projects / apple / xnu.git / blame
| Commit | Line | Data |
|---|---|---|
| 1c79356b | 1 | /* |
| 5ba3f43e | 2 | * Copyright (c) 2016 Apple Inc. All rights reserved. |
| 5d5c5d0d | 3 | * |
| 2d21ac55 | 4 | * @APPLE_OSREFERENCE_LICENSE_HEADER_START@ |
| 5ba3f43e | 5 | * |
| 2d21ac55 A |
6 | * This file contains Original Code and/or Modifications of Original Code |
| 7 | * as defined in and that are subject to the Apple Public Source License | |
| 8 | * Version 2.0 (the 'License'). You may not use this file except in | |
| 9 | * compliance with the License. The rights granted to you under the License | |
| 10 | * may not be used to create, or enable the creation or redistribution of, | |
| 11 | * unlawful or unlicensed copies of an Apple operating system, or to | |
| 12 | * circumvent, violate, or enable the circumvention or violation of, any | |
| 13 | * terms of an Apple operating system software license agreement. | |
| 5ba3f43e | 14 | * |
| 2d21ac55 A |
15 | * Please obtain a copy of the License at |
| 16 | * http://www.opensource.apple.com/apsl/ and read it before using this file. | |
| 5ba3f43e | 17 | * |
| 2d21ac55 A |
18 | * The Original Code and all software distributed under the License are |
| 19 | * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER | |
| 8f6c56a5 A |
20 | * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES, |
| 21 | * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY, | |
| 2d21ac55 A |
22 | * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT. |
| 23 | * Please see the License for the specific language governing rights and | |
| 24 | * limitations under the License. | |
| 5ba3f43e | 25 | * |
| 2d21ac55 | 26 | * @APPLE_OSREFERENCE_LICENSE_HEADER_END@ |
| 1c79356b | 27 | */ |
| 1c79356b | 28 | |
| 5ba3f43e A |
29 | #include <string.h> |
| 30 | #include <sys/errno.h> | |
| 31 | #include <stdint.h> | |
| 1c79356b | 32 | |
| 5ba3f43e | 33 | extern void *secure_memset(void *, int, size_t); |
| 1c79356b | 34 | |
| 5ba3f43e A |
35 | /* |
| 36 | * The memset_s function copies the value c into the first n bytes | |
| 37 | * pointed by s. No more than smax bytes will be copied. | |
| 38 | * | |
| 39 | * In contrast to the memset function, calls to memset_s will never | |
| 40 | * be ''optimised away'' by a compiler, ensuring the memory copy | |
| 41 | * even if s is not accessed anymore after this call. | |
| 42 | */ | |
| 43 | int | |
| 44 | memset_s(void *s, size_t smax, int c, size_t n) | |
| 1c79356b | 45 | { |
| 5ba3f43e | 46 | int err = 0; |
| 1c79356b | 47 | |
| 5ba3f43e A |
48 | if (s == NULL) return EINVAL; |
| 49 | if (smax > RSIZE_MAX) return E2BIG; | |
| 50 | if (n > smax) { | |
| 51 | n = smax; | |
| 52 | err = EOVERFLOW; | |
| 53 | } | |
| 1c79356b | 54 | |
| 5ba3f43e A |
55 | /* |
| 56 | * secure_memset is defined in assembly, we therefore | |
| 57 | * expect that the compiler will not inline the call. | |
| 58 | */ | |
| 59 | secure_memset(s, c, n); | |
| 1c79356b | 60 | |
| 5ba3f43e | 61 | return err; |
| 1c79356b | 62 | } |
| 91447636 | 63 |