Page MenuHomeFreeBSD
Differential D23694

sysv_sem: fix the loop that compacts sem array on semaphores removal.
ClosedPublic
Actions

Authored by kib on Feb 15 2020, 11:11 AM.
Tags
None
Referenced Files
Unknown Object (File)
Tue, Mar 11, 8:35 AM
Unknown Object (File)
Tue, Feb 25, 1:09 AM
Unknown Object (File)
Dec 11 2024, 5:27 PM
Unknown Object (File)
Nov 10 2024, 2:22 PM
Unknown Object (File)
Oct 5 2024, 9:05 PM
Unknown Object (File)
Oct 1 2024, 6:34 PM
Unknown Object (File)
Sep 18 2024, 12:54 PM
Unknown Object (File)
Sep 5 2024, 4:45 AM
View All 35 Files
Subscribers
imp
pho

Details

Reviewers
markj
Commits
rS357984: sem_remove(): fix the loop that compacts sem array on semaphores removal.
rS357983: sem_remove(): add some asserts.
rS357982: Use designated initializers for seminfo.
Summary

As written now, it copies random kernel memory from beyond the bounds of the array.

While there, use designated initialisers for seminfo, and add assert in sem_remove() that sema is sane. [These will be separate commits].

Reported and tested by: pho

Diff Detail

Repository
rS FreeBSD src repository - subversion
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Revision Contents
Changeset List

PathSize
head/
sys/
kern/
18 lines

Diff 68378

View Options

head/sys/kern/sysv_sem.c

Show First 20 LinesShow All 83 Lines▼ Show 20 Lines
#define U8_C(x) x ## U #define U8_C(x) x ## U
#define S16_C(x) x #define S16_C(x) x
#define U16_C(x) x ## U #define U16_C(x) x ## U
#define S32_C(x) x #define S32_C(x) x
#define U32_C(x) x ## U #define U32_C(x) x ## U
#define S64_C(x) x ## LL #define S64_C(x) x ## LL
#define U64_C(x) x ## ULL #define U64_C(x) x ## ULL
/*
* BUILD_BUG_ON() can happen inside functions where _Static_assert() does not
* seem to work. Use old-schoold-ish CTASSERT from before commit
* a3085588a88fa58eb5b1eaae471999e1995a29cf but also make sure we do not
* end up with an unused typedef or variable. The compiler should optimise
* it away entirely.
*/
#define _O_CTASSERT(x) _O__CTASSERT(x, __LINE__)
#define _O__CTASSERT(x, y) _O___CTASSERT(x, y)
#define _O___CTASSERT(x, y) while (0) { \
hselaskyUnsubmitted
Not Done
Inline Actions

Should this be enclosed with while (0) and not "do { } while (0) "?

hselasky: Should this be enclosed with while (0) and not "do { } while (0) "?
bzAuthorUnsubmitted
Done
Inline Actions

Would a while (0) { } be optimized out without ever entering the block because it can never happen?

bz: Would a while (0) { } be optimized out without ever entering the block because it can never…
hselaskyUnsubmitted
Not Done
Inline Actions

Yes, with -O2, but after parsing the code. So I believe any asserts will trigger.

hselasky: Yes, with -O2, but after parsing the code. So I believe any asserts will trigger.
typedef char __assert_line_ ## y[(x) ? 1 : -1]; \
__assert_line_ ## y _x; \
_x[0] = '\0'; \
}
#define BUILD_BUG() do { CTASSERT(0); } while (0) #define BUILD_BUG() do { CTASSERT(0); } while (0)
#define BUILD_BUG_ON(x) CTASSERT(!(x)) #define BUILD_BUG_ON(x) _O_CTASSERT(!(x))
#define BUILD_BUG_ON_MSG(x, msg) BUILD_BUG_ON(x) #define BUILD_BUG_ON_MSG(x, msg) BUILD_BUG_ON(x)
#define BUILD_BUG_ON_NOT_POWER_OF_2(x) BUILD_BUG_ON(!powerof2(x)) #define BUILD_BUG_ON_NOT_POWER_OF_2(x) BUILD_BUG_ON(!powerof2(x))
#define BUILD_BUG_ON_INVALID(expr) while (0) { (void)(expr); } #define BUILD_BUG_ON_INVALID(expr) while (0) { (void)(expr); }
extern const volatile int lkpi_build_bug_on_zero; extern const volatile int lkpi_build_bug_on_zero;
#define BUILD_BUG_ON_ZERO(x) ((x) ? lkpi_build_bug_on_zero : 0) #define BUILD_BUG_ON_ZERO(x) ((x) ? lkpi_build_bug_on_zero : 0)
#define BUG() panic("BUG at %s:%d", __FILE__, __LINE__) #define BUG() panic("BUG at %s:%d", __FILE__, __LINE__)
▲ Show 20 LinesShow All 538 LinesShow Last 20 Lines