I'd suggest the name 'kernel_arch' because that's what this is returning. But the current code is really returning the name of the kernel directory used to compile code with.

Also, qemu-bsd-user is going to have to tell the same 'story' as this.

Also, what will 'go' use on older systems if we rush this into 13.1?

But the root cause here seems to be go's desire to send routing socket messages, which it magically does weird things to get. FreeBSD's routing socket interface should do the right thing w/o go having to do https://github.com/golang/go/commit/69275eef to fake them up.
Won't this keep coming up with different interfaces? Shouldn't we fix the reason they want to know this instead and make routing sockets work properly in compat32 mode?

In D34457#780713, @imp wrote:

But the root cause here seems to be go's desire to send routing socket messages, which it magically does weird things to get. FreeBSD's routing socket interface should do the right thing w/o go having to do https://github.com/golang/go/commit/69275eef to fake them up.
Won't this keep coming up with different interfaces? Shouldn't we fix the reason they want to know this instead and make routing sockets work properly in compat32 mode?

Yes...

Looking at the go code, there's several problems:

• It only ever removes the first whitespace character
• it doesn't cope with powerpc and other architectures that have multiple values here
• it only ever tests for amd64 (but arm/aarch64 likely has a similar problem)
• It only uses it for routing sockets, which arguably shouldn't present different ABIs between 32-bit processes running on 32-bit kernel and on a 64-bit kernel
• kern.conftxt is optional. Kernels aren't required to have it and we have options to remove it.

Would it make more sense to to publish the alignment requirement more directly?

Not saying I'm opposed to these things, but once we have them, and once the outside world uses them for certain things, it's a lot harder to change our minds should they prove to be a worse mismatch.

The network problem of course has to be fixed, but what is going to happen next time around when they find there is a missing compat? As is, they will be forced to go back to parsing the config which is slow, nasty and not guaranteed to work. The sysctl at hand is supposed to provide a reliable way to find out if they need to hack around, hence I stand by the intent in this proposal.

Given the mentioned problems with used macro, perhaps instead this can export just whether the kernel is 32/64/whatever bits? E.g., hw.machine_real_bits.

I strongly dislike 'kernel_arch' (or 'kernel_bits' for that matter) as it does not provide any reason why it can't be faked the way hw.machine already is. I don't insist on 'real' being somewhere in the name, but *something* indicating the value is not faked definitely has to be.

Short term I planned to simply provide them with a query of the proposed sysctl, and should it return ENOENT, falling back to what they have right now. Once the oldest supported release also has the sysctl, the fallback can get removed.

In D34457#780719, @mjg wrote:

The network problem of course has to be fixed, but what is going to happen next time around when they find there is a missing compat? As is, they will be forced to go back to parsing the config which is slow, nasty and not guaranteed to work. The sysctl at hand is supposed to provide a reliable way to find out if they need to hack around, hence I stand by the intent in this proposal.

Agreed.

Given the mentioned problems with used macro, perhaps instead this can export just whether the kernel is 32/64/whatever bits? E.g., hw.machine_real_bits.

I'm not sure that provides enough information to be always useful, but it is an interesting notion.

I strongly dislike 'kernel_arch' (or 'kernel_bits' for that matter) as it does not provide any reason why it can't be faked the way hw.machine already is. I don't insist on 'real' being somewhere in the name, but *something* indicating the value is not faked definitely has to be.

I'd say it isn't faked today. It returns the proper value for the ABI for the process. That's its definition, one that was settled ages ago. It's what the vast majority of software expect for these values. The go folks misunderstand its definition, though.

I think hw.kernel.machine and hw.kernel.machine_arch are my recommendations for names. Their definition is for what the kernel we're running under is. Properly defining them would keep them from the alteration you are worried about: it's always the kernel's ABI as opposed to the process' ABI. And it would also cover all bases in the !x86 world should additional workarounds be needed there.

But since we're rolling a 'custom' thing for them, wouldn't it be better to also return the routing socket alignment requirements. If that's provided, use that, otherwise fall back to the heuristic that's being used now? That would solve the problem on all platforms, and would also allow us to fix the alignment but for 32-on-64 and just change what this returns. I think we should also have the other two sysctls I'm recommending above for other workarounds not covered by that. The go fix could look for this new sysctl (or sysctls, since there's two places this test is made), use that directly and fall back to the heuristic they use now until the need for it ages out, like you suggest below.

Short term I planned to simply provide them with a query of the proposed sysctl, and should it return ENOENT, falling back to what they have right now. Once the oldest supported release also has the sysctl, the fallback can get removed.

I like that plan.

