kasan: prefix global functions with kasan_

void __kasan_unpoison_range(const void *address, size_t size)

{

	unpoison_range(address, size);

	kasan_unpoison(address, size);

}

#if CONFIG_KASAN_STACK

{

	void *base = task_stack_page(task);

	unpoison_range(base, THREAD_SIZE);

	kasan_unpoison(base, THREAD_SIZE);

}

/* Unpoison the stack for the current task beyond a watermark sp value. */

	 */

	void *base = (void *)((unsigned long)watermark & ~(THREAD_SIZE - 1));

	unpoison_range(base, watermark - base);

	kasan_unpoison(base, watermark - base);

}

#endif /* CONFIG_KASAN_STACK */

	if (unlikely(PageHighMem(page)))

		return;

	tag = random_tag();

	tag = kasan_random_tag();

	for (i = 0; i < (1 << order); i++)

		page_kasan_tag_set(page + i, tag);

	unpoison_range(page_address(page), PAGE_SIZE << order);

	kasan_unpoison(page_address(page), PAGE_SIZE << order);

}

void __kasan_free_pages(struct page *page, unsigned int order)

{

	if (likely(!PageHighMem(page)))

		poison_range(page_address(page),

				PAGE_SIZE << order,

		kasan_poison(page_address(page), PAGE_SIZE << order,

			     KASAN_FREE_PAGE);

}

	for (i = 0; i < compound_nr(page); i++)

		page_kasan_tag_reset(page + i);

	poison_range(page_address(page), page_size(page),

	kasan_poison(page_address(page), page_size(page),

		     KASAN_KMALLOC_REDZONE);

}

void __kasan_unpoison_object_data(struct kmem_cache *cache, void *object)

{

	unpoison_range(object, cache->object_size);

	kasan_unpoison(object, cache->object_size);

}

void __kasan_poison_object_data(struct kmem_cache *cache, void *object)

{

	poison_range(object, cache->object_size, KASAN_KMALLOC_REDZONE);

	kasan_poison(object, cache->object_size, KASAN_KMALLOC_REDZONE);

}

/*

	 * set, assign a tag when the object is being allocated (init == false).

	 */

	if (!cache->ctor && !(cache->flags & SLAB_TYPESAFE_BY_RCU))

		return init ? KASAN_TAG_KERNEL : random_tag();

		return init ? KASAN_TAG_KERNEL : kasan_random_tag();

	/* For caches that either have a constructor or SLAB_TYPESAFE_BY_RCU: */

#ifdef CONFIG_SLAB

	 * For SLUB assign a random tag during slab creation, otherwise reuse

	 * the already assigned tag.

	 */

	return init ? random_tag() : get_tag(object);

	return init ? kasan_random_tag() : get_tag(object);

#endif

}

	if (unlikely(cache->flags & SLAB_TYPESAFE_BY_RCU))

		return false;

	if (check_invalid_free(tagged_object)) {

	if (kasan_check_invalid_free(tagged_object)) {

		kasan_report_invalid_free(tagged_object, ip);

		return true;

	}

	poison_range(object, cache->object_size, KASAN_KMALLOC_FREE);

	kasan_poison(object, cache->object_size, KASAN_KMALLOC_FREE);

	if (!kasan_stack_collection_enabled())

		return false;

	kasan_set_free_info(cache, object, tag);

	return quarantine_put(cache, object);

	return kasan_quarantine_put(cache, object);

}

bool __kasan_slab_free(struct kmem_cache *cache, void *object, unsigned long ip)

			kasan_report_invalid_free(ptr, ip);

			return;

		}

		poison_range(ptr, page_size(page), KASAN_FREE_PAGE);

		kasan_poison(ptr, page_size(page), KASAN_FREE_PAGE);

	} else {

		____kasan_slab_free(page->slab_cache, ptr, ip, false);

	}

	u8 tag;

	if (gfpflags_allow_blocking(flags))

		quarantine_reduce();

		kasan_quarantine_reduce();

	if (unlikely(object == NULL))

		return NULL;

	tag = assign_tag(cache, object, false, keep_tag);

	/* Tag is ignored in set_tag without CONFIG_KASAN_SW/HW_TAGS */

	unpoison_range(set_tag(object, tag), size);

	poison_range((void *)redzone_start, redzone_end - redzone_start,

	kasan_unpoison(set_tag(object, tag), size);

	kasan_poison((void *)redzone_start, redzone_end - redzone_start,

			   KASAN_KMALLOC_REDZONE);

	if (kasan_stack_collection_enabled())

	unsigned long redzone_end;

	if (gfpflags_allow_blocking(flags))

		quarantine_reduce();

		kasan_quarantine_reduce();

	if (unlikely(ptr == NULL))

		return NULL;

				KASAN_GRANULE_SIZE);

	redzone_end = (unsigned long)ptr + page_size(page);

	unpoison_range(ptr, size);

	poison_range((void *)redzone_start, redzone_end - redzone_start,

	kasan_unpoison(ptr, size);

	kasan_poison((void *)redzone_start, redzone_end - redzone_start,

		     KASAN_PAGE_REDZONE);

	return (void *)ptr;

	return memory_is_poisoned_n(addr, size);

}

static __always_inline bool check_memory_region_inline(unsigned long addr,

static __always_inline bool check_region_inline(unsigned long addr,

						size_t size, bool write,

						unsigned long ret_ip)

{

	return !kasan_report(addr, size, write, ret_ip);

}

bool check_memory_region(unsigned long addr, size_t size, bool write,

bool kasan_check_range(unsigned long addr, size_t size, bool write,

					unsigned long ret_ip)

{

	return check_memory_region_inline(addr, size, write, ret_ip);

	return check_region_inline(addr, size, write, ret_ip);

}

bool check_invalid_free(void *addr)

bool kasan_check_invalid_free(void *addr)

{

	s8 shadow_byte = READ_ONCE(*(s8 *)kasan_mem_to_shadow(addr));

void kasan_cache_shrink(struct kmem_cache *cache)

{

	quarantine_remove_cache(cache);

	kasan_quarantine_remove_cache(cache);

}

void kasan_cache_shutdown(struct kmem_cache *cache)

{

	if (!__kmem_cache_empty(cache))

		quarantine_remove_cache(cache);

		kasan_quarantine_remove_cache(cache);

}

static void register_global(struct kasan_global *global)

{

	size_t aligned_size = round_up(global->size, KASAN_GRANULE_SIZE);

	unpoison_range(global->beg, global->size);

	kasan_unpoison(global->beg, global->size);

	poison_range(global->beg + aligned_size,

	kasan_poison(global->beg + aligned_size,

		     global->size_with_redzone - aligned_size,

		     KASAN_GLOBAL_REDZONE);

}

#define DEFINE_ASAN_LOAD_STORE(size)					\

	void __asan_load##size(unsigned long addr)			\

	{								\

		check_memory_region_inline(addr, size, false, _RET_IP_);\

		check_region_inline(addr, size, false, _RET_IP_);	\

	}								\

	EXPORT_SYMBOL(__asan_load##size);				\

	__alias(__asan_load##size)					\

	EXPORT_SYMBOL(__asan_load##size##_noabort);			\

	void __asan_store##size(unsigned long addr)			\

	{								\

		check_memory_region_inline(addr, size, true, _RET_IP_);	\

		check_region_inline(addr, size, true, _RET_IP_);	\

	}								\

	EXPORT_SYMBOL(__asan_store##size);				\

	__alias(__asan_store##size)					\

void __asan_loadN(unsigned long addr, size_t size)

{

	check_memory_region(addr, size, false, _RET_IP_);

	kasan_check_range(addr, size, false, _RET_IP_);

}

EXPORT_SYMBOL(__asan_loadN);

void __asan_storeN(unsigned long addr, size_t size)

{

	check_memory_region(addr, size, true, _RET_IP_);

	kasan_check_range(addr, size, true, _RET_IP_);

}

EXPORT_SYMBOL(__asan_storeN);

	WARN_ON(!IS_ALIGNED(addr, KASAN_ALLOCA_REDZONE_SIZE));

	unpoison_range((const void *)(addr + rounded_down_size),

	kasan_unpoison((const void *)(addr + rounded_down_size),

			size - rounded_down_size);

	poison_range(left_redzone, KASAN_ALLOCA_REDZONE_SIZE,

	kasan_poison(left_redzone, KASAN_ALLOCA_REDZONE_SIZE,

		     KASAN_ALLOCA_LEFT);

	poison_range(right_redzone, padding_size + KASAN_ALLOCA_REDZONE_SIZE,

	kasan_poison(right_redzone, padding_size + KASAN_ALLOCA_REDZONE_SIZE,

		     KASAN_ALLOCA_RIGHT);

}

EXPORT_SYMBOL(__asan_alloca_poison);

	if (unlikely(!stack_top || stack_top > stack_bottom))

		return;

	unpoison_range(stack_top, stack_bottom - stack_top);

	kasan_unpoison(stack_top, stack_bottom - stack_top);

}

EXPORT_SYMBOL(__asan_allocas_unpoison);

}

/**

 * check_memory_region - Check memory region, and report if invalid access.

 * kasan_check_range - Check memory region, and report if invalid access.

 * @addr: the accessed address

 * @size: the accessed size

 * @write: true if access is a write access

 * @ret_ip: return address

 * @return: true if access was valid, false if invalid

 */

bool check_memory_region(unsigned long addr, size_t size, bool write,

bool kasan_check_range(unsigned long addr, size_t size, bool write,

				unsigned long ret_ip);

#else /* CONFIG_KASAN_GENERIC || CONFIG_KASAN_SW_TAGS */

#endif /* CONFIG_KASAN_GENERIC || CONFIG_KASAN_SW_TAGS */

#if defined(CONFIG_KASAN_SW_TAGS) || defined(CONFIG_KASAN_HW_TAGS)

void print_tags(u8 addr_tag, const void *addr);

void kasan_print_tags(u8 addr_tag, const void *addr);

#else

static inline void print_tags(u8 addr_tag, const void *addr) { }

static inline void kasan_print_tags(u8 addr_tag, const void *addr) { }

#endif

void *find_first_bad_addr(void *addr, size_t size);

const char *get_bug_type(struct kasan_access_info *info);

void metadata_fetch_row(char *buffer, void *row);

void *kasan_find_first_bad_addr(void *addr, size_t size);

const char *kasan_get_bug_type(struct kasan_access_info *info);

void kasan_metadata_fetch_row(char *buffer, void *row);

#if defined(CONFIG_KASAN_GENERIC) && CONFIG_KASAN_STACK

void print_address_stack_frame(const void *addr);

void kasan_print_address_stack_frame(const void *addr);

#else

static inline void print_address_stack_frame(const void *addr) { }

static inline void kasan_print_address_stack_frame(const void *addr) { }

#endif

bool kasan_report(unsigned long addr, size_t size,

#if defined(CONFIG_KASAN_GENERIC) && \

	(defined(CONFIG_SLAB) || defined(CONFIG_SLUB))

bool quarantine_put(struct kmem_cache *cache, void *object);

void quarantine_reduce(void);

void quarantine_remove_cache(struct kmem_cache *cache);

bool kasan_quarantine_put(struct kmem_cache *cache, void *object);

void kasan_quarantine_reduce(void);

void kasan_quarantine_remove_cache(struct kmem_cache *cache);

#else

static inline bool quarantine_put(struct kmem_cache *cache, void *object) { return false; }

static inline void quarantine_reduce(void) { }

static inline void quarantine_remove_cache(struct kmem_cache *cache) { }

static inline bool kasan_quarantine_put(struct kmem_cache *cache, void *object) { return false; }

static inline void kasan_quarantine_reduce(void) { }

static inline void kasan_quarantine_remove_cache(struct kmem_cache *cache) { }

#endif

#ifndef arch_kasan_set_tag

#endif /* CONFIG_KASAN_HW_TAGS */

#ifdef CONFIG_KASAN_SW_TAGS

u8 random_tag(void);

u8 kasan_random_tag(void);

#elif defined(CONFIG_KASAN_HW_TAGS)

static inline u8 random_tag(void) { return hw_get_random_tag(); }

static inline u8 kasan_random_tag(void) { return hw_get_random_tag(); }

#else

static inline u8 random_tag(void) { return 0; }

static inline u8 kasan_random_tag(void) { return 0; }

#endif

#ifdef CONFIG_KASAN_HW_TAGS

static inline void poison_range(const void *address, size_t size, u8 value)

static inline void kasan_poison(const void *address, size_t size, u8 value)

{

	hw_set_mem_tag_range(kasan_reset_tag(address),

			round_up(size, KASAN_GRANULE_SIZE), value);

}

static inline void unpoison_range(const void *address, size_t size)

static inline void kasan_unpoison(const void *address, size_t size)

{

	hw_set_mem_tag_range(kasan_reset_tag(address),

			round_up(size, KASAN_GRANULE_SIZE), get_tag(address));

}

static inline bool check_invalid_free(void *addr)

static inline bool kasan_check_invalid_free(void *addr)

{

	u8 ptr_tag = get_tag(addr);

	u8 mem_tag = hw_get_mem_tag(addr);

