Commit Graph

1264 Commits

Author SHA1 Message Date
Rich Felker
fcaec912ed changes to kernel sigaction struct handling in preparation for mips port 2012-07-11 02:44:14 -04:00
Rich Felker
e864a29090 make dynamic linker depend on -DSHARED not -fPIC
if libc.a is compiled PIC for use in static PIE code, this should not
cause the dynamic linker (which still does not support static-linked
main program) to be built into libc.a.
2012-07-11 01:47:30 -04:00
Rich Felker
0420b87446 fix lots of breakage on dlopen, mostly with explicit pathnames
most importantly, the name for such libs was being set from an
uninitialized buffer. also, shortname always had an initial '/'
character, making it useless for looking up already-loaded libraries
by name, and thus causing repeated searches through the library path.

major changes now:

- shortname is the base name for library lookups with no explicit
  pathname. it's initially clear for libraries loaded with an explicit
  pathname (and for the main program), but will be set if the same
  library (detected via inodes match) is later found by a search.

- exact name match is never used to identify libraries loaded with an
  explicit pathname. in this case, there's no explicit search, so we
  can just stat the file and check for inode match.
2012-07-11 01:41:20 -04:00
Rich Felker
bd1cf09c37 support -mfpmath=387 on x86_64
apparently somebody wants this for something... and it doesn't hurt.
2012-07-10 01:18:40 -04:00
Rich Felker
59c4ead16a fix wrong value of FLT_EVAL_METHOD for x86_64 2012-07-10 00:59:58 -04:00
Rich Felker
8bbc3be4b4 make arm syscalls (still non-inline) more efficient
no need to pass zero for unused arguments; just omit them.
2012-07-08 21:32:45 -04:00
Rich Felker
a3bdcd9376 remove little-endian assumption from arm atomic.h
this hidden endian dependency had left big endian arm badly broken.
2012-07-08 00:05:08 -04:00
Rich Felker
d93e028c6b fix dlsym RTLD_NEXT support
previously this was being handled the same as a library-specific,
dependency-order lookup on the next library in the global chain, which
is likely to be utterly meaningless. instead the lookup needs to be in
the global namespace, but omitting the initial portion of the global
library chain up through the calling library.
2012-07-07 16:32:27 -04:00
Rich Felker
920baab81f putw is supposed to return 0 (not the value written) on success
this is not a standard but it's the traditional behavior and it's more
useful because the caller can reliably detect errors.
2012-07-04 12:21:22 -04:00
Rich Felker
98eddc6776 make sure getw/putw agree with prototypes by defining _GNU_SOURCE 2012-07-04 12:18:46 -04:00
Rich Felker
25b88f0810 add prototypes for getw/putw 2012-07-04 12:18:04 -04:00
Rich Felker
2121b8a44f configure: only use -ffloat-store on i386
this option is expensive and only used on old gcc's that lack
-fexcess-precision=standed, but it's not needed on non-i386 archs
where floating point does not have excess precision anyway.

if musl ever supports m68k, i think it will need to be special-cased
too. i'm not aware of any other archs with excess precision.
2012-07-03 23:53:05 -04:00
Rich Felker
d6c0efe106 jmp_buf overhaul fixing several issues
on arm, the location of the saved-signal-mask flag and mask were off
by one between sigsetjmp and siglongjmp, causing incorrect behavior
restoring the signal mask. this is because the siglongjmp code assumed
an extra slot was in the non-sig jmp_buf for the flag, but arm did not
have this. now, the extra slot is removed for all archs since it was
useless.

also, arm eabi requires jmp_buf to have 8-byte alignment. we achieve
that using long long as the type rather than with non-portable gcc
attribute tags.
2012-07-03 20:07:33 -04:00
Rich Felker
e6129e6d83 fix sigsetjmp on arm (needs asm)
no idea why gcc refuses to compile the C code to use a tail call, but
it's best to use asm anyway so we don't have to rely on the quality of
the compiler's optimizations for correct code.
2012-07-02 22:49:25 -04:00
Rich Felker
8e26a591d0 fix missing function declarations for __stdio_exit 2012-07-02 22:48:56 -04:00
Rich Felker
007c03f84f fix missing prototype and simplify sincosl on ld64 archs 2012-07-02 20:25:28 -04:00
Rich Felker
fe2df4ad3e fix invalid implicit pointer conversion in ld64 modfl 2012-07-02 20:22:50 -04:00
Rich Felker
cdf51506ce replace old and ugly crypt implementation
the new version is largely the work of Solar Designer, with minor
changes for integration with musl. compared to the old code, text size
is reduced by about 7k, stack space usage by about 70k, and
performance is greatly improved by avoiding expensive calculation of
constant tables on each run.

this version also adds support for extended des-based password hashes,
which allow for unlimited key (password) length and configurable
iteration counts.

i've also published the interface for crypt_r in a new crypt.h header.
especially since this is not a standard interface, i did not feel
compelled to match the glibc abi for the crypt_data structure. the
glibc structure is way too big to allocate on the stack; in fact it's
so big that the first usage may cause the main thread to exceed its
pre-committed stack size of 128k and thus could cause the program to
crash even on systems with overcommit disabled. the only legitimate
use of crypt_data for crypt_r is to store the hash string to return,
so i've reserved 256 bytes, which should be more than sufficient
(longest known password hashes are ~60 characters, and beyond that is
possibly even exceeding some implementations' passwd file field size
limit).
2012-06-29 00:56:37 -04:00
Rich Felker
9abab94b21 fix arm crti/crtn code
lr must be saved because init/fini-section code from the compiler
clobbers it. this was not a problem when i tested without gcc's
crtbegin/crtend files present, but with them, musl on arm fails to
work (infinite loop in _init).
2012-06-25 16:06:09 -04:00
Rich Felker
ec820f1262 release notes for 0.9.2 2012-06-24 21:00:57 -04:00
Rich Felker
9cf9c39e48 add process_vm_readv and process_vm_writev syscall wrappers
based on a patch submitted by Kristian L. <email@thexception.net>
2012-06-23 21:38:47 -04:00
Rich Felker
213db3e3fa update syscall defs to latest kernel ones
patch submitted by Kristian L. <email@thexception.net>
2012-06-23 21:16:44 -04:00
Rich Felker
4e8b0938d9 proper error handling for fcntl F_GETOWN on modern kernels
on old kernels, there's no way to detect errors; we must assume
negative syscall return values are pgrp ids. but if the F_GETOWN_EX
fcntl works, we can get a reliable answer.
2012-06-20 22:16:47 -04:00
nsz
e5fb6820a4 math: fix fma bug on x86 (found by Bruno Haible with gnulib)
The long double adjustment was wrong:
The usual check is
  mant_bits & 0x7ff == 0x400
before doing a mant_bits++ or mant_bits-- adjustment since
this is the only case when rounding an inexact ld80 into
double can go wrong. (only in nearest rounding mode)

After such a check the ++ and -- is ok (the mantissa will end
in 0x401 or 0x3ff).

fma is a bit different (we need to add 3 numbers with correct
rounding: hi_xy + lo_xy + z so we should survive two roundings
at different places without precision loss)

The adjustment in fma only checks for zero low bits
  mant_bits & 0x3ff == 0
this way the adjusted value is correct when rounded to
double or *less* precision.
(this is an important piece in the fma puzzle)

Unfortunately in this case the -- is not a correct adjustment
because mant_bits might underflow so further checks are needed
and this was the source of the bug.
2012-06-20 23:25:58 +02:00
Rich Felker
ac4fb51dde fix broken wcwidth tables
unicode char data has both "W" and "F" wide types and the old table
only included the "W" ones. this omitted U+3000 (ideographic space)
and all the wide-ascii, etc.
2012-06-20 15:22:03 -04:00
Rich Felker
fad231b960 support ld80 pseudo-denormal invalid bit patterns; treat them as nan
this is silly, but it makes apps that read binary junk and interpret
it as ld80 "safer", and it gets gnulib to stop replacing printf...
2012-06-20 15:15:10 -04:00
Rich Felker
c21a19d5a5 fix ptsname_r to conform to the upcoming posix requirements
it should return the error code rather than 0/-1 and setting errno.
2012-06-20 15:11:27 -04:00
Rich Felker
cea106fb89 fix fwrite return value when full write does not succeed 2012-06-20 15:04:47 -04:00
Rich Felker
1af8c25504 avoid cancellation in pclose
at the point pclose might receive and act on cancellation, it has
already invalidated the FILE passed to it. thus, per musl's QOI
guarantees about cancellation and resource allocation/deallocation,
it's not a candidate for cancellation.

if it were required to be a cancellation point by posix, we would have
to switch the order of deallocation, but somehow still close the pipe
in order to trigger the child process to exit. i looked into doing
this, but the logic gets ugly, and i'm not sure the semantics are
conformant, so i'd rather just leave it alone unless there's a need to
change it.
2012-06-20 14:50:29 -04:00
Rich Felker
9799560f79 fix invalid memory access in pclose 2012-06-20 14:47:34 -04:00
Rich Felker
9c21f4342c make popen cancellation-safe
close was the only cancellation point called from popen, but it left
popen with major resource leaks if any call to close got cancelled.
the easiest, cheapest fix is just to use a non-cancellable close
function.
2012-06-20 14:39:50 -04:00
Rich Felker
f305467aad popen: handle issues with fd0/1 being closed
also check for failure of dup2 and abort the child rather than
reading/writing the wrong file.
2012-06-20 14:32:48 -04:00
Rich Felker
b3d7d062af duplocale: don't crash when called with LC_GLOBAL_LOCALE
posix has resolved to add this usage; for now, we just avoid writing
anything to the new locale object since it's not used anyway.
2012-06-20 13:48:57 -04:00
Rich Felker
f313a16224 make strerror_r behave nicer on failure
if the buffer is too short, at least return a partial string. this is
helpful if the caller is lazy and does not check for failure. care is
taken to avoid writing anything if the buffer length is zero, and to
always null-terminate when the buffer length is non-zero.
2012-06-20 12:07:18 -04:00
Rich Felker
839bff64a1 fix another oob pointer arithmetic issue in printf floating point
this one could never cause any problems unless the compiler/machine
goes to extra trouble to break oob pointer arithmetic, but it's best
to fix it anyway.
2012-06-20 09:28:54 -04:00
Rich Felker
82a4499e67 minor perror behavior fix
patch by nsz
2012-06-20 09:27:28 -04:00
Rich Felker
85a3ba3a28 fix localeconv values and implementation
dynamic-allocation of the structure is not valid; it can crash an
application if malloc fails. since localeconv is not specified to have
failure conditions, the object needs to have static storage duration.

