Handle Ctrl+C interupts for Mingw Executables

[naveen521kk]

cherry-picked from

• git-for-windows/msys2-runtime@e8dd881
• git-for-windows/msys2-runtime@24fb4e4
• git-for-windows/msys2-runtime@3c7a25e
• git-for-windows/msys2-runtime@0a1f55b

cc @dscho

there were conflicts while picking tried my best to fix them say if they were wrong 😉

Fixes #29

[dscho]

Could you squash the last commit into the one wit the incorrect merge conflict resolution?

Also, could you download https://github.com/msys2/msys2-runtime/suites/2262965199/artifacts/47141681 and verify that it does, indeed, fix the Ctrl+C problem?

[naveen521kk]

Also, could you download https://github.com/msys2/msys2-runtime/suites/2262965199/artifacts/47141681 and verify that it does, indeed, fix the Ctrl+C problem?

Could you help me on how to install it?

[naveen521kk]

I think I have to cherry-pick from git-for-windows/msys2-runtime@25c4c01 also

[dscho]

Also, could you download https://github.com/msys2/msys2-runtime/suites/2262965199/artifacts/47141681 and verify that it does, indeed, fix the Ctrl+C problem?

Could you help me on how to install it?

Yes. You could simply extract this over an existing MSYS2 installation, but all you really want is to replace the usr/bin/msys-2.0.dll file (you cannot do that from inside MSYS2, though, because that DLL cannot be in use while you replace it).

I think I have to cherry-pick from git-for-windows/msys2-runtime@25c4c01 also

Yes, this is crucial to be able to interrupt processes running in a different CPU architecture than the MSYS2 runtime itself.

BTW I think 2153eb0 is not needed: it tries to export a function that is no longer an exported function, but an inline function instead.

About 42f68af... I dropped it from Git for Windows. The rationale is that the processes that are getting interrupted need to make sure themselves that their child processes are reaped, too.

[naveen521kk]

It looks like it is working for me. I did a new install from tar archive and pasted the contents of the zip file on that and opened the mingw64.exe. Then I run pacman -S mingw-w64-x86_64-python
and then python -c "import time;time.sleep(40)", and pressing Ctrl+C printed a traceback exited, which means it was killed correctly.

$ python -c "import time;time.sleep(40)"
Traceback (most recent call last):
  File "<string>", line 1, in <module>
KeyboardInterrupt

I will look into your comments and change things soon.

[naveen521kk]

BTW I think 2153eb0 is not needed: it tries to export a function that is no longer an exported function, but an inline function instead.
About 42f68af... I dropped it from Git for Windows. The rationale is that the processes that are getting interrupted need to make sure themselves that their child processes are reaped, too.

I am dropping 2153eb0 and 42f68af

[naveen521kk]

Also, it works. But randomly triggers AntiVirus saying it does something malicious and deletes bash.exe. While this doesn't happen with git-for-windows one, I wonder why? Maybe I missed any patches? Or AV ignores the Program Files directory things?

[dscho]

Also, it works. But randomly triggers AntiVirus saying it does something malicious and deletes bash.exe. While this doesn't happen with git-for-windows one, I wonder why? Maybe I missed any patches? Or AV ignores the Program Files directory things?

Well, the code does inject a remote thread... So I can see why anti-malware would be triggered, even if it is wrong.

And I have no idea why Git for Windows does not trigger this... I have no insight into how these anti-malware programs work.

[naveen521kk]

That shouldn't be a problem for me because I have excluded it from scanning the Msys2 directory.
(All this happened because I did a new install for testing this, or else I wouldn't have told about this.)

[dscho]

Hey, but here's an idea: we already use those getprocaddr helpers to look up the address of ExitProcess() and CtrlRoutine(). If we now teach getprocaddr to also inject the remote thread, then the anti-malware might trigger on just those two small programs, and they can be excluded specifically from the anti-malware (and if they're quarantined, we can still fall back to TerminateProcess()).

What do you think, @naveen521kk?

[naveen521kk]

Hey, but here's an idea: we already use those getprocaddr helpers to look up the address of ExitProcess() and CtrlRoutine(). If we now teach getprocaddr to also inject the remote thread, then the anti-malware might trigger on just those two small programs, and they can be excluded specifically from the anti-malware (and if they're quarantined, we can still fall back to TerminateProcess()).

Should be better.
But still excluding those two programs seems useless to me. I once had pacman.exe removed when I was doing an update and AV thought it as ransomware and quarantined it. So, full msys2 installation needs to be excluded anyhow.

[dscho]

Hey, but here's an idea: we already use those getprocaddr helpers to look up the address of ExitProcess() and CtrlRoutine(). If we now teach getprocaddr to also inject the remote thread, then the anti-malware might trigger on just those two small programs, and they can be excluded specifically from the anti-malware (and if they're quarantined, we can still fall back to TerminateProcess()).

Should be better.
But still excluding those two programs seems useless to me. I once had pacman.exe removed when I was doing an update and AV thought it as ransomware and quarantined it. So, full msys2 installation needs to be excluded anyhow.

I think that is just a bug if anti-malware quarantines pacman.exe.

But with the injected remote thread, I think anti-malware is "less wrong"... So in my mind, if we do it right, and if anti-malware is not overly overzealous, it should be enough to exclude those two helpers (or alternatively, hope that anti-malware developers will analyze the helpers, verify that they are mostly harmless, and add patterns that match those use cases specifically to avoid triggering on them).

[naveen521kk]

I think that is just a bug if anti-malware quarantines pacman.exe.

Don't know, it was just once after that it didn't do anything there.

But with the injected remote thread, I think anti-malware is "less wrong"... So in my mind, if we do it right, and if anti-malware is not overly overzealous, it should be enough to exclude those two helpers (or alternatively, hope that anti-malware developers will analyze the helpers, verify that they are mostly harmless, and add patterns that match those use cases specifically to avoid triggering on them).

Right. If they analyze bash.exe that would be useless for them as well, but there are possibilities that the AV could exclude those two helpers.
Maybe why not try?

[naveen521kk]

I will try to work on that tomorrow.

[naveen521kk]

I will try to work on that tomorrow.

Looks like my knowledge with C and win32 API is so poor to do this. I think I won't be able to do it, sorry.

[naveen521kk]

@dscho after a long time, today I gave another attempt. e3eb220

I don't know any way's to debug it, if you know please tell, it seems to not work finally when I downloaded the artifacts and tried it on new install.

[naveen521kk]

I was able to confirm by compiling the source of getprocaddr separately that it works.
For example, I tried python -c "import time;time.sleep(1000) in shell and then I run

test CtrlRoutine 0 2440

where test.exe is the compiled executable and 2440 is from tasklist command corresponding to python.exe. Python terminated with

Traceback (most recent call last):
  File "<string>", line 1, in <module>
KeyboardInterrupt

which shows that it works.

[naveen521kk]

Here I pushed again, I think it should work?

[naveen521kk]

Yes finally, this works 🎉

[dscho]

This looks pretty good already!

Eventually, I would love to break this change apart and fold it into the earlier commits (feel free to mark yourself as co-author via the Co-authored-by: footer) because that will make it easier to maintain the MSYS2-specific patches on top of Cygwin.

[dscho]

@naveen521kk congratulations, and let me say this: I am very impressed how you kept working on this for three months, with a really nice end result. Thank you!

[naveen521kk]

Thank you for reviewing. This helped me to learn C and about Win32 APIs; without you, this will not be possible :).

[jeremyd2019]

on arm, running mintty, running clangarm64 python, hitting ctrl-c kills python (after a significant delay). from windows terminal ctrl-c shows KeyboardInterrupt as expected. this seems to be expected behavior for lack of arm binaries for the libexec binaries

[jeremyd2019]

question: doesn't cygwin provide kill(2)? Why does kill util need patching rather than just the kill syscall within cygwin?

[jeremyd2019]

Does this work on win7? I could only get python to get a keyboard interrupt if run through winpty. Otherwise, sometimes python would die, but leave things in a very broken state that never got back to bash. It appears getprocaddress32 (or 64) hangs around in taskmgr for many seconds, and then both it and python die.

The only reason I tried win7 was to make sure my proposed change to detect arm processes wouldn't blow up there, but I'm seeing the same behavior with that as with the version currently in staging

On Windows 10 I get keyboard interrupt AND python exits when attempting to interrupt time.sleep from interactive python

EDIT: I'm sometimes seeing the 'broken' behavior on Win10 too... It appears the 'forked' bash process that supposedly 'execed' python is hanging around. Killing it returns to the shell.

[naveen521kk]

Hmm, I tried to install this version from Pacman(staging repo) today, and I found it wasn't working, there was a long hang and nothing worked, I had to close the Window. I tried the same pip.exe I created previously.
pip.zip

It was working previously and also works on a fresh installation but not on my old one, and that looked weird.

So, to debug I downloaded Process Monitor and started to check whether getprocaddr64.exe was called. Everything looked normal, except the below one

Parent PID: 8528, Command line: C:\msys64\usr\libexec\getprocaddr64.exe CtrlRoutine 0 13267416829, Current directory: H:\mingw\test_programs\likefinal\, Environment: 
	MSYSTEM=MINGW64
	PATH=...
	SYSTEMDRIVE=C:
	SYSTEMROOT=C:\Windows
	WINDIR=C:\Windows

When starting getprocaddr64.exe runtime is calling/passing a significantly large PID 13267416829, will this even happen?
In procmon the PID for pip.exe was 7344 and python.exe was 2228.

Next up, this one

PID: 7720, Command line: C:\msys64\usr\libexec\getprocaddr64.exe ExitProcess 130 132674168

Again, a large PID but different from the previous one. As expected getprocaddr64.exe exited with status 1.
This happened twice and then finally, pip.exe was killed using TerminateProcess still python.exe is alive though and terminal was hanged(maybe the forked process executing python was hanging around ).

I wondering why this happens that too only in the main installation.

[naveen521kk]

Hmm, the same number comes up

PID: 2720, Command line: C:\msys64\usr\libexec\getprocaddr64.exe CtrlRoutine 0 13267416829

pip.exe pid -> 8332

Next, I tried placing the build from this PR on the tree and now it still hangs but the numbers changed and I think something is going wrong

PID: 8092, Command line: C:\msys64\usr\libexec\getprocaddr64.exe CtrlRoutine 0 13268512904

Even on second time it was same number.

[dscho]

That is really strange. I thought maybe the pid was formatted using the wrong printf() format, but no, it is a DWORD and it is rendered using %ld... Puzzled.

[jeremyd2019]

Should probably have PROCESS_QUERY_LIMITED_INFORMATION here too, to be able to query PID and exit code. Assuming nobody here cares about anything older than Vista, on XP you need PROCESS_QUERY_INFORMATION.

[naveen521kk]

Does this work on win7? I could only get python to get a keyboard interrupt if run through winpty. Otherwise, sometimes python would die, but leave things in a very broken state that never got back to bash. It appears getprocaddress32 (or 64) hangs around in taskmgr for many seconds, and then both it and python die.

Seems related, I was also testing on win7. Though in my case getprocaddr*.exe didn't hang instead it got a wrong argument.

[naveen521kk]

Hmm, I just downloaded https://github.com/msys2/msys2-installer/releases/download/nightly-x86_64/msys2-base-x86_64-latest.tar.xz extracted it added the Pacman staging repo and updated runtime. There it is worked perfectly

$ /h/mingw/test_programs/likefinal/pip.exe
start
Traceback (most recent call last):
  File "H:\mingw\test_programs\likefinal\pip-script.py", line 34, in <module>
    time.sleep(4000)
KeyboardInterrupt

So, I think it isn't a problem with code here.
Maybe something messed up with the original installation?

[jeremyd2019]

That doesn't make any sense, msys2-runtime is/should be self-contained

[jeremyd2019]

Going through this code looking for something that could be causing issues...

[jeremyd2019]

I think this is missing 2 spaces (space between wbuf and function_name, and space between function_name and exit_code. Also, is it safe to assume exit_code will always only be 3 digits? It seems so because the callers use exit_code & 0x7f, or else CTRL_C_EVENT/CTRL_BREAK_EVENT which are 0 or 1 resp.

[jeremyd2019]

Why is this pid_t and not DWORD? This is a Windows PID, not a cygwin PID.

[jeremyd2019]

Then this cast would be unnecessary

[jeremyd2019]

CloseHandle(snapshot); ?

[jeremyd2019]

I guess now that this is merged I should make my own pull request instead of review comments suggesting code 😁