LILiK
/
openwrt-packages-dist
5
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
15901 Commits
1 Branch
46 MiB
Tree: 80522ab982
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '80522ab982'
${ noResults }
openwrt-packages-dist/net/haproxy/patches/000-BUG-MEDIUM-protocols-ad...

302 lines
11 KiB
Raw Normal View History

haproxy: Update all patches for HAProxy v2.0.3 - Add new patches (see https://www.haproxy.org/bugs/bugs-2.0.3.html) - Raise PKG_RELEASE to 2 Signed-off-by: Christian Lachner <gladiac@gmail.com>
5 years ago
 
  1. commit 937604b4cfccddd607b8d4883815c4e3f9ab70d0
  2. Author: Willy Tarreau <w@1wt.eu>
  3. Date:   Wed Jul 24 16:45:02 2019 +0200
  4. 

  5.     BUG/MEDIUM: protocols: add a global lock for the init/deinit stuff
  6.     
  7.     Dragan Dosen found that the listeners lock is not sufficient to protect
  8.     the listeners list when proxies are stopping because the listeners are
  9.     also unlinked from the protocol list, and under certain situations like
  10.     bombing with soft-stop signals or shutting down many frontends in parallel
  11.     from multiple CLI connections, it could be possible to provoke multiple
  12.     instances of delete_listener() to be called in parallel for different
  13.     listeners, thus corrupting the protocol lists.
  14.     
  15.     Such operations are pretty rare, they are performed once per proxy upon
  16.     startup and once per proxy on shut down. Thus there is no point trying
  17.     to optimize anything and we can use a global lock to protect the protocol
  18.     lists during these manipulations.
  19.     
  20.     This fix (or a variant) will have to be backported as far as 1.8.
  21.     
  22.     (cherry picked from commit daacf3664506d56a1f3b050ccba504886a18b12a)
  23.     Signed-off-by: Christopher Faulet <cfaulet@haproxy.com>
  24. 

  25. diff --git a/include/proto/protocol.h b/include/proto/protocol.h

  26. index 7bbebb8e..f25f77f0 100644

  27. --- a/include/proto/protocol.h

  28. +++ b/include/proto/protocol.h

  29. @@ -23,9 +23,11 @@

  30.  #define _PROTO_PROTOCOL_H
  31.  
  32.  #include <sys/socket.h>
  33. +#include <common/hathreads.h>

  34.  #include <types/protocol.h>
  35.  
  36.  extern struct protocol *__protocol_by_family[AF_CUST_MAX];
  37. +__decl_hathreads(extern HA_SPINLOCK_T proto_lock);

  38.  
  39.  /* Registers the protocol <proto> */
  40.  void protocol_register(struct protocol *proto);
  41. diff --git a/include/types/protocol.h b/include/types/protocol.h

  42. index 1d3404b9..f38baeb9 100644

  43. --- a/include/types/protocol.h

  44. +++ b/include/types/protocol.h

  45. @@ -80,9 +80,9 @@ struct protocol {

  46.  	int (*pause)(struct listener *l);               /* temporarily pause this listener for a soft restart */
  47.  	void (*add)(struct listener *l, int port);      /* add a listener for this protocol and port */
  48.  
  49. -	struct list listeners;				/* list of listeners using this protocol */

  50. -	int nb_listeners;				/* number of listeners */

  51. -	struct list list;				/* list of registered protocols */

  52. +	struct list listeners;				/* list of listeners using this protocol (under proto_lock) */

  53. +	int nb_listeners;				/* number of listeners (under proto_lock) */

  54. +	struct list list;				/* list of registered protocols (under proto_lock) */

  55.  };
  56.  
  57.  #define CONNECT_HAS_DATA                        0x00000001 /* There's data available to be sent */
  58. diff --git a/src/listener.c b/src/listener.c

  59. index 40a774ed..b5fe2ac2 100644

  60. --- a/src/listener.c

  61. +++ b/src/listener.c

  62. @@ -433,6 +433,9 @@ static void limit_listener(struct listener *l, struct list *list)

  63.   * used as a protocol's generic enable_all() primitive, for use after the
  64.   * fork(). It puts the listeners into LI_READY or LI_FULL states depending on
  65.   * their number of connections. It always returns ERR_NONE.
  66. + *

  67. + * Must be called with proto_lock held.

