summaryrefslogtreecommitdiff
path: root/src
AgeCommit message (Collapse)AuthorFilesLines
2011-09-18disable dynamic linking/loading code in static libc builds, for nowRich Felker1-0/+2
it does not work, but some configure scripts will falsely detect support then generate programs that crash when they call dlopen.
2011-09-18overhaul clone syscall wrappingRich Felker8-62/+108
several things are changed. first, i have removed the old __uniclone function signature and replaced it with the "standard" linux __clone/clone signature. this was necessary to expose clone to applications anyway, and it makes it easier to port __clone to new archs, since it's now testable independently of pthread_create. secondly, i have removed all references to the ugly ldt descriptor structure (i386 only) from the c code and pthread structure. in places where it is needed, it is now created on the stack just when it's needed, in assembly code. thus, the i386 __clone function takes the desired thread pointer as its argument, rather than an ldt descriptor pointer, just like on all other sane archs. this should not affect applications since there is really no way an application can use clone with threads/tls in a way that doesn't horribly conflict with and clobber the underlying implementation's use. applications are expected to use clone only for creating actual processes, possibly with new namespace features and whatnot.
2011-09-17dummy implementation of set_thread_areaRich Felker1-0/+6
eventually we may have a working "generic" implementation for archs that don't need anything special. in any case, the goal of having stubs like this is to allow early testing of new ports before all the details needed for threads have been filled in. more functions like this will follow.
2011-09-16fix assumptions that char is signedRich Felker1-2/+2
2011-09-16fix more instances of old a_xchg (use new a_swap name)Rich Felker3-3/+3
2011-09-16use a_swap rather than old name a_xchgRich Felker1-1/+1
2011-09-16fix generic sigsetjmp (unused anyway) pointer signedness errorRich Felker1-1/+1
2011-09-16fix idiotic const-correctness error in lio_listioRich Felker1-1/+1
i blame this one on posix for using hideous const-qualified double pointers which are unusable without hideous casts.
2011-09-16fix ptrace (maybe)Rich Felker1-1/+8
2011-09-15implement ptrace syscall wrapper (untested)Rich Felker1-0/+18
2011-09-14remove incorrectly-made-visible internal dst offset variableRich Felker1-1/+0
2011-09-14fix inconsistent signature for aio_errorRich Felker1-1/+1
2011-09-13fix return types for aio_read and aio_write againRich Felker1-2/+2
previous fix was backwards and propagated the wrong type rather than the right one...
2011-09-13fix various errors in function signatures/prototypes found by nszRich Felker5-8/+11
2011-09-13add missing posix_spawnattr_init/destroy functionsRich Felker2-0/+13
2011-09-13remove some stray trailing space charactersRich Felker4-4/+4
2011-09-12implement gnu sigisemptysetRich Felker1-0/+9
2011-09-11add dummied strverscmp (obnoxious GNU function)Rich Felker1-0/+7
programs that use this tend to horribly botch international text support, so it's questionable whether we want to support it even in the long term... for now, it's just a dummy that calls strcmp.
2011-09-11fix serious bug in pthread_joinRich Felker1-2/+2
on spurious wakeups/returns from __timedwait, pthread_join would "succeed" and unmap the thread's stack while it was still running. at best this would lead to SIGSEGV when the thread resumed execution, but in the worst case, the thread would later resume executing on top of another new thread's stack mapped at the same address. spent about 4 hours tracking this bug down, chasing rare difficult-to-reproduce stack corruption in a stress test program. still no idea *what* caused the spurious wakeups; i suspect it's a kernel bug.
2011-09-09fix pthread_join wait call: thread termination tid futex is not privateRich Felker1-1/+1
this seeme to be the bug that prevented enabling of private futex support. i'm going to hold off on switching to private futexes until after the next release, and until i get a chance to audit all wait/wake calls to make sure they're using the correct private argument, but with this change it should be safe to enable private futex support.
2011-09-09implement POSIX asynchronous ioRich Felker7-0/+338
some features are not yet supported, and only minimal testing has been performed. should be considered experimental at this point.
2011-09-05fix incorrect overflow errors on strtoul, etc.Rich Felker4-8/+20
2011-09-05strptime: fix use of uninitialized dest field in converting integerRich Felker1-1/+1
2011-09-04more fmemopen null termination fixesRich Felker1-2/+3
null termination is only added when current size grows. in update modes, null termination is not added if it does not fit (i.e. it is not allowed to clobber data). these rules make very little sense, but that's how it goes..
2011-09-04fix some fmemopen behaviorsRich Felker1-4/+7
read should not be allowed past "current size". append mode should write at "current size", not buffer size. null termination should not be written except when "current size" grows.
