Kernel: Modify TimeManagement::current_time(..) API so it can't fail. (#6869)

bgianfo · web-flow · commit 11306d7121f4 · 2021-05-05T18:51:06.000+02:00
The fact that current_time can "fail" makes its use a bit awkward.
All callers in the Kernel are trusted besides syscalls, so assert
that they never get there, and make sure all current callers perform
validation of the clock_id with TimeManagement::is_valid_clock_id().

I have fuzzed this change locally for a bit to make sure I didn't
miss any obvious regression.
diff --git a/Kernel/Syscalls/alarm.cpp b/Kernel/Syscalls/alarm.cpp
@@ -25,7 +25,7 @@ KResultOr<unsigned> Process::sys$alarm(unsigned seconds)
     }
 
     if (seconds > 0) {
-        auto deadline = TimeManagement::the().current_time(CLOCK_REALTIME_COARSE).value();
+        auto deadline = TimeManagement::the().current_time(CLOCK_REALTIME_COARSE);
         deadline = deadline + Time::from_seconds(seconds);
         m_alarm_timer = TimerQueue::the().add_timer_without_id(CLOCK_REALTIME_COARSE, deadline, [this]() {
             [[maybe_unused]] auto rc = send_signal(SIGALRM, nullptr);
diff --git a/Kernel/Syscalls/clock.cpp b/Kernel/Syscalls/clock.cpp
@@ -14,13 +14,13 @@ KResultOr<int> Process::sys$clock_gettime(clockid_t clock_id, Userspace<timespec
 {
     REQUIRE_PROMISE(stdio);
 
-    auto time = TimeManagement::the().current_time(clock_id);
-    if (time.is_error())
-        return time.error();
+    if (!TimeManagement::is_valid_clock_id(clock_id))
+        return EINVAL;
 
-    auto ts = time.value().to_timespec();
+    auto ts = TimeManagement::the().current_time(clock_id).to_timespec();
     if (!copy_to_user(user_ts, &ts))
         return EFAULT;
+
     return 0;
 }
 
diff --git a/Kernel/ThreadBlockers.cpp b/Kernel/ThreadBlockers.cpp
@@ -23,7 +23,7 @@ Thread::BlockTimeout::BlockTimeout(bool is_absolute, const Time* time, const Tim
         m_time = *time;
         m_should_block = true;
     }
-    m_start_time = start_time ? *start_time : TimeManagement::the().current_time(clock_id).value();
+    m_start_time = start_time ? *start_time : TimeManagement::the().current_time(clock_id);
     if (!is_absolute)
         m_time += m_start_time;
 }
@@ -326,7 +326,7 @@ void Thread::SleepBlocker::calculate_remaining()
 {
     if (!m_remaining)
         return;
-    auto time_now = TimeManagement::the().current_time(m_deadline.clock_id()).value();
+    auto time_now = TimeManagement::the().current_time(m_deadline.clock_id());
     if (time_now < m_deadline.absolute_time())
         *m_remaining = m_deadline.absolute_time() - time_now;
     else
diff --git a/Kernel/Time/TimeManagement.cpp b/Kernel/Time/TimeManagement.cpp
@@ -44,7 +44,7 @@ bool TimeManagement::is_valid_clock_id(clockid_t clock_id)
     };
 }
 
-KResultOr<Time> TimeManagement::current_time(clockid_t clock_id) const
+Time TimeManagement::current_time(clockid_t clock_id) const
 {
     switch (clock_id) {
     case CLOCK_MONOTONIC:
@@ -58,7 +58,8 @@ KResultOr<Time> TimeManagement::current_time(clockid_t clock_id) const
     case CLOCK_REALTIME_COARSE:
         return epoch_time(TimePrecision::Coarse);
     default:
-        return KResult(EINVAL);
+        // Syscall entrypoint is missing a is_valid_clock_id(..) check?
+        VERIFY_NOT_REACHED();
     }
 }
 
diff --git a/Kernel/Time/TimeManagement.h b/Kernel/Time/TimeManagement.h
@@ -34,7 +34,7 @@ class TimeManagement {
     static TimeManagement& the();
 
     static bool is_valid_clock_id(clockid_t);
-    KResultOr<Time> current_time(clockid_t) const;
+    Time current_time(clockid_t) const;
     Time monotonic_time(TimePrecision = TimePrecision::Coarse) const;
     Time monotonic_time_raw() const
     {
diff --git a/Kernel/TimerQueue.cpp b/Kernel/TimerQueue.cpp
@@ -44,7 +44,7 @@ Time Timer::now(bool is_firing) const
             break;
         }
     }
-    return TimeManagement::the().current_time(clock_id).value();
+    return TimeManagement::the().current_time(clock_id);
 }
 
 TimerQueue& TimerQueue::the()
@@ -59,7 +59,7 @@ UNMAP_AFTER_INIT TimerQueue::TimerQueue()
 
 RefPtr<Timer> TimerQueue::add_timer_without_id(clockid_t clock_id, const Time& deadline, Function<void()>&& callback)
 {
-    if (deadline <= TimeManagement::the().current_time(clock_id).value())
+    if (deadline <= TimeManagement::the().current_time(clock_id))
         return {};
 
     // Because timer handlers can execute on any processor and there is
@@ -117,7 +117,7 @@ void TimerQueue::add_timer_locked(NonnullRefPtr<Timer> timer)
 
 TimerId TimerQueue::add_timer(clockid_t clock_id, const Time& deadline, Function<void()>&& callback)
 {
-    auto expires = TimeManagement::the().current_time(clock_id).value();
+    auto expires = TimeManagement::the().current_time(clock_id);
     expires = expires + deadline;
     return add_timer(adopt_ref(*new Timer(clock_id, expires, move(callback))));
 }

Original file line number	Diff line number	Diff line change
`@@ -25,7 +25,7 @@ KResultOr<unsigned> Process::sys$alarm(unsigned seconds)`
`25`	`25`	`}`
`26`	`26`
`27`	`27`	`if (seconds > 0) {`
`28`		`- auto deadline = TimeManagement::the().current_time(CLOCK_REALTIME_COARSE).value();`
	`28`	`+ auto deadline = TimeManagement::the().current_time(CLOCK_REALTIME_COARSE);`
`29`	`29`	`deadline = deadline + Time::from_seconds(seconds);`
`30`	`30`	`m_alarm_timer = TimerQueue::the().add_timer_without_id(CLOCK_REALTIME_COARSE, deadline, [this]() {`
`31`	`31`	`[[maybe_unused]] auto rc = send_signal(SIGALRM, nullptr);`
Original file line number	Diff line number	Diff line change
`@@ -23,7 +23,7 @@ Thread::BlockTimeout::BlockTimeout(bool is_absolute, const Time* time, const Tim`
`23`	`23`	`m_time = *time;`
`24`	`24`	`m_should_block = true;`
`25`	`25`	`}`
`26`		`- m_start_time = start_time ? *start_time : TimeManagement::the().current_time(clock_id).value();`
	`26`	`+ m_start_time = start_time ? *start_time : TimeManagement::the().current_time(clock_id);`
`27`	`27`	`if (!is_absolute)`
`28`	`28`	`m_time += m_start_time;`
`29`	`29`	`}`
`@@ -326,7 +326,7 @@ void Thread::SleepBlocker::calculate_remaining()`
`326`	`326`	`{`
`327`	`327`	`if (!m_remaining)`
`328`	`328`	`return;`
`329`		`- auto time_now = TimeManagement::the().current_time(m_deadline.clock_id()).value();`
	`329`	`+ auto time_now = TimeManagement::the().current_time(m_deadline.clock_id());`
`330`	`330`	`if (time_now < m_deadline.absolute_time())`
`331`	`331`	`*m_remaining = m_deadline.absolute_time() - time_now;`
`332`	`332`	`else`
Original file line number	Diff line number	Diff line change
`@@ -44,7 +44,7 @@ bool TimeManagement::is_valid_clock_id(clockid_t clock_id)`
`44`	`44`	`};`
`45`	`45`	`}`
`46`	`46`
`47`		`-KResultOr<Time> TimeManagement::current_time(clockid_t clock_id) const`
	`47`	`+Time TimeManagement::current_time(clockid_t clock_id) const`
`48`	`48`	`{`
`49`	`49`	`switch (clock_id) {`
`50`	`50`	`case CLOCK_MONOTONIC:`
`@@ -58,7 +58,8 @@ KResultOr<Time> TimeManagement::current_time(clockid_t clock_id) const`
`58`	`58`	`case CLOCK_REALTIME_COARSE:`
`59`	`59`	`return epoch_time(TimePrecision::Coarse);`
`60`	`60`	`default:`
`61`		`- return KResult(EINVAL);`
	`61`	`+ // Syscall entrypoint is missing a is_valid_clock_id(..) check?`
	`62`	`+ VERIFY_NOT_REACHED();`
`62`	`63`	`}`
`63`	`64`	`}`
`64`	`65`
Original file line number	Diff line number	Diff line change
`@@ -34,7 +34,7 @@ class TimeManagement {`
`34`	`34`	`static TimeManagement& the();`
`35`	`35`
`36`	`36`	`static bool is_valid_clock_id(clockid_t);`
`37`		`- KResultOr<Time> current_time(clockid_t) const;`
	`37`	`+ Time current_time(clockid_t) const;`
`38`	`38`	`Time monotonic_time(TimePrecision = TimePrecision::Coarse) const;`
`39`	`39`	`Time monotonic_time_raw() const`
`40`	`40`	`{`
Original file line number	Diff line number	Diff line change
`@@ -44,7 +44,7 @@ Time Timer::now(bool is_firing) const`
`44`	`44`	`break;`
`45`	`45`	`}`
`46`	`46`	`}`
`47`		`- return TimeManagement::the().current_time(clock_id).value();`
	`47`	`+ return TimeManagement::the().current_time(clock_id);`
`48`	`48`	`}`
`49`	`49`
`50`	`50`	`TimerQueue& TimerQueue::the()`
`@@ -59,7 +59,7 @@ UNMAP_AFTER_INIT TimerQueue::TimerQueue()`
`59`	`59`
`60`	`60`	`RefPtr<Timer> TimerQueue::add_timer_without_id(clockid_t clock_id, const Time& deadline, Function<void()>&& callback)`
`61`	`61`	`{`
`62`		`- if (deadline <= TimeManagement::the().current_time(clock_id).value())`
	`62`	`+ if (deadline <= TimeManagement::the().current_time(clock_id))`
`63`	`63`	`return {};`
`64`	`64`
`65`	`65`	`// Because timer handlers can execute on any processor and there is`
`@@ -117,7 +117,7 @@ void TimerQueue::add_timer_locked(NonnullRefPtr<Timer> timer)`
`117`	`117`
`118`	`118`	`TimerId TimerQueue::add_timer(clockid_t clock_id, const Time& deadline, Function<void()>&& callback)`
`119`	`119`	`{`
`120`		`- auto expires = TimeManagement::the().current_time(clock_id).value();`
	`120`	`+ auto expires = TimeManagement::the().current_time(clock_id);`
`121`	`121`	`expires = expires + deadline;`
`122`	`122`	`return add_timer(adopt_ref(*new Timer(clock_id, expires, move(callback))));`
`123`	`123`	`}`