about summary refs log tree commit diff
path: root/csu
diff options
context:
space:
mode:
authorSzabolcs Nagy <szabolcs.nagy@arm.com>2020-07-07 10:49:11 +0100
committerSzabolcs Nagy <szabolcs.nagy@arm.com>2020-07-08 17:32:56 +0100
commit17796419b5fd694348cceb65c3f77601faae082c (patch)
tree077996aa8d9b0151191a812928de0b8d10225c2d /csu
parent0c7b002fac12dcb2f53ba83ee56bb3b5d2439447 (diff)
downloadglibc-17796419b5fd694348cceb65c3f77601faae082c.tar.gz
glibc-17796419b5fd694348cceb65c3f77601faae082c.tar.xz
glibc-17796419b5fd694348cceb65c3f77601faae082c.zip
rtld: Account static TLS surplus for audit modules
The new static TLS surplus size computation is

  surplus_tls = 192 * (nns-1) + 144 * nns + 512

where nns is controlled via the rtld.nns tunable. This commit
accounts audit modules too so nns = rtld.nns + audit modules.

rtld.nns should only include the namespaces required by the
application, namespaces for audit modules are accounted on top
of that so audit modules don't use up the static TLS that is
reserved for the application. This allows loading many audit
modules without tuning rtld.nns or using up static TLS, and it
fixes

FAIL: elf/tst-auditmany

Note that DL_NNS is currently a hard upper limit for nns, and
if rtld.nns + audit modules go over the limit that's a fatal
error. By default rtld.nns is 4 which allows 12 audit modules.

Counting the audit modules is based on existing audit string
parsing code, we cannot use GLRO(dl_naudit) before the modules
are actually loaded.
Diffstat (limited to 'csu')
-rw-r--r--csu/libc-tls.c4
1 files changed, 2 insertions, 2 deletions
diff --git a/csu/libc-tls.c b/csu/libc-tls.c
index e2603157e8..a67cc1dd4f 100644
--- a/csu/libc-tls.c
+++ b/csu/libc-tls.c
@@ -126,8 +126,8 @@ __libc_setup_tls (void)
 	  break;
 	}
 
-  /* Calculate the size of the static TLS surplus.  */
-  _dl_tls_static_surplus_init ();
+  /* Calculate the size of the static TLS surplus, with 0 auditors.  */
+  _dl_tls_static_surplus_init (0);
 
   /* We have to set up the TCB block which also (possibly) contains
      'errno'.  Therefore we avoid 'malloc' which might touch 'errno'.