Fix BSS age underflow

Message ID	20230109200910.146431-1-chaitanya.mgit@gmail.com
State	Accepted
Headers	show Return-Path: <hostap-bounces+incoming=patchwork.ozlabs.org@lists.infradead.org> From: chaitanya.mgit@gmail.com To: hostap@lists.infradead.org Cc: Krishna T <krishna.t@nordicsemi.no>, Sridhar Nuvusetty <sridhar.nuvusetty@nordicsemi.no> Subject: [PATCH] Fix BSS age underflow Date: Tue, 10 Jan 2023 01:39:10 +0530 Message-Id: <20230109200910.146431-1-chaitanya.mgit@gmail.com> MIME-Version: 1.0 preview: From: Krishna T While checking for stale BSSes, the current time is used as a basis and then based on age the stale check time is calculated, but if this is done too early in the boot and if either BOOTTIME/MONOTONIC [...] Content analysis details: (-0.2 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- -0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at https://www.dnswl.org/, no trust [2a00:1450:4864:20:0:0:0:12b listed in] [list.dnswl.org] -0.0 SPF_PASS SPF: sender matches SPF record 0.0 SPF_HELO_NONE SPF: HELO does not publish an SPF Record 0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider [chaitanya.mgit[at]gmail.com] -0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's domain -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid -0.1 DKIM_VALID_EF Message has a valid DKIM or DK signature from envelope-from domain Precedence: list Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: "Hostap" <hostap-bounces@lists.infradead.org> Errors-To: hostap-bounces+incoming=patchwork.ozlabs.org@lists.infradead.org
Series	Fix BSS age underflow \| expand Fix BSS age underflow

Message ID

20230109200910.146431-1-chaitanya.mgit@gmail.com

State

Accepted

Headers

From: chaitanya.mgit@gmail.com
To: hostap@lists.infradead.org
Cc: Krishna T <krishna.t@nordicsemi.no>,
	Sridhar Nuvusetty <sridhar.nuvusetty@nordicsemi.no>
Subject: [PATCH] Fix BSS age underflow
Date: Tue, 10 Jan 2023 01:39:10 +0530
Message-Id: <20230109200910.146431-1-chaitanya.mgit@gmail.com>
MIME-Version: 1.0
Precedence: list
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: "Hostap" <hostap-bounces@lists.infradead.org>
Errors-To: hostap-bounces+incoming=patchwork.ozlabs.org@lists.infradead.org

Series

Fix BSS age underflow | expand

Commit Message

Krishna Chaitanya Jan. 9, 2023, 8:09 p.m. UTC

From: Krishna T <krishna.t@nordicsemi.no>

While checking for stale BSSes, the current time is used as a basis and
then based on age the stale check time is calculated, but if this is
done too early in the boot and if either BOOTTIME/MONOTONIC (the one
Zephyr uses by default) are used then the stale check time underflows
and goes to future causing active BSS entries in the scan to be treated
as stale and flushed.

Fix this by adding a check before calculating stale time and ignore this
check till the system reaches the BSS expiration time (this would never
happen with REALTIME clock).

Signed-off-by: Krishna T <krishna.t@nordicsemi.no>
Signed-off-by: Sridhar Nuvusetty <sridhar.nuvusetty@nordicsemi.no>
---
 wpa_supplicant/bss.c | 4 ++++
 1 file changed, 4 insertions(+)

Comments

Johannes Berg Jan. 10, 2023, 4:58 p.m. UTC | #1

On Tue, 2023-01-10 at 01:39 +0530, chaitanya.mgit@gmail.com wrote:
> From: Krishna T <krishna.t@nordicsemi.no>
> 
> While checking for stale BSSes, the current time is used as a basis and
> then based on age the stale check time is calculated, but if this is
> done too early in the boot and if either BOOTTIME/MONOTONIC (the one
> Zephyr uses by default) are used then the stale check time underflows
> and goes to future causing active BSS entries in the scan to be treated
> as stale and flushed.
> 
> Fix this by adding a check before calculating stale time and ignore this
> check till the system reaches the BSS expiration time (this would never
> happen with REALTIME clock).
> 

Makes sense, the REALTIME mention kind of threw me off at first though.