2011-09-04handle pending cancellation when enabling async cancellationRich Felker1-0/+1
this is not strictly required by the standard, but without it, there is a race condition where cancellation arriving just before async cancellation is enabled might not be acted upon. it is impossible for a conforming application to work around this race condition since calling pthread_testcancel after setting async cancellation mode is not allowed (pthread_testcancel is not specified to be async-cancel-safe). thus the implementation should be responsible for eliminating the race, from a quality-of-implementation standpoint.
2011-09-04fmemopen: fix eof handling, hopefully right this timeRich Felker1-3/+4
2011-09-04fmemopen fixesRich Felker1-1/+3
disallow seek past end of buffer (per posix) fix position accounting to include data buffered for read don't set eof flag when no data was requested
2011-09-04memstreams: fix incorrect handling of file pos > current sizeRich Felker2-4/+4
the addition is safe and cannot overflow because both operands are positive when considered as signed quantities.
2011-09-04optimize seek function for memory streamsRich Felker2-24/+6
2011-09-04fix twos complement overflow bug in mem streams boundary checkRich Felker2-2/+2
the expression -off is not safe in case off is the most-negative value. instead apply - to base which is known to be non-negative and bounded within sanity.
2011-09-03implement fmemopenRich Felker1-18/+66
testing so far has been minimal. may need further work.
2011-09-03fix some length calculations in memory streamsRich Felker2-3/+3
2011-09-03implement open_wmemstreamRich Felker1-0/+95
not heavily tested, but it seems to be correct, including the odd behavior that seeking is in terms of wide character count. this precludes any simple buffering, so we just make the stream unbuffered.
2011-09-03fix RTLD_NEXT on x86_64Rich Felker1-1/+1
the return address was being truncated to 32 bits, preventing the dlsym code from determining which module contains the calling code.
2011-09-03implement open_memstreamRich Felker1-0/+94
this is the first attempt, and may have bugs. only minimal testing has been performed.
2011-09-02fix missing prototypes/wrong signature for psiginfo, psignalRich Felker1-1/+1
2011-08-23bring back ___environ symbol (3 underscores)Rich Felker1-0/+1
its existence doesn't hurt anything, and dynamic-linked binaries using previous versions of musl were wrongly binding to it instead of __environ.
2011-08-23use new a_crash() asm to optimize double-free handler.Rich Felker1-2/+2
gcc generates extremely bad code (7 byte immediate mov) for the old null pointer write approach. it should be generating something like "xor %eax,%eax ; mov %al,(%eax)". in any case, using a dedicated crashing opcode accomplishes the same thing in one byte.
2011-08-23security hardening: ensure suid programs have valid stdin/out/errRich Felker4-15/+42
this behavior (opening fds 0-2 for a suid program) is explicitly allowed (but not required) by POSIX to protect badly-written suid programs from clobbering files they later open. this commit does add some cost in startup code, but the availability of auxv and the security flag will be useful elsewhere in the future. in particular auxv is needed for static-linked vdso support, which is still waiting to be committed (sorry nik!)
2011-08-16in pathconf, -1, not 0, means unsupported.. syncio presumably works, too.Rich Felker1-3/+3
2011-08-16fix bogus pathconf result for file size bitsRich Felker1-1/+1
2011-08-16partially working strptimeRich Felker1-148/+149
it's missing at least: - derived fields - week numbers - short year (without century) support - locale modifiers
2011-08-16ldso: move the suid/secure check code closer to env/auxv processingRich Felker1-7/+7
this does not change behavior, but the idea is to avoid letting other code build up between these two points, whereby the environment variables might get used before security it checked.
2011-08-16honor AT_SECURE aux vector flagRich Felker1-2/+2
2011-08-16RTLD_NEXT supportRich Felker4-3/+32
the asm wrapper is needed to get the return address without compiler-specific extensions.
2011-08-16LD_PRELOAD supportRich Felker1-0/+20
2011-08-15simplify and improve double-free checkRich Felker1-2/+2
a valid mmapped block will have an even (actually aligned) "extra" field, whereas a freed chunk on the heap will always have an in-use neighbor. this fixes a potential bug if mmap ever allocated memory below the main program/brk (in which case it would be wrongly-detected as a double-free by the old code) and allows the double-free check to work for donated memory outside of the brk area (or, in the future, secondary heap zones if support for their creation is added).
2011-08-14macro for pthread_equalRich Felker1-1/+1
no sense bloating apps with a function call for an equality comparison...
2011-08-13fix missing include in last commitRich Felker1-0/+1