Arfrever Frehtes Taifersar Arahesis opened an issue in Python bug tracker: http://bugs.python.org/issue11915 But the issue comes from sandbox, not from Python (from ctypes.find_util()): subprocess.Popen(['ldconfig', '-p'], stdout=subprocess.PIPE) hangs in sandbox. The parent process hangs on reading a pipe used to transfer an exception from the child process. The child process is supposed to close this pipe at exec(). The child process hangs before calling execve() syscall, or it doesn't close the pipe on execve(). sandbox_exec_bug.c+static.c demonstrates the bug. It's a testcase extracted from the Python source code and rewritten in C. The parent process waits on the error pipe, which is supposed to be closed quickly (on child exec). The parent is supposed to read the output pipe just when the error pipe is closed. The child hangs on writing into the output pipe because it is full. Reproducible: Always Steps to Reproduce: 1. gcc sandbox_exec_bug.c -o sandbox_exec_bug 2. gcc -static static.c -o static 3. sandbox ./sandbox_exec_bug Actual Results: It hangs. It doesn't hang if static.c is not compiled as a static binary. Expected Results: Should finish quickly (less than one second). sandbox traces: trace_main tracing: ./static TRACE (pid=10377):trace_main: parent waiting for child (pid=10378) to signal TRACE (pid=10378):trace_main: child setting up ... TRACE (pid=10377):trace_child_signal: got sig SIGCHLD(17): code:CLD_TRAPPED(4) status:SIGSTOP(19) TRACE (pid=10377):trace_child_signal: got sig SIGCHLD(17): code:CLD_TRAPPED(4) status:SIGCONT(18) TRACE (pid=10377):trace_loop: >IDK:62TRACE (pid=10377):trace_child_signal: got sig SIGCHLD(17): code:CLD_TRAPPED(4) status:SIGTRAP(5) (...pre-exec...) = ... TRACE (pid=10377):trace_child_signal: got sig SIGCHLD(17): code:CLD_TRAPPED(4) status:SIGTRAP(5) TRACE (pid=10377):trace_loop: >IDK:11TRACE (pid=10377):trace_child_signal: got sig SIGCHLD(17): code:CLD_TRAPPED(4) status:SIGTRAP(5) (...pre-exec...) = ... TRACE (pid=10377):trace_child_signal: got sig SIGCHLD(17): code:CLD_TRAPPED(4) status:SIGTRAP(5) TRACE (pid=10377):trace_loop: >IDK:3TRACE (pid=10377):trace_child_signal: got sig SIGCHLD(17): code:CLD_TRAPPED(4) status:SIGTRAP(5) (...pre-exec...) = ... TRACE (pid=10377):trace_child_signal: got sig SIGCHLD(17): code:CLD_TRAPPED(4) status:SIGTRAP(5) = 0 TRACE (pid=10377):trace_child_signal: got sig SIGCHLD(17): code:CLD_TRAPPED(4) status:SIGTRAP(5) = 0 TRACE (pid=10377):trace_child_signal: got sig SIGCHLD(17): code:CLD_TRAPPED(4) status:SIGTRAP(5) = -1 (errno: 38: Function not implemented) TRACE (pid=10377):trace_child_signal: got sig SIGCHLD(17): code:CLD_TRAPPED(4) status:SIGTRAP(5) = 0 TRACE (pid=10377):trace_child_signal: got sig SIGCHLD(17): code:CLD_TRAPPED(4) status:SIGTRAP(5) = -1 (errno: 38: Function not implemented) TRACE (pid=10377):trace_child_signal: got sig SIGCHLD(17): code:CLD_TRAPPED(4) status:SIGTRAP(5) = 36896768 TRACE (pid=10377):trace_child_signal: got sig SIGCHLD(17): code:CLD_TRAPPED(4) status:SIGTRAP(5) = -1 (errno: 38: Function not implemented) TRACE (pid=10377):trace_child_signal: got sig SIGCHLD(17): code:CLD_TRAPPED(4) status:SIGTRAP(5) = 36901248 TRACE (pid=10377):trace_child_signal: got sig SIGCHLD(17): code:CLD_TRAPPED(4) status:SIGTRAP(5) = -1 (errno: 38: Function not implemented) TRACE (pid=10377):trace_child_signal: got sig SIGCHLD(17): code:CLD_TRAPPED(4) status:SIGTRAP(5) = 0 TRACE (pid=10377):trace_child_signal: got sig SIGCHLD(17): code:CLD_TRAPPED(4) status:SIGTRAP(5) = -1 (errno: 38: Function not implemented) TRACE (pid=10377):trace_child_signal: got sig SIGCHLD(17): code:CLD_TRAPPED(4) status:SIGTRAP(5) = 37036416 TRACE (pid=10377):trace_child_signal: got sig SIGCHLD(17): code:CLD_TRAPPED(4) status:SIGTRAP(5) = -1 (errno: 38: Function not implemented) TRACE (pid=10377):trace_child_signal: got sig SIGCHLD(17): code:CLD_TRAPPED(4) status:SIGTRAP(5) = 37040128 TRACE (pid=10377):trace_child_signal: got sig SIGCHLD(17): code:CLD_TRAPPED(4) status:SIGTRAP(5) = -1 (errno: 38: Function not implemented) TRACE (pid=10377):trace_child_signal: got sig SIGCHLD(17): code:CLD_TRAPPED(4) status:SIGTRAP(5) = 1264893952 TRACE (pid=10377):trace_child_signal: got sig SIGCHLD(17): code:CLD_TRAPPED(4) status:SIGTRAP(5) = -1 (errno: 38: Function not implemented) -- I produces the trace on Debian Sid.
Created attachment 271177 [details] Testcase to demonstrate the bug (require static.c)
Created attachment 271179 [details] Dummy static binary writing 1 MB into stdout (used by sandbox_exec_bug.c)
this boils down to the forked parent that ptraces the child not closing all of its fd's. so the parent has an open copy of the pipe still. having the parent close all of its fd's fixes this test (nice debugging work btw). i'll need to rework the logic so that sandbox itself doesn't need any fd's (it currently utilizes stderr for logging), and then the parent should be able to detach itself from all fd's.
i've got this fixed locally ... just need to iron out the debug fallout (current code writes to stderr), and it should be good to go
@python: Arfrever informs me that this bug affects the test suite of python-3.3.0. FEATURES="test -sandbox -usersandbox" is a workaround.
(In reply to comment #5) > @python: Arfrever informs me that this bug affects the test suite of > python-3.3.0. FEATURES="test -sandbox -usersandbox" is a workaround. It also affects portage test cases after recent ctypes additions in the master branch. This triggers it: sandbox python3.3 pym/portage/tests/runTests \ pym/portage/tests/emerge/test_simple.py It hands in popen while running ldconfig -p.
This is blocking python3.3 from being unmasked, so it would be nice to have a fix for this.
*** Bug 452796 has been marked as a duplicate of this bug. ***
vapier, can you please move on this? There's a bunch of stuff blocked on this, so it would be nice if you can release your fix.
sandbox-2.6-r1 has a backport of the fix