But I think there are probably more cases? Maybe we need some kind of
helper for the actual check, something like "check_age(item_ts, now_ts,
age)"?

johannes

Krishna Chaitanya Jan. 10, 2023, 5:13 p.m. UTC | #2

On Tue, Jan 10, 2023 at 10:28 PM Johannes Berg
<johannes@sipsolutions.net> wrote:
>
> On Tue, 2023-01-10 at 01:39 +0530, chaitanya.mgit@gmail.com wrote:
> > From: Krishna T <krishna.t@nordicsemi.no>
> >
> > While checking for stale BSSes, the current time is used as a basis and
> > then based on age the stale check time is calculated, but if this is
> > done too early in the boot and if either BOOTTIME/MONOTONIC (the one
> > Zephyr uses by default) are used then the stale check time underflows
> > and goes to future causing active BSS entries in the scan to be treated
> > as stale and flushed.
> >
> > Fix this by adding a check before calculating stale time and ignore this
> > check till the system reaches the BSS expiration time (this would never
> > happen with REALTIME clock).
> >
>
> Makes sense, the REALTIME mention kind of threw me off at first though.
:), I was trying to convey that in the case of REALTIME, as we use absolute time
-180seconds is still in the past, assuming there are no jumps.

> But I think there are probably more cases? Maybe we need some kind of
> helper for the actual check, something like "check_age(item_ts, now_ts,
> age)"?
Sure, but this patch should work with most clock_id's, only case I can think
of is, time jumps in the case of REALTIME, but I guess that affects most callers
that use os_reltime_before?

In which case I would suggest using MONOTONIC os_get_rel_time or adding a
new APIs os_get_montime or passing clock_id to os_get_rel_time?

Johannes Berg Jan. 10, 2023, 8:29 p.m. UTC | #3

On Tue, 2023-01-10 at 22:43 +0530, Krishna Chaitanya wrote:
> 
> > But I think there are probably more cases? Maybe we need some kind of
> > helper for the actual check, something like "check_age(item_ts, now_ts,
> > age)"?
> Sure, but this patch should work with most clock_id's, only case I can think
> of is, time jumps in the case of REALTIME, but I guess that affects most callers
> that use os_reltime_before?
> 
> In which case I would suggest using MONOTONIC os_get_rel_time or adding a
> new APIs os_get_montime or passing clock_id to os_get_rel_time?

Oh no, I just meant there might be other cases of doing subtractions? A
quick grep suggested there might be, but now looking at it it seems they
might not be, so not sure.

johannes

Jouni Malinen Feb. 1, 2023, 4:56 p.m. UTC | #4

On Tue, Jan 10, 2023 at 01:39:10AM +0530, chaitanya.mgit@gmail.com wrote:
> While checking for stale BSSes, the current time is used as a basis and
> then based on age the stale check time is calculated, but if this is
> done too early in the boot and if either BOOTTIME/MONOTONIC (the one
> Zephyr uses by default) are used then the stale check time underflows
> and goes to future causing active BSS entries in the scan to be treated
> as stale and flushed.
> 
> Fix this by adding a check before calculating stale time and ignore this
> check till the system reaches the BSS expiration time (this would never
> happen with REALTIME clock).

Thanks, applied.

diff --git a/wpa_supplicant/bss.c b/wpa_supplicant/bss.c
index e13783ce1..65b58bd79 100644
--- a/wpa_supplicant/bss.c
+++ b/wpa_supplicant/bss.c
@@ -936,6 +936,10 @@  void wpa_bss_flush_by_age(struct wpa_supplicant *wpa_s, int age)
 		return;
 
 	os_get_reltime(&t);
+
+	if (t.sec < age)
+		return; /* avoid underflow */
+
 	t.sec -= age;
 
 	dl_list_for_each_safe(bss, n, &wpa_s->bss, struct wpa_bss, list) {

Fix BSS age underflow

Commit Message

Comments

Patch