| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Sun, 27 Nov 2011 11:21:55 -0800 From: Tejun Heo <tj@...nel.org> To: Linus Torvalds <torvalds@...ux-foundation.org> Cc: paul@...lmenage.org, rjw@...k.pl, lizf@...fujitsu.com, linux-pm@...ts.linux-foundation.org, linux-kernel@...r.kernel.org, containers@...ts.linux-foundation.org, fweisbec@...il.com, matthltc@...ibm.com, akpm@...ux-foundation.org, oleg@...hat.com, kamezawa.hiroyu@...fujitsu.com Subject: Re: [PATCH UPDATED 03/10] threadgroup: extend threadgroup_lock() to cover exit and exec Hello, Linus. On Thu, Nov 24, 2011 at 08:02:18PM -0800, Linus Torvalds wrote: > - do you even *need* two separate locks at all? If you extend the > threadgroup_fork_lock to cover exec/exit too (and rename it), then why > does that separate cred_guard_mutex make sense at all? That was mostly choosing the path of least resistance as both locks already existed and exec exclusion was added later on, but yeah there isn't much to lose by merging those two locks (do_exit nesting inside exec will need some care tho). I'll try to unify the two locks. > Taking two locks for the common exit case seems disgusting. What do > the separate locks buy us? A bit confused. threadgroup_change_begin() only locks signal->group_rwsem. ie. fork/exit is protected by signal->group_rwsem. exec is protected by signal->cred_guard_mutex. Grabbing both locks gives stable thread group. > - could we possible avoid the lock(s) entirely for the > single-threaded case? The fact that ptrace wants to serialize makes me > say "maybe we can't avoid it", but I thought I'd ask. Even if we do > need/want two separate locks, do we really want to take them both for > the case that shouldn't really need even a single one? Maybe we can avoid grabbing a lock on exec and exit if the task belongs to single task process but optimizations like that can be very fragile. I think it would be better to merge the two locks and keep the locking unconditional. > Hmm? Simplifying the locking rules is always a good idea, and I think > this seems to make some of it more straightforward, but at the same > time I shudder when I look at some of the patches in the series that > nest locking three locks deep. Ugh. cgroup_root_mutex separation is to avoid lock recursion via cgroup_show_options and can probably be done in lighter handed way. As I'm still getting used to cgroup code, I wanted to resolve the locking order without changing much else. Anyways, I'll send separated patch series dealing with fork/exec/exit synchronization. Thank you. -- tejun -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists