Re: [PATCH repost] PROT_DONTCOPY: ifiniband uverbs fork support

From: Hugh Dickins
Date: Tue Jul 26 2005 - 07:31:30 EST

Next message: Mark Underwood: "Re: Linux tty layer hackery: Heads up and RFC"
Previous message: moreau francis: "Re: [INPUT] simple question on driver initialisation."
In reply to: Michael S. Tsirkin: "[PATCH repost] PROT_DONTCOPY: ifiniband uverbs fork support"
Next in thread: Michael S. Tsirkin: "Re: [PATCH repost] PROT_DONTCOPY: ifiniband uverbs fork support"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 25 Jul 2005, Michael S. Tsirkin wrote:
>
> This patch adds PROT_DONTCOPY to mmap and mprotect, to set VM_DONTCOPY on vma.
> This is needed for infiniband userspace i/o, where we need to protect against
> - the child process accessing the parent hardware page
> - the parent registered address (on which the driver did get_user_pages)
> getting remapped to another page by COW
> One can imagine other uses, e.g. combined with mlock for real-time or security.

I don't much like it, but it does solve a real problem in an efficient way.

Partly I don't like it because of "PROT_DONTCOPY" itself: I'm queasy
about protection flags which are not protection flags, though I find
you're not the first to go down that road.

Is the patch tested? I've not tried, but suspect the newflags shift
and mask won't work for it. And I don't look forward to your adding
VM_MAYDONTCOPY - ugh!

> @@ -246,7 +246,7 @@ sys_mprotect(unsigned long start, size_t
> goto out;
> }
>
> - newflags = vm_flags | (vma->vm_flags & ~(VM_READ | VM_WRITE | VM_EXEC));
> + newflags = vm_flags | (vma->vm_flags & ~(VM_READ | VM_WRITE | VM_EXEC | VM_DONTCOPY));
>
> if ((newflags & ~(newflags >> 4)) & 0xf) {
> error = -EACCES;

I rather think it would all be more cleanly handled by dropping the mmap
and mprotect changes, adding an madvise instead. Though you may object
that madvise is for optional behaviours, and this should be mandatory.

The other reason I dislike the patch is that the problem it fixes is
an old one, and I'd much rather have get_user_pages fix it for itself,
than ask the developer to do some additional magic to get around it.

But I've failed to work out a simple efficient alternative, which won't
burden the vast majority of get_user_pages usages which never hit the
issue. So your way is probably appropriate, but I'd prefer madvise.

(Sorry, I won't be able to discuss further for a couple of days.)

Hugh
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Mark Underwood: "Re: Linux tty layer hackery: Heads up and RFC"
Previous message: moreau francis: "Re: [INPUT] simple question on driver initialisation."
In reply to: Michael S. Tsirkin: "[PATCH repost] PROT_DONTCOPY: ifiniband uverbs fork support"
Next in thread: Michael S. Tsirkin: "Re: [PATCH repost] PROT_DONTCOPY: ifiniband uverbs fork support"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]