From owner-freebsd-current@FreeBSD.ORG  Thu Jul 12 03:50:49 2007
Return-Path: <owner-freebsd-current@FreeBSD.ORG>
X-Original-To: current@freebsd.org
Delivered-To: freebsd-current@FreeBSD.ORG
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id 30E4116A46D
	for <current@freebsd.org>; Thu, 12 Jul 2007 03:50:49 +0000 (UTC)
	(envelope-from sgk@troutmask.apl.washington.edu)
Received: from troutmask.apl.washington.edu (troutmask.apl.washington.edu
	[128.208.78.105])
	by mx1.freebsd.org (Postfix) with ESMTP id 1549513C480
	for <current@freebsd.org>; Thu, 12 Jul 2007 03:50:49 +0000 (UTC)
	(envelope-from sgk@troutmask.apl.washington.edu)
Received: from troutmask.apl.washington.edu (localhost.apl.washington.edu
	[127.0.0.1])
	by troutmask.apl.washington.edu (8.14.1/8.13.8) with ESMTP id
	l6C3n3VG084599; Wed, 11 Jul 2007 20:49:03 -0700 (PDT)
	(envelope-from sgk@troutmask.apl.washington.edu)
Received: (from sgk@localhost)
	by troutmask.apl.washington.edu (8.14.1/8.13.8/Submit) id
	l6C3msEc084598; Wed, 11 Jul 2007 20:48:54 -0700 (PDT)
	(envelope-from sgk)
Date: Wed, 11 Jul 2007 20:48:54 -0700
From: Steve Kargl <sgk@troutmask.apl.washington.edu>
To: Doug White <dwhite@gumbysoft.com>
Message-ID: <20070712034854.GA84554@troutmask.apl.washington.edu>
References: <20070711191310.M90716@carver.gumbysoft.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20070711191310.M90716@carver.gumbysoft.com>
User-Agent: Mutt/1.4.2.2i
Cc: tcsh-bugs@mx.gw.com, current@freebsd.org
Subject: Re: tcsh backtick hang info
X-BeenThere: freebsd-current@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Discussions about the use of FreeBSD-current
	<freebsd-current.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>, 
	<mailto:freebsd-current-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-current>
List-Post: <mailto:freebsd-current@freebsd.org>
List-Help: <mailto:freebsd-current-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>,
	<mailto:freebsd-current-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 12 Jul 2007 03:50:49 -0000

On Wed, Jul 11, 2007 at 07:28:55PM -0700, Doug White wrote:
> 
> In this case it appears to be an improperly placed bump to the SIGCHLD 
> disable count that is held over a call to pjwait(). I haven't yet 
> determined the call stack (and gdb cannot debug tcsh at the moment) so I 
> need to continue instrumenting the code to figure out what higher level 
> function is disabling SIGCHLD and then calling something that eventually 
> calls pjwait().
> 

Signal handling is completely and utterly messed up in
tcsh 6.15.0.  I've asked more than once to have the 6.15.0
import reverted in the FreeBSD tree.  Having broken signal
handling for the default shell of root suggests that there
is a likely exploit waiting in the wings.

-- 
Steve