Products Openwall GNU/*/Linux   server OS Linux Kernel Runtime Guard John the Ripper   password cracker Free & Open Source for any platform in the cloud Pro for Linux Pro for macOS Wordlists   for password cracking passwdqc   policy enforcement Free & Open Source for Unix Pro for Windows (Active Directory) yescrypt   KDF & password hashing yespower   Proof-of-Work (PoW) crypt_blowfish   password hashing phpass   ditto in PHP tcb   better password shadowing Pluggable Authentication Modules scanlogd   port scan detector popa3d   tiny POP3 daemon blists   web interface to mailing lists msulogin   single user mode login php_mt_seed   mt_rand() cracker Services Publications Articles Presentations Resources Mailing lists Community wiki Source code repositories (GitHub) Source code repositories (CVSweb) File archive & mirrors How to verify digital signatures OVE IDs What's new

Message-ID: <20240325122113.GB4163@brightrain.aerifal.cx>
Date: Mon, 25 Mar 2024 08:21:13 -0400
From: Rich Felker <dalias@...c.org>
To: Alexander Weps <exander77@...me>
Cc: musl@...ts.openwall.com
Subject: Re: Broken mktime calculations when crossing DST boundary

On Mon, Mar 25, 2024 at 11:52:00AM +0000, Alexander Weps wrote:
> This is the simplest and most obvious example how broken the
> calculation in musl is:
> 
> void test10()
> {
>     time_t t = 0;
>     struct tm tm = {0};
>     char buf[64];
> 
>     tm.tm_year = 2011 - 1900;
>     tm.tm_mon = 12 - 1;
>     tm.tm_mday = 29;
>     tm.tm_hour = 0;
>     tm.tm_min = 0;
>     tm.tm_sec = 0;
>     tm.tm_isdst = 0;
> 
>     strftime(buf, sizeof buf, "%F %T %Z", &tm);
>     printf("before: %s %ld %ld\n", buf, t, calc(&tm));
> 
>     t = mktime(&tm);
> 
>     strftime(buf, sizeof buf, "%F %T %Z", &tm);
>     printf("after1: %s %ld %ld\n", buf, t, calc(&tm));
> 
>     tm.tm_mday += 1;
>     t = mktime(&tm);
> 
>     strftime(buf, sizeof buf, "%F %T %Z", &tm);
>     printf("after2: %s %ld %ld\n", buf, t, calc(&tm));
> }
> 
> TZ=Pacific/Apia
> Year is greater than 1970.
> 
> Input:
> 2011-12-29 01:00:00 -10
> 
> Add a day:
>     tm.tm_mday += 1;
>     t = mktime(&tm);
> 
> Output:
> 2011-12-29 01:00:00 -10
> 
> Musl cannot reliably increment date by a day. Incrementing struct tm
> representing 2011-12-29 01:00:00 -10 by one day leads to the same
> date.
> 
> Causing a program to loop or stack overflow.

I thought you had found a real bug here, and spent some time working
out the math by hand on paper because local time is so headbangingly
awful and confusing. In the end, the conclusion I'm left with is that
it's working just as expected.

A "spring forward" like this is just like the start of DST, except
that you can't disambiguate the does-not-exist time with an explicit
tm_isdst. So all reasoning about what happens is equivalent to the
much more familar case of start-of-DST with tm_isdst=-1.

If you take your test program and switch it to initialize with
tm_mday=31, then do -=1 instead of +=1, you'll find that it gives 
2011-12-29 01:00:00 -10 as well, only now it seems like the correct,
expected thing to happen. Any change to "fix" the case you're
complaining about would *necessarily* break this case.

You cannot iterate days by making relative changes to struct tm and
calling mktime. This just does not work. You could instead iterate
calendar day inputs yourself, throwing away duplicate outputs
(resulting from nonexistent days like this one) but that would miss
days that exist in duplicate on the calendar, where the change happens
in the opposite direction. What's probably a better approach is
iterating time_t values (or a struct tm in UTC, using timegm) then,
for each day, converting to localtime and picking a "start of day"
time in localtime.

In any case, the core issue you're hitting here is that time zones are
HARD to work with and that there is inherent complexity that libc
cannot save you from. You only got lucky that what you were trying to
do "worked" with glibc because you were iterating days forward; if you
were doing reverse, it would break exactly the same way.

Rich

Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.