[1/1] sandbox: don't set SA_NODEFER in signal handler

Message ID	20210705174300.18792-1-xypron.glpk@gmx.de
State	Accepted
Commit	fd25ca3275946476d5c3fa32e3e7e3087fa5c572
Delegated to:	Simon Glass
Headers	show Return-Path: <u-boot-bounces@lists.denx.de> From: Heinrich Schuchardt <xypron.glpk@gmx.de> To: Simon Glass <sjg@chromium.org> Cc: u-boot@lists.denx.de, Heinrich Schuchardt <xypron.glpk@gmx.de> Subject: [PATCH 1/1] sandbox: don't set SA_NODEFER in signal handler Date: Mon, 5 Jul 2021 19:43:00 +0200 Message-Id: <20210705174300.18792-1-xypron.glpk@gmx.de> MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable Precedence: list Errors-To: u-boot-bounces@lists.denx.de Sender: "U-Boot" <u-boot-bounces@lists.denx.de>
Series	[1/1] sandbox: don't set SA_NODEFER in signal handler \| expand [1/1] sandbox: don't set SA_NODEFER in signal handler

Message ID

20210705174300.18792-1-xypron.glpk@gmx.de

State

Accepted

Commit

fd25ca3275946476d5c3fa32e3e7e3087fa5c572

Delegated to:

Simon Glass

Headers

show

Return-Path: <u-boot-bounces@lists.denx.de>
X-Original-To: incoming@patchwork.ozlabs.org
Delivered-To: patchwork-incoming@bilbo.ozlabs.org
Authentication-Results: ozlabs.org;
 spf=pass (sender SPF authorized) smtp.mailfrom=lists.denx.de
 (client-ip=2a01:238:438b:c500:173d:9f52:ddab:ee01; helo=phobos.denx.de;
 envelope-from=u-boot-bounces@lists.denx.de; receiver=<UNKNOWN>)
Authentication-Results: ozlabs.org;
	dkim=pass (1024-bit key;
 secure) header.d=gmx.net header.i=@gmx.net header.a=rsa-sha256
 header.s=badeba3b8450 header.b=AG+/IHZr;
	dkim-atps=neutral
Received: from phobos.denx.de (phobos.denx.de
 [IPv6:2a01:238:438b:c500:173d:9f52:ddab:ee01])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest
 SHA256)
	(No client certificate requested)
	by ozlabs.org (Postfix) with ESMTPS id 4GJY204dbRz9sRR
	for <incoming@patchwork.ozlabs.org>; Tue,  6 Jul 2021 03:43:20 +1000 (AEST)
Received: from h2850616.stratoserver.net (localhost [IPv6:::1])
	by phobos.denx.de (Postfix) with ESMTP id 95D0482BB4;
	Mon,  5 Jul 2021 19:43:09 +0200 (CEST)
Authentication-Results: phobos.denx.de;
 dmarc=fail (p=none dis=none) header.from=gmx.de
Authentication-Results: phobos.denx.de;
 spf=pass smtp.mailfrom=u-boot-bounces@lists.denx.de
Authentication-Results: phobos.denx.de;
	dkim=pass (1024-bit key;
 secure) header.d=gmx.net header.i=@gmx.net header.b="AG+/IHZr";
	dkim-atps=neutral
Received: by phobos.denx.de (Postfix, from userid 109)
 id D822B82BAA; Mon,  5 Jul 2021 19:43:07 +0200 (CEST)
X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on phobos.denx.de
X-Spam-Level: 
X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00,DKIM_SIGNED,
 DKIM_VALID,FREEMAIL_FROM,RCVD_IN_MSPIKE_H3,RCVD_IN_MSPIKE_WL,
 SPF_HELO_NONE autolearn=ham autolearn_force=no version=3.4.2
Received: from mout.gmx.net (mout.gmx.net [212.227.15.15])
 (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits))
 (No client certificate requested)
 by phobos.denx.de (Postfix) with ESMTPS id 389E482BAA
 for <u-boot@lists.denx.de>; Mon,  5 Jul 2021 19:43:05 +0200 (CEST)
Authentication-Results: phobos.denx.de;
 dmarc=pass (p=none dis=none) header.from=gmx.de
Authentication-Results: phobos.denx.de;
 spf=pass smtp.mailfrom=xypron.glpk@gmx.de
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=gmx.net;
 s=badeba3b8450; t=1625506984;
 bh=TAnh66YYbPTRX86uzKDr2NwS2Vral9ygG+rJzEr66pc=;
 h=X-UI-Sender-Class:From:To:Cc:Subject:Date;
 b=AG+/IHZrSJ6KNGBKYtV87Go4gbONw1xtJnmlt6ZC6wxJLftBzCC+OzuL0Ba+Yppqu
 LocLgcIXTiBarumkcVwt6JE8m9j9r4V/P2n9i1tWSqeiXfORNySrazSTifAE7iJFxL
 BhxJfM1MA2MH2Dv0ezxT2ThvxFyWSVKbhUChQVZA=
X-UI-Sender-Class: 01bb95c1-4bf8-414a-932a-4f6e2808ef9c
Received: from LT02.fritz.box ([88.152.144.157]) by mail.gmx.net (mrgmx005
 [212.227.17.184]) with ESMTPSA (Nemesis) id 1MEV3I-1lxlzO0Uyw-00Fypu; Mon, 05
 Jul 2021 19:43:04 +0200
From: Heinrich Schuchardt <xypron.glpk@gmx.de>
To: Simon Glass <sjg@chromium.org>
Cc: u-boot@lists.denx.de,
	Heinrich Schuchardt <xypron.glpk@gmx.de>
Subject: [PATCH 1/1] sandbox: don't set SA_NODEFER in signal handler
Date: Mon,  5 Jul 2021 19:43:00 +0200
Message-Id: <20210705174300.18792-1-xypron.glpk@gmx.de>
X-Mailer: git-send-email 2.30.2
MIME-Version: 1.0
Content-Transfer-Encoding: quoted-printable
X-Provags-ID: V03:K1:zdhbT1nRYaUexOFM4XubbuOj1bTS5DVXcGgVZws/l0C9Z9Azxsa
 53yhM7svnNi+R3FR+MABHqJ+rcGHdsiTJ0KjQU2A/6iK4k+Q0jvlxO+maKF0fG3FKd7YRNI
 ONo4/A6xabKia7mFKoE4CoEm6Lfy6+B2wfqMQvrnO9UCthWQnMZavuBnNBC5ApRKhYo3a9J
 xSio/0Y9rTlLDu99VujUw==
X-UI-Out-Filterresults: notjunk:1;V03:K0:+wuY702kXyM=:dEXNWCsFm1jCDMsDL1W7dz
 uI/RyEoqMuVlgadOvDsAbJJoe19wyImLHuogvXmdXrSGmU93ma+ddRtZL6Ffv0CbqXGUZJDzo
 cqZ5wH7odIX7SLCecjWocwF8pQPVQYbZ/eQXB8VWDGCGRPan4bLjBBZZs6LI9Lv3jDKv+eI7D
 qU19bpitIQqIFF1CEELdM8n1uB0g/GQnkqrQmJd4BhqFumQX/UAOOIrA3gA26TTAOzyAtc5eN
 D22cbp58SAE9qAKBHlcjTvu7s+031muLI7dE4doDaF5LaY9RhAz7DO3CP0WprbAV6TagM2Dta
 EpDwOXoBAxzRW4N/edCUp+nZTLUZcWiShdbp9BSeba7KbBhOaxiyaX2NE91Be0P6JCUpDCpYV
 CNLYSfou6sKk4OawvVtIUuO0JThzPrefMdrYqz/X8xECZ2OwSFuQKle7c6S0RIMRs3Lm8nH2y
 h7FQfJHmtYQZINbKXZ3KnUJqZBomZGfsii6K8Kr4eiICRLiRV+v29F4O9rc6echIZDEaI5bQd
 3DjWSZL3mZ5QEEv82p9elUvGajBI2oRAWAkuqmzQ0WGaDeEjgYBl29+yy1DzW6FFkhJpz1JEg
 yoHpuYKY2Z3V3kNirZEo29ZNwpg6DdUmxklBRIv94bhRD60n3ftndsuaVjzjLhrWPdcn0V0Ec
 lLb+TuM3I/Brp6/h8qffN7+hjQyrT8xhPrCVfMVPdxa8fF3QuebeGHztHtLARINjfJ2uurnAx
 /enNHkyJLJcRv3ZzhcfajA3yify1z7dBEbSyaO6JxAvi2Pzh27jotisvgsjZZtzbY+NuGkQLt
 IZrD+jN2525p7eOyJEMkRRcgGWMD421gdK1pF9TIww6ZL/xtvI19kmnOuIo2mNruTR+MBB13i
 BYRefMyajJaHLMH/QrV8DvlIJOZd9UCuwts/5yAPjX95VVXdTXKTdrnCaOceTPjQVkj4IsAL9
 zke71APpWAveltveWy6qaEZzrtRMLVr02dETGD72Nb6Nlw1NUJvxepLtA/JpF/qnKXj/9KOlx
 DDfofYV2jwhIfuptZEwv0S7GbdPAabsWvktwVzeKOcxYQSUO721GOOS/Ccajr4CF9A3Hg2Hmh
 lFcQprKHbO9Bs3+oVXKATgeAb0A6F61IEbg
X-BeenThere: u-boot@lists.denx.de
X-Mailman-Version: 2.1.34
Precedence: list
List-Id: U-Boot discussion <u-boot.lists.denx.de>
List-Unsubscribe: <https://lists.denx.de/options/u-boot>,
 <mailto:u-boot-request@lists.denx.de?subject=unsubscribe>
List-Archive: <https://lists.denx.de/pipermail/u-boot/>
List-Post: <mailto:u-boot@lists.denx.de>
List-Help: <mailto:u-boot-request@lists.denx.de?subject=help>
List-Subscribe: <https://lists.denx.de/listinfo/u-boot>,
 <mailto:u-boot-request@lists.denx.de?subject=subscribe>
Errors-To: u-boot-bounces@lists.denx.de
Sender: "U-Boot" <u-boot-bounces@lists.denx.de>
X-Virus-Scanned: clamav-milter 0.103.2 at phobos.denx.de
X-Virus-Status: Clean

