From: Phillip Wood <phillip.wood123@gmail.com>
To: "Carlo Marcelo Arenas Belón via GitGitGadget"
<gitgitgadget@gmail.com>,
git@vger.kernel.org
Cc: "Carlo Marcelo Arenas Belón" <carenas@gmail.com>,
"Chris Torek" <chris.torek@gmail.com>
Subject: Re: [PATCH v3 0/4] daemon: explicitly allow EINTR during poll()
Date: Wed, 9 Jul 2025 15:12:43 +0100 [thread overview]
Message-ID: <b1027221-3e17-40d2-b293-4b1625fa095d@gmail.com> (raw)
In-Reply-To: <pull.2002.v3.git.git.1750927988.gitgitgadget@gmail.com>
On 26/06/2025 09:53, Carlo Marcelo Arenas Belón via GitGitGadget wrote:
> This series addresses and ambiguity that is at least visible in OpenBSD,
> where zombie proceses would only be cleared after a new connection is
> received.
>
> The underlying problem is that when this code was originally introduced,
> SA_RESTART was not widely implemented, and the signal() call usually
> implemented SysV like semantics, at least until it started being
> reimplemented by calling sigaction() internally.
I'm all in favor of using sigaction() but I think the SA_RESTART parts
of this series are an unnecessary complication that has the potential to
hide bugs as we support platforms without SA_RESTART. Your EINTR patches
have all been about efficiency rather than correctness so I think my
initial assessment that the existing code handles EINTR correctly was
probably true. As I said in my comments on patch 3 I think we can
happily drop patches 1 and 4.
Thanks
Phillip
> Changes since v2
>
> * Add a new patch 2 that modifies windows' sigaction so there is no more
> need for a fallback
> * Hopefully no more silly mistakes and a variable that finally makes sense
>
> Changes since v1
>
> * Almost all references to siginterrupt has been removed and a better named
> variable used instead
> * Changes had been abstracted to minimize ifdefs and their introduction
> staged more naturally
>
> Carlo Marcelo Arenas Belón (4):
> compat/posix.h: track SA_RESTART fallback
> compat/mingw: allow sigaction(SIGCHLD)
> daemon: use sigaction() to install child_handler()
> daemon: explicitly allow EINTR during poll()
>
> Makefile | 5 +++++
> compat/mingw-posix.h | 2 +-
> compat/mingw.c | 4 +++-
> compat/posix.h | 8 ++++++++
> config.mak.uname | 7 ++++---
> configure.ac | 16 ++++++++++++++++
> daemon.c | 33 ++++++++++++++++++++++++++++-----
> meson.build | 4 ++++
> 8 files changed, 69 insertions(+), 10 deletions(-)
>
>
> base-commit: cb3b40381e1d5ee32dde96521ad7cfd68eb308a6
> Published-As: https://github.com/gitgitgadget/git/releases/tag/pr-git-2002%2Fcarenas%2Fsiginterrupt-v3
> Fetch-It-Via: git fetch https://github.com/gitgitgadget/git pr-git-2002/carenas/siginterrupt-v3
> Pull-Request: https://github.com/git/git/pull/2002
>
> Range-diff vs v2:
>
> 1: e82b7425bbc ! 1: ae1ca6bb2b2 compat/posix.h: track SA_RESTART fallback
> @@ Makefile: include shared.mak
> # when attempting to read from an fopen'ed directory (or even to fopen
> # it at all).
> #
> -+# Define USE_NON_POSIX_SIGNAL if don't have support for SA_RESTART or
> -+# prefer to use ANSI C signal() over POSIX sigaction()
> ++# Define NO_RESTARTABLE_SIGNALS if don't have support for SA_RESTART
> +#
> # Define OPEN_RETURNS_EINTR if your open() system call may return EINTR
> # when a signal is received (as opposed to restarting).
> @@ Makefile: ifdef FREAD_READS_DIRECTORIES
> COMPAT_CFLAGS += -DFREAD_READS_DIRECTORIES
> COMPAT_OBJS += compat/fopen.o
> endif
> -+ifdef USE_NON_POSIX_SIGNAL
> -+ COMPAT_CFLAGS += -DUSE_NON_POSIX_SIGNAL
> ++ifdef NO_RESTARTABLE_SIGNALS
> ++ COMPAT_CFLAGS += -DNO_RESTARTABLE_SIGNALS
> +endif
> ifdef OPEN_RETURNS_EINTR
> COMPAT_CFLAGS += -DOPEN_RETURNS_EINTR
> @@ compat/posix.h: char *gitdirname(char *);
> + * not on some systems (e.g. NonStop, QNX).
> + */
> +#ifndef SA_RESTART
> -+# define SA_RESTART 0 /* disabled for sigaction() */
> ++# define SA_RESTART 0 /* disabled for sigaction() */
> +#endif
> +
> typedef uintmax_t timestamp_t;
> @@ config.mak.uname: ifeq ($(uname_S),Windows)
> NO_STRTOUMAX = YesPlease
> NO_MKDTEMP = YesPlease
> NO_INTTYPES_H = YesPlease
> -+ USE_NON_POSIX_SIGNAL = YesPlease
> ++ NO_RESTARTABLE_SIGNALS = YesPlease
> CSPRNG_METHOD = rtlgenrandom
> # VS2015 with UCRT claims that snprintf and friends are C99 compliant,
> # so we don't need this:
> @@ config.mak.uname: ifeq ($(uname_S),NONSTOP_KERNEL)
> NO_MMAP = YesPlease
> NO_POLL = YesPlease
> NO_INTPTR_T = UnfortunatelyYes
> -+ USE_NON_POSIX_SIGNAL = UnfortunatelyYes
> ++ NO_RESTARTABLE_SIGNALS = UnfortunatelyYes
> CSPRNG_METHOD = openssl
> SANE_TOOL_PATH = /usr/coreutils/bin:/usr/local/bin
> SHELL_PATH = /usr/coreutils/bin/bash
> @@ config.mak.uname: ifeq ($(uname_S),MINGW)
> NEEDS_LIBICONV = YesPlease
> NO_STRTOUMAX = YesPlease
> NO_MKDTEMP = YesPlease
> -+ USE_NON_POSIX_SIGNAL = YesPlease
> ++ NO_RESTARTABLE_SIGNALS = YesPlease
> NO_SVN_TESTS = YesPlease
>
> # The builtin FSMonitor requires Named Pipes and Threads on Windows.
> @@ config.mak.uname: ifeq ($(uname_S),QNX)
> NO_PTHREADS = YesPlease
> NO_STRCASESTR = YesPlease
> NO_STRLCPY = YesPlease
> -+ USE_NON_POSIX_SIGNAL = UnfortunatelyYes
> ++ NO_RESTARTABLE_SIGNALS = UnfortunatelyYes
> endif
>
> ## configure.ac ##
> @@ configure.ac: fi
> GIT_CONF_SUBST([ICONV_OMITS_BOM])
> fi
>
> -+# Define USE_NON_POSIX_SIGNAL if don't have support for SA_RESTART or
> -+# prefer using ANSI C signal() over POSIX sigaction()
> ++# Define NO_RESTARTABLE_SIGNALS if don't have support for SA_RESTART
> +
> +AC_CACHE_CHECK([whether SA_RESTART is supported], [ac_cv_siginterrupt], [
> + AC_COMPILE_IFELSE(
> + [AC_LANG_PROGRAM([#include <signal.h>], [[
> -+ #ifdef SA_RESTART
> -+ #endif
> -+ siginterrupt(SIGCHLD, 1)
> -+ ]])],[ac_cv_siginterrupt=yes],[
> ++ #ifdef SA_RESTART
> ++ restartable signals supported
> ++ #endif
> ++ ]])],[
> + ac_cv_siginterrupt=no
> -+ USE_NON_POSIX_SIGNAL=UnfortunatelyYes
> -+ ]
> ++ NO_RESTARTABLE_SIGNALS=UnfortunatelyYes
> ++ ], [ac_cv_siginterrupt=yes]
> + )
> +])
> -+GIT_CONF_SUBST([USE_NON_POSIX_SIGNAL])
> ++GIT_CONF_SUBST([NO_RESTARTABLE_SIGNALS])
> +
> ## Checks for typedefs, structures, and compiler characteristics.
> AC_MSG_NOTICE([CHECKS for typedefs, structures, and compiler characteristics])
> @@ meson.build: else
> endif
>
> +if compiler.get_define('SA_RESTART', prefix: '#include <signal.h>') == ''
> -+ libgit_c_args += '-DUSE_NON_POSIX_SIGNAL'
> ++ libgit_c_args += '-DNO_RESTARTABLE_SIGNALS'
> +endif
> +
> if not compiler.has_header('sys/select.h')
> -: ----------- > 2: 3f63479119f compat/mingw: allow sigaction(SIGCHLD)
> 2: 05d945aa1e5 ! 3: c66bda461f4 daemon: use sigaction() to install child_handler()
> @@ Commit message
> In a future change, the flags used for processing SIGCHLD will need to
> be updated, which is only possible by using sigaction().
>
> - Factor out the call to set the signal handler and use sigaction instead
> - of signal for the systems that allow that, which has the added benefit
> - of using BSD semantics reliably and therefore not needing the rearming
> - call.
> + Replace signal() with an equivalent invocation of sigaction(), which
> + has the added benefit of using BSD semantics reliably and therefore
> + not needing the rearming call in the signal handler.
>
> Signed-off-by: Carlo Marcelo Arenas Belón <carenas@gmail.com>
>
> ## daemon.c ##
> @@ daemon.c: static void handle(int incoming, struct sockaddr *addr, socklen_t addrlen)
> - add_child(&cld, addr, addrlen);
> - }
> -
> --static void child_handler(int signo UNUSED)
> -+static void child_handler(int signo MAYBE_UNUSED)
> + static void child_handler(int signo UNUSED)
> {
> /*
> - * Otherwise empty handler because systemcalls will get interrupted
> @@ daemon.c: static void handle(int incoming, struct sockaddr *addr, socklen_t addr
> + * upon signal receipt.
> */
> - signal(SIGCHLD, child_handler);
> -+#ifdef USE_NON_POSIX_SIGNAL
> -+ /*
> -+ * SysV needs the handler to be rearmed, but this is known
> -+ * to trigger infinite recursion crashes at least in AIX.
> -+ */
> -+ signal(signo, child_handler);
> -+#endif
> }
>
> static int set_reuse_addr(int sockfd)
> @@ daemon.c: static void socksetup(struct string_list *listen_addr, int listen_port, struct s
> - }
> - }
>
> -+#ifndef USE_NON_POSIX_SIGNAL
> -+
> -+static void set_signal_handler(struct sigaction *psa)
> -+{
> -+ sigemptyset(&psa->sa_mask);
> -+ psa->sa_flags = SA_NOCLDSTOP | SA_RESTART;
> -+ psa->sa_handler = child_handler;
> -+ sigaction(SIGCHLD, psa, NULL);
> -+}
> -+
> -+#else
> -+
> -+static void set_signal_handler(struct sigaction *psa UNUSED)
> -+{
> -+ signal(SIGCHLD, child_handler);
> -+}
> -+
> static int service_loop(struct socketlist *socklist)
> {
> + struct sigaction sa;
> @@ daemon.c: static int service_loop(struct socketlist *socklist)
> }
>
> - signal(SIGCHLD, child_handler);
> -+ set_signal_handler(&sa);
> ++ sigemptyset(&sa.sa_mask);
> ++ sa.sa_flags = SA_NOCLDSTOP | SA_RESTART;
> ++ sa.sa_handler = child_handler;
> ++ sigaction(SIGCHLD, &sa, NULL);
>
> for (;;) {
> check_dead_children();
> 3: b737e0389df ! 4: 851d663be0b daemon: explicitly allow EINTR during poll()
> @@ Commit message
> Signed-off-by: Carlo Marcelo Arenas Belón <carenas@gmail.com>
>
> ## daemon.c ##
> -@@ daemon.c: static void set_signal_handler(struct sigaction *psa)
> - sigaction(SIGCHLD, psa, NULL);
> +@@ daemon.c: static void socksetup(struct string_list *listen_addr, int listen_port, struct s
> + }
> }
>
> ++#ifndef NO_RESTARTABLE_SIGNALS
> ++
> +static void set_sa_restart(struct sigaction *psa, int enable)
> +{
> + if (enable)
> @@ daemon.c: static void set_signal_handler(struct sigaction *psa)
> + sigaction(SIGCHLD, psa, NULL);
> +}
> +
> - #else
> -
> - static void set_signal_handler(struct sigaction *psa UNUSED)
> -@@ daemon.c: static void set_signal_handler(struct sigaction *psa UNUSED)
> - signal(SIGCHLD, child_handler);
> - }
> -
> ++#else
> ++
> +static void set_sa_restart(struct sigaction *psa UNUSED, int enable UNUSED)
> +{
> +}
>
next prev parent reply other threads:[~2025-07-09 14:12 UTC|newest]
Thread overview: 70+ messages / expand[flat|nested] mbox.gz Atom feed top
2025-06-24 14:08 [PATCH 0/3] daemon: explicitly allow EINTR during poll() Carlo Marcelo Arenas Belón via GitGitGadget
2025-06-24 14:08 ` [PATCH 1/3] compat/posix.h: track SA_RESTART fallback Carlo Marcelo Arenas Belón via GitGitGadget
2025-06-24 15:34 ` Junio C Hamano
2025-06-24 16:28 ` Junio C Hamano
2025-06-24 14:08 ` [PATCH 2/3] daemon: use sigaction() to install child_handler() Carlo Marcelo Arenas Belón via GitGitGadget
2025-06-24 15:37 ` Junio C Hamano
2025-06-24 22:29 ` Carlo Marcelo Arenas Belón
2025-06-24 23:27 ` Chris Torek
2025-06-24 16:20 ` Junio C Hamano
2025-06-24 21:28 ` Carlo Marcelo Arenas Belón
2025-06-24 21:32 ` Junio C Hamano
2025-06-24 14:08 ` [PATCH 3/3] daemon: explicitly allow EINTR during poll() Carlo Marcelo Arenas Belón via GitGitGadget
2025-06-24 14:33 ` Carlo Marcelo Arenas Belón
2025-06-24 15:43 ` Junio C Hamano
2025-06-25 7:35 ` [PATCH v2 0/3] " Carlo Marcelo Arenas Belón via GitGitGadget
2025-06-25 7:35 ` [PATCH v2 1/3] compat/posix.h: track SA_RESTART fallback Carlo Marcelo Arenas Belón via GitGitGadget
2025-06-25 16:07 ` Junio C Hamano
2025-06-25 22:24 ` Carlo Marcelo Arenas Belón
2025-06-26 0:33 ` Junio C Hamano
2025-06-26 1:35 ` Carlo Marcelo Arenas Belón
2025-06-26 0:45 ` Junio C Hamano
2025-06-25 7:35 ` [PATCH v2 2/3] daemon: use sigaction() to install child_handler() Carlo Marcelo Arenas Belón via GitGitGadget
2025-06-25 16:06 ` Junio C Hamano
2025-06-25 16:22 ` Junio C Hamano
2025-06-25 7:35 ` [PATCH v2 3/3] daemon: explicitly allow EINTR during poll() Carlo Marcelo Arenas Belón via GitGitGadget
2025-06-25 16:11 ` Junio C Hamano
2025-06-25 8:39 ` [PATCH v2 0/3] " Phillip Wood
2025-06-25 16:24 ` Junio C Hamano
2025-06-25 19:35 ` Phillip Wood
2025-06-26 18:24 ` [RFC PATCH] daemon: add a self pipe to trigger reaping of children Carlo Marcelo Arenas Belón
2025-06-26 21:22 ` [RFC PATCH 0/2] daemon: tracking childs without signals Carlo Marcelo Arenas Belón
2025-06-26 21:22 ` [RFC PATCH 1/2] run-command: add a pipe() write end to childs Carlo Marcelo Arenas Belón
2025-06-26 21:22 ` [RFC PATCH 2/2] daemon: poor man's pidfd like POC Carlo Marcelo Arenas Belón
2025-06-27 8:38 ` [RFC PATCH] daemon: add a self pipe to trigger reaping of children Phillip Wood
2025-06-28 6:19 ` Carlo Marcelo Arenas Belón
2025-07-01 13:38 ` Phillip Wood
2025-06-30 15:16 ` Junio C Hamano
2025-06-25 16:07 ` [PATCH v2 0/3] daemon: explicitly allow EINTR during poll() Junio C Hamano
2025-06-26 8:50 ` Carlo Marcelo Arenas Belón
2025-06-26 8:53 ` [PATCH v3 0/4] " Carlo Marcelo Arenas Belón via GitGitGadget
2025-06-26 8:53 ` [PATCH v3 1/4] compat/posix.h: track SA_RESTART fallback Carlo Marcelo Arenas Belón via GitGitGadget
2025-06-27 1:41 ` Junio C Hamano
2025-06-26 8:53 ` [PATCH v3 2/4] compat/mingw: allow sigaction(SIGCHLD) Carlo Marcelo Arenas Belón via GitGitGadget
2025-06-26 12:52 ` Phillip Wood
2025-06-26 13:15 ` Carlo Marcelo Arenas Belón
2025-06-26 13:56 ` Phillip Wood
2025-06-26 14:58 ` Carlo Marcelo Arenas Belón
2025-06-26 15:19 ` phillip.wood123
2025-06-26 20:09 ` Carlo Marcelo Arenas Belón
2025-07-09 14:13 ` Phillip Wood
2025-07-09 16:36 ` Carlo Marcelo Arenas Belón
2025-06-26 8:53 ` [PATCH v3 3/4] daemon: use sigaction() to install child_handler() Carlo Marcelo Arenas Belón via GitGitGadget
2025-06-26 13:11 ` Phillip Wood
2025-06-26 15:33 ` Junio C Hamano
2025-06-26 16:36 ` Carlo Marcelo Arenas Belón
2025-06-26 18:04 ` Phillip Wood
2025-07-07 22:14 ` Junio C Hamano
2025-06-26 8:53 ` [PATCH v3 4/4] daemon: explicitly allow EINTR during poll() Carlo Marcelo Arenas Belón via GitGitGadget
2025-06-26 13:14 ` Phillip Wood
2025-07-09 14:12 ` Phillip Wood [this message]
2025-07-09 17:04 ` [PATCH v3 0/4] " Carlo Marcelo Arenas Belón
2025-07-10 19:45 ` [PATCH v4 0/2] " Carlo Marcelo Arenas Belón via GitGitGadget
2025-07-10 19:45 ` [PATCH v4 1/2] compat/mingw: allow sigaction(SIGCHLD) Carlo Marcelo Arenas Belón via GitGitGadget
2025-07-10 21:38 ` Eric Sunshine
2025-07-10 19:45 ` [PATCH v4 2/2] daemon: use sigaction() to install child_handler() Carlo Marcelo Arenas Belón via GitGitGadget
2025-07-10 21:26 ` [PATCH v4 0/2] daemon: explicitly allow EINTR during poll() Junio C Hamano
2025-07-10 23:18 ` Carlo Arenas
2025-07-11 13:14 ` Phillip Wood
2025-07-14 21:52 ` Junio C Hamano
2025-07-15 9:29 ` Phillip Wood
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=b1027221-3e17-40d2-b293-4b1625fa095d@gmail.com \
--to=phillip.wood123@gmail.com \
--cc=carenas@gmail.com \
--cc=chris.torek@gmail.com \
--cc=git@vger.kernel.org \
--cc=gitgitgadget@gmail.com \
--cc=phillip.wood@dunelm.org.uk \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).