qrexec: implement buffered write to a child stdin
Implement one of TODOs left in the code. Without this buffering, it may happen that qrexec-agent will hang waiting on write(2) to the child process, while that child will do the same (try to write something to the qrexec-agent), without reading its stdin. This would end up in a deadlock. Fixes QubesOS/qubes-issues#1347
This commit is contained in:
parent
f063b4a90f
commit
97a3793345
@ -168,6 +168,8 @@ int handle_input(libvchan_t *vchan, int fd, int msg_type)
|
|||||||
return -1;
|
return -1;
|
||||||
|
|
||||||
if (len == 0) {
|
if (len == 0) {
|
||||||
|
/* restore flags */
|
||||||
|
set_block(fd);
|
||||||
if (shutdown(fd, SHUT_RD) < 0) {
|
if (shutdown(fd, SHUT_RD) < 0) {
|
||||||
if (errno == ENOTSOCK)
|
if (errno == ENOTSOCK)
|
||||||
close(fd);
|
close(fd);
|
||||||
@ -184,16 +186,27 @@ int handle_input(libvchan_t *vchan, int fd, int msg_type)
|
|||||||
* in this case "status" will be set
|
* in this case "status" will be set
|
||||||
* -1 - vchan error occurred
|
* -1 - vchan error occurred
|
||||||
* 0 - EOF received, do not attempt to access this FD again
|
* 0 - EOF received, do not attempt to access this FD again
|
||||||
* 1 - some data processed, call it again when buffer space and more data
|
* 1 - maybe some data processed, call it again when buffer space and more data
|
||||||
* available
|
* available
|
||||||
*/
|
*/
|
||||||
|
|
||||||
int handle_remote_data(libvchan_t *data_vchan, int stdin_fd, int *status)
|
int handle_remote_data(libvchan_t *data_vchan, int stdin_fd, int *status,
|
||||||
|
struct buffer *stdin_buf)
|
||||||
{
|
{
|
||||||
struct msg_header hdr;
|
struct msg_header hdr;
|
||||||
char buf[MAX_DATA_CHUNK];
|
char buf[MAX_DATA_CHUNK];
|
||||||
|
|
||||||
/* TODO: set stdin_fd to non-blocking mode and handle its buffering */
|
/* do not receive any data if we have something already buffered */
|
||||||
|
switch (flush_client_data(stdin_fd, stdin_buf)) {
|
||||||
|
case WRITE_STDIN_OK:
|
||||||
|
break;
|
||||||
|
case WRITE_STDIN_BUFFERED:
|
||||||
|
return 1;
|
||||||
|
case WRITE_STDIN_ERROR:
|
||||||
|
perror("write");
|
||||||
|
return 0;
|
||||||
|
}
|
||||||
|
|
||||||
while (libvchan_data_ready(data_vchan) > 0) {
|
while (libvchan_data_ready(data_vchan) > 0) {
|
||||||
if (libvchan_recv(data_vchan, &hdr, sizeof(hdr)) < 0)
|
if (libvchan_recv(data_vchan, &hdr, sizeof(hdr)) < 0)
|
||||||
return -1;
|
return -1;
|
||||||
@ -214,6 +227,8 @@ int handle_remote_data(libvchan_t *data_vchan, int stdin_fd, int *status)
|
|||||||
/* discard the data */
|
/* discard the data */
|
||||||
continue;
|
continue;
|
||||||
if (hdr.len == 0) {
|
if (hdr.len == 0) {
|
||||||
|
/* restore flags */
|
||||||
|
set_block(stdin_fd);
|
||||||
if (shutdown(stdin_fd, SHUT_WR) < 0) {
|
if (shutdown(stdin_fd, SHUT_WR) < 0) {
|
||||||
if (errno == ENOTSOCK)
|
if (errno == ENOTSOCK)
|
||||||
close(stdin_fd);
|
close(stdin_fd);
|
||||||
