ansaurus

Question

How to mmap the stack for the clone() system call on linux?

Answer 1

A:

mmap is more than just mapping a file into memory. In fact, some malloc implementations will use mmap for large allocations. If you read the fine man page you'll notice the MAP_ANONYMOUS flag, and you'll see that you need not need supply a file descriptor at all.

As for why the kernel can't just "find a bunch of free memory", well if you want someone to do that work for you, either use fork instead, or use pthreads.

Logan Capaldo 2009-07-04 23:43:54

My point is that it should be able to "find a bunch of free memory" because it apparently it *already can* "find a bunch of free memory." Fork creates a new process, which is different, and I know I could abstract any detail away by using a library. But I'm giving the kernel developers credit and assuming there's good reason for things to work this way, and I want to know why.

Joseph Garvin 2009-07-05 01:43:23

fork (exec really, since fork just copies everything) are the "find me a bunch of free memory" functions. `clone` is the "I want to control the details of my process creation" function. pthread_create is the "create me a thread, use the defaults" function. These are your choices. New threads need their own stack, and you can't use the traditional method of allocating stack (start at the top/bottom of the (user) address space and grown down/up towards the heap which is growing the other way), because there's only one top/bottom of the address space.

Logan Capaldo 2009-07-05 01:56:25

My point is that when the user forks a process, even though that process gets its own memory space, at some level the kernel has to be doing memory management of the *physical* address space that the process-specific address spaces map into. If it can do that, it should have the logic to be able to handle letting me clone but handle the stack for me. I might want to use clone for reasons that don't have anything to do with stacks for example (see the clone flags).

Joseph Garvin 2009-07-05 02:35:29

Mapping physical address space to virtual address space has nothing to do with allocating memory for the stack. I don't see why you think they're related?

Logan Capaldo 2009-07-05 03:06:27

@Logan: Sure it does ;) When I launch a new process, it needs a stack. Even though the process has its own virtual address space, its stack (and therefore the beginning of its real address space) has to correspond to somewhere in the physical address space. Multiple processes with variable size stacks and heaps means the kernel has to be doing this memory management already. Unless I'm forgetting something...

Joseph Garvin 2009-07-05 05:24:33

The kernel does memory management on a lower layer. You can tell it to use 100Mb as a stack. It won't use a single byte of that 100Mb(It's just virtual space after all) until you actually start using it, it'll fault in physical memory pages that's accessed. You'll use only as much memory of the stack that's needed and it'll "grow" within the size of the mmap.The bad thing ofcourse, is you need to set a fixed size stack that cannot grow. physically. Some OS's let you specify flags to mmap that allows it to grow automatically., but last I looked, which is quite some years ago, linux did not.

nos 2009-07-05 11:08:06

Joseph, noselasd is correct here. Mapping virtual to physical memory (and swap) happens independently of of whether or not the memory is intended to be used a stack or heap or something else. That part of the kernel doesn't need to be aware of that distinction.

Logan Capaldo 2009-07-05 13:25:11

If the kernel is smart enough to not use it unless it's used, why not always specify the maximum? (all of memory)

Joseph Garvin 2009-07-05 16:14:05

@noslead: Also, I assume the situation you're describing is if you pass a pointer produced by mmap as the stack.

Joseph Garvin 2009-07-05 16:15:38

@joseph, cause the virtual memory space if finite. There's e.g. shared libraries, they're mmapped into the virtual memory space. There's the executable code itself, there's the data space(global variables, malloced memory) - a somewhat special map that can be extended with the sbrk system call.And there's mmapped files that maybe the application wants to map into memory too. These mmaps cannot overlap, and they need to have different protections (read/write/exec).. Sure you could specify all available memory, but that would clash with the space needed for shared libs, and dynamic memory

nos 2009-07-05 16:56:54

http://duartes.org/gustavo/blog/post/anatomy-of-a-program-in-memory probably a better overview

nos 2009-07-05 17:01:48

Answer 2

+2 A:

You'd want the MAP_ANONYMOUS flag for mmap. And the MAP_GROWSDOWN since you want to make use it as a stack.

Something like:

void *stack = mmap(NULL,initial_stacksize,PROT_WRITE|PROT_READ,MAP_PRIVATE|MAP_GROWSDOWN|MAP_ANONYMOUS,-1,0);

See the mmap man page for more info. And remember, clone is a low level concept, that you're not meant to use unless you really need what it offers. And it offers a lot of control - like setting it's own stack - just in case you want to do some trickering(like having the stack accessible in all the related processes). Unless you have very good reason to use clone, stick with fork or pthreads.

nos 2009-07-04 23:46:41

How does this get you a dynamically growing stack though? Don't you still have to specify a length? Or do implementations like pthreads pass a gigantic length and rely on copy on write?

Joseph Garvin 2009-07-05 00:37:04

Yes, they rely on copy on write. I'm not sure how big the pthread stack size is now, it used to be 2Mb by default - you can alter it with the ulimit -s command.

nos 2009-07-05 10:58:23

Ok, testing with pthread_attr_getstacksize suggests the default stack size is 10485760 bytes nowadays, and

nos 2009-07-05 11:17:42

@nos: I think your comment was cut off after "and".

Joseph Garvin 2010-05-03 14:12:12

Answer 3

+1 A:

Note that the clone system call doesn't take an argument for the stack location. It actually works just like fork. It's just the glibc wrapper which takes that argument.

agl 2009-07-06 21:18:01

Are you sure? Every signature I can find online for it includes a child stack. If the system call doesn't need it why does glibc?

Joseph Garvin 2009-07-07 13:47:52

Answer 4

A:

Joseph, in answer to your last question:

When a user creates a "normal" new process, that's done by fork(). In this case, the kernel doesn't have to worry about creating a new stack at all, because the new process is a complete duplicate of the old one, right down to the stack.

If the user replaces the currently running process using exec(), then the kernel does need to create a new stack - but in this case that's easy, because it gets to start from a blank slate. exec() wipes out the memory space of the process and reinitialises it, so the kernel gets to say "after exec(), the stack always lives HERE".

If, however, we use clone(), then we can say that the new process will share a memory space with the old process (CLONE_VM). In this situation, the kernel can't leave the stack as it was in the calling process (like fork() does), because then our two processes would be stomping on each other's stack. The kernel also can't just put it in a default location (like exec()) does, because that location is already taken in this memory space. The only solution is to allow the calling process to find a place for it, which is what it does.

caf 2009-07-09 15:02:01

Answer 5

A:

Here is the code which mmaps a stack region & instructs the clone system call to use this region as the stack.

#include sys/mman.h>
#include stdio.h>
#include string.h>
#include sched.h>
int execute_clone(void *arg)

{

        printf("\nclone function Executed....Sleeping\n");
        fflush(stdout);
        return 0;
}

int main()

{
        void *ptr;

        int rc;
        void *start =(void *) 0x0000010000000000;
        size_t len = 0x0000000000200000;

        ptr = mmap(start, len, PROT_WRITE,    
                      MAP_ANONYMOUS|MAP_PRIVATE|MAP_FIXED|MAP_GROWSDOWN, 0, 0);
        if(ptr == (void *)-1) {
                perror("\nmmap failed");
        }

        rc = clone(&execute_clone, ptr + len, CLONE_VM, NULL);

        if(rc <= 0) {
                perror("\nClone() failed");
        }

}

Venkatram Tummala 2010-04-21 23:23:16

ansaurus

tags:

views:

answers:

How to mmap the stack for the clone() system call on linux?

related questions