Ubuntu
valgrind package

valgrind reports invalid memory access on epoll_pwait call when invoked via epoll_wait

Bug #1726711 reported by Fabio Massimo Di Nitto
8
This bug affects 1 person
Affects Status Importance Assigned to Milestone
Valgrind
Unknown
Unknown
valgrind (Ubuntu)
Fix Released
Undecided
Unassigned
Artful
Fix Released
Undecided
Unassigned

Bug Description

[Impact]

Without the fix, certain valgrind tests can show non-existing failures in the code caused by an obvious typo made in the code.

[Test Case]

Using the attached main.c file test case:
# gcc -Wall main.c
# valgrind -q --error-exitcode=127 --track-fds=yes --leak-check=full ./a.out

Expect the output not to have any error related to this:
==8057== Syscall param epoll_pwait(sigmask) points to unaddressable byte(s)
==8057== at 0x4F50C20: epoll_pwait (epoll_pwait.c:42)
==8057== by 0x108A2B: main (in /home/ubuntu/a.out)
==8057== Address 0x0 is not stack'd, malloc'd or (recently) free'd
==8057==

Also, since there is a test case added to the code, make sure the package builds and the test passes.

[Regression Potential]

The issue seems to be caused by an obvious typo, but a possible regression potential could be if the change was somehow intended and valgrind would not preform as expected. But this would be noticed instantly.

[Original description]

SRU acceptance criteria: the package builds and the test case succeeds. This is an obvious typo.

while testing some code for potential memory leaks (using valgrind) I found out that the test are failing only on Ubuntu 17.10 and the problem appears to be somewhere in the Ubuntu toolchain. I honestly can´t be 100% sure it´s a gcc / glibc or valgrind issue.

I reduce the test case to the attached main.c file.

I have tested that same piece code on the following distributions: fedora26, fedora-rawhide, rhel7.4, rhel7.5-devel, debian9, debian testing, debian unstable and debian experimental without any error.

On all the above distros:

# gcc -Wall main.c
# valgrind -q --error-exitcode=127 --track-fds=yes --leak-check=full ./a.out
<hit enter to create an epoll_event>
received event: 1
==1807== FILE DESCRIPTORS: 3 open at exit.
==1807== Open file descriptor 2: /dev/pts/0
==1807== <inherited from parent>
==1807==
==1807== Open file descriptor 1: /dev/pts/0
==1807== <inherited from parent>
==1807==
==1807== Open file descriptor 0: /dev/pts/0
==1807== <inherited from parent>
==1807==
==1807==
# echo $?
0

On ubuntu 17.10 freshly installed and fully updated:

# valgrind -q --error-exitcode=127 --track-fds=yes --leak-check=full ./a.out
==8057== Syscall param epoll_pwait(sigmask) points to unaddressable byte(s)
==8057== at 0x4F50C20: epoll_pwait (epoll_pwait.c:42)
==8057== by 0x108A2B: main (in /home/ubuntu/a.out)
==8057== Address 0x0 is not stack'd, malloc'd or (recently) free'd
==8057==

received event: 1
==8057== FILE DESCRIPTORS: 3 open at exit.
==8057== Open file descriptor 2: /dev/pts/4
==8057== <inherited from parent>
==8057==
==8057== Open file descriptor 1: /dev/pts/4
==8057== <inherited from parent>
==8057==
==8057== Open file descriptor 0: /dev/pts/4
==8057== <inherited from parent>
==8057==
==8057==

# echo $?
127

as you can see from the code, we don´t invoke epoll_pwait directly, we invoke only epoll_wait.

According to the man page for epoll_(p)wait, sigmask can be NULL but somehow valgrind is catching that as an error or somehow glibc epoll_wait or epoll_pwait are not treating that properly.
I don´t see any relevant code difference between glibc in debian unstable (2.24-17) or ubuntu 17.10 (2.26-0ubuntu2) that could warrant this kind of behavior.

Due to this bug, you could expect some test suite to fail. Not sure if it can have some runtime side effects tho.

See original description
Revision history for this message
Fabio Massimo Di Nitto (fabbione) wrote :
Revision history for this message
Florian Weimer (fw) wrote :

This is a valgrind bug:

https://bugzilla.redhat.com/show_bug.cgi?id=1462258
https://bugs.kde.org/show_bug.cgi?id=381289

Revision history for this message
Fabio Massimo Di Nitto (fabbione) wrote :

Hi Florian,

thanks for the super fast response.

Cheers
Fabio

affects: glibc (Ubuntu) → valgrind (Ubuntu)
Changed in valgrind (Ubuntu):
status: New → Confirmed
Matthias Klose (doko)
description: updated
Changed in valgrind (Ubuntu):
status: Confirmed → In Progress
Łukasz Zemczak (sil2100)
Changed in valgrind (Ubuntu):
assignee: nobody → Łukasz Zemczak (sil2100)
Revision history for this message
Łukasz Zemczak (sil2100) wrote : Please test proposed package

Hello Fabio, or anyone else affected,

Accepted valgrind into artful-proposed. The package will build now and be available at https://launchpad.net/ubuntu/+source/valgrind/1:3.13.0-1ubuntu3 in a few hours, and then in the -proposed repository.

Please help us by testing this new package. See https://wiki.ubuntu.com/Testing/EnableProposed for documentation on how to enable and use -proposed.Your feedback will aid us getting this update out to other Ubuntu users.

If this package fixes the bug for you, please add a comment to this bug, mentioning the version of the package you tested and change the tag from verification-needed-artful to verification-done-artful. If it does not fix the bug for you, please add a comment stating that, and change the tag to verification-failed-artful. In either case, details of your testing will help us make a better decision.

Further information regarding the verification process can be found at https://wiki.ubuntu.com/QATeam/PerformingSRUVerification . Thank you in advance!

description: updated
Changed in valgrind (Ubuntu):
assignee: Łukasz Zemczak (sil2100) → nobody
Changed in valgrind (Ubuntu Artful):
status: New → Fix Committed
tags: added: verification-needed verification-needed-artful
Revision history for this message
Fabio Massimo Di Nitto (fabbione) wrote :

All,

tested with wget http://launchpadlibrarian.net/342831062/valgrind_3.13.0-1ubuntu3_amd64.deb and it´s working fine. You guys can figure out the LP paperwork magic to get this in ;)

thanks for being so responsive on this issue.

Cheers
Fabio

Matthias Klose (doko)
tags: added: verification-done verification-done-artful
removed: verification-needed verification-needed-artful
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package valgrind - 1:3.13.0-1ubuntu3

---------------
valgrind (1:3.13.0-1ubuntu3) artful-proposed; urgency=medium

  * SRU: Fix typo, syscall param epoll_pwait(sigmask) points to unaddressable
    byte(s). LP: #1726711.

 -- Matthias Klose <email address hidden> Tue, 24 Oct 2017 11:56:21 +0200

Changed in valgrind (Ubuntu):
status: In Progress → Fix Released
Francis Ginther (fginther)
tags: added: id-59eef49cce27b332331e29ea
Launchpad Janitor (janitor)
Changed in valgrind (Ubuntu Artful):
status: Fix Committed → Fix Released
Revision history for this message
Brian Murray (brian-murray) wrote : Update Released

The verification of the Stable Release Update for valgrind has completed successfully and the package has now been released to -updates. Subsequently, the Ubuntu Stable Release Updates Team is being unsubscribed and will not receive messages about this bug report. In the event that you encounter a regression using the package from -updates please report a new bug using ubuntu-bug and tag the bug report regression-update so we can easily find any regressions.

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.