ChildPidWatcher: remove dependence on pidfd_open (#1539)

sporksmith · web-flow · commit 1d1b1a59538b · 2021-07-27T19:24:16.000-04:00
pidfd_open was only added in Linux 5.3. There are still some platforms supported by Shadow that may not have a new enough kernel to use it. Fixes #1532
diff --git a/src/main/bindings/c/bindings.h b/src/main/bindings/c/bindings.h
@@ -556,6 +556,28 @@ struct ChildPidWatcher *childpidwatcher_new(void);
 
 void childpidwatcher_free(struct ChildPidWatcher *watcher);
 
+int32_t childpidwatcher_forkWatchable(const struct ChildPidWatcher *watcher,
+                                      void (*child_fn)(void*),
+                                      void *child_fn_data);
+
+// Register interest in `pid`, and associate it with `read_fd`.
+//
+// `read_fd` should be the read end of a pipe, whose write end is owned
+// *solely* by `pid`, causing `read_fd` to become invalid when `pid` exits.
+// In a multi-threaded program care must be taken to prevent a concurrent
+// fork from leaking the write end of the pipe into other children. One way
+// to avoid this is to use O_CLOEXEC when creating the pipe, and then unset
+// O_CLOEXEC in the child before calling exec.
+//
+// Be sure to close the parent's write-end of the pipe.
+//
+// Takes ownership of `read_fd`, and will close it when appropriate.
+void childpidwatcher_registerPid(const struct ChildPidWatcher *watcher,
+                                 int32_t pid,
+                                 int32_t read_fd);
+
+void childpidwatcher_unregisterPid(const struct ChildPidWatcher *watcher, int32_t pid);
+
 // Call `callback` exactly once from another thread after the child `pid`
 // has exited, including if it has already exited. Does *not* reap the
 // child itself.
diff --git a/src/main/host/thread_preload.c b/src/main/host/thread_preload.c
@@ -95,6 +95,13 @@ static gchar** _add_shadow_pid_to_env(gchar** envp) {
 
 static pid_t _threadpreload_fork_exec(ThreadPreload* thread, const char* file, char* const argv[],
                                       char* const envp[], const char* workingDir) {
+    // For childpidwatcher. We must create them O_CLOEXEC to prevent them from
+    // "leaking" into a concurrently forked child.
+    int pipefd[2];
+    if (pipe2(pipefd, O_CLOEXEC)) {
+        utility_panic("pipe2: %s", g_strerror(errno));
+    }
+
     // vfork has superior performance to fork with large workloads.
     pid_t pid = vfork();
 
@@ -111,6 +118,11 @@ static pid_t _threadpreload_fork_exec(ThreadPreload* thread, const char* file, c
         case 0: {
             // child
 
+            // *Don't* close the write end of the pipe on exec.
+            if (fcntl(pipefd[1], F_SETFD, 0)) {
+                die_after_vfork();
+            }
+
             // Set the working directory
             if (chdir(workingDir) < 0) {
                 die_after_vfork();
@@ -124,10 +136,20 @@ static pid_t _threadpreload_fork_exec(ThreadPreload* thread, const char* file, c
             die_after_vfork();
         }
         default: // parent
-            debug("started process %s with PID %d", file, pid);
-            return pid;
             break;
     }
+
+    // *Must* close the write-end of the pipe, so that the child's copy is the
+    // last remaining one, allowing the read-end to be notified when the child
+    // exits.
+    if (close(pipefd[1])) {
+        utility_panic("close: %s", g_strerror(errno));
+    }
+
+    childpidwatcher_registerPid(worker_getChildPidWatcher(), pid, pipefd[0]);
+
+    debug("started process %s with PID %d", file, pid);
+    return pid;
 }
 
 static void _threadpreload_cleanup(ThreadPreload* thread) {
@@ -314,6 +336,8 @@ void threadpreload_handleProcessExit(Thread* base) {
     ThreadPreload* thread = _threadToThreadPreload(base);
     // TODO [rwails]: come back and make this logic more solid
 
+    childpidwatcher_unregisterPid(worker_getChildPidWatcher(), base->nativePid);
+
     /* make sure we cleanup circular refs */
     if (thread->base.sys) {
         syscallhandler_unref(thread->base.sys);
diff --git a/src/main/utility/childpid_watcher.rs b/src/main/utility/childpid_watcher.rs
