Hi Paul!
On 8/27/21 1:45 AM, Paul Boddie wrote:
Hello,
The long journey of developing components for L4Re continues - a story for
another time, perhaps - and I have been testing code that works with the old
Subversion-based L4Re distribution on the newer Git-based L4Re distribution.
One thing that seems to be different between the old and the new is when a
call like the following is performed:
l4re_rm_attach(addr, size, L4RE_RM_SEARCH_ADDR, ds, offset, L4_PAGESHIFT);
Apart from L4RE_RM_SEARCH_ADDR seemingly being replaced by a differently-named
constant, L4RE_RM_F_SEARCH_ADDR, it appears that such a value for the flags is
insufficient and that additional rights flags might be required.
If I omit such rights flags, I get the L4_ENOENT error value, but this worked
before. So, I think I may have misunderstood the behaviour of the function. Or
are there now additional constraints imposed by the region manager that
prevent any inappropriate accesses from bothering the dataspace? (My dataspace
does test the flags on map requests against the rights supported by the
dataspace itself.)
Another difference that I see between the old and the new is in the flags used
for map requests sent to dataspaces. In the old distribution, there were these
definitions (in pkg/l4re-core/l4re_c/include/dataspace.h):
L4RE_DS_MAP_FLAG_RO = 0,
L4RE_DS_MAP_FLAG_RW = 1,
It appears that map requests now use the following:
L4RE_DS_F_R = L4_FPAGE_RO,
L4RE_DS_F_W = L4_FPAGE_W,
L4RE_DS_F_X = L4_FPAGE_X,
L4RE_DS_F_RW = L4_FPAGE_RW,
L4RE_DS_F_RX = L4_FPAGE_RX,
L4RE_DS_F_RWX = L4_FPAGE_RWX,
I think the actual values involved here are different, but I imagine that
since everything should be manipulating values derived from these definitions
(as opposed to maintaining separate definitions of the flags), no
incompatibility would normally be observed. But the apparent lack of
conservatism surprised me slightly.
Anyway, if anyone has any insight into why the attach operation behaviour is
different, I would very much appreciate it!
This behavior was introduced by the following commit in 2019:
https://github.com/kernkonzept/l4re-core/commit/81edd6119c45be6f1448a5535b1378fbc9ce89b9
New dataspace and region map APIs
The new APIs allow 64bit offsets and size of dataspaces also on 32bit
architectures. And have a clean and type-safe dataspace flags and
region flags model including execute rights and the possibility of
execute-only pages and so on.
Change-Id: I77273a5bb93c9891bca4f848c9b17db332b1b72a
In general, you must specify the access rights of the attached region
explicitly now, otherwise the rights will be --- (empty) and it will not
be possible to access the region. Previously the default was RW access.
This commit broke backwards compatibility in exchange for the benefits
described in the commit message. We modified all our repositories to
reflect this change back in 2019, but obviously you need to make
adaptations to your own code yourself.
Cheers,
Jakub
_______________________________________________
l4-hackers mailing list
l4-hackers@os.inf.tu-dresden.de
https://os.inf.tu-dresden.de/mailman/listinfo/l4-hackers