In D34457#780720, @imp wrote:

In D34457#780719, @mjg wrote:

The network problem of course has to be fixed, but what is going to happen next time around when they find there is a missing compat? As is, they will be forced to go back to parsing the config which is slow, nasty and not guaranteed to work. The sysctl at hand is supposed to provide a reliable way to find out if they need to hack around, hence I stand by the intent in this proposal.

Agreed.

Given the mentioned problems with used macro, perhaps instead this can export just whether the kernel is 32/64/whatever bits? E.g., hw.machine_real_bits.

I'm not sure that provides enough information to be always useful, but it is an interesting notion.

I strongly dislike 'kernel_arch' (or 'kernel_bits' for that matter) as it does not provide any reason why it can't be faked the way hw.machine already is. I don't insist on 'real' being somewhere in the name, but *something* indicating the value is not faked definitely has to be.

I'd say it isn't faked today. It returns the proper value for the ABI for the process. That's its definition, one that was settled ages ago. It's what the vast majority of software expect for these values. The go folks misunderstand its definition, though.

Does not matter how you called, the crux is it does not provide the "real" state of things inside the kernel.

I think hw.kernel.machine and hw.kernel.machine_arch are my recommendations for names. Their definition is for what the kernel we're running under is. Properly defining them would keep them from the alteration you are worried about: it's always the kernel's ABI as opposed to the process' ABI. And it would also cover all bases in the !x86 world should additional workarounds be needed there.

So how exactly would you define so that it is apparent it is not "augmented" for the calling process?

But since we're rolling a 'custom' thing for them, wouldn't it be better to also return the routing socket alignment requirements. If that's provided, use that, otherwise fall back to the heuristic that's being used now? That would solve the problem on all platforms, and would also allow us to fix the alignment but for 32-on-64 and just change what this returns. I think we should also have the other two sysctls I'm recommending above for other workarounds not covered by that. The go fix could look for this new sysctl (or sysctls, since there's two places this test is made), use that directly and fall back to the heuristic they use now until the need for it ages out, like you suggest below.

The routing socket stuff, if it ever gets fixed, will need new sysctls/ioctls to be used by 32-bit processes, as otherwise it would break existing binaries. Consequently I don't think exporting alignemnt requirement specifically for it helps here.

Short term I planned to simply provide them with a query of the proposed sysctl, and should it return ENOENT, falling back to what they have right now. Once the oldest supported release also has the sysctl, the fallback can get removed.

I like that plan.

In D34457#782059, @mjg wrote:

In D34457#780720, @imp wrote:

In D34457#780719, @mjg wrote:

The network problem of course has to be fixed, but what is going to happen next time around when they find there is a missing compat? As is, they will be forced to go back to parsing the config which is slow, nasty and not guaranteed to work. The sysctl at hand is supposed to provide a reliable way to find out if they need to hack around, hence I stand by the intent in this proposal.

Agreed.

Given the mentioned problems with used macro, perhaps instead this can export just whether the kernel is 32/64/whatever bits? E.g., hw.machine_real_bits.

I'm not sure that provides enough information to be always useful, but it is an interesting notion.

I strongly dislike 'kernel_arch' (or 'kernel_bits' for that matter) as it does not provide any reason why it can't be faked the way hw.machine already is. I don't insist on 'real' being somewhere in the name, but *something* indicating the value is not faked definitely has to be.

I'd say it isn't faked today. It returns the proper value for the ABI for the process. That's its definition, one that was settled ages ago. It's what the vast majority of software expect for these values. The go folks misunderstand its definition, though.

Does not matter how you called, the crux is it does not provide the "real" state of things inside the kernel.

It does matter. The ABI dictates these things, not the kernel it happens to run on. The real state of a QEMU user-mode kernel could be amd64 for an armv7 binary for such a guest. Does such a guest need to do the alignment changes to work around the bug or not?

I think hw.kernel.machine and hw.kernel.machine_arch are my recommendations for names. Their definition is for what the kernel we're running under is. Properly defining them would keep them from the alteration you are worried about: it's always the kernel's ABI as opposed to the process' ABI. And it would also cover all bases in the !x86 world should additional workarounds be needed there.

So how exactly would you define so that it is apparent it is not "augmented" for the calling process?

The whole reason you need to know this is because the ABI isn't quite what the contract promised due to a bug in emulation and the program needs to second guess things to work around that bug. It is not a normal thing that needs to be known by a binary.

But since we're rolling a 'custom' thing for them, wouldn't it be better to also return the routing socket alignment requirements. If that's provided, use that, otherwise fall back to the heuristic that's being used now? That would solve the problem on all platforms, and would also allow us to fix the alignment but for 32-on-64 and just change what this returns. I think we should also have the other two sysctls I'm recommending above for other workarounds not covered by that. The go fix could look for this new sysctl (or sysctls, since there's two places this test is made), use that directly and fall back to the heuristic they use now until the need for it ages out, like you suggest below.

