| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Sat, 11 Apr 2009 16:58:52 +0100 From: Al Viro <viro@...IV.linux.org.uk> To: "Eric W. Biederman" <ebiederm@...ssion.com> Cc: Andrew Morton <akpm@...ux-foundation.org>, linux-kernel@...r.kernel.org, linux-pci@...r.kernel.org, linux-mm@...ck.org, linux-fsdevel@...r.kernel.org, Hugh Dickins <hugh@...itas.com>, Tejun Heo <tj@...nel.org>, Alexey Dobriyan <adobriyan@...il.com>, Linus Torvalds <torvalds@...ux-foundation.org>, Alan Cox <alan@...rguk.ukuu.org.uk>, Greg Kroah-Hartman <gregkh@...e.de> Subject: Re: [RFC][PATCH 0/9] File descriptor hot-unplug support On Sat, Apr 11, 2009 at 05:01:29AM -0700, Eric W. Biederman wrote: > A couple of weeks ago I found myself looking at the uio, seeing that > it does not support pci hot-unplug, and thinking "Great yet another > implementation of hotunplug logic that needs to be added". > > I decided to see what it would take to add a generic implementation of > the code we have for supporting hot unplugging devices in sysfs, proc, > sysctl, tty_io, and now almost in the tun driver. > > Not long after I touched the tun driver and made it safe to delete the > network device while still holding it's file descriptor open I someone > else touch the code adding a different feature and my careful work > went up in flames. Which brought home another point at the best of it > this is ultimately complex tricky code that subsystems should not need > to worry about. > > What makes this even more interesting is that in the presence of pci > hot-unplug it looks like most subsystems and most devices will have to > deal with the issue one way or another. Ehh... The real mess is in things like "TTY in the middle of random ioctl" and there's another pile that won't be solved on struct file level - individual fs internals ;-/ > This infrastructure could also be used to implement sys_revoke and > when I could not think of a better name I have drawn on that. Yes, that's more or less obvious direction for revoke(), but there's a problem with locking overhead that always scared me away from that. Maybe I'm wrong, though... In any case, you want to carefully check the overhead and cacheline bouncing implications for things like pipes and sockets. Hell knows, maybe it'll work out, but... Anyway, the really nasty part of revoke() (and true SAK, which is obviously related) is handling of deep-inside-the-driver ioctls. -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists