[Devel] Re: [RFC][PATCH] Make access to taks's nsproxy liter
Serge E. Hallyn
serue at us.ibm.com
Thu Aug 9 07:10:19 PDT 2007
Quoting Pavel Emelyanov (xemul at openvz.org):
> [snip]
>
> >>diff --git a/include/linux/nsproxy.h b/include/linux/nsproxy.h
> >>index 525d8fc..74f21fe 100644
> >>--- a/include/linux/nsproxy.h
> >>+++ b/include/linux/nsproxy.h
> >>@@ -32,8 +32,14 @@ struct nsproxy {
> >>};
> >>extern struct nsproxy init_nsproxy;
> >>
> >>+static inline struct nsproxy *task_nsproxy(struct task_struct *tsk)
> >>+{
> >>+ return rcu_dereference(tsk->nsproxy);
> >>+}
> >
> >Looks like a very nice cleanup as well. But please add a comment
> >above task_nsproxy() that it must be called under rcu_read_lock()
> >or task_lock(task) (though I'll admit the rcu_dereference may make that
> >obvious)
>
> I will, but I think that rcu_dereference implies this. Anyway.
Yeah... as i said... but I still get people asking "what is rcu
anyway" so don't think we can assume the implication is clear to
everyone.
> [snip]
>
> >>+ if (ns == new)
> >>+ return;
> >>+
> >>+ if (new)
> >>+ get_nsproxy(new);
> >>+ rcu_assign_pointer(p->nsproxy, new);
> >>+
> >>+ if (ns && atomic_dec_and_test(&ns->count)) {
> >>+ /*
> >>+ * wait for others to get what they want from this
> >>+ * nsproxy. cannot release this nsproxy via the
> >>+ * call_rcu() since put_mnt_ns will want to sleep
> >>+ */
> >>+ synchronize_rcu();
> >>+ free_nsproxy(ns);
> >>+ }
> >>+}
> >
> >Also a comment above switch_task_namespaces() that it must be called
> >with task_lock held.
>
> no! no locks here! free_nsproxy() may sleep when putting mnt_ns and
> maybe some other. see - there's a hunk in sys_unshare that move the
> task_lock() after switch_task_namespaces().
Hmm,
Yes, I see. And in the current usages it's correct. I just worry that
the function takes the task_struct as an arg (which I know it must for
do_exit()) and so someone else might use it unlocked to switch another
task's namespace, for instance in an attempt to implement namespace
entering.
So ok "a comment .. that it must be called with task_lock held" would be
wrong, but please do add the *correct* comment :) Namely that apart
from current usage in do_exit, this should not be used to switch nsproxy
on any task but current. (Unless I'm still mistaken of course)
thanks,
-serge
_______________________________________________
Containers mailing list
Containers at lists.linux-foundation.org
https://lists.linux-foundation.org/mailman/listinfo/containers
More information about the Devel
mailing list