| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 13 Oct 2009 21:36:07 -0700 From: Sukadev Bhattiprolu <sukadev@...ux.vnet.ibm.com> To: "H. Peter Anvin" <hpa@...or.com> Cc: Roland McGrath <roland@...hat.com>, linux-kernel@...r.kernel.org, Oren Laadan <orenl@...columbia.edu>, serue@...ibm.com, "Eric W. Biederman" <ebiederm@...ssion.com>, Alexey Dobriyan <adobriyan@...il.com>, Pavel Emelyanov <xemul@...nvz.org>, Andrew Morton <akpm@...l.org>, torvalds@...ux-foundation.org, mikew@...gle.com, mingo@...e.hu, Nathan Lynch <nathanl@...tin.ibm.com>, arnd@...db.de, peterz@...radead.org, Louis.Rilling@...labs.com, kosaki.motohiro@...fujitsu.com, randy.dunlap@...cle.com, linux-api@...r.kernel.org, Containers <containers@...ts.linux-foundation.org>, sukadev@...ibm.com Subject: Re: [RFC][v8][PATCH 0/10] Implement clone3() system call H. Peter Anvin [hpa@...or.com] wrote: | On 10/13/2009 04:53 PM, Roland McGrath wrote: | >> My only concern is the support of 64-bit clone flags on 32-bit architectures. | > | > Oy. I didn't realize there was serious consideration of having more than | > 32 flags. IMHO it would be a bad choice, since they could only be used via | > clone3. Having high-bit flags work in clone on 64-bit machines but not on | > 32-bit machines just seems like a wrongly confusing way for things to be. | > If any high-bits flags are constrained even on 64-bit machines to uses in | > clone3 calls for sanity purposes, then it seems questionable IMHO to have | > them be more flags in the same u64 at all. | > | > Since all new features will be via this struct, various new kinds of things | > could potentially be done by other new struct fields independent of flags. | > But that would of course require putting enough reserved fields in now and | > requiring that they be zero-filled now in anticipation of such future uses, | > which is not very pleasant either. | > | > In short, I guess I really am saying that "clone_flags_high" (or | > "more_flags" or something) does seem better to me than any of the | > possibilities for having more than 32 CLONE_* in the current flags word. | > | | Overall it seems sane to: | | a) make it an actual 3-argument call; | b) make the existing flags a u32 forever, and make it a separate | argument; | c) any new expansion can be via the struct, which may want to have | an "c3_flags" field first in the structure. Wouldn't that make it a somewhat awkward interface - applications or libc have to split the clone flags and specify them in two different fields ? Do we need to preserve the u32 flags forever ? The closest example I can think of is the distinction between signal() and sigaction(). sigaction() interface makes a lot of sense in part bc it does not try to look like signal(). And strace seems to be able decode flags like SA_RESTART and SA_SIGINFO with the pointer to the sigaction buffer. Won't the debug tools be able to do the same with a pointer to struct clone_args ? If it needs the new features of clone3(), the application has to be modified. At that point wouldn't it be easy to write a clone3() wrapper that calls sys_clone3() if it exists or call sys_clone() if not ? If clone3() supersedes clone(), all architectures could use the clone3() interface and it would seem best to make clone3() as simple as possible without having to preserve the u32 flags. Would it help to use a type clone_flags_64_t to make the distinction between types more explicit ? Sukadev -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists