Page MenuHome GnuPG
Create Task
Maniphest T4034

libgcrypt: Fix for lock behavior broken in 1.8.3
Closed, ResolvedPublic
Actions

Description

Originally sent to gnupg-devel@, but not sure if that's going to get through so submitting here. Apologies for potential duplication.

In commit 0da4a237661cd273303ae6baaaba2d9f6292b990 calls to "lock_rng"
and "unlock_rng" were introduced and are causing hanging on musl as
well as on Darwin.

It looks like the problem is that within this lock/unlock pair the
code calls a function that itself tries
to obtain the same rng lock-- which is where things hang.

Attached is a patch that fixes this problem in a minimally intrusive way,
but is somewhat suboptimal as the same lock will be
obtained/released/obtained/released back-to-back.

I'm unsure why this behavior is not problematic when using glibc,
haven't investigated.

Hopefully this is useful and please let me know if this is incorrect
for some reason.

Details

Version
1.8.3

Revisions and Commits

rC libgcrypt
rC20c034865f2d random: Fix hang of _gcry_rndjent_get_version.
AuditedrC355f5b7f6907 random: Fix hang of _gcry_rndjent_get_version.

Related Objects

Event Timeline

dtzWill created this task.Jun 18 2018, 9:37 PM

Patch:

fix-jent-locking.patch893 BDownload

See also: https://github.com/NixOS/nixpkgs/pull/42150

dtzWill added a comment.Jun 18 2018, 9:42 PM

Investigated the "why not with glibc" question this morning, appears that the test triggering the hanging behavior (version) happens to not be linked with -pthread and so locking calls do nothing. Manually adding -pthread causes it to hang with glibc as well.

gniibe claimed this task.Jun 19 2018, 4:54 AM
gniibe added a subscriber: gniibe.

Thanks for your report.
You are right.
Simply getting the information for "rng-type" through gcry_rndjent_get_version will hang.

And I agree that your patch is the best for a while (simple enough, even sub-optimal); I leave further change to the original author of rndjent.

gniibe added a commit: rC355f5b7f6907: random: Fix hang of _gcry_rndjent_get_version..Jun 19 2018, 5:38 AM
gniibe changed the task status from Open to Testing.Jun 19 2018, 5:58 AM

Fixed in repo (master and 1.8 branch).

gniibe triaged this task as Normal priority.Jun 19 2018, 5:59 AM
gniibe reopened this task as Testing.Jun 20 2018, 10:16 AM
gniibe closed this task as a duplicate of T4035: New libgcrypt 1.8.3 Makefile fails "make check" under OS X Xcode.
gniibe merged a task: T4035: New libgcrypt 1.8.3 Makefile fails "make check" under OS X Xcode.
gniibe added a subscriber: outer.
werner closed this task as Resolved.Oct 26 2018, 8:01 PM
werner mentioned this in T4234: Libgcrypt 1.8.4 release info.
werner mentioned this in T4294: Release Libgcrypt 1.9.0.Jan 19 2021, 10:17 AM
gniibe added a commit: rC20c034865f2d: random: Fix hang of _gcry_rndjent_get_version..Jun 3 2021, 7:09 PM