base-linux: simplify clone syscall binding

This patch simplifies the use of the clone system call for creating processes and threads. Until now, the binding used an opaque pointer argument to pass context information to the newly created process or thread. However, upon close inspection, this is not a strict requirement. A newly created thread accesses its contextual information by using its stack pointer as key. The pointer argument is not used. The creation of processes is strictly serialized because the intermediate stack used in-between clone and execve is a global variable. Since we rely on the serialization anyway, we can pass the context information of a new process via a global variable as well. This change simplifies the syscall binding for the upcoming AARCH64 support, which would otherwise require us to deal with the notion of TLS on Linux. Issue #4136
2025-01-29 15:44:02 +00:00 · 2021-05-04 12:13:46 +02:00 · 2021-05-04 12:13:46 +02:00 · d477062c56
commit d477062c56
parent 811009d18b
5 changed files with 47 additions and 54 deletions
--- a/repos/base-linux/src/core/include/core_linux_syscalls.h
+++ b/repos/base-linux/src/core/include/core_linux_syscalls.h
@ -119,7 +119,7 @@ inline int lx_kill(int pid, int signal)
 }


-inline int lx_create_process(int (*entry)(void *), void *stack, void *arg)
+inline int lx_create_process(int (*entry)(), void *stack)
 {
 	/*
 	 * The low byte of the flags denotes the signal to be sent to the parent
@ -127,7 +127,7 @@ inline int lx_create_process(int (*entry)(void *), void *stack, void *arg)
 	 * this condition.
 	 */
 	int const flags = CLONE_VFORK | LX_SIGCHLD;
-	return lx_clone((int (*)(void *))entry, stack, flags, arg);
+	return lx_clone((int (*)())entry, stack, flags);
 }


--- a/repos/base-linux/src/core/native_pd_component.cc
+++ b/repos/base-linux/src/core/native_pd_component.cc
@ -15,6 +15,7 @@
 #include <util/arg_string.h>
 #include <base/log.h>
 #include <base/snprintf.h>
+#include <cpu/consts.h>

 /* core-local includes */
 #include <pd_session_component.h>
@ -35,33 +36,48 @@ using namespace Genode;
 ***************/

 /**
- * Argument frame for passing 'execve' paremeters through 'clone'
+ * Argument frame and initial stack for passing 'execve' parameters through 'clone'
 */
-struct Execve_args
+struct Execve_args_and_stack
 {
-	char   const *filename;
-	char * const *argv;
-	char * const *envp;
-	Lx_sd  const parent_sd;
+	struct Args
+	{
+		char const *filename;
+		char      **argv;
+		char      **envp;
+		Lx_sd       parent_sd;
+	};

-	Execve_args(char   const *filename,
-	            char * const *argv,
-	            char * const *envp,
-	            Lx_sd         parent_sd)
-	:
-		filename(filename), argv(argv), envp(envp), parent_sd(parent_sd)
-	{ }
+	Args args;
+
+	/* initial stack used by the child until calling 'execve' */
+	enum { STACK_SIZE = 4096 };
+	char stack[STACK_SIZE];
+
+	void *initial_sp()
+	{
+		return (void *)Abi::stack_align((addr_t)(stack + STACK_SIZE));
+	}
 };


+static Execve_args_and_stack &_execve_args_and_stack()
+{
+	static Execve_args_and_stack inst { };
+	return inst;
+}
+
+
 /**
 * Startup code of the new child process
 */
-static int _exec_child(Execve_args *arg)
+static int _exec_child()
 {
-	lx_dup2(arg->parent_sd.value, PARENT_SOCKET_HANDLE);
+	auto const &args = _execve_args_and_stack().args;

-	return lx_execve(arg->filename, arg->argv, arg->envp);
+	lx_dup2(args.parent_sd.value, PARENT_SOCKET_HANDLE);
+
+	return lx_execve(args.filename, args.argv, args.envp);
 }


@ -148,31 +164,15 @@ void Native_pd_component::_start(Dataspace_component &ds)
 	argv_buf[0] = pname_buf;
 	argv_buf[1] = 0;