@ -221,8 +236,12 @@ int handle_remote_data(libvchan_t *data_vchan, int stdin_fd, int *status)
|
|||||||
stdin_fd = -1;
|
stdin_fd = -1;
|
||||||
return 0;
|
return 0;
|
||||||
} else {
|
} else {
|
||||||
/* FIXME: use buffered write here to prevent deadlock */
|
switch (write_stdin(stdin_fd, buf, hdr.len, stdin_buf)) {
|
||||||
if (!write_all(stdin_fd, buf, hdr.len)) {
|
case WRITE_STDIN_OK:
|
||||||
|
break;
|
||||||
|
case WRITE_STDIN_BUFFERED:
|
||||||
|
return 1;
|
||||||
|
case WRITE_STDIN_ERROR:
|
||||||
if (errno == EPIPE || errno == ECONNRESET) {
|
if (errno == EPIPE || errno == ECONNRESET) {
|
||||||
if (shutdown(stdin_fd, SHUT_WR) < 0) {
|
if (shutdown(stdin_fd, SHUT_WR) < 0) {
|
||||||
if (errno == ENOTSOCK)
|
if (errno == ENOTSOCK)
|
||||||
@ -266,15 +285,18 @@ int process_child_io(libvchan_t *data_vchan,
|
|||||||
int remote_process_status = -1;
|
int remote_process_status = -1;
|
||||||
int ret, max_fd;
|
int ret, max_fd;
|
||||||
struct timespec zero_timeout = { 0, 0 };
|
struct timespec zero_timeout = { 0, 0 };
|
||||||
|
struct buffer stdin_buf;
|
||||||
|
|
||||||
sigemptyset(&selectmask);
|
sigemptyset(&selectmask);
|
||||||
sigaddset(&selectmask, SIGCHLD);
|
sigaddset(&selectmask, SIGCHLD);
|
||||||
sigprocmask(SIG_BLOCK, &selectmask, NULL);
|
sigprocmask(SIG_BLOCK, &selectmask, NULL);
|
||||||
sigemptyset(&selectmask);
|
sigemptyset(&selectmask);
|
||||||
|
|
||||||
|
set_nonblock(stdin_fd);
|
||||||
set_nonblock(stdout_fd);
|
set_nonblock(stdout_fd);
|
||||||
set_nonblock(stderr_fd);
|
set_nonblock(stderr_fd);
|
||||||
|
|
||||||
|
buffer_init(&stdin_buf);
|
||||||
while (1) {
|
while (1) {
|
||||||
if (child_exited) {
|
if (child_exited) {
|
||||||
pid_t pid;
|
pid_t pid;
|
||||||
@ -283,6 +305,8 @@ int process_child_io(libvchan_t *data_vchan,
|
|||||||
if (pid == child_process_pid) {
|
if (pid == child_process_pid) {
|
||||||
child_process_status = WEXITSTATUS(status);
|
child_process_status = WEXITSTATUS(status);
|
||||||
if (stdin_fd >= 0) {
|
if (stdin_fd >= 0) {
|
||||||
|
/* restore flags */
|
||||||
|
set_block(stdin_fd);
|
||||||
if (shutdown(stdin_fd, SHUT_WR) < 0) {
|
if (shutdown(stdin_fd, SHUT_WR) < 0) {
|
||||||
if (errno == ENOTSOCK)
|
if (errno == ENOTSOCK)
|
||||||
close(stdin_fd);
|
close(stdin_fd);
|
||||||
@ -305,7 +329,9 @@ int process_child_io(libvchan_t *data_vchan,
|
|||||||
}
|
}
|
||||||
/* also if vchan is disconnected (and we processed all the data), there
|
/* also if vchan is disconnected (and we processed all the data), there
|
||||||
* is no sense of processing further data */
|
* is no sense of processing further data */
|
||||||
if (!libvchan_data_ready(data_vchan) && !libvchan_is_open(data_vchan)) {
|
if (!libvchan_data_ready(data_vchan) &&
|
||||||
|
!libvchan_is_open(data_vchan) &&
|
||||||
|
!buffer_len(&stdin_buf)) {
|
||||||
if (child_process_pid == 0)
|
if (child_process_pid == 0)
|
||||||
child_process_status = remote_process_status;
|
child_process_status = remote_process_status;
|
||||||
break;
|
break;
|
||||||
@ -338,8 +364,15 @@ int process_child_io(libvchan_t *data_vchan,
|
|||||||
FD_SET(vchan_fd, &rdset);
|
FD_SET(vchan_fd, &rdset);
|
||||||
if (vchan_fd > max_fd)
|
if (vchan_fd > max_fd)
|
||||||
max_fd = vchan_fd;
|
max_fd = vchan_fd;
|
||||||
|
/* if we have something buffered for the child process, wake also on
|
||||||
|
* writable stdin */
|
||||||
|
if (stdin_fd > -1 && buffer_len(&stdin_buf)) {
|
||||||
|
FD_SET(stdin_fd, &wrset);
|
||||||
|
if (stdin_fd > max_fd)
|
||||||
|
max_fd = stdin_fd;
|
||||||
|
}
|
||||||
|
|
||||||
if (libvchan_data_ready(data_vchan) > 0) {
|
if (!buffer_len(&stdin_buf) && libvchan_data_ready(data_vchan) > 0) {
|
||||||
/* check for other FDs, but exit immediately */
|
/* check for other FDs, but exit immediately */
|
||||||
ret = pselect(max_fd + 1, &rdset, &wrset, NULL, &zero_timeout, &selectmask);
|
ret = pselect(max_fd + 1, &rdset, &wrset, NULL, &zero_timeout, &selectmask);
|
||||||
} else
|
} else
|
||||||
@ -361,7 +394,7 @@ int process_child_io(libvchan_t *data_vchan,
|
|||||||
}
|
}
|
||||||
|
|
||||||
/* handle_remote_data will check if any data is available */
|
/* handle_remote_data will check if any data is available */
|
||||||
switch (handle_remote_data(data_vchan, stdin_fd, &remote_process_status)) {
|
switch (handle_remote_data(data_vchan, stdin_fd, &remote_process_status, &stdin_buf)) {
|
||||||
case -1:
|
case -1:
|
||||||
handle_vchan_error("read");
|
handle_vchan_error("read");
|
||||||
break;
|
break;
|
||||||
@ -406,6 +439,8 @@ int process_child_io(libvchan_t *data_vchan,
|
|||||||
/* make sure that all the pipes/sockets are closed, so the child process
|
/* make sure that all the pipes/sockets are closed, so the child process
|
||||||
* (if any) will know that the connection is terminated */
|
* (if any) will know that the connection is terminated */
|
||||||
if (stdout_fd != -1) {
|
if (stdout_fd != -1) {
|
||||||
|
/* restore flags */
|
||||||
|
set_block(stdout_fd);
|
||||||
if (shutdown(stdout_fd, SHUT_RD) < 0) {
|
if (shutdown(stdout_fd, SHUT_RD) < 0) {
|
||||||
if (errno == ENOTSOCK)
|
if (errno == ENOTSOCK)
|
||||||
close(stdout_fd);
|
close(stdout_fd);
|
||||||
@ -413,6 +448,8 @@ int process_child_io(libvchan_t *data_vchan,
|
|||||||
stdout_fd = -1;
|
stdout_fd = -1;
|
||||||
}
|
}
|
||||||
if (stdin_fd != -1) {
|
if (stdin_fd != -1) {
|
||||||
|
/* restore flags */
|
||||||
|
set_block(stdin_fd);
|
||||||
if (shutdown(stdin_fd, SHUT_WR) < 0) {
|
if (shutdown(stdin_fd, SHUT_WR) < 0) {
|
||||||
if (errno == ENOTSOCK)
|
if (errno == ENOTSOCK)
|
||||||
close(stdin_fd);
|
close(stdin_fd);
|
||||||
@ -420,6 +457,8 @@ int process_child_io(libvchan_t *data_vchan,
|
|||||||
stdin_fd = -1;
|
stdin_fd = -1;
|
||||||
}
|
}
|
||||||
if (stderr_fd != -1) {
|
if (stderr_fd != -1) {
|
||||||
|
/* restore flags */
|
||||||
|
set_block(stderr_fd);
|
||||||
close(stderr_fd);
|
close(stderr_fd);
|
||||||
stderr_fd = -1;
|
stderr_fd = -1;
|
||||||
}
|
}
|
||||||
|
Loading…
Reference in New Issue
Block a user