D19058.1776876520.diff
No OneTemporary
Actions

Size

7 KB

Referenced Files

None

Subscribers

None

D19058.1776876520.diff
View Options

	Index: lib/libc/gen/posix_spawn.c
	===================================================================
	--- lib/libc/gen/posix_spawn.c
	+++ lib/libc/gen/posix_spawn.c
	@@ -194,43 +194,115 @@
	return (0);
	}

	+struct posix_spawn_args {
	+ const char *path;
	+ const posix_spawn_file_actions_t *fa;
	+ const posix_spawnattr_t *sa;
	+ char * const * argv;
	+ char * const * envp;
	+ int use_env_path;
	+ int error;
	+};
	+
	+#if defined(__i386__) \|\| defined(__amd64__)
	+#define _RFORK_THREAD_STACK_SIZE 4096
	+#endif
	+
	+static int
	+_posix_spawn_thr(void *data)
	+{
	+ struct posix_spawn_args *psa;
	+ char * const *envp;
	+
	+ psa = data;
	+ if (psa->sa != NULL) {
	+ psa->error = process_spawnattr(*psa->sa);
	+ if (psa->error)
	+ _exit(127);
	+ }
	+ if (psa->fa != NULL) {
	+ psa->error = process_file_actions(*psa->fa);
	+ if (psa->error)
	+ _exit(127);
	+ }
	+ envp = psa->envp != NULL ? psa->envp : environ;
	+ if (psa->use_env_path)
	+ _execvpe(psa->path, psa->argv, envp);
	+ else
	+ _execve(psa->path, psa->argv, envp);
	+ psa->error = errno;
	+
	+ /* This is called in such a way that it must not exit. */
	+ _exit(127);
	+}
	+
	static int
	do_posix_spawn(pid_t pid, const char path,
	const posix_spawn_file_actions_t *fa,
	const posix_spawnattr_t *sa,
	char * const argv[], char * const envp[], int use_env_path)
	{
	+ struct posix_spawn_args psa;
	pid_t p;
	- volatile int error = 0;
	+#ifdef _RFORK_THREAD_STACK_SIZE
	+ char *stack;
	+
	+ stack = malloc(_RFORK_THREAD_STACK_SIZE);
	+ if (stack == NULL)
	+ return (ENOMEM);
	+#endif
	+ psa.path = path;
	+ psa.fa = fa;
	+ psa.sa = sa;
	+ psa.argv = argv;
	+ psa.envp = envp;
	+ psa.use_env_path = use_env_path;
	+ psa.error = 0;

	- p = vfork();
	- switch (p) {
	- case -1:
	- return (errno);
	- case 0:
	- if (sa != NULL) {
	- error = process_spawnattr(*sa);
	- if (error)
	- _exit(127);
	- }
	- if (fa != NULL) {
	- error = process_file_actions(*fa);
	- if (error)
	- _exit(127);
	- }
	- if (use_env_path)
	- _execvpe(path, argv, envp != NULL ? envp : environ);
	- else
	- _execve(path, argv, envp != NULL ? envp : environ);
	- error = errno;
	- _exit(127);
	- default:
	- if (error != 0)
	- _waitpid(p, NULL, WNOHANG);
	- else if (pid != NULL)
	- *pid = p;
	- return (error);
	+ /*
	+ * Passing RFSPAWN to rfork(2) gives us effectively a vfork that drops
	+ * non-ignored signal handlers. We'll fall back to the slightly less
	+ * ideal vfork(2) if we get an EINVAL from rfork -- this should only
	+ * happen with newer libc on older kernel that doesn't accept
	+ * RFSPAWN.
	+ */
	+#ifdef _RFORK_THREAD_STACK_SIZE
	+ /*
	+ * x86 stores the return address on the stack, so rfork(2) cannot work
	+ * as-is because the child would clobber the return address om the
	+ * parent. Because of this, we must use rfork_thread instead while
	+ * almost every other arch stores the return address in a register.
	+ */
	+ p = rfork_thread(RFSPAWN, stack + _RFORK_THREAD_STACK_SIZE,
	+ _posix_spawn_thr, &psa);
	+ free(stack);
	+#else
	+ p = rfork(RFSPAWN);
	+ if (p == 0)
	+ /* _posix_spawn_thr does not return */
	+ _posix_spawn_thr(&psa);
	+#endif
	+ /*
	+ * The above block should leave us in a state where we've either
	+ * succeeded and we're ready to process the results, or we need to
	+ * fallback to vfork() if the kernel didn't like RFSPAWN.
	+ */
	+
	+ if (p == -1 && errno == EINVAL) {
	+ p = vfork();
	+ if (p == 0)
	+ /* _posix_spawn_thr does not return */
	+ _posix_spawn_thr(&psa);
	}
	+ if (p == -1)
	+ return (errno);
	+ if (psa.error != 0)
	+ /* Failed; ready to reap */
	+ _waitpid(p, NULL, WNOHANG);
	+ else if (pid != NULL)
	+ /* exec succeeded */
	+ *pid = p;
	+ return (psa.error);
	}

