RE: O_NONBLOCK setting "leak" outside of a process??

From: David Schwartz
Date: Sun Feb 04 2007 - 02:58:15 EST

Next message: David Schwartz: "RE: ntp"
Previous message: David Schwartz: "RE: [PATCH] Ban module license tag string termination trick"
In reply to: Denis Vlasenko: "Re: O_NONBLOCK setting "leak" outside of a process??"
Next in thread: Michael Tokarev: "Re: O_NONBLOCK setting "leak" outside of a process??"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> Easy. O_NONBLOCK should only affect whether read/write blocks or
> returns EAGAIN. It's logical for this setting to be per-process.

Sadly, that's not what POSIX says. POSIX says that 'dup' and 'fork' create
two references to the same file description and that O_NONBLOCK is a
per-file-description flag. So such an implementation would not be
POSIX-conforming.

> Currently changing O_NONBLOCK on stdin/out/err affects other,
> possibly unrelated processes - they don't expect that *their*
> reads/writes will start returning EAGAIN!

Then they're broken. Sorry, that's just the way it is. Code should always
correctly handle defined error codes. I agree that it's unexpected and
unfortunate, but you have to code defensively.

*Every* blocking fd operation should be followed by a check to see if the
operation failed, succeeded, or partially succeeded. If it partially
succeeded, it needs to be continued. If it failed, you need to check if the
error is fatal or transient. If transient, you need to back off and retry.
It has, sadly, always been this way. (Programs can get signals, debuggers
can interrupt a system call, the unexpected happens.)

> Worse, it cannot be worked around by dup() because duped fds
> are still sharing O_NONBLOCK. How can I work around this?

If this causes your code a problem, your code is broken. What does your code
currently do if it gets a non-fatal error from a blocking operation? If it
does anything other than back off and retry, it's mishandling the condition.

It is also an error to change the modes on an inherited file descriptor
unless you know for a fact that this is what the program that gave you the
file descriptor expects you to do (or that it has relinquished that
descriptor). So it takes two bugs to cause this problem.

I agree that the world might have been a better place had this been thought
about from the beginning.

DS

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: David Schwartz: "RE: ntp"
Previous message: David Schwartz: "RE: [PATCH] Ban module license tag string termination trick"
In reply to: Denis Vlasenko: "Re: O_NONBLOCK setting "leak" outside of a process??"
Next in thread: Michael Tokarev: "Re: O_NONBLOCK setting "leak" outside of a process??"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]