This is the mail archive of the libc-alpha@sourceware.org mailing list for the glibc project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: [PATCH v9] y2038: Introduce the __ASSUME_TIME64_SYSCALLS define

From: Rich Felker <dalias at libc dot org>
To: Zack Weinberg <zackw at panix dot com>
Cc: Joseph Myers <joseph at codesourcery dot com>, Alistair Francis <alistair dot francis at wdc dot com>, GNU C Library <libc-alpha at sourceware dot org>, Lukasz Majewski <lukma at denx dot de>, Alistair Francis <alistair23 at gmail dot com>
Date: Fri, 30 Aug 2019 13:09:40 -0400
Subject: Re: [PATCH v9] y2038: Introduce the __ASSUME_TIME64_SYSCALLS define
References: <20190827173015.24370-1-alistair.francis@wdc.com> <CAKCAbMiYinyQ_Gdcu94rPCm6PNw6hdq+H_dhzeADa89v2z13-A@mail.gmail.com> <alpine.DEB.2.21.1908271926030.31674@digraph.polyomino.org.uk> <20190830133818.GI9017@brightrain.aerifal.cx> <alpine.DEB.2.21.1908301630420.5568@digraph.polyomino.org.uk> <CAKCAbMjHbcM=8MvLd2CXA=EyT_iDanzsATMLuiMC=wtgTqOr+A@mail.gmail.com>

On Fri, Aug 30, 2019 at 01:03:16PM -0400, Zack Weinberg wrote:
> On Fri, Aug 30, 2019 at 12:37 PM Joseph Myers <joseph@codesourcery.com> wrote:
> > On Fri, 30 Aug 2019, Rich Felker wrote:
> > > To clarify, none of the timespec ones "exactly match" -- the suffixed
> > > syscalls on 32-bit require filling the padding around tv_nsec, whereas
> >
> > What do you mean by "require filling the padding"?  I thought the
> > conclusion in the kernel was that it dealt with zeroing the padding
> ....
> 
> The kernel should always explicitly clear all of the padding in any
> structure it writes to user space, anything else risks leaking kernel
> data (e.g. the compiler decides it can use a 64-bit load and store to
> copy from the kernel's struct timespec to the user space struct
> timespec because those high bits are don't-care in the destination
> .... oops, the previous allocation had a kernel pointer in that 64-bit
> slot and we just exposed the KASLR base).

The issue is the other direction, when timespecs are passed to the
kernel (usually for read-only access), e.g. providing a timeout.

Rich

Follow-Ups:
- Re: [PATCH v9] y2038: Introduce the __ASSUME_TIME64_SYSCALLS define
  - From: Zack Weinberg

References:
- [PATCH v9] y2038: Introduce the __ASSUME_TIME64_SYSCALLS define
  - From: Alistair Francis
- Re: [PATCH v9] y2038: Introduce the __ASSUME_TIME64_SYSCALLS define
  - From: Zack Weinberg
- Re: [PATCH v9] y2038: Introduce the __ASSUME_TIME64_SYSCALLS define
  - From: Joseph Myers
- Re: [PATCH v9] y2038: Introduce the __ASSUME_TIME64_SYSCALLS define
  - From: Rich Felker
- Re: [PATCH v9] y2038: Introduce the __ASSUME_TIME64_SYSCALLS define
  - From: Joseph Myers
- Re: [PATCH v9] y2038: Introduce the __ASSUME_TIME64_SYSCALLS define
  - From: Zack Weinberg

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]