Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(441)

Issues Search
    My Issues | Starred     Open | Closed | All

Unified Diff: ipc/ipc_channel_posix.cc

Issue 25325002: workaround for mac kernel bug (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src
Patch Set: test now actually triggers kernel bug, auto-flush CloseFD messages Created 7 years, 2 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
« ipc/ipc_channel_posix.h ('K') | « ipc/ipc_channel_posix.h ('k') | ipc/ipc_channel_reader.h » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: ipc/ipc_channel_posix.cc
diff --git a/ipc/ipc_channel_posix.cc b/ipc/ipc_channel_posix.cc
index 98a7cd8a9fa0ad092a1a47733c8b89acd9f16bf6..9c05220f59153e03c4ff13d8ae1485475072dd95 100644
--- a/ipc/ipc_channel_posix.cc
+++ b/ipc/ipc_channel_posix.cc
@@ -347,6 +347,28 @@ bool Channel::ChannelImpl::Connect() {
return did_connect;
}
+void Channel::ChannelImpl::CloseFileDescriptors(Message* msg) {
+#if 0 // defined(OS_MACOSX) // Disable fix to make sure test works
+ // There is a bug on OSX which makes it dangerous to close
+ // a file descriptor while it is in transit. So instead we
+ // store the file descriptor in a set and send a message to
+ // the recipient, which is queued AFTER the message that
+ // sent the FD. The recipient will reply to the message,
+ // letting us know that it is now safe to close the file
+ // descptor. For more information, see:
Scott Hess - ex-Googler 2013/10/09 20:18:33 descriptor
hubbe 2013/10/09 21:34:12 Done.
+ // http://crbug.com/298276
+ std::vector<int> to_close;
+ msg->file_descriptor_set()->GetFDsToCloseAndClear(&to_close);
+ for (size_t i = 0; i < to_close.size(); i++) {
+ fds_to_close_.insert(to_close[i]);
+ QueueCloseFDMessage(to_close[i], 2);
+ }
+#else
+ msg->file_descriptor_set()->CommitAll();
+#endif
+}
+
+
bool Channel::ChannelImpl::ProcessOutgoingMessages() {
DCHECK(!waiting_connect_); // Why are we trying to send messages if there's
// no connection?
@@ -419,7 +441,7 @@ bool Channel::ChannelImpl::ProcessOutgoingMessages() {
msgh.msg_iov = &iov;
msgh.msg_controllen = 0;
if (bytes_written > 0) {
- msg->file_descriptor_set()->CommitAll();
+ CloseFileDescriptors(msg);
}
}
#endif // IPC_USES_READWRITE
@@ -440,7 +462,7 @@ bool Channel::ChannelImpl::ProcessOutgoingMessages() {
}
}
if (bytes_written > 0)
- msg->file_descriptor_set()->CommitAll();
+ CloseFileDescriptors(msg);
if (bytes_written < 0 && !SocketWriteErrorIsRecoverable()) {
#if defined(OS_MACOSX)
@@ -575,6 +597,16 @@ void Channel::ChannelImpl::ResetToAcceptingConnectionState() {
// Close any outstanding, received file descriptors.
ClearInputFDs();
+
+#if defined(OS_MACOSX)
+ // Clear any outstanding, sent file descriptors.
+ for (std::set<int>::iterator i = fds_to_close_.begin();
+ i != fds_to_close_.end();
+ ++i) {
+ if (HANDLE_EINTR(close(*i)) < 0)
+ PLOG(ERROR) << "close";
+ }
+#endif
}
// static
@@ -592,7 +624,6 @@ void Channel::ChannelImpl::SetGlobalPid(int pid) {
// Called by libevent when we can read from the pipe without blocking.
void Channel::ChannelImpl::OnFileCanReadWithoutBlocking(int fd) {
- bool send_server_hello_msg = false;
if (fd == server_listen_pipe_) {
int new_pipe = 0;
if (!ServerAcceptConnection(server_listen_pipe_, &new_pipe) ||
@@ -631,18 +662,16 @@ void Channel::ChannelImpl::OnFileCanReadWithoutBlocking(int fd) {
if (!AcceptConnection()) {
NOTREACHED() << "AcceptConnection should not fail on server";
}
- send_server_hello_msg = true;
waiting_connect_ = false;
} else if (fd == pipe_) {
if (waiting_connect_ && (mode_ & MODE_SERVER_FLAG)) {
- send_server_hello_msg = true;
waiting_connect_ = false;
}
if (!ProcessIncomingMessages()) {
// ClosePipeOnError may delete this object, so we mustn't call
// ProcessOutgoingMessages.
- send_server_hello_msg = false;
ClosePipeOnError();
+ return;
}
} else {
NOTREACHED() << "Unknown pipe " << fd;
@@ -651,8 +680,8 @@ void Channel::ChannelImpl::OnFileCanReadWithoutBlocking(int fd) {
// If we're a server and handshaking, then we want to make sure that we
// only send our handshake message after we've processed the client's.
// This gives us a chance to kill the client if the incoming handshake
- // is invalid.
- if (send_server_hello_msg) {
+ // is invalid. This also flushes any closefd messagse.
+ if (!is_blocked_on_write_) {
Scott Hess - ex-Googler 2013/10/09 20:18:33 I am nowhere close to understanding whether the ch
hubbe 2013/10/09 21:34:12 It's fairly easy to reason out: When we enter OnF
ProcessOutgoingMessages();
}
}
@@ -902,29 +931,81 @@ void Channel::ChannelImpl::ClearInputFDs() {
input_fds_.clear();
}
-void Channel::ChannelImpl::HandleHelloMessage(const Message& msg) {
+void Channel::ChannelImpl::QueueCloseFDMessage(int fd, int hops) {
+ switch (hops) {
+ case 1:
+ case 2: {
+ // Create the message
+ scoped_ptr<Message> msg(new Message(MSG_ROUTING_NONE,
+ CLOSE_FD_MESSAGE_TYPE,
+ IPC::Message::PRIORITY_NORMAL));
+ if (!msg->WriteInt(hops - 1) || !msg->WriteInt(fd)) {
+ NOTREACHED() << "Unable to pickle close fd.";
+ }
+ // Send(msg.release());
+ output_queue_.push(msg.release());
+ break;
+ }
+
+ default:
+ NOTREACHED();
+ break;
+ }
+}
+
+void Channel::ChannelImpl::HandleInternalMessage(const Message& msg) {
// The Hello message contains only the process id.
PickleIterator iter(msg);
- int pid;
- if (!msg.ReadInt(&iter, &pid))
- NOTREACHED();
-#if defined(IPC_USES_READWRITE)
- if (mode_ & MODE_SERVER_FLAG) {
- // With IPC_USES_READWRITE, the Hello message from the client to the
- // server also contains the fd_pipe_, which will be used for all
- // subsequent file descriptor passing.
- DCHECK_EQ(msg.file_descriptor_set()->size(), 1U);
- base::FileDescriptor descriptor;
- if (!msg.ReadFileDescriptor(&iter, &descriptor)) {
+ switch (msg.type()) {
+ default:
NOTREACHED();
- }
- fd_pipe_ = descriptor.fd;
- CHECK(descriptor.auto_close);
- }
+ break;
+
+ case Channel::HELLO_MESSAGE_TYPE:
+ int pid;
+ if (!msg.ReadInt(&iter, &pid))
+ NOTREACHED();
+
+#if defined(IPC_USES_READWRITE)
+ if (mode_ & MODE_SERVER_FLAG) {
+ // With IPC_USES_READWRITE, the Hello message from the client to the
+ // server also contains the fd_pipe_, which will be used for all
+ // subsequent file descriptor passing.
+ DCHECK_EQ(msg.file_descriptor_set()->size(), 1U);
+ base::FileDescriptor descriptor;
+ if (!msg.ReadFileDescriptor(&iter, &descriptor)) {
+ NOTREACHED();
+ }
+ fd_pipe_ = descriptor.fd;
+ CHECK(descriptor.auto_close);
+ }
#endif // IPC_USES_READWRITE
- peer_pid_ = pid;
- listener()->OnChannelConnected(pid);
+ peer_pid_ = pid;
+ listener()->OnChannelConnected(pid);
+ break;
+
+#if defined(OS_MACOSX)
+ case Channel::CLOSE_FD_MESSAGE_TYPE:
+ int fd, hops;
+ if (!msg.ReadInt(&iter, &hops))
+ NOTREACHED();
+ if (!msg.ReadInt(&iter, &fd))
+ NOTREACHED();
+ std::set<int>::iterator i = fds_to_close_.find(fd);
Scott Hess - ex-Googler 2013/10/09 20:18:33 You only make use of i in one case, which leads to
hubbe 2013/10/09 21:34:12 Yep, much better, done.
+ if (hops == 0) {
+ if (i != fds_to_close_.end()) {
+ fds_to_close_.erase(i);
+ if (HANDLE_EINTR(close(fd)) < 0)
+ PLOG(ERROR) << "close";
+ } else {
+ NOTREACHED();
+ }
+ } else {
+ QueueCloseFDMessage(fd, hops);
+ }
Scott Hess - ex-Googler 2013/10/09 20:18:33 break;
hubbe 2013/10/09 21:34:12 Done.
+#endif
+ }
}
void Channel::ChannelImpl::Close() {
« ipc/ipc_channel_posix.h ('K') | « ipc/ipc_channel_posix.h ('k') | ipc/ipc_channel_reader.h » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698