[pypy-commit] cffi default: Document the SELinux issue with callbacks
arigo
noreply at buildbot.pypy.org
Sat Nov 14 13:45:51 EST 2015
Author: Armin Rigo <arigo at tunes.org>
Branch:
Changeset: r2394:56d35f3de7ca
Date: 2015-11-14 19:44 +0100
http://bitbucket.org/cffi/cffi/changeset/56d35f3de7ca/
Log: Document the SELinux issue with callbacks
diff --git a/doc/source/using.rst b/doc/source/using.rst
--- a/doc/source/using.rst
+++ b/doc/source/using.rst
@@ -514,6 +514,16 @@
discouraged: using this a style, we are more likely to forget the
callback object too early, when it is still in use.
+.. warning::
+
+ **SELinux** requires that the setting ``deny_execmem`` is left to
+ its default setting of ``off`` to use callbacks. A fix in cffi was
+ attempted (see the ``ffi_closure_alloc`` branch), but this branch is
+ not merged because it creates potential memory corruption with
+ ``fork()``. For more information, `see here.`__
+
+.. __: https://bugzilla.redhat.com/show_bug.cgi?id=1249685
+
*New in version 1.2:* If you want to be sure to catch all exceptions, use
``ffi.callback(..., onerror=func)``. If an exception occurs and
``onerror`` is specified, then ``onerror(exception, exc_value,
More information about the pypy-commit
mailing list