This is the mail archive of the libc-alpha@sourceware.org mailing list for the glibc project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: [PATCH] Fix i386 memmove issue [BZ #22644]

From: Szabolcs Nagy <szabolcs dot nagy at arm dot com>
To: Florian Weimer <fweimer at redhat dot com>, Andreas Schwab <schwab at suse dot de>, Andrew Senkevich <andrew dot n dot senkevich at gmail dot com>
Cc: nd at arm dot com, "H.J. Lu" <hjl dot tools at gmail dot com>, libc-alpha <libc-alpha at sourceware dot org>, Max Horn <max at quendi dot de>, thomas at grindinggear dot com
Date: Mon, 19 Mar 2018 14:25:29 +0000
Subject: Re: [PATCH] Fix i386 memmove issue [BZ #22644]
Nodisclaimer: True
References: <CAMXFM3s5b2a6o_CMS0cJ35oE3SuJUHssqLAUY94LSZhEEtG71A@mail.gmail.com> <mvm606ts2w6.fsf@suse.de> <CAMXFM3vqw7eiUT1XYVZWyW=eJkgEpjNc74A8mbmdKuR_hywN3w@mail.gmail.com> <CAMe9rOo4Ys=ScEKKnuv5XvYqTHjvFxSkXjch8ya8sX7dfP+q4Q@mail.gmail.com> <CAMXFM3vA=-LSK5VtKhhbs0g9faBdG0GjoAbNb6OPEbSt8dAA7A@mail.gmail.com> <mvmlgeojjmi.fsf@suse.de> <597954a1-85da-e524-1454-27c46af57413@redhat.com>
Spamdiagnosticmetadata: NSPM
Spamdiagnosticoutput: 1:99

On 19/03/18 13:17, Florian Weimer wrote:

On 03/19/2018 02:11 PM, Andreas Schwab wrote:

On Mär 19 2018, Andrew Senkevich<andrew.n.senkevich@gmail.com>  wrote:

+static void
+do_test2 (void)
+{
+  uint32_t num = 0x20000000;
+  uint32_t * large_buf;
+
+  large_buf = mmap ((void*)0x70000000, num, PROT_READ | PROT_WRITE,
+     MAP_PRIVATE | MAP_ANON | MAP_FIXED, -1, 0);

Since you are using MAP_FIXED this may overwrite an existing mapping.


Leading to a hard-to-debug crash, maybe sporadically due to ASLR.  Yes, I have this concern as well.

There was a long, long Linux thread about a non-overriding MAP_FIXED variant, but as far as I can see, this has not been merged. Maybe it wouldhave helped here.


i thought not using MAP_FIXED is the 'non-overriding MAP_FIXED variant'

if you use an address hint then the kernel will use that unless
it's not available and you can check the result.

Follow-Ups:
- Re: [PATCH] Fix i386 memmove issue [BZ #22644]
  - From: Florian Weimer

References:
- Re: [PATCH] Fix i386 memmove issue [BZ #22644]
  - From: Andrew Senkevich
- Re: [PATCH] Fix i386 memmove issue [BZ #22644]
  - From: H.J. Lu
- Re: [PATCH] Fix i386 memmove issue [BZ #22644]
  - From: Andrew Senkevich
- Re: [PATCH] Fix i386 memmove issue [BZ #22644]
  - From: Andreas Schwab
- Re: [PATCH] Fix i386 memmove issue [BZ #22644]
  - From: Florian Weimer

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]