From: David Howells <dhowells@redhat.com>
To: Oleg Nesterov <oleg@redhat.com>
Cc: dhowells@redhat.com, James Morris <jmorris@namei.org>,
linux-kernel@vger.kernel.org
Subject: Re: what is_single_threaded() does?
Date: Thu, 02 Apr 2009 12:07:06 +0100 [thread overview]
Message-ID: <2360.1238670426@redhat.com> (raw)
In-Reply-To: <20090331205703.GA21030@redhat.com>
Oleg Nesterov <oleg@redhat.com> wrote:
> But this is not what the code does? The "t->mm == mm" check below means
> it also returns false if ->mm is shared with another CLONE_VM process ?
It's a matter of defining what is meant by single-threaded, I suppose. For
the purposes of security checks, that means not being part of the same group
of threads and not sharing VM space.
Linux has a very fuzzy view of threads, whereby different tasks can share
different sets of things. In my opinion it's excessive and unnecessary, and
probably mostly unused.
> if (atomic_read(&p->signal->count) != 1)
> goto no;
>
> Is this correct? Let's suppose the main thread dies, and the thread group
> has only one live thread. In that case signal->count == 2.
Doesn't exit() kill the subsidiary threads in such a case? I don't recall.
It appears that the zombie would retain a pointer to p->signal so that
wait_task_zombie() can get stuff out of it - but can wait_task_zombie()
actually access a thread group that still has active threads?
I don't think this is a real problem, at least for the two security users of
it. It is still effectively multithreaded, even though one of the threads is
a zombie, and indeed it would appear the process is busy imploding.
> Why do_each_thread() ? for_each_process() is enough, all sub-threads use
> the same ->mm.
Firstly, that's what the original code that I extract out to this function
did; secondly, it doesn't make much difference: do_each_thread() does the
filtering for us that we'd have to do ourselves if we used for_each_process();
and thirdly, it is neither required nor enforced that all sub-threads use the
same ->mm.
Actually, a better way of doing things may be to use a list of threads rooted
on signal_struct.
> What about use_mm() ? Looks like this needs PF_KTHREAD check.
I'm not sure what you mean. Are you suggesting this should use use_mm()? Or
are you suggesting that use_mm() is wrong?
> Perhaps it should be current_is_single_thread(void) ...
Perhaps.
next prev parent reply other threads:[~2009-04-02 11:08 UTC|newest]
Thread overview: 3+ messages / expand[flat|nested] mbox.gz Atom feed top
2009-03-31 20:57 what is_single_threaded() does? Oleg Nesterov
2009-04-02 11:07 ` David Howells [this message]
2009-04-02 14:43 ` Oleg Nesterov
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=2360.1238670426@redhat.com \
--to=dhowells@redhat.com \
--cc=jmorris@namei.org \
--cc=linux-kernel@vger.kernel.org \
--cc=oleg@redhat.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox