This is the mail archive of the libc-alpha@sourceware.org mailing list for the glibc project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: [PATCH 2/4] New string function explicit_bzero (from OpenBSD).

From: Adhemerval Zanella <adhemerval dot zanella at linaro dot org>
To: Zack Weinberg <zackw at panix dot com>
Cc: GNU C Library <libc-alpha at sourceware dot org>
Date: Fri, 19 Aug 2016 18:15:49 -0300
Subject: Re: [PATCH 2/4] New string function explicit_bzero (from OpenBSD).
Authentication-results: sourceware.org; auth=none
References: <cover.1471452663.git.zackw@panix.com> <9d17da53214c24a908092519d98bb93f4e6429f1.1471452664.git.zackw@panix.com> <5b4e1772-d28d-4845-b998-d63a91745abc@redhat.com> <1471553620.14544.109.camel@localhost.localdomain> <667c91c6-57e2-580e-1abf-e3db93a0e62b@linaro.org> <71aadb7b-604a-2ed6-e785-4a5476bb057c@panix.com> <b0db6183-64d9-a50b-e31f-06b4a6fd174c@linaro.org> <CAKCAbMjNKFX2079neOismnEay2P+FDrVGUJiDyYgmX3Ws-+d+g@mail.gmail.com> <165dcff6-55bd-f63c-39e3-ad175440068f@linaro.org> <CAKCAbMgVUxc3Vxh0gxuZamPKjD4sG5L_iVCUu5ZF0-LSF3O-dA@mail.gmail.com>

On 19/08/2016 16:54, Zack Weinberg wrote:
> On Fri, Aug 19, 2016 at 12:31 PM, Adhemerval Zanella
> <adhemerval.zanella@linaro.org> wrote:
>> Well, current memset_chk default implementation just does:
>>
>>   if (__glibc_unlikely (dstlen < len))
>>     __chk_fail ();
>>
>> So it would be feasible imho to just this add and call memset instead
>> of memset_chk.
> 
> For clarity, you are imagining this as the in-libc, out-of-line
> implementation of __explicit_bzero_chk?  Because as long as there's
> *some* inline definition of explicit_bzero, we have to have the
> exported __glibc_read_memory and then I don't see why we shouldn't
> have a string2.h non-fortified inline as well.

What I would like is, based on recent string inline headers cleanup,
is to avoid adding more implementation that in the future the compiler
can and would handle this transparently.  Ideally it would be better if
we just aims to clean all the optimization done in string2/string3 
headers (as we did for recent strspn, strbrk, etc. optimizations).

For this special case, I would advise go for the simple case: add a 
explicit_bzero and __explicit_bzero_chk in-libc as the other implementations.
However I do not have a strong opinion here.

> 
>> The problem, as pointed out by Florian, is not the symbol being exported
>> itself, but the inline definition where all the 'inline' definition might
>> either not being supported by the target compiler or have non-expected
>> side effects (as for C++ with -O0).
> 
> Did you miss that there *is* an out-of-line non-fortified
> explicit_bzero?  Which means that the bug you pointed out should be a
> non-issue.

The problem is not the existence of a out-of-line explicit_bzero, but
if __extern_inline would use or not the gnu_inline attribute.  With current
guards for inclusion of string2.h (OPTIMIZE and !__cplusplus) the only
case of a possible issue I can think of is if someone building with
GCC lower than 4.2 with an optimized build and -fno-inline (this will
define __extern_inline to just extern __inline and possible create
multiple definitions). My inclination is this should not be a blocker
though.

References:
- [PATCH 0/4] explicit_bzero, this time for sure
  - From: Zack Weinberg
- [PATCH 2/4] New string function explicit_bzero (from OpenBSD).
  - From: Zack Weinberg
- Re: [PATCH 2/4] New string function explicit_bzero (from OpenBSD).
  - From: Florian Weimer
- Re: [PATCH 2/4] New string function explicit_bzero (from OpenBSD).
  - From: Torvald Riegel
- Re: [PATCH 2/4] New string function explicit_bzero (from OpenBSD).
  - From: Adhemerval Zanella
- Re: [PATCH 2/4] New string function explicit_bzero (from OpenBSD).
  - From: Zack Weinberg
- Re: [PATCH 2/4] New string function explicit_bzero (from OpenBSD).
  - From: Adhemerval Zanella
- Re: [PATCH 2/4] New string function explicit_bzero (from OpenBSD).
  - From: Zack Weinberg
- Re: [PATCH 2/4] New string function explicit_bzero (from OpenBSD).
  - From: Adhemerval Zanella
- Re: [PATCH 2/4] New string function explicit_bzero (from OpenBSD).
  - From: Zack Weinberg

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]