The routing socket stuff, if it ever gets fixed, will need new sysctls/ioctls to be used by 32-bit processes, as otherwise it would break existing binaries. Consequently I don't think exporting alignemnt requirement specifically for it helps here.

The current existing binaries are broken when run on 64-bit kernels. However, programs that work around them would break given how we implement compatibility shims in general. I will agree that future fixes are speculative in this area though. Having an explicit alignment requirement will provide for better workarounds than are possible with the current guessing setup, and the proposed improved guessing setup.

Short term I planned to simply provide them with a query of the proposed sysctl, and should it return ENOENT, falling back to what they have right now. Once the oldest supported release also has the sysctl, the fallback can get removed.

I like that plan.

Of course the current ABI is broken. The point is that binaries which put effort into working around it are going to stop working if it gets implemented the way it should have been from the get go, thus it can't be done in a way which affects them.

In D34457#782070, @imp wrote:

In D34457#782059, @mjg wrote:

In D34457#780720, @imp wrote:

In D34457#780719, @mjg wrote:

The network problem of course has to be fixed, but what is going to happen next time around when they find there is a missing compat? As is, they will be forced to go back to parsing the config which is slow, nasty and not guaranteed to work. The sysctl at hand is supposed to provide a reliable way to find out if they need to hack around, hence I stand by the intent in this proposal.

Agreed.

Given the mentioned problems with used macro, perhaps instead this can export just whether the kernel is 32/64/whatever bits? E.g., hw.machine_real_bits.

I'm not sure that provides enough information to be always useful, but it is an interesting notion.

I strongly dislike 'kernel_arch' (or 'kernel_bits' for that matter) as it does not provide any reason why it can't be faked the way hw.machine already is. I don't insist on 'real' being somewhere in the name, but *something* indicating the value is not faked definitely has to be.

I'd say it isn't faked today. It returns the proper value for the ABI for the process. That's its definition, one that was settled ages ago. It's what the vast majority of software expect for these values. The go folks misunderstand its definition, though.

Does not matter how you called, the crux is it does not provide the "real" state of things inside the kernel.

It does matter. The ABI dictates these things, not the kernel it happens to run on. The real state of a QEMU user-mode kernel could be amd64 for an armv7 binary for such a guest. Does such a guest need to do the alignment changes to work around the bug or not?

I think hw.kernel.machine and hw.kernel.machine_arch are my recommendations for names. Their definition is for what the kernel we're running under is. Properly defining them would keep them from the alteration you are worried about: it's always the kernel's ABI as opposed to the process' ABI. And it would also cover all bases in the !x86 world should additional workarounds be needed there.

So how exactly would you define so that it is apparent it is not "augmented" for the calling process?

The whole reason you need to know this is because the ABI isn't quite what the contract promised due to a bug in emulation and the program needs to second guess things to work around that bug. It is not a normal thing that needs to be known by a binary.

This does not answer the question. How do you make it clear this is the internal ABI of the kernel and not something the kernel thinks you should see based on your own ABI.

But since we're rolling a 'custom' thing for them, wouldn't it be better to also return the routing socket alignment requirements. If that's provided, use that, otherwise fall back to the heuristic that's being used now? That would solve the problem on all platforms, and would also allow us to fix the alignment but for 32-on-64 and just change what this returns. I think we should also have the other two sysctls I'm recommending above for other workarounds not covered by that. The go fix could look for this new sysctl (or sysctls, since there's two places this test is made), use that directly and fall back to the heuristic they use now until the need for it ages out, like you suggest below.

The routing socket stuff, if it ever gets fixed, will need new sysctls/ioctls to be used by 32-bit processes, as otherwise it would break existing binaries. Consequently I don't think exporting alignemnt requirement specifically for it helps here.

The current existing binaries are broken when run on 64-bit kernels. However, programs that work around them would break given how we implement compatibility shims in general. I will agree that future fixes are speculative in this area though. Having an explicit alignment requirement will provide for better workarounds than are possible with the current guessing setup, and the proposed improved guessing setup.

Short term I planned to simply provide them with a query of the proposed sysctl, and should it return ENOENT, falling back to what they have right now. Once the oldest supported release also has the sysctl, the fallback can get removed.

I like that plan.

I'd say "kernel_machine_arch" is the more accurate name, though possibly you might think of it as "the MACHINE_ARCH of the default ABI (e.g. sys/kern/init_sysent.c)" (this is more accurate in CheriBSD where you can have what is in effect a 64-bit kernel with 128-bit user pointers and the routing messages would use the 128-bit ABI). Certainly this means you can get all sorts of weird things for qemu user mode. Maybe 'default_machine_arch' or 'native_machine_arch' though would be a better name?