Skip to content

runtime: signal handling: sighandler crash due to race with signal.Ignore #20748

New issue
New issue
Open
Open
runtime: signal handling: sighandler crash due to race with signal.Ignore#20748
Labels
NeedsInvestigationSomeone must examine and confirm this is a valid issue and not a duplicate of an existing one.compiler/runtimeIssues related to the Go compiler and/or runtime.
Milestone
 
Backlog
@bcmills

Description

@bcmills
bcmills
opened on Jun 21, 2017 · edited by bcmills

In reviewing @ianlancetaylor's CL 46003 (addressing #14571), I noticed what I believe to be a rare race-condition that could result in unexpected termination of a Go program.

I attempted to write a reproducer for the race in question, which would cause the program to erroneously exit if a _SigKill or _SigThrow signal arrives in between a call to signal.Notify and signal.Ignore for that signal. The symptom I was looking for is a termination with the same signal number (for _SigKill) or a goroutine dump (for _SigThrow).

Unfortunately, I am unable to reproduce the race in question because the program instead crashes with a SIGSEGV in runtime.sigfwd.

sigrace/sigrace.go:

package main

import (
	"os"
	"os/signal"
	"runtime"
	"syscall"
)

func main() {
	signal.Ignore(syscall.SIGHUP)

	go func() {
		runtime.LockOSThread()
		pid := os.Getpid()
		tid := syscall.Gettid()
		for {
			syscall.Tgkill(pid, tid, syscall.SIGHUP)
		}
	}()

	c := make(chan os.Signal, 1)
	for {
		signal.Notify(c, syscall.SIGHUP)
		signal.Ignore(syscall.SIGHUP)
	}
}
$ go version
go version devel +c4e0e81653 Wed Jun 21 15:54:38 2017 +0000 linux/amd64
$ go build sigrace && ./sigrace
Segmentation fault (core dumped)

Investigation with GDB gives the following stack trace:

#0  0x0000000000000001 in ?? ()
#1  0x0000000000452a6d in runtime.sigfwd ()
    at /home/bcmills/go/src/runtime/sys_linux_amd64.s:245
#2  0x000000c420053b18 in ?? ()
#3  0x000000000043b665 in runtime.sigfwdgo (sig=1, info=0xc420053d70, ctx=0xc420053c40, ~r3=false)
    at /home/bcmills/go/src/runtime/signal_unix.go:606
#4  0x000000000043a83b in runtime.sigtrampgo (sig=1, info=0xc420053d70, ctx=0xc420053c40)
    at /home/bcmills/go/src/runtime/signal_unix.go:272
#5  0x0000000000452ac3 in runtime.sigtramp ()
    at /home/bcmills/go/src/runtime/sys_linux_amd64.s:265
#6  0x0000000000452bb0 in ?? ()
    at /home/bcmills/go/src/runtime/sys_linux_amd64.s:349
#7  0x0000000000000000 in ?? ()

The faulting instruction in runtime.sigfwd is the CALL instruction that invokes fwdSig[sig]

(CC @aclements)

Activity

bcmills

bcmills commented on Jun 21, 2017

@bcmills
bcmills
on Jun 21, 2017
ContributorAuthor

If we can fix the SIGSEGV, where I'm going with this reproducer is that I think we'll want to either combine the runtime.sig.ignored and runtime.sig.wanted arrays, or remove the ignored array entirely and use a single bit per signal to indicate "handled or ignored".

ianlancetaylor
added this to the Go1.10 milestone on Jun 21, 2017
bcmills
mentioned this on Oct 30, 2017
aclements

aclements commented on Nov 8, 2017

@aclements
aclements
on Nov 8, 2017
Member

Ping @bcmills, @ianlancetaylor.

bcmills

bcmills commented on Nov 9, 2017

@bcmills
bcmills
on Nov 9, 2017
ContributorAuthor

I don't think I'm going to be able to get to this for 1.10.

aclements

aclements commented on Nov 9, 2017

@aclements
aclements
on Nov 9, 2017
Member

Thanks for the update. Bumping to 1.11.

aclements
modified the milestones: Go1.10, Go1.11 on Nov 9, 2017
bcmills
mentioned this on Apr 26, 2018
odeke-em

odeke-em commented on Jun 11, 2018

@odeke-em
odeke-em
on Jun 11, 2018
Member

How's it going @bcmills? Just a kind ping as we had moved this to Go1.11, perhaps a Go1.12 bump too?

bcmills

bcmills commented on Jun 11, 2018

@bcmills
bcmills
on Jun 11, 2018
ContributorAuthor

Sadly, yes. I think at this point in the cycle any attempt to mess with signal handling will introduce more risk than it eliminates.

bcmills
modified the milestones: Go1.11, Go1.12 on Jun 11, 2018
bcmills
self-assigned this
on Jun 11, 2018
bcmills
modified the milestones: Go1.12, Go1.13 on Nov 28, 2018
bcmills
added
NeedsInvestigationSomeone must examine and confirm this is a valid issue and not a duplicate of an existing one.
on Nov 28, 2018
bcmills
mentioned this on Apr 5, 2019
andybons
modified the milestones: Go1.13, Go1.14 on Jul 8, 2019
rsc
modified the milestones: Go1.14, Backlog on Oct 9, 2019
rsc
unassigned
bcmills
on Jun 23, 2022
gopherbot
added
compiler/runtimeIssues related to the Go compiler and/or runtime.
on Jul 7, 2022
mknyszek
added this to Go Compiler / Runtimeon Jul 7, 2022
mknyszek
moved this to Triage Backlog in Go Compiler / Runtimeon Jul 15, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Metadata

Metadata

Assignees

No one assigned

    Labels

    NeedsInvestigationSomeone must examine and confirm this is a valid issue and not a duplicate of an existing one.compiler/runtimeIssues related to the Go compiler and/or runtime.

    Type

    No type

    Projects

    Go Compiler / Runtime

    Status

    Triage Backlog

    Milestone

    Relationships

    None yet

      Development

      No branches or pull requests

        Participants

        @rsc@andybons@aclements@ianlancetaylor@odeke-em

        Issue actions
          runtime: signal handling: sighandler crash due to race with signal.Ignore · Issue #20748 · golang/go