[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Guile-commits] 03/04: open-process: Fix dup(2) and execvp(2) error hand
|
From: |
Mark H. Weaver |
|
Subject: |
[Guile-commits] 03/04: open-process: Fix dup(2) and execvp(2) error handling. |
|
Date: |
Tue, 18 Jun 2019 03:25:08 -0400 (EDT) |
mhw pushed a commit to branch stable-2.2
in repository guile.
commit 521f1ab4709217407496004019c00005d2a82f78
Author: Mark H Weaver <address@hidden>
Date: Sat May 11 03:47:41 2019 -0400
open-process: Fix dup(2) and execvp(2) error handling.
Previously, in the case where OUT is 0, or ERR is 0 or 1,
e.g. when (current-error-port) points to STDOUT, the code in
'start_child' to relocate OUT/ERR out of the way to another file
descriptor had multiple bugs:
(1) It neglected to close the original file descriptor.
(2) It checked 'errno' without first checking the return value of
dup(2). This doesn't work because dup(2) leaves 'errno' unchanged
if there's no error.
(3) In case 'errno' contained EINTR, the retry code failed because
OUT (or ERR) was overwritten by the result of the previous failed
dup(2) call.
This commit fixes these problems, as well as another problem with
'execvp' error reporting.
* libguile/posix.c (renumber_file_descriptor): New static helper
function.
(start_child): Use 'renumber_file_descriptor'. If 'execvp' fails, write
the error message to file descriptor 2. Previously, we wrote the error
message to ERR, which was the old file descriptor before being relocated
to 2.
---
libguile/posix.c | 47 ++++++++++++++++++++++++++++++++++++++---------
1 file changed, 38 insertions(+), 9 deletions(-)
diff --git a/libguile/posix.c b/libguile/posix.c
index 7ede7b7..a40ddb9 100644
--- a/libguile/posix.c
+++ b/libguile/posix.c
@@ -1243,6 +1243,36 @@ SCM_DEFINE (scm_fork, "primitive-fork", 0, 0, 0,
#endif /* HAVE_FORK */
#ifdef HAVE_FORK
+/* 'renumber_file_descriptor' is a helper function for 'start_child'
+ below, and is specialized for that particular environment where it
+ doesn't make sense to report errors via exceptions. It uses dup(2)
+ to duplicate the file descriptor FD, closes the original FD, and
+ returns the new descriptor. If dup(2) fails, print an error message
+ to ERR and abort. */
+static int
+renumber_file_descriptor (int fd, int err)
+{
+ int new_fd;
+
+ do
+ new_fd = dup (fd);
+ while (new_fd == -1 && errno == EINTR);
+
+ if (new_fd == -1)
+ {
+ /* At this point we are in the child process before exec. We
+ cannot safely raise an exception in this environment. */
+ char *msg = strerror (errno);
+ fprintf (fdopen (err, "a"), "start_child: dup failed: %s\n", msg);
+ _exit (127); /* Use exit status 127, as with other exec errors. */
+ }
+
+ close (fd);
+ return new_fd;
+}
+#endif /* HAVE_FORK */
+
+#ifdef HAVE_FORK
#define HAVE_START_CHILD 1
/* Since Guile uses threads, we have to be very careful to avoid calling
functions that are not async-signal-safe in the child. That's why
@@ -1293,16 +1323,16 @@ start_child (const char *exec_file, char **exec_argv,
if (in > 0)
{
if (out == 0)
- do out = dup (out); while (errno == EINTR);
+ out = renumber_file_descriptor (out, err);
if (err == 0)
- do err = dup (err); while (errno == EINTR);
+ err = renumber_file_descriptor (err, err);
do dup2 (in, 0); while (errno == EINTR);
close (in);
}
if (out > 1)
{
if (err == 1)
- do err = dup (err); while (errno == EINTR);
+ err = renumber_file_descriptor (err, err);
do dup2 (out, 1); while (errno == EINTR);
close (out);
}
@@ -1315,12 +1345,11 @@ start_child (const char *exec_file, char **exec_argv,
execvp (exec_file, exec_argv);
/* The exec failed! There is nothing sensible to do. */
- if (err > 0)
- {
- char *msg = strerror (errno);
- fprintf (fdopen (err, "a"), "In execvp of %s: %s\n",
- exec_file, msg);
- }
+ {
+ char *msg = strerror (errno);
+ fprintf (fdopen (2, "a"), "In execvp of %s: %s\n",
+ exec_file, msg);
+ }
/* Use exit status 127, like shells in this case, as per POSIX
<http://pubs.opengroup.org/onlinepubs/007904875/utilities/xcu_chap02.html#tag_02_09_01_01>.
*/