| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 18 Jan 2018 14:40:13 +0100
From: Arnd Bergmann <arnd@...db.de>
To: Finn Thain <fthain@...egraphics.com.au>
Cc: Adaptec OEM Raid Solutions <aacraid@...ptec.com>,
"James E.J. Bottomley" <jejb@...ux.vnet.ibm.com>,
"Martin K. Petersen" <martin.petersen@...cle.com>,
Rasmus Villemoes <linux@...musvillemoes.dk>,
Yang Hongyang <yanghy@...fujitsu.com>,
Hannes Reinecke <hare@...e.de>,
Mike Christie <michaelc@...wisc.edu>,
Christoph Hellwig <hch@....de>,
linux-scsi <linux-scsi@...r.kernel.org>,
Linux Kernel Mailing List <linux-kernel@...r.kernel.org>
Subject: Re: [PATCH] [RESEND] scsi: ips: fix firmware timestamps for 32-bit
On Thu, Jan 18, 2018 at 10:35 AM, Finn Thain <fthain@...egraphics.com.au> wrote:
> On Wed, 17 Jan 2018, Arnd Bergmann wrote:
>
>> do_gettimeofday() is deprecated since it will stop working in 2038 on
>> 32-bit platforms. The firmware interface here actually supports times
>> until year 25500, so we should use longer timestamps.
>>
>
> I think that reasoning is flawed. If the firmware supports large year
> values, then fine. The firmware interface is another story.
>
> If you are simply trying to get rid of the old API, I think you should
> just say that.
It's both: I have no reason to believe that the firmware breaks in
2038. We can't know the range of the supported centuries, so it
could break in e.g. 2099, 9999, or 25599 (I should have written
that last number instead of 25500), but we know what the interface
supports, and if the firmware breaks earlier, then it can be fixed
while keeping that interface.
In particular, 64-bit architectures work fine already for as long as
the firmware supports, it's only 32-bit architectures that break
early.
I'll try to explain that better in the changelog.
>> /****************************************************************************/
>> static void
>> -ips_fix_ffdc_time(ips_ha_t * ha, ips_scb_t * scb, time_t current_time)
>> +ips_fix_ffdc_time(ips_ha_t * ha, ips_scb_t * scb, time64_t current_time)
>
> Does this conversion assume that current_time is always positive? I don't
> have a problem with that (the existing code seems to fail otherwise) but
> maybe it should be mentioned in the commit log.
current_time can never be negative, the kernel probably won't even boot
if that were the case, as too many things rely on a positive time. The resulting
numbers in ips_fix_ffdc_time() shouldn't change as far as I can tell (except the
bug you found below).
>> - year = IPS_EPOCH_YEAR;
>> - while (days < 0 || days >= year_lengths[yleap = IPS_IS_LEAP_YEAR(year)]) {
>> - int newy;
>> -
>> - newy = year + (days / IPS_DAYS_NORMAL_YEAR);
>> - if (days < 0)
>> - --newy;
>> - days -= (newy - year) * IPS_DAYS_NORMAL_YEAR +
>> - IPS_NUM_LEAP_YEARS_THROUGH(newy - 1) -
>> - IPS_NUM_LEAP_YEARS_THROUGH(year - 1);
>
> These IPS_ time macros are all unused after this patch except
> IPS_SECS_8HOURS so the definitions should probably be removed.
Ok, will do.
>> - year = newy;
>> - }
>> -
>> - scb->cmd.ffdc.yearH = year / 100;
>> - scb->cmd.ffdc.yearL = year % 100;
>> -
>> - for (i = 0; days >= month_lengths[i][yleap]; ++i)
>> - days -= month_lengths[i][yleap];
>> + time64_to_tm(current_time, 0, &tm);
>>
>> - scb->cmd.ffdc.month = i + 1;
>> - scb->cmd.ffdc.day = days + 1;
>> + scb->cmd.ffdc.hour = tm.tm_hour;
>> + scb->cmd.ffdc.minute = tm.tm_min;
>> + scb->cmd.ffdc.second = tm.tm_sec;
>> + scb->cmd.ffdc.yearH = tm.tm_year / 100 + 1900;
>
> That looks wrong to me. If tm_year is in units of years not centuries,
> shouldn't that be,
Good catch, thanks for the review!
Arnd
Powered by blists - more mailing lists