Series

[1/1] sandbox: don't set SA_NODEFER in signal handler | expand

Commit Message

Heinrich Schuchardt July 5, 2021, 5:43 p.m. UTC

The sandbox can handle signals. Due to a damaged global data pointer
additional exceptions in the signal handler may occur leading to an endless
loop. In this case leave the handling of the secondary exception to the
operating system.

Signed-off-by: Heinrich Schuchardt <xypron.glpk@gmx.de>
---
 arch/sandbox/cpu/os.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

--
2.30.2

Comments

Simon Glass July 7, 2021, 5:37 p.m. UTC | #1

Hi Heinrich,

On Mon, 5 Jul 2021 at 11:43, Heinrich Schuchardt <xypron.glpk@gmx.de> wrote:
>
> The sandbox can handle signals. Due to a damaged global data pointer
> additional exceptions in the signal handler may occur leading to an endless
> loop. In this case leave the handling of the secondary exception to the
> operating system.
>
> Signed-off-by: Heinrich Schuchardt <xypron.glpk@gmx.de>
> ---
>  arch/sandbox/cpu/os.c | 2 +-
>  1 file changed, 1 insertion(+), 1 deletion(-)

I'm OK with this since it doesn't actually matter, now that the
signal-catching behaviour is optional.

But as I understand it, it will mean that the second exception is
reported, but not the first? In other words, any core dump will be
'incorrect' in that it is not suitable for postmortem debugging.

>
> diff --git a/arch/sandbox/cpu/os.c b/arch/sandbox/cpu/os.c
> index 0d21827e1b..9a73ae3b18 100644
> --- a/arch/sandbox/cpu/os.c
> +++ b/arch/sandbox/cpu/os.c
> @@ -226,7 +226,7 @@ int os_setup_signal_handlers(void)
>
>         act.sa_sigaction = os_signal_handler;
>         sigemptyset(&act.sa_mask);
> -       act.sa_flags = SA_SIGINFO | SA_NODEFER;
> +       act.sa_flags = SA_SIGINFO;
>         if (sigaction(SIGILL, &act, NULL) ||
>             sigaction(SIGBUS, &act, NULL) ||
>             sigaction(SIGSEGV, &act, NULL))
> --
> 2.30.2
>

Regards,
Simon

Simon Glass July 17, 2021, 9:41 p.m. UTC | #2

Hi Heinrich,

On Wed, 7 Jul 2021 at 11:37, Simon Glass <sjg@chromium.org> wrote:
>
> Hi Heinrich,
>
> On Mon, 5 Jul 2021 at 11:43, Heinrich Schuchardt <xypron.glpk@gmx.de> wrote:
> >
> > The sandbox can handle signals. Due to a damaged global data pointer
> > additional exceptions in the signal handler may occur leading to an endless
> > loop. In this case leave the handling of the secondary exception to the
> > operating system.
> >
> > Signed-off-by: Heinrich Schuchardt <xypron.glpk@gmx.de>
> > ---
> >  arch/sandbox/cpu/os.c | 2 +-
> >  1 file changed, 1 insertion(+), 1 deletion(-)
>
> I'm OK with this since it doesn't actually matter, now that the
> signal-catching behaviour is optional.
>
> But as I understand it, it will mean that the second exception is
> reported, but not the first? In other words, any core dump will be
> 'incorrect' in that it is not suitable for postmortem debugging.

I tested this by:

- setting sandbox's 'state' pointer to NULL in the 'md' command
- dropping state = &main_state from state_uninit
- running it and typing 'md'

This causes a recursive crash without your patch. With your patch it
is not recursive.

So I think it makes the -S option work better.

Reviewed-by: Simon Glass <sjg@chromium.org>

Regards,
Simon

Simon Glass July 22, 2021, 2:12 a.m. UTC | #3

Hi Heinrich,

On Wed, 7 Jul 2021 at 11:37, Simon Glass <sjg@chromium.org> wrote:
>
> Hi Heinrich,
>
> On Mon, 5 Jul 2021 at 11:43, Heinrich Schuchardt <xypron.glpk@gmx.de> wrote:
> >
> > The sandbox can handle signals. Due to a damaged global data pointer
> > additional exceptions in the signal handler may occur leading to an endless
> > loop. In this case leave the handling of the secondary exception to the
> > operating system.
> >
> > Signed-off-by: Heinrich Schuchardt <xypron.glpk@gmx.de>
> > ---
> >  arch/sandbox/cpu/os.c | 2 +-
> >  1 file changed, 1 insertion(+), 1 deletion(-)
>
> I'm OK with this since it doesn't actually matter, now that the
> signal-catching behaviour is optional.
>
> But as I understand it, it will mean that the second exception is
> reported, but not the first? In other words, any core dump will be
> 'incorrect' in that it is not suitable for postmortem debugging.

I tested this by:

- setting sandbox's 'state' pointer to NULL in the 'md' command
- dropping state = &main_state from state_uninit
- running it and typing 'md'

This causes a recursive crash without your patch. With your patch it
is not recursive.

So I think it makes the -S option work better.

Reviewed-by: Simon Glass <sjg@chromium.org>

Regards,
Simon

Applied to u-boot-dm, thanks!

diff --git a/arch/sandbox/cpu/os.c b/arch/sandbox/cpu/os.c
index 0d21827e1b..9a73ae3b18 100644
--- a/arch/sandbox/cpu/os.c
+++ b/arch/sandbox/cpu/os.c
@@ -226,7 +226,7 @@  int os_setup_signal_handlers(void)

 	act.sa_sigaction = os_signal_handler;
 	sigemptyset(&act.sa_mask);
-	act.sa_flags = SA_SIGINFO | SA_NODEFER;
+	act.sa_flags = SA_SIGINFO;
 	if (sigaction(SIGILL, &act, NULL) ||
 	    sigaction(SIGBUS, &act, NULL) ||
 	    sigaction(SIGSEGV, &act, NULL))

[1/1] sandbox: don't set SA_NODEFER in signal handler

Commit Message

Comments

Patch