This is the mail archive of the libc-alpha@sourceware.org mailing list for the glibc project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: [PATCH] [BZ #18433] Check file access/existence before forking.

From: Rich Felker <dalias at libc dot org>
To: Alexander Monakov <amonakov at ispras dot ru>
Cc: Florian Weimer <fweimer at redhat dot com>, Zack Weinberg <zackw at panix dot com>, navid Rahimi <rahimi dot nv at gmail dot com>, GNU C Library <libc-alpha at sourceware dot org>
Date: Fri, 11 Sep 2015 11:55:03 -0400
Subject: Re: [PATCH] [BZ #18433] Check file access/existence before forking.
Authentication-results: sourceware.org; auth=none
References: <55F19819 dot 3010601 at gmail dot com> <ACDB9D4B-30B6-46C1-9286-5F03594CEACC at panix dot com> <CAOUBrm3oeUVDM-q4VFP08gjEkD2UFaz0Xfq1oGBW+m76rDRu+A at mail dot gmail dot com> <CAKCAbMiYkywWeSiJ5jkH7r8eYMSOWFmYDsjEN3k5ZaTPEeJGXw at mail dot gmail dot com> <55F29C54 dot 5010809 at redhat dot com> <alpine dot LNX dot 2 dot 20 dot 1509111226160 dot 17199 at monopod dot intra dot ispras dot ru>

On Fri, Sep 11, 2015 at 12:33:24PM +0300, Alexander Monakov wrote:
> On Fri, 11 Sep 2015, Florian Weimer wrote:
> > The downside is that this adds additional blocking to the posix_spawn
> > operation, which is not something all callers want (some may even prefer
> > that the vfork happens on a new thread).  So I think this needs a
> > configuration knob.
> 
> Huh?  By definition, the vfork parent is suspended until the vfork child
> either execs or terminates.  In both outcomes, the pipe will be already
> closed when the parent is resumed, so it will not block on reading.
> 
> (and if you can rely on parent-suspending semantics of vfork, you don't even
> need a pipe)
> 
> Unless I've missed something?

I've found CLONE_VFORK unreliable on Linux: under some conditions,
when running under ptrace, I observed the parent returning before the
child execs/exits, and of course horrible memory corruption resulted.
Thus I strongly prefer using CLONE_VFORK merely as a hint to the
scheduler (which helps prevent the extra blocking step in read) and
using FD_CLOEXEC for the actual synchronization.

Rich

Follow-Ups:
- Re: [PATCH] [BZ #18433] Check file access/existence before forking.
  - From: Andreas Schwab

References:
- [PATCH] [BZ #18433] Check file access/existence before forking.
  - From: Navid Rahimi
- Re: [PATCH] [BZ #18433] Check file access/existence before forking.
  - From: Zack Weinberg
- Re: [PATCH] [BZ #18433] Check file access/existence before forking.
  - From: navid Rahimi
- Re: [PATCH] [BZ #18433] Check file access/existence before forking.
  - From: Zack Weinberg
- Re: [PATCH] [BZ #18433] Check file access/existence before forking.
  - From: Florian Weimer
- Re: [PATCH] [BZ #18433] Check file access/existence before forking.
  - From: Alexander Monakov

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]