Zsh Mailing List Archive Messages sorted by: Reverse Date, Date, Thread, Author

Re: Re : Re: Re : [BUG] Crash due to malloc call in signal handler

X-seq: zsh-workers 45083
From: Peter Stephenson <p.stephenson@xxxxxxxxxxx>
To: <zsh-workers@xxxxxxx>, Antoine C. <acalando@xxxxxxx>
Subject: Re: Re : Re: Re : [BUG] Crash due to malloc call in signal handler
Date: Wed, 18 Dec 2019 10:44:57 +0000
Cms-type: 201P
Dkim-filter: OpenDKIM Filter v2.11.0 mailout2.w1.samsung.com 20191218104459euoutp025e3abef9e08ddbc6afd7e747c0245bff~hcUgatuBO2463724637euoutp023
In-reply-to: <1576663298.4536.12.camel@samsung.com>
List-help: <mailto:zsh-workers-help@zsh.org>
List-id: Zsh Workers List <zsh-workers.zsh.org>
List-post: <mailto:zsh-workers@zsh.org>
List-unsubscribe: <mailto:zsh-workers-unsubscribe@zsh.org>
Mailing-list: contact zsh-workers-help@xxxxxxx; run by ezmlm
References: <CGME20191217183216epcas1p1e81fb3dc675bab810e8d29ac0f53242c@epcas1p1.samsung.com> <1548982683.1013827769.1576607530234.JavaMail.root@zimbra62-e11.priv.proxad.net> <1576663298.4536.12.camel@samsung.com>

On Wed, 2019-12-18 at 10:01 +0000, Peter Stephenson wrote:
> OK, the suspect here is the arithmetic code --- it looks like it's
> running unprotected against signals, despite the fact it can set
> variables.  Arithmetic is a quick operation, so hopefully we can block
> fairly high up the stack.  I should get a chance to look later
> (but I don't think this is rocket science from this point on so maybe
> someone will beat me to it).
> 
> pws
> 
> > 
> > #9  0x000055e115ce40f4 in zhandler (sig=17) at signals.c:648
> ...
> > 
> > #23 0x000055e115c7cddf in execarith (state=0x7ffea5b39110, do_exec=0) at exec.c:5111

Yes, it really does look this simple.  All top-level "exec" functions
should be able to queue and unqueue signals without side effects, any
issues being handled lower down, and execarith() is a good deal simpler
than most of the others (which is probably why it never acquired the
protection in the first place).

I'll commit this fairly quickly --- it's obviously needed and in the
event of side effects I'd rather find out sooner than later.

pws

diff --git a/Src/exec.c b/Src/exec.c
index 50027654a..fac095d64 100644
--- a/Src/exec.c
+++ b/Src/exec.c
@@ -5101,6 +5101,7 @@ execarith(Estate state, UNUSED(int do_exec))
     mnumber val = zero_mnumber;
     int htok = 0;
 
+    queue_signals();
     if (isset(XTRACE)) {
 	printprompt4();
 	fprintf(xtrerr, "((");
@@ -5120,6 +5121,8 @@ execarith(Estate state, UNUSED(int do_exec))
 	fprintf(xtrerr, " ))\n");
 	fflush(xtrerr);
     }
+    unqueue_signals();
+
     if (errflag) {
 	errflag &= ~ERRFLAG_ERROR;
 	return 2;

Follow-Ups:
- Re : Re: Re : Re: Re : [BUG] Crash due to malloc call in signal handler
  - From: Antoine C.

References:
- Re: Re : Re: Re : [BUG] Crash due to malloc call in signal handler
  - From: Peter Stephenson

Messages sorted by: Reverse Date, Date, Thread, Author