tag name | glibc-2.34 (9df03063320651bc629fa427eef3ac73fabb61ba) |
tag date | 2021-08-01 21:35:11 -0400 |
tagged by | Carlos O'Donell <carlos@redhat.com> |
tagged object | commit ae37d06c7d... |
download | glibc-2.34.tar.gz glibc-2.34.tar.bz2 glibc-2.34.zip |
---|
The GNU C Library version 2.34 is now available
The GNU C Library
=================
The GNU C Library version 2.34 is now available.
The GNU C Library is used as *the* C library in the GNU system and
in GNU/Linux systems, as well as many other systems that use Linux
as the kernel.
The GNU C Library is primarily designed to be a portable
and high performance C library. It follows all relevant
standards including ISO C11 and POSIX.1-2017. It is also
internationalized and has one of the most complete
internationalization interfaces known.
The GNU C Library webpage is at http://www.gnu.org/software/libc/
Packages for the X.Y release may be downloaded from:
http://ftpmirror.gnu.org/libc/
http://ftp.gnu.org/gnu/libc/
The mirror list is at http://www.gnu.org/order/ftp.html
NEWS for version 2.34
=====================
Major new features:
* In order to support smoother in-place-upgrades and to simplify
the implementation of the runtime all functionality formerly
implemented in the libraries libpthread, libdl, libutil, libanl has
been integrated into libc. New applications do not need to link with
-lpthread, -ldl, -lutil, -lanl anymore. For backwards compatibility,
empty static archives libpthread.a, libdl.a, libutil.a, libanl.a are
provided, so that the linker options keep working. Applications which
have been linked against glibc 2.33 or earlier continue to load the
corresponding shared objects (which are now empty). The integration
of those libraries into libc means that additional symbols become
available by default. This can cause applications that contain weak
references to take unexpected code paths that would only have been
used in previous glibc versions when e.g. preloading libpthread.so.0,
potentially exposing application bugs.
* When _DYNAMIC_STACK_SIZE_SOURCE or _GNU_SOURCE are defined,
PTHREAD_STACK_MIN is no longer constant and is redefined to
sysconf(_SC_THREAD_STACK_MIN). This supports dynamic sized register
sets for modern architectural features like Arm SVE.
* Add _SC_MINSIGSTKSZ and _SC_SIGSTKSZ. When _DYNAMIC_STACK_SIZE_SOURCE
or _GNU_SOURCE are defined, MINSIGSTKSZ and SIGSTKSZ are no longer
constant on Linux. MINSIGSTKSZ is redefined to sysconf(_SC_MINSIGSTKSZ)
and SIGSTKSZ is redefined to sysconf (_SC_SIGSTKSZ). This supports
dynamic sized register sets for modern architectural features like
Arm SVE.
* The dynamic linker implements the --list-diagnostics option, printing
a dump of information related to IFUNC resolver operation and
glibc-hwcaps subdirectory selection.
* On Linux, the function execveat has been added. It operates similar to
execve and it is is already used to implement fexecve without requiring
/proc to be mounted. However, different than fexecve, if the syscall is not
supported by the kernel an error is returned instead of trying a fallback.
* The ISO C2X function timespec_getres has been added.
* The feature test macro __STDC_WANT_IEC_60559_EXT__, from draft ISO
C2X, is supported to enable declarations of functions defined in Annex F
of C2X. Those declarations are also enabled when
__STDC_WANT_IEC_60559_BFP_EXT__, as specified in TS 18661-1, is
defined, and when _GNU_SOURCE is defined.
* On powerpc64*, glibc can now be compiled without scv support using the
--disable-scv configure option.
* Add support for 64-bit time_t on configurations like x86 where time_t
is traditionally 32-bit. Although time_t still defaults to 32-bit on
these configurations, this default may change in future versions.
This is enabled with the _TIME_BITS preprocessor macro set to 64 and is
only supported when LFS (_FILE_OFFSET_BITS=64) is also enabled. It is
only enabled for Linux and the full support requires a minimum kernel
version of 5.1.
* The main gconv-modules file in glibc now contains only a small set of
essential converter modules and the rest have been moved into a supplementary
configuration file gconv-modules-extra.conf in the gconv-modules.d directory
in the same GCONV_PATH. Similarly, external converter modules directories
may have supplementary configuration files in a gconv-modules.d directory
with names ending with .conf to logically classify the converter modules in
that directory.
