From owner-freebsd-current@FreeBSD.ORG Sun Jul 8 18:14:49 2007 Return-Path: X-Original-To: freebsd-current@FreeBSD.org Delivered-To: freebsd-current@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 3F1D216A41F; Sun, 8 Jul 2007 18:14:49 +0000 (UTC) (envelope-from scf@FreeBSD.org) Received: from mail.farley.org (farley.org [67.64.95.201]) by mx1.freebsd.org (Postfix) with ESMTP id D557613C45A; Sun, 8 Jul 2007 18:14:48 +0000 (UTC) (envelope-from scf@FreeBSD.org) Received: from thor.farley.org (thor.farley.org [192.168.1.5]) by mail.farley.org (8.14.1/8.14.1) with ESMTP id l68IFw2I000729; Sun, 8 Jul 2007 13:15:58 -0500 (CDT) (envelope-from scf@FreeBSD.org) Date: Sun, 8 Jul 2007 13:14:31 -0500 (CDT) From: "Sean C. Farley" To: Andrey Chernov In-Reply-To: <20070708171727.GA90490@nagual.pp.ru> Message-ID: <20070708125905.F14065@thor.farley.org> References: <20070704235630.GA42227@nagual.pp.ru> <20070704215154.O77978@thor.farley.org> <20070705115816.GA50506@nagual.pp.ru> <20070705105922.F98700@thor.farley.org> <20070707130859.GA96605@nagual.pp.ru> <20070707131359.GB96605@nagual.pp.ru> <20070707133102.C14065@thor.farley.org> <20070707191835.GA4368@nagual.pp.ru> <20070707205410.B14065@thor.farley.org> <20070708020940.GA80166@nagual.pp.ru> <20070708171727.GA90490@nagual.pp.ru> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed X-Spam-Status: No, score=-4.4 required=5.0 tests=ALL_TRUSTED,AWL,BAYES_00 autolearn=ham version=3.2.1 X-Spam-Checker-Version: SpamAssassin 3.2.1 (2007-05-02) on mail.farley.org Cc: freebsd-current , Robert Watson , Michal Mertl Subject: Re: Environment handling broken in /bin/sh with changes to {get,set,put}env() X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 08 Jul 2007 18:14:49 -0000 On Sun, 8 Jul 2007, Andrey Chernov wrote: > On Sun, Jul 08, 2007 at 06:09:40AM +0400, Andrey Chernov wrote: >> On Sat, Jul 07, 2007 at 09:03:59PM -0500, Sean C. Farley wrote: >>> >>> Surprisingly, keeping the pointers saved time even if calling >>> setenv(). >> >> Ok. It feels like time to commit comes :) > > Hmm. I just think a bit more and feel worry about that place in the > merge code: > > *equals = '\0'; > if (setenv(*env, equals + 1, 1) == -1) > return (-1); > *equals = '='; > because it modifies memory which may be treated like const one. > > Consider following scenario: getenv() is not thread-safe, but may be > called by thread-safe app if it is sure no other *env() calls in > progress. In the same time another thread of this app use environ > directly say for exec(), assuming it is const. In the middle of that > getenv() modifies environ by *equals = '\0'; SUSv3 states that that is not a safe assumption to make. Read the paragraph starting with "Conforming multi-threaded" from exec(3)[1]. It basically equates direct use of the environ variable as the same as any *env() call. > Could you please make setenv() wrapper like that to avoid modifying > merged environ in the middle? > __lsetenv(str, str_len, value) I could add this as a feature later. Unfortunately, unless I can lock the use of environ, an application could do this even with the 6-STABLE version of *env() functions. I have been pondering about thread-safety in a future release of these functions (8-CURRENT), but it may not be possible since environ is exposed. Sean 1. http://www.opengroup.org/onlinepubs/000095399/functions/exec.html -- scf@FreeBSD.org