From: "Daniel P. Berrange" <berrange@redhat.com>
To: "Richard W.M. Jones" <rjones@redhat.com>
Cc: pbonzini@redhat.com, qemu-devel@nongnu.org, den@openvz.org,
rkagan@virtuozzo.com, dplotnikov@virtuozzo.com,
stefanha@gmail.com
Subject: Re: [Qemu-devel] [PATCH] qemu-nbd: Implement socket activation.
Date: Thu, 2 Feb 2017 15:04:07 +0000 [thread overview]
Message-ID: <20170202150407.GP2915@redhat.com> (raw)
In-Reply-To: <20170202145159.20440-2-rjones@redhat.com>
On Thu, Feb 02, 2017 at 02:51:59PM +0000, Richard W.M. Jones wrote:
> Socket activation (sometimes known as systemd socket activation)
> allows an Internet superserver to pass a pre-opened listening socket
> to the process, instead of having qemu-nbd open a socket itself. This
> is done via the LISTEN_FDS and LISTEN_PID environment variables, and a
> standard file descriptor range.
>
> This change partially implements socket activation for qemu-nbd. If
> the environment variables are set correctly, then socket activation
> will happen automatically, otherwise everything works as before. The
> limitation is that LISTEN_FDS must be 1.
>
> Signed-off-by: Richard W.M. Jones.
> ---
> qemu-nbd.c | 174 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++-----
> 1 file changed, 162 insertions(+), 12 deletions(-)
>
> diff --git a/qemu-nbd.c b/qemu-nbd.c
> index c734f62..bfa52c3 100644
> --- a/qemu-nbd.c
> +++ b/qemu-nbd.c
> @@ -386,9 +386,9 @@ static void nbd_update_server_watch(void)
> }
>
>
> -static SocketAddress *nbd_build_socket_address(const char *sockpath,
> - const char *bindto,
> - const char *port)
> +static SocketAddress *nbd_build_socket_fd(const char *sockpath,
> + const char *bindto,
> + const char *port)
I don't think this needs renaming - its still returning an address
rather than an FD
> {
> SocketAddress *saddr;
>
> @@ -463,6 +463,131 @@ static QCryptoTLSCreds *nbd_get_tls_creds(const char *id, Error **errp)
> return creds;
> }
>
> +static void setup_address_and_port(const char **address, const char **port)
> +{
> + if (*address == NULL) {
> + *address = "0.0.0.0";
> + }
> +
> + if (*port == NULL) {
> + *port = g_strdup_printf("%d", NBD_DEFAULT_PORT);;
> + }
> +}
> +
> +#define FIRST_SOCKET_ACTIVATION_FD 3 /* defined by systemd ABI */
> +
> +#ifndef _WIN32
> +/*
> + * Check if socket activation was requested via use of the
> + * LISTEN_FDS and LISTEN_PID environment variables.
> + *
> + * Returns 0 if no socket activation, or the number of FDs.
> + */
> +static unsigned int check_socket_activation(void)
> +{
> + const char *s;
> + unsigned int pid;
> + unsigned int nr_fds;
> + unsigned int i;
> + int fd;
> +
> + s = getenv("LISTEN_PID");
> + if (s == NULL) {
> + return 0;
> + }
> + if (sscanf(s, "%u", &pid) != 1) {
IIRC qemu_strtoul would be preferred for this.
> + if (verbose) {
> + fprintf(stderr, "malformed %s environment variable (ignored)\n",
> + "LISTEN_PID");
> + }
> + return 0;
> + }
> + if (pid != getpid()) {
> + if (verbose) {
> + fprintf(stderr, "%s was not for us (ignored)\n",
> + "LISTEN_PID");
> + }
> + return 0;
> + }
> +
> + s = getenv("LISTEN_FDS");
> + if (s == NULL) {
> + return 0;
> + }
> + if (sscanf(s, "%u", &nr_fds) != 1) {
And this.
> + if (verbose) {
> + fprintf(stderr, "malformed %s environment variable (ignored)\n",
> + "LISTEN_FDS");
> + }
> + return 0;
> + }
> +
> + /* A limitation of current qemu-nbd is that it can only listen on
> + * a single socket. When that limitation is lifted, we can change
> + * this function to allow LISTEN_FDS > 1, and remove the assertion
> + * in the main function below.
> + */
> + if (nr_fds > 1) {
> + error_report("qemu-nbd does not support socket activation with %s > 1",
> + "LISTEN_FDS");
> + exit(EXIT_FAILURE);
> + }
> +
> + /* So these are not passed to any child processes we might start. */
> + unsetenv("LISTEN_FDS");
> + unsetenv("LISTEN_PID");
> +
> + /* So the file descriptors don't leak into child processes. */
> + for (i = 0; i < nr_fds; ++i) {
> + fd = FIRST_SOCKET_ACTIVATION_FD + i;
> + if (fcntl(fd, F_SETFD, FD_CLOEXEC) == -1) {
> + /* If we cannot set FD_CLOEXEC then it probably means the file
> + * descriptor is invalid, so socket activation has gone wrong
> + * and we should exit.
> + */
> + error_report("Socket activation failed: "
> + "invalid file descriptor fd = %d: %m",
> + fd);
> + exit(EXIT_FAILURE);
> + }
> + }
> +
> + return nr_fds;
> +}
> +
> +#else /* !_WIN32 */
> +static unsigned int check_socket_activation(void)
> +{
> + return 0;
> +}
> +#endif
Regards,
Daniel
--
|: http://berrange.com -o- http://www.flickr.com/photos/dberrange/ :|
|: http://libvirt.org -o- http://virt-manager.org :|
|: http://entangle-photo.org -o- http://search.cpan.org/~danberr/ :|
prev parent reply other threads:[~2017-02-02 15:04 UTC|newest]
Thread overview: 3+ messages / expand[flat|nested] mbox.gz Atom feed top
2017-02-02 14:51 [Qemu-devel] [PATCH] qemu-nbd: Implement socket activation Richard W.M. Jones
2017-02-02 14:51 ` Richard W.M. Jones
2017-02-02 15:04 ` Daniel P. Berrange [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20170202150407.GP2915@redhat.com \
--to=berrange@redhat.com \
--cc=den@openvz.org \
--cc=dplotnikov@virtuozzo.com \
--cc=pbonzini@redhat.com \
--cc=qemu-devel@nongnu.org \
--cc=rjones@redhat.com \
--cc=rkagan@virtuozzo.com \
--cc=stefanha@gmail.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.