Fail with INVAL when tv_nsec requests are out of range.

Author: sunfishcode

src/imp/libc/net/syscalls.rs

@@ -585,7 +585,7 @@ pub(crate) mod sockopt {
 
                 // `as_millis` rounds down, so we use `as_nanos` and
                 // manually round up.
-                let mut timeout: u32 = ((timeout.as_nanos() + 999999) / 1000000)
+                let mut timeout: u32 = ((timeout.as_nanos() + 999_999) / 1_000_000)
                     .try_into()
                     .map_err(|_convert_err| io::Errno::INVAL)?;
                 if timeout == 0 {

src/imp/libc/thread/syscalls.rs

@@ -94,10 +94,15 @@ pub(crate) fn clock_nanosleep_relative(id: ClockId, request: &Timespec) -> Nanos
 ))]
 unsafe fn clock_nanosleep_relative_old(id: ClockId, request: &Timespec) -> NanosleepRelativeResult {
     use core::convert::TryInto;
-    let old_request = c::timespec {
-        tv_sec: request.tv_sec.try_into().unwrap(),
-        tv_nsec: request.tv_nsec as _,
+    let tv_sec = match request.tv_sec.try_into() {
+        Ok(tv_sec) => tv_sec,
+        Err(_) => return NanosleepRelativeResult::Err(io::Errno::OVERFLOW),
+    };
+    let tv_nsec = match request.tv_nsec.try_into() {
+        Ok(tv_nsec) => tv_nsec,
+        Err(_) => return NanosleepRelativeResult::Err(io::Errno::INVAL),
     };
+    let old_request = c::timespec { tv_sec, tv_nsec };
     let mut old_remain = MaybeUninit::<c::timespec>::uninit();
     let flags = 0;
 
@@ -180,7 +185,7 @@ fn clock_nanosleep_absolute_old(id: ClockId, request: &Timespec) -> io::Result<(
 
     let old_request = c::timespec {
         tv_sec: request.tv_sec.try_into().map_err(|_| io::Errno::OVERFLOW)?,
-        tv_nsec: request.tv_nsec as _,
+        tv_nsec: request.tv_nsec.try_into().map_err(|_| io::Errno::INVAL)?,
     };
     match unsafe { c::clock_nanosleep(id as c::clockid_t, flags, &old_request, null_mut()) } {
         0 => Ok(()),
@@ -237,10 +242,11 @@ unsafe fn nanosleep_old(request: &Timespec) -> NanosleepRelativeResult {
         Ok(tv_sec) => tv_sec,
         Err(_) => return NanosleepRelativeResult::Err(io::Errno::OVERFLOW),
     };
-    let old_request = c::timespec {
-        tv_sec,
-        tv_nsec: request.tv_nsec as _,
+    let tv_nsec = match request.tv_nsec.try_into() {
+        Ok(tv_nsec) => tv_nsec,
+        Err(_) => return NanosleepRelativeResult::Err(io::Errno::INVAL),
     };
+    let old_request = c::timespec { tv_sec, tv_nsec };
     let mut old_remain = MaybeUninit::<c::timespec>::uninit();
 
     match ret(c::nanosleep(&old_request, old_remain.as_mut_ptr())) {

src/imp/libc/time/syscalls.rs

@@ -295,22 +295,32 @@ unsafe fn timerfd_settime_old(
     use core::convert::TryInto;
 
     let mut old_result = MaybeUninit::<c::itimerspec>::uninit();
+
+    // Convert `new_value` to the old `itimerspec` format.
     let old_new_value = c::itimerspec {
         it_interval: c::timespec {
             tv_sec: new_value
                 .it_interval
                 .tv_sec
                 .try_into()
                 .map_err(|_| io::Errno::OVERFLOW)?,
-            tv_nsec: new_value.it_interval.tv_nsec as _,
+            tv_nsec: new_value
+                .it_interval
+                .tv_nsec
+                .try_into()
+                .map_err(|_| io::Errno::INVAL)?,
         },
         it_value: c::timespec {
             tv_sec: new_value
                 .it_value
                 .tv_sec
                 .try_into()
                 .map_err(|_| io::Errno::OVERFLOW)?,
-            tv_nsec: new_value.it_value.tv_nsec as _,
+            tv_nsec: new_value
+                .it_value
+                .tv_nsec
+                .try_into()
+                .map_err(|_| io::Errno::INVAL)?,
         },
     };
 

src/imp/linux_raw/io/syscalls.rs

@@ -463,7 +463,7 @@ pub(crate) fn poll(fds: &mut [PollFd<'_>], timeout: c::c_int) -> io::Result<usiz
         let timeout = if timeout >= 0 {
             Some(__kernel_timespec {
                 tv_sec: (timeout as i64) / 1000,
-                tv_nsec: (timeout as i64) % 1000 * 1000000,
+                tv_nsec: (timeout as i64) % 1000 * 1_000_000,
             })
         } else {
             None

src/imp/linux_raw/time/syscalls.rs

@@ -123,6 +123,8 @@ unsafe fn timerfd_settime_old(
     result: &mut MaybeUninit<Itimerspec>,
 ) -> io::Result<()> {
     let mut old_result = MaybeUninit::<__kernel_old_itimerspec>::uninit();
+
+    // Convert `new_value` to the old `__kernel_old_itimerspec` format.
     let old_new_value = __kernel_old_itimerspec {
         it_interval: __kernel_old_timespec {
             tv_sec: new_value

tests/thread/clocks.rs

@@ -19,14 +19,28 @@ use {
 fn test_invalid_nanosleep() {
     match nanosleep(&Timespec {
         tv_sec: 0,
-        tv_nsec: 1000000000,
+        tv_nsec: 1_000_000_000,
     }) {
         NanosleepRelativeResult::Err(io::Errno::INVAL) => (),
         otherwise => panic!("unexpected resut: {:?}", otherwise),
     }
     match nanosleep(&Timespec {
         tv_sec: 0,
-        tv_nsec: -1 as _,
+        tv_nsec: !0,
+    }) {
+        NanosleepRelativeResult::Err(io::Errno::INVAL) => (),
+        otherwise => panic!("unexpected resut: {:?}", otherwise),
+    }
+    match nanosleep(&Timespec {
+        tv_sec: !0,
+        tv_nsec: 1_000_000_000,
+    }) {
+        NanosleepRelativeResult::Err(io::Errno::INVAL) => (),
+        otherwise => panic!("unexpected resut: {:?}", otherwise),
+    }
+    match nanosleep(&Timespec {
+        tv_sec: !0,
+        tv_nsec: !0,
     }) {
         NanosleepRelativeResult::Err(io::Errno::INVAL) => (),
         otherwise => panic!("unexpected resut: {:?}", otherwise),
@@ -58,7 +72,27 @@ fn test_invalid_nanosleep_absolute() {
         ClockId::Monotonic,
         &Timespec {
             tv_sec: 0,
-            tv_nsec: -1 as _,
+            tv_nsec: !0,
+        },
+    ) {
+        Err(io::Errno::INVAL) => (),
+        otherwise => panic!("unexpected resut: {:?}", otherwise),
+    }
+    match clock_nanosleep_absolute(
+        ClockId::Monotonic,
+        &Timespec {
+            tv_sec: !0,
+            tv_nsec: 1_000_000_000,
+        },
+    ) {
+        Err(io::Errno::INVAL) => (),
+        otherwise => panic!("unexpected resut: {:?}", otherwise),
+    }
+    match clock_nanosleep_absolute(
+        ClockId::Monotonic,
+        &Timespec {
+            tv_sec: !0,
+            tv_nsec: !0,
         },
     ) {
         Err(io::Errno::INVAL) => (),
@@ -81,7 +115,7 @@ fn test_invalid_nanosleep_relative() {
         ClockId::Monotonic,
         &Timespec {
             tv_sec: 0,
-            tv_nsec: 1000000000,
+            tv_nsec: 1_000_000_000,
         },
     ) {
         NanosleepRelativeResult::Err(io::Errno::INVAL) => (),
@@ -91,7 +125,27 @@ fn test_invalid_nanosleep_relative() {
         ClockId::Monotonic,
         &Timespec {
             tv_sec: 0,
-            tv_nsec: -1 as _,
+            tv_nsec: !0,
+        },
+    ) {
+        NanosleepRelativeResult::Err(io::Errno::INVAL) => (),
+        otherwise => panic!("unexpected resut: {:?}", otherwise),
+    }
+    match clock_nanosleep_relative(
+        ClockId::Monotonic,
+        &Timespec {
+            tv_sec: !0,
+            tv_nsec: 1_000_000_000,
+        },
+    ) {
+        NanosleepRelativeResult::Err(io::Errno::INVAL) => (),
+        otherwise => panic!("unexpected resut: {:?}", otherwise),
+    }
+    match clock_nanosleep_relative(
+        ClockId::Monotonic,
+        &Timespec {
+            tv_sec: !0,
+            tv_nsec: !0,
         },
     ) {
         NanosleepRelativeResult::Err(io::Errno::INVAL) => (),

tests/time/monotonic.rs

@@ -37,7 +37,7 @@ fn test_monotonic_clock_with_sleep_1ms() {
     let a = clock_gettime(ClockId::Monotonic);
     let _rem = nanosleep(&Timespec {
         tv_sec: 0,
-        tv_nsec: 1000000,
+        tv_nsec: 1_000_000,
     });
     let b = clock_gettime(ClockId::Monotonic);
     assert!(b.tv_sec >= a.tv_sec);

tests/time/timespec.rs

@@ -21,6 +21,6 @@ fn test_timespec_layout() {
     let _ = Timespec { tv_sec, tv_nsec: 0 };
     let _ = Timespec {
         tv_sec,
-        tv_nsec: 999999999,
+        tv_nsec: 999_999_999,
     };
 }