Page MenuHomeFreeBSD
Differential D26214

vm_ooffset_t is now unsigned
ClosedPublic
Actions

Authored by vangyzen on Aug 27 2020, 3:28 PM.
Tags
None
Referenced Files
F103047874: D26214.id76285.diff
Wed, Nov 20, 6:12 AM
F103047487: D26214.id76325.diff
Wed, Nov 20, 6:05 AM
Unknown Object (File)
Mon, Nov 4, 3:13 AM
Unknown Object (File)
Mon, Nov 4, 3:13 AM
Unknown Object (File)
Mon, Nov 4, 2:50 AM
Unknown Object (File)
Oct 11 2024, 3:10 AM
Unknown Object (File)
Oct 8 2024, 12:53 AM
Unknown Object (File)
Oct 6 2024, 1:25 AM
View All 100 Files
Subscribers
badger
dab
imp

Details

Reviewers
kib
alc
markj
Commits
rS365886: vm_ooffset_t is now unsigned
Summary

vm_ooffset_t is now unsigned. Remove some tests for negative values,
or make other adjustments accordingly.

Test Plan

Dead code is hard to test.

Diff Detail

Repository
rS FreeBSD src repository - subversion
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

vangyzen created this revision.Aug 27 2020, 3:28 PM
Herald added subscribers: dab, badger. · View Herald TranscriptAug 27 2020, 3:28 PM
vangyzen requested review of this revision.Aug 27 2020, 3:28 PM
Harbormaster completed remote builds in B33196: Diff 76285.Aug 27 2020, 3:28 PM
vangyzen added inline comments.Aug 27 2020, 3:30 PM
sys/kern/vfs_vnops.c
2620–2630 ↗(On Diff #76285)

I'm not sure how to update this comment. Suggestions welcome.

kib added inline comments.Aug 27 2020, 4:33 PM
sys/fs/tmpfs/tmpfs_subr.c
178 ↗(On Diff #76285)

I think this should be size_t, and before subtraction, the check should be made to return 0.

sys/kern/vfs_vnops.c
2620–2630 ↗(On Diff #76285)

I believe the comment is still valid, it depends on the vm_ooffset_t being type-punned for off_t. Check below (foff > OFF_MAX-size) ensures that we do not require fs to mmap pass OFF_MAX.

kib added reviewers: alc, markj.Aug 27 2020, 4:33 PM
vangyzen updated this revision to Diff 76325.Aug 28 2020, 8:25 PM
  • CR feedback
Harbormaster completed remote builds in B33221: Diff 76325.Aug 28 2020, 8:25 PM
vangyzen marked 2 inline comments as done.Aug 28 2020, 8:26 PM
vangyzen added inline comments.
sys/kern/vfs_vnops.c
2620–2630 ↗(On Diff #76285)

Makes sense. Thank you.

kib added inline comments.Aug 28 2020, 8:40 PM
sys/fs/tmpfs/tmpfs_subr.c
183 ↗(On Diff #76325)

You perform two reads of tmpfs_pages_reserved. If user changes the sysctl meanime, you might get overflow on the second calculation.

vangyzen updated this revision to Diff 76433.Aug 31 2020, 8:09 PM
vangyzen marked an inline comment as done.
  • fix TOCTOU bug using tmpfs_pages_reserved
Harbormaster completed remote builds in B33267: Diff 76433.Aug 31 2020, 8:09 PM
kib accepted this revision.Aug 31 2020, 9:00 PM
This revision is now accepted and ready to land.Aug 31 2020, 9:00 PM
markj accepted this revision.Aug 31 2020, 9:53 PM
markj added inline comments.
sys/fs/tmpfs/tmpfs_subr.c
183 ↗(On Diff #76325)

To make this pedantically correct I believe you have to use atomic_load_long(&tmpfs_pages_reserved). There is nothing preventing the compiler from loading tmpfs_pages_reserved twice.

Closed by commit rS365886: vm_ooffset_t is now unsigned (authored by vangyzen). · Explain WhySep 18 2020, 4:48 PM
This revision was automatically updated to reflect the committed changes.
vangyzen added a commit: rS365886: vm_ooffset_t is now unsigned.
Herald added a subscriber: imp. · View Herald TranscriptSep 18 2020, 4:48 PM

Revision Contents
Changeset List

PathSize
head/
sys/
dev/
fb/
2 lines
ksyms/
2 lines
vt/
hw/
fb/
2 lines
fs/
tmpfs/
12 lines
kern/
2 lines
2 lines
vm/
3 lines

Diff 77187

View Options

head/sys/dev/fb/fbd.c

Loading...
View Options

head/sys/dev/ksyms/ksyms.c

Loading...
View Options

head/sys/dev/vt/hw/fb/vt_fb.c

Loading...
View Options

head/sys/fs/tmpfs/tmpfs_subr.c

Loading...
View Options

head/sys/kern/uipc_shm.c

Loading...
View Options

head/sys/kern/vfs_vnops.c

Loading...
View Options

head/sys/vm/vnode_pager.c

Loading...