Andreas Schwab
746e16d2b9
- Update to glibc 2.17.90 85891acadf1b: * CVE-2013-2207 Incorrectly granting access to another user's pseudo-terminal has been fixed by disabling the use of pt_chown (Bugzilla #15755). Distributions can re-enable building and using pt_chown via the new configure option `--enable-pt_chown'. Enabling the use of pt_chown carries with it considerable security risks and should only be used if the distribution understands and accepts the risks. * CVE-2013-0242 Buffer overrun in regexp matcher has been fixed (Bugzilla #15078). * CVE-2013-1914 Stack overflow in getaddrinfo with many results has been fixed (Bugzilla #15330). * Add support for calling C++11 thread_local object destructors on thread and program exit. This needs compiler support for offloading C++11 destructor calls to glibc. * Improved worst case performance of libm functions with double inputs and output. * Support for priority inherited mutexes in pthread condition variables on non-x86 architectures. * Optimized string functions for AArch64. Implemented by Marcus Shawcroft. * Optimized string functions for ARM. Implemented by Will Newton and Richard Henderson. * Added a benchmark framework to track performance of functions in glibc. * New <math.h> macro named issignaling to check for a signaling NaN (sNaN). It is based on draft TS 18661 and currently enabled as a GNU extension. * On Linux, the clock function now uses the clock_gettime system call for improved precision, rather than old times system call. * Added new API functions pthread_getattr_default_np and pthread_setattr_default_np to get and set the default pthread attributes of a process. * Added support for TSX lock elision for pthread mutexes on i386 and x86-64. OBS-URL: https://build.opensuse.org/request/show/186119 OBS-URL: https://build.opensuse.org/package/show/Base:System/glibc?expand=0&rev=304
180 lines
6.4 KiB
Diff
180 lines
6.4 KiB
Diff
From 1aa92494e55792b568663b5aad81a58fad35490d Mon Sep 17 00:00:00 2001
|
|
From: Eric Biggers <ebiggers3@gmail.com>
|
|
Date: Thu, 18 Apr 2013 17:46:08 +0200
|
|
Subject: [PATCH] PR15362
|
|
|
|
[BZ #15362]
|
|
* libio/fileops.c: Revert problematic fixes for [BZ #11741]
|
|
* libio/iofwrite.c: Likewise.
|
|
* libio/iofwrite_u.c: Likewise.
|
|
* libio/iopadn.c: Likewise.
|
|
* libio/iowpadn.c: Likewise.
|
|
* stdio-common/vfprintf.c: Fix [BZ #11741] properly by checking whether
|
|
_IO_padn() returned the full count written.
|
|
---
|
|
libio/fileops.c | 21 +++++++++------------
|
|
libio/iofwrite.c | 10 +++++-----
|
|
libio/iofwrite_u.c | 10 +++++-----
|
|
libio/iopadn.c | 2 +-
|
|
libio/iowpadn.c | 2 +-
|
|
stdio-common/vfprintf.c | 12 ++++++------
|
|
6 files changed, 27 insertions(+), 30 deletions(-)
|
|
|
|
Index: glibc-2.17.90/libio/fileops.c
|
|
===================================================================
|
|
--- glibc-2.17.90.orig/libio/fileops.c
|
|
+++ glibc-2.17.90/libio/fileops.c
|
|
@@ -1245,13 +1245,12 @@ _IO_new_file_write (f, data, n)
|
|
_IO_ssize_t n;
|
|
{
|
|
_IO_ssize_t to_do = n;
|
|
- _IO_ssize_t count = 0;
|
|
while (to_do > 0)
|
|
{
|
|
- count = (__builtin_expect (f->_flags2
|
|
- & _IO_FLAGS2_NOTCANCEL, 0)
|
|
- ? write_not_cancel (f->_fileno, data, to_do)
|
|
- : write (f->_fileno, data, to_do));
|
|
+ _IO_ssize_t count = (__builtin_expect (f->_flags2
|
|
+ & _IO_FLAGS2_NOTCANCEL, 0)
|
|
+ ? write_not_cancel (f->_fileno, data, to_do)
|
|
+ : write (f->_fileno, data, to_do));
|
|
if (count < 0)
|
|
{
|
|
f->_flags |= _IO_ERR_SEEN;
|
|
@@ -1263,7 +1262,7 @@ _IO_new_file_write (f, data, n)
|
|
n -= to_do;
|
|
if (f->_offset >= 0)
|
|
f->_offset += n;
|
|
- return count < 0 ? count : n;
|
|
+ return n;
|
|
}
|
|
|
|
_IO_size_t
|
|
@@ -1323,13 +1322,11 @@ _IO_new_file_xsputn (f, data, n)
|
|
_IO_size_t block_size, do_write;
|
|
/* Next flush the (full) buffer. */
|
|
if (_IO_OVERFLOW (f, EOF) == EOF)
|
|
- /* If nothing else has to be written or nothing has been written, we
|
|
- must not signal the caller that the call was even partially
|
|
- successful. */
|
|
- return (to_do == 0 || to_do == n) ? EOF : n - to_do;
|
|
+ /* If nothing else has to be written we must not signal the
|
|
+ caller that everything has been written. */
|
|
+ return to_do == 0 ? EOF : n - to_do;
|
|
|
|
- /* Try to maintain alignment: write a whole number of blocks.
|
|
- dont_write is what gets left over. */
|
|
+ /* Try to maintain alignment: write a whole number of blocks. */
|
|
block_size = f->_IO_buf_end - f->_IO_buf_base;
|
|
do_write = to_do - (block_size >= 128 ? to_do % block_size : 0);
|
|
|
|
Index: glibc-2.17.90/libio/iofwrite.c
|
|
===================================================================
|
|
--- glibc-2.17.90.orig/libio/iofwrite.c
|
|
+++ glibc-2.17.90/libio/iofwrite.c
|
|
@@ -42,12 +42,12 @@ _IO_fwrite (buf, size, count, fp)
|
|
if (_IO_vtable_offset (fp) != 0 || _IO_fwide (fp, -1) == -1)
|
|
written = _IO_sputn (fp, (const char *) buf, request);
|
|
_IO_release_lock (fp);
|
|
- /* We are guaranteed to have written all of the input, none of it, or
|
|
- some of it. */
|
|
- if (written == request)
|
|
+ /* We have written all of the input in case the return value indicates
|
|
+ this or EOF is returned. The latter is a special case where we
|
|
+ simply did not manage to flush the buffer. But the data is in the
|
|
+ buffer and therefore written as far as fwrite is concerned. */
|
|
+ if (written == request || written == EOF)
|
|
return count;
|
|
- else if (written == EOF)
|
|
- return 0;
|
|
else
|
|
return written / size;
|
|
}
|
|
Index: glibc-2.17.90/libio/iofwrite_u.c
|
|
===================================================================
|
|
--- glibc-2.17.90.orig/libio/iofwrite_u.c
|
|
+++ glibc-2.17.90/libio/iofwrite_u.c
|
|
@@ -44,12 +44,12 @@ fwrite_unlocked (buf, size, count, fp)
|
|
if (_IO_fwide (fp, -1) == -1)
|
|
{
|
|
written = _IO_sputn (fp, (const char *) buf, request);
|
|
- /* We are guaranteed to have written all of the input, none of it, or
|
|
- some of it. */
|
|
- if (written == request)
|
|
+ /* We have written all of the input in case the return value indicates
|
|
+ this or EOF is returned. The latter is a special case where we
|
|
+ simply did not manage to flush the buffer. But the data is in the
|
|
+ buffer and therefore written as far as fwrite is concerned. */
|
|
+ if (written == request || written == EOF)
|
|
return count;
|
|
- else if (written == EOF)
|
|
- return 0;
|
|
}
|
|
|
|
return written / size;
|
|
Index: glibc-2.17.90/libio/iopadn.c
|
|
===================================================================
|
|
--- glibc-2.17.90.orig/libio/iopadn.c
|
|
+++ glibc-2.17.90/libio/iopadn.c
|
|
@@ -59,7 +59,7 @@ _IO_padn (fp, pad, count)
|
|
w = _IO_sputn (fp, padptr, PADSIZE);
|
|
written += w;
|
|
if (w != PADSIZE)
|
|
- return w == EOF ? w : written;
|
|
+ return written;
|
|
}
|
|
|
|
if (i > 0)
|
|
Index: glibc-2.17.90/libio/iowpadn.c
|
|
===================================================================
|
|
--- glibc-2.17.90.orig/libio/iowpadn.c
|
|
+++ glibc-2.17.90/libio/iowpadn.c
|
|
@@ -65,7 +65,7 @@ _IO_wpadn (fp, pad, count)
|
|
w = _IO_sputn (fp, (char *) padptr, PADSIZE);
|
|
written += w;
|
|
if (w != PADSIZE)
|
|
- return w == EOF ? w : written;
|
|
+ return written;
|
|
}
|
|
|
|
if (i > 0)
|
|
Index: glibc-2.17.90/stdio-common/vfprintf.c
|
|
===================================================================
|
|
--- glibc-2.17.90.orig/stdio-common/vfprintf.c
|
|
+++ glibc-2.17.90/stdio-common/vfprintf.c
|
|
@@ -90,13 +90,13 @@
|
|
do { \
|
|
if (width > 0) \
|
|
{ \
|
|
- unsigned int d = _IO_padn (s, (Padchar), width); \
|
|
- if (__glibc_unlikely (d == EOF)) \
|
|
+ _IO_ssize_t written = _IO_padn (s, (Padchar), width); \
|
|
+ if (__glibc_unlikely (written != width)) \
|
|
{ \
|
|
done = -1; \
|
|
goto all_done; \
|
|
} \
|
|
- done_add (d); \
|
|
+ done_add (written); \
|
|
} \
|
|
} while (0)
|
|
# define PUTC(C, F) _IO_putc_unlocked (C, F)
|
|
@@ -119,13 +119,13 @@
|
|
do { \
|
|
if (width > 0) \
|
|
{ \
|
|
- unsigned int d = _IO_wpadn (s, (Padchar), width); \
|
|
- if (__glibc_unlikely (d == EOF)) \
|
|
+ _IO_ssize_t written = _IO_wpadn (s, (Padchar), width); \
|
|
+ if (__glibc_unlikely (written != width)) \
|
|
{ \
|
|
done = -1; \
|
|
goto all_done; \
|
|
} \
|
|
- done_add (d); \
|
|
+ done_add (written); \
|
|
} \
|
|
} while (0)
|
|
# define PUTC(C, F) _IO_putwc_unlocked (C, F)
|