* On Linux, a new tunable, glibc.pthread.stack_cache_size, can be used
to configure the size of the thread stack cache.
* The function _Fork has been added as an async-signal-safe fork replacement
since Austin Group issue 62 droped the async-signal-safe requirement for
fork (and it will be included in the future POSIX standard). The new _Fork
function does not run any atfork function neither resets any internal state
or lock (such as the malloc one), and only sets up a minimal state required
to call async-signal-safe functions (such as raise or execve). This function
is currently a GNU extension.
* On Linux, the close_range function has been added. It allows efficiently
closing a range of file descriptors on recent kernels (version 5.9).
* The function closefrom has been added. It closes all file descriptors
greater than or equal to a given integer. This function is a GNU extension,
although it is also present in other systems.
* The posix_spawn_file_actions_addclosefrom_np function has been added,
enabling posix_spawn and posix_spawnp to close all file descriptors greater
than or equal to a given integer. This function is a GNU extension,
although Solaris also provides a similar function.
Deprecated and removed features, and other changes affecting compatibility:
* The function pthread_mutex_consistent_np has been deprecated; programs
should use the equivalent standard function pthread_mutex_consistent
instead.
* The function pthread_mutexattr_getrobust_np has been deprecated;
programs should use the equivalent standard function
pthread_mutexattr_getrobust instead.
* The function pthread_mutexattr_setrobust_np has been deprecated;
programs should use the equivalent standard function
pthread_mutexattr_setrobust instead.
* The function pthread_yield has been deprecated; programs should use
the equivalent standard function sched_yield instead.
* The function inet_neta declared in <arpa/inet.h> has been deprecated.
* Various rarely-used functions declared in <resolv.h> and
<arpa/nameser.h> have been deprecated. Applications are encouraged to
use dedicated DNS processing libraries if applicable. For <resolv.h>,
this affects the functions dn_count_labels, fp_nquery, fp_query,
fp_resstat, hostalias, loc_aton, loc_ntoa, p_cdname, p_cdnname,
p_class, p_fqname, p_fqnname, p_option, p_query, p_rcode, p_time,
p_type, putlong, putshort, res_hostalias, res_isourserver,
res_nameinquery, res_queriesmatch, res_randomid, sym_ntop, sym_ntos,
sym_ston. For <arpa/nameser.h>, the functions ns_datetosecs,
ns_format_ttl, ns_makecanon, ns_parse_ttl, ns_samedomain, ns_samename,
ns_sprintrr, ns_sprintrrf, ns_subdomain have been deprecated.
* Various symbols previously defined in libresolv have been moved to libc
in order to prepare for libresolv moving entirely into libc (see earlier
entry for merging libraries into libc). The symbols __dn_comp,
__dn_expand, __dn_skipname, __res_dnok, __res_hnok, __res_mailok,
__res_mkquery, __res_nmkquery, __res_nquery, __res_nquerydomain,
__res_nsearch, __res_nsend, __res_ownok, __res_query, __res_querydomain,
__res_search, __res_send formerly in libresolv have been renamed and no
longer have a __ prefix. They are now available in libc.
* The pthread cancellation handler is now installed with SA_RESTART and
pthread_cancel will always send the internal SIGCANCEL on a cancellation
request. It should not be visible to applications since the cancellation
handler should either act upon cancellation (if asynchronous cancellation
is enabled) or ignore the cancellation internal signal. However there are
buggy kernel interfaces (for instance some CIFS versions) that could still
see a spurious EINTR error when cancellation interrupts a blocking syscall.
* Previously, glibc installed its various shared objects under versioned
file names such as libc-2.33.so. The ABI sonames (e.g., libc.so.6)
were provided as symbolic links. Starting with glibc 2.34, the shared
objects are installed under their ABI sonames directly, without
symbolic links. This increases compatibility with distribution
package managers that delete removed files late during the package
upgrade or downgrade process.
* The symbols mallwatch and tr_break are now deprecated and no longer used in
mtrace. Similar functionality can be achieved by using conditional
breakpoints within mtrace functions from within gdb.
* The __morecore and __after_morecore_hook malloc hooks and the default
implementation __default_morecore have been removed from the API. Existing
applications will continue to link against these symbols but the interfaces
no longer have any effect on malloc.
