Re: [PATCH 3/3] net: rxrpc: Replace time_t type with time64_t type

[PATCH 0/3] Fix y2038 issues for security/keys subsystem · Baolin Wang <hidden> · 2017-08-09
[PATCH 1/3] security: keys: Replace time_t/timespec with time64_t · Baolin Wang <hidden> · 2017-08-09
[PATCH 3/3] net: rxrpc: Replace time_t type with time64_t type · Baolin Wang <hidden> · 2017-08-09
Re: [PATCH 3/3] net: rxrpc: Replace time_t type with time64_t type · Arnd Bergmann <arnd@arndb.de> · 2017-08-09
Re: [PATCH 3/3] net: rxrpc: Replace time_t type with time64_t type · David Howells <dhowells@redhat.com> · 2017-08-09
Re: [PATCH 3/3] net: rxrpc: Replace time_t type with time64_t type · Arnd Bergmann <arnd@arndb.de> · 2017-08-09
Re: [PATCH 3/3] net: rxrpc: Replace time_t type with time64_t type · David Howells <dhowells@redhat.com> · 2017-08-09
Re: [PATCH 3/3] net: rxrpc: Replace time_t type with time64_t type · Arnd Bergmann <arnd@arndb.de> · 2017-08-09
Re: [PATCH 3/3] net: rxrpc: Replace time_t type with time64_t type · David Howells <dhowells@redhat.com> · 2017-08-09
[PATCH 2/3] security: keys: Replace time_t with time64_t for struct key_preparsed_payload · Baolin Wang <hidden> · 2017-08-09
Re: [PATCH 0/3] Fix y2038 issues for security/keys subsystem · David Howells <dhowells@redhat.com> · 2017-08-09
Re: [PATCH 0/3] Fix y2038 issues for security/keys subsystem · Baolin Wang <hidden> · 2017-08-10
Re: [PATCH 0/3] Fix y2038 issues for security/keys subsystem · Baolin Wang <hidden> · 2017-08-21
Re: [PATCH 0/3] Fix y2038 issues for security/keys subsystem · Baolin Wang <hidden> · 2017-09-15
Re: [PATCH 0/3] Fix y2038 issues for security/keys subsystem · Arnd Bergmann <arnd@arndb.de> · 2017-08-09
Re: [PATCH 0/3] Fix y2038 issues for security/keys subsystem · Baolin Wang <hidden> · 2017-08-10

From: David Howells <dhowells@redhat.com>
Date: 2017-08-09 09:33:59
Also in: keyrings, linux-security-module, lkml

Arnd Bergmann [off-list ref] wrote:

quoted

@@ -533,8 +536,9 @@ static int rxrpc_preparse_xdr_rxk5(struct key_preparsed_payload *prep,
             pptoken = &(*pptoken)->next)
                continue;
        *pptoken = token;
-       if (token->kad->expiry < prep->expiry)
-               prep->expiry = token->kad->expiry;

...

I'm still slightly puzzled by what this function does: it does have four
timestamps (authtime, starttime, endtime, renew_till) that are all
transferred as 64-bit values and won't expire, but then it also uses the
32-bit expiry field in rxrpc_key_token->kad->expiry instead of the 64-bit
rxrpc_key_token->k5 fields.

Good catch.  This is a cut'n'paste error.  It should be using
token->k5->expiry here not token->kad->expiry.

This appears to overlay the first 32 bits of the
rxrpc_key_token->k5->starttime field, which is also a time value on
little-endian architectures by chance, but I would assume that it's always
in the past, meaning the keys would already be expired.

Yeah - I'm not sure why it works.

David

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help