This is the mail archive of the java@gcc.gnu.org mailing list for the Java project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: RFC: Too many race conditions.

From: David Daney <ddaney at avtrex dot com>
To: Andrew Haley <aph-gcc at littlepinkcloud dot COM>
Cc: Jeroen Frijters <jeroen at sumatra dot nl>, "java at gcc dot gnu dot org" <java at gcc dot gnu dot org>
Date: Tue, 22 May 2007 08:17:08 -0700
Subject: Re: RFC: Too many race conditions.
References: <464F3346.6040700@avtrex.com> <18000.10787.898597.868050@zebedee.pink> <4651086B.9060508@avtrex.com> <18001.26898.947011.132571@zebedee.pink> <18001.30455.919123.455538@zebedee.pink> <4651B42D.2040906@avtrex.com> <B866D2B6BBAAAD44B1D109ED50EE131E2A65330E4D@jambi.sumatrasoftware.com> <46528013.6010701@avtrex.com> <18002.43518.607028.692421@zebedee.pink>

Andrew Haley wrote:

David Daney writes: > > The semantics of files and pipes change if you don't close them when the > application asks for them to be closed. In a pipe for example the read > side would block waiting for the EOF. For a file, the filesystem > containing the file could not be unmounted. Waiting for a potentially > blocking I/O operation to finish before closing could cause deadlock.

Is it true that in such cases the current code would cause incorrect operation? That all we would be doing is, at worst, exchanging one sort of incorrect behaviour for another? > Also counting references requires obtaining some type of mutual > exclusion lock twice for each I/O operation.

Atomic counters are easy enough to do.

Atomic counters would work for accept calls where we interrupt them using shutdown. Where they fail is on something like a FileInputStream attached to a device that can block (i.e. not a file but some character driver), or a pipe. In this case you cannot defer the close because the read will block. We really want the close to interrupt the read, but it cannot if it is deferred. I suppose one could argue that FileInputStream's semantics are only guaranteed for files where they will never block, but I don't like it.

I think my tricky dup2 trick will work in all cases, so perhaps I will work on a patch that does that. I think using a combination of dup2 to close the resource reuse race while not changing the semantics of close plus atomic counters to clean up the extra dummy file descriptors created might be the winning solution.

David Daney

David Daney

References:
- RFC: Too many race conditions.
  - From: David Daney
- Re: RFC: Too many race conditions.
  - From: Andrew Haley
- Re: RFC: Too many race conditions.
  - From: David Daney
- Re: RFC: Too many race conditions.
  - From: Andrew Haley
- Re: RFC: Too many race conditions.
  - From: Andrew Haley
- Re: RFC: Too many race conditions.
  - From: David Daney
- RE: RFC: Too many race conditions.
  - From: Jeroen Frijters
- Re: RFC: Too many race conditions.
  - From: David Daney
- Re: RFC: Too many race conditions.
  - From: Andrew Haley

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]