| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <CAGSQo017FgGmStYxLX7JeqV+AcMUMjmnxF6KBesFhc31BieBbw@mail.gmail.com> Date: Wed, 14 May 2025 15:32:16 -0700 From: Matthew Maurer <mmaurer@...gle.com> To: Danilo Krummrich <dakr@...nel.org> Cc: Benno Lossin <lossin@...nel.org>, Miguel Ojeda <ojeda@...nel.org>, Alex Gaynor <alex.gaynor@...il.com>, Boqun Feng <boqun.feng@...il.com>, Gary Guo <gary@...yguo.net>, Björn Roy Baron <bjorn3_gh@...tonmail.com>, Benno Lossin <benno.lossin@...ton.me>, Andreas Hindborg <a.hindborg@...nel.org>, Alice Ryhl <aliceryhl@...gle.com>, Trevor Gross <tmgross@...ch.edu>, Greg Kroah-Hartman <gregkh@...uxfoundation.org>, "Rafael J. Wysocki" <rafael@...nel.org>, Sami Tolvanen <samitolvanen@...gle.com>, Timur Tabi <ttabi@...dia.com>, linux-kernel@...r.kernel.org, rust-for-linux@...r.kernel.org Subject: Re: [PATCH v5 4/4] rust: samples: Add debugfs sample On Wed, May 14, 2025 at 3:23 PM Matthew Maurer <mmaurer@...gle.com> wrote: > > On Wed, May 14, 2025 at 3:14 PM Danilo Krummrich <dakr@...nel.org> wrote: > > > > On Wed, May 14, 2025 at 03:08:21PM -0700, Matthew Maurer wrote: > > > On Wed, May 14, 2025 at 2:54 AM Benno Lossin <lossin@...nel.org> wrote: > > > > Another problem that only affects complicated debugfs structures is that > > > > you would have to store all subdirs & files somewhere. If the structure > > > > is dynamic and changes over the lifetime of the driver, then you'll need > > > > a `Vec` or store the dirs in `Arc` or similar, leading to extra > > > > allocations. > > > > > > Yep, this is part of why I tried to follow the "Build it, then hold > > > the needed handles to keep it alive" approach rather than keeping the > > > entire structure around. > > > > I already replied to that [1]: > > > > "If it changes dynamically then it's pretty likely that we do not only want to > > add entries dynamically, but also remove them, which implies that we need to be > > able to drop them. So, I don't think that's a problem." > > > > It is much more of a problem if we can't remove certain entries anymore without > > removing all of them. > > > > [1] https://lore.kernel.org/rust-for-linux/aCR9cD7OcSefeaUm@pollux/ > > I think the main question here is this - is it OK to land an API that > does static-layout or add-only-layout first, and we figure out how to > do dynamic modification later, or do you think we need to solve the > self-referential lifetimes issue in the first edition of DebugFS > support? > > If you do think we need support for dynamic layout modification in the > first patchset, do you think we want to allow static layouts that > forget things, or mandate that we always manage all of the handles for > the user? One further possibility here, which we'd need Greg to weigh in on - we could add a method to the debugfs API intended for Rust usage which specifically releases a directory or file *without* releasing any nested elements. This would mean we could get rid of all the lifetimes on directory and file handles. This variant would mean that if the user did something wrong (e.g. released a root directory before taking an action on a child or releasing it), they wouldn't get undefined behavior, they'd just get no effect. If they wrote this kind of buggy behavior, they might be *surprised* at the file being absent, but no UB would happen. If we wanted a variant that used the current recursive remove, it would still need the lifetimes, with all the difficulties that entails.
Powered by blists - more mailing lists