[SCM] CTDB repository - branch master updated - ctdb-1.10-274-g9ea41d2

Ronnie Sahlberg sahlberg at samba.org
Thu Aug 4 23:44:53 MDT 2011 

The branch, master has been updated
       via  9ea41d2fab612772f861270c8a59c01c43bd3a4c (commit)
       via  f2fe0a090a9650910ebe49514b3ca01dc593bea3 (commit)
      from  c5f6e44b92210519d4bfc24611cae3f9978cc2e5 (commit)

http://gitweb.samba