This is an archive of the discontinued LLVM Phabricator instance.

Differential D13056

Fix race condition during process detach
ClosedPublic

Authored by labath on Sep 22 2015, 6:48 AM.

Details

Reviewers
clayborg
jingham
Commits
rG84f6f277ac79: Fix race condition during process detach
rLLDB248371: Fix race condition during process detach
rL248371: Fix race condition during process detach
Summary

The following situation occured in TestAttachResume:

The inferior was stoped at a breakpoint and we did a continue, immediately followed by a detach.
Since there was a trap instruction under the IP, the continue did a step-over-breakpoint before
resuming the inferior for real. In some cases, the detach command was executed between these two
events (after the step-over stop, but before continue). Here, public state was running, but
private state was stopped. This caused a problem because HaltForDestroyOrDetach was checking the
public state to see whether it needs to stop the process (call Halt()), but Halt() was checking
the private state and concluded that there is nothing for it to do.

Solution: Instead of Halt() call SendAsyncInterrupt(), which will then cause Halt() to be
executed in the context of the private state thread. I also rename HaltForDestroyOrDetach to
reflect it does not call halt directly.

Diff Detail

Repository
rL LLVM

Event Timeline

labath updated this revision to Diff 35371.Sep 22 2015, 6:48 AM
labath updated this revision to Diff 35372.
labath retitled this revision from to Fix race condition during process detach.
labath updated this object.
labath added reviewers: jingham, clayborg.
labath added a subscriber: lldb-commits.

remove some binaries that managed to sneak in

KLapshin added a subscriber: KLapshin.Sep 22 2015, 8:17 AM
clayborg accepted this revision.Sep 22 2015, 9:28 AM
clayborg edited edge metadata.
This revision is now accepted and ready to land.Sep 22 2015, 9:28 AM
KLapshin added a comment.Sep 22 2015, 10:36 AM

See http://reviews.llvm.org/D12968 also - fix for missed hijacked listener set in Process::HaltForDestroyOrDetach()

Closed by commit rL248371: Fix race condition during process detach (authored by labath). · Explain WhySep 23 2015, 3:18 AM
This revision was automatically updated to reflect the committed changes.
KLapshin added a child revision: D12968: Fix for lldb-mi crash in Listener code if -exec-abort MI command was invoked without getting process stopped.Sep 23 2015, 9:56 AM
ovyalov added a subscriber: ovyalov.Sep 25 2015, 9:39 PM

It looks like this CL is introducing additional latency when destroying process - I noticed 10 seconds delay when destroying Android process and got logs for code with this CL and without:

1443231085.125153000 Process::StopForDestroyOrDetach() About to stop.
1443231085.125225000 Process::WaitForProcessToStop (timeout = 0x7fa9fb5fab28)
1443231085.125243000 Process::WaitForStateChangedEvents (timeout = 0x7fa9fb5fab28, event_sp)...
1443231085.125284000 Process::RunPrivateStateThread (arg = 0x7fa9ec38d470, pid = 20579) woke up with an interrupt - Halting.
1443231085.137527000 Process::SetPrivateState (stopped)
1443231085.137569000 Process::SetPrivateState (stopped) stop_id = 13
1443231085.137646000 Process::WaitForEventsPrivate (timeout = (nil), event_sp)...
1443231085.139090000 Process::ShouldBroadcastEvent (0x7fa9e4003a10) stopped due to an interrupt, state: stopped
1443231085.139159000 Process::ShouldBroadcastEvent (0x7fa9e4003a10) => new state: stopped, last broadcast state: stopped - YES
1443231085.139166000 Process::HandlePrivateEvent (pid = 20579) broadcasting new state stopped (old state running) to public
1443231085.139184000 Process::WaitForEventsPrivate (timeout = (nil), event_sp)...
1443231085.139267000 Process::SetPublicState (state = stopped, restarted = 0)
1443231085.139336000 Process::SetPublicState (stopped) -- unlocking run lock
1443231095.125328000 Process::WaitForStateChangedEvents (timeout = 0x7fa9fb5fab28, event_sp) => invalid
1443231095.125507000 Process::StopForDestroyOrDetach() failed to stop, state is: invalid

1443231549.351362000 Process::HaltForDestroyOrDetach() About to halt.
1443231549.364460000 Process::SetPrivateState (stopped)
1443231549.364475000 Process::SetPrivateState (stopped) stop_id = 13
1443231549.364499000 Process::WaitForProcessToStop (timeout = 0x7f4f34ff6b18)
1443231549.364508000 Process::WaitForStateChangedEvents (timeout = 0x7f4f34ff6b18, event_sp)...
1443231549.364973000 Process::ShouldBroadcastEvent (0x7f4f1c002150) stopped due to an interrupt, state: stopped
1443231549.365040000 Process::ShouldBroadcastEvent (0x7f4f1c002150) => new state: stopped, last broadcast state: stopped - YES
1443231549.365046000 Process::HandlePrivateEvent (pid = 20768) broadcasting new state stopped (old state running) to public
1443231549.365062000 Process::WaitForEventsPrivate (timeout = (nil), event_sp)...
1443231549.365095000 Process::SetPublicState (state = stopped, restarted = 0)
1443231549.365117000 Process::SetPublicState (stopped) -- unlocking run lock
1443231550.364602000 Process::WaitForStateChangedEvents (timeout = 0x7f4f34ff6b18, event_sp) => invalid
1443231550.364682000 Process::HaltForDestroyOrDetach() Halt failed to stop, state is: invalid

So, I believe there is still a problem with stopped state delivery within WaitForProcessToStop which should be fixed in long-term. As quick workaround we can either revert this CL or reduce timeout to avoid 10 second delay upon process termination.

labath added a comment.Sep 28 2015, 2:40 AM

I have reverted this for now. This fix is not complete without D12968.

labath mentioned this in D12968: Fix for lldb-mi crash in Listener code if -exec-abort MI command was invoked without getting process stopped.Oct 7 2015, 8:48 AM

Revision Contents

PathSize
lldb/
trunk/
include/
lldb/
Target/
2 lines
source/
Target/
74 lines
test/
functionalities/
attach_resume/
1 line

Diff 35476

lldb/trunk/include/lldb/Target/Process.h

Show First 20 LinesShow All 3,473 Lines▼ Show 20 Linesprotected:
bool bool
ProcessIOHandlerExists () const ProcessIOHandlerExists () const
{ {
return static_cast<bool>(m_process_input_reader); return static_cast<bool>(m_process_input_reader);
} }
Error Error
HaltForDestroyOrDetach(lldb::EventSP &exit_event_sp); StopForDestroyOrDetach(lldb::EventSP &exit_event_sp);
bool bool
StateChangedIsExternallyHijacked(); StateChangedIsExternallyHijacked();
void void
LoadOperatingSystemPlugin(bool flush); LoadOperatingSystemPlugin(bool flush);
private: private:
Show All 11 Lines

lldb/trunk/source/Target/Process.cpp

Show First 20 LinesShow All 3,910 Lines▼ Show 20 LinesProcess::Halt (bool clear_thread_plans)
// correctly setting the state. // correctly setting the state.
if (event_sp) if (event_sp)
m_private_state_broadcaster.BroadcastEvent(event_sp); m_private_state_broadcaster.BroadcastEvent(event_sp);
return error; return error;
} }
Error Error
Process::HaltForDestroyOrDetach(lldb::EventSP &exit_event_sp) Process::StopForDestroyOrDetach(lldb::EventSP &exit_event_sp)
{ {
Error error; Error error;
if (m_public_state.GetValue() == eStateRunning) if (m_public_state.GetValue() == eStateRunning)
{ {
Log *log(lldb_private::GetLogIfAllCategoriesSet (LIBLLDB_LOG_PROCESS)); Log *log(lldb_private::GetLogIfAllCategoriesSet (LIBLLDB_LOG_PROCESS));
if (log) if (log)
log->Printf("Process::%s() About to halt.", __FUNCTION__); log->Printf("Process::%s() About to stop.", __FUNCTION__);
error = Halt();
if (error.Success()) SendAsyncInterrupt();
{
// Consume the halt event. // Consume the interrupt event.
TimeValue timeout (TimeValue::Now()); TimeValue timeout (TimeValue::Now());
timeout.OffsetWithSeconds(1); timeout.OffsetWithSeconds(10);
StateType state = WaitForProcessToStop (&timeout, &exit_event_sp); StateType state = WaitForProcessToStop (&timeout, &exit_event_sp);
// If the process exited while we were waiting for it to stop, put the exited event into // If the process exited while we were waiting for it to stop, put the exited event into
// the shared pointer passed in and return. Our caller doesn't need to do anything else, since // the shared pointer passed in and return. Our caller doesn't need to do anything else, since
// they don't have a process anymore... // they don't have a process anymore...
if (state == eStateExited || m_private_state.GetValue() == eStateExited) if (state == eStateExited || m_private_state.GetValue() == eStateExited)
{ {
if (log) if (log)
log->Printf("Process::HaltForDestroyOrDetach() Process exited while waiting to Halt."); log->Printf("Process::%s() Process exited while waiting to stop.", __FUNCTION__);
return error; return error;
} }
else else
exit_event_sp.reset(); // It is ok to consume any non-exit stop events exit_event_sp.reset(); // It is ok to consume any non-exit stop events
if (state != eStateStopped) if (state != eStateStopped)
{ {
if (log) if (log)
log->Printf("Process::HaltForDestroyOrDetach() Halt failed to stop, state is: %s", StateAsCString(state)); log->Printf("Process::%s() failed to stop, state is: %s", __FUNCTION__, StateAsCString(state));
// If we really couldn't stop the process then we should just error out here, but if the // If we really couldn't stop the process then we should just error out here, but if the
// lower levels just bobbled sending the event and we really are stopped, then continue on. // lower levels just bobbled sending the event and we really are stopped, then continue on.
StateType private_state = m_private_state.GetValue(); StateType private_state = m_private_state.GetValue();
if (private_state != eStateStopped) if (private_state != eStateStopped)
{ {
return error; return error;
} }
} }
} }
else
{
if (log)
log->Printf("Process::HaltForDestroyOrDetach() Halt got error: %s", error.AsCString());
}
}
return error; return error;
} }
Error Error
Process::Detach (bool keep_stopped) Process::Detach (bool keep_stopped)
{ {
EventSP exit_event_sp; EventSP exit_event_sp;
Error error; Error error;
m_destroy_in_process = true; m_destroy_in_process = true;
error = WillDetach(); error = WillDetach();
if (error.Success()) if (error.Success())
{ {
if (DetachRequiresHalt()) if (DetachRequiresHalt())
{ {
error = HaltForDestroyOrDetach (exit_event_sp); error = StopForDestroyOrDetach (exit_event_sp);
if (!error.Success()) if (!error.Success())
{ {
m_destroy_in_process = false; m_destroy_in_process = false;
return error; return error;
} }
else if (exit_event_sp) else if (exit_event_sp)
{ {
// We shouldn't need to do anything else here. There's no process left to detach from... // We shouldn't need to do anything else here. There's no process left to detach from...
▲ Show 20 LinesShow All 57 Lines▼ Show 20 LinesProcess::Destroy (bool force_kill)
m_destroy_in_process = true; m_destroy_in_process = true;
Error error (WillDestroy()); Error error (WillDestroy());
if (error.Success()) if (error.Success())
{ {
EventSP exit_event_sp; EventSP exit_event_sp;
if (DestroyRequiresHalt()) if (DestroyRequiresHalt())
{ {
error = HaltForDestroyOrDetach(exit_event_sp); error = StopForDestroyOrDetach(exit_event_sp);
} }
if (m_public_state.GetValue() != eStateRunning) if (m_public_state.GetValue() != eStateRunning)
{ {
// Ditch all thread plans, and remove all our breakpoints: in case we have to restart the target to // Ditch all thread plans, and remove all our breakpoints: in case we have to restart the target to
// kill it, we don't want it hitting a breakpoint... // kill it, we don't want it hitting a breakpoint...
// Only do this if we've stopped, however, since if we didn't manage to halt it above, then // Only do this if we've stopped, however, since if we didn't manage to halt it above, then
// we're not going to have much luck doing this now. // we're not going to have much luck doing this now.
▲ Show 20 LinesShow All 1,160 Lines▼ Show 20 Lines#ifndef _WIN32
{ {
switch (ch) switch (ch)
{ {
case 'q': case 'q':
SetIsDone(true); SetIsDone(true);
break; break;
case 'i': case 'i':
if (StateIsRunningState(m_process->GetState())) if (StateIsRunningState(m_process->GetState()))
m_process->Halt(); m_process->SendAsyncInterrupt();
break; break;
} }
} }
} }
} }
} }
#endif #endif
terminal_state.Restore(); terminal_state.Restore();
} }
void void
Cancel () override Cancel () override
{ {
char ch = 'q'; // Send 'q' for quit char ch = 'q'; // Send 'q' for quit
size_t bytes_written = 0; size_t bytes_written = 0;
m_pipe.Write(&ch, 1, bytes_written); m_pipe.Write(&ch, 1, bytes_written);
} }
bool bool
Interrupt () override Interrupt () override
{ {
// Do only things that are safe to do in an interrupt context (like in // Do only things that are safe to do in an interrupt context (like in
// a SIGINT handler), like write 1 byte to a file descriptor. This will // a SIGINT handler), like write 1 byte to a file descriptor. This will
// interrupt the IOHandlerProcessSTDIO::Run() and we can look at the byte // interrupt the IOHandlerProcessSTDIO::Run() and we can look at the byte
// that was written to the pipe and then call m_process->Halt() from a // that was written to the pipe and then call m_process->SendAsyncInterrupt()
// much safer location in code. // from a much safer location in code.
if (m_active) if (m_active)
{ {
char ch = 'i'; // Send 'i' for interrupt char ch = 'i'; // Send 'i' for interrupt
size_t bytes_written = 0; size_t bytes_written = 0;
Error result = m_pipe.Write(&ch, 1, bytes_written); Error result = m_pipe.Write(&ch, 1, bytes_written);
return result.Success(); return result.Success();
} }
else else
▲ Show 20 LinesShow All 1,385 LinesShow Last 20 Lines

lldb/trunk/test/functionalities/attach_resume/TestAttachResume.py

Show All 9 Lines
exe_name = "AttachResume" # Must match Makefile exe_name = "AttachResume" # Must match Makefile
class AttachResumeTestCase(TestBase): class AttachResumeTestCase(TestBase):
mydir = TestBase.compute_mydir(__file__) mydir = TestBase.compute_mydir(__file__)
@expectedFailureFreeBSD('llvm.org/pr19310') @expectedFailureFreeBSD('llvm.org/pr19310')
@expectedFlakeyLinux('llvm.org/pr19310')
@expectedFailureWindows("llvm.org/pr24778") @expectedFailureWindows("llvm.org/pr24778")
@skipIfRemote @skipIfRemote
@dwarf_test @dwarf_test
def test_attach_continue_interrupt_detach(self): def test_attach_continue_interrupt_detach(self):
"""Test attach/continue/interrupt/detach""" """Test attach/continue/interrupt/detach"""
self.buildDwarf() self.buildDwarf()
self.process_attach_continue_interrupt_detach() self.process_attach_continue_interrupt_detach()
▲ Show 20 LinesShow All 50 LinesShow Last 20 Lines