mir/ovs
2
0
Fork 0
mirror of https://github.com/openvswitch/ovs synced 2025-09-03 07:45:30 +00:00
Code Issues Releases Wiki Activity

process: block signals while spawning child processes

Browse Source 
Between fork() and execvp() calls in the process_start()
function both child and parent processes share the same
file descriptors.  This means that, if a child process
received a signal during this time interval, then it could
potentially write data to a shared file descriptor.

One such example is fatal signal handler, where, if
child process received SIGTERM signal, then it would
write data into pipe.  Then a read event would occur
on the other end of the pipe where parent process is
listening and this would make parent process to incorrectly
believe that it was the one who received SIGTERM.
Also, since parent process never reads data from this
pipe, then this bug would make parent process to consume
100% CPU by immediately waking up from the event loop.

This patch will help to avoid this problem by blocking
signals until child closes all its file descriptors.

Signed-off-by: Ansis Atteka <aatteka@nicira.com>
Reported-by: Suganya Ramachandran <suganyar@vmware.com>
Issue: 1255110
This commit is contained in:
Ansis Atteka
2014-05-23 14:15:28 -07:00
parent 60032110f1
commit 1481a7551d
5 changed files with 43 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

18
lib/fatal-signal.c
View File

@@ -374,3 +374,21 @@ fatal_signal_fork(void)
raise(stored_sig_nr); raise(stored_sig_nr);
} }
} }
#ifndef _WIN32
/* Blocks all fatal signals and returns previous signal mask into
* 'prev_mask'. */
void
fatal_signal_block(sigset_t *prev_mask)
{
int i;
sigset_t block_mask;
sigemptyset(&block_mask);
for (i = 0; i < ARRAY_SIZE(fatal_signals); i++) {
int sig_nr = fatal_signals[i];
sigaddset(&block_mask, sig_nr);
}
xpthread_sigmask(SIG_BLOCK, &block_mask, prev_mask);
}
#endif

7
lib/fatal-signal.h
View File

@@ -17,6 +17,9 @@
#ifndef FATAL_SIGNAL_H #ifndef FATAL_SIGNAL_H
#define FATAL_SIGNAL_H 1 #define FATAL_SIGNAL_H 1
#ifndef _WIN32
#include <signal.h>
#endif
#include <stdbool.h> #include <stdbool.h>
/* Basic interface. */ /* Basic interface. */
@@ -41,4 +44,8 @@ int fatal_signal_unlink_file_now(const char *);
* it through. */ * it through. */
void fatal_signal_handler(int sig_nr); void fatal_signal_handler(int sig_nr);
#ifndef _WIN32
void fatal_signal_block(sigset_t *prev_mask);
#endif
#endif /* fatal-signal.h */ #endif /* fatal-signal.h */

7
lib/ovs-thread.c
View File

@@ -18,6 +18,9 @@
#include "ovs-thread.h" #include "ovs-thread.h"
#include <errno.h> #include <errno.h>
#include <poll.h> #include <poll.h>
#ifndef _WIN32
#include <signal.h>
#endif
#include <stdlib.h> #include <stdlib.h>
#include <unistd.h> #include <unistd.h>
#include "compiler.h" #include "compiler.h"
@@ -177,6 +180,10 @@ XPTHREAD_FUNC2(pthread_key_create, pthread_key_t *, destructor_func *);
XPTHREAD_FUNC1(pthread_key_delete, pthread_key_t); XPTHREAD_FUNC1(pthread_key_delete, pthread_key_t);
XPTHREAD_FUNC2(pthread_setspecific, pthread_key_t, const void *); XPTHREAD_FUNC2(pthread_setspecific, pthread_key_t, const void *);
#ifndef _WIN32
XPTHREAD_FUNC3(pthread_sigmask, int, const sigset_t *, sigset_t *);
#endif
static void static void
ovs_mutex_init__(const struct ovs_mutex *l_, int type) ovs_mutex_init__(const struct ovs_mutex *l_, int type)
{ {

4
lib/ovs-thread.h
View File

@@ -157,6 +157,10 @@ void xpthread_key_create(pthread_key_t *, void (*destructor)(void *));
void xpthread_key_delete(pthread_key_t); void xpthread_key_delete(pthread_key_t);
void xpthread_setspecific(pthread_key_t, const void *); void xpthread_setspecific(pthread_key_t, const void *);
#ifndef _WIN32
void xpthread_sigmask(int, const sigset_t *, sigset_t *);
#endif
pthread_t ovs_thread_create(const char *name, void *(*)(void *), void *); pthread_t ovs_thread_create(const char *name, void *(*)(void *), void *);
void xpthread_join(pthread_t, void **); void xpthread_join(pthread_t, void **);

9
lib/process.c
View File

@@ -227,6 +227,7 @@ process_start(char **argv, struct process **pp)
#ifndef _WIN32 #ifndef _WIN32
pid_t pid; pid_t pid;
int error; int error;
sigset_t prev_mask;
assert_single_threaded(); assert_single_threaded();
@@ -237,14 +238,15 @@ process_start(char **argv, struct process **pp)
return error; return error;
} }
fatal_signal_block(&prev_mask);
pid = fork(); pid = fork();
if (pid < 0) { if (pid < 0) {
VLOG_WARN("fork failed: %s", ovs_strerror(errno)); VLOG_WARN("fork failed: %s", ovs_strerror(errno));
return errno; error = errno;
} else if (pid) { } else if (pid) {
/* Running in parent process. */ /* Running in parent process. */
*pp = process_register(argv[0], pid); *pp = process_register(argv[0], pid);
return 0; error = 0;
} else { } else {
/* Running in child process. */ /* Running in child process. */
int fd_max = get_max_fds(); int fd_max = get_max_fds();
@@ -254,11 +256,14 @@ process_start(char **argv, struct process **pp)
for (fd = 3; fd < fd_max; fd++) { for (fd = 3; fd < fd_max; fd++) {
close(fd); close(fd);
} }
xpthread_sigmask(SIG_SETMASK, &prev_mask, NULL);
execvp(argv[0], argv); execvp(argv[0], argv);
fprintf(stderr, "execvp(\"%s\") failed: %s\n", fprintf(stderr, "execvp(\"%s\") failed: %s\n",
argv[0], ovs_strerror(errno)); argv[0], ovs_strerror(errno));
_exit(1); _exit(1);
} }
xpthread_sigmask(SIG_SETMASK, &prev_mask, NULL);
return error;
#else #else
*pp = NULL; *pp = NULL;
return ENOSYS; return ENOSYS;