Don't bother with redoing rw_verify_area() from default_file_splice_from() default_file_splice_from() ends up calling vfs_write() (via very convoluted callchain). It's an overkill, since we already have done rw_verify_area() in the caller by the time we call vfs_write() we are under set_fs(KERNEL_DS), so access_ok() is also pointless. Add a new helper (__kernel_write()), use it instead of kernel_write() in there. Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>

commit: 06ae43f34bcc07a0b6be8bf78a1c895bcd12c839 [log] [tgz]
author: Al Viro <viro@zeniv.linux.org.uk> Wed Mar 20 13:19:30 2013 -0400
committer: Al Viro <viro@zeniv.linux.org.uk> Thu Mar 21 13:11:11 2013 -0400
tree: b74fe0c7e9370dfed956a1607dd10282c9ba1096
parent: f6161aa153581da4a3867a2d1a7caf4be19b6ec9 [diff] [blame]
diff --git a/fs/splice.c b/fs/splice.c
index 718bd00..29e394e 100644
--- a/fs/splice.c
+++ b/fs/splice.c

@@ -31,6 +31,7 @@
 #include <linux/security.h>
 #include <linux/gfp.h>
 #include <linux/socket.h>
+#include "internal.h"
 
 /*
  * Attempt to steal a page from a pipe buffer. This should perhaps go into
@@ -1048,9 +1049,10 @@
 {
 	int ret;
 	void *data;
+	loff_t tmp = sd->pos;
 
 	data = buf->ops->map(pipe, buf, 0);
-	ret = kernel_write(sd->u.file, data + buf->offset, sd->len, sd->pos);
+	ret = __kernel_write(sd->u.file, data + buf->offset, sd->len, &tmp);
 	buf->ops->unmap(pipe, buf, data);
 
 	return ret;
commit	06ae43f34bcc07a0b6be8bf78a1c895bcd12c839	[log] [tgz]
author	Al Viro <viro@zeniv.linux.org.uk>	Wed Mar 20 13:19:30 2013 -0400
committer	Al Viro <viro@zeniv.linux.org.uk>	Thu Mar 21 13:11:11 2013 -0400
tree	b74fe0c7e9370dfed956a1607dd10282c9ba1096
parent	f6161aa153581da4a3867a2d1a7caf4be19b6ec9 [diff] [blame]