#else /* CONFIG_KASAN_HW_TAGS */

void poison_range(const void *address, size_t size, u8 value);

void unpoison_range(const void *address, size_t size);

bool check_invalid_free(void *addr);

void kasan_poison(const void *address, size_t size, u8 value);

void kasan_unpoison(const void *address, size_t size);

bool kasan_check_invalid_free(void *addr);

#endif /* CONFIG_KASAN_HW_TAGS */

	qlist_init(q);

}

bool quarantine_put(struct kmem_cache *cache, void *object)

bool kasan_quarantine_put(struct kmem_cache *cache, void *object)

{

	unsigned long flags;

	struct qlist_head *q;

	/*

	 * Note: irq must be disabled until after we move the batch to the

	 * global quarantine. Otherwise quarantine_remove_cache() can miss

	 * some objects belonging to the cache if they are in our local temp

	 * list. quarantine_remove_cache() executes on_each_cpu() at the

	 * beginning which ensures that it either sees the objects in per-cpu

	 * lists or in the global quarantine.

	 * global quarantine. Otherwise kasan_quarantine_remove_cache() can

	 * miss some objects belonging to the cache if they are in our local

	 * temp list. kasan_quarantine_remove_cache() executes on_each_cpu()

	 * at the beginning which ensures that it either sees the objects in

	 * per-cpu lists or in the global quarantine.

	 */

	local_irq_save(flags);

	return true;

}

void quarantine_reduce(void)

void kasan_quarantine_reduce(void)

{

	size_t total_size, new_quarantine_size, percpu_quarantines;

	unsigned long flags;

		return;

	/*

	 * srcu critical section ensures that quarantine_remove_cache()

	 * srcu critical section ensures that kasan_quarantine_remove_cache()

	 * will not miss objects belonging to the cache while they are in our

	 * local to_free list. srcu is chosen because (1) it gives us private

	 * grace period domain that does not interfere with anything else,

}

/* Free all quarantined objects belonging to cache. */

void quarantine_remove_cache(struct kmem_cache *cache)

void kasan_quarantine_remove_cache(struct kmem_cache *cache)

{

	unsigned long flags, i;

	struct qlist_head to_free = QLIST_INIT;

	/*

	 * Must be careful to not miss any objects that are being moved from

	 * per-cpu list to the global quarantine in quarantine_put(),

	 * nor objects being freed in quarantine_reduce(). on_each_cpu()

	 * per-cpu list to the global quarantine in kasan_quarantine_put(),

	 * nor objects being freed in kasan_quarantine_reduce(). on_each_cpu()

	 * achieves the first goal, while synchronize_srcu() achieves the

	 * second.

	 */

static void print_error_description(struct kasan_access_info *info)

{

	pr_err("BUG: KASAN: %s in %pS\n",

		get_bug_type(info), (void *)info->ip);

		kasan_get_bug_type(info), (void *)info->ip);

	if (info->access_size)

		pr_err("%s of size %zu at addr %px by task %s/%d\n",

			info->is_write ? "Write" : "Read", info->access_size,

		dump_page(page, "kasan: bad access detected");

	}

	print_address_stack_frame(addr);

	kasan_print_address_stack_frame(addr);

}

static bool meta_row_is_guilty(const void *row, const void *addr)

		 * function, because generic functions may try to

		 * access kasan mapping for the passed address.

		 */

		metadata_fetch_row(&metadata[0], row);

		kasan_metadata_fetch_row(&metadata[0], row);

		print_hex_dump(KERN_ERR, buffer,

			DUMP_PREFIX_NONE, META_BYTES_PER_ROW, 1,

	start_report(&flags);

	pr_err("BUG: KASAN: double-free or invalid-free in %pS\n", (void *)ip);

	print_tags(tag, object);

	kasan_print_tags(tag, object);

	pr_err("\n");

	print_address_description(object, tag);

	pr_err("\n");

	info.access_addr = tagged_addr;

	if (addr_has_metadata(untagged_addr))

		info.first_bad_addr = find_first_bad_addr(tagged_addr, size);

		info.first_bad_addr =

			kasan_find_first_bad_addr(tagged_addr, size);

	else

		info.first_bad_addr = untagged_addr;

	info.access_size = size;

	print_error_description(&info);

	if (addr_has_metadata(untagged_addr))

		print_tags(get_tag(tagged_addr), info.first_bad_addr);

		kasan_print_tags(get_tag(tagged_addr), info.first_bad_addr);

	pr_err("\n");

	if (addr_has_metadata(untagged_addr)) {