diff options
| author | agl@chromium.org <agl@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98> | 2009-04-30 19:40:03 +0000 |
|---|---|---|
| committer | agl@chromium.org <agl@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98> | 2009-04-30 19:40:03 +0000 |
| commit | 3f04f2b1152b3c2b1db720792ed43c7600919953 (patch) | |
| tree | eb9e8606323e0cf51fdde717f2a351f3685f0c95 /base/process_util_posix.cc | |
| parent | e611fd66e64564d17865ed19658dc0b56e1ee746 (diff) | |
| download | chromium_src-3f04f2b1152b3c2b1db720792ed43c7600919953.zip chromium_src-3f04f2b1152b3c2b1db720792ed43c7600919953.tar.gz chromium_src-3f04f2b1152b3c2b1db720792ed43c7600919953.tar.bz2 | |
POSIX: Add code for shuffling file descriptors.
When forking a child process, one often wants to move existing file
descriptors to well known locations (stdout, stderr etc). However,
this is a process bedeviled with corner cases. Consider the case where
you open two file descriptors, get assigned fds 1 and 0 for them and
wish to shuffle them so that they end up in slots 0 and 1. Our current
code fails in this case.
We also have a problem where we're currently trying to mark file
descriptors as close-on-exec rather than closing them in the child
process. This is inherently broken in a multithreaded process where
another thread can open a file descriptor and race the loop which is
trying to mark them.
Thus, on Linux we switch to close-after-fork where we known that no
other threads exist in the process. On Mac, the code is sufficiently
different that this simple fix isn't applicable and one of the Mac
folks will need to take a look.
http://codereview.chromium.org/100127
BUG=11174
git-svn-id: svn://svn.chromium.org/chrome/trunk/src@14978 0039d316-1c4b-4281-b951-d872f2087c98
Diffstat (limited to 'base/process_util_posix.cc')
| -rw-r--r-- | base/process_util_posix.cc | 97 |
1 files changed, 84 insertions, 13 deletions
diff --git a/base/process_util_posix.cc b/base/process_util_posix.cc index 859dfc3..c0e792b 100644 --- a/base/process_util_posix.cc +++ b/base/process_util_posix.cc @@ -14,6 +14,7 @@ #include <unistd.h> #include <limits> +#include <set> #include "base/basictypes.h" #include "base/logging.h" @@ -95,8 +96,82 @@ class ScopedDIRClose { }; typedef scoped_ptr_malloc<DIR, ScopedDIRClose> ScopedDIR; +void CloseSuperfluousFds(const base::InjectiveMultimap& saved_mapping) { + std::set<int> saved_fds; + + // Don't close stdin, stdout and stderr + saved_fds.insert(STDIN_FILENO); + saved_fds.insert(STDOUT_FILENO); + saved_fds.insert(STDERR_FILENO); + + for (base::InjectiveMultimap::const_iterator + i = saved_mapping.begin(); i != saved_mapping.end(); ++i) { + saved_fds.insert(i->dest); + } + +#if defined(OS_LINUX) + static const char fd_dir[] = "/proc/self/fd"; +#elif defined(OS_MACOSX) + static const char fd_dir[] = "/dev/fd"; +#endif + + ScopedDIR dir_closer(opendir(fd_dir)); + DIR *dir = dir_closer.get(); + if (NULL == dir) { + DLOG(ERROR) << "Unable to open " << fd_dir; + + // Fallback case + struct rlimit nofile; + rlim_t num_fds; + if (getrlimit(RLIMIT_NOFILE, &nofile)) { + // getrlimit failed. Take a best guess. + num_fds = 8192; + DLOG(ERROR) << "getrlimit(RLIMIT_NOFILE) failed: " << errno; + } else { + num_fds = nofile.rlim_cur; + } + + if (num_fds > INT_MAX) + num_fds = INT_MAX; + + for (rlim_t i = 0; i < num_fds; ++i) { + const int fd = static_cast<int>(i); + if (saved_fds.find(fd) != saved_fds.end()) + continue; + + int result; + do { + result = close(fd); + } while (result == -1 && errno == EINTR); + } + return; + } + + struct dirent *ent; + while ((ent = readdir(dir))) { + // Skip . and .. entries. + if (ent->d_name[0] == '.') + continue; + + char *endptr; + errno = 0; + const long int fd = strtol(ent->d_name, &endptr, 10); + if (ent->d_name[0] == 0 || *endptr || fd < 0 || fd >= INT_MAX || errno) + continue; + if (saved_fds.find(fd) != saved_fds.end()) + continue; + + int result; + do { + result = close(fd); + } while (result == -1 && errno == EINTR); + } +} + // Sets all file descriptors to close on exec except for stdin, stdout // and stderr. +// TODO(agl): Remove this function. It's fundamentally broken for multithreaded +// apps. void SetAllFDsToCloseOnExec() { #if defined(OS_LINUX) const char fd_dir[] = "/proc/self/fd"; @@ -354,19 +429,15 @@ bool GetAppOutput(const CommandLine& cl, std::string* output) { if (dev_null < 0) exit(127); - int rv; - do { - rv = dup2(pipe_fd[1], STDOUT_FILENO); - } while (rv == -1 && errno == EINTR); - do { - rv = dup2(dev_null, STDERR_FILENO); - } while (rv == -1 && errno == EINTR); - if (pipe_fd[0] != STDOUT_FILENO && pipe_fd[0] != STDERR_FILENO) - close(pipe_fd[0]); - if (pipe_fd[1] != STDOUT_FILENO && pipe_fd[1] != STDERR_FILENO) - close(pipe_fd[1]); - if (dev_null != STDOUT_FILENO && dev_null != STDERR_FILENO) - close(dev_null); + InjectiveMultimap fd_shuffle; + fd_shuffle.push_back(InjectionArc(pipe_fd[1], STDOUT_FILENO, true)); + fd_shuffle.push_back(InjectionArc(dev_null, STDERR_FILENO, true)); + fd_shuffle.push_back(InjectionArc(dev_null, STDIN_FILENO, true)); + + if (!ShuffleFileDescriptors(fd_shuffle)) + exit(127); + + CloseSuperfluousFds(fd_shuffle); const std::vector<std::string> argv = cl.argv(); scoped_array<char*> argv_cstr(new char*[argv.size() + 1]); |