Provided by: manpages-dev_6.7-2_all 
NAME
vfork - create a child process and block parent
LIBRARY
Standard C library (libc, -lc)
SYNOPSIS
#include <unistd.h>
pid_t vfork(void);
Feature Test Macro Requirements for glibc (see feature_test_macros(7)):
vfork():
Since glibc 2.12:
(_XOPEN_SOURCE >= 500) && ! (_POSIX_C_SOURCE >= 200809L)
|| /* Since glibc 2.19: */ _DEFAULT_SOURCE
|| /* glibc <= 2.19: */ _BSD_SOURCE
Before glibc 2.12:
_BSD_SOURCE || _XOPEN_SOURCE >= 500
DESCRIPTION
Standard description
(From POSIX.1) The vfork() function has the same effect as fork(2), except that the
behavior is undefined if the process created by vfork() either modifies any data other
than a variable of type pid_t used to store the return value from vfork(), or returns from
the function in which vfork() was called, or calls any other function before successfully
calling _exit(2) or one of the exec(3) family of functions.
Linux description
vfork(), just like fork(2), creates a child process of the calling process. For details
and return value and errors, see fork(2).
vfork() is a special case of clone(2). It is used to create new processes without copying
the page tables of the parent process. It may be useful in performance-sensitive
applications where a child is created which then immediately issues an execve(2).
vfork() differs from fork(2) in that the calling thread is suspended until the child
terminates (either normally, by calling _exit(2), or abnormally, after delivery of a fatal
signal), or it makes a call to execve(2). Until that point, the child shares all memory
with its parent, including the stack. The child must not return from the current function
or call exit(3) (which would have the effect of calling exit handlers established by the
parent process and flushing the parent's stdio(3) buffers), but may call _exit(2).
As with fork(2), the child process created by vfork() inherits copies of various of the
caller's process attributes (e.g., file descriptors, signal dispositions, and current
working directory); the vfork() call differs only in the treatment of the virtual address
space, as described above.
Signals sent to the parent arrive after the child releases the parent's memory (i.e.,
after the child terminates or calls execve(2)).
Historic description
Under Linux, fork(2) is implemented using copy-on-write pages, so the only penalty
incurred by fork(2) is the time and memory required to duplicate the parent's page tables,
and to create a unique task structure for the child. However, in the bad old days a
fork(2) would require making a complete copy of the caller's data space, often needlessly,
since usually immediately afterward an exec(3) is done. Thus, for greater efficiency, BSD
introduced the vfork() system call, which did not fully copy the address space of the
parent process, but borrowed the parent's memory and thread of control until a call to
execve(2) or an exit occurred. The parent process was suspended while the child was using
its resources. The use of vfork() was tricky: for example, not modifying data in the
parent process depended on knowing which variables were held in a register.
VERSIONS
The requirements put on vfork() by the standards are weaker than those put on fork(2), so
an implementation where the two are synonymous is compliant. In particular, the
programmer cannot rely on the parent remaining blocked until the child either terminates
or calls execve(2), and cannot rely on any specific behavior with respect to shared
memory.
Some consider the semantics of vfork() to be an architectural blemish, and the 4.2BSD man
page stated: “This system call will be eliminated when proper system sharing mechanisms
are implemented. Users should not depend on the memory sharing semantics of vfork as it
will, in that case, be made synonymous to fork.” However, even though modern memory
management hardware has decreased the performance difference between fork(2) and vfork(),
there are various reasons why Linux and other systems have retained vfork():
• Some performance-critical applications require the small performance advantage
conferred by vfork().
• vfork() can be implemented on systems that lack a memory-management unit (MMU), but
fork(2) can't be implemented on such systems. (POSIX.1-2008 removed vfork() from the
standard; the POSIX rationale for the posix_spawn(3) function notes that that function,
which provides functionality equivalent to fork(2)+exec(3), is designed to be
implementable on systems that lack an MMU.)
• On systems where memory is constrained, vfork() avoids the need to temporarily commit
memory (see the description of /proc/sys/vm/overcommit_memory in proc(5)) in order to
execute a new program. (This can be especially beneficial where a large parent process
wishes to execute a small helper program in a child process.) By contrast, using
fork(2) in this scenario requires either committing an amount of memory equal to the
size of the parent process (if strict overcommitting is in force) or overcommitting
memory with the risk that a process is terminated by the out-of-memory (OOM) killer.
Linux notes
Fork handlers established using pthread_atfork(3) are not called when a multithreaded
program employing the NPTL threading library calls vfork(). Fork handlers are called in
this case in a program using the LinuxThreads threading library. (See pthreads(7) for a
description of Linux threading libraries.)
A call to vfork() is equivalent to calling clone(2) with flags specified as:
CLONE_VM | CLONE_VFORK | SIGCHLD
STANDARDS
None.
HISTORY
4.3BSD; POSIX.1-2001 (but marked OBSOLETE). POSIX.1-2008 removes the specification of
vfork().
The vfork() system call appeared in 3.0BSD. In 4.4BSD it was made synonymous to fork(2)
but NetBSD introduced it again; see ⟨http://www.netbsd.org/Documentation/kernel
/vfork.html⟩. In Linux, it has been equivalent to fork(2) until Linux 2.2.0-pre6 or so.
Since Linux 2.2.0-pre9 (on i386, somewhat later on other architectures) it is an
independent system call. Support was added in glibc 2.0.112.
CAVEATS
The child process should take care not to modify the memory in unintended ways, since such
changes will be seen by the parent process once the child terminates or executes another
program. In this regard, signal handlers can be especially problematic: if a signal
handler that is invoked in the child of vfork() changes memory, those changes may result
in an inconsistent process state from the perspective of the parent process (e.g., memory
changes would be visible in the parent, but changes to the state of open file descriptors
would not be visible).
When vfork() is called in a multithreaded process, only the calling thread is suspended
until the child terminates or executes a new program. This means that the child is
sharing an address space with other running code. This can be dangerous if another thread
in the parent process changes credentials (using setuid(2) or similar), since there are
now two processes with different privilege levels running in the same address space. As
an example of the dangers, suppose that a multithreaded program running as root creates a
child using vfork(). After the vfork(), a thread in the parent process drops the process
to an unprivileged user in order to run some untrusted code (e.g., perhaps via plug-in
opened with dlopen(3)). In this case, attacks are possible where the parent process uses
mmap(2) to map in code that will be executed by the privileged child process.
BUGS
Details of the signal handling are obscure and differ between systems. The BSD man page
states: "To avoid a possible deadlock situation, processes that are children in the middle
of a vfork() are never sent SIGTTOU or SIGTTIN signals; rather, output or ioctls are
allowed and input attempts result in an end-of-file indication."
SEE ALSO
clone(2), execve(2), _exit(2), fork(2), unshare(2), wait(2)