Join GitHub today
GitHub is home to over 40 million developers working together to host and review code, manage projects, and build software together.
Sign upsyscall: unchecked overflow in byteq and msgq with GOOS=nacl #21168
Comments
bcmills
changed the title
syscall(nacl): unchecked overflow in byteq
syscall(nacl): unchecked overflow in byteq and msgq
Jul 25, 2017
bradfitz
changed the title
syscall(nacl): unchecked overflow in byteq and msgq
syscall: unchecked overflow in byteq and msgq with GOOS=nacl
Jul 25, 2017
ianlancetaylor
added
the
NeedsFix
label
Mar 30, 2018
ianlancetaylor
added this to the Unplanned milestone
Mar 30, 2018
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
bcmills commentedJul 25, 2017
In looking at examples for #21165, I noticed an unchecked overflow in the syscall package on the nacl platform.
The
queueimplementation insyscall/net_nacl.gowaits on the differenceq.w-q.r, and thereadandwritemethods ofbyteqandmsgqincrement those variables without checking for overflow.wandrboth have typeint, so on a 32-bit build it is quite possible to overflow one or the other and cause the reader and/or writer to deadlock.This program times out due to the deadlock: https://play.golang.org/p/C_YmUjwXwW
In contrast, stopping the reader just before the overflow causes the program to exit successfully: https://play.golang.org/p/XPEU7FoTes
The difference between the two is just one iteration of the loop: the one that tips the writer across that overflow:
(Proposal #19624 would report the overflow here instead of deadlocking the program.)