| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <9cdea98c-c227-7897-3001-b7e5f388352b@ispras.ru>
Date: Wed, 27 Aug 2025 17:29:36 +0300 (MSK)
From: Alexander Monakov <amonakov@...ras.ru>
To: Aleksa Sarai <cyphar@...har.com>
cc: Al Viro <viro@...iv.linux.org.uk>, linux-fsdevel@...r.kernel.org,
Christian Brauner <brauner@...nel.org>, Jan Kara <jack@...e.cz>,
linux-kernel@...r.kernel.org
Subject: Re: ETXTBSY window in __fput
On Wed, 27 Aug 2025, Aleksa Sarai wrote:
> On 2025-08-27, Alexander Monakov <amonakov@...ras.ru> wrote:
> > > Frankly, in such situation I would spawn a thread for that, did unshare(CLONE_FILES)
> > > in it, replaced the binary and buggered off, with parent waiting for it to complete.
> >
> > Good to know, but it doesn't sound very efficient (and like something that could be
> > integrated in Go runtime).
>
> Can't you create a goroutine, runtime.LockOSThread,
> unshare(CLONE_FILES), do the work, and then return -- without
> runtime.UnlockOSThread (to kill the thread and stop it from being used
> by other Go code)? Or does that not work in stdlib?
Again, with regards to Go backstory, I'm just the messenger. But were I
a Go runtime implementor, I'm afraid no, I wouldn't be able to do that,
because while the file is being written, it's done with normal I/O APIs.
The runtime has no way to look in the future and anticipate that the
file currently being written will be execve'd.
My first priority here is not to dig up alternative solutions to the
ETXTBSY problem. I'm asking about a race window in __fput.
Alexander
Powered by blists - more mailing lists