[v7,0/6] introduce PIDFD_SELF* sentinels

Message ID	cover.1738268370.git.lorenzo.stoakes@oracle.com (mailing list archive)
Headers	show Return-Path: <owner-linux-mm@kvack.org> From: Lorenzo Stoakes <lorenzo.stoakes@oracle.com> To: Christian Brauner <christian@brauner.io> Cc: Shuah Khan <shuah@kernel.org>, "Liam R . Howlett" <Liam.Howlett@oracle.com>, Suren Baghdasaryan <surenb@google.com>, Vlastimil Babka <vbabka@suse.cz>, pedro.falcato@gmail.com, linux-kselftest@vger.kernel.org, linux-mm@kvack.org, linux-fsdevel@vger.kernel.org, linux-api@vger.kernel.org, linux-kernel@vger.kernel.org, Oliver Sang <oliver.sang@intel.com>, John Hubbard <jhubbard@nvidia.com>, Tejun Heo <tj@kernel.org>, Johannes Weiner <hannes@cmpxchg.org>, Michal Koutny <mkoutny@suse.com>, Andrew Morton <akpm@linux-foundation.org>, Shakeel Butt <shakeel.butt@linux.dev> Subject: [PATCH v7 0/6] introduce PIDFD_SELF* sentinels Date: Thu, 30 Jan 2025 20:40:25 +0000 Message-ID: <cover.1738268370.git.lorenzo.stoakes@oracle.com> Content-Transfer-Encoding: 8bit Content-Type: text/plain MIME-Version: 1.0 Sender: owner-linux-mm@kvack.org Precedence: bulk
Series	introduce PIDFD_SELF* sentinels \| expand [v7,0/6] introduce PIDFD_SELF* sentinels [v7,1/6] pidfd: add PIDFD_SELF* sentinels to refer to own thread/process [v7,2/6] selftests/pidfd: add missing system header imcludes to pidfd tests [v7,3/6] tools: testing: separate out wait_for_pid() into helper header [v7,4/6] selftests: pidfd: add pidfd.h UAPI wrapper [v7,5/6] selftests: pidfd: add tests for PIDFD_SELF_* [v7,6/6] selftests/mm: use PIDFD_SELF in guard pages test

Message ID

cover.1738268370.git.lorenzo.stoakes@oracle.com (mailing list archive)

Headers

From: Lorenzo Stoakes <lorenzo.stoakes@oracle.com>
To: Christian Brauner <christian@brauner.io>
Cc: Shuah Khan <shuah@kernel.org>,
        "Liam R . Howlett" <Liam.Howlett@oracle.com>,
        Suren Baghdasaryan <surenb@google.com>,
        Vlastimil Babka <vbabka@suse.cz>, pedro.falcato@gmail.com,
        linux-kselftest@vger.kernel.org, linux-mm@kvack.org,
        linux-fsdevel@vger.kernel.org, linux-api@vger.kernel.org,
        linux-kernel@vger.kernel.org, Oliver Sang <oliver.sang@intel.com>,
        John Hubbard <jhubbard@nvidia.com>, Tejun Heo <tj@kernel.org>,
        Johannes Weiner <hannes@cmpxchg.org>,
 Michal Koutny <mkoutny@suse.com>,
        Andrew Morton <akpm@linux-foundation.org>,
        Shakeel Butt <shakeel.butt@linux.dev>
Subject: [PATCH v7 0/6] introduce PIDFD_SELF* sentinels
Date: Thu, 30 Jan 2025 20:40:25 +0000
Message-ID: <cover.1738268370.git.lorenzo.stoakes@oracle.com>
Content-Transfer-Encoding: 8bit
Content-Type: text/plain
MIME-Version: 1.0
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: 
 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
X-MS-Exchange-AntiSpam-ExternalHop-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-ExternalHop-MessageData-0: 
	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
X-OriginatorOrg: oracle.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 
 b9375a2f-5581-4716-8dd6-08dd416e58e2
X-MS-Exchange-CrossTenant-AuthSource: BYAPR10MB3366.namprd10.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 30 Jan 2025 20:40:35.1085
 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: 4e2c6054-71cb-48f1-bd6c-3a9705aca71b
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: 
 vVxGwUuZbB1fANQ3yNYmNXUeyrK6yG2xyftMk44rFsSSUe9mLtecAziszGzSGjkg2BCwLL+FYI+IqB/0Y+kQGiCQHGRdQUdbHyrvZMn7QYg=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MW4PR10MB6396
X-Proofpoint-Virus-Version: vendor=baseguard
 engine=ICAP:2.0.293,Aquarius:18.0.1057,Hydra:6.0.680,FMLib:17.12.68.34
 definitions=2025-01-30_09,2025-01-30_01,2024-11-22_01
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 mlxscore=0
 mlxlogscore=999 spamscore=0
 phishscore=0 bulkscore=0 malwarescore=0 adultscore=0 suspectscore=0
 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2411120000
 definitions=main-2501300158
X-Proofpoint-GUID: NZt6wwGBdk7Uo-SRMw9U-WiRCsM7ega7
X-Proofpoint-ORIG-GUID: NZt6wwGBdk7Uo-SRMw9U-WiRCsM7ega7
X-Stat-Signature: ryxga5kxo69rrkhuzjdthi4kseyo3r6p
X-Rspam-User: 
X-Rspamd-Queue-Id: 0F22F1C000A
X-Rspamd-Server: rspam03
X-HE-Tag: 1738269645-524375
X-HE-Meta: 
 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
 nK1VKh6k
 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
X-Bogosity: Ham, tests=bogofilter, spamicity=0.000000, version=1.2.4
Sender: owner-linux-mm@kvack.org
Precedence: bulk
X-Loop: owner-majordomo@kvack.org
List-ID: <linux-mm.kvack.org>
List-Subscribe: <mailto:majordomo@kvack.org>
List-Unsubscribe: <mailto:majordomo@kvack.org>

Series

introduce PIDFD_SELF* sentinels | expand

Message

Lorenzo Stoakes Jan. 30, 2025, 8:40 p.m. UTC

If you wish to utilise a pidfd interface to refer to the current process or
thread it is rather cumbersome, requiring something like:

	int pidfd = pidfd_open(getpid(), 0 or PIDFD_THREAD);

	...

	close(pidfd);

Or the equivalent call opening /proc/self. It is more convenient to use a
sentinel value to indicate to an interface that accepts a pidfd that we
simply wish to refer to the current process thread.

This series introduces sentinels for this purposes which can be passed as
the pidfd in this instance rather than having to establish a dummy fd for
this purpose.

It is useful to refer to both the current thread from the userland's
perspective for which we use PIDFD_SELF, and the current process from the
userland's perspective, for which we use PIDFD_SELF_PROCESS.

There is unfortunately some confusion between the kernel and userland as to
what constitutes a process - a thread from the userland perspective is a
process in userland, and a userland process is a thread group (more
specifically the thread group leader from the kernel perspective). We
therefore alias things thusly:

* PIDFD_SELF_THREAD aliased by PIDFD_SELF - use PIDTYPE_PID.
* PIDFD_SELF_THREAD_GROUP alised by PIDFD_SELF_PROCESS - use PIDTYPE_TGID.

In all of the kernel code we refer to PIDFD_SELF_THREAD and
PIDFD_SELF_THREAD_GROUP. However we expect users to use PIDFD_SELF and
PIDFD_SELF_PROCESS.

This matters for cases where, for instance, a user unshare()'s FDs or does
thread-specific signal handling and where the user would be hugely confused
if the FDs referenced or signal processed referred to the thread group
leader rather than the individual thread.

For now we only adjust pidfd_get_task() and the pidfd_send_signal() system
call with specific handling for this, implementing this functionality for
process_madvise(), process_mrelease() (albeit, using it here wouldn't
really make sense) and pidfd_send_signal().

We defer making further changes, as this would require a significant rework
of the pidfd mechanism.

The motivating case here is to support PIDFD_SELF in process_madvise(), so
this suffices for immediate uses. Moving forward, this can be further
expanded to other uses.

v7:
* Reworked implementation according to Christian's requirements. We now
  only support process_madvise() and pidfd_send_signal() system calls with
  PIDFD_SELF as specified.
* Updated tests to account for broken pidfd_open_test.c implementation.
* Fixed missing includes in pidfd self tests.
* Removed tests relating to functionality no longer supported.
* Update guard pages test to use PIDFD_SELF.

v6:
* Avoid static inline in UAPI header as suggested by Pedro.
* Place PIDFD_SELF values out of range of errors and any other sentinel as
  suggested by Pedro.
https://lore.kernel.org/linux-mm/cover.1729926229.git.lorenzo.stoakes@oracle.com/

v5:
* Fixup self test dependencies on pidfd/pidfd.h.
https://lore.kernel.org/linux-mm/cover.1729848252.git.lorenzo.stoakes@oracle.com/

v4:
* Avoid returning an fd in the __pidfd_get_pid() function as pointed out by
  Christian, instead simply always pin the pid and maintain fd scope in the
  helper alone.
* Add wrapper header file in tools/include/linux to allow for import of
  UAPI pidfd.h header without encountering the collision between system
  fcntl.h and linux/fcntl.h as discussed with Shuah and John.
* Fixup tests to import the UAPI pidfd.h header working around conflicts
  between system fcntl.h and linux/fcntl.h which the UAPI pidfd.h imports,
  as reported by Shuah.
* Use an int for pidfd_is_self_sentinel() to avoid any dependency on
  stdbool.h in userland.
https://lore.kernel.org/linux-mm/cover.1729198898.git.lorenzo.stoakes@oracle.com/

v3:
* Do not fput() an invalid fd as reported by kernel test bot.
* Fix unintended churn from moving variable declaration.
https://lore.kernel.org/linux-mm/cover.1729073310.git.lorenzo.stoakes@oracle.com/

v2:
* Fix tests as reported by Shuah.
* Correct RFC version lore link.
https://lore.kernel.org/linux-mm/cover.1728643714.git.lorenzo.stoakes@oracle.com/

Non-RFC v1:
* Removed RFC tag - there seems to be general consensus that this change is
  a good idea, but perhaps some debate to be had on implementation. It
  seems sensible then to move forward with the RFC flag removed.
* Introduced PIDFD_SELF_THREAD, PIDFD_SELF_THREAD_GROUP and their aliases
  PIDFD_SELF and PIDFD_SELF_PROCESS respectively.
* Updated testing accordingly.
https://lore.kernel.org/linux-mm/cover.1728578231.git.lorenzo.stoakes@oracle.com/

RFC version:
https://lore.kernel.org/linux-mm/cover.1727644404.git.lorenzo.stoakes@oracle.com/


Lorenzo Stoakes (6):
  pidfd: add PIDFD_SELF* sentinels to refer to own thread/process
  selftests/pidfd: add missing system header imcludes to pidfd tests
  tools: testing: separate out wait_for_pid() into helper header
  selftests: pidfd: add pidfd.h UAPI wrapper
  selftests: pidfd: add tests for PIDFD_SELF_*
  selftests/mm: use PIDFD_SELF in guard pages test

 include/uapi/linux/pidfd.h                    |  24 ++++
 kernel/pid.c                                  |  24 +++-
 kernel/signal.c                               | 106 +++++++++++-------
 tools/include/linux/pidfd.h                   |  14 +++
 tools/testing/selftests/cgroup/test_kill.c    |   2 +-
 tools/testing/selftests/mm/Makefile           |   4 +
 tools/testing/selftests/mm/guard-pages.c      |  15 +--
 .../pid_namespace/regression_enomem.c         |   2 +-
 tools/testing/selftests/pidfd/Makefile        |   3 +-
 tools/testing/selftests/pidfd/pidfd.h         |  28 +----
 .../selftests/pidfd/pidfd_fdinfo_test.c       |   1 +
 tools/testing/selftests/pidfd/pidfd_helpers.h |  39 +++++++
 .../testing/selftests/pidfd/pidfd_open_test.c |   6 +-
 .../selftests/pidfd/pidfd_setns_test.c        |   1 +
 tools/testing/selftests/pidfd/pidfd_test.c    |  76 +++++++++++--
 15 files changed, 242 insertions(+), 103 deletions(-)
 create mode 100644 tools/include/linux/pidfd.h
 create mode 100644 tools/testing/selftests/pidfd/pidfd_helpers.h

--
2.48.1

Comments

Andrew Morton Jan. 30, 2025, 10:37 p.m. UTC | #1

On Thu, 30 Jan 2025 20:40:25 +0000 Lorenzo Stoakes <lorenzo.stoakes@oracle.com> wrote:

> If you wish to utilise a pidfd interface to refer to the current process or
> thread it is rather cumbersome, requiring something like:
> 
> 	int pidfd = pidfd_open(getpid(), 0 or PIDFD_THREAD);
> 
> 	...
> 
> 	close(pidfd);
> 
> Or the equivalent call opening /proc/self. It is more convenient to use a
> sentinel value to indicate to an interface that accepts a pidfd that we
> simply wish to refer to the current process thread.
> 

The above code sequence doesn't seem at all onerous.  I'm not
understanding why it's worth altering the kernel to permit this little
shortcut?

Lorenzo Stoakes Jan. 30, 2025, 10:53 p.m. UTC | #2

On Thu, Jan 30, 2025 at 02:37:54PM -0800, Andrew Morton wrote:
> On Thu, 30 Jan 2025 20:40:25 +0000 Lorenzo Stoakes <lorenzo.stoakes@oracle.com> wrote:
>
> > If you wish to utilise a pidfd interface to refer to the current process or
> > thread it is rather cumbersome, requiring something like:
> >
> > 	int pidfd = pidfd_open(getpid(), 0 or PIDFD_THREAD);
> >
> > 	...
> >
> > 	close(pidfd);
> >
> > Or the equivalent call opening /proc/self. It is more convenient to use a
> > sentinel value to indicate to an interface that accepts a pidfd that we
> > simply wish to refer to the current process thread.
> >
>
> The above code sequence doesn't seem at all onerous.  I'm not
> understanding why it's worth altering the kernel to permit this little
> shortcut?

In practice it adds quite a bit of overhead for something that whatever
mechanism is using the pidfd can avoid.

It was specifically intended for a real case of utilising
process_madvise(), using the newly extended ability to batch _any_
madvise() operations for the current process, like:

	if (process_madvise(PIDFD_SELF, iovec, 10, MADV_GUARD_INSTALL, 0)) {
	    ... error handling ...
	}

vs.

	pid_t pid = getpid();
	int pidfd = pidfd_open(pid, PIDFD_THREAD);

	if (pidfd < 0) {
	   ... error handling ...
	}

	if (process_madvise(PIDFD_SELF, iovec, 10, MADV_GUARD_INSTALL, 0)) {
	   ... cleanup pidfd ...
	   ... error handling ...
	}

	...

	... cleanup pidfd ...

So in practice, it's actually a lot more ceremony and noise. Suren has been
working with this code in practice and found this to be useful.

The suggestion to embed it as PIDFD_SELF rather than to pass it as a
process_madvise() flag was made on the original series where I extended its
functionality.

So in practice I think it's onerous enough to justify this, plus it allows
for a more fluent use of pidfd's in other cases where one is referring to
the same process/thread, to the extent that I've seen people commenting on
supporting it while sending series relating to pidfd.

Also Christian and others appear to support this idea.