  68. + *

  69.   */
  70.  int enable_all_listeners(struct protocol *proto)
  71.  {
  72. @@ -447,6 +450,9 @@ int enable_all_listeners(struct protocol *proto)

  73.   * the polling lists when they are in the LI_READY or LI_FULL states. It is
  74.   * intended to be used as a protocol's generic disable_all() primitive. It puts
  75.   * the listeners into LI_LISTEN, and always returns ERR_NONE.
  76. + *

  77. + * Must be called with proto_lock held.

  78. + *

  79.   */
  80.  int disable_all_listeners(struct protocol *proto)
  81.  {
  82. @@ -516,6 +522,9 @@ void unbind_listener_no_close(struct listener *listener)

  83.  /* This function closes all listening sockets bound to the protocol <proto>,
  84.   * and the listeners end in LI_ASSIGNED state if they were higher. It does not
  85.   * detach them from the protocol. It always returns ERR_NONE.
  86. + *

  87. + * Must be called with proto_lock held.

  88. + *

  89.   */
  90.  int unbind_all_listeners(struct protocol *proto)
  91.  {
  92. @@ -580,14 +589,19 @@ int create_listeners(struct bind_conf *bc, const struct sockaddr_storage *ss,

  93.   * number of listeners is updated, as well as the global number of listeners
  94.   * and jobs. Note that the listener must have previously been unbound. This
  95.   * is the generic function to use to remove a listener.
  96. + *

  97. + * Will grab the proto_lock.

  98. + *

  99.   */
  100.  void delete_listener(struct listener *listener)
  101.  {
  102.  	HA_SPIN_LOCK(LISTENER_LOCK, &listener->lock);
  103.  	if (listener->state == LI_ASSIGNED) {
  104.  		listener->state = LI_INIT;
  105. +		HA_SPIN_LOCK(PROTO_LOCK, &proto_lock);

  106.  		LIST_DEL(&listener->proto_list);
  107.  		listener->proto->nb_listeners--;
  108. +		HA_SPIN_UNLOCK(PROTO_LOCK, &proto_lock);

  109.  		_HA_ATOMIC_SUB(&jobs, 1);
  110.  		_HA_ATOMIC_SUB(&listeners, 1);
  111.  	}
  112. diff --git a/src/proto_sockpair.c b/src/proto_sockpair.c

  113. index a4faa370..e7dd670d 100644

  114. --- a/src/proto_sockpair.c

  115. +++ b/src/proto_sockpair.c

  116. @@ -80,6 +80,9 @@ INITCALL1(STG_REGISTER, protocol_register, &proto_sockpair);

  117.  /* Add <listener> to the list of sockpair listeners (port is ignored). The
  118.   * listener's state is automatically updated from LI_INIT to LI_ASSIGNED.
  119.   * The number of listeners for the protocol is updated.
  120. + *

  121. + * Must be called with proto_lock held.

  122. + *

  123.   */
  124.  static void sockpair_add_listener(struct listener *listener, int port)
  125.  {
  126. @@ -97,6 +100,8 @@ static void sockpair_add_listener(struct listener *listener, int port)

  127.   * loose them across the fork(). A call to uxst_enable_listeners() is needed
  128.   * to complete initialization.
  129.   *
  130. + * Must be called with proto_lock held.

  131. + *

  132.   * The return value is composed from ERR_NONE, ERR_RETRYABLE and ERR_FATAL.
  133.   */
  134.  static int sockpair_bind_listeners(struct protocol *proto, char *errmsg, int errlen)
  135. diff --git a/src/proto_tcp.c b/src/proto_tcp.c

  136. index 64ffb83c..bcbe27a7 100644

  137. --- a/src/proto_tcp.c

  138. +++ b/src/proto_tcp.c

  139. @@ -1103,6 +1103,9 @@ int tcp_bind_listener(struct listener *listener, char *errmsg, int errlen)

  140.   * The sockets will be registered but not added to any fd_set, in order not to
  141.   * loose them across the fork(). A call to enable_all_listeners() is needed
  142.   * to complete initialization. The return value is composed from ERR_*.
  143. + *

  144. + * Must be called with proto_lock held.

  145. + *

  146.   */
  147.  static int tcp_bind_listeners(struct protocol *proto, char *errmsg, int errlen)
  148.  {
  149. @@ -1121,6 +1124,9 @@ static int tcp_bind_listeners(struct protocol *proto, char *errmsg, int errlen)

  150.  /* Add <listener> to the list of tcpv4 listeners, on port <port>. The
  151.   * listener's state is automatically updated from LI_INIT to LI_ASSIGNED.
  152.   * The number of listeners for the protocol is updated.
  153. + *

  154. + * Must be called with proto_lock held.

  155. + *

  156.   */
  157.  static void tcpv4_add_listener(struct listener *listener, int port)
  158.  {
  159. @@ -1136,6 +1142,9 @@ static void tcpv4_add_listener(struct listener *listener, int port)

  160.  /* Add <listener> to the list of tcpv6 listeners, on port <port>. The
  161.   * listener's state is automatically updated from LI_INIT to LI_ASSIGNED.
  162.   * The number of listeners for the protocol is updated.
  163. + *

  164. + * Must be called with proto_lock held.

  165. + *

  166.   */
  167.  static void tcpv6_add_listener(struct listener *listener, int port)
  168.  {
  169. diff --git a/src/proto_uxst.c b/src/proto_uxst.c

  170. index 66093af6..7263240f 100644

  171. --- a/src/proto_uxst.c

  172. +++ b/src/proto_uxst.c

  173. @@ -379,6 +379,9 @@ static int uxst_unbind_listener(struct listener *listener)

  174.  /* Add <listener> to the list of unix stream listeners (port is ignored). The
  175.   * listener's state is automatically updated from LI_INIT to LI_ASSIGNED.
  176.   * The number of listeners for the protocol is updated.
  177. + *

  178. + * Must be called with proto_lock held.

  179. + *

  180.   */
  181.  static void uxst_add_listener(struct listener *listener, int port)
  182.  {
  183. @@ -594,6 +597,8 @@ static int uxst_connect_server(struct connection *conn, int flags)

  184.   * loose them across the fork(). A call to uxst_enable_listeners() is needed
  185.   * to complete initialization.
  186.   *
  187. + * Must be called with proto_lock held.

  188. + *

  189.   * The return value is composed from ERR_NONE, ERR_RETRYABLE and ERR_FATAL.
  190.   */
  191.  static int uxst_bind_listeners(struct protocol *proto, char *errmsg, int errlen)
  192. @@ -613,6 +618,9 @@ static int uxst_bind_listeners(struct protocol *proto, char *errmsg, int errlen)

  193.  /* This function stops all listening UNIX sockets bound to the protocol
  194.   * <proto>. It does not detaches them from the protocol.
  195.   * It always returns ERR_NONE.
  196. + *

  197. + * Must be called with proto_lock held.

  198. + *

  199.   */
  200.  static int uxst_unbind_listeners(struct protocol *proto)
  201.  {
  202. diff --git a/src/protocol.c b/src/protocol.c

  203. index 96e01c82..ac45cf2e 100644

  204. --- a/src/protocol.c

  205. +++ b/src/protocol.c

  206. @@ -18,18 +18,26 @@

  207.  #include <common/mini-clist.h>
  208.  #include <common/standard.h>
  209.  
  210. -#include <types/protocol.h>

  211. +#include <proto/protocol.h>

  212.  
  213.  /* List head of all registered protocols */
  214.  static struct list protocols = LIST_HEAD_INIT(protocols);
  215.  struct protocol *__protocol_by_family[AF_CUST_MAX] = { };
  216.  
  217. +/* This is the global spinlock we may need to register/unregister listeners or

  218. + * protocols. Its main purpose is in fact to serialize the rare stop/deinit()

  219. + * phases.

  220. + */

  221. +__decl_spinlock(proto_lock);

  222. +

  223.  /* Registers the protocol <proto> */
  224.  void protocol_register(struct protocol *proto)
  225.  {
  226. +	HA_SPIN_LOCK(PROTO_LOCK, &proto_lock);

  227.  	LIST_ADDQ(&protocols, &proto->list);
  228.  	if (proto->sock_domain >= 0 && proto->sock_domain < AF_CUST_MAX)
  229.  		__protocol_by_family[proto->sock_domain] = proto;
  230. +	HA_SPIN_UNLOCK(PROTO_LOCK, &proto_lock);

  231.  }
  232.  
  233.  /* Unregisters the protocol <proto>. Note that all listeners must have
  234. @@ -37,8 +45,10 @@ void protocol_register(struct protocol *proto)

  235.   */
  236.  void protocol_unregister(struct protocol *proto)
  237.  {
  238. +	HA_SPIN_LOCK(PROTO_LOCK, &proto_lock);

  239.  	LIST_DEL(&proto->list);
  240.  	LIST_INIT(&proto->list);
  241. +	HA_SPIN_UNLOCK(PROTO_LOCK, &proto_lock);

  242.  }
  243.  
  244.  /* binds all listeners of all registered protocols. Returns a composition
  245. @@ -50,6 +60,7 @@ int protocol_bind_all(char *errmsg, int errlen)

  246.  	int err;
  247.  
  248.  	err = 0;
  249. +	HA_SPIN_LOCK(PROTO_LOCK, &proto_lock);

  250.  	list_for_each_entry(proto, &protocols, list) {
  251.  		if (proto->bind_all) {
  252.  			err |= proto->bind_all(proto, errmsg, errlen);
  253. @@ -57,6 +68,7 @@ int protocol_bind_all(char *errmsg, int errlen)

  254.  				break;
  255.  		}
  256.  	}
  257. +	HA_SPIN_UNLOCK(PROTO_LOCK, &proto_lock);

  258.  	return err;
  259.  }
  260.  
  261. @@ -71,11 +83,13 @@ int protocol_unbind_all(void)

  262.  	int err;
  263.  
  264.  	err = 0;
  265. +	HA_SPIN_LOCK(PROTO_LOCK, &proto_lock);

  266.  	list_for_each_entry(proto, &protocols, list) {
  267.  		if (proto->unbind_all) {
  268.  			err |= proto->unbind_all(proto);
  269.  		}
  270.  	}
  271. +	HA_SPIN_UNLOCK(PROTO_LOCK, &proto_lock);

  272.  	return err;
  273.  }
  274.  
  275. @@ -89,11 +103,13 @@ int protocol_enable_all(void)

  276.  	int err;
  277.  
  278.  	err = 0;
  279. +	HA_SPIN_LOCK(PROTO_LOCK, &proto_lock);

  280.  	list_for_each_entry(proto, &protocols, list) {
  281.  		if (proto->enable_all) {
  282.  			err |= proto->enable_all(proto);
  283.  		}
  284.  	}
  285. +	HA_SPIN_UNLOCK(PROTO_LOCK, &proto_lock);

  286.  	return err;
  287.  }
  288.  
  289. @@ -107,11 +123,13 @@ int protocol_disable_all(void)

  290.  	int err;
  291.  
  292.  	err = 0;
  293. +	HA_SPIN_LOCK(PROTO_LOCK, &proto_lock);

  294.  	list_for_each_entry(proto, &protocols, list) {
  295.  		if (proto->disable_all) {
  296.  			err |= proto->disable_all(proto);
  297.  		}
  298.  	}
  299. +	HA_SPIN_UNLOCK(PROTO_LOCK, &proto_lock);

  300.  	return err;
  301.  }
  302.