logo

oasis-root

Compiled tree of Oasis Linux based on own branch at <https://hacktivis.me/git/oasis/> git clone https://anongit.hacktivis.me/git/oasis-root.git

posix_spawn.3p (30054B)

    

  1. '\" et
  2. .TH POSIX_SPAWN "3P" 2017 "IEEE/The Open Group" "POSIX Programmer's Manual"
  3. .\"
  4. .SH PROLOG
  5. This manual page is part of the POSIX Programmer's Manual.
  6. The Linux implementation of this interface may differ (consult
  7. the corresponding Linux manual page for details of Linux behavior),
  8. or the interface may not be implemented on Linux.
  9. .\"
  10. .SH NAME
  11. posix_spawn,
  12. posix_spawnp
  13. \(em spawn a process
  14. (\fBADVANCED REALTIME\fP)
  15. .SH SYNOPSIS
  16. .LP
  17. .nf
  18. #include <spawn.h>
  19. .P
  20. int posix_spawn(pid_t *restrict \fIpid\fP, const char *restrict \fIpath\fP,
  21.     const posix_spawn_file_actions_t *\fIfile_actions\fP,
  22.     const posix_spawnattr_t *restrict \fIattrp\fP,
  23.     char *const \fIargv\fP[restrict], char *const \fIenvp\fP[restrict]);
  24. int posix_spawnp(pid_t *restrict \fIpid\fP, const char *restrict \fIfile\fP,
  25.     const posix_spawn_file_actions_t *\fIfile_actions\fP,
  26.     const posix_spawnattr_t *restrict \fIattrp\fP,
  27.     char *const \fIargv\fP[restrict], char *const \fIenvp\fP[restrict]);
  28. .fi
  29. .SH DESCRIPTION
  30. The
  31. \fIposix_spawn\fR()
  32. and
  33. \fIposix_spawnp\fR()
  34. functions shall create a new process (child process) from the specified
  35. process image. The new process image shall be constructed from a regular
  36. executable file called the new process image file.
  37. .P
  38. When a C program is executed as the result of this call, it shall be
  39. entered as a C-language function call as follows:
  40. .sp
  41. .RS 4
  42. .nf
  44. int main(int \fIargc\fP, char *\fIargv\fP[]);
  45. .fi
  46. .P
  47. .RE
  48. .P
  49. where
  50. .IR argc
  51. is the argument count and
  52. .IR argv
  53. is an array of character pointers to the arguments themselves. In
  54. addition, the following variable:
  55. .sp
  56. .RS 4
  57. .nf
  59. extern char **environ;
  60. .fi
  61. .P
  62. .RE
  63. .P
  64. shall be initialized as a pointer to an array of character pointers to
  65. the environment strings.
  66. .P
  67. The argument
  68. .IR argv
  69. is an array of character pointers to null-terminated strings. The last
  70. member of this array shall be a null pointer and is not
  71. counted in
  72. .IR argc .
  73. These strings constitute the argument list available to the new process
  74. image. The value in
  75. .IR argv [0]
  76. should point to a filename string that is associated with the process
  77. image being started by the
  78. \fIposix_spawn\fR()
  79. or
  80. \fIposix_spawnp\fR()
  81. function.
  82. .P
  83. The argument
  84. .IR envp
  85. is an array of character pointers to null-terminated strings. These
  86. strings constitute the environment for the new process image. The
  87. environment array is terminated by a null pointer.
  88. .P
  89. The number of bytes available for the combined argument
  90. and environment lists of the child process is
  91. {ARG_MAX}.
  92. The implementation shall specify in the system documentation (see the Base Definitions volume of POSIX.1\(hy2017,
  93. .IR "Chapter 2" ", " "Conformance")
  94. whether any list overhead, such as length words, null
  95. terminators, pointers, or alignment bytes, is included in this total.
  96. .P
  97. The
  98. .IR path
  99. argument to
  100. \fIposix_spawn\fR()
  101. is a pathname that identifies the new process image file to execute.
  102. .P
  103. The
  104. .IR file
  105. parameter to
  106. \fIposix_spawnp\fR()
  107. shall be used to construct a pathname that identifies the new process
  108. image file. If the
  109. .IR file
  110. parameter contains a
  111. <slash>
  112. character, the
  113. .IR file
  114. parameter shall be used as the pathname for the new process image
  115. file. Otherwise, the path prefix for this file shall be obtained by a
  116. search of the directories passed as the environment variable
  117. .IR PATH
  118. (see the Base Definitions volume of POSIX.1\(hy2017,
  119. .IR "Chapter 8" ", " "Environment Variables").
  120. If this environment variable is not defined, the results of the search
  121. are implementation-defined.
  122. .P
  123. If
  124. .IR file_actions
  125. is a null pointer, then file descriptors open in the calling process
  126. shall remain open in the child process, except for those whose
  127. close-on-\c
  128. .IR exec
  129. flag FD_CLOEXEC is set (see
  130. .IR "\fIfcntl\fR\^(\|)").
  131. For those file descriptors that remain open, the child process shall
  132. not inherit any file locks, but all remaining attributes of the
  133. corresponding open file descriptions (see
  134. .IR "\fIfcntl\fR\^(\|)"),
  135. shall remain unchanged.
  136. .P
  137. If
  138. .IR file_actions
  139. is not NULL, then the file descriptors open in the child process shall
  140. be those open in the calling process as modified by the spawn file
  141. actions object pointed to by
  142. .IR file_actions
  143. and the FD_CLOEXEC flag of each remaining open file descriptor after
  144. the spawn file actions have been processed. The effective order of
  145. processing the spawn file actions shall be:
  146. .IP " 1." 4
  147. The set of open file descriptors for the child process shall initially
  148. be the same set as is open for the calling process. The child process
  149. shall not inherit any file locks, but all remaining attributes of the
  150. corresponding open file descriptions (see
  151. .IR "\fIfcntl\fR\^(\|)"),
  152. shall remain unchanged.
  153. .IP " 2." 4
  154. The signal mask, signal default actions, and the effective user and
  155. group IDs for the child process shall be changed as specified in the
  156. attributes object referenced by
  157. .IR attrp .
  158. .IP " 3." 4
  159. The file actions specified by the spawn file actions object shall be
  160. performed in the order in which they were added to the spawn file
  161. actions object.
  162. .IP " 4." 4
  163. Any file descriptor that has its FD_CLOEXEC flag set (see
  164. .IR "\fIfcntl\fR\^(\|)")
  165. shall be closed.
  166. .P
  167. If file descriptor 0, 1, or 2 would otherwise be closed in the new
  168. process image created by
  169. \fIposix_spawn\fR()
  170. or
  171. \fIposix_spawnp\fR(),
  172. implementations may open an unspecified file for the file descriptor in
  173. the new process image. If a standard utility or a conforming application
  174. is executed with file descriptor 0 not open for reading or with file
  175. descriptor 1 or 2 not open for writing, the environment in which the
  176. utility or application is executed shall be deemed non-conforming, and
  177. consequently the utility or application might not behave as described
  178. in this standard.
  179. .P
  180. The
  181. .BR posix_spawnattr_t
  182. spawn attributes object type is defined in
  183. .IR <spawn.h> .
  184. It shall contain at least the attributes defined below.
  185. .P
  186. If the POSIX_SPAWN_SETPGROUP flag is set in the
  187. .IR spawn-flags
  188. attribute
  189. of the object referenced by
  190. .IR attrp ,
  191. and the
  192. .IR spawn-pgroup
  193. attribute of the same object is non-zero, then the child's process
  194. group shall be as specified in the
  195. .IR spawn-pgroup
  196. attribute of the object referenced by
  197. .IR attrp .
  198. .P
  199. As a special case, if the POSIX_SPAWN_SETPGROUP flag is set in the
  200. .IR spawn-flags
  201. attribute of the object referenced by
  202. .IR attrp ,
  203. and the
  204. .IR spawn-pgroup
  205. attribute of the same object is set to zero, then the child shall be in
  206. a new process group with a process group ID equal to its process ID.
  207. .P
  208. If the POSIX_SPAWN_SETPGROUP flag is not set in the
  209. .IR spawn-flags
  210. attribute of the object referenced by
  211. .IR attrp ,
  212. the new child process shall inherit the parent's process group.
  213. .P
  214. If the POSIX_SPAWN_SETSCHEDPARAM flag is set in the
  215. .IR spawn-flags
  216. attribute of the object referenced by
  217. .IR attrp ,
  218. but POSIX_SPAWN_SETSCHEDULER is not set, the new process image shall
  219. initially have the scheduling policy of the calling process with the
  220. scheduling parameters specified in the
  221. .IR spawn-schedparam
  222. attribute of the object referenced by
  223. .IR attrp .
  224. .P
  225. If the POSIX_SPAWN_SETSCHEDULER flag is set in the
  226. .IR spawn-flags
  227. attribute of the object referenced by
  228. .IR attrp
  229. (regardless of the setting of the POSIX_SPAWN_SETSCHEDPARAM flag), the
  230. new process image shall initially have the scheduling policy specified
  231. in the
  232. .IR spawn-schedpolicy
  233. attribute of the object referenced by
  234. .IR attrp
  235. and the scheduling parameters specified in the
  236. .IR spawn-schedparam
  237. attribute of the same object.
