<h3>Story</h3> <p>I tried to diagnose a bug in an app written in C on Linux. It turned out that the bug was caused by <strong>forgetting</strong> <code>fclose</code> in the child process when the <code>FILE *</code> handle is still open in the parent process.</p> <p>The file operation is only <code>read</code>. No write operation.</p> <h3>Case 1</h3> <p>The app is running on <code>Linux 5.4.0-58-generic</code>. In this case the bug occured.</p> <h3>Case 2</h3> <p>The app is running on <code>Linux 5.10.0-051000-generic</code>. In this case there is <strong>no bug</strong>, and this is what I expected.</p> <h3>What is the bug?</h3> <p>The parent process do random number of <code>fork</code> syscall if there is no <code>fclose</code> in child process.</p> <h3>Case 2 affirmation</h3> <p>I am fully aware that <strong>forgetting</strong> <code>fclose</code> will lead to memory leak, but:</p> <ul> <li>I think, <strong>just in this case</strong>, it is not strictly necessary, because the child process is going to exit as soon as possible, and the exit I use is <code>exit(3)</code> not <code>_exit(2)</code>.</li> <li>The strange thing is that, how come <strong>forgetting</strong> <code>fclose</code> in child process affects the parent process?</li> </ul> <h3>My current guess:</h3> <p>This is a Linux kernel bug that has been fixed in the version after <code>5.4</code>. Yet I don't have a proof, but my test showed me so.</p> <hr> <h3>Question</h3> <p>I have been able to fix this app bug by calling <code>fclose</code> in the child process before it exits. But, I want to know what actually happen in this case. So my question is <strong>How come forgetting <code>fclose</code> in child process affects the parent process?</strong></p> <hr> <h3>Very simple code to reproduce the problem (3 files attached).</h3> <h3>Note: The difference between test1.c and test2.c is only at <code>fclose</code> in the child process. test2.c does not call <code>fclose</code> in the child process.</h3> <h3>File test.txt</h3> <pre class="prettyprint"><code>123123123 123123123 123123123 123123123 123123123 123123123 </code></pre> <h3>File test1.c</h3> <pre class="prettyprint lang-c prettyprint-override"><code>#include <stdio.h> #include <errno.h> #include <stdlib.h> #include <stdint.h> #include <unistd.h> #include <string.h> #include <sys/wait.h> #define TICK do { putchar('.'); fflush(stdout); } while(0) int main() { char buff[1024] = {0}; FILE *handle = fopen("test.txt", "r"); uint32_t num_of_forks = 0; while (fgets(buff, 1024, handle) != NULL) { TICK; num_of_forks++; pid_t pid = fork(); if (pid == -1) { printf("Fork error: %s\n", strerror(errno)); continue; } if (pid == 0) { fclose(handle); exit(0); } } fclose(handle); putchar('\n'); printf("Number of forks: %d\n", num_of_forks); wait(NULL); } </code></pre> <h3>File test2.c</h3> <pre class="prettyprint lang-c prettyprint-override"><code>#include <stdio.h> #include <errno.h> #include <stdlib.h> #include <stdint.h> #include <unistd.h> #include <string.h> #include <sys/wait.h> #define TICK do { putchar('.'); fflush(stdout); } while(0) int main() { char buff[1024] = {0}; FILE *handle = fopen("test.txt", "r"); uint32_t num_of_forks = 0; while (fgets(buff, 1024, handle) != NULL) { TICK; num_of_forks++; pid_t pid = fork(); if (pid == -1) { printf("Fork error: %s\n", strerror(errno)); continue; } if (pid == 0) { // fclose(handle); exit(0); } } fclose(handle); putchar('\n'); printf("Number of forks: %d\n", num_of_forks); wait(NULL); } </code></pre> <hr> <h3>Run the program</h3> <hr> <h3>Run on Linux 5.4.0-58-generic (where the bug happens)</h3> <h3>Look at test2 execution (bug), it leads to random number of fork syscall.</h3> <pre class="prettyprint"><code>ammarfaizi2@integral:/tmp$ uname -r 5.4.0-58-generic ammarfaizi2@integral:/tmp$ gcc --version gcc (Ubuntu 9.3.0-17ubuntu1~20.04) 9.3.0 Copyright (C) 2019 Free Software Foundation, Inc. This is free software; see the source for copying conditions. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. ammarfaizi2@integral:/tmp$ ldd --version ldd (Ubuntu GLIBC 2.31-0ubuntu9.1) 2.31 Copyright (C) 2020 Free Software Foundation, Inc. This is free software; see the source for copying conditions. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. Written by Roland McGrath and Ulrich Drepper. ammarfaizi2@integral:/tmp$ cat test.txt 123123123 123123123 123123123 123123123 123123123 123123123 ammarfaizi2@integral:/tmp$ diff test1.c test2.c 27c27 < fclose(handle); --- > // fclose(handle); ammarfaizi2@integral:/tmp$ gcc test1.c -o test1 && gcc test2.c -o test2 ammarfaizi2@integral:/tmp$ ./test1 ...... Number of forks: 6 ammarfaizi2@integral:/tmp$ ./test1 ...... Number of forks: 6 ammarfaizi2@integral:/tmp$ ./test1 ...... Number of forks: 6 ammarfaizi2@integral:/tmp$ ./test2 .................................................................................................................................................................................. Number of forks: 178 ammarfaizi2@integral:/tmp$ ./test2 ............................................................................................................................................................................................................................................................................................................................................................ Number of forks: 348 ammarfaizi2@integral:/tmp$ ./test2 ........................................................................................................................................................................................................................................................................................................................................................................................................................................................................................... Number of forks: 475 ammarfaizi2@integral:/tmp$ md5sum test1 test2 c32d03916b9b72546b966223837fd115 test1 f314d2135092362288a66f53b37ffa4d test2 </code></pre> <h3>Run on Linux 5.10.0-051000-generic (the same code, no bug at all)</h3> <pre class="prettyprint"><code>root@esteh:/tmp# uname -r 5.10.0-051000-generic root@esteh:/tmp# gcc --version gcc (Ubuntu 9.3.0-17ubuntu1~20.04) 9.3.0 Copyright (C) 2019 Free Software Foundation, Inc. This is free software; see the source for copying conditions. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. root@esteh:/tmp# ldd --version ldd (Ubuntu GLIBC 2.31-0ubuntu9.1) 2.31 Copyright (C) 2020 Free Software Foundation, Inc. This is free software; see the source for copying conditions. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. Written by Roland McGrath and Ulrich Drepper. root@esteh:/tmp# cat test.txt 123123123 123123123 123123123 123123123 123123123 123123123 root@esteh:/tmp# diff test1.c test2.c 27c27 < fclose(handle); --- > // fclose(handle); root@esteh:/tmp# gcc test1.c -o test1 && gcc test2.c -o test2 root@esteh:/tmp# ./test1 ...... Number of forks: 6 root@esteh:/tmp# ./test1 ...... Number of forks: 6 root@esteh:/tmp# ./test1 ...... Number of forks: 6 root@esteh:/tmp# ./test2 ...... Number of forks: 6 root@esteh:/tmp# ./test2 ...... Number of forks: 6 root@esteh:/tmp# ./test2 ...... Number of forks: 6 root@esteh:/tmp# md5sum test1 test2 # Make sure the files are identical with case 1 c32d03916b9b72546b966223837fd115 test1 f314d2135092362288a66f53b37ffa4d test2 </code></pre> <hr> <h3>Summary</h3> <ul> <li>Forgetting <code>fclose</code> in the child process on <code>Linux 5.4.0-58-generic</code> causes the fork syscall in the parent process be strange.</li> <li>The bug does not seem to exist on <code>Linux 5.10.0-051000-generic</code>.</li> </ul>

<p>Thanks to @Jonathan Leffler!</p> <p>This problem is a duplicate of Why does forking my process cause the file to be read infinitely</p> <p>The missing knowledge, why does the bug not occur on <code>Linux 5.10.0-051000-generic</code> turned out that it is not related to the kernel.</p> <hr> <p>It turned out that the parent process competes with the child processes (not related to kernel).</p> <ul> <li>Note: change the offset of file handle from <strong>child process</strong> will also change the offset in <strong>parent process</strong> if the <strong>handle is created by the parent</strong>.</li> <li>If there is no <code>fclose(3)</code> in the childs, the child processes will call <code>lseek(2)</code> as soon as they call <code>exit(3)</code>. This will cause the parent re-read the same offset, because the childs call <code>lseek(2)</code> with negative offset + <code>SEEK_CUR</code>.</li> </ul> <p>(I don't know why it is necessary to call <code>lseek(2)</code> before exit, it might have been explained in @Jonathan Leffler's answer, I did not read the whole answer carefully).</p> <ul> <li>If the parent finishes to read the entire file before the childs call <code>lseek(2)</code>. Then there is no problem at all.</li> </ul> <p>Also, as @iBug has mentioned <em>But keep in mind that process scheduling may make the result non-predictable, unless you implement some kind of "syncing".</em></p> <p>The parent process on <code>Linux 5.10.0-051000-generic</code> machine I used was just a <strong>lucky process</strong> that always won to read the entire file first before the childs call <code>lseek(2)</code>.</p> <p>I tried to add more lines to the file (to be 150 lines), so the parent will mostly be slower than reading 6 lines, and the <em>undefined behavior</em> happens.</p> <p>Test result: https://gist.githubusercontent.com/ammarfaizi2/b72bd03fcc13779f96b8bbeef9253e66/raw/da1eff4ed5434aa51929e5c810d54de8ffe15548/test2_fix.txt</p>

Linux x86-64 fork syscall strange behavior against C standard libc FILE I/O (keywords: fork, fclose, linux) [duplicate]

Story

I tried to diagnose a bug in an app written in C on Linux. It turned out that the bug was caused by forgetting fclose in the child process when the FILE * handle is still open in the parent process.

The file operation is only read. No write operation.

Case 1

The app is running on Linux 5.4.0-58-generic. In this case the bug occured.

Case 2

The app is running on Linux 5.10.0-051000-generic. In this case there is no bug, and this is what I expected.

What is the bug?

The parent process do random number of fork syscall if there is no fclose in child process.

Case 2 affirmation

I am fully aware that forgetting fclose will lead to memory leak, but:

I think, just in this case, it is not strictly necessary, because the child process is going to exit as soon as possible, and the exit I use is exit(3) not _exit(2).
The strange thing is that, how come forgetting fclose in child process affects the parent process?

My current guess:

This is a Linux kernel bug that has been fixed in the version after 5.4. Yet I don't have a proof, but my test showed me so.

Question

I have been able to fix this app bug by calling fclose in the child process before it exits. But, I want to know what actually happen in this case. So my question is How come forgetting fclose in child process affects the parent process?

Very simple code to reproduce the problem (3 files attached).

Note: The difference between test1.c and test2.c is only at `fclose` in the child process. test2.c does not call `fclose` in the child process.

File test.txt

File test1.c

#include <stdio.h>
#include <errno.h>
#include <stdlib.h>
#include <stdint.h>
#include <unistd.h>
#include <string.h>
#include <sys/wait.h>
#define TICK do { putchar('.'); fflush(stdout); } while(0)
int main() {
  char buff[1024] = {0};
  FILE *handle = fopen("test.txt", "r");

  uint32_t num_of_forks = 0;

  while (fgets(buff, 1024, handle) != NULL) {

    TICK;
    num_of_forks++;

    pid_t pid = fork();
    if (pid == -1) {
      printf("Fork error: %s\n", strerror(errno));
      continue;
    }

    if (pid == 0) {
      fclose(handle);
      exit(0);
    }
  }

  fclose(handle);
  putchar('\n');
  printf("Number of forks: %d\n", num_of_forks);
  wait(NULL);
}

File test2.c

#include <stdio.h>
#include <errno.h>
#include <stdlib.h>
#include <stdint.h>
#include <unistd.h>
#include <string.h>
#include <sys/wait.h>
#define TICK do { putchar('.'); fflush(stdout); } while(0)
int main() {
  char buff[1024] = {0};
  FILE *handle = fopen("test.txt", "r");

  uint32_t num_of_forks = 0;

  while (fgets(buff, 1024, handle) != NULL) {

    TICK;
    num_of_forks++;

    pid_t pid = fork();
    if (pid == -1) {
      printf("Fork error: %s\n", strerror(errno));
      continue;
    }

    if (pid == 0) {
      // fclose(handle);
      exit(0);
    }
  }

  fclose(handle);
  putchar('\n');
  printf("Number of forks: %d\n", num_of_forks);
  wait(NULL);
}

Run the program

Run on Linux 5.4.0-58-generic (where the bug happens)

Look at test2 execution (bug), it leads to random number of fork syscall.

ammarfaizi2@integral:/tmp$ uname -r
5.4.0-58-generic
ammarfaizi2@integral:/tmp$ gcc --version
gcc (Ubuntu 9.3.0-17ubuntu1~20.04) 9.3.0
Copyright (C) 2019 Free Software Foundation, Inc.
This is free software; see the source for copying conditions.  There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

ammarfaizi2@integral:/tmp$ ldd --version
ldd (Ubuntu GLIBC 2.31-0ubuntu9.1) 2.31
Copyright (C) 2020 Free Software Foundation, Inc.
This is free software; see the source for copying conditions.  There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
Written by Roland McGrath and Ulrich Drepper.
ammarfaizi2@integral:/tmp$ cat test.txt
123123123
123123123
123123123
123123123
123123123
123123123
ammarfaizi2@integral:/tmp$ diff test1.c test2.c
27c27
<       fclose(handle);
---
>       // fclose(handle);
ammarfaizi2@integral:/tmp$ gcc test1.c -o test1 && gcc test2.c -o test2
ammarfaizi2@integral:/tmp$ ./test1
......
Number of forks: 6
ammarfaizi2@integral:/tmp$ ./test1
......
Number of forks: 6
ammarfaizi2@integral:/tmp$ ./test1
......
Number of forks: 6
ammarfaizi2@integral:/tmp$ ./test2
..................................................................................................................................................................................
Number of forks: 178
ammarfaizi2@integral:/tmp$ ./test2
............................................................................................................................................................................................................................................................................................................................................................
Number of forks: 348
ammarfaizi2@integral:/tmp$ ./test2
...........................................................................................................................................................................................................................................................................................................................................................................................................................................................................................
Number of forks: 475
ammarfaizi2@integral:/tmp$ md5sum test1 test2
c32d03916b9b72546b966223837fd115  test1
f314d2135092362288a66f53b37ffa4d  test2

Run on Linux 5.10.0-051000-generic (the same code, no bug at all)

root@esteh:/tmp# uname -r
5.10.0-051000-generic
root@esteh:/tmp# gcc --version
gcc (Ubuntu 9.3.0-17ubuntu1~20.04) 9.3.0
Copyright (C) 2019 Free Software Foundation, Inc.
This is free software; see the source for copying conditions.  There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

root@esteh:/tmp# ldd --version
ldd (Ubuntu GLIBC 2.31-0ubuntu9.1) 2.31
Copyright (C) 2020 Free Software Foundation, Inc.
This is free software; see the source for copying conditions.  There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
Written by Roland McGrath and Ulrich Drepper.
root@esteh:/tmp# cat test.txt
123123123
123123123
123123123
123123123
123123123
123123123
root@esteh:/tmp# diff test1.c test2.c
27c27
<       fclose(handle);
---
>       // fclose(handle);
root@esteh:/tmp# gcc test1.c -o test1 && gcc test2.c -o test2
root@esteh:/tmp# ./test1
......
Number of forks: 6
root@esteh:/tmp# ./test1
......
Number of forks: 6
root@esteh:/tmp# ./test1
......
Number of forks: 6
root@esteh:/tmp# ./test2
......
Number of forks: 6
root@esteh:/tmp# ./test2
......
Number of forks: 6
root@esteh:/tmp# ./test2
......
Number of forks: 6
root@esteh:/tmp# md5sum test1 test2 # Make sure the files are identical with case 1
c32d03916b9b72546b966223837fd115  test1
f314d2135092362288a66f53b37ffa4d  test2

Summary

Forgetting fclose in the child process on Linux 5.4.0-58-generic causes the fork syscall in the parent process be strange.
The bug does not seem to exist on Linux 5.10.0-051000-generic.

377

asked Dec 26 '20 12:12

Ammar Faizi

1 Answers

Thanks to @Jonathan Leffler!

This problem is a duplicate of Why does forking my process cause the file to be read infinitely

The missing knowledge, why does the bug not occur on Linux 5.10.0-051000-generic turned out that it is not related to the kernel.

It turned out that the parent process competes with the child processes (not related to kernel).

Note: change the offset of file handle from child process will also change the offset in parent process if the handle is created by the parent.
If there is no fclose(3) in the childs, the child processes will call lseek(2) as soon as they call exit(3). This will cause the parent re-read the same offset, because the childs call lseek(2) with negative offset + SEEK_CUR.

(I don't know why it is necessary to call lseek(2) before exit, it might have been explained in @Jonathan Leffler's answer, I did not read the whole answer carefully).

If the parent finishes to read the entire file before the childs call lseek(2). Then there is no problem at all.

Also, as @iBug has mentioned But keep in mind that process scheduling may make the result non-predictable, unless you implement some kind of "syncing".

The parent process on Linux 5.10.0-051000-generic machine I used was just a lucky process that always won to read the entire file first before the childs call lseek(2).

I tried to add more lines to the file (to be 150 lines), so the parent will mostly be slower than reading 6 lines, and the undefined behavior happens.

Test result: https://gist.githubusercontent.com/ammarfaizi2/b72bd03fcc13779f96b8bbeef9253e66/raw/da1eff4ed5434aa51929e5c810d54de8ffe15548/test2_fix.txt

128

answered Nov 14 '22 04:11

Ammar Faizi

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!

Donate Us With

Linux x86-64 fork syscall strange behavior against C standard libc FILE I/O (keywords: fork, fclose, linux) [duplicate]

Tags:

c

linux

fork

x86-64

stdio

Story

Case 1

Case 2

What is the bug?

Case 2 affirmation

My current guess:

Question

Very simple code to reproduce the problem (3 files attached).

Note: The difference between test1.c and test2.c is only at `fclose` in the child process. test2.c does not call `fclose` in the child process.

File test.txt

File test1.c

File test2.c

Run the program

Run on Linux 5.4.0-58-generic (where the bug happens)

Look at test2 execution (bug), it leads to random number of fork syscall.

Run on Linux 5.10.0-051000-generic (the same code, no bug at all)

Summary

Ammar Faizi

People also ask

1 Answers

Ammar Faizi

Recent Activity

Donate For Us

Linux x86-64 fork syscall strange behavior against C standard libc FILE I/O (keywords: fork, fclose, linux) [duplicate]

Tags:

c

linux

fork

x86-64

stdio

Story

Case 1

Case 2

What is the bug?

Case 2 affirmation

My current guess:

Question

Very simple code to reproduce the problem (3 files attached).

Note: The difference between test1.c and test2.c is only at fclose in the child process. test2.c does not call fclose in the child process.

File test.txt

File test1.c

File test2.c

Run the program

Run on Linux 5.4.0-58-generic (where the bug happens)

Look at test2 execution (bug), it leads to random number of fork syscall.

Run on Linux 5.10.0-051000-generic (the same code, no bug at all)

Summary

Ammar Faizi

People also ask

1 Answers

Ammar Faizi

Related questions

Recent Activity

Donate For Us

Note: The difference between test1.c and test2.c is only at `fclose` in the child process. test2.c does not call `fclose` in the child process.