Implement structured exit status handling and correct POSIX wait status encoding (#910)

Yaxuan-w · web-flow · commit f15676e48a42 · 2026-03-09T21:28:46.000-04:00
* Fix exit code handling to include signal termination

* Revert fs_call

* Remove redundant bit check

* Not using sleep to sync in test
diff --git a/skip_test_cases.txt b/skip_test_cases.txt
@@ -1,5 +1,5 @@
 file_tests/deterministic/popen.c
-process_tests/deterministic/exit_failure.c
+signal_tests/deterministic/kill.c
 signal_tests/deterministic/signal.c
 signal_tests/deterministic/signal_int_thread.c
 signal_tests/deterministic/signal_longjmp.c
diff --git a/src/cage/src/cage.rs b/src/cage/src/cage.rs
@@ -14,10 +14,100 @@ pub use std::sync::Arc;
 use sysdefs::constants::lind_platform_const::MAX_CAGEID;
 use sysdefs::data::fs_struct::SigactionStruct;
 
+/// Represents how a cage terminated, mirroring the two primary POSIX
+/// process termination modes.
+///
+/// A process may either:
+/// - exit normally via `exit()` with an exit code, or
+/// - be terminated by a signal.
+///
+/// This enum stores the termination information in a structured form
+/// before it is encoded into the traditional POSIX wait status returned
+/// by `waitpid`.
+///
+/// TODO: Currently, Lind-Wasm only supports normal exit and signal
+/// termination. Job-control states such as `Stopped` and `Continued`
+/// are not yet implemented.
+#[derive(Debug, Clone, Copy)]
+pub enum ExitStatus {
+    /// Process exited normally with the given exit code.
+    /// The exit code will later be truncated to 8 bits when encoded
+    /// into a POSIX wait status.
+    Exited(i32),
+    /// Process was terminated by a signal.
+    /// The boolean indicates whether a core dump occurred.
+    Signaled(i32, bool), // (signal, core_dump)
+}
+
+/// A zombie child process.
+///
+/// A zombie represents a child cage that has already terminated but whose
+/// termination status has not yet been collected by the parent via
+/// `waitpid` or a related wait syscall.
+///
+/// The runtime stores the cage identifier together with the termination
+/// status so the parent can later retrieve it.
 #[derive(Debug, Clone, Copy)]
 pub struct Zombie {
     pub cageid: u64,
-    pub exit_code: i32,
+    pub exit_code: ExitStatus,
+}
+
+/// Encode a structured `ExitStatus` into the traditional POSIX
+/// `waitpid` status integer.
+///
+/// The encoding follows the standard Unix wait status layout:
+///
+/// Normal exit:
+///     status = (exit_code & 0xff) << 8
+///
+/// Signal termination:
+///     bits 0–6   : signal number
+///     bit 7      : core dump flag
+///
+/// Exit codes are truncated to 8 bits to match POSIX semantics.
+/// This ensures that `WIFEXITED`, `WEXITSTATUS`, and related libc
+/// macros behave correctly.
+pub fn encode_wait_status(st: ExitStatus) -> i32 {
+    match st {
+        ExitStatus::Exited(code) => ((code & 0xff) << 8),
+        ExitStatus::Signaled(sig, core) => {
+            let mut s = sig & 0x7f;
+            if core {
+                s |= 0x80;
+            } // core dump flag in traditional encoding
+            s
+        }
+    }
+}
+
+/// Record the final termination status of a cage.
+///
+/// This function stores the exit status that will later be reported to the
+/// parent when the cage becomes a zombie (e.g., via `waitpid`). The status
+/// may represent either a normal exit (`Exited`) or signal-based termination
+/// (`Signaled`).
+///
+/// The recorded status is later consumed when inserting a `Zombie` entry
+/// into the parent's zombie list.
+///
+/// This function is currently used on signal-based termination to record
+/// the signal number.
+///
+/// # Panics
+///
+/// Panics if the specified cage does not exist in the cage table.
+pub fn cage_record_exit_status(cageid: u64, status: ExitStatus) {
+    let cage = get_cage(cageid).unwrap_or_else(|| {
+        panic!(
+            "Attempted to record exit status for non-existent cage ID {}",
+            cageid
+        )
+    });
+    let mut final_status = cage.final_exit_status.write();
+    if final_status.is_none() {
+        *final_status = Some(status);
+    }
 }
 
 #[derive(Debug)]
@@ -73,6 +163,28 @@ pub struct Cage {
     pub child_num: AtomicU64,
     // vmmap represents the virtual memory mapping for this cage. More details on `memory::vmmap`
     pub vmmap: RwLock<Vmmap>,
+    // final_exit_status stores the terminal status of the cage once a
+    // termination condition has been determined.
+    //
+    // This field is used as a temporary cache for the cage's final exit
+    // status (either `Exited(code)` or `Signaled(signo, core_dump)`).
+    // The status is recorded when the cage enters a terminal state
+    // (e.g., exit syscall or signal-triggered termination), but before
+    // the cage is fully cleaned up.
+    //
+    // The recorded value is later consumed when inserting a `Zombie`
+    // entry into the parent cage's `zombies` list, which is what the
+    // parent observes through `wait()` / `waitpid()`.
+    //
+    // This field cannot be replaced by the `exit_code` stored in
+    // `Zombie`. A `Zombie` object only exists in the parent's zombie
+    // list and is created during the final cleanup phase of the exiting
+    // cage. However, the cage's termination reason may need to be
+    // determined earlier (for example during signal handling), before
+    // the zombie entry is created. Therefore, the cage must temporarily
+    // store its final termination status until the zombie entry is
+    // generated.
+    pub final_exit_status: RwLock<Option<ExitStatus>>,
 }
 
 /// We achieve an O(1) complexity for our cage map implementation through the following three approaches:
@@ -225,6 +337,7 @@ mod tests {
             zombies: RwLock::new(vec![]),
             child_num: AtomicU64::new(0),
             vmmap: RwLock::new(crate::memory::vmmap::Vmmap::new()),
+            final_exit_status: RwLock::new(None),
         };
 
         add_cage(2, test_cage);
diff --git a/src/rawposix/src/init.rs b/src/rawposix/src/init.rs
@@ -240,6 +240,7 @@ pub fn rawposix_start(verbosity: isize) {
         zombies: RwLock::new(vec![]),
         child_num: AtomicU64::new(0),
         vmmap: RwLock::new(Vmmap::new()),
+        final_exit_status: RwLock::new(None),
     };
 
     // Add cage to cagetable
diff --git a/src/rawposix/src/sys_calls.rs b/src/rawposix/src/sys_calls.rs
@@ -4,7 +4,7 @@
 use cage::memory::vmmap::{VmmapOps, *};
 use cage::signal::signal::{convert_signal_mask, lind_send_signal, signal_check_trigger};
 use cage::timer::IntervalTimer;
-use cage::{add_cage, get_cage, remove_cage, Cage, Zombie};
+use cage::{add_cage, encode_wait_status, get_cage, remove_cage, Cage, ExitStatus, Zombie};
 use dashmap::DashMap;
 use fdtables;
 use libc::sched_yield;
@@ -141,6 +141,7 @@ pub extern "C" fn fork_syscall(
             zombies: RwLock::new(vec![]),
             child_num: AtomicU64::new(0),
             vmmap: RwLock::new(new_vmmap),
+            final_exit_status: RwLock::new(None),
         };
 
         // increment child counter for parent
@@ -346,6 +347,9 @@ pub extern "C" fn exit_syscall(
     // in the cage (0 = no, 1 = yes).
     let mut is_last_thread = 0;
 
+    // Set the normal exit code
+    let exit_st = ExitStatus::Exited(status);
+
     // Perform thread exit inside RawPOSIX.
     //
     // `lind_thread_exit` returns true if this thread was the last
@@ -371,9 +375,22 @@ pub extern "C" fn exit_syscall(
                 if let Some(parent) = parent_cage {
                     parent.child_num.fetch_sub(1, SeqCst);
                     let mut zombie_vec = parent.zombies.write();
+                    // Determine the final termination status for this cage.
+                    //
+                    // If a termination status was previously recorded (e.g., due to
+                    // signal-based termination), use that value. Otherwise fall back
+                    // to the normal exit status derived from the `exit()` syscall.
+                    //
+                    // This ensures that signal-triggered termination (which may have
+                    // recorded `ExitStatus::Signaled`) is not overwritten by the
+                    // default exit status path.
+                    let zombie_status = {
+                        let recorded = *selfcage.final_exit_status.read();
+                        recorded.unwrap_or(exit_st)
+                    };
                     zombie_vec.push(Zombie {
                         cageid: selfcageid,
-                        exit_code: status,
+                        exit_code: zombie_status,
                     });
                 } else {
                     // if parent already exited
@@ -596,7 +613,7 @@ pub extern "C" fn waitpid_syscall(
     let zombie = zombie_opt.unwrap();
     // update the status
     if let Some(status) = status {
-        *status = zombie.exit_code;
+        *status = encode_wait_status(zombie.exit_code);
     }
 
     // return child's cageid
diff --git a/src/wasmtime/crates/lind-multi-process/src/signal.rs b/src/wasmtime/crates/lind-multi-process/src/signal.rs
@@ -67,6 +67,9 @@ pub fn signal_handler<
             // look up the signal's default handler
             match sysdefs::constants::signal_default_handler_dispatcher(signo) {
                 sysdefs::constants::SignalDefaultHandler::Terminate => {
+                    // Set the exit status of the cage to signaled with the signal number and core dump flag
+                    // (currently set to false)
+                    cage::cage_record_exit_status(cageid, cage::ExitStatus::Signaled(signo, false));
                     // if we are supposed to be terminated, switch the epoch state of all other threads
                     // to "killed" state and perform a suicide
                     cage::signal::epoch_kill_all(cageid);
diff --git a/tests/unit-tests/signal_tests/deterministic/kill.c b/tests/unit-tests/signal_tests/deterministic/kill.c
@@ -0,0 +1,52 @@
+#include <stdio.h>
+#include <stdlib.h>
+#include <unistd.h>
+#include <signal.h>
+#include <sys/wait.h>
+
+int main(void) {
+    pid_t pid = fork();
+    if (pid < 0) {
+        perror("fork");
+        return 1;
+    }
+
+    if (pid == 0) {
+        // child: wait for parent to kill us
+        while (1) {
+            
+        }
+        _exit(123);
+    }
+
+    sleep(1);
+
+    if (kill(pid, SIGKILL) != 0) {
+        perror("kill(SIGKILL)");
+        return 1;
+    }
+
+    int status = 0;
+    if (waitpid(pid, &status, 0) < 0) {
+        perror("waitpid");
+        return 1;
+    }
+
+    printf("raw wait status = 0x%x\n", status);
+
+    if (!WIFSIGNALED(status)) {
+        printf("FAIL: child not reported as signaled\n");
+        return 2;
+    }
+
+    int sig = WTERMSIG(status);
+    printf("child terminated by signal %d\n", sig);
+
+    if (sig != SIGKILL) {
+        printf("FAIL: expected SIGKILL (%d), got %d\n", SIGKILL, sig);
+        return 3;
+    }
+
+    printf("PASS\n");
+    return 0;
+}