  238. .P
  239. The POSIX_SPAWN_RESETIDS flag in the
  240. .IR spawn-flags
  241. attribute of the object referenced by
  242. .IR attrp
  243. governs the effective user ID of the child process. If this flag is
  244. not set, the child process shall inherit the effective user ID of the
  245. parent process. If this flag is set, the effective user ID of the child
  246. process shall be reset to the parent's real user ID. In either case,
  247. if the set-user-ID mode bit of the new process image file is set, the
  248. effective user ID of the child process shall become that file's owner
  249. ID before the new process image begins execution.
  250. .P
  251. The POSIX_SPAWN_RESETIDS flag in the
  252. .IR spawn-flags
  253. attribute of the object referenced by
  254. .IR attrp
  255. also governs the effective group ID of the child process. If this flag
  256. is not set, the child process shall inherit the effective group ID of the
  257. parent process. If this flag is set, the effective group ID of the child
  258. process shall be reset to the parent's real group ID. In either case,
  259. if the set-group-ID mode bit of the new process image file is set, the
  260. effective group ID of the child process shall become that file's group
  261. ID before the new process image begins execution.
  262. .P
  263. If the POSIX_SPAWN_SETSIGMASK flag is set in the
  264. .IR spawn-flags
  265. attribute of the object referenced by
  266. .IR attrp ,
  267. the child process shall initially have the signal mask specified in the
  268. .IR spawn-sigmask
  269. attribute of the object referenced by
  270. .IR attrp .
  271. .P
  272. If the POSIX_SPAWN_SETSIGDEF flag is set in the
  273. .IR spawn-flags
  274. attribute of the object referenced by
  275. .IR attrp ,
  276. the signals specified in the
  277. .IR spawn-sigdefault
  278. attribute of the same object shall be set to their default actions in
  279. the child process. Signals set to the default action in the parent
  280. process shall be set to the default action in the child process.
  281. .P
  282. Signals set to be caught by the calling process shall be set to the
  283. default action in the child process.
  284. .P
  285. Except for SIGCHLD, signals set to be ignored by the calling process
  286. image shall be set to be ignored by the child process, unless otherwise
  287. specified by the POSIX_SPAWN_SETSIGDEF flag being set in the
  288. .IR spawn-flags
  289. attribute of the object referenced by
  290. .IR attrp
  291. and the signals being indicated in the
  292. .IR spawn-sigdefault
  293. attribute of the object referenced by
  294. .IR attrp .
  295. .P
  296. If the SIGCHLD signal is set to be ignored by the calling process, it
  297. is unspecified whether the SIGCHLD signal is set to be ignored or to
  298. the default action in the child process, unless otherwise specified by
  299. the POSIX_SPAWN_SETSIGDEF flag being set in the
  300. .IR spawn_flags
  301. attribute of the object referenced by
  302. .IR attrp
  303. and the SIGCHLD signal being indicated in the
  304. .IR spawn_sigdefault
  305. attribute of the object referenced by
  306. .IR attrp .
  307. .P
  308. If the value of the
  309. .IR attrp
  310. pointer is NULL, then the default values are used.
  311. .P
  312. All process attributes, other than those influenced by the attributes
  313. set in the object referenced by
  314. .IR attrp
  315. as specified above or by the file descriptor manipulations specified in
  316. .IR file_actions ,
  317. shall appear in the new process image as though
  318. \fIfork\fR()
  319. had been called to create a child process and then a member of the
  320. .IR exec
  321. family of functions had been called by the child process to execute the
  322. new process image.
  323. .P
  324. It is implementation-defined whether the fork handlers are run when
  325. \fIposix_spawn\fR()
  326. or
  327. \fIposix_spawnp\fR()
  328. is called.
  329. .SH "RETURN VALUE"
  330. Upon successful completion,
  331. \fIposix_spawn\fR()
  332. and
  333. \fIposix_spawnp\fR()
  334. shall return the process ID of the child process to the parent process,
  335. in the variable pointed to by a non-NULL
  336. .IR pid
  337. argument, and shall return zero as the function return value.
  338. Otherwise, no child process shall be created, the value stored into the
  339. variable pointed to by a non-NULL
  340. .IR pid
  341. is unspecified, and an error number shall be returned as the function
  342. return value to indicate the error. If the
  343. .IR pid
  344. argument is a null pointer, the process ID of the child is not returned
  345. to the caller.
  346. .SH ERRORS
  347. These functions may fail if:
  348. .TP
  349. .BR EINVAL
  350. The value specified by
  351. .IR file_actions
  352. or
  353. .IR attrp
  354. is invalid.
  355. .P
  356. If this error occurs after the calling process successfully returns
  357. from the
  358. \fIposix_spawn\fR()
  359. or
  360. \fIposix_spawnp\fR()
  361. function, the child process may exit with exit status 127.
  362. .P
  363. If
  364. \fIposix_spawn\fR()
  365. or
  366. \fIposix_spawnp\fR()
  367. fail for any of the reasons that would cause
  368. \fIfork\fR()
  369. or one of the
  370. .IR exec
  371. family of functions to fail, an error value shall be returned as
  372. described by
  373. \fIfork\fR()
  374. and
  375. .IR exec ,
  376. respectively (or, if the error occurs after the calling process
  377. successfully returns, the child process shall exit with exit status 127).
  378. .P
  379. If POSIX_SPAWN_SETPGROUP is set in the
  380. .IR spawn-flags
  381. attribute of the object referenced by
  382. .IR attrp ,
  383. and
  384. \fIposix_spawn\fR()
  385. or
  386. \fIposix_spawnp\fR()
  387. fails while changing the child's process group, an error value shall be
  388. returned as described by
  389. \fIsetpgid\fR()
  390. (or, if the error occurs after the calling process successfully
  391. returns, the child process shall exit with exit status 127).
  392. .P
  393. If POSIX_SPAWN_SETSCHEDPARAM is set and POSIX_SPAWN_SETSCHEDULER is not
  394. set in the
  395. .IR spawn-flags
  396. attribute of the object referenced by
  397. .IR attrp ,
  398. then if
  399. \fIposix_spawn\fR()
  400. or
  401. \fIposix_spawnp\fR()
  402. fails for any of the reasons that would cause
  403. \fIsched_setparam\fR()
  404. to fail, an error value shall be returned as described by
  405. \fIsched_setparam\fR()
  406. (or, if the error occurs after the calling process successfully
  407. returns, the child process shall exit with exit status 127).
  408. .P
  409. If POSIX_SPAWN_SETSCHEDULER is set in the
  410. .IR spawn-flags
  411. attribute of the object referenced by
  412. .IR attrp ,
  413. and if
  414. \fIposix_spawn\fR()
  415. or
  416. \fIposix_spawnp\fR()
  417. fails for any of the reasons that would cause
  418. \fIsched_setscheduler\fR()
  419. to fail, an error value shall be returned as described by
  420. \fIsched_setscheduler\fR()
  421. (or, if the error occurs after the calling process successfully
  422. returns, the child process shall exit with exit status 127).
  423. .P
  424. If the
  425. .IR file_actions
  426. argument is not NULL, and specifies any
  427. .IR close ,
  428. .IR dup2 ,
  429. or
  430. .IR open
  431. actions to be performed, and if
  432. \fIposix_spawn\fR()
  433. or
  434. \fIposix_spawnp\fR()
  435. fails for any of the reasons that would cause
  436. \fIclose\fR(),
  437. \fIdup2\fR(),
  438. or
  439. \fIopen\fR()
  440. to fail, an error value shall be returned as described by
  441. \fIclose\fR(),
  442. \fIdup2\fR(),
  443. and
  444. \fIopen\fR(),
  445. respectively (or, if the error occurs after the calling process
  446. successfully returns, the child process shall exit with exit status
  447. 127). An open file action may, by itself, result in any of the errors
  448. described by
  449. \fIclose\fR()
  450. or
  451. \fIdup2\fR(),
  452. in addition to those described by
  453. \fIopen\fR().
  454. .LP
  455. .IR "The following sections are informative."
  456. .SH EXAMPLES
  457. None.
  458. .SH "APPLICATION USAGE"
  459. These functions are part of the Spawn option and need not be
  460. provided on all implementations.
  461. .P
  462. See also the APPLICATION USAGE section for
  463. .IR "\fIexec\fR\^".
  464. .SH RATIONALE
  465. The
  466. \fIposix_spawn\fR()
  467. function and its close relation
  468. \fIposix_spawnp\fR()
  469. have been introduced to overcome the following perceived difficulties
  470. with
  471. \fIfork\fR():
  472. the
  473. \fIfork\fR()
  474. function is difficult or impossible to implement without swapping or
  475. dynamic address translation.
  476. .IP " *" 4
  477. Swapping is generally too slow for a realtime environment.
  478. .IP " *" 4
  479. Dynamic address translation is not available everywhere that POSIX
  480. might be useful.
  481. .IP " *" 4
  482. Processes are too useful to simply option out of POSIX whenever it must
  483. run without address translation or other MMU services.
