| blob | 2c6f6a17d2973b758c7a537ed5563b39cf1da4d4 |
1 /* Copyright (C) 1991, 1992, 1993, 1994, 1995 Free Software Foundation, Inc.
2 This file is part of the GNU C Library.
4 The GNU C Library is free software; you can redistribute it and/or
5 modify it under the terms of the GNU Library General Public License as
6 published by the Free Software Foundation; either version 2 of the
7 License, or (at your option) any later version.
9 The GNU C Library is distributed in the hope that it will be useful,
10 but WITHOUT ANY WARRANTY; without even the implied warranty of
11 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
12 Library General Public License for more details.
14 You should have received a copy of the GNU Library General Public
15 License along with the GNU C Library; see the file COPYING.LIB. If
16 not, write to the Free Software Foundation, Inc., 675 Mass Ave,
17 Cambridge, MA 02139, USA. */
19 #include <stdlib.h>
20 #include <stdio.h>
21 #include <hurd.h>
22 #include <hurd/signal.h>
24 #include <string.h>
33 /* Port that receives signals and other miscellaneous messages. */
34 mach_port_t _hurd_msgport;
36 /* Thread listening on it. */
37 thread_t _hurd_msgport_thread;
39 /* Thread which receives task-global signals. */
40 thread_t _hurd_sigthread;
42 /* Linked-list of per-thread signal state. */
44 \f
45 static void
47 {
56 }
60 {
67 {
74 /* Initialze default state. */
79 #ifdef noteven
81 #endif
85 /* Initialize the sigaction vector from the default signal receiving
86 thread's state, and its from the system defaults. */
89 else
90 {
96 {
100 }
101 else
103 }
107 }
110 }
111 \f
112 /* Signal delivery itself is on this page. */
114 #include <hurd/fd.h>
115 #include <hurd/core.h>
116 #include <hurd/paths.h>
117 #include <setjmp.h>
118 #include <fcntl.h>
119 #include <sys/wait.h>
121 #include <hurd/msg_server.h>
123 #include <assert.h>
124 #include <hurd/interrupt.h>
128 /* Call the core server to mummify us before we die.
129 Returns nonzero if a core file was written. */
130 static int
132 {
133 error_t err;
134 mach_port_t coreserver;
138 /* XXX RLIMIT_CORE:
139 When we have a protocol to make the server return an error
140 for RLIMIT_FSIZE, then tell the corefile fs server the RLIMIT_CORE
141 value in place of the RLIMIT_FSIZE value. */
143 /* First get a port to the core dumping server. */
153 /* Get a port to the directory where the new core file will reside. */
160 /* Create the new file, but don't link it into the directory yet. */
166 /* Call the core dumping server to write the core file. */
173 /* The core dump into FILE succeeded, so now link it into the
174 directory. */
179 }
182 /* Send a sig_post reply message if it hasn't already been sent. */
186 error_t result)
187 {
193 }
196 /* The lowest-numbered thread state flavor value is 1,
197 so we use bit 0 in machine_thread_all_state.set to
198 record whether we have done thread_abort. */
199 #define THREAD_ABORTED 1
201 /* SS->thread is suspended. Abort the thread and get its basic state. If
202 REPLY_PORT is not NULL, send a reply on *REPLY_PORT after aborting the
203 thread. */
204 static void
208 {
210 {
212 /* Clear all thread state flavor set bits, because thread_abort may
213 have changed the state. */
215 }
221 }
223 /* Find the location of the MiG reply port cell in use by the thread whose
224 state is described by THREAD_STATE. Make sure that this location can be
225 set without faulting, or else return NULL. */
229 {
234 {
236 /* Faulted trying to read the stack. */
238 }
240 /* Fault now if this pointer is bogus. */
246 }
249 /* SS->thread is suspended.
251 Abort any interruptible RPC operation the thread is doing.
253 This uses only the constant member SS->thread and the unlocked, atomically
254 set member SS->intr_port, so no locking is needed.
256 If successfully sent an interrupt_operation and therefore the thread should
257 wait for its pending RPC to return (possibly EINTR) before taking the
258 incoming signal, returns the reply port to be received on. Otherwise
259 returns MACH_PORT_NULL.
261 *STATE_CHANGE is set nonzero if STATE->basic was modified and should
262 be applied back to the thread if it might ever run again, else zero. */
264 static mach_port_t
269 {
270 mach_port_t msging_port;
271 mach_port_t intr_port;
277 /* No interruption needs done. */
280 /* Abort the thread's kernel context, so any pending message send or
281 receive completes immediately or aborts. */
285 {
286 error_t err;
288 /* The RPC request message was sent and the thread was waiting for
289 the reply message; now the message receive has been aborted, so
290 the mach_msg_call will return MACH_RCV_INTERRUPTED. We must tell
291 the server to interrupt the pending operation. The thread must
292 wait for the reply message before running the signal handler (to
293 guarantee that the operation has finished being interrupted), so
294 our nonzero return tells the trampoline code to finish the message
295 receive operation before running the handler. */
300 {
303 /* The interrupt didn't work.
304 Destroy the receive right the thread is blocked on. */
307 /* The system call return value register now contains
308 MACH_RCV_INTERRUPTED; when mach_msg resumes, it will retry the
309 call. Since we have just destroyed the receive right, the
310 retry will fail with MACH_RCV_INVALID_NAME. Instead, just
311 change the return value here to EINTR so mach_msg will not
312 retry and the EINTR error code will propagate up. */
316 /* If that was the thread's MiG reply port (which I think should
317 always be the case), clear the reply port cell so it won't be
318 reused. */
322 }
324 /* All threads whose RPCs were interrupted by the interrupt_operation
325 call above will retry their RPCs unless we clear SS->intr_port.
326 So we clear it for the thread taking a signal when SA_RESTART is
327 clear, so that its call returns EINTR. */
332 }
334 /* One of the following is true:
336 1. The RPC has not yet been sent. The thread will start its operation
337 after the signal has been handled.
339 2. The RPC has finished, but not yet cleared SS->intr_port.
340 The thread will clear SS->intr_port after running the handler.
342 3. The RPC request message was being sent was aborted. The mach_msg
343 system call will return MACH_SEND_INTERRUPTED, and HURD_EINTR_RPC will
344 notice the interruption (either retrying the RPC or returning EINTR). */
347 }
349 /* Abort the RPCs being run by all threads but this one;
350 all other threads should be suspended. If LIVE is nonzero, those
351 threads may run again, so they should be adjusted as necessary to be
352 happy when resumed. STATE is clobbered as a scratch area; its initial
353 contents are ignored, and its contents on return are not useful. */
355 static void
357 {
358 /* We can just loop over the sigstates. Any thread doing something
359 interruptible must have one. We needn't bother locking because all
360 other threads are stopped. */
366 /* First loop over the sigstates to count them.
367 We need to know how big a vector we will need for REPLY_PORTS. */
378 else
379 {
383 /* Abort any operation in progress with interrupt_operation.
384 Record the reply port the thread is waiting on.
385 We will wait for all the replies below. */
389 /* Aborting the RPC needed to change this thread's state,
390 and it might ever run again. So write back its state. */
393 MACHINE_THREAD_STATE_COUNT);
394 }
396 /* Wait for replies from all the successfully interrupted RPCs. */
399 {
400 error_t err;
401 mach_msg_header_t head;
407 }
408 }
414 /* Mask of stop signals. */
415 #define STOPSIGS (sigmask (SIGTTIN) | sigmask (SIGTTOU) | \
416 sigmask (SIGSTOP) | sigmask (SIGTSTP))
418 /* Deliver a signal. SS is not locked. */
419 void
422 mach_port_t reply_port,
423 mach_msg_type_name_t reply_port_type,
425 {
428 sighandler_t handler;
431 sigset_t pending;
434 /* Reply to this sig_post message. */
436 {
438 }
440 /* Mark the signal as pending. */
442 {
444 /* Save the code to be given to the handler when SIGNO is
445 unblocked. */
448 }
450 /* Suspend the process with SIGNO. */
452 {
453 /* Stop all other threads and mark ourselves stopped. */
455 ({
456 /* Hold the siglock while stopping other threads to be
457 sure it is not held by another thread afterwards. */
463 }));
465 }
467 post_signal:
471 /* Check for a preempted signal. Preempted signals
472 can arrive during critical sections. */
476 {
479 }
484 /* Let the preempting handler examine the thread.
