NetBSD Problem Report #52634
From campbell@mumble.net Fri Oct 20 15:59:32 2017
Return-Path: <campbell@mumble.net>
Received: from mail.netbsd.org (mail.netbsd.org [199.233.217.200])
(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
(Client CN "mail.NetBSD.org", Issuer "mail.NetBSD.org CA" (not verified))
by mollari.NetBSD.org (Postfix) with ESMTPS id 5A6A47A183
for <gnats-bugs@gnats.NetBSD.org>; Fri, 20 Oct 2017 15:59:32 +0000 (UTC)
Message-Id: <20171020160227.9022460A4B@jupiter.mumble.net>
Date: Fri, 20 Oct 2017 16:02:27 +0000 (UTC)
From: Taylor R Campbell <riastradh@NetBSD.org>
Reply-To: Taylor R Campbell <riastradh@NetBSD.org>
To: gnats-bugs@gnats.NetBSD.org
Subject: possible unhandled spurious wakeup in posix_spawn
X-Send-Pr-Version: 3.95
>Number: 52634
>Category: kern
>Synopsis: possible unhandled spurious wakeup in posix_spawn
>Confidential: no
>Severity: serious
>Priority: medium
>Responsible: martin
>State: open
>Class: sw-bug
>Submitter-Id: net
>Arrival-Date: Fri Oct 20 16:00:00 +0000 2017
>Last-Modified: Fri Oct 20 16:03:05 +0000 2017
>Originator: Taylor R Campbell <riastradh@NetBSD.org>
>Release: NetBSD-current
>Organization:
The NetBSD Foundation
>Environment:
any
>Description:
do_posix_spawn calls cv_wait without looping on a test for a
condition, which may cause it to return before the child is
ready -- and potentially even to read and return an
uninitialized error -- in the case of a spurious wakeup:
https://nxr.netbsd.org/xref/src/sys/kern/kern_exec.c?r=1.448#2605
>How-To-Repeat:
Code inspection.
>Fix:
Yes, please!
>Release-Note:
>Audit-Trail:
Responsible-Changed-From-To: kern-bug-people->martin
Responsible-Changed-By: martin@NetBSD.org
Responsible-Changed-When: Fri, 20 Oct 2017 16:03:05 +0000
Responsible-Changed-Why:
take
>Unformatted:
(Contact us)
$NetBSD: query-full-pr,v 1.39 2013/11/01 18:47:49 spz Exp $
$NetBSD: gnats_config.sh,v 1.8 2006/05/07 09:23:38 tsutsui Exp $
Copyright © 1994-2014
The NetBSD Foundation, Inc. ALL RIGHTS RESERVED.