This is the mail archive of the
libc-alpha@sourceware.org
mailing list for the glibc project.
Re: don't accept IE relocs for module that has dynamic TLS blocks
- From: Alexandre Oliva <aoliva at redhat dot com>
- To: libc-alpha at sources dot redhat dot com
- Date: Mon, 06 Feb 2006 14:25:48 -0200
- Subject: Re: don't accept IE relocs for module that has dynamic TLS blocks
- References: <ord5n91tx5.fsf@livre.oliva.athome.lsd.ic.unicamp.br> <orzmqdzhxi.fsf@livre.oliva.athome.lsd.ic.unicamp.br> <orwtlfwmy8.fsf@livre.oliva.athome.lsd.ic.unicamp.br> <orbr2la9qy.fsf_-_@livre.oliva.athome.lsd.ic.unicamp.br>
On Sep 22, 2005, Alexandre Oliva <aoliva@redhat.com> wrote:
> On Sep 17, 2005, Alexandre Oliva <aoliva@redhat.com> wrote:
>>> The patch also adds a test to fix a problem I ran into while testing
>>> these optimizations, that turned out to be possible to trigger with
>>> the old code.
> Split out, per Roland's request.
> As shown in the testcase, when we accept a relocation to static TLS,
> we must make sure the referenced symbol has never been assigned to
> dynamic TLS before. This requires __tls_get_addr() to commit a
> module to a new state in which it's no longer eligible for static
> TLS, and have the code used to test for static TLS adjusted,
> especially the code that tries to commit a module to static TLS.
Any reason why this hasn't been reviewed or installed yet? It's been
pending for a while, and it would be nice if GLIBC 2.4 had this fix.
As shown in the testcase, when we accept a relocation to static TLS,
we must make sure the referenced symbol has never been assigned to
dynamic TLS before. This requires __tls_get_addr() to commit a
module to a new state in which it's no longer eligible for static
TLS, and have the code used to test for static TLS adjusted,
especially the code that tries to commit a module to static TLS.
Index: ChangeLog
from Alexandre Oliva <aoliva@redhat.com>
* include/link.h (FORCED_DYNAMIC_TLS_OFFSET): Define.
* elf/dl-tls.c (_dl_allocate_tls_init): Check for it.
* elf/dl-close.c (_dl_close): Likewise.
* elf/dl-reloc.c (CHECK_STATIC_TLS): Likewise.
(_dl_allocate_static_tls): Likewise.
* elf/dl-tls.c (__tls_get_addr): Protect from race
conditions in setting l_tls_offset to it.
* elf/tst-tls16.c: New test.
* elf/tst-tlsmod16a.c, elf/tst-tlsmod16b.c: Supporting libraries.
* elf/Makefile: Set it up.
Index: elf/Makefile
===================================================================
--- elf/Makefile.orig 2005-10-22 18:21:03.000000000 -0200
+++ elf/Makefile 2005-10-22 18:21:07.000000000 -0200
@@ -163,8 +163,9 @@
neededtest3 neededtest4 unload2 lateglobal initfirst global \
restest2 next dblload dblunload reldep5 reldep6 reldep7 reldep8 \
circleload1 tst-tls3 tst-tls4 tst-tls5 tst-tls6 tst-tls7 tst-tls8 \
- tst-tls10 tst-tls11 tst-tls12 tst-tls13 tst-tls14 tst-tls15 tst-align \
- tst-align2 $(tests-execstack-$(have-z-execstack)) tst-dlmodcount \
+ tst-tls10 tst-tls11 tst-tls12 tst-tls13 tst-tls14 tst-tls15 \
+ tst-tls16 tst-align tst-align2 \
+ $(tests-execstack-$(have-z-execstack)) tst-dlmodcount \
tst-dlopenrpath tst-deep1 tst-dlmopen1 tst-dlmopen2 tst-dlmopen3 \
unload3 unload4 unload5 unload6 tst-audit1 tst-global1 order2 \
tst-stackguard1
@@ -195,7 +196,7 @@
tst-tlsmod5 tst-tlsmod6 tst-tlsmod7 tst-tlsmod8 \
tst-tlsmod9 tst-tlsmod10 tst-tlsmod11 tst-tlsmod12 \
tst-tlsmod13 tst-tlsmod13a tst-tlsmod14a tst-tlsmod14b \
- tst-tlsmod15a tst-tlsmod15b \
+ tst-tlsmod15a tst-tlsmod15b tst-tlsmod16a tst-tlsmod16b \
circlemod1 circlemod1a circlemod2 circlemod2a \
circlemod3 circlemod3a \
reldep8mod1 reldep8mod2 reldep8mod3 \
@@ -486,6 +487,7 @@
tst-tlsmod14a.so-no-z-defs = yes
tst-tlsmod14b.so-no-z-defs = yes
tst-tlsmod15a.so-no-z-defs = yes
+tst-tlsmod16b.so-no-z-defs = yes
circlemod2.so-no-z-defs = yes
circlemod3.so-no-z-defs = yes
circlemod3a.so-no-z-defs = yes
@@ -700,6 +702,9 @@
$(objpfx)tst-tls15: $(libdl)
$(objpfx)tst-tls15.out: $(objpfx)tst-tlsmod15a.so $(objpfx)tst-tlsmod15b.so
+$(objpfx)tst-tls16: $(libdl)
+$(objpfx)tst-tls16.out: $(objpfx)tst-tlsmod16a.so $(objpfx)tst-tlsmod16b.so
+
CFLAGS-tst-align.c = $(stack-align-test-flags)
CFLAGS-tst-align2.c = $(stack-align-test-flags)
CFLAGS-tst-alignmod.c = $(stack-align-test-flags)
Index: elf/dl-close.c
===================================================================
--- elf/dl-close.c.orig 2005-10-22 18:21:03.000000000 -0200
+++ elf/dl-close.c 2005-10-22 18:21:07.000000000 -0200
@@ -436,7 +436,8 @@
/* All dynamically loaded modules with TLS are unloaded. */
GL(dl_tls_max_dtv_idx) = GL(dl_tls_static_nelem);
- if (imap->l_tls_offset != NO_TLS_OFFSET)
+ if (imap->l_tls_offset != NO_TLS_OFFSET
+ && imap->l_tls_offset != FORCED_DYNAMIC_TLS_OFFSET)
{
/* Collect a contiguous chunk built from the objects in
this search list, going in either direction. When the
Index: elf/dl-reloc.c
===================================================================
--- elf/dl-reloc.c.orig 2005-10-22 18:21:03.000000000 -0200
+++ elf/dl-reloc.c 2005-10-22 18:21:07.000000000 -0200
@@ -48,8 +48,10 @@
internal_function __attribute_noinline__
_dl_allocate_static_tls (struct link_map *map)
{
- /* If the alignment requirements are too high fail. */
- if (map->l_tls_align > GL(dl_tls_static_align))
+ /* If we've already used the variable with dynamic access, or if the
+ alignment requirements are too high, fail. */
+ if (map->l_tls_offset == FORCED_DYNAMIC_TLS_OFFSET
+ || map->l_tls_align > GL(dl_tls_static_align))
{
fail:
_dl_signal_error (0, map->l_name, NULL, N_("\
@@ -257,10 +259,12 @@
an attempt to allocate it in surplus space on the fly. If that
can't be done, we fall back to the error that DF_STATIC_TLS is
intended to produce. */
-#define CHECK_STATIC_TLS(map, sym_map) \
- do { \
- if (__builtin_expect ((sym_map)->l_tls_offset == NO_TLS_OFFSET, 0)) \
- _dl_allocate_static_tls (sym_map); \
+#define CHECK_STATIC_TLS(map, sym_map) \
+ do { \
+ if (__builtin_expect ((sym_map)->l_tls_offset == NO_TLS_OFFSET \
+ || ((sym_map)->l_tls_offset \
+ == FORCED_DYNAMIC_TLS_OFFSET), 0)) \
+ _dl_allocate_static_tls (sym_map); \
} while (0)
#include "dynamic-link.h"
Index: elf/tst-tls16.c
===================================================================
--- /dev/null 1970-01-01 00:00:00.000000000 +0000
+++ elf/tst-tls16.c 2005-10-22 18:21:07.000000000 -0200
@@ -0,0 +1,52 @@
+#include <dlfcn.h>
+#include <stdio.h>
+
+static int
+do_test (void)
+{
+ void *h = dlopen ("tst-tlsmod16a.so", RTLD_LAZY | RTLD_GLOBAL);
+ if (h == NULL)
+ {
+ puts ("unexpectedly failed to open tst-tlsmod16a.so");
+ exit (1);
+ }
+
+ void *p = dlsym (h, "tlsvar");
+
+ /* This dlopen should indeed fail, because tlsvar was assigned to
+ dynamic TLS, and the new module requests it to be in static TLS.
+ However, there's a possibility that dlopen succeeds if the
+ variable is, for whatever reason, assigned to static TLS, or if
+ the module fails to require static TLS, or even if TLS is not
+ supported. */
+ h = dlopen ("tst-tlsmod16b.so", RTLD_NOW | RTLD_GLOBAL);
+ if (h == NULL)
+ {
+ return 0;
+ }
+
+ puts ("unexpectedly succeeded to open tst-tlsmod16b.so");
+
+
+ void *(*fp) (void) = (void *(*) (void)) dlsym (h, "in_dso");
+ if (fp == NULL)
+ {
+ puts ("cannot find in_dso");
+ exit (1);
+ }
+
+ /* If the dlopen passes, at least make sure the address returned by
+ dlsym is the same as that returned by the initial-exec access.
+ If the variable was assigned to dynamic TLS during dlsym, this
+ portion will fail. */
+ if (fp () != p)
+ {
+ puts ("returned values do not match");
+ exit (1);
+ }
+
+ return 0;
+}
+
+#define TEST_FUNCTION do_test ()
+#include "../test-skeleton.c"
Index: elf/tst-tlsmod16a.c
===================================================================
--- /dev/null 1970-01-01 00:00:00.000000000 +0000
+++ elf/tst-tlsmod16a.c 2005-10-22 18:21:07.000000000 -0200
@@ -0,0 +1,8 @@
+#include <tls.h>
+
+#if defined USE_TLS && defined HAVE___THREAD \
+ && defined HAVE_TLS_MODEL_ATTRIBUTE
+int __thread tlsvar;
+#else
+int tlsvar;
+#endif
Index: elf/tst-tlsmod16b.c
===================================================================
--- /dev/null 1970-01-01 00:00:00.000000000 +0000
+++ elf/tst-tlsmod16b.c 2005-10-22 18:21:07.000000000 -0200
@@ -0,0 +1,14 @@
+#include <tls.h>
+
+#if defined USE_TLS && defined HAVE___THREAD \
+ && defined HAVE_TLS_MODEL_ATTRIBUTE
+extern __thread int tlsvar __attribute__((tls_model("initial-exec")));
+#else
+extern int tlsvar;
+#endif
+
+void *
+in_dso (void)
+{
+ return &tlsvar;
+}
Index: include/link.h
===================================================================
--- include/link.h.orig 2005-10-22 18:21:03.000000000 -0200
+++ include/link.h 2005-10-22 18:21:07.000000000 -0200
@@ -296,6 +296,15 @@
# ifndef NO_TLS_OFFSET
# define NO_TLS_OFFSET 0
# endif
+# ifndef FORCED_DYNAMIC_TLS_OFFSET
+# if NO_TLS_OFFSET == 0
+# define FORCED_DYNAMIC_TLS_OFFSET 1
+# elif NO_TLS_OFFSET == -1
+# define FORCED_DYNAMIC_TLS_OFFSET -2
+# else
+# error "FORCED_DYNAMIC_TLS_OFFSET is not defined"
+# endif
+# endif
/* For objects present at startup time: offset in the static TLS block. */
ptrdiff_t l_tls_offset;
/* Index of the module in the dtv array. */
Index: elf/dl-tls.c
===================================================================
--- elf/dl-tls.c.orig 2005-10-22 18:21:03.000000000 -0200
+++ elf/dl-tls.c 2005-10-22 18:21:07.000000000 -0200
@@ -417,7 +417,8 @@
not be the generation counter. */
maxgen = MAX (maxgen, listp->slotinfo[cnt].gen);
- if (map->l_tls_offset == NO_TLS_OFFSET)
+ if (map->l_tls_offset == NO_TLS_OFFSET
+ || map->l_tls_offset == FORCED_DYNAMIC_TLS_OFFSET)
{
/* For dynamically loaded modules we simply store
the value indicating deferred allocation. */
@@ -706,6 +707,7 @@
if (__builtin_expect (dtv[0].counter != GL(dl_tls_generation), 0))
the_map = _dl_update_slotinfo (GET_ADDR_MODULE);
+ retry:
p = dtv[GET_ADDR_MODULE].pointer.val;
if (__builtin_expect (p == TLS_DTV_UNALLOCATED, 0))
@@ -726,6 +728,28 @@
the_map = listp->slotinfo[idx].map;
}
+ /* Make sure that, if a dlopen running in parallel forces the
+ variable into static storage, we'll wait until the address in
+ the static TLS block is set up, and use that. If we're
+ undecided yet, make sure we make the decision holding the
+ lock as well. */
+ if (__builtin_expect (the_map->l_tls_offset
+ != FORCED_DYNAMIC_TLS_OFFSET, 0))
+ {
+ __rtld_lock_lock_recursive (GL(dl_load_lock));
+ if (__builtin_expect (the_map->l_tls_offset == NO_TLS_OFFSET, 1))
+ {
+ the_map->l_tls_offset = FORCED_DYNAMIC_TLS_OFFSET;
+ __rtld_lock_unlock_recursive (GL(dl_load_lock));
+ }
+ else
+ {
+ __rtld_lock_unlock_recursive (GL(dl_load_lock));
+ if (__builtin_expect (the_map->l_tls_offset
+ != FORCED_DYNAMIC_TLS_OFFSET, 1))
+ goto retry;
+ }
+ }
p = dtv[GET_ADDR_MODULE].pointer.val = allocate_and_init (the_map);
dtv[GET_ADDR_MODULE].pointer.is_static = false;
}
--
Alexandre Oliva http://www.lsd.ic.unicamp.br/~oliva/
Secretary for FSF Latin America http://www.fsfla.org/
Red Hat Compiler Engineer aoliva@{redhat.com, gcc.gnu.org}
Free Software Evangelist oliva@{lsd.ic.unicamp.br, gnu.org}