[PATCH 3/8] vfork: make it killable

From: Oleg Nesterov
Date: Wed Jul 27 2011 - 12:35:59 EST

Next message: Oleg Nesterov: "[PATCH 4/8] coredump_wait: don't call complete_vfork_done()"
Previous message: Oleg Nesterov: "[PATCH 2/8] vfork: introduce clone_vfork_finish()"
In reply to: Oleg Nesterov: "[PATCH 2/8] vfork: introduce clone_vfork_finish()"
Next in thread: Matt Fleming: "Re: [PATCH 3/8] vfork: make it killable"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Make vfork() killable().

Change clone_vfork_finish() to do wait_for_completion_killable().
If it fails we do not return to the user-mode and never touch mm
shared with our child.

However, we should clear child->vfork_done before return.
complete_vfork_done() and clone_vfork_finish() use xchg-and-check
to avoid the races with each other. If clone_vfork_finish() fails
to clear child->vfork_done it does another wait_for_completion() to
ensure the child finishes complete-in-progress.

NOTE: this and the next patches do not affect in-kernel users of
CLONE_VFORK, kernel threads run with all signals ignored, including
SIGKILL/SIGSTOP.

Signed-off-by: Oleg Nesterov <oleg@xxxxxxxxxx>
---

kernel/fork.c | 27 +++++++++++++++++++--------
1 file changed, 19 insertions(+), 8 deletions(-)

--- 3.1/kernel/fork.c~3_make_killable 2011-07-26 19:26:03.000000000 +0200
+++ 3.1/kernel/fork.c 2011-07-26 20:23:28.000000000 +0200
@@ -688,7 +688,8 @@ void mm_release(struct task_struct *tsk,
* If we're exiting normally, clear a user-space tid field if
* requested. We leave this alone when dying by signal, to leave
* the value intact in a core dump, and to save the unnecessary
- * trouble otherwise. Userland only wants this done for a sys_exit.
+ * trouble, say, a killed vfork parent shouldn't touch this mm.
+ * Userland only wants this done for a sys_exit.
*/
if (tsk->clear_child_tid) {
if (!(tsk->flags & PF_SIGNALED) &&
@@ -1443,18 +1444,25 @@ struct task_struct * __cpuinit fork_idle

void complete_vfork_done(struct task_struct *tsk)
{
- struct completion *vfork_done = tsk->vfork_done;
+ struct completion *vfork_done = xchg(&tsk->vfork_done, NULL);

- tsk->vfork_done = NULL;
- complete(vfork_done);
+ if (vfork_done)
+ complete(vfork_done);
}

static long clone_vfork_finish(struct task_struct *child,
struct completion *vfork_done, long pid)
{
- freezer_do_not_count();
- wait_for_completion(vfork_done);
- freezer_count();
+ int killed = wait_for_completion_killable(vfork_done);
+
+ if (killed) {
+ struct completion *steal = xchg(&child->vfork_done, NULL);
+ /* if we race with complete_vfork_done() we have to wait */
+ if (unlikely(!steal))
+ wait_for_completion(vfork_done);
+
+ return -EINTR;
+ }

ptrace_event(PTRACE_EVENT_VFORK_DONE, pid);
return pid;
@@ -1527,6 +1535,7 @@ long do_fork(unsigned long clone_flags,
put_user(nr, parent_tidptr);

if (clone_flags & CLONE_VFORK) {
+ get_task_struct(p);
p->vfork_done = &vfork;
init_completion(&vfork);
}
@@ -1547,8 +1556,10 @@ long do_fork(unsigned long clone_flags,
if (unlikely(trace))
ptrace_event(trace, nr);

- if (clone_flags & CLONE_VFORK)
+ if (clone_flags & CLONE_VFORK) {
nr = clone_vfork_finish(p, &vfork, nr);
+ put_task_struct(p);
+ }
} else {
nr = PTR_ERR(p);
}

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Oleg Nesterov: "[PATCH 4/8] coredump_wait: don't call complete_vfork_done()"
Previous message: Oleg Nesterov: "[PATCH 2/8] vfork: introduce clone_vfork_finish()"
In reply to: Oleg Nesterov: "[PATCH 2/8] vfork: introduce clone_vfork_finish()"
Next in thread: Matt Fleming: "Re: [PATCH 3/8] vfork: make it killable"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]