-	/*
-	 * We cannot create the new process via 'fork()' because all our used
-	 * memory including stack memory is backed by dataspaces, which had been
-	 * mapped with the 'MAP_SHARED' flag. Therefore, after being created, the
-	 * new process starts using the stack with the same physical memory pages
-	 * as used by parent process. This would ultimately lead to stack
-	 * corruption. To prevent both processes from concurrently accessing the
-	 * same stack, we pause the execution of the parent until the child calls
-	 * 'execve'. From then on, the child has its private memory layout. The
-	 * desired behaviour is normally provided by 'vfork' but we use the more
-	 * modern 'clone' call for this purpose.
-	 */
-	enum { STACK_SIZE = 4096 };
-	static char stack[STACK_SIZE];    /* initial stack used by the child until
-	                                     calling 'execve' */
+	_execve_args_and_stack().args = Execve_args_and_stack::Args {
+		.filename  = filename,
+		.argv      = argv_buf,
+		.envp      = env,
+		.parent_sd = Capability_space::ipc_cap_data(_pd_session._parent).dst.socket
+	};

-	/*
-	 * Argument frame as passed to 'clone'. Because, we can only pass a single
-	 * pointer, all arguments are embedded within the 'execve_args' struct.
-	 */
-	Execve_args arg(filename, argv_buf, env,
-	                Capability_space::ipc_cap_data(_pd_session._parent).dst.socket);
-
-	_pid = lx_create_process((int (*)(void *))_exec_child,
-	                         stack + STACK_SIZE - sizeof(umword_t), &arg);
+	_pid = lx_create_process((int (*)())_exec_child,
+	                         _execve_args_and_stack().initial_sp());

 	if (strcmp(filename, tmp_filename) == 0)
 		lx_unlink(filename);
--- a/repos/base-linux/src/core/thread_linux.cc
+++ b/repos/base-linux/src/core/thread_linux.cc
@ -66,6 +66,6 @@ void Thread::_deinit_platform_thread() { }

 void Thread::start()
 {
-	native_thread().tid = lx_create_thread(Thread::_thread_start, stack_top(), this);
+	native_thread().tid = lx_create_thread(Thread::_thread_start, stack_top());
 	native_thread().pid = lx_getpid();
 }
--- a/repos/base-linux/src/lib/base/thread_linux.cc
+++ b/repos/base-linux/src/lib/base/thread_linux.cc
@ -160,7 +160,7 @@ void Thread::start()
 		threadlib_initialized = true;
 	}

-	native_thread().tid = lx_create_thread(Thread::_thread_start, stack_top(), this);
+	native_thread().tid = lx_create_thread(Thread::_thread_start, stack_top());
 	native_thread().pid = lx_getpid();

 	/* wait until the 'thread_start' function got entered */
--- a/repos/base-linux/src/lib/syscall/linux_syscalls.h
+++ b/repos/base-linux/src/lib/syscall/linux_syscalls.h
@ -84,8 +84,7 @@ extern "C" void wait_for_continue(void);
 *********************************************************/

 extern "C" long lx_syscall(int number, ...);
-extern "C" int  lx_clone(int (*fn)(void *), void *child_stack,
-                         int flags, void *arg);
+extern "C" int  lx_clone(int (*fn)(), void *child_stack, int flags);


 /*****************************************
@ -404,18 +403,12 @@ inline int lx_sigaltstack(void *signal_stack, Genode::size_t stack_size)
 }


-inline int lx_create_thread(void (*entry)(), void *stack, void *arg)
+inline int lx_create_thread(void (*entry)(), void *stack)
 {
 	int flags = CLONE_VM | CLONE_FS | CLONE_FILES | CLONE_SIGHAND
 	          | CLONE_THREAD | CLONE_SYSVSEM;

-	/*
-	 * The syscall binding for clone does not exist in the FreeBSD libc, which
-	 * we are using as libc for Genode. In glibc, clone is implemented as a
-	 * assembler binding without external libc references. Hence, we are safe
-	 * to rely on the glibc version of 'clone' here.
-	 */
-	return lx_clone((int (*)(void *))entry, stack, flags, arg);
+	return lx_clone((int (*)())entry, stack, flags);
 }