485 If it returns SIG_DFL, we run the normal handler;
486 otherwise we use the handler it returns. */
492 /* Run the preemption-provided handler. */
494 else
495 {
496 /* No preemption. Do normal handling. */
503 {
504 /* We are being traced. Stop to tell the debugger of the signal. */
506 /* Already stopped. Mark the signal as pending;
507 when resumed, we will notice it and stop again. */
509 else
514 }
517 /* Figure out the default action for this signal. */
519 {
521 /* A sig_post msg with SIGNO==0 is sent to
522 tell us to check for pending signals. */
555 {
556 /* We are the process group leader. Since there is no
557 user-specified handler for SIGINFO, we use a default one
558 which prints something interesting. We use the normal
559 handler mechanism instead of just doing it here to avoid
560 the signal thread faulting or blocking in this
561 potentially hairy operation. */
564 }
565 else
572 }
575 else
579 /* Stop signals clear a pending SIGCONT even if they
580 are handled or ignored (but not if preempted). */
582 else
583 {
585 /* Even if handled or ignored (but not preempted), SIGCONT clears
586 stop signals and resumes the process. */
590 {
591 /* Resume the process from being stopped. */
594 error_t err;
595 /* Tell the proc server we are continuing. */
597 /* Fetch ports to all our threads and resume them. */
601 {
606 }
611 /* The thread that will run the handler is already suspended. */
613 }
614 }
615 }
620 {
621 /* If we would ordinarily stop for a job control signal, but we are
622 orphaned so noone would ever notice and continue us again, we just
623 quietly die, alone and in the dark. */
627 }
629 /* Handle receipt of a blocked signal, or any signal while stopped.
630 It matters that we test ACT first here, because we must never pass
631 SIGNO==0 to __sigismember. */
634 {
637 }
639 /* Perform the chosen action for the signal. */
641 {
644 /* We are already stopped, but receiving an untraced stop
645 signal. Instead of resuming and suspending again, just
646 notify the proc server of the new stop signal. */
648 else
649 /* Suspend the process. */
654 /* Nobody cares about this signal. */
659 nirvana:
660 /* Have the proc server stop all other threads in our task. */
662 /* No more user instructions will be executed.
663 The signal can now be considered delivered. */
665 /* Abort all server operations now in progress. */
668 {
670 /* Do a core dump if desired. Only set the wait status bit saying we
671 in fact dumped core if the operation was actually successful. */
674 /* Tell proc how we died and then stick the saber in the gut. */
676 /* NOTREACHED */
677 }
680 /* Call a handler for this signal. */
681 {
685 /* Stop the thread and abort its pending RPC operations. */
689 /* Abort the thread's kernel context, so any pending message send
690 or receive completes immediately or aborts. If an interruptible
691 RPC is in progress, abort_rpcs will do this. But we must always
692 do it before fetching the thread's state, because
693 thread_get_state is never kosher before thread_abort. */
701 {
702 /* The thread is in a critical section. Mark the signal as
703 pending. When it finishes the critical section, it will
704 check for pending signals. */
709 }
711 /* Call the machine-dependent function to set the thread up
712 to run the signal handler, and preserve its old context. */
717 {
718 /* We got a fault setting up the stack frame for the handler.
719 Nothing to do but die; BSD gets SIGILL in this case. */
724 }
726 /* Set the machine-independent parts of the signal context. */
729 {
730 /* Fetch the thread variable for the MiG reply port,
731 and set it to MACH_PORT_NULL. */
734 {
737 }
738 else
740 }
742 /* Block SIGNO and requested signals while running the handler. */
746 /* Save the intr_port in use by the interrupted code,
747 and clear the cell before running the trampoline. */
751 /* Start the thread running the handler (or possibly waiting for an
752 RPC reply before running the handler). */
755 MACHINE_THREAD_STATE_COUNT);
759 }
760 }
762 /* The signal has either been ignored or is now being handled. We can
763 consider it delivered and reply to the killer. The exception is
764 signal 0, which can be sent by a user thread to make us check for
765 pending signals. In that case we want to deliver the pending signals
766 before replying. */
770 /* We get here unless the signal was fatal. We still hold SS->lock.
771 Check for pending signals, and loop to post them. */
772 #define PENDING (!_hurd_stopped && (pending = ss->pending & ~ss->blocked))
774 {
775 pending:
778 {
784 }
785 }
787 /* No pending signals left undelivered for this thread.