Pedro Falcato Jan. 30, 2025, 11:10 p.m. UTC | #3

On Thu, Jan 30, 2025 at 10:53 PM Lorenzo Stoakes
<lorenzo.stoakes@oracle.com> wrote:
>
> On Thu, Jan 30, 2025 at 02:37:54PM -0800, Andrew Morton wrote:
> > On Thu, 30 Jan 2025 20:40:25 +0000 Lorenzo Stoakes <lorenzo.stoakes@oracle.com> wrote:
> >
> > > If you wish to utilise a pidfd interface to refer to the current process or
> > > thread it is rather cumbersome, requiring something like:
> > >
> > >     int pidfd = pidfd_open(getpid(), 0 or PIDFD_THREAD);
> > >
> > >     ...
> > >
> > >     close(pidfd);
> > >
> > > Or the equivalent call opening /proc/self. It is more convenient to use a
> > > sentinel value to indicate to an interface that accepts a pidfd that we
> > > simply wish to refer to the current process thread.
> > >
> >
> > The above code sequence doesn't seem at all onerous.  I'm not
> > understanding why it's worth altering the kernel to permit this little
> > shortcut?
>
> In practice it adds quite a bit of overhead for something that whatever
> mechanism is using the pidfd can avoid.
>
> It was specifically intended for a real case of utilising
> process_madvise(), using the newly extended ability to batch _any_
> madvise() operations for the current process, like:
>
>         if (process_madvise(PIDFD_SELF, iovec, 10, MADV_GUARD_INSTALL, 0)) {
>             ... error handling ...
>         }
>
> vs.
>
>         pid_t pid = getpid();
>         int pidfd = pidfd_open(pid, PIDFD_THREAD);
>
>         if (pidfd < 0) {
>            ... error handling ...
>         }
>
>         if (process_madvise(PIDFD_SELF, iovec, 10, MADV_GUARD_INSTALL, 0)) {
>            ... cleanup pidfd ...
>            ... error handling ...
>         }
>
>         ...
>
>         ... cleanup pidfd ...
>
> So in practice, it's actually a lot more ceremony and noise. Suren has been
> working with this code in practice and found this to be useful.

It's also nice to add that people on the libc/allocator side should
also appreciate skipping pidfd_open's reliability concerns (mostly,
that RLIMIT_NOFILE Should Not(tm) ever affect thread spawning or a
malloc[1]). Besides the big syscall reduction and nice speedup, that
is.

[1] whether this is the already case is an exercise left to the
reader, but at the very least we should not add onto existing problems

Andrew Morton Jan. 30, 2025, 11:32 p.m. UTC | #4

On Thu, 30 Jan 2025 23:10:53 +0000 Pedro Falcato <pedro.falcato@gmail.com> wrote:

> On Thu, Jan 30, 2025 at 10:53 PM Lorenzo Stoakes
> <lorenzo.stoakes@oracle.com> wrote:
> >
> > > The above code sequence doesn't seem at all onerous.  I'm not
> > > understanding why it's worth altering the kernel to permit this little
> > > shortcut?
> >
> > In practice it adds quite a bit of overhead for something that whatever
> > mechanism is using the pidfd can avoid.
> >
> > It was specifically intended for a real case of utilising
> > process_madvise(), using the newly extended ability to batch _any_
> > madvise() operations for the current process, like:
> >
> >         if (process_madvise(PIDFD_SELF, iovec, 10, MADV_GUARD_INSTALL, 0)) {
> >             ... error handling ...
> >         }
> >
> > vs.
> >
> >         pid_t pid = getpid();
> >         int pidfd = pidfd_open(pid, PIDFD_THREAD);
> >
> >         if (pidfd < 0) {
> >            ... error handling ...
> >         }
> >
> >         if (process_madvise(PIDFD_SELF, iovec, 10, MADV_GUARD_INSTALL, 0)) {
> >            ... cleanup pidfd ...
> >            ... error handling ...
> >         }
> >
> >         ...
> >
> >         ... cleanup pidfd ...
> >
> > So in practice, it's actually a lot more ceremony and noise. Suren has been
> > working with this code in practice and found this to be useful.
> 
> It's also nice to add that people on the libc/allocator side should
> also appreciate skipping pidfd_open's reliability concerns (mostly,
> that RLIMIT_NOFILE Should Not(tm) ever affect thread spawning or a
> malloc[1]). Besides the big syscall reduction and nice speedup, that
> is.
> 
> [1] whether this is the already case is an exercise left to the
> reader, but at the very least we should not add onto existing problems

Thanks.

Could we please get all the above spelled out much more thoroughly in
the [0/n] description (aka Patch Series Sales Brochure)?