Signal restarting happing multiple time in do_signal

public inbox for linux-arch@vger.kernel.org
 help / color / mirror / Atom feed

From: Ralf Baechle <ralf@linux-mips.org>
To: linux-arch@vger.kernel.org
Subject: Signal restarting happing multiple time in do_signal
Date: Tue, 8 Aug 2006 12:04:37 +0100	[thread overview]
Message-ID: <20060808110437.GB18770@linux-mips.org> (raw)

In the MIPS entry.S the symbol resume_userspace to the call to
do_notify_resume form a loop through which the kernel will iterate as
long as work is pending.  If we iterate through this loop more than once
with no signal pending for at least one but the last iteration we will
perform the syscall restarting multiple times resulting in a syscall
return prior to the the syscall instruction in userspace because the
return program counter will be adjusted several times by:

        regs->regs[7] = regs->regs[26];
        regs->cp0_epc -= 8;

resulting in return to userspace at a too low address.  On MIPS this often
happens to be a stackpointer adjustment but in many cases this may also
just be a harmless instruction such as reloading the syscall number so
may go unnoticed.

We were able to trigger this when debugging a multithreaded programs.
At least i386 uses virtually identical algorithms so I think is likely
to have the same issue.

The fix in case of MIPS is trivial:

diff --git a/arch/mips/kernel/signal.c b/arch/mips/kernel/signal.c
index 73f8aad..8676055 100644
--- a/arch/mips/kernel/signal.c
+++ b/arch/mips/kernel/signal.c
@@ -465,6 +464,7 @@ void do_signal(struct pt_regs *regs)
 			regs->regs[7] = regs->regs[26];
 			regs->cp0_epc -= 4;
 		}
+		regs->regs[0] = 0;	/* Don't deal with this again.  */
 	}

 	/*

  Ralf

next             reply	other threads:[~2006-08-08 11:04 UTC|newest]

Thread overview: 4+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2006-08-08 11:04 Ralf Baechle [this message]
2006-08-08 22:25 ` Signal restarting happing multiple time in do_signal David Miller
2006-08-09  2:26   ` Andi Kleen
2006-08-11  8:12 ` Heiko Carstens

find likely ancestor, descendant, or conflicting patches for this message:
( dfblob:73f8aad dfblob:8676055 )
 OR (
bs:"Signal restarting happing multiple time in do_signal" )
	(help)

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=20060808110437.GB18770@linux-mips.org \
    --to=ralf@linux-mips.org \
    --cc=linux-arch@vger.kernel.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox