Home » Mailing list archives » linux-kernel » 2007 » March » 13

Re: x86_64 system lockup from userspace using setitimer()

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]
[view in full thread]
From: Thomas Gleixner
Subject: Re: x86_64 system lockup from userspace using setitimer()
Date: Tuesday, March 13, 2007 - 1:33 pm

On Tue, 2007-03-13 at 16:02 -0400, Chuck Ebbert wrote:

No. The possible DoS is only when high res timers are enabled, which is
not the case in 2.6.20.

Looking at the values 

140735669863712 = 0x7FFF 939C 0520

We convert second to nanoseconds:

140735669863712 * 1e9 =  0x1DCD 4BC3 6B82 914B 4000

The seconds value is limited to LONG_MAX, but on a 64 bit machine, the
140735669863712 is inside LONG_MAX and we have an multiplication
overflow.

I'm not sure, how this results in a DoS, but I will look into this
tomorrow morning, when I'm more awake.

	tglx


-
Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]
Messages in current thread:
x86_64 system lockup from userspace using setitimer(), Johannes Bauer, (Tue Mar 13, 11:55 am)
Re: x86_64 system lockup from userspace using setitimer(), Andreas Schwab, (Tue Mar 13, 12:19 pm)
Re: x86_64 system lockup from userspace using setitimer(), Chuck Ebbert, (Tue Mar 13, 1:02 pm)
Re: x86_64 system lockup from userspace using setitimer(), Thomas Gleixner, (Tue Mar 13, 1:33 pm)
[PATCH] hrtimer: prevent overrun DoS in hrtimer_forward(), Thomas Gleixner, (Wed Mar 14, 3:00 am)
Re: [PATCH] hrtimer: prevent overrun DoS in hrtimer_forward(), Ingo Molnar, (Wed Mar 14, 3:08 am)
Re: [PATCH] hrtimer: prevent overrun DoS in hrtimer_forward(), Andrew Morton, (Fri Mar 16, 1:43 pm)
Re: [PATCH] hrtimer: prevent overrun DoS in hrtimer_forward(), Thomas Gleixner, (Fri Mar 16, 2:05 pm)
Re: [PATCH] hrtimer: prevent overrun DoS in hrtimer_forward(), Chuck Ebbert, (Sun Mar 18, 2:16 pm)
Re: [PATCH] hrtimer: prevent overrun DoS in hrtimer_forward(), Thomas Gleixner, (Sun Mar 18, 2:32 pm)
Re: [PATCH] hrtimer: prevent overrun DoS in hrtimer_forward(), Chuck Ebbert, (Sun Mar 18, 2:53 pm)
Re: [PATCH] hrtimer: prevent overrun DoS in hrtimer_forward(), Chuck Ebbert, (Sun Mar 18, 3:02 pm)
Re: [PATCH] hrtimer: prevent overrun DoS in hrtimer_forward(), Thomas Gleixner, (Sun Mar 18, 3:04 pm)
Re: [PATCH] hrtimer: prevent overrun DoS in hrtimer_forward(), Adrian Bunk, (Wed Apr 4, 2:11 pm)
Re: [PATCH] hrtimer: prevent overrun DoS in hrtimer_forward(), Thomas Gleixner, (Wed Apr 4, 2:30 pm)
Re: [PATCH] hrtimer: prevent overrun DoS in hrtimer_forward(), Adrian Bunk, (Mon Apr 9, 6:01 am)