* Debugging features in malloc such as the MALLOC_CHECK_ environment variable
(or the glibc.malloc.check tunable), mtrace() and mcheck() have now been
disabled by default in the main C library. Users looking to use these
features now need to preload a new debugging DSO libc_malloc_debug.so to get
this functionality back.
* The deprecated functions malloc_get_state and malloc_set_state have been
moved from the core C library into libc_malloc_debug.so. Legacy applications
that still use these functions will now need to preload libc_malloc_debug.so
in their environment using the LD_PRELOAD environment variable.
* The deprecated memory allocation hooks __malloc_hook, __realloc_hook,
__memalign_hook and __free_hook are now removed from the API. Compatibility
symbols are present to support legacy programs but new applications can no
longer link to these symbols. These hooks no longer have any effect on glibc
functionality. The malloc debugging DSO libc_malloc_debug.so currently
supports hooks and can be preloaded to get this functionality back for older
programs. However this is a transitional measure and may be removed in a
future release of the GNU C Library. Users may port away from these hooks by
writing and preloading their own malloc interposition library.
Changes to build and runtime requirements:
* On Linux, the shm_open, sem_open, and related functions now expect the
file shared memory file system to be mounted at /dev/shm. These functions
no longer search among the system's mount points for a suitable
replacement if /dev/shm is not available.
Security related changes:
CVE-2021-27645: The nameserver caching daemon (nscd), when processing
a request for netgroup lookup, may crash due to a double-free,
potentially resulting in degraded service or Denial of Service on the
local system. Reported by Chris Schanzle.
CVE-2021-33574: The mq_notify function has a potential use-after-free
issue when using a notification type of SIGEV_THREAD and a thread
attribute with a non-default affinity mask.
CVE-2021-35942: The wordexp function may overflow the positional
parameter number when processing the expansion resulting in a crash.
Reported by Philippe Antoine.
The following bugs are resolved with this release:
[4737] libc: fork is not async-signal-safe
[5781] math: Slow dbl-64 sin/cos/sincos for special values
[10353] libc: Methods for deleting all file descriptors greater than
given integer (closefrom)
[14185] glob: fnmatch() fails when '*' wildcard is applied on the file
name containing multi-byte character(s)
[14469] math: Inaccurate j0f function
[14470] math: Inaccurate j1f function
[14471] math: Inaccurate y0f function
[14472] math: Inaccurate y1f function
[14744] nptl: kill -32 $pid or kill -33 $pid on a process cancels a
random thread
[15271] dynamic-link: dlmopen()ed shared library with LM_ID_NEWLM
crashes if it fails dlsym() twice
[15648] nptl: multiple definition of `__lll_lock_wait_private'
[16063] nptl: Provide a pthread_once variant in libc directly
[17144] libc: syslog is not thread-safe if NO_SIGPIPE is not defined
[17145] libc: syslog with LOG_CONS leaks console file descriptor
[17183] manual: description of ENTRY struct in <search.h> in glibc
manual is incorrect
[18435] nptl: pthread_once hangs when init routine throws an exception
[18524] nptl: Missing calloc error checking in
__cxa_thread_atexit_impl
[19329] dynamic-link: dl-tls.c assert failure at concurrent
pthread_create and dlopen
[19366] nptl: returning from a thread should disable cancellation
[19511] nptl: 8MB memory leak in pthread_create in case of failure
when non-root user changes priority
[20802] dynamic-link: getauxval NULL pointer dereference after static
dlopen
[20813] nptl: pthread_exit is inconsistent between libc and libpthread
[22057] malloc: malloc_usable_size is broken with mcheck
[22668] locale: LC_COLLATE: the last character of ellipsis is not
ordered correctly
[23323] libc: [RFE] CSU startup hardening.
[23328] malloc: Remove malloc hooks and ensure related APIs return no
data.
