Note: This bug is displayed in read-only format because the product is no longer active in Red Hat Bugzilla.
For bugs related to Red Hat Enterprise Linux 3 product line. The current stable release is 3.9. For Red Hat Enterprise Linux 6 and above, please visit Red Hat JIRA https://issues.redhat.com/secure/CreateIssue!default.jspa?pid=12332745 to report new issues.

Bug 111287

Summary: [PATCH] alternate signal stack bug corrupts RNaT bits
Product: Red Hat Enterprise Linux 3 Reporter: Bjorn Helgaas <bjorn.helgaas>
Component: kernelAssignee: Jason Baron <jbaron>
Status: CLOSED ERRATA QA Contact: Brian Brock <bbrock>
Severity: medium Docs Contact:
Priority: medium    
Version: 3.0CC: knoel, petrides, riel
Target Milestone: ---   
Target Release: ---   
Hardware: ia64   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2004-05-12 01:07:51 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Attachments:
Description Flags
Patch none

Description Bjorn Helgaas 2003-12-01 19:07:46 UTC 
From Bugzilla Helper:
User-Agent: Mozilla/5.0 (compatible; Konqueror/3.1; Linux)

Description of problem:
From http://marc.theaimsgroup.com/?l=linux-ia64&m=105617883916733:

On Fri, Jun 20, 2003 at 11:05:30PM -0700, David Mosberger wrote:
> >>>>> On Sat, 31 May 2003 00:18:39 +1000, Matt Chapman <matthewc.edu.au> said:
> 
>   Matt> Currently when using an alternate stack for signal handling,
>   Matt> the trampoline code switches to the new register stack without
>   Matt> saving bspstore.  When returning to the original register
>   Matt> stack, it calculates the bspstore as:
> 
>   Matt>   bspstore0 = rse_skip_regs(bsp0, -rse_num_regs(bsp1 - (loadrs
>   Matt> >> 19), bsp1)); where bsp0 is sc->sc_ar_bsp and bsp1 is the
>   Matt> current bsp
> 
>   Matt> Presumably the result should be the same as the original
>   Matt> bspstore.  However, it isn't in the case when the original
>   Matt> bspstore is pointing to slot 63 (the RNAT word).  The new
>   Matt> bspstore comes out pointing to slot 0 of the next group, and
>   Matt> the RNAT bits never get written.
> 
> Yes, this is a problem.  Can you try the attached patch?  Rather than
> storing an additional sc_bspstore member, the backing-store switching
> code checks whether bspstore points to an RNaT slot and, if so, stores
> the RNaT manually.  This effectively "normalizes" the backing-store
> such that ar.bspstore never points to an RNaT slot.

Ah, that's a good way of doing it (given the constraints of backwards
compatibility).  I've tested your patch and it works well for me.



I applied the patch here:
http://lia64.bkbits.net:8080/linux-ia64-2.5/diffs/arch/ia64/kernel/gate.S@1.18

for the 2.4.23 ia64 patch.  I would expect the same patch to apply to the RHEL 3 kernel.

Version-Release number of selected component (if applicable):


How reproducible:
Didn't try

Steps to Reproduce:
No test case given.

Additional info:
Comment 1 Bjorn Helgaas 2003-12-01 19:09:06 UTC 
Created attachment 96262 [details]
Patch
Comment 3 John Flanagan 2004-05-12 01:07:51 UTC 
An errata has been issued which should help the problem described in this bug report. 
This report is therefore being closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files, please follow the link below. You may reopen 
this bug report if the solution does not work for you.

http://rhn.redhat.com/errata/RHSA-2004-188.html