need to review whether all the values are right or not still..
2012-06-19 22:44:08 -04:00
Rich Felker
ee96c50d4b fix mistake in length test in getlogin_r
this was actually dangerously wrong, but presumably nobody uses this
broken function anymore anyway..
2012-06-19 22:31:19 -04:00
Rich Felker
ee1f69a360 fix dummied-out fsync
if we eventually have build options, it might be nice to make an
option to dummy this out again, in case anybody needs a system-wide
disable for disk/ssd-thrashing, etc. that some daemons do when
logging...
2012-06-19 22:24:15 -04:00
Rich Felker
ca1773d864 fix dummied-out fdatasync 2012-06-19 22:22:16 -04:00
Rich Felker
914949d321 fix pointer overflow bug in floating point printf
large precision values could cause out-of-bounds pointer arithmetic in
computing the precision cutoff (used to avoid expensive long-precision
arithmetic when the result will be discarded). per the C standard,
this is undefined behavior. one would expect that it works anyway, and
in fact it did in most real-world cases, but it was randomly
(depending on aslr) crashing in i386 binaries running on x86_64
kernels. this is because linux puts the userspace stack near 4GB
(instead of near 3GB) when the kernel is 64-bit, leading to the
out-of-bounds pointer arithmetic overflowing past the end of address
space and giving a very low pointer value, which then compared lower
than a pointer it should have been higher than.

the new code rearranges the arithmetic so that no overflow can occur.

while this bug could crash printf with memory corruption, it's
unlikely to have security impact in real-world applications since the
ability to provide an extremely large field precision value under
attacker-control is required to trigger the bug.
2012-06-19 21:41:43 -04:00
Rich Felker
25c8444919 add vhangup syscall wrapper
request/patch by william haddonthethird, slightly modifed to add
_GNU_SOURCE feature test macro so that the compiler can verify the
prototype matches.
2012-06-19 15:32:13 -04:00
Rich Felker
5bc8e845bb include declarations for new stdio_ext functions (gnulib support) 2012-06-19 15:18:22 -04:00
Rich Felker
e15171b8d8 add new stdio extension functions to make gnulib happy
this is mildly ugly, but less ugly than gnulib trying to poke at the
definition of the FILE structure...
2012-06-19 01:35:23 -04:00
Rich Felker
a71e0af255 stdio: handle file position correctly at program exit
for seekable files, posix imposed requirements on the offset of the
underlying open file description after a stream is closed. this was
correctly handled (as a side effect of the unconditional fflush call)
when streams were explicitly closed by fclose, but was not handled
correctly at program exit time, where fflush(0) was being used.

the weak symbol hackery is to pull in __stdio_exit if either of
__toread or __towrite is used, but avoid calling it twice so we don't
have to keep extra state. the new __stdio_exit is a streamlined fflush
variant that avoids performing any unnecessary operations and which
never unlocks the files or open file list, so we can be sure no other
threads write new data to a stream's buffer after it's already
flushed.
2012-06-19 01:27:26 -04:00
Rich Felker
ca8a4e7fbd minor cleanup in fflush 2012-06-19 01:12:36 -04:00
Rich Felker
2499cd9d9b remove flush hook cruft that was never used from stdio
there is no need/use for a flush hook. the write function serves this
purpose already. i originally created the hook for implementing mem
streams based on a mistaken reading of posix, and later realized it
wasn't useful but never removed it until now.
2012-06-19 00:05:35 -04:00
Rich Felker
26710be714 fix multiple iconv bugs reading utf-16/32 and wchar_t 2012-06-18 21:41:38 -04:00
Rich Felker
673633c689 fix iconv dest utf-16: unavailable chars must be replaced; EILSEQ is wrong 2012-06-18 20:43:21 -04:00
Rich Felker
a2f149b5d1 fix erroneous utf-16 encoding with surrogates in iconv
apparently this was never tested before.
2012-06-18 20:29:41 -04:00