From: Ian Campbell <ian.campbell@citrix.com>
To: Ian Jackson <ian.jackson@eu.citrix.com>
Cc: "Andrew Cooper" <andrew.cooper3@citrix.com>,
xen-devel@lists.xensource.com,
"Ross Lagerwall" <ross.lagerwall@citrix.com>,
"Wei Liu" <wei.liu2@citrix.com>,
"Roger Pau Monné" <roger.pau@citrix.com>
Subject: Re: [PATCH 3/3] libxl: datacopier: Avoid theoretical eof/POLLHUP race
Date: Thu, 2 Apr 2015 16:15:27 +0100 [thread overview]
Message-ID: <1427987727.4037.89.camel@citrix.com> (raw)
In-Reply-To: <1427987045-23435-3-git-send-email-ian.jackson@eu.citrix.com>
On Thu, 2015-04-02 at 16:04 +0100, Ian Jackson wrote:
> When the bootloader exits, several things change, all at once:
> (a) The master pty fd (held by libxl) starts to signal POLLHUP
> and maybe also POLLIN.
> (b) The child exits (so that the SIGCHLD self-pipe signals POLLIN,
> which will be handled by the libxl child process code.
> (c) reads on the master pty fd start to return EOF
>
> From the point of view of the datacopier these might happen in any
> order.
>
> (c) can be detected only after a previous POLLIN without POLLHUP and
> that previous POLLIN would be associated with data which was read,
> which must therefore have ended up in the dc's buffer. But nothing
> stops the dc from writing that data into the output fd and reporting
> eof before it calls poll again.
>
> This race is unlikely. Indeed it might be actually 100% precluded, by
> luck, by the current organisation of the fd handling code. But
> nevertheless it should be fixed.
>
> We solve the race with a poll of the reading fd, to double-check, when
> we detect eof via read. (This is only necessary if the caller has
> specified callback_pollhup, as otherwise POLLHUP|POLLIN - and,
> presumably, POLLIN followed perhaps by POLLHUP|POLLIN, is to be
> treated as eof anyway.)
>
> Signed-off-by: Ian Jackson <Ian.Jackson@eu.citrix.com>
> CC: Andrew Cooper <andrew.cooper3@citrix.com>
> CC: Roger Pau Monné <roger.pau@citrix.com>
Acked-by: Ian Campbell <ian.campbell@citrix.com>
_______________________________________________
Xen-devel mailing list
Xen-devel@lists.xen.org
http://lists.xen.org/xen-devel
next prev parent reply other threads:[~2015-04-02 15:15 UTC|newest]
Thread overview: 29+ messages / expand[flat|nested] mbox.gz Atom feed top
2015-03-16 13:29 [PATCH v3 1/6] tools/libxl: Introduce min and max macros Ross Lagerwall
2015-03-16 13:29 ` [PATCH v3 2/6] tools/libxl: Update datacopier to support sending data only Ross Lagerwall
2015-03-16 13:29 ` [PATCH v3 3/6] tools/libxl: Avoid overrunning static buffer with prefixdata Ross Lagerwall
2015-03-16 13:29 ` [PATCH v3 4/6] tools/libxl: Allow limiting amount copied by datacopier Ross Lagerwall
2015-03-18 11:12 ` Ian Campbell
2015-03-16 13:29 ` [PATCH v3 5/6] tools/libxl: Extend datacopier to support reading into a buffer Ross Lagerwall
2015-03-18 11:18 ` Ian Campbell
2015-04-01 15:53 ` Ian Jackson
2015-04-01 15:59 ` Ian Campbell
2015-03-16 13:29 ` [PATCH v3 6/6] tools/libxl: Adjust datacopiers POLLHUP handling when the fd is also readable Ross Lagerwall
2015-03-18 11:31 ` Ian Campbell
2015-03-26 15:20 ` Roger Pau Monné
2015-03-30 10:40 ` Ian Campbell
2015-04-01 10:34 ` Roger Pau Monné
2015-04-01 14:36 ` Andrew Cooper
2015-04-02 15:03 ` [PATCH 0/3] datacopier POLLHUP fixes " Ian Jackson
2015-04-02 15:04 ` [PATCH 1/3] Revert "tools/libxl: Adjust datacopiers POLLHUP handling when the fd is also readable" Ian Jackson
2015-04-02 15:08 ` Ian Campbell
2015-04-02 15:27 ` Ian Jackson
2015-04-02 15:10 ` Andrew Cooper
2015-04-02 15:11 ` Ian Jackson
2015-04-02 15:04 ` [PATCH 2/3] libxl: Cope with pipes which signal POLLHUP|POLLIN on read eof Ian Jackson
2015-04-02 15:13 ` Ian Campbell
2015-04-02 15:04 ` [PATCH 3/3] libxl: datacopier: Avoid theoretical eof/POLLHUP race Ian Jackson
2015-04-02 15:15 ` Ian Campbell [this message]
2015-04-02 16:29 ` Ian Jackson
2015-04-07 11:14 ` Roger Pau Monné
2015-04-07 12:26 ` Ian Jackson
2015-04-02 15:09 ` [PATCH 0/3] datacopier POLLHUP fixes handling when the fd is also readable Ian Jackson
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=1427987727.4037.89.camel@citrix.com \
--to=ian.campbell@citrix.com \
--cc=andrew.cooper3@citrix.com \
--cc=ian.jackson@eu.citrix.com \
--cc=roger.pau@citrix.com \
--cc=ross.lagerwall@citrix.com \
--cc=wei.liu2@citrix.com \
--cc=xen-devel@lists.xensource.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.