01.02.2016 20:09, Oleg Nesterov пишет:
On 02/01, Oleg Nesterov wrote:+ onsigstack = on_sig_stack(sp); + if (ss_size == 0) { + switch (ss_flags) { + case 0: + error = -EPERM; + if (onsigstack) + goto out; + current->sas_ss_sp = 0; + current->sas_ss_size = 0; + current->sas_ss_flags = SS_DISABLE; + break; + case SS_ONSTACK: + /* re-enable previously disabled sas */ + error = -EINVAL; + if (current->sas_ss_size == 0) + goto out; + break; + default: + break; + }and iiuc the "default" case allows you to write SS_DISABLE into ->sas_ss_flags even if on_sig_stack().So the sequence is // running on alt stack sigaltstack(SS_DISABLE); temporary_run_on_another_stack(); sigaltstack(SS_ONSTACK); and SS_DISABLE saves us from another SA_ONSTACK signal, right? But afaics it can only help after we change the stack. Suppose that SA_ONSTACK signal comess before temporary_run_on_another_stack(). get_sigframe() should be fine after your changes (afaics), it won't pick the alt stack after SS_DISABLE. However, unless I missed something save_altstack_ex() will record SS_ONSTACK in uc_stack->ss_flags, and after return from signal handler restore_altstack() will enable alt stack again?OK, I didn't notice you modified save_altstack_ex() to use ->sas_ss_flags instead of sas_ss_flags()... still doesn't look right, in this case restore_altstack() will not restore sas_ss_size/sas_ss_sp and they can be changed by signal handler.
How? Trying to change them in a sighandler with sigaltstack() will get EPERM. And if you change them in uc_stack without setting ss_flags back to SS_ONSTACK, they should better be ignored.
Anyway, whatever I missed I agree with Andy, SS_FORCE looks simpler and better to me.
But perhaps you missed the most important thing, that it is not possible to change the altstack in sighandler - you'll get EPERM, even with my patch. But with SS_FORCE this is exactly not the case. So I'd like you to confirm your opinion after all the implementation details are understood. Also it would be interesting to know what do you think about just removing the EPERM check instead of this all. There are 3 possibilities to choose from, not 2. Removing EPERM looks simplest.
