| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Wed, 17 Nov 2010 12:57:40 +0100 From: Tejun Heo <tj@...nel.org> To: Oren Laadan <orenl@...columbia.edu> CC: Gene Cooperman <gene@....neu.edu>, Matt Helsley <matthltc@...ibm.com>, Kapil Arya <kapil@....neu.edu>, ksummit-2010-discuss@...ts.linux-foundation.org, linux-kernel@...r.kernel.org, hch@....de, Linux Containers <containers@...ts.osdl.org> Subject: Re: [Ksummit-2010-discuss] checkpoint-restart: naked patch Hello, Oren. On 11/07/2010 10:59 PM, Oren Laadan wrote: > We could work to add ABIs and APIs for each and every possible piece > of state that affects userspace. And for each we'll argue forever > about the design and some time later regret that it wasn't designed > correctly :p I'm sorry but in-kernel CR already looks like a major misdesign to me. > Even if that happens (which is very unlikely and unnecessary), > it will generate all the very same code in the kernel that Tejun > has been complaining about, and _more_. And we will still suffer > from issues such as lack of atomicity and being unable to do many > simple and advanced optimizations. It may be harder but those will be localized for specific features which would be useful for other purposes too. With in-kernel CR, you're adding a bunch of intrusive changes which can't be tested or used apart from CR. > Or we could use linux-cr for that: do the c/r in the kernel, > keep the know-how in the kernel, expose (and commit to) a > per-kernel-version ABI (not vow to keep countless new individual > ABIs forever after getting them wrongly...), be able to do all > sorts of useful optimization and provide atomicity and guarantees > (see under "leak detection" in the OLS linux-cr paper). Also, > once the c/r infrastructure is in the kernel, it will be easy > (and encouraged) to support new =ly introduced features. And the only reason it seems easier is because you're working around the ABI problem by declaring that these binary blobs wouldn't be kept compatible between different kernel versions and configurations. That simply is the wrong approach. If you want to export something, build it properly into ABI. > Finally, then we would use dmtcp as well as other tools on top > of the kernel-cr - and I'm looking forward to do that ! Yeah, this part I agree. The higher level workarounds implemented in dmtcp are quite impressive and useful no matter what happens to lower layer. Thanks. -- tejun -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists