1608824 – valgrind: arch_prctl aborts process for unknown flags (seen with ARCH_CET_STATUS)

Bug 1608824 - valgrind: arch_prctl aborts process for unknown flags (seen with ARCH_CET_STATUS)

Summary: valgrind: arch_prctl aborts process for unknown flags (seen with ARCH_CET_STA...

Keywords:
Status:	CLOSED RAWHIDE
Alias:	None
Product:	Fedora
Classification:	Fedora
Component:	valgrind
Sub Component:
Version:	rawhide
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	unspecified
Target Milestone:	---
Assignee:	Mark Wielaard
QA Contact:	Fedora Extras Quality Assurance
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	1608826 1654309
TreeView+	depends on / blocked

Reported:	2018-07-26 10:49 UTC by Florian Weimer
Modified:	2019-03-07 15:49 UTC (History)
CC List:	3 users (show)
Fixed In Version:	valgrind-3.13.0-22.fc29
Clone Of:
Clones:	1608826 (view as bug list)
Environment:
Last Closed:	2018-07-27 15:35:38 UTC
Type:	Bug
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
KDE Software Compilation	396887	0	None	None	None	2018-07-26 17:23:54 UTC

Description Florian Weimer 2018-07-26 10:49:15 UTC

Building glibc in rawhide with --enable-cet fails with:

==19934== Memcheck, a memory error detector
==19934== Copyright (C) 2002-2017, and GNU GPL'd, by Julian Seward et al.
==19934== Using Valgrind-3.13.0 and LibVEX; rerun with -h for copyright info
==19934== Command: elf/ld.so --library-path .:elf:nptl:dlfcn /usr/bin/true
==19934== 

valgrind: the 'impossible' happened:
   Unsupported arch_prctl option

host stacktrace:
==19934==    at 0x5803B102: ??? (in /usr/lib64/valgrind/memcheck-amd64-linux)
==19934==    by 0x5803B214: ??? (in /usr/lib64/valgrind/memcheck-amd64-linux)
==19934==    by 0x5803B459: ??? (in /usr/lib64/valgrind/memcheck-amd64-linux)
==19934==    by 0x5803B480: ??? (in /usr/lib64/valgrind/memcheck-amd64-linux)
==19934==    by 0x580CFD08: ??? (in /usr/lib64/valgrind/memcheck-amd64-linux)
==19934==    by 0x58096FFA: ??? (in /usr/lib64/valgrind/memcheck-amd64-linux)
==19934==    by 0x58093A72: ??? (in /usr/lib64/valgrind/memcheck-amd64-linux)
==19934==    by 0x58095206: ??? (in /usr/lib64/valgrind/memcheck-amd64-linux)
==19934==    by 0x580A4ACA: ??? (in /usr/lib64/valgrind/memcheck-amd64-linux)

sched status:
  running_tid=1

Thread 1: status = VgTs_Runnable (lwpid 19934)
==19934==    at 0x121A15: get_cet_status (cpu-features.c:28)
==19934==    by 0x121A15: init_cpu_features (cpu-features.c:474)
==19934==    by 0x121A15: dl_platform_init (dl-machine.h:228)
==19934==    by 0x121A15: _dl_sysdep_start (dl-sysdep.c:231)
==19934==    by 0x10A1D7: _dl_start_final (rtld.c:413)
==19934==    by 0x10A1D7: _dl_start (rtld.c:520)
==19934==    by 0x109117: ??? (in /builddir/build/BUILD/glibc-2.27.9000-645-gcfba5dbb10/build-x86_64-redhat-linux/elf/ld.so)
==19934==    by 0x3: ???
==19934==    by 0x1FFF0009E6: ???
==19934==    by 0x1FFF0009F0: ???
==19934==    by 0x1FFF0009FF: ???
==19934==    by 0x1FFF000A10: ???

The offending function is:

static inline int __attribute__ ((always_inline))
get_cet_status (void)
{
  unsigned long long cet_status[3];
  INTERNAL_SYSCALL_DECL (err);
  if (INTERNAL_SYSCALL (arch_prctl, err, 2, ARCH_CET_STATUS,
			cet_status) == 0)
    return cet_status[0];
  return 0;
}

ARCH_CET_STATUS is unfortunately not in the upstream kernel.

Comment 1 Florian Weimer 2018-07-26 10:50:38 UTC

Is there a reason why arch_prctl cannot be passed to the kernel, or at least made to fail with ENOSYS?

Comment 2 Mark Wielaard 2018-07-26 10:53:28 UTC

(In reply to Florian Weimer from comment #1)
> Is there a reason why arch_prctl cannot be passed to the kernel, or at least
> made to fail with ENOSYS?

The correct way seems to be to return EINVAL (code is not a valid subcommand). Would that be helpful?

Comment 3 Mark Wielaard 2018-07-26 10:54:53 UTC

I mean of course, return -1 and set errno to EINVAL.

Comment 4 Florian Weimer 2018-07-26 10:56:14 UTC

(In reply to Mark Wielaard from comment #2)
> (In reply to Florian Weimer from comment #1)
> > Is there a reason why arch_prctl cannot be passed to the kernel, or at least
> > made to fail with ENOSYS?
> 
> The correct way seems to be to return EINVAL (code is not a valid
> subcommand). Would that be helpful?

Any results that is not zero will do.  An EINVAL error is okay as well.

Comment 5 Florian Weimer 2018-07-26 10:57:15 UTC

FWIW, glibc says that 0x3001 is the value of ARCH_CET_STATUS.

Comment 6 Mark Wielaard 2018-07-26 18:49:10 UTC

valgrind-3.13.0-22.fc29 should have fixed this.

* Thu Jul 26 2018 Mark Wielaard <mjw> - 3.13.0-22
- Add valgrind-3.13.0-arch_prctl.patch (#1608824)

But the /bin/true check fails on ppc64, ppc64le, s390x and armh7l.
aarch64, x86_64 and i686 build fine.
https://koji.fedoraproject.org/koji/taskinfo?taskID=28624474

There isn't enough information in the build.log to understand what is going wrong on those architectures.

Comment 7 Mark Wielaard 2018-07-27 15:35:38 UTC

Turned out the issue from comment #6 was a buggy binutils. Which has been fixed. And valgrind has been rebuild.

Note You need to log in before you can comment on or make changes to this bug.