Open wtwhite opened 11 months ago
Rerunning snyk
manually (while the original process was still hung) generated a normal-looking report in 8s.
After I killed the original process, snyk
wrote the following to the report file:
wtwhite@wtwhite-vuw-vm:~/code/FRESH_xshady$ cat CVE-2016-6802/scan-results/snyk/snyk-report.json
{
"ok": false,
"error": "socket hang up",
"path": "/home/wtwhite/code/FRESH_xshady/CVE-2016-6802"
}
While testing out the new
sca/Makefile
inshadedetector
, I ranmake -j 4
on a fresh clone of this repo to run up to 4 tasks in parallel. However, thesnyk
task generating a report forCVE-2016-6802
hung:strace
shows it's waiting for some futex (not, e.g., for me to type something onstdin
):Several minutes later it had made some "progress" but was still waiting on the same futex:
This looks like a bug in
snyk
. I would have guessed that it's only likely to happen when multiple instances ofsnyk
are running, but thefutex()
man page shows thatFUTEX_WAIT_PRIVATE
indicates a futex completely local to a single process, used to coordinate between threads.Next step: Raise a ticket with them.