From: Corey Bryant <coreyb@linux.vnet.ibm.com>
To: Stefan Hajnoczi <stefanha@gmail.com>
Cc: kwolf@redhat.com, aliguori@us.ibm.com,
stefanha@linux.vnet.ibm.com, libvir-list@redhat.com,
qemu-devel@nongnu.org, lcapitulino@redhat.com, eblake@redhat.com
Subject: Re: [Qemu-devel] [PATCH v6 3/6] monitor: Clean up fd sets on monitor disconnect
Date: Tue, 07 Aug 2012 15:36:06 -0400 [thread overview]
Message-ID: <50216E26.9080801@linux.vnet.ibm.com> (raw)
In-Reply-To: <20120807173207.GA11051@stefanha-thinkpad.localdomain>
On 08/07/2012 01:32 PM, Stefan Hajnoczi wrote:
> On Fri, Aug 03, 2012 at 01:28:06PM -0400, Corey Bryant wrote:
>> Each fd set has a boolean that keeps track of whether or not the
>> fd set is in use by a monitor connection. When a monitor
>> disconnects, all fds that are members of an fd set with refcount
>> of zero are closed. This prevents any fd leakage associated with
>> a client disconnect prior to using a passed fd.
>>
>> v5:
>> -This patch is new in v5.
>> -This support addresses concerns from v4 regarding fd leakage
>> if the client disconnects unexpectedly. (eblake@redhat.com,
>> kwolf@redhat.com, dberrange@redhat.com)
>>
>> v6:
>> -No changes
>>
>> Signed-off-by: Corey Bryant <coreyb@linux.vnet.ibm.com>
>> ---
>> monitor.c | 15 +++++++++++++++
>> 1 file changed, 15 insertions(+)
>
> The lifecycle of fdsets and fds isn't clear to me. It seems like just a
> refcount in fdset should handle this without extra fields like in_use.
The lifecycle of fdsets and fds starts with add-fd.
I'll explain the lifecycle end of fdsets and fds below. To follow along
with the code, this cleanup occurs in monitor_fdset_cleanup().
Fds are closed and removed from an fdset when there are no more open
dup() fds (refcount == 0) for the fd set, and there are either no
monitor connections (!in-use) or the fd has been removed with remove-fd.
In other words fds get cleaned up when:
(refcount == 0 && (!in-use || removed))
Let me explain each variable:
(1) refcount is incremented when qemu_open() dup()s an fd from an fd set
and is decremented when qemu_close() closes a dup()d fd. We don't want
to close any fds in an fd set if refcount > 0, because this file could
be reopened with different access mode flags, which would require dup()
of another fd from the fdset.
(2) in-use is used to prevent fd leakage if a monitor disconnects and
abandons fds. If libvirt adds fds and then disconnects without issuing a
command that references the fds, then refcount will be zero, and in-use
will be false, and the fds will be closed and removed from the fd set.
When the monitor connection is restored, the query-fdsets command can be
used to see what fd sets and fds are available.
(3) If the remove-fd command is issued, the fd is marked for removal.
It won't be closed until there are no more outstanding dup() references
on the fd set, for similar reasons to why we don't close the fd in (1).
fdsets simply get cleaned up once all fds from the set have been closed
and removed.
Hopefully this clears things up a bit more.
Please also take a look at the v7 series that I sent out today. Fd sets
are now stored globally, rather than one per Monitor object. This
simplifies things a bit.
--
Regards,
Corey
next prev parent reply other threads:[~2012-08-07 19:46 UTC|newest]
Thread overview: 14+ messages / expand[flat|nested] mbox.gz Atom feed top
2012-08-03 17:28 [Qemu-devel] [PATCH v6 0/6] file descriptor passing using fd sets Corey Bryant
2012-08-03 17:28 ` [Qemu-devel] [PATCH v6 1/6] qemu-char: Add MSG_CMSG_CLOEXEC flag to recvmsg Corey Bryant
2012-08-03 17:33 ` Corey Bryant
2012-08-03 17:28 ` [Qemu-devel] [PATCH v6 2/6] qapi: Introduce add-fd, remove-fd, query-fdsets Corey Bryant
2012-08-07 18:16 ` Stefan Hajnoczi
2012-08-07 19:59 ` Corey Bryant
2012-08-08 8:52 ` Stefan Hajnoczi
2012-08-08 13:40 ` Corey Bryant
2012-08-03 17:28 ` [Qemu-devel] [PATCH v6 3/6] monitor: Clean up fd sets on monitor disconnect Corey Bryant
2012-08-07 17:32 ` Stefan Hajnoczi
2012-08-07 19:36 ` Corey Bryant [this message]
2012-08-03 17:28 ` [Qemu-devel] [PATCH v6 4/6] block: Convert open calls to qemu_open Corey Bryant
2012-08-03 17:28 ` [Qemu-devel] [PATCH v6 5/6] block: Convert close calls to qemu_close Corey Bryant
2012-08-03 17:28 ` [Qemu-devel] [PATCH v6 6/6] block: Enable qemu_open/close to work with fd sets Corey Bryant
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=50216E26.9080801@linux.vnet.ibm.com \
--to=coreyb@linux.vnet.ibm.com \
--cc=aliguori@us.ibm.com \
--cc=eblake@redhat.com \
--cc=kwolf@redhat.com \
--cc=lcapitulino@redhat.com \
--cc=libvir-list@redhat.com \
--cc=qemu-devel@nongnu.org \
--cc=stefanha@gmail.com \
--cc=stefanha@linux.vnet.ibm.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).