It doesn't make much sense to use either of them without %ESCAPE_OCTAL
	496	* or %ESCAPE_HEX, because they cover most of the other character classes.
c8250381 AS	497	*
c8250381 AS	498	* Return:
41416f23 RV	499	* The total size of the escaped output that would be generated for
	500	* the given input and flags. To check whether the output was
	501	* truncated, compare the return value to osz. There is room left in
	502	* dst for a '\0' terminator if and only if ret < osz.
c8250381	503	*/
41416f23	504	int string_escape_mem(const char src, size_t isz, char dst, size_t osz,
b40bdb7f	505	unsigned int flags, const char *only)
c8250381	506	{
41416f23	507	char *p = dst;
3aeddc7d	508	char *end = p + osz;
b40bdb7f	509	bool is_dict = only && *only;
c8250381 AS	510
	511	while (isz--) {
	512	unsigned char c = *src++;
	513
	514	/*
	515	* Apply rules in the following sequence:
b40bdb7f	516	* - the @only string is supplied and does not contain a
c8250381	517	* character under question
62519b88 AS	518	* - the character is printable, when @flags has
62519b88 AS	519	* %ESCAPE_NP bit set
a0809783 AS	520	* - the character is ASCII, when @flags has
a0809783 AS	521	* %ESCAPE_NA bit set
c8250381 AS	522	* - the character doesn't fall into a class of symbols
	523	* defined by given @flags
	524	* In these cases we just pass through a character to the
	525	* output buffer.
	526	*/
7e5969ae AS	527	if (is_dict && !strchr(only, c) &&
	528	escape_passthrough(c, &p, end))
	529	continue;
62519b88	530
7e5969ae AS	531	if (isprint(c) &&
	532	flags & ESCAPE_NP && escape_passthrough(c, &p, end))
	533	continue;
3aeddc7d	534
a0809783 AS	535	if (isascii(c) &&
	536	flags & ESCAPE_NA && escape_passthrough(c, &p, end))
	537	continue;
	538
7e5969ae AS	539	if (flags & ESCAPE_SPACE && escape_space(c, &p, end))
7e5969ae AS	540	continue;
3aeddc7d	541
7e5969ae AS	542	if (flags & ESCAPE_SPECIAL && escape_special(c, &p, end))
7e5969ae AS	543	continue;
c8250381	544
7e5969ae AS	545	if (flags & ESCAPE_NULL && escape_null(c, &p, end))
7e5969ae AS	546	continue;
3aeddc7d	547
7e5969ae AS	548	/* ESCAPE_OCTAL and ESCAPE_HEX always go last */
	549	if (flags & ESCAPE_OCTAL && escape_octal(c, &p, end))
	550	continue;
	551
	552	if (flags & ESCAPE_HEX && escape_hex(c, &p, end))
	553	continue;
c8250381	554
3aeddc7d	555	escape_passthrough(c, &p, end);
c8250381 AS	556	}
c8250381 AS	557
41416f23	558	return p - dst;
c8250381 AS	559	}
c8250381 AS	560	EXPORT_SYMBOL(string_escape_mem);
b53f27e4	561
ea053e16 BF	562	int string_escape_mem_ascii(const char src, size_t isz, char dst,
	563	size_t osz)
	564	{
	565	char *p = dst;
	566	char *end = p + osz;
	567
	568	while (isz--) {
	569	unsigned char c = *src++;
	570
	571	if (!isprint(c) \|\| !isascii(c) \|\| c == '"' \|\| c == '\\')
	572	escape_hex(c, &p, end);
	573	else
	574	escape_passthrough(c, &p, end);
	575	}
	576
	577	return p - dst;
	578	}
	579	EXPORT_SYMBOL(string_escape_mem_ascii);
	580
b53f27e4 KC	581	/*
	582	* Return an allocated string that has been escaped of special characters
	583	* and double quotes, making it safe to log in quotes.
	584	*/
	585	char kstrdup_quotable(const char src, gfp_t gfp)
	586	{
	587	size_t slen, dlen;
	588	char *dst;
	589	const int flags = ESCAPE_HEX;
	590	const char esc[] = "\f\n\r\t\v\a\e\\\"";
	591
	592	if (!src)
	593	return NULL;
	594	slen = strlen(src);
	595
	596	dlen = string_escape_mem(src, slen, NULL, 0, flags, esc);
	597	dst = kmalloc(dlen + 1, gfp);
	598	if (!dst)
	599	return NULL;
	600
	601	WARN_ON(string_escape_mem(src, slen, dst, dlen, flags, esc) != dlen);
	602	dst[dlen] = '\0';
	603
	604	return dst;
	605	}
	606	EXPORT_SYMBOL_GPL(kstrdup_quotable);
0d044328 KC	607
	608	/*
	609	* Returns allocated NULL-terminated string containing process
	610	* command line, with inter-argument NULLs replaced with spaces,
	611	* and other special characters escaped.
	612	*/
	613	char kstrdup_quotable_cmdline(struct task_struct task, gfp_t gfp)
	614	{
	615	char buffer, quoted;
	616	int i, res;
	617
0ee931c4	618	buffer = kmalloc(PAGE_SIZE, GFP_KERNEL);
0d044328 KC	619	if (!buffer)
	620	return NULL;
	621
	622	res = get_cmdline(task, buffer, PAGE_SIZE - 1);
	623	buffer[res] = '\0';
	624
	625	/* Collapse trailing NULLs, leave res pointing to last non-NULL. */
	626	while (--res >= 0 && buffer[res] == '\0')
	627	;
	628
	629	/* Replace inter-argument NULLs. */
	630	for (i = 0; i <= res; i++)
	631	if (buffer[i] == '\0')
	632	buffer[i] = ' ';
	633
	634	/* Make sure result is printable. */
	635	quoted = kstrdup_quotable(buffer, gfp);
	636	kfree(buffer);
	637	return quoted;
	638	}
	639	EXPORT_SYMBOL_GPL(kstrdup_quotable_cmdline);
21985319 KC	640
	641	/*
	642	* Returns allocated NULL-terminated string containing pathname,
	643	* with special characters escaped, able to be safely logged. If
	644	* there is an error, the leading character will be "<".
	645	*/
	646	char kstrdup_quotable_file(struct file file, gfp_t gfp)
	647	{
	648	char temp, pathname;
	649
	650	if (!file)
	651	return kstrdup("<unknown>", gfp);
	652
	653	/* We add 11 spaces for ' (deleted)' to be appended */
0ee931c4	654	temp = kmalloc(PATH_MAX + 11, GFP_KERNEL);
21985319 KC	655	if (!temp)
	656	return kstrdup("<no_memory>", gfp);
	657
	658	pathname = file_path(file, temp, PATH_MAX + 11);
	659	if (IS_ERR(pathname))
	660	pathname = kstrdup("<too_long>", gfp);
	661	else
	662	pathname = kstrdup_quotable(pathname, gfp);
	663
	664	kfree(temp);
	665	return pathname;
	666	}
	667	EXPORT_SYMBOL_GPL(kstrdup_quotable_file);
0fd16012 BG	668
	669	/**
	670	* kfree_strarray - free a number of dynamically allocated strings contained
	671	* in an array and the array itself
	672	*
	673	* @array: Dynamically allocated array of strings to free.
	674	* @n: Number of strings (starting from the beginning of the array) to free.
	675	*
	676	* Passing a non-NULL @array and @n == 0 as well as NULL @array are valid
	677	* use-cases. If @array is NULL, the function does nothing.
	678	*/
	679	void kfree_strarray(char **array, size_t n)
	680	{
	681	unsigned int i;
	682
	683	if (!array)
	684	return;
	685
	686	for (i = 0; i < n; i++)
	687	kfree(array[i]);
	688	kfree(array);
	689	}
	690	EXPORT_SYMBOL_GPL(kfree_strarray);