From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <sourceware-bugzilla@sourceware.org>
Received: by sourceware.org (Postfix, from userid 48)
 id 69D91388C00C; Wed, 10 Jun 2020 11:20:15 +0000 (GMT)
DKIM-Filter: OpenDKIM Filter v2.11.0 sourceware.org 69D91388C00C
From: "wuxu.wu at huawei dot com" <sourceware-bugzilla@sourceware.org>
To: glibc-bugs@sourceware.org
Subject: [Bug nptl/26104] New: New forked process __reclaim_stacks endless loop
Date: Wed, 10 Jun 2020 11:20:15 +0000
X-Bugzilla-Reason: CC
X-Bugzilla-Type: new
X-Bugzilla-Watch-Reason: None
X-Bugzilla-Product: glibc
X-Bugzilla-Component: nptl
X-Bugzilla-Version: unspecified
X-Bugzilla-Keywords: 
X-Bugzilla-Severity: normal
X-Bugzilla-Who: wuxu.wu at huawei dot com
X-Bugzilla-Status: UNCONFIRMED
X-Bugzilla-Resolution: 
X-Bugzilla-Priority: P2
X-Bugzilla-Assigned-To: unassigned at sourceware dot org
X-Bugzilla-Target-Milestone: ---
X-Bugzilla-Flags: 
X-Bugzilla-Changed-Fields: bug_id short_desc product version bug_status
 bug_severity priority component assigned_to reporter cc target_milestone
Message-ID: <bug-26104-131@http.sourceware.org/bugzilla/>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
X-Bugzilla-URL: http://sourceware.org/bugzilla/
Auto-Submitted: auto-generated
MIME-Version: 1.0
X-BeenThere: glibc-bugs@sourceware.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Glibc-bugs mailing list <glibc-bugs.sourceware.org>
List-Unsubscribe: <http://sourceware.org/mailman/options/glibc-bugs>,
 <mailto:glibc-bugs-request@sourceware.org?subject=unsubscribe>
List-Archive: <https://sourceware.org/pipermail/glibc-bugs/>
List-Help: <mailto:glibc-bugs-request@sourceware.org?subject=help>
List-Subscribe: <http://sourceware.org/mailman/listinfo/glibc-bugs>,
 <mailto:glibc-bugs-request@sourceware.org?subject=subscribe>
X-List-Received-Date: Wed, 10 Jun 2020 11:20:15 -0000

https://sourceware.org/bugzilla/show_bug.cgi?id=3D26104

            Bug ID: 26104
           Summary: New forked process __reclaim_stacks endless loop
           Product: glibc
           Version: unspecified
            Status: UNCONFIRMED
          Severity: normal
          Priority: P2
         Component: nptl
          Assignee: unassigned at sourceware dot org
          Reporter: wuxu.wu at huawei dot com
                CC: drepper.fsp at gmail dot com
  Target Milestone: ---

Hello, there is a endless loop in __reclaim_stacks(traverse stack_cache
double-link list):

code=EF=BC=9A
  /* Reset the PIDs in any cached stacks.  */
  list_for_each (runp, &stack_cache)
    {
      struct pthread *curp =3D list_entry (runp, struct pthread, list);
      curp->pid =3D self->pid;
    }

call stack=EF=BC=9A
        root@cn-north-4b-CloudDataCompassSurfer-010077236019 ~]# gstack 720=
00
        #0  0x00007fd93f0ff3ad in __reclaim_stacks () from
/lib64/libpthread.so.0
        #1  0x00007fd93ebecebe in fork () from /lib64/libc.so.6
        #2  0x000056016a453d1e in monitor_popen ()
        #3  0x000056016a4590fd in ?? ()
        #4  0x000056016a459285 in ?? ()
        #5  0x00007fd93f0ffdf5 in start_thread () from /lib64/libpthread.so=
.0
        #6  0x00007fd93ec2648d in clone () from /lib64/libc.so.6


when cache_stack has only one node, but cache_stack->next pointer is error;=
 I
think it's a address freed by fathor process, because it's a normal address=
 and
damaged with 0x11940(72000 tid of son process) and the pointer not in both =
maps

(gdb) p stack_cache
$1 =3D {next =3D 0x11940177fe9c0, prev =3D 0x7fd9177fe9c0}
(gdb) p stack_cache.next
$2 =3D (struct list_head *) 0x11940177fe9c0
(gdb) p stack_cache.next->next
Cannot access memory at address 0x11940177fe9c0=20=20
//0x11940177fe9c0(0x7fd9177fe9c0)


[root@cn-north-4b-CloudDataCompassSurfer-010077236019 ~]# ps -efl | grep sy=
smo
1 S root       5530      1  0  80   0 - 286005 hrtime Apr11 ?       00:35:27
/usr/bin/sysmonitor --daemon
0 S root       5834   5530  0  80   0 - 32480 poll_s Apr11 ?        00:00:00
python /usr/libexec/sysmonitor/clocktransition.py
1 R root      31897   5530 99  80   0 - 286005 -     May07 ?        24-23:4=
5:49
/usr/bin/sysmonitor --daemon
1 R root      72000   5530 99  80   0 - 286005 -     May04 ?        27-15:0=
9:41
/usr/bin/sysmonitor --daemon
0 S root     121908 121213  0  80   0 - 28182 pipe_w 13:16 pts/0    00:00:00
grep --color=3Dauto sysmo
[root@cn-north-4b-CloudDataCompassSurfer-010077236019 ~]# cat /proc/5530/ma=
ps
56016a44f000-56016a46c000 r-xp 00000000 fd:00 277411=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/bin/sysmonitor
56016a66b000-56016a66c000 r--p 0001c000 fd:00 277411=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/bin/sysmonitor
56016a66c000-56016a66e000 rw-p 0001d000 fd:00 277411=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/bin/sysmonitor
56016a66e000-56016a6ed000 rw-p 00000000 00:00 0
56016b0ff000-56016b120000 rw-p 00000000 00:00 0                          [h=
eap]
7fd8f0000000-7fd8f0021000 rw-p 00000000 00:00 0
7fd8f0021000-7fd8f4000000 ---p 00000000 00:00 0
7fd8f8000000-7fd8f8021000 rw-p 00000000 00:00 0
7fd8f8021000-7fd8fc000000 ---p 00000000 00:00 0
7fd8fc000000-7fd8fc021000 rw-p 00000000 00:00 0
7fd8fc021000-7fd900000000 ---p 00000000 00:00 0
7fd900000000-7fd900021000 rw-p 00000000 00:00 0
7fd900021000-7fd904000000 ---p 00000000 00:00 0
7fd904000000-7fd904021000 rw-p 00000000 00:00 0
7fd904021000-7fd908000000 ---p 00000000 00:00 0
7fd908000000-7fd908021000 rw-p 00000000 00:00 0
7fd908021000-7fd90c000000 ---p 00000000 00:00 0
7fd90effe000-7fd90efff000 ---p 00000000 00:00 0
7fd90efff000-7fd90f7ff000 rw-p 00000000 00:00 0
7fd910000000-7fd910021000 rw-p 00000000 00:00 0
7fd910021000-7fd914000000 ---p 00000000 00:00 0
7fd9157fb000-7fd9157fc000 ---p 00000000 00:00 0
7fd9157fc000-7fd915ffc000 rw-p 00000000 00:00 0
7fd915ffc000-7fd915ffd000 ---p 00000000 00:00 0
7fd915ffd000-7fd9167fd000 rw-p 00000000 00:00 0
7fd9167fd000-7fd9167fe000 ---p 00000000 00:00 0
7fd9167fe000-7fd916ffe000 rw-p 00000000 00:00 0
7fd916ffe000-7fd916fff000 ---p 00000000 00:00 0
7fd916fff000-7fd9177ff000 rw-p 00000000 00:00 0
7fd9177ff000-7fd917800000 ---p 00000000 00:00 0
7fd917800000-7fd918000000 rw-p 00000000 00:00 0
7fd918000000-7fd918021000 rw-p 00000000 00:00 0
7fd918021000-7fd91c000000 ---p 00000000 00:00 0
7fd91c000000-7fd91c021000 rw-p 00000000 00:00 0
7fd91c021000-7fd920000000 ---p 00000000 00:00 0
7fd920000000-7fd920021000 rw-p 00000000 00:00 0
7fd920021000-7fd924000000 ---p 00000000 00:00 0
7fd924000000-7fd924021000 rw-p 00000000 00:00 0
7fd924021000-7fd928000000 ---p 00000000 00:00 0
7fd928000000-7fd928021000 rw-p 00000000 00:00 0
7fd928021000-7fd92c000000 ---p 00000000 00:00 0
7fd92c000000-7fd92c021000 rw-p 00000000 00:00 0
7fd92c021000-7fd930000000 ---p 00000000 00:00 0
7fd930000000-7fd930021000 rw-p 00000000 00:00 0
7fd930021000-7fd934000000 ---p 00000000 00:00 0
7fd9347f9000-7fd9347fa000 ---p 00000000 00:00 0
7fd9347fa000-7fd934ffa000 rw-p 00000000 00:00 0
7fd934ffa000-7fd934ffb000 ---p 00000000 00:00 0
7fd934ffb000-7fd9357fb000 rw-p 00000000 00:00 0
7fd9357fb000-7fd9357fc000 ---p 00000000 00:00 0
7fd9357fc000-7fd935ffc000 rw-p 00000000 00:00 0
7fd935ffc000-7fd935ffd000 ---p 00000000 00:00 0
7fd935ffd000-7fd9367fd000 rw-p 00000000 00:00 0
7fd9367fd000-7fd9367fe000 ---p 00000000 00:00 0
7fd9367fe000-7fd936ffe000 rw-p 00000000 00:00 0
7fd936ffe000-7fd936fff000 ---p 00000000 00:00 0
7fd936fff000-7fd9377ff000 rw-p 00000000 00:00 0
7fd9377ff000-7fd937800000 ---p 00000000 00:00 0
7fd937800000-7fd938000000 rw-p 00000000 00:00 0
7fd938000000-7fd938021000 rw-p 00000000 00:00 0
7fd938021000-7fd93c000000 ---p 00000000 00:00 0
7fd93c10c000-7fd93c118000 r-xp 00000000 fd:00 266862=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libnss_files-2.17.so
7fd93c118000-7fd93c317000 ---p 0000c000 fd:00 266862=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libnss_files-2.17.so
7fd93c317000-7fd93c318000 r--p 0000b000 fd:00 266862=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libnss_files-2.17.so
7fd93c318000-7fd93c31f000 rw-p 00000000 00:00 0
7fd93c31f000-7fd93c320000 ---p 00000000 00:00 0
7fd93c320000-7fd93cb20000 rw-p 00000000 00:00 0
7fd93cb20000-7fd93cb21000 ---p 00000000 00:00 0
7fd93cb21000-7fd93d321000 rw-p 00000000 00:00 0
7fd93d321000-7fd93d322000 ---p 00000000 00:00 0
7fd93d322000-7fd93db22000 rw-p 00000000 00:00 0
7fd93db22000-7fd93db23000 ---p 00000000 00:00 0
7fd93db23000-7fd93e323000 rw-p 00000000 00:00 0
7fd93e323000-7fd93e324000 ---p 00000000 00:00 0
7fd93e324000-7fd93eb24000 rw-p 00000000 00:00 0
7fd93eb24000-7fd93eceb000 r-xp 00000000 fd:00 266844=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libc-2.17.so
7fd93eceb000-7fd93eeea000 ---p 001c7000 fd:00 266844=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libc-2.17.so
7fd93eeea000-7fd93eeee000 r--p 001c6000 fd:00 266844=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libc-2.17.so
7fd93eeee000-7fd93eef0000 rw-p 001ca000 fd:00 266844=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libc-2.17.so
7fd93eef0000-7fd93eef5000 rw-p 00000000 00:00 0
7fd93eef5000-7fd93eef7000 r-xp 00000000 fd:00 272436=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libalarm.so
7fd93eef7000-7fd93f0f6000 ---p 00002000 fd:00 272436=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libalarm.so
7fd93f0f6000-7fd93f0f7000 r--p 00001000 fd:00 272436=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libalarm.so
7fd93f0f7000-7fd93f0f8000 rw-p 00002000 fd:00 272436=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libalarm.so
7fd93f0f8000-7fd93f10f000 r-xp 00000000 fd:00 266870=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libpthread-2.17.so
7fd93f10f000-7fd93f30e000 ---p 00017000 fd:00 266870=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libpthread-2.17.so
7fd93f30e000-7fd93f30f000 r--p 00016000 fd:00 266870=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libpthread-2.17.so
7fd93f30f000-7fd93f310000 rw-p 00017000 fd:00 266870=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libpthread-2.17.so
7fd93f310000-7fd93f314000 rw-p 00000000 00:00 0
7fd93f314000-7fd93f325000 r-xp 00000000 fd:00 262290=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libsecurec.so
7fd93f325000-7fd93f525000 ---p 00011000 fd:00 262290=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libsecurec.so
7fd93f525000-7fd93f526000 r--p 00011000 fd:00 262290=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libsecurec.so
7fd93f526000-7fd93f527000 rw-p 00012000 fd:00 262290=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libsecurec.so
7fd93f527000-7fd93f549000 r-xp 00000000 fd:00 266837=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/ld-2.17.so
7fd93f739000-7fd93f73d000 rw-p 00000000 00:00 0
7fd93f747000-7fd93f748000 rw-p 00000000 00:00 0
7fd93f748000-7fd93f749000 r--p 00021000 fd:00 266837=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/ld-2.17.so
7fd93f749000-7fd93f74a000 rw-p 00022000 fd:00 266837=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/ld-2.17.so
7fd93f74a000-7fd93f74b000 rw-p 00000000 00:00 0
7ffd02751000-7ffd02772000 rw-p 00000000 00:00 0=20=20=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20
[stack]
7ffd02780000-7ffd02782000 r-xp 00000000 00:00 0                          [v=
dso]
ffffffffff600000-ffffffffff601000 r-xp 00000000 00:00 0=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20
[vsyscall]
[root@cn-north-4b-CloudDataCompassSurfer-010077236019 ~]# cat /proc/72000/m=
aps
56016a44f000-56016a46c000 r-xp 00000000 fd:00 277411=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/bin/sysmonitor
56016a66b000-56016a66c000 r--p 0001c000 fd:00 277411=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/bin/sysmonitor
56016a66c000-56016a66e000 rw-p 0001d000 fd:00 277411=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/bin/sysmonitor
56016a66e000-56016a6ed000 rw-p 00000000 00:00 0
56016b0ff000-56016b120000 rw-p 00000000 00:00 0                          [h=
eap]
7fd8f0000000-7fd8f0021000 rw-p 00000000 00:00 0
7fd8f0021000-7fd8f4000000 ---p 00000000 00:00 0
7fd8f8000000-7fd8f8021000 rw-p 00000000 00:00 0
7fd8f8021000-7fd8fc000000 ---p 00000000 00:00 0
7fd8fc000000-7fd8fc021000 rw-p 00000000 00:00 0
7fd8fc021000-7fd900000000 ---p 00000000 00:00 0
7fd900000000-7fd900021000 rw-p 00000000 00:00 0
7fd900021000-7fd904000000 ---p 00000000 00:00 0
7fd904000000-7fd904021000 rw-p 00000000 00:00 0
7fd904021000-7fd908000000 ---p 00000000 00:00 0
7fd908000000-7fd908021000 rw-p 00000000 00:00 0
7fd908021000-7fd90c000000 ---p 00000000 00:00 0
7fd90effe000-7fd90efff000 ---p 00000000 00:00 0
7fd90efff000-7fd90f7ff000 rw-p 00000000 00:00 0
7fd910000000-7fd910021000 rw-p 00000000 00:00 0
7fd910021000-7fd914000000 ---p 00000000 00:00 0
7fd9157fb000-7fd9157fc000 ---p 00000000 00:00 0
7fd9157fc000-7fd915ffc000 rw-p 00000000 00:00 0
7fd915ffc000-7fd915ffd000 ---p 00000000 00:00 0
7fd915ffd000-7fd9167fd000 rw-p 00000000 00:00 0
7fd9167fd000-7fd9167fe000 ---p 00000000 00:00 0
7fd9167fe000-7fd916ffe000 rw-p 00000000 00:00 0
7fd916ffe000-7fd916fff000 ---p 00000000 00:00 0
7fd916fff000-7fd9177ff000 rw-p 00000000 00:00 0
7fd9177ff000-7fd917800000 ---p 00000000 00:00 0
7fd917800000-7fd918000000 rw-p 00000000 00:00 0
7fd918000000-7fd918021000 rw-p 00000000 00:00 0
7fd918021000-7fd91c000000 ---p 00000000 00:00 0
7fd91c000000-7fd91c021000 rw-p 00000000 00:00 0
7fd91c021000-7fd920000000 ---p 00000000 00:00 0
7fd920000000-7fd920021000 rw-p 00000000 00:00 0
7fd920021000-7fd924000000 ---p 00000000 00:00 0
7fd924000000-7fd924021000 rw-p 00000000 00:00 0
7fd924021000-7fd928000000 ---p 00000000 00:00 0
7fd928000000-7fd928021000 rw-p 00000000 00:00 0
7fd928021000-7fd92c000000 ---p 00000000 00:00 0
7fd92c000000-7fd92c021000 rw-p 00000000 00:00 0
7fd92c021000-7fd930000000 ---p 00000000 00:00 0
7fd930000000-7fd930021000 rw-p 00000000 00:00 0
7fd930021000-7fd934000000 ---p 00000000 00:00 0
7fd9347f9000-7fd9347fa000 ---p 00000000 00:00 0
7fd9347fa000-7fd934ffa000 rw-p 00000000 00:00 0
7fd934ffa000-7fd934ffb000 ---p 00000000 00:00 0
7fd934ffb000-7fd9357fb000 rw-p 00000000 00:00 0
7fd9357fb000-7fd9357fc000 ---p 00000000 00:00 0
7fd9357fc000-7fd935ffc000 rw-p 00000000 00:00 0
7fd935ffc000-7fd935ffd000 ---p 00000000 00:00 0
7fd935ffd000-7fd9367fd000 rw-p 00000000 00:00 0
7fd9367fd000-7fd9367fe000 ---p 00000000 00:00 0
7fd9367fe000-7fd936ffe000 rw-p 00000000 00:00 0
7fd936ffe000-7fd936fff000 ---p 00000000 00:00 0
7fd936fff000-7fd9377ff000 rw-p 00000000 00:00 0
7fd9377ff000-7fd937800000 ---p 00000000 00:00 0
7fd937800000-7fd938000000 rw-p 00000000 00:00 0
7fd938000000-7fd938021000 rw-p 00000000 00:00 0
7fd938021000-7fd93c000000 ---p 00000000 00:00 0
7fd93c10c000-7fd93c118000 r-xp 00000000 fd:00 266862=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libnss_files-2.17.so
7fd93c118000-7fd93c317000 ---p 0000c000 fd:00 266862=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libnss_files-2.17.so
7fd93c317000-7fd93c318000 r--p 0000b000 fd:00 266862=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libnss_files-2.17.so
7fd93c318000-7fd93c31f000 rw-p 00000000 00:00 0
7fd93c31f000-7fd93c320000 ---p 00000000 00:00 0
7fd93c320000-7fd93cb20000 rw-p 00000000 00:00 0
7fd93cb20000-7fd93cb21000 ---p 00000000 00:00 0
7fd93cb21000-7fd93d321000 rw-p 00000000 00:00 0
7fd93d321000-7fd93d322000 ---p 00000000 00:00 0
7fd93d322000-7fd93db22000 rw-p 00000000 00:00 0
7fd93db22000-7fd93db23000 ---p 00000000 00:00 0
7fd93db23000-7fd93e323000 rw-p 00000000 00:00 0
7fd93e323000-7fd93e324000 ---p 00000000 00:00 0
7fd93e324000-7fd93eb24000 rw-p 00000000 00:00 0
7fd93eb24000-7fd93eceb000 r-xp 00000000 fd:00 266844=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libc-2.17.so
7fd93eceb000-7fd93eeea000 ---p 001c7000 fd:00 266844=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libc-2.17.so
7fd93eeea000-7fd93eeee000 r--p 001c6000 fd:00 266844=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libc-2.17.so
7fd93eeee000-7fd93eef0000 rw-p 001ca000 fd:00 266844=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libc-2.17.so
7fd93eef0000-7fd93eef5000 rw-p 00000000 00:00 0
7fd93eef5000-7fd93eef7000 r-xp 00000000 fd:00 272436=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libalarm.so
7fd93eef7000-7fd93f0f6000 ---p 00002000 fd:00 272436=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libalarm.so
7fd93f0f6000-7fd93f0f7000 r--p 00001000 fd:00 272436=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libalarm.so
7fd93f0f7000-7fd93f0f8000 rw-p 00002000 fd:00 272436=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libalarm.so
7fd93f0f8000-7fd93f10f000 r-xp 00000000 fd:00 266870=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libpthread-2.17.so
7fd93f10f000-7fd93f30e000 ---p 00017000 fd:00 266870=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libpthread-2.17.so
7fd93f30e000-7fd93f30f000 r--p 00016000 fd:00 266870=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libpthread-2.17.so
7fd93f30f000-7fd93f310000 rw-p 00017000 fd:00 266870=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libpthread-2.17.so
7fd93f310000-7fd93f314000 rw-p 00000000 00:00 0
7fd93f314000-7fd93f325000 r-xp 00000000 fd:00 262290=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libsecurec.so
7fd93f325000-7fd93f525000 ---p 00011000 fd:00 262290=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libsecurec.so
7fd93f525000-7fd93f526000 r--p 00011000 fd:00 262290=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libsecurec.so
7fd93f526000-7fd93f527000 rw-p 00012000 fd:00 262290=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/libsecurec.so
7fd93f527000-7fd93f549000 r-xp 00000000 fd:00 266837=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/ld-2.17.so
7fd93f739000-7fd93f73d000 rw-p 00000000 00:00 0
7fd93f747000-7fd93f748000 rw-p 00000000 00:00 0
7fd93f748000-7fd93f749000 r--p 00021000 fd:00 266837=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/ld-2.17.so
7fd93f749000-7fd93f74a000 rw-p 00022000 fd:00 266837=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20
/usr/lib64/ld-2.17.so
7fd93f74a000-7fd93f74b000 rw-p 00000000 00:00 0
7ffd02751000-7ffd02772000 rw-p 00000000 00:00 0=20=20=20=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20
[stack]
7ffd02780000-7ffd02782000 r-xp 00000000 00:00 0                          [v=
dso]
ffffffffff600000-ffffffffff601000 r-xp 00000000 00:00 0=20=20=20=20=20=20=
=20=20=20=20=20=20=20=20=20=20=20
[vsyscall]
[root@cn-north-4b-CloudDataCompassSurfer-010077236019 ~]#

and I found the same issue below:
https://sourceware.org/bugzilla/show_bug.cgi?id=3D17326

When process A is forking B, thread a of A has being destroy.
stack_cache\in_flight_stack are in different vma and physical pages.
Copy-on-write first lock stack_cache's page table, then lock in_flight_stac=
k's
page table.

I think put in_flight_stack and stack_cache in the same page, or lock
stack_cache before fork could to solve this issue.

(gdb) p &in_flight_stack
$2 =3D (uintptr_t *) 0x7fd93f3130b0 <in_flight_stack>
(gdb) p &stack_cache
$3 =3D (list_t *) 0x7fd93f30f020 <stack_cache>
(gdb) p 0x7fd93f3130b0-0x7fd93f30f020
$4 =3D 16528

--=20
You are receiving this mail because:
You are on the CC list for the bug.=