[23462] dynamic-link: Static binary with dynamic string tokens ($LIB,
$PLATFORM, $ORIGIN) crashes
[23489] libc: "gcc -lmcheck" aborts on free when using posix_memalign
[23554] nptl: pthread_getattr_np reports wrong stack size with
MULTI_PAGE_ALIASING
[24106] libc: Bash interpreter in ldd script is taken from host
[24773] dynamic-link: dlerror in an secondary namespace does not use
the right free implementation
[25036] localedata: Update collation order for Swedish
[25383] libc: where_is_shmfs/__shm_directory/SHM_GET_NAME may cause
shm_open to pick wrong directory
[25680] dynamic-link: ifuncmain9picstatic and ifuncmain9picstatic
crash in IFUNC resolver due to stack canary (--enable-stack-
protector=all)
[26874] build: -Warray-bounds in _IO_wdefault_doallocate
[26983] math: [x86_64] x86_64 tgamma has too large ULP error
[27111] dynamic-link: pthread_create and tls access use link_map
objects that may be concurrently freed by dlclose
[27132] malloc: memusagestat is linked to system librt, leading to
undefined symbols on major version upgrade
[27136] dynamic-link: dtv setup at thread creation may leave an entry
uninitialized
[27249] libc: libSegFault.so does not output signal number properly
[27304] nptl: pthread_cond_destroy does not pass private flag to futex
system calls
[27318] dynamic-link: glibc fails to load binaries when built with
-march=sandybridge: CPU ISA level is lower than required
[27343] nss: initgroups() SIGSEGVs when called on a system without
nsswich.conf (in a chroot)
[27346] dynamic-link: x86: PTWRITE feature check is missing
[27389] network: NSS chroot hardening causes regressions in chroot
deployments
[27403] dynamic-link: aarch64: tlsdesc htab is not freed on dlclose
[27444] libc: sysconf reports unsupported option (-1) for
_SC_LEVEL1_ICACHE_LINESIZE on X86 since v2.33
[27462] nscd: double-free in nscd (CVE-2021-27645)
[27468] malloc: aarch64: realloc crash with heap tagging: FAIL:
malloc/tst-malloc-thread-fail
[27498] dynamic-link: __dl_iterate_phdr lacks unwinding information
[27511] libc: S390 memmove assumes Vector Facility when MIE Facility 3
is present
[27522] glob: glob, glob64 incorrectly marked as __THROW
[27555] dynamic-link: Static tests fail with --enable-stack-
protector=all
[27559] libc: fstat(AT_FDCWD) succeeds (it shouldn't) and returns
information for the current directory
[27577] dynamic-link: elf/ld.so --help doesn't work
[27605] libc: tunables can't control xsave/xsavec selection in
dl_runtime_resolve_*
[27623] libc: powerpc: Missing registers in sc[v] clobbers list
[27645] libc: [linux] sysconf(_SC_NPROCESSOR...) breaks down on
containers
[27646] dynamic-link: Linker error for non-existing NSS symbols (e.g.
_nss_files_getcanonname_r) from within a dlmopen namespace.
[27648] libc: FAIL: misc/tst-select
[27650] stdio: vfscanf returns too early if a match is longer than
INT_MAX
[27651] libc: Performance regression after updating to 2.33
[27655] string: Wrong size calculation in string/test-strnlen.c
[27706] libc: select fails to update timeout on error
[27709] libc: arm: FAIL: debug/tst-longjmp_chk2
[27721] dynamic-link: x86: ld_audit ignores bind now for TLSDESC and
tries resolving them lazily
[27744] nptl: Support different libpthread/ld.so load orders in
libthread_db
[27749] libc: Data race __run_exit_handlers
[27761] libc: getconf: Segmentation fault when passing '-vq' as
argument
[27832] nss: makedb.c:797:7: error: 'writev' specified size 4294967295
exceeds maximum object size 2147483647
[27870] malloc: MALLOC_CHECK_ causes realloc(valid_ptr, TOO_LARGE) to
not set ENOMEM
[27872] build: Obsolete configure option --enable-stackguard-
randomization
[27873] build: tst-cpu-features-cpuinfo fail when building on AMD cpu
[27882] localedata: Use U+00AF MACRON in more EBCDIC charsets
[27892] libc: powerpc: scv ABI error handling fails to check
IS_ERR_VALUE
[27896] nptl: mq_notify does not handle separately allocated thread
attributes (CVE-2021-33574)
[27901] libc: TEST_STACK_ALIGN doesn't work
[27902] libc: The x86-64 clone wrapper fails to align child stack
[27914] nptl: Install SIGSETXID handler with SA_ONSTACK
[27939] libc: aarch64: clone does not align the stack
[27968] libc: s390x: clone does not align the stack
[28011] libc: Wild read in wordexp (parse_param) (CVE-2021-35942)
[28024] string: s390(31bit): Wrong result of memchr (MEMCHR_Z900_G5)
with n >= 0x80000000
[28028] malloc: malloc: tcache shutdown sequence does not work if the
thread never allocated anything
[28033] libc: Need to check RTM_ALWAYS_ABORT for RTM
[28064] string: x86_64:wcslen implementation list has wcsnlen
[28067] libc: FAIL: posix/tst-spawn5
[28068] malloc: FAIL: malloc/tst-mallocalign1-mcheck
[28071] time: clock_gettime, gettimeofday, time lost vDSO acceleration
on older kernels
[28075] nis: Out-of-bounds static buffer read in nis_local_domain
[28089] build: tst-tls20 fails when linker defaults to --as-needed
[28090] build: elf/tst-cpu-features-cpuinfo-static fails on certain
AMD64 cpus
[28091] network: ns_name_skip may return 0 for domain names without
terminator
Release Notes
=============
https://sourceware.org/glibc/wiki/Release/2.34
Contributors
============
This release was made possible by the contributions of many people.
The maintainers are grateful to everyone who has contributed
changes or bug reports. These include:
Adhemerval Zanella
Alejandro Colomar \(man-pages\)
Alexandra Hájková
Alice Xu
Alyssa Ross
Andreas Roeseler
Andreas Schwab
Anton Blanchard
Arjun Shankar
Armin Brauns
Bruno Haible
Carlos O'Donell
Cooper Qu
DJ Delorie
Dan Raymond
Darius Rad
David Hughes
Fangrui Song
Florian Weimer
H.J. Lu
Hanataka Shinya
Hugo Gabriel Eyherabide
Jakub Jelinek
JeffyChen
John David Anglin
Joseph Myers
Khem Raj
Lirong Yuan
Lucas A. M. Magalhaes
Lukasz Majewski
Maninder Singh
Mark Harris
Martin Sebor
Matheus Castanho
Michal Nazarewicz
Mike Hommey
Naohiro Tamura
Nicholas Piggin
Noah Goldstein
Paul Eggert
Paul Zimmermann
Pedro Franco de Carvalho
Raoni Fassina Firmino
Raphael Moreira Zinsly
Romain GEISSLER
Sajan Karumanchi
Samuel Thibault
Sebastian Rasmussen
Sergei Trofimovich
Shen-Ta Hsieh
Siddhesh Poyarekar
Stafford Horne
Stefan Liebler
Sunil K Pandey
Szabolcs Nagy
Tulio Magno Quites Machado Filho
Vineet Gupta
Vitaly Buka
Vitaly Chikunov
Wilco Dijkstra
Xeonacid
Xiaoming Ni
Yang Xu
liuhongt
noah
Érico Nogueira
-----BEGIN PGP SIGNATURE-----
iQIzBAABCAAdFiEEcnNUKzmWLfeymZMUFnkrTqJTQPgFAmEHTcIACgkQFnkrTqJT
QPhs5Q//SArj/ptNP8LrxyzS7txSMifvrw+Rtv+zHmyqdCV3aMShVAR6MzHVlDjK
ecXWp3mOvpupCfFr1e7Mvm5cS3JLQyjzzw/tRKpMy7c+yAFybn6QKGzkI/CcpEyC
RsgJZw4v8VrUVbnwc1sqK1e/dXiCCUqfJ6ja+Hit7pjlu1uGgb3rBr7mAy1y6UAs
iXad82OxJzCExOyGyolXLhQoWxhNEz5Ma0ABIrPH+uWgP4m5dAYKOexugHtywm9x
hm0TfvuT7TngJaNnkll3Q1X5CwwVGbXORnaGlQgHxf2VIAlRxwmR8yttMnawrb97
iDAlX2WicPXtIepMjBHh9h0ua8EGh3Nxen/UtV/QACQI8hl5Yk3TT8ueE1iM22/L
8Onm98K7c1La9f6z6vVfV6NiTQlL1qj9B3hbM5LzAj3aZBL27zKK4Gr7jk11UQjl
oRuMimyGwvMNTmrdSKSu3uZpzO6XIiWDrSKhAK5WtCyNIHmMijEbEBZY1F4bOspL
22pty717yM2iu6hZNYhu1lmxxekf/ECVeNfwgCBm3yuFnM6tfgAdCXyvB7AT3T68
RNu9hYxO/fh6a0UQZVEa7f468uiUxqzaF+webRg8RmR4WVitvXtvmZySA8uY4eNK
lHpjClumyJVnLmpmD0WY/ZKgNw6vLbIQGWfjTTKJ38ffGjIovgE=
=NHHT
-----END PGP SIGNATURE-----