	int
	Index: lib/libc/sys/rfork.2
	===================================================================
	--- lib/libc/sys/rfork.2
	+++ lib/libc/sys/rfork.2
	@@ -5,7 +5,7 @@
	.\"
	.\" $FreeBSD$
	.\"
	-.Dd July 12, 2011
	+.Dd September 9, 2019
	.Dt RFORK 2
	.Os
	.Sh NAME
	@@ -34,7 +34,9 @@
	The
	.Fa flags
	argument
	-is the logical OR of some subset of:
	+is either
	+.Dv RFSPAWN
	+or the logical OR of some subset of:
	.Bl -tag -width ".Dv RFLINUXTHPN"
	.It Dv RFPROC
	If set a new process is created; otherwise changes affect the
	@@ -105,6 +107,14 @@
	or all processes sharing the table exit.
	.Pp
	If
	+.Dv RFSPAWN
	+is passed,
	+.Nm
	+will use
	+.Xr vfork 2
	+semantics but reset all signal actions in the child to default.
	+.Pp
	+If
	.Dv RFPROC
	is set, the
	value returned in the parent process
	Index: sys/kern/kern_fork.c
	===================================================================
	--- sys/kern/kern_fork.c
	+++ sys/kern/kern_fork.c
	@@ -170,10 +170,18 @@
	/* Don't allow kernel-only flags. */
	if ((uap->flags & RFKERNELONLY) != 0)
	return (EINVAL);
	+ /* RFSPAWN must not appear with others */
	+ if ((uap->flags & RFSPAWN) != 0 && uap->flags != RFSPAWN)
	+ return (EINVAL);

	AUDIT_ARG_FFLAGS(uap->flags);
	bzero(&fr, sizeof(fr));
	- fr.fr_flags = uap->flags;
	+ if ((uap->flags & RFSPAWN) != 0) {
	+ fr.fr_flags = RFFDG \| RFPROC \| RFPPWAIT \| RFMEM;
	+ fr.fr_flags2 = FR2_DROPSIG_CAUGHT;
	+ } else {
	+ fr.fr_flags = uap->flags;
	+ }
	fr.fr_pidp = &pid;
	error = fork1(td, &fr);
	if (error == 0) {
	@@ -471,6 +479,11 @@
	} else {
	sigacts_copy(newsigacts, p1->p_sigacts);
	p2->p_sigacts = newsigacts;
	+ if ((fr->fr_flags2 & FR2_DROPSIG_CAUGHT) != 0) {
	+ mtx_lock(&p2->p_sigacts->ps_mtx);
	+ sig_drop_caught(p2);
	+ mtx_unlock(&p2->p_sigacts->ps_mtx);
	+ }
	}

	if (fr->fr_flags & RFTSIGZMB)
	Index: sys/kern/kern_sig.c
	===================================================================
	--- sys/kern/kern_sig.c
	+++ sys/kern/kern_sig.c
	@@ -986,12 +986,7 @@
	PROC_LOCK_ASSERT(p, MA_OWNED);
	ps = p->p_sigacts;
	mtx_lock(&ps->ps_mtx);
	- while (SIGNOTEMPTY(ps->ps_sigcatch)) {
	- sig = sig_ffs(&ps->ps_sigcatch);
	- sigdflt(ps, sig);
	- if ((sigprop(sig) & SIGPROP_IGNORE) != 0)
	- sigqueue_delete_proc(p, sig);
	- }
	+ sig_drop_caught(p);

	/*
	* As CloudABI processes cannot modify signal handlers, fully
	@@ -3857,3 +3852,20 @@

	return (ps->ps_refcnt > 1);
	}
	+
	+void
	+sig_drop_caught(struct proc *p)
	+{
	+ int sig;
	+ struct sigacts *ps;
	+
	+ ps = p->p_sigacts;
	+ PROC_LOCK_ASSERT((p), MA_OWNED);
	+ mtx_assert(&ps->ps_mtx, MA_OWNED);
	+ while (SIGNOTEMPTY(ps->ps_sigcatch)) {
	+ sig = sig_ffs(&ps->ps_sigcatch);
	+ sigdflt(ps, sig);
	+ if ((sigprop(sig) & SIGPROP_IGNORE) != 0)
	+ sigqueue_delete_proc(p, sig);
	+ }
	+}
	Index: sys/sys/proc.h
	===================================================================
	--- sys/sys/proc.h
	+++ sys/sys/proc.h
	@@ -1005,6 +1005,8 @@
	int *fr_pd_fd;
	int fr_pd_flags;
	struct filecaps *fr_pd_fcaps;
	+ int fr_flags2;
	+#define FR2_DROPSIG_CAUGHT 0x00001 /* Drop caught non-DFL signals */
	};

	/*
	Index: sys/sys/signalvar.h
	===================================================================
	--- sys/sys/signalvar.h
	+++ sys/sys/signalvar.h
	@@ -381,6 +381,7 @@
	void sigacts_free(struct sigacts *ps);
	struct sigacts sigacts_hold(struct sigacts ps);
	int sigacts_shared(struct sigacts *ps);
	+void sig_drop_caught(struct proc *p);
	void sigexit(struct thread *td, int sig) __dead2;
	int sigev_findtd(struct proc p, struct sigevent sigev, struct thread **);
	int sig_ffs(sigset_t *set);
	Index: sys/sys/unistd.h
	===================================================================
	--- sys/sys/unistd.h
	+++ sys/sys/unistd.h
	@@ -188,11 +188,14 @@
	#define RFTSIGNUM(flags) (((flags) >> RFTSIGSHIFT) & RFTSIGMASK)
	#define RFTSIGFLAGS(signum) ((signum) << RFTSIGSHIFT)
	#define RFPROCDESC (1<<28) /* return a process descriptor */
	-#define RFPPWAIT (1<<31) /* parent sleeps until child exits (vfork) */
	+/* kernel: parent sleeps until child exits (vfork) */
	+#define RFPPWAIT (1<<31)
	+/* user: vfork(2) semantics, clear signals */
	+#define RFSPAWN (1U<<31)
	#define RFFLAGS (RFFDG \| RFPROC \| RFMEM \| RFNOWAIT \| RFCFDG \| \
	RFTHREAD \| RFSIGSHARE \| RFLINUXTHPN \| RFSTOPPED \| RFHIGHPID \| RFTSIGZMB \| \
	- RFPROCDESC \| RFPPWAIT)
	-#define RFKERNELONLY (RFSTOPPED \| RFHIGHPID \| RFPPWAIT \| RFPROCDESC)
	+ RFPROCDESC \| RFSPAWN \| RFPPWAIT)
	+#define RFKERNELONLY (RFSTOPPED \| RFHIGHPID \| RFPROCDESC)

	#endif /* __BSD_VISIBLE */

File Metadata

Mime Type: text/plain
Expires: Wed, Apr 22, 4:48 PM (14 h, 17 m)
Storage Engine: blob
Storage Format: Raw Data
Storage Handle: 28408997
Default Alt Text: D19058.1776876520.diff (7 KB)

D19058.1776876520.diffNo OneTemporaryActions

D19058.1776876520.diffView Options

File Metadata

Event Timeline

D19058.1776876520.diff
No OneTemporary
Actions

D19058.1776876520.diff
View Options