bug#61095: closed (possible misuse of posix_spawn API on non-linux OSes)

[GNU bug Tracking System]

Your message dated Sun, 02 Apr 2023 15:44:01 +0200
with message-id <87zg7qtn4u.fsf@gnu.org>
and subject line Re: bug#61095: possible misuse of posix_spawn API on non-linux 
OSes
has caused the debbugs.gnu.org bug report #61095,
regarding possible misuse of posix_spawn API on non-linux OSes
to be marked as done.

(If you believe you have received this mail in error, please contact
help-debbugs@gnu.org.)


-- 
61095: https://debbugs.gnu.org/cgi/bugreport.cgi?bug=61095
GNU Bug Tracking System
Contact help-debbugs@gnu.org with problems
> --- Begin Message ---
>
>
>
> Subject: 
>
> possible misuse of posix_spawn API on non-linux OSes
>
>
>
>
> Date: 
>
> Fri, 27 Jan 2023 12:51:32 +0100
>
>
>
>
> User-agent: 
>
> mblaze/1.2
>
>
>
>
> Hello,
>
> I've noticed that test-system-cmds fails on OpenBSD-CURRENT while
> testing the update to guile 3.0.9:
>
>     test-system-cmds: system* exit status was 127 rather than 42
>     FAIL: test-system-cmds
>
> Here's an excerpt of the ktrace of the child process while executing
> that specific test: (the first fork() is the one implicitly done by
> posix_spawn(3))
>
>   5590 guile RET   fork 0
>   [...]
>   5590 guile CALL  dup2(0,3)
>   5590 guile RET   dup2 3
>   5590 guile CALL  dup2(1,4)
>   5590 guile RET   dup2 4
>   5590 guile CALL  dup2(2,5)
>   5590 guile RET   dup2 5
>   5590 guile CALL  dup2(3,0)
>   5590 guile RET   dup2 0
>   5590 guile CALL  dup2(4,1)
>   5590 guile RET   dup2 1
>   5590 guile CALL  dup2(5,2)
>   5590 guile RET   dup2 2
>   5590 guile CALL  close(1023)
>   5590 guile RET   close -1 errno 9 Bad file descriptor
>   5590 guile CALL  kbind(0x7f7ffffd51f8,24,0x2b5c5ced59893fa9)
>   5590 guile RET   kbind 0
>   5590 guile CALL  exit(127)
>
> (if you prefer I can provide a full ktrace of guile executing that
> test case)
>
> My interpretation is that the sequence of dup2(2) is from
> posix_spawn_file_actions_adddup2 in do_spawn, while the strange
> close(1023) is from close_inherited_fds_slow.  Such file descriptor is
> not open, so close(2) fails with EBADF and the posix_spawn machinery
> exits prematurely.  My current RLIMIT_NOFILE is 1024, so the number
> would make sense.
>
> On OpenBSD I've tried to use the following patch to work around the
> issue:
>
> [[[
> Index: libguile/posix.c
> --- libguile/posix.c.orig
> +++ libguile/posix.c
> @@ -1325,6 +1325,7 @@ SCM_DEFINE (scm_fork, "primitive-fork", 0, 0, 0,
>  static void
>  close_inherited_fds_slow (posix_spawn_file_actions_t *actions, int max_fd)
>  {
> +  max_fd = getdtablecount();
>    while (--max_fd > 2)
>      posix_spawn_file_actions_addclose (actions, max_fd);
>  }
> ]]]
>
> getdtablecount(2) returns the number of file descriptor currently open
> by the process.  unfortunately it doesn't seem to be portable.  (well,
> tbf /proc/self/fd is not portable too.)
>
> However, while this pleases the system* test, it breaks the pipe
> tests:
>
>     Running popen.test
>     FAIL: popen.test: open-input-pipe: echo hello
>     FAIL: popen.test: pipeline - arguments: (expected-value ("HELLO WORLD\n" (0 
> 0)) actual-value ("" (127 0)))
>
> the reason seem to be similar:
>
>  74865 guile    CALL  dup2(7,3)
>  74865 guile    RET   dup2 3
>  74865 guile    CALL  dup2(10,4)
>  74865 guile    RET   dup2 4
>  74865 guile    CALL  dup2(2,5)
>  74865 guile    RET   dup2 5
>  74865 guile    CALL  dup2(3,0)
>  74865 guile    RET   dup2 0
>  74865 guile    CALL  dup2(4,1)
>  74865 guile    RET   dup2 1
>  74865 guile    CALL  dup2(5,2)
>  74865 guile    RET   dup2 2
>  74865 guile    CALL  close(8)
>  74865 guile    RET   close -1 errno 9 Bad file descriptor
>  74865 guile    CALL  kbind(0x7f7ffffcfa88,24,0x2125923bdf2ca9e)
>  74865 guile    RET   kbind 0
>  74865 guile    CALL  exit(127)
>
> I guess it's trying to close the fd of the pipe that was closed.
>
> I'm not sure what to do from here, I'm not used to the posix_spawn_*
> APIs.  I'm happy to help testing diffs or by providing more info if
> needed.
>
>
> Thanks,
>
> Omar Polo
>
>
>
> --- End Message ---
> --- Begin Message ---
>
>
>
> Subject: 
>
> Re: bug#61095: possible misuse of posix_spawn API on non-linux OSes
>
>
>
>
> Date: 
>
> Sun, 02 Apr 2023 15:44:01 +0200
>
>
>
>
> User-agent: 
>
> Gnus/5.13 (Gnus v5.13) Emacs/28.2 (gnu/linux)
>
>
>
>
> Hi!
>
> Omar Polo <op@omarpolo.com> skribis:
>
> > On 2023/03/30 22:21:28 +0200, Josselin Poiret <dev@jpoiret.xyz> wrote:
> >> Hi Ludo,
> >> 
> >> Ludovic Courtès <ludo@gnu.org> writes:
> >> 
> >> > Coming next is an updated patch series addressing this as proposed
> >> > above.  Let me know what y’all think!
> >> >
> >> > I tested the ‘posix_spawn_file_actions_addclosefrom_np’ path by building 
> >> > in:
> >> >
> >> >   guix time-machine --branch=core-updates -- shell -CP -D -f guix.scm
> >> 
> >> I didn't test, but this LGTM!  Maybe someone on OpenBSD could test this
> >> patchset?
> >
> >     % gmake check
> >     <snip />
> >     gmake[5]: Entering directory '/home/op/w/guile/test-suite/standalone'
> >     PASS: test-system-cmds
> >
> > it seems to work on OpenBSD 7.3 :)
>
> Awesome!  Pushed as 9cc85a4f52147fcdaa4c52a62bcc87bdb267d0a9.
>
> > but note that our libc doesn't have posix_spawn_file_actions_addclosefrom_np,
> > so this is using the "racy" code path.
>
> Yeah, not great.  :-/  I hope that function will be adopted by other
> libcs, especially since ‘closefrom’ is already available.
>
> > Just for curiosity, as it's outside the scope of the bug, what's the
> > reason posix_spawn was used instead of a more classic fork() +
> > closefrom()?
>
> There’s a long discussion at:
>
>   https://issues.guix.gnu.org/52835
>
> Essentially, ‘fork’ is unusable in multi-threaded context, in addition
> to being inefficient.
>
> Thanks,
> Ludo’.
>
>
> --- End Message ---