Skip to content

lib: posix: clock: Prevent early overflows #41814

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Apr 1, 2022
Merged

lib: posix: clock: Prevent early overflows #41814

merged 1 commit into from
Apr 1, 2022

Conversation

@nordic-krch
Copy link
Contributor

@nordic-krch nordic-krch commented Jan 14, 2022

Algorithm was converting uptime to nanoseconds which can easily
lead to overflows. Changed algorithm to use milliseconds and
nanoseconds for remainder only.

Issue is related to #41111 where it has been seen that it can easily overflow due to limitations of conversion algorithm. Even with algorithm fixed in #41602 (with the cost of performance degradation) there were chances that it will overflow.

Signed-off-by: Krzysztof Chruscinski [email protected]

@nordic-krch
lib: posix: clock: Prevent early overflows
5ef20a2 
Algorithm was converting uptime to nanoseconds which can easily
lead to overflows. Changed algorithm to use milliseconds and
nanoseconds for remainder only.

Signed-off-by: Krzysztof Chruscinski <[email protected]>
@nordic-krch nordic-krch requested a review from pfalcon as a code owner January 14, 2022 08:28
@github-actions github-actions bot added the area: POSIX POSIX API Library label Jan 14, 2022
@nordic-krch nordic-krch requested a review from andyross January 14, 2022 08:29
@nordic-krch nordic-krch mentioned this pull request Jan 14, 2022
Merged
@nordic-krch
Copy link
Contributor Author

nordic-krch commented Jan 14, 2022

As an example: if we have sys clock frequency 32768Hz (nordic case) then uptime ticks converted to nanoseconds will overflow after 156 days.

@carlescufi carlescufi requested a review from cfriedt January 14, 2022 11:36
cfriedt
cfriedt reviewed Feb 2, 2022
View reviewed changes
@carlescufi carlescufi merged commit 35593ce into zephyrproject-rtos:main Apr 1, 2022
AndreyDodonov-EH added a commit to endresshauser-lp/sdk-zephyr that referenced this pull request Nov 22, 2022
@AndreyDodonov-EH
Use microseconds instead of nanoseconds�Cherry-picked from zephyrproj…
df2f121 
…ect-rtos/zephyr#41814
@AndreyDodonov-EH AndreyDodonov-EH mentioned this pull request Nov 22, 2022
Merged
@AndreyDodonov-EH
Copy link
Contributor

AndreyDodonov-EH commented Dec 2, 2022

As an example: if we have sys clock frequency 32768Hz (nordic case) then uptime ticks converted to nanoseconds will overflow after 156 days.

@nordic-krch The overflow after 156 would happen only in case of the "fast" algorithm, correct? (Z_TMCVT_USE_FAST_ALGO)
In case of slower algorithm, there is no multiplication of ticks and to_hz without prior division or mod.

@AndreyDodonov-EH
Copy link
Contributor

AndreyDodonov-EH commented Dec 2, 2022

@carlescufi @nordic-krch Shouldn't then the same change be applied to clock_settime?

@AndreyDodonov-EH AndreyDodonov-EH mentioned this pull request Dec 6, 2022
Closed
@cfriedt
Copy link
Member

cfriedt commented Dec 7, 2022

Next time, we should try to include a test or two in the PR. I'll put one together now.

@nordic-krch
Copy link
Contributor Author

nordic-krch commented Dec 7, 2022

Shouldn't then the same change be applied to clock_settime?

You are right. Setting clock has the same weakness. I'm a bit overloaded now so won't be able to provide it.

@zephyrbot zephyrbot mentioned this pull request Dec 7, 2022
Closed
@AndreyDodonov-EH
Copy link
Contributor

AndreyDodonov-EH commented Dec 8, 2022

Shouldn't then the same change be applied to clock_settime?

You are right. Setting clock has the same weakness. I'm a bit overloaded now so won't be able to provide it.

No problem, apparently @cfriedt stepped up to do that.
I also already have a snippet in our companies fork.

@cfriedt May be, it will be of use to you:

clock_settime.patch.txt

As for the test, I used back-and-forth conversion, e.g.:

    #define TEST_PERIOD_SECONDS 600000
    #define TEST_PERIOS_STEP 50
    for (uint64_t seconds=0; seconds<TEST_PERIOD_SECONDS ; seconds+=TEST_PERIOS_STEP )
    {
        uint64_t ticks = seconds * CONFIG_SYS_CLOCK_TICKS_PER_SEC;
        uint64_t ns = k_ticks_to_ns_floor64(ticks);
        uint64_t calced_seconds = ns / NSEC_PER_SEC;
        if (seconds != calced_seconds) {
            LOG_INF("seconds: %llu, calced_seconds: %llu \n", seconds, calced_seconds);
            break;
        }
    }

It was breaking before introduction of precision formula in #41602

However, using this precision formula introduced some problems with semaphores with timeouts on our NRF91,
but I still need to write something to reproduce it in a laconic way before I open another issue.

@cfriedt
Copy link
Member

cfriedt commented Dec 8, 2022

@AndreyDodonov-EH - you could always submit a PR.

I was actually more concerned with having tests for the changes that have gone in.

@cfriedt cfriedt mentioned this pull request Dec 12, 2022
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@cfriedt cfriedt cfriedt approved these changes

@carlescufi carlescufi carlescufi approved these changes

@pfalcon pfalcon Awaiting requested review from pfalcon

@andyross andyross Awaiting requested review from andyross

Assignees

No one assigned

Labels

area: POSIX POSIX API Library

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@nordic-krch @AndreyDodonov-EH @cfriedt @carlescufi