Re: [PATCH, RFC] random: introduce getrandom(2) system call

From: Theodore Ts'o
Date: Thu Jul 17 2014 - 17:23:18 EST

Next message: Greg Kroah-Hartman: "Re: [PATCH 3.15 00/84] 3.15.6-stable review"
Previous message: Sebastian Reichel: "Re: [PATCH 3/4] power_supply: Introduce PSE compliant algorithm"
In reply to: Andy Lutomirski: "Re: [PATCH, RFC] random: introduce getrandom(2) system call"
Next in thread: Rolf Eike Beer: "Re: [PATCH, RFC] random: introduce getrandom(2) system call"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, Jul 17, 2014 at 01:27:06PM -0700, Andy Lutomirski wrote:
> > + return urandom_read(NULL, buf, count, NULL);
>
> This can return -ERESTARTSYS. Does it need any logic to restart correctly?

Nope; because we only return -ERESTARTSYS when we haven't generated
any randomness yet. The way /dev/urandom and /dev/random devices work
is that if we get interrupted, we return a short read. We do *not*
resume generation of random bytes from where we got interrupted from
the signal handler.

This is consistent with the definition in the signal(7) man page:

If a blocked call to one of the following interfaces is
interrupted by a signal handler, then the call will be
automatically restarted after the signal handler returns if the
SA_RESTART flag was used; otherwise the call will fail with the
error EINTR:

* read(2), readv(2), write(2), writev(2), and ioctl(2)
calls on "slow" devices. A "slow" device is one where
the I/O call may block for an indefinite time, for
example, a terminal, pipe, or socket. (A disk is not a
slow device according to this definition.) If an I/O
call on a slow device has already transferred some data
by the time it is interrupted by a signal handler, then
the call will return a success status (normally, the
number of bytes transferred).

And in answer to Zach's question along these lines, ERESTARTSYS gets
restarted or transformed into EINTR by the system call layer, so long
as you only set ERESTARTSYS when signal_pending(current) is true. If
you accidentally set the return value to ERESTARTSYS when a signal is
not pending, this error code can escape out to user space, which is
considered a bug. But we're using this correctly in
drivers/char/random.c.

- Ted
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Greg Kroah-Hartman: "Re: [PATCH 3.15 00/84] 3.15.6-stable review"
Previous message: Sebastian Reichel: "Re: [PATCH 3/4] power_supply: Introduce PSE compliant algorithm"
In reply to: Andy Lutomirski: "Re: [PATCH, RFC] random: introduce getrandom(2) system call"
Next in thread: Rolf Eike Beer: "Re: [PATCH, RFC] random: introduce getrandom(2) system call"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]