lxc_monitord: make lxc-monitord async signal safe

Before lxc_monitord called lxc_monitord_cleanup() from a signal handler. This function calls a bunch of async signal unsafe functions and basically begs for deadlocks. This commit switches lxc-monitord to using sigsetjmp() and siglongjmp() in the signal handler to jump to a cleanup label that call lxc_monitord_cleanup(). In this way, we avoid using async signal unsafe functions. Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

lxc_monitord: make lxc-monitord async signal safe
d0dacf05 · Christian Brauner · 8d58eea9 · d0dacf05
Unverified Commit d0dacf05 authored Nov 27, 2016 by Christian Brauner
Hide whitespace changes
Inline Side-by-side

Showing with 11 additions and 3 deletions

lxc_monitord.c src/lxc/lxc_monitord.c +11 -3

No files found.
--- a/src/lxc/lxc_monitord.c
+++ b/src/lxc/lxc_monitord.c
@@ -31,6 +31,7 @@
 #include <unistd.h>
 #include <net/if.h>
 #include <netinet/in.h>
+#include <setjmp.h>
 #include <sys/epoll.h>
 #include <sys/param.h>
 #include <sys/socket.h>
@@ -48,6 +49,8 @@

 lxc_log_define(lxc_monitord, lxc);

+sigjmp_buf mark;
+
 static void lxc_monitord_cleanup(void);

 /*
@@ -336,9 +339,7 @@ static void lxc_monitord_cleanup(void)

 static void lxc_monitord_sig_handler(int sig)
 {
-	INFO("Caught signal %d.", sig);
-	lxc_monitord_cleanup();
-	exit(EXIT_SUCCESS);
+	siglongjmp(mark, 1);
 }

 int main(int argc, char *argv[])
@@ -384,6 +385,9 @@ int main(int argc, char *argv[])
 	signal(SIGBUS,  lxc_monitord_sig_handler);
 	signal(SIGTERM, lxc_monitord_sig_handler);

+	if (sigsetjmp(mark, 1) != 0)
+		goto on_signal;
+
 	ret = EXIT_FAILURE;
 	memset(&mon, 0, sizeof(mon));
 	mon.lxcpath = lxcpath;
@@ -427,4 +431,8 @@ int main(int argc, char *argv[])

 on_error:
 	exit(ret);
+
+on_signal:
+	lxc_monitord_cleanup();
+	exit(EXIT_SUCCESS);
 }