Re: [PATCH] Initial support for struct vfs_cred [0/1]

Luca Barbieri (ldb@ldb.ods.org)
31 Aug 2002 20:57:14 +0200

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: bert hubert: "Re: keyboard slowdown regression in 2.5.32 (right .config) Re: FIXED in 2.5.29 Re: keyboard ONLY functions in 2.5.27 with local APIC on for UP"
Next message: Florian Weimer: "Re: [PATCH] Introduce BSD-style user credential [3/3]"
Previous message: Vojtech Pavlik: "Re: keyboard slowdown regression in 2.5.32 (right .config) Re: FIXED in 2.5.29 Re: keyboard ONLY functions in 2.5.27 with local APIC on for UP"
Next in thread: Linus Torvalds: "Re: [PATCH] Initial support for struct vfs_cred [0/1]"
Reply: Linus Torvalds: "Re: [PATCH] Initial support for struct vfs_cred [0/1]"

--=-HHiw9gHn8zQKohqPFjYV
Content-Type: text/plain
Content-Transfer-Encoding: 7bit

But aren't credential changes supposed to be infrequent?

If so, isn't it faster to put the fields directly in task_struct, keep a
separate shared structure and copy them on kernel entry?

Here is some pseudocode to better illustrate the idea.

vfs_shared_cred::lock can be removed if it's not necessary to do atomic
modifications of multiple cred fields (otherwise you could copy and then
exchange a pointer).

vfs_shared_cred::tasklist_lock can be replaced with RCU.

struct vfs_cred_groups
{
int ngroups;
gid_t groups[];
};

struct vfs_cred
{
uid_t uid, gid;
struct vfs_cred_groups* groups;
};

struct vfs_shared_cred
{
atomic_t count;
spinlock_t lock;
spinlock_t tasklist_lock;
vfs_cred cred;
};

struct task_struct
{
struct vfs_cred cred;
struct vfs_cred* shared_cred;
list_t shared_cred_list;
};

struct thread_info
{
unsigned propagate_cred;
};

propagate_cred()
{
current_thread_info()->propagate_cred = 0;

spin_lock(&current->shared_cred->lock);
current->cred = current->shared_cred->cred;
spin_unlock(&current->shared_cred->lock);
}

kernel_entry() /* asm for every architecture :( */
{
if(unlikely(current_thread_info()->propagate_cred))
propagate_cred();
}

change_credentials()
{
list_t list;

spin_lock(&current->shared_cred->lock);
frob(current->shared_cred);
spin_unlock(&current->shared_cred->lock);

wmb();

spin_lock(&current->shared_cred->tasklist_lock);
list_for_each(list, &current->shared_cred_list)
{
struct task_struct* task = list_entry(list, struct task_struct, shared_cred_list);
task->thread_info->propagate_cred = 1;
}
spin_unlock(&current->shared_cred->tasklist_lock);
}

clone()
{
spin_lock(&current->shared_cred->lock);
new->cred = current->shared_cred->cred); /* not current->cred! */
spin_unlock(&current->shared_cred->lock);

if(flags & CLONE_CRED)
{
new->shared_cred = get_shared_cred(current->shared_cred);
spin_lock(&current->shared_cred->tasklist_lock);
list_add(new, &current->shared_cred_list);
spin_unlock(&current->shared_cred->tasklist_lock);
}
}

static void release_task(struct task_struct * p)
{
spin_lock(&current->shared_cred->tasklist_lock);
__list_del(current->shared_cred_list);
spin_unlock(&current->shared_cred->tasklist_lock);

put_shared_cred(current->shared_cred);
}

--=-HHiw9gHn8zQKohqPFjYV
Content-Type: application/pgp-signature; name=signature.asc
Content-Description: This is a digitally signed message part

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)

iD8DBQA9cRGKdjkty3ft5+cRAsHCAJ9mMmlNY+AmiGewSTnMP4FEe4PAgACgtK3j
WGjZXH33D5mN3rhDbeESiiM=
=qkUk
-----END PGP SIGNATURE-----

--=-HHiw9gHn8zQKohqPFjYV--
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/