  484. .P
  485. Thus, POSIX needs process creation and file execution primitives that
  486. can be efficiently implemented without address translation or other MMU
  487. services.
  488. .P
  489. The
  490. \fIposix_spawn\fR()
  491. function is implementable as a library routine, but both
  492. \fIposix_spawn\fR()
  493. and
  494. \fIposix_spawnp\fR()
  495. are designed as kernel operations. Also, although they may be an
  496. efficient replacement for many
  497. \fIfork\fR()/\c
  498. .IR exec
  499. pairs, their goal is to provide useful process creation primitives for
  500. systems that have difficulty with
  501. \fIfork\fR(),
  502. not to provide drop-in replacements for
  503. \fIfork\fR()/\c
  504. .IR exec .
  505. .P
  506. This view of the role of
  507. \fIposix_spawn\fR()
  508. and
  509. \fIposix_spawnp\fR()
  510. influenced the design of their API. It does not attempt to provide the
  511. full functionality of
  512. \fIfork\fR()/\c
  513. .IR exec
  514. in which arbitrary user-specified operations of any sort are permitted
  515. between the creation of the child process and the execution of the new
  516. process image; any attempt to reach that level would need to provide a
  517. programming language as parameters. Instead,
  518. \fIposix_spawn\fR()
  519. and
  520. \fIposix_spawnp\fR()
  521. are process creation primitives like the
  522. .IR Start_Process
  523. and
  524. .IR Start_Process_Search
  525. Ada language bindings package
  526. .IR POSIX_Process_Primitives
  527. and also like those in many operating systems that are not UNIX
  528. systems, but with some POSIX-specific additions.
  529. .P
  530. To achieve its coverage goals,
  531. \fIposix_spawn\fR()
  532. and
  533. \fIposix_spawnp\fR()
  534. have control of six types of inheritance: file descriptors, process
  535. group ID, user and group ID, signal mask, scheduling, and whether each
  536. signal ignored in the parent will remain ignored in the child, or be
  537. reset to its default action in the child.
  538. .P
  539. Control of file descriptors is required to allow an independently
  540. written child process image to access data streams opened by and even
  541. generated or read by the parent process without being specifically
  542. coded to know which parent files and file descriptors are to be used.
  543. Control of the process group ID is required to control how the
  544. job control of the child process relates to that of the parent.
  545. .P
  546. Control of the signal mask and signal defaulting is sufficient to
  547. support the implementation of
  548. \fIsystem\fR().
  549. Although support for
  550. \fIsystem\fR()
  551. is not explicitly one of the goals for
  552. \fIposix_spawn\fR()
  553. and
  554. \fIposix_spawnp\fR(),
  555. it is covered under the ``at least 50%'' coverage goal.
  556. .P
  557. The intention is that the normal file descriptor inheritance across
  558. \fIfork\fR(),
  559. the subsequent effect of the specified spawn file actions, and the
  560. normal file descriptor inheritance across one of the
  561. .IR exec
  562. family of functions should fully specify open file inheritance. The
  563. implementation need make no decisions regarding the set of open file
  564. descriptors when the child process image begins execution, those
  565. decisions having already been made by the caller and expressed as the
  566. set of open file descriptors and their FD_CLOEXEC flags at the time of
  567. the call and the spawn file actions object specified in the call. We
  568. have been assured that in cases where the POSIX
  569. .IR Start_Process
  570. Ada primitives have been implemented in a library, this method of
  571. controlling file descriptor inheritance may be implemented very easily.
  572. .P
  573. We can identify several problems with
  574. \fIposix_spawn\fR()
  575. and
  576. \fIposix_spawnp\fR(),
  577. but there does not appear to be a solution that introduces fewer
  578. problems. Environment modification for child process attributes not
  579. specifiable via the
  580. .IR attrp
  581. or
  582. .IR file_actions
  583. arguments must be done in the parent process, and since the parent
  584. generally wants to save its context, it is more costly than similar
  585. functionality with
  586. \fIfork\fR()/\c
  587. .IR exec .
  588. It is also complicated to modify the environment of a multi-threaded
  589. process temporarily, since all threads must agree when it is safe for
  590. the environment to be changed. However, this cost is only borne by
  591. those invocations of
  592. \fIposix_spawn\fR()
  593. and
  594. \fIposix_spawnp\fR()
  595. that use the additional functionality. Since extensive modifications
  596. are not the usual case, and are particularly unlikely in time-critical
  597. code, keeping much of the environment control out of
  598. \fIposix_spawn\fR()
  599. and
  600. \fIposix_spawnp\fR()
  601. is appropriate design.
  602. .P
  603. The
  604. \fIposix_spawn\fR()
  605. and
  606. \fIposix_spawnp\fR()
  607. functions do not have all the power of
  608. \fIfork\fR()/\c
  609. .IR exec .
  610. This is to be expected. The
  611. \fIfork\fR()
  612. function is a wonderfully powerful operation. We do not expect to
  613. duplicate its functionality in a simple, fast function with no special
  614. hardware requirements. It is worth noting that
  615. \fIposix_spawn\fR()
  616. and
  617. \fIposix_spawnp\fR()
  618. are very similar to the process creation operations on many operating
  619. systems that are not UNIX systems.
  620. .SS "Requirements"
  621. .P
  622. The requirements for
  623. \fIposix_spawn\fR()
  624. and
  625. \fIposix_spawnp\fR()
  626. are:
  627. .IP " *" 4
  628. They must be implementable without an MMU or unusual hardware.
  629. .IP " *" 4
  630. They must be compatible with existing POSIX standards.
  631. .P
  632. Additional goals are:
  633. .IP " *" 4
  634. They should be efficiently implementable.
  635. .IP " *" 4
  636. They should be able to replace at least 50% of typical executions of
  637. \fIfork\fR().
  638. .IP " *" 4
  639. A system with
  640. \fIposix_spawn\fR()
  641. and
  642. \fIposix_spawnp\fR()
  643. and without
  644. \fIfork\fR()
  645. should be useful, at least for realtime applications.
  646. .IP " *" 4
  647. A system with
  648. \fIfork\fR()
  649. and the
  650. .IR exec
  651. family should be able to implement
  652. \fIposix_spawn\fR()
  653. and
  654. \fIposix_spawnp\fR()
  655. as library routines.
  656. .SS "Two-Syntax"
  657. .P
  658. POSIX
  659. .IR exec
  660. has several calling sequences with approximately the same
  661. functionality. These appear to be required for compatibility with
  662. existing practice. Since the existing practice for the
  663. .IR posix_spawn* (\|)
  664. functions is otherwise substantially unlike POSIX, we feel that
  665. simplicity outweighs compatibility. There are, therefore, only two
  666. names for the
  667. .IR posix_spawn* (\|)
  668. functions.
  669. .P
  670. The parameter list does not differ between
  671. \fIposix_spawn\fR()
  672. and
  673. \fIposix_spawnp\fR();
  674. \fIposix_spawnp\fR()
  675. interprets the second parameter more elaborately than
  676. \fIposix_spawn\fR().
  677. .SS "Compatibility with POSIX.5 (Ada)"
  678. .P
  679. The
  680. .IR Start_Process
  681. and
  682. .IR Start_Process_Search
  683. procedures from the
  684. .IR POSIX_Process_Primitives
  685. package from the Ada language binding to POSIX.1 encapsulate
  686. \fIfork\fR()
  687. and
  688. .IR exec
  689. functionality in a manner similar to that of
  690. \fIposix_spawn\fR()
  691. and
  692. \fIposix_spawnp\fR().
  693. Originally, in keeping with our simplicity goal, the standard
  694. developers had limited the capabilities of
  695. \fIposix_spawn\fR()
  696. and
  697. \fIposix_spawnp\fR()
  698. to a subset of the capabilities of
  699. .IR Start_Process
  700. and
  701. .IR Start_Process_Search ;
  702. certain non-default capabilities were not supported. However, based on
  703. suggestions by the ballot group to improve file descriptor mapping or
  704. drop it, and on the advice of an Ada Language Bindings working group
  705. member, the standard developers decided that
  706. \fIposix_spawn\fR()
  707. and
  708. \fIposix_spawnp\fR()
  709. should be sufficiently powerful to implement
  710. .IR Start_Process
  711. and
  712. .IR Start_Process_Search .
  713. The rationale is that if the Ada language binding to such a primitive
  714. had already been approved as an IEEE standard, there can be little
  715. justification for not approving the functionally-equivalent parts of a
  716. C binding. The only three capabilities provided by
  717. \fIposix_spawn\fR()
  718. and
  719. \fIposix_spawnp\fR()
  720. that are not provided by
  721. .IR Start_Process
  722. and
  723. .IR Start_Process_Search
  724. are optionally specifying the child's process group ID, the set of
  725. signals to be reset to default signal handling in the child process,
  726. and the child's scheduling policy and parameters.
