O_CLOEXEC: An alternate proposal

public inbox for linux-kernel@vger.kernel.org
 help / color / mirror / Atom feed

* O_CLOEXEC: An alternate proposal
@ 2007-06-08  7:47 Daniel Colascione
  2007-06-08  9:19 ` Eric Dumazet
  2007-06-08 10:25 ` Jakub Jelinek
  0 siblings, 2 replies; 3+ messages in thread
From: Daniel Colascione @ 2007-06-08  7:47 UTC (permalink / raw)
  To: linux-kernel

Hey, this is my first post to linux-kernel, so please be kind. :-)

Linus Torvalds wrote on May 31:
> I'm with Uli on this one. "Stateful" stuff is bad. It's essentially
> impossible to handle with libraries - either the library would have to
> explciitly always turn the state the way _it_ needs it, or the library
> will do the wrogn thing.

I agree that stateful stuff is generally not very elegant,
but I think it's a win here -- we wouldn't have to create any
new APIs except for the state-setting stuff.

The state just has to be thread-local.

If it's thread-local, a library, say, glibc,
can use code like this:

  /* Internal library function */
  old_fd_flags = kernel_default_fd_flags(FD_CLOEXEC | FD_RANDFD);
  event_fd = super_duper_event_polling_mechanism_fd();
  kernel_default_fd_flags(old_fd_flags);

I think that's a lot cleaner than augmenting every
present and future fd-creating syscall to take some kind
of flags parameter and adding some kind of funny dup().

Other threads, and the caller of this function in the same thread,
aren't even aware that the library is changing any state. It's
race-free, since the default flags wouldn't be inherited across clone()
or exec(). It's still POSIX compliant too as long as the default
flags set remains empty.

The only disadvantage I can think of is that it requires three
system calls instead of one, but most of your time is going to be spent
working with event_fd, not creating it.

Also, what about an FD_CLOFORK as well? That seems to match
more closely what you'd want out of a library-internal FD than
FD_CLOEXEC.

^ permalink raw reply	[flat|nested] 3+ messages in thread

* Re: O_CLOEXEC: An alternate proposal
  2007-06-08  7:47 O_CLOEXEC: An alternate proposal Daniel Colascione
@ 2007-06-08  9:19 ` Eric Dumazet
  2007-06-08 10:25 ` Jakub Jelinek
  1 sibling, 0 replies; 3+ messages in thread
From: Eric Dumazet @ 2007-06-08  9:19 UTC (permalink / raw)
  To: Daniel Colascione; +Cc: linux-kernel

On Fri, 8 Jun 2007 03:47:12 -0400 (EDT)
"Daniel Colascione" <danc@merrillpress.com> wrote:

> Hey, this is my first post to linux-kernel, so please be kind. :-)

Welcome Daniel

> 
> Linus Torvalds wrote on May 31:
> > I'm with Uli on this one. "Stateful" stuff is bad. It's essentially
> > impossible to handle with libraries - either the library would have to
> > explciitly always turn the state the way _it_ needs it, or the library
> > will do the wrogn thing.
> 
> I agree that stateful stuff is generally not very elegant,
> but I think it's a win here -- we wouldn't have to create any
> new APIs except for the state-setting stuff.
> 
> The state just has to be thread-local.
> 
> If it's thread-local, a library, say, glibc,
> can use code like this:
> 
>   /* Internal library function */
>   old_fd_flags = kernel_default_fd_flags(FD_CLOEXEC | FD_RANDFD);

<race here if a signal handler runs some user code messing with a thread-local fd_flags >

>   event_fd = super_duper_event_polling_mechanism_fd();
>   kernel_default_fd_flags(old_fd_flags);
> 
> I think that's a lot cleaner than augmenting every
> present and future fd-creating syscall to take some kind
> of flags parameter and adding some kind of funny dup().
> 

Thats funny, you probably missed Linus syscall_indirect() proposal, 
which is basically doing the thing but with one syscall (so no races, and faster)

http://marc.info/?l=linux-kernel&m=118124716616552&w=2


^ permalink raw reply	[flat|nested] 3+ messages in thread

* Re: O_CLOEXEC: An alternate proposal
  2007-06-08  7:47 O_CLOEXEC: An alternate proposal Daniel Colascione
  2007-06-08  9:19 ` Eric Dumazet
@ 2007-06-08 10:25 ` Jakub Jelinek
  1 sibling, 0 replies; 3+ messages in thread
From: Jakub Jelinek @ 2007-06-08 10:25 UTC (permalink / raw)
  To: Daniel Colascione; +Cc: linux-kernel

On Fri, Jun 08, 2007 at 03:47:12AM -0400, Daniel Colascione wrote:
> Hey, this is my first post to linux-kernel, so please be kind. :-)
> 
> Linus Torvalds wrote on May 31:
> > I'm with Uli on this one. "Stateful" stuff is bad. It's essentially
> > impossible to handle with libraries - either the library would have to
> > explciitly always turn the state the way _it_ needs it, or the library
> > will do the wrogn thing.
> 
> I agree that stateful stuff is generally not very elegant,
> but I think it's a win here -- we wouldn't have to create any
> new APIs except for the state-setting stuff.
> 
> The state just has to be thread-local.
> 
> If it's thread-local, a library, say, glibc,
> can use code like this:
> 
>   /* Internal library function */
>   old_fd_flags = kernel_default_fd_flags(FD_CLOEXEC | FD_RANDFD);
>   event_fd = super_duper_event_polling_mechanism_fd();
>   kernel_default_fd_flags(old_fd_flags);

It is not a win, what if a signal comes in between the two
kernel_default_fd_flags syscalls?  open and other functions
are async signal safe and programs will be certainly upset
if suddenly the syscalls in the signal handler start to behave
differently depending on which exact code the async signal
has interrupted.

	Jakub

^ permalink raw reply	[flat|nested] 3+ messages in thread

end of thread, other threads:[~2007-06-08 10:26 UTC | newest]

Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2007-06-08  7:47 O_CLOEXEC: An alternate proposal Daniel Colascione
2007-06-08  9:19 ` Eric Dumazet
2007-06-08 10:25 ` Jakub Jelinek

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox