lib/glibc
1
0
Fork 0
mirror of https://sourceware.org/git/glibc.git synced 2025-08-08 17:42:12 +03:00
Code Activity

rtld: Account static TLS surplus for audit modules

Browse Source 
The new static TLS surplus size computation is

  surplus_tls = 192 * (nns-1) + 144 * nns + 512

where nns is controlled via the rtld.nns tunable. This commit
accounts audit modules too so nns = rtld.nns + audit modules.

rtld.nns should only include the namespaces required by the
application, namespaces for audit modules are accounted on top
of that so audit modules don't use up the static TLS that is
reserved for the application. This allows loading many audit
modules without tuning rtld.nns or using up static TLS, and it
fixes

FAIL: elf/tst-auditmany

Note that DL_NNS is currently a hard upper limit for nns, and
if rtld.nns + audit modules go over the limit that's a fatal
error. By default rtld.nns is 4 which allows 12 audit modules.

Counting the audit modules is based on existing audit string
parsing code, we cannot use GLRO(dl_naudit) before the modules
are actually loaded.
This commit is contained in:
Szabolcs Nagy
2020-07-07 10:49:11 +01:00
parent 0c7b002fac
commit 17796419b5
5 changed files with 51 additions and 13 deletions
Download Patch File Download Diff File Expand all files Collapse all files

15
elf/dl-tls.c
View File

@@ -49,7 +49,10 @@
that affects the size of the static TLS and by default it's small enough
not to cause problems with existing applications. The limit is not
enforced or checked: it is the user's responsibility to increase rtld.nns
if more dlmopen namespaces are used. */
if more dlmopen namespaces are used.
Audit modules use their own namespaces, they are not included in rtld.nns,
but come on top when computing the number of namespaces. */
/* Size of initial-exec TLS in libc.so. */
#define LIBC_IE_TLS 192
@@ -60,8 +63,11 @@
/* Size of additional surplus TLS, placeholder for TLS optimizations. */
#define OPT_SURPLUS_TLS 512
/* Calculate the size of the static TLS surplus, when the given
number of audit modules are loaded. Must be called after the
number of audit modules is known and before static TLS allocation. */
void
_dl_tls_static_surplus_init (void)
_dl_tls_static_surplus_init (size_t naudit)
{
size_t nns;
@@ -73,6 +79,11 @@ _dl_tls_static_surplus_init (void)
#endif
if (nns > DL_NNS)
nns = DL_NNS;
if (DL_NNS - nns < naudit)
_dl_fatal_printf ("Failed loading %lu audit modules, %lu are supported.\n",
(unsigned long) naudit, (unsigned long) (DL_NNS - nns));
nns += naudit;
GLRO(dl_tls_static_surplus) = ((nns - 1) * LIBC_IE_TLS
+ nns * OTHER_IE_TLS
+ OPT_SURPLUS_TLS);