  727. .P
  728. For the Ada language binding for
  729. .IR Start_Process
  730. to be implemented with
  731. \fIposix_spawn\fR(),
  732. that binding would need to explicitly pass an empty signal mask and the
  733. parent's environment to
  734. \fIposix_spawn\fR()
  735. whenever the caller of
  736. .IR Start_Process
  737. allowed these arguments to default, since
  738. \fIposix_spawn\fR()
  739. does not provide such defaults. The ability of
  740. .IR Start_Process
  741. to mask user-specified signals during its execution is functionally
  742. unique to the Ada language binding and must be dealt with in the
  743. binding separately from the call to
  744. \fIposix_spawn\fR().
  745. .SS "Process Group"
  746. .P
  747. The process group inheritance field can be used to join the child
  748. process with an existing process group. By assigning a value of zero to
  749. the
  750. .IR spawn-pgroup
  751. attribute of the object referenced by
  752. .IR attrp ,
  753. the
  754. \fIsetpgid\fR()
  755. mechanism will place the child process in a new process group.
  756. .SS "Threads"
  757. .P
  758. Without the
  759. \fIposix_spawn\fR()
  760. and
  761. \fIposix_spawnp\fR()
  762. functions, systems without address translation can still use threads to
  763. give an abstraction of concurrency. In many cases, thread creation
  764. suffices, but it is not always a good substitute. The
  765. \fIposix_spawn\fR()
  766. and
  767. \fIposix_spawnp\fR()
  768. functions are considerably ``heavier'' than thread creation. Processes
  769. have several important attributes that threads do not. Even without
  770. address translation, a process may have base-and-bound memory
  771. protection. Each process has a process environment including security
  772. attributes and file capabilities, and powerful scheduling attributes.
  773. Processes abstract the behavior of non-uniform-memory-architecture
  774. multi-processors better than threads, and they are more convenient to
  775. use for activities that are not closely linked.
  776. .P
  777. The
  778. \fIposix_spawn\fR()
  779. and
  780. \fIposix_spawnp\fR()
  781. functions may not bring support for multiple processes to every
  782. configuration. Process creation is not the only piece of operating
  783. system support required to support multiple processes. The total cost
  784. of support for multiple processes may be quite high in some
  785. circumstances. Existing practice shows that support for multiple
  786. processes is uncommon and threads are common among ``tiny kernels''.
  787. There should, therefore, probably continue to be AEPs for operating
  788. systems with only one process.
  789. .SS "Asynchronous Error Notification"
  790. .P
  791. A library implementation of
  792. \fIposix_spawn\fR()
  793. or
  794. \fIposix_spawnp\fR()
  795. may not be able to detect all possible errors before it forks the child
  796. process. POSIX.1\(hy2008 provides for an error indication returned from a child
  797. process which could not successfully complete the spawn operation via a
  798. special exit status which may be detected using the status value
  799. returned by
  800. \fIwait\fR(),
  801. \fIwaitid\fR(),
  802. and
  803. \fIwaitpid\fR().
  804. .P
  805. The
  806. .IR stat_val
  807. interface and the macros used to interpret it are not well suited to
  808. the purpose of returning API errors, but they are the only path
  809. available to a library implementation. Thus, an implementation may
  810. cause the child process to exit with exit status 127 for any error
  811. detected during the spawn process after the
  812. \fIposix_spawn\fR()
  813. or
  814. \fIposix_spawnp\fR()
  815. function has successfully returned.
  816. .P
  817. The standard developers had proposed using two additional macros to
  818. interpret
  819. .IR stat_val .
  820. The first, WIFSPAWNFAIL, would have detected a status that indicated
  821. that the child exited because of an error detected during the
  822. \fIposix_spawn\fR()
  823. or
  824. \fIposix_spawnp\fR()
  825. operations rather than during actual execution of the child process
  826. image; the second, WSPAWNERRNO, would have extracted the error value if
  827. WIFSPAWNFAIL indicated a failure. Unfortunately, the ballot group
  828. strongly opposed this because it would make a library implementation of
  829. \fIposix_spawn\fR()
  830. or
  831. \fIposix_spawnp\fR()
  832. dependent on kernel modifications to
  833. \fIwaitpid\fR()
  834. to be able to embed special information in
  835. .IR stat_val
  836. to indicate a spawn failure.
  837. .P
  838. The 8 bits of child process exit status that are guaranteed by POSIX.1\(hy2008 to
  839. be accessible to the waiting parent process are insufficient to
  840. disambiguate a spawn error from any other kind of error that may be
  841. returned by an arbitrary process image. No other bits of the exit
  842. status are required to be visible in
  843. .IR stat_val ,
  844. so these macros could not be strictly implemented at the library level.
  845. Reserving an exit status of 127 for such spawn errors is consistent
  846. with the use of this value by
  847. \fIsystem\fR()
  848. and
  849. \fIpopen\fR()
  850. to signal failures in these operations that occur after the function
  851. has returned but before a shell is able to execute. The exit status of
  852. 127 does not uniquely identify this class of error, nor does it provide
  853. any detailed information on the nature of the failure. Note that a
  854. kernel implementation of
  855. \fIposix_spawn\fR()
  856. or
  857. \fIposix_spawnp\fR()
  858. is permitted (and encouraged) to return any possible error as the
  859. function value, thus providing more detailed failure information to the
  860. parent process.
  861. .P
  862. Thus, no special macros are available to isolate asynchronous
  863. \fIposix_spawn\fR()
  864. or
  865. \fIposix_spawnp\fR()
  866. errors. Instead, errors detected by the
  867. \fIposix_spawn\fR()
  868. or
  869. \fIposix_spawnp\fR()
  870. operations in the context of the child process before the new process
  871. image executes are reported by setting the child's exit status to 127.
  872. The calling process may use the WIFEXITED and WEXITSTATUS macros on the
  873. .IR stat_val
  874. stored by the
  875. \fIwait\fR()
  876. or
  877. \fIwaitpid\fR()
  878. functions to detect spawn failures to the extent that other status
  879. values with which the child process image may exit (before the parent
  880. can conclusively determine that the child process image has begun
  881. execution) are distinct from exit status 127.
  882. .SH "FUTURE DIRECTIONS"
  883. None.
  884. .SH "SEE ALSO"
  885. .ad l
  886. .IR "\fIalarm\fR\^(\|)",
  887. .IR "\fIchmod\fR\^(\|)",
  888. .IR "\fIclose\fR\^(\|)",
  889. .IR "\fIdup\fR\^(\|)",
  890. .IR "\fIexec\fR\^",
  891. .IR "\fIexit\fR\^(\|)",
  892. .IR "\fIfcntl\fR\^(\|)",
  893. .IR "\fIfork\fR\^(\|)",
  894. .IR "\fIfstatat\fR\^(\|)",
  895. .IR "\fIkill\fR\^(\|)",
  896. .IR "\fIopen\fR\^(\|)",
  897. .IR "\fIposix_spawn_file_actions_addclose\fR\^(\|)",
  898. .IR "\fIposix_spawn_file_actions_adddup2\fR\^(\|)",
  899. .IR "\fIposix_spawn_file_actions_destroy\fR\^(\|)",
  900. .IR "\fIposix_spawnattr_destroy\fR\^(\|)",
  901. .IR "\fIposix_spawnattr_getsigdefault\fR\^(\|)",
  902. .IR "\fIposix_spawnattr_getflags\fR\^(\|)",
  903. .IR "\fIposix_spawnattr_getpgroup\fR\^(\|)",
  904. .IR "\fIposix_spawnattr_getschedparam\fR\^(\|)",
  905. .IR "\fIposix_spawnattr_getschedpolicy\fR\^(\|)",
  906. .IR "\fIposix_spawnattr_getsigmask\fR\^(\|)",
  907. .IR "\fIsched_setparam\fR\^(\|)",
  908. .IR "\fIsched_setscheduler\fR\^(\|)",
  909. .IR "\fIsetpgid\fR\^(\|)",
  910. .IR "\fIsetuid\fR\^(\|)",
  911. .IR "\fItimes\fR\^(\|)",
  912. .IR "\fIwait\fR\^(\|)",
  913. .IR "\fIwaitid\fR\^(\|)"
  914. .ad b
  915. .P
  916. The Base Definitions volume of POSIX.1\(hy2017,
  917. .IR "Chapter 8" ", " "Environment Variables",
  918. .IR "\fB<spawn.h>\fP"
  919. .\"
  920. .SH COPYRIGHT
  921. Portions of this text are reprinted and reproduced in electronic form
  922. from IEEE Std 1003.1-2017, Standard for Information Technology
  923. -- Portable Operating System Interface (POSIX), The Open Group Base
  924. Specifications Issue 7, 2018 Edition,
  925. Copyright (C) 2018 by the Institute of
  926. Electrical and Electronics Engineers, Inc and The Open Group.
  927. In the event of any discrepancy between this version and the original IEEE and
  928. The Open Group Standard, the original IEEE and The Open Group Standard
  929. is the referee document. The original Standard can be obtained online at
  930. http://www.opengroup.org/unix/online.html .
  931. .PP
  932. Any typographical or formatting errors that appear
  933. in this page are most likely
  934. to have been introduced during the conversion of the source files to
  935. man page format. To report such errors, see
  936. https://www.kernel.org/doc/man-pages/reporting_bugs.html .