| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 1 Jun 2009 10:30:30 -0700 From: Matt Helsley <matthltc@...ibm.com> To: Alexey Dobriyan <adobriyan@...il.com> Cc: Andrew Morton <akpm@...ux-foundation.org>, Matt Helsley <matthltc@...ibm.com>, xemul@...allels.com, containers@...ts.linux-foundation.org, linux-kernel@...r.kernel.org, dave@...ux.vnet.ibm.com, mingo@...e.hu, torvalds@...ux-foundation.org Subject: Re: [PATCH 14/38] Remove struct mm_struct::exe_file et al On Mon, Jun 01, 2009 at 01:54:27AM +0400, Alexey Dobriyan wrote: > On Tue, May 26, 2009 at 04:24:15PM -0700, Andrew Morton wrote: > > On Tue, 26 May 2009 04:36:18 -0700 > > Matt Helsley <matthltc@...ibm.com> wrote: > > > > > I don't see any mention in the changelog of the point brought up by Ingo: > > > > > > http://lkml.org/lkml/2009/4/10/105 > > > > Nor of Eric's comments. > > > > Alexey, pleeeze don't do this. We (read: I) heavily depend upon patch > > submitters to keep track of outstanding issues and review comments, > > etc. > > > > If the patch submitter simply blows these things off then it devolves > > to me having to keep track of each patch's issue list as well as the > > patch itself. My workload goes up by a factor of N and the error rate > > goes up by N^2 :( > > grmbh.. > > "Security" and "holding ->mmap_sem" were answered and dismissed. > > You can't do readlink(2) on /proc/*/exe if you can't ptrace task. > So no new possible holes are created. Yes, I messed up: you answered the security question. I still like that exe_file avoids the VMA walk with mmap_sem held. Holding mmap_sem seems like a bigger performance difference than adding a branch based on vm_flags in the VMA add/remove/split/merge code. Wouldn't vm_flags be cache-hot? If so the typical cost added is an && and the branch itself. Performance-related side effects of those are extra instruction fetches and, perhaps most of all, typical branch costs like pipeline stalls and flushes. I suspect you could avoid most of the hypothesized performance difference introduced by exe_file (if it's even measurable) by marking the branch unlikely(). I guess that flag is unlikely since it's only applied during exec by the kernel, the splits or removals of these areas are probably near-constant in number, and they usually take place shortly after exec anyway. Of course if branch prediction hardware is very good then it may be even better to leave these alone. > > ->mmap_sem was held since /proc/*/exe was added and nobody cared. "nobody cared" isn't a good reason to put it back. That kind of argument just as easily supports exe_file: "I added code to the VMA paths and nobody cared." Of course now you care about these changes to the VMA paths and I care about holding mmap_sem... > And, again, you can't readlink _any_ /proc/*/exe. Yup. Sorry about that again. In summary: I think the performance benefits of this patch have yet to be established and really the only benefit I agree with is the nice reduction in code. Cheers, -Matt Helsley -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists