dropbear: dbutil.c comparison

comparison dbutil.c @ 1622:e11ed628708b

- Add adaptive authentication failure delay - Rework monotonic_now/gettime_wrapper and use clock_gettime on more platforms

author	Matt Johnston <matt@ucc.asn.au>
date	Mon, 05 Nov 2018 23:36:34 +0800
parents	e75dab5bec71
children	dfbe947bdf0d

comparison

equal deleted inserted replaced

-:8cdabd7d34aa
+:e11ed628708b
 		c |= (xa[i] ^ xb[i]);
 	}
 	return c;
 }
-#if defined(__linux__) && defined(SYS_clock_gettime)
+/* higher-resolution monotonic timestamp, falls back to gettimeofday */
-/* CLOCK_MONOTONIC_COARSE was added in Linux 2.6.32 but took a while to
+void gettime_wrapper(struct timespec *now) {
-reach userspace include headers */
+	struct timeval tv;
-#ifndef CLOCK_MONOTONIC_COARSE
-#define CLOCK_MONOTONIC_COARSE 6
-#endif
-/* Some old toolchains know SYS_clock_gettime but not CLOCK_MONOTONIC */
-#ifndef CLOCK_MONOTONIC
-#define CLOCK_MONOTONIC 1
-#endif
-static clockid_t get_linux_clock_source() {
-	struct timespec ts;
-	if (syscall(SYS_clock_gettime, CLOCK_MONOTONIC_COARSE, &ts) == 0) {
-		return CLOCK_MONOTONIC_COARSE;
-	}
-	if (syscall(SYS_clock_gettime, CLOCK_MONOTONIC, &ts) == 0) {
-		return CLOCK_MONOTONIC;
-	}
-	return -1;
-}
-#endif
-time_t monotonic_now() {
 #if DROPBEAR_FUZZ
 	if (fuzz.fuzzing) {
 		/* time stands still when fuzzing */
-		return 5;
+		now->tv_sec = 5;
-	}
+		now->tv_nsec = 0;
-#endif
+	}
+#endif
+#if defined(HAVE_CLOCK_GETTIME) && defined(CLOCK_MONOTONIC)
+	/* POSIX monotonic clock. Newer Linux, BSD, MacOSX >10.12 */
+	if (clock_gettime(CLOCK_MONOTONIC, now) == 0) {
+		return;
+	}
+#endif
 #if defined(__linux__) && defined(SYS_clock_gettime)
 	{
-	static clockid_t clock_source = -2;
+	/* Old linux toolchain - kernel might support it but not the build headers */
+	/* Also glibc <2.17 requires -lrt which we neglect to add */
-	if (clock_source == -2) {
+	static int linux_monotonic_failed = 0;
-		/* First run, find out which one works.
+	if (!linux_monotonic_failed) {
-		-1 will fall back to time() */
+		/* CLOCK_MONOTONIC isn't in some headers */
-		clock_source = get_linux_clock_source();
+		int clock_source_monotonic = 1;
-	}
+		if (syscall(SYS_clock_gettime, clock_source_monotonic, now) == 0) {
+			return;
-	if (clock_source >= 0) {
+		} else {
-		struct timespec ts;
+			/* Don't try again */
-		if (syscall(SYS_clock_gettime, clock_source, &ts) != 0) {
+			linux_monotonic_failed = 1;
-			/* Intermittent clock failures should not happen */
+		}
-			dropbear_exit("Clock broke");
+	}
-		}
+	}
-		return ts.tv_sec;
+#endif /* linux fallback clock_gettime */
-	}
-	}
-#endif /* linux clock_gettime */
 #if defined(HAVE_MACH_ABSOLUTE_TIME)
 	{
-	/* OS X, see https://developer.apple.com/library/mac/qa/qa1398/_index.html */
+	/* OS X pre 10.12, see https://developer.apple.com/library/mac/qa/qa1398/_index.html */
 	static mach_timebase_info_data_t timebase_info;
+	uint64_t scaled_time;
 	if (timebase_info.denom == 0) {
 		mach_timebase_info(&timebase_info);
 	}
-	return mach_absolute_time() * timebase_info.numer / timebase_info.denom
+	scaled_time = mach_absolute_time() * timebase_info.numer / timebase_info.denom;
-		/ 1e9;
+	now->tv_sec = scaled_time / 1000000000;
+	now->tv_nsec = scaled_time % 1000000000;
 	}
 #endif /* osx mach_absolute_time */
 	/* Fallback for everything else - this will sometimes go backwards */
-	return time(NULL);
+	gettimeofday(&tv, NULL);
+	now->tv_sec = tv.tv_sec;
+	now->tv_nsec = 1000*tv.tv_usec;
+}
+/* second-resolution monotonic timestamp */
+time_t monotonic_now() {
+	struct timespec ts;
+	gettime_wrapper(&ts);
+	return ts.tv_sec;
 }
 void fsync_parent_dir(const char* fn) {
 #ifdef HAVE_LIBGEN_H
 	char *fn_dir = m_strdup(fn);

Mercurial > dropbear

comparison dbutil.c @ 1622:e11ed628708b