[Bug libc/12453] New: Broken thread local storage (TLS) initialization

public inbox for glibc-bugs@sourceware.org
help / color / mirror / Atom feed

* [Bug libc/12453] New: Broken thread local storage (TLS) initialization
@ 2011-01-30 15:16 Martin.vGagern at gmx dot net
  2011-01-30 17:25 ` [Bug libc/12453] " Martin.vGagern at gmx dot net
                   ` (9 more replies)
  0 siblings, 10 replies; 11+ messages in thread
From: Martin.vGagern at gmx dot net @ 2011-01-30 15:16 UTC (permalink / raw)
  To: glibc-bugs

http://sourceware.org/bugzilla/show_bug.cgi?id=12453

           Summary: Broken thread local storage (TLS) initialization
           Product: glibc
           Version: 2.12
            Status: NEW
          Severity: critical
          Priority: P2
         Component: libc
        AssignedTo: drepper.fsp@gmail.com
        ReportedBy: Martin.vGagern@gmx.net

Created attachment 5218
  --> http://sourceware.org/bugzilla/attachment.cgi?id=5218
Script reproducing the issue

When dynamically loading a library along with several dependencies, calls to
_dl_add_to_slotinfo and _dl_update_slotinfo can become intermixed. As a
consequence, _dl_update_slotinfo will update the generation counter of the dtv
although not all of the slots belonging to that generation have been added.
Subsequent calls to _dl_add_to_slotinfo will add more slots to the same
generation, for which no storage will be allocated, as the dtv generation
checks will claim no work is necessary. This will lead to uninitialized dtv
entries and will likely cause a SIGSEGV when thread local variables are
accessed.

The attached script, when executed in an empty directory on a GNU/Linux x86_64
system, and probably under other circumstances as well, will demonstrate the
problem. It will print

./demo
&tbaz=(nil)
glibc-tls-bug.sh: line 75:  1752 Segmentation fault      "$@"

where you see that the address of the thread local variable tbaz is NULL, and
the referencing that variable causes a segmentation fault.

-- 
Configure bugmail: http://sourceware.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.

^ permalink raw reply	[flat|nested] 11+ messages in thread

* [Bug libc/12453] Broken thread local storage (TLS) initialization
  2011-01-30 15:16 [Bug libc/12453] New: Broken thread local storage (TLS) initialization Martin.vGagern at gmx dot net
@ 2011-01-30 17:25 ` Martin.vGagern at gmx dot net
  2011-01-30 18:11 ` Martin.vGagern at gmx dot net
                   ` (8 subsequent siblings)
  9 siblings, 0 replies; 11+ messages in thread
From: Martin.vGagern at gmx dot net @ 2011-01-30 17:25 UTC (permalink / raw)
  To: glibc-bugs

http://sourceware.org/bugzilla/show_bug.cgi?id=12453

--- Comment #1 from Martin von Gagern <Martin.vGagern at gmx dot net> 2011-01-30 15:16:39 UTC ---
Created attachment 5219
  --> http://sourceware.org/bugzilla/attachment.cgi?id=5219
Do update_slotinfo after add_to_slotinfo

This patch fixes the issue for me. It should be reasonably safe to apply.

-- 
Configure bugmail: http://sourceware.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.


^ permalink raw reply	[flat|nested] 11+ messages in thread

* [Bug libc/12453] Broken thread local storage (TLS) initialization
  2011-01-30 15:16 [Bug libc/12453] New: Broken thread local storage (TLS) initialization Martin.vGagern at gmx dot net
  2011-01-30 17:25 ` [Bug libc/12453] " Martin.vGagern at gmx dot net
@ 2011-01-30 18:11 ` Martin.vGagern at gmx dot net
  2011-01-30 21:58 ` Martin.vGagern at gmx dot net
                   ` (7 subsequent siblings)
  9 siblings, 0 replies; 11+ messages in thread
From: Martin.vGagern at gmx dot net @ 2011-01-30 18:11 UTC (permalink / raw)
  To: glibc-bugs

http://sourceware.org/bugzilla/show_bug.cgi?id=12453

--- Comment #2 from Martin von Gagern <Martin.vGagern at gmx dot net> 2011-01-30 18:10:54 UTC ---
Cross references with further details:
https://github.com/cschwan/sage-on-gentoo/issues/#issue/40
http://bugs.gentoo.org/show_bug.cgi?id=353224

-- 
Configure bugmail: http://sourceware.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.


^ permalink raw reply	[flat|nested] 11+ messages in thread

* [Bug libc/12453] Broken thread local storage (TLS) initialization
  2011-01-30 15:16 [Bug libc/12453] New: Broken thread local storage (TLS) initialization Martin.vGagern at gmx dot net
  2011-01-30 17:25 ` [Bug libc/12453] " Martin.vGagern at gmx dot net
  2011-01-30 18:11 ` Martin.vGagern at gmx dot net
@ 2011-01-30 21:58 ` Martin.vGagern at gmx dot net
  2011-02-11  9:35 ` Martin.vGagern at gmx dot net
                   ` (6 subsequent siblings)
  9 siblings, 0 replies; 11+ messages in thread
From: Martin.vGagern at gmx dot net @ 2011-01-30 21:58 UTC (permalink / raw)
  To: glibc-bugs

http://sourceware.org/bugzilla/show_bug.cgi?id=12453

Martin von Gagern <Martin.vGagern at gmx dot net> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
   Attachment #5218|application/x-shellscript   |text/plain
          mime type|                            |

-- 
Configure bugmail: http://sourceware.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.


^ permalink raw reply	[flat|nested] 11+ messages in thread

* [Bug libc/12453] Broken thread local storage (TLS) initialization
  2011-01-30 15:16 [Bug libc/12453] New: Broken thread local storage (TLS) initialization Martin.vGagern at gmx dot net
                   ` (2 preceding siblings ...)
  2011-01-30 21:58 ` Martin.vGagern at gmx dot net
@ 2011-02-11  9:35 ` Martin.vGagern at gmx dot net
  2011-04-03  3:09 ` david.kirkby at onetel dot net
                   ` (5 subsequent siblings)
  9 siblings, 0 replies; 11+ messages in thread
From: Martin.vGagern at gmx dot net @ 2011-02-11  9:35 UTC (permalink / raw)
  To: glibc-bugs

http://sourceware.org/bugzilla/show_bug.cgi?id=12453

Martin von Gagern <Martin.vGagern at gmx dot net> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                URL|                            |http://sourceware.org/git/?
                   |                            |p=glibc.git;a=blob;f=elf/dl
                   |                            |-open.c;h=cf8e8cc6715f9f44b
                   |                            |3d5d88ee4cc9b709cb37226;hb=
                   |                            |3a33e487eeb65e2f1f633581c56
                   |                            |bee2c60d0ca43#l417
           See Also|                            |http://bugs.gentoo.org/show
                   |                            |_bug.cgi?id=353224

-- 
Configure bugmail: http://sourceware.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.


^ permalink raw reply	[flat|nested] 11+ messages in thread

* [Bug libc/12453] Broken thread local storage (TLS) initialization
  2011-01-30 15:16 [Bug libc/12453] New: Broken thread local storage (TLS) initialization Martin.vGagern at gmx dot net
                   ` (3 preceding siblings ...)
  2011-02-11  9:35 ` Martin.vGagern at gmx dot net
@ 2011-04-03  3:09 ` david.kirkby at onetel dot net
  2011-04-03  7:28 ` Martin.vGagern at gmx dot net
                   ` (4 subsequent siblings)
  9 siblings, 0 replies; 11+ messages in thread
From: david.kirkby at onetel dot net @ 2011-04-03  3:09 UTC (permalink / raw)
  To: glibc-bugs

http://sourceware.org/bugzilla/show_bug.cgi?id=12453

David Kirkby <david.kirkby at onetel dot net> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |david.kirkby at onetel dot
                   |                            |net

--- Comment #3 from David Kirkby <david.kirkby at onetel dot net> 2011-04-03 03:09:27 UTC ---
I can't seem to run your test program, which I saved as "glibtest"


drkirkby@hawk:~/glibc$ ./glibtest

gcc -Wall -ggdb -O0 -Wl,-rpath,$ORIGIN -fPIC -shared -o ./libbar.so bar.c
gcc -Wall -ggdb -O0 -Wl,-rpath,$ORIGIN -fPIC -shared -o ./libbaz.so baz.c
gcc -Wall -ggdb -O0 -Wl,-rpath,$ORIGIN -fPIC -shared -o ./libfoo.so foo.c -L.
-lbar -lbaz
gcc -Wall -ggdb -O0 -Wl,-rpath,$ORIGIN -o demo demo.c -ldl
./demo
Error loading libfoo.so: ld.so.1: demo: fatal: libbar.so: open failed: No such
file or directory


the library files are created, as I see the following files in the directory

bar.c
baz.c
demo
demo.c
foo.c
glibtest
libbar.so
libbaz.so
libfoo.so

I've got no idea what this ORIGIN is - I myself write scripts as POSIX files,
not bash scripts, so perhaps this is something I don't even have in my version
of bash

drkirkby@hawk:~/glibc$ bash --version
GNU bash, version 4.0.28(1)-release (i386-pc-solaris2.11)
Copyright (C) 2009 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html>

This is free software; you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law

-- 
Configure bugmail: http://sourceware.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.


^ permalink raw reply	[flat|nested] 11+ messages in thread

* [Bug libc/12453] Broken thread local storage (TLS) initialization
  2011-01-30 15:16 [Bug libc/12453] New: Broken thread local storage (TLS) initialization Martin.vGagern at gmx dot net
                   ` (4 preceding siblings ...)
  2011-04-03  3:09 ` david.kirkby at onetel dot net
@ 2011-04-03  7:28 ` Martin.vGagern at gmx dot net
  2011-04-03  8:41 ` Martin.vGagern at gmx dot net
                   ` (3 subsequent siblings)
  9 siblings, 0 replies; 11+ messages in thread
From: Martin.vGagern at gmx dot net @ 2011-04-03  7:28 UTC (permalink / raw)
  To: glibc-bugs

http://sourceware.org/bugzilla/show_bug.cgi?id=12453

--- Comment #4 from Martin von Gagern <Martin.vGagern at gmx dot net> 2011-04-03 07:24:08 UTC ---
(In reply to comment #3)
> I can't seem to run your test program, which I saved as "glibtest"

Strange.

> gcc -Wall -ggdb -O0 -Wl,-rpath,$ORIGIN -o demo demo.c -ldl
> ./demo
> Error loading libfoo.so: ld.so.1: demo:
> fatal: libbar.so: open failed: No such file or directory

OK, seems this relative path thingy doesn't work for you, for some reason.
Maybe try "LD_LIBRARY_PATH=$PWD ./demo"

> I've got no idea what this ORIGIN is - I myself write scripts as POSIX files,
> not bash scripts, so perhaps this is something I don't even have in my version
> of bash

This is nothing magic to the script, but instead some special value accepted by
ld.so. See your ld.so(8) man page, or find it online e.g. at
http://www.kernel.org/doc/man-pages/online/pages/man8/ld.so.8.html

-- 
Configure bugmail: http://sourceware.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.


^ permalink raw reply	[flat|nested] 11+ messages in thread

* [Bug libc/12453] Broken thread local storage (TLS) initialization
  2011-01-30 15:16 [Bug libc/12453] New: Broken thread local storage (TLS) initialization Martin.vGagern at gmx dot net
                   ` (5 preceding siblings ...)
  2011-04-03  7:28 ` Martin.vGagern at gmx dot net
@ 2011-04-03  8:41 ` Martin.vGagern at gmx dot net
  2011-05-15  1:27 ` drepper.fsp at gmail dot com
                   ` (2 subsequent siblings)
  9 siblings, 0 replies; 11+ messages in thread
From: Martin.vGagern at gmx dot net @ 2011-04-03  8:41 UTC (permalink / raw)
  To: glibc-bugs

http://sourceware.org/bugzilla/show_bug.cgi?id=12453

--- Comment #5 from Martin von Gagern <Martin.vGagern at gmx dot net> 2011-04-03 08:41:03 UTC ---
(In reply to comment #4)
> Strange.

Or not so strange, if you are on OpenSolaris, as your recent activity on
related bugs and the bash version message indicates. I guess -rpath=$ORIGIN is
probably specific to the GNU/Linux dynamic linker.

-- 
Configure bugmail: http://sourceware.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.


^ permalink raw reply	[flat|nested] 11+ messages in thread

* [Bug libc/12453] Broken thread local storage (TLS) initialization
  2011-01-30 15:16 [Bug libc/12453] New: Broken thread local storage (TLS) initialization Martin.vGagern at gmx dot net
                   ` (6 preceding siblings ...)
  2011-04-03  8:41 ` Martin.vGagern at gmx dot net
@ 2011-05-15  1:27 ` drepper.fsp at gmail dot com
  2011-05-15  1:33 ` drepper.fsp at gmail dot com
  2014-06-27 13:53 ` fweimer at redhat dot com
  9 siblings, 0 replies; 11+ messages in thread
From: drepper.fsp at gmail dot com @ 2011-05-15  1:27 UTC (permalink / raw)
  To: glibc-bugs

http://sourceware.org/bugzilla/show_bug.cgi?id=12453

Ulrich Drepper <drepper.fsp at gmail dot com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|NEW                         |RESOLVED
         Resolution|                            |FIXED

--- Comment #6 from Ulrich Drepper <drepper.fsp at gmail dot com> 2011-05-15 01:27:00 UTC ---
I've applied a slightly modified version of the patch.

-- 
Configure bugmail: http://sourceware.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.


^ permalink raw reply	[flat|nested] 11+ messages in thread

* [Bug libc/12453] Broken thread local storage (TLS) initialization
  2011-01-30 15:16 [Bug libc/12453] New: Broken thread local storage (TLS) initialization Martin.vGagern at gmx dot net
                   ` (7 preceding siblings ...)
  2011-05-15  1:27 ` drepper.fsp at gmail dot com
@ 2011-05-15  1:33 ` drepper.fsp at gmail dot com
  2014-06-27 13:53 ` fweimer at redhat dot com
  9 siblings, 0 replies; 11+ messages in thread
From: drepper.fsp at gmail dot com @ 2011-05-15  1:33 UTC (permalink / raw)
  To: glibc-bugs

http://sourceware.org/bugzilla/show_bug.cgi?id=12453

Ulrich Drepper <drepper.fsp at gmail dot com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |ppluzhnikov at google dot
                   |                            |com

--- Comment #7 from Ulrich Drepper <drepper.fsp at gmail dot com> 2011-05-15 01:33:07 UTC ---
*** Bug 11952 has been marked as a duplicate of this bug. ***

-- 
Configure bugmail: http://sourceware.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.


^ permalink raw reply	[flat|nested] 11+ messages in thread

* [Bug libc/12453] Broken thread local storage (TLS) initialization
  2011-01-30 15:16 [Bug libc/12453] New: Broken thread local storage (TLS) initialization Martin.vGagern at gmx dot net
                   ` (8 preceding siblings ...)
  2011-05-15  1:33 ` drepper.fsp at gmail dot com
@ 2014-06-27 13:53 ` fweimer at redhat dot com
  9 siblings, 0 replies; 11+ messages in thread
From: fweimer at redhat dot com @ 2014-06-27 13:53 UTC (permalink / raw)
  To: glibc-bugs

https://sourceware.org/bugzilla/show_bug.cgi?id=12453

Florian Weimer <fweimer at redhat dot com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
              Flags|                            |security-

-- 
You are receiving this mail because:
You are on the CC list for the bug.


^ permalink raw reply	[flat|nested] 11+ messages in thread

end of thread, other threads:[~2014-06-27 13:53 UTC | newest]

Thread overview: 11+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2011-01-30 15:16 [Bug libc/12453] New: Broken thread local storage (TLS) initialization Martin.vGagern at gmx dot net
2011-01-30 17:25 ` [Bug libc/12453] " Martin.vGagern at gmx dot net
2011-01-30 18:11 ` Martin.vGagern at gmx dot net
2011-01-30 21:58 ` Martin.vGagern at gmx dot net
2011-02-11  9:35 ` Martin.vGagern at gmx dot net
2011-04-03  3:09 ` david.kirkby at onetel dot net
2011-04-03  7:28 ` Martin.vGagern at gmx dot net
2011-04-03  8:41 ` Martin.vGagern at gmx dot net
2011-05-15  1:27 ` drepper.fsp at gmail dot com
2011-05-15  1:33 ` drepper.fsp at gmail dot com
2014-06-27 13:53 ` fweimer at redhat dot com

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).