musl/src/process, branch v1.1.0 musl - an implementation of the standard library for Linux-based systems always initialize thread pointer at program start 2014-03-24T20:57:11+00:00 Rich Felker dalias@aerifal.cx 2014-03-24T20:57:11+00:00 dab441aea240f3b7c18a26d2ef51979ea36c301c this is the first step in an overhaul aimed at greatly simplifying and optimizing everything dealing with thread-local state. previously, the thread pointer was initialized lazily on first access, or at program startup if stack protector was in use, or at certain random places where inconsistent state could be reached if it were not initialized early. while believed to be fully correct, the logic was fragile and non-obvious. in the first phase of the thread pointer overhaul, support is retained (and in some cases improved) for systems/situation where loading the thread pointer fails, e.g. old kernels. some notes on specific changes: - the confusing use of libc.main_thread as an indicator that the thread pointer is initialized is eliminated in favor of an explicit has_thread_pointer predicate. - sigaction no longer needs to ensure that the thread pointer is initialized before installing a signal handler (this was needed to prevent a situation where the signal handler caused the thread pointer to be initialized and the subsequent sigreturn cleared it again) but it still needs to ensure that implementation-internal thread-related signals are not blocked. - pthread tsd initialization for the main thread is deferred in a new manner to minimize bloat in the static-linked __init_tp code. - pthread_setcancelstate no longer needs special handling for the situation before the thread pointer is initialized. it simply fails on systems that cannot support a thread pointer, which are non-conforming anyway. - pthread_cleanup_push/pop now check for missing thread pointer and nop themselves out in this case, so stdio no longer needs to avoid the cancellable path when the thread pointer is not available. a number of cases remain where certain interfaces may crash if the system does not support a thread pointer. at this point, these should be limited to pthread interfaces, and the number of such cases should be fewer than before. 
this is the first step in an overhaul aimed at greatly simplifying and
optimizing everything dealing with thread-local state.

previously, the thread pointer was initialized lazily on first access,
or at program startup if stack protector was in use, or at certain
random places where inconsistent state could be reached if it were not
initialized early. while believed to be fully correct, the logic was
fragile and non-obvious.

in the first phase of the thread pointer overhaul, support is retained
(and in some cases improved) for systems/situation where loading the
thread pointer fails, e.g. old kernels.

some notes on specific changes:

- the confusing use of libc.main_thread as an indicator that the
  thread pointer is initialized is eliminated in favor of an explicit
  has_thread_pointer predicate.

- sigaction no longer needs to ensure that the thread pointer is
  initialized before installing a signal handler (this was needed to
  prevent a situation where the signal handler caused the thread
  pointer to be initialized and the subsequent sigreturn cleared it
  again) but it still needs to ensure that implementation-internal
  thread-related signals are not blocked.

- pthread tsd initialization for the main thread is deferred in a new
  manner to minimize bloat in the static-linked __init_tp code.

- pthread_setcancelstate no longer needs special handling for the
  situation before the thread pointer is initialized. it simply fails
  on systems that cannot support a thread pointer, which are
  non-conforming anyway.

- pthread_cleanup_push/pop now check for missing thread pointer and
  nop themselves out in this case, so stdio no longer needs to avoid
  the cancellable path when the thread pointer is not available.

a number of cases remain where certain interfaces may crash if the
system does not support a thread pointer. at this point, these should
be limited to pthread interfaces, and the number of such cases should
be fewer than before.
x32 port (diff against vanilla x86_64) 2014-02-23T10:09:16+00:00 rofl0r retnyg@gmx.net 2014-01-07T21:53:38+00:00 664cd341921007cea52c8891f27ce35927dca378 






import vanilla x86_64 code as x32
2014-02-23T10:07:18+00:00

rofl0r
retnyg@gmx.net

2014-01-07T21:43:34+00:00

323272db175204b951f119dae4bd99ef05e20f13












make posix_spawn accept null pid pointer arguments
2014-02-12T06:03:07+00:00

Rich Felker
dalias@aerifal.cx

2014-02-12T06:03:07+00:00

8011614da008032642aa8292c3fd079bf7a8843d

this is a requirement in the specification that was overlooked.





this is a requirement in the specification that was overlooked.







include cleanups: remove unused headers and add feature test macros
2013-12-12T05:09:18+00:00

Szabolcs Nagy
nsz@port70.net

2013-12-12T05:09:18+00:00

571744447c23f91feb6439948f3a619aca850dfb












add missing va_end in execl* for correcness and static code analyzers
2013-10-07T13:24:00+00:00

Szabolcs Nagy
nsz@port70.net

2013-10-07T13:24:00+00:00

c3a43b35cc52a7fac93a8c1030d94c919c3ab0eb












fix new environment always being null with execle
2013-10-03T14:16:01+00:00

Rich Felker
dalias@aerifal.cx

2013-10-03T14:16:01+00:00

2b2aff37aced66e4a50a38a14607a9b1dc0ee001

the va_arg call for the argv[]-terminating null pointer was missing,
so this pointer was being wrongly used as the environment pointer.

issue reported by Timo Teräs. proposed patch slightly modified to
simplify the resulting code.





the va_arg call for the argv[]-terminating null pointer was missing,
so this pointer was being wrongly used as the environment pointer.

issue reported by Timo Teräs. proposed patch slightly modified to
simplify the resulting code.







optimize posix_spawn to avoid spurious sigaction syscalls
2013-08-10T01:03:47+00:00

Rich Felker
dalias@aerifal.cx

2013-08-10T01:03:47+00:00

3c5c5e6f926feea7b823a96c2872885b100fe31f

the trick here is that sigaction can track for us which signals have
ever had a signal handler set for them, and only those signals need to
be considered for reset. this tracking mask may have false positives,
since it is impossible to remove bits from it without race conditions.
false negatives are not possible since the mask is updated with atomic
operations prior to making the sigaction syscall.

implementation-internal signals are set to SIG_IGN rather than SIG_DFL
so that a signal raised in the parent (e.g. calling pthread_cancel on
the thread executing pthread_spawn) does not have any chance make it
to the child, where it would cause spurious termination by signal.

this change reduces the minimum/typical number of syscalls in the
child from around 70 to 4 (including execve). this should greatly
improve the performance of posix_spawn and other interfaces which use
it (popen and system).

to facilitate these changes, sigismember is also changed to return 0
rather than -1 for invalid signals, and to return the actual status of
implementation-internal signals. POSIX allows but does not require an
error on invalid signal numbers, and in fact returning an error tends
to confuse applications which wrongly assume the return value of
sigismember is boolean.





the trick here is that sigaction can track for us which signals have
ever had a signal handler set for them, and only those signals need to
be considered for reset. this tracking mask may have false positives,
since it is impossible to remove bits from it without race conditions.
false negatives are not possible since the mask is updated with atomic
operations prior to making the sigaction syscall.

implementation-internal signals are set to SIG_IGN rather than SIG_DFL
so that a signal raised in the parent (e.g. calling pthread_cancel on
the thread executing pthread_spawn) does not have any chance make it
to the child, where it would cause spurious termination by signal.

this change reduces the minimum/typical number of syscalls in the
child from around 70 to 4 (including execve). this should greatly
improve the performance of posix_spawn and other interfaces which use
it (popen and system).

to facilitate these changes, sigismember is also changed to return 0
rather than -1 for invalid signals, and to return the actual status of
implementation-internal signals. POSIX allows but does not require an
error on invalid signal numbers, and in fact returning an error tends
to confuse applications which wrongly assume the return value of
sigismember is boolean.







fix missing errno from exec failure in posix_spawn
2013-08-10T00:04:05+00:00

Rich Felker
dalias@aerifal.cx

2013-08-10T00:04:05+00:00

65d7aa4dfde9697b93d765f2f736e5f4a38bdfd5

failures prior to the exec attempt were reported correctly, but on
exec failure, the return value contained junk.





failures prior to the exec attempt were reported correctly, but on
exec failure, the return value contained junk.







block signals during fork
2013-08-09T03:17:05+00:00

Rich Felker
dalias@aerifal.cx

2013-08-09T03:17:05+00:00

d4d6d6f322cd13cfca2b179345cdcf67997c3529

there are several reasons for this. some of them are related to race
conditions that arise since fork is required to be async-signal-safe:
if fork or pthread_create is called from a signal handler after the
fork syscall has returned but before the subsequent userspace code has
finished, inconsistent state could result. also, there seem to be
kernel and/or strace bugs related to arrival of signals during fork,
at least on some versions, and simply blocking signals eliminates the
possibility of such bugs.





there are several reasons for this. some of them are related to race
conditions that arise since fork is required to be async-signal-safe:
if fork or pthread_create is called from a signal handler after the
fork syscall has returned but before the subsequent userspace code has
finished, inconsistent state could result. also, there seem to be
kernel and/or strace bugs related to arrival of signals during fork,
at least on some versions, and simply blocking signals eliminates the
possibility of such bugs.