Page MenuHomeFreeBSD

posix timers: Improve the overrun calculation

Authored by markj on Mar 5 2021, 4:43 PM.
Referenced Files
Unknown Object (File)
Mon, Feb 24, 4:41 PM
Unknown Object (File)
Thu, Feb 20, 12:37 PM
Unknown Object (File)
Thu, Feb 13, 7:07 PM
Unknown Object (File)
Jan 24 2025, 4:09 PM
Unknown Object (File)
Jan 18 2025, 5:48 PM
Unknown Object (File)
Jan 18 2025, 5:10 PM
Unknown Object (File)
Jan 15 2025, 12:08 AM
Unknown Object (File)
Jan 14 2025, 11:50 PM



timer_settime(2) may be used to configure a timeout in the past. If
the timer is also periodic, we also try to compute the number of timer
overruns that occurred between the initial timeout and the time at which
the timer fired. This is done in a loop which iterates once per period
between the initial timeout and now. If the period is small and the
initial timeout was a long time ago, this loop can take forever to run,
so the system is effectively DOSed.

Replace the loop with a more direct calculation of
(now - initial timeout) / period to compute the number of overruns.

Reported by: syzkaller

Diff Detail

rS FreeBSD src repository - subversion
Lint Passed
No Test Coverage
Build Status
Buildable 37653
Build 34542: arc lint + arc unit

Event Timeline

markj requested review of this revision.Mar 5 2021, 4:43 PM

but now - value can overflow if unchecked


same for it_overrun + overruns

Both overflows are not UB but I think we want to avoid them nonetheless for correctness, since we check for other overflow there?


Which overflow do you mean exactly? We know that now >= value here.


Yes, this comment is nonsensical. But I still think it_overrun+overruns can overflow

Try to handle overflow when computing the 64-bit number of overruns.

This revision is now accepted and ready to land.Mar 7 2021, 3:38 PM
This revision was automatically updated to reflect the committed changes.