788 If we were sent signal 0, we need to check for pending
789 signals for all threads. */
791 {
795 {
800 }
802 }
803 else
804 {
805 /* No more signals pending; SS->lock is still locked.
806 Wake up any sigsuspend call that is blocking SS->thread. */
808 {
809 /* There is a sigsuspend waiting. Tell it to wake up. */
810 error_t err;
811 mach_msg_header_t msg;
814 MACH_MSG_TYPE_MAKE_SEND);
819 /* These values do not matter. */
825 MACH_PORT_NULL);
827 }
829 }
831 /* All pending signals delivered to all threads.
832 Now we can send the reply message even for signal 0. */
834 }
835 \f
836 /* Decide whether REFPORT enables the sender to send us a SIGNO signal.
837 Returns zero if so, otherwise the error code to return to the sender. */
839 static error_t
841 {
846 /* Can send any signal. */
849 /* Avoid needing to check for this below. */
854 {
862 /* Job control signals can be sent by the controlling terminal. */
868 {
869 /* A continue signal can be sent by anyone in the session. */
870 mach_port_t sessport;
872 {
876 }
877 }
882 {
883 /* Any io object a file descriptor refers to might send us
884 one of these signals using its async ID port for REFPORT.
886 This is pretty wide open; it is not unlikely that some random
887 process can at least open for reading something we have open,
888 get its async ID port, and send us a spurious SIGIO or SIGURG
889 signal. But BSD is actually wider open than that!--you can set
890 the owner of an io object to any process or process group
891 whatsoever and send them gratuitous signals.
893 Someday we could implement some reasonable scheme for
894 authorizing SIGIO and SIGURG signals properly. */
899 {
901 io_t port;
902 mach_port_t asyncid;
907 {
909 /* Break out of the loop on the next iteration. */
912 }
914 }
915 /* If we found a lucky winner, we've set D to -1 in the loop. */
918 }
919 }
921 /* If this signal is legit, we have done `goto win' by now.
922 When we return the error, mig deallocates REFPORT. */
925 win:
926 /* Deallocate the REFPORT send right; we are done with it. */
930 }
932 /* Implement the sig_post RPC from <hurd/msg.defs>;
933 sent when someone wants us to get a signal. */
934 kern_return_t
938 mach_port_t refport)
939 {
940 error_t err;
945 /* Post the signal to the designated signal-receiving thread. This will
946 reply when the signal can be considered delivered. */
952 }
954 /* Implement the sig_post_untraced RPC from <hurd/msg.defs>;
955 sent when the debugger wants us to really get a signal
956 even if we are traced. */
957 kern_return_t
959 mach_port_t reply_port,
960 mach_msg_type_name_t reply_port_type,
962 mach_port_t refport)
963 {
964 error_t err;
969 /* Post the signal to the designated signal-receiving thread. This will
970 reply when the signal can be considered delivered. */
976 }
977 \f
980 #include <mach/task_special_ports.h>
982 /* Initialize the message port and _hurd_sigthread and start the signal
983 thread. */
985 void
987 {
988 error_t err;
989 vm_size_t stacksize;
994 MACH_PORT_RIGHT_RECEIVE,
998 /* Make a send right to the signal port. */
1000 _hurd_msgport,
1001 _hurd_msgport,
1002 MACH_MSG_TYPE_MAKE_SEND))
1005 /* Set the default thread to receive task-global signals
1006 to this one, the main (first) user thread. */
1009 /* Start the signal thread listening on the message port. */
1016 _hurd_msgport_receive,
1022 __hurd_sigthread_variables =
1027 /* Reinitialize the MiG support routines so they will use a per-thread
1028 variable for the cached reply port. */
1035 /* Receive exceptions on the signal port. */
1038 #endif
1039 }
1041 /* Reauthenticate with the proc server. */
1043 static void
1045 {
1051 MACH_MSG_TYPE_MAKE_SEND) ||
1053 MACH_MSG_TYPE_MAKE_SEND,
1060 }
1062 \f
1063 /* Like `getenv', but safe for the signal thread to run.
1064 If the environment is trashed, this will just return NULL. */
1068 {
1070 /* We bombed in getenv. */
1072 else
1073 {
1075 /* Fault now if VALUE is a bogus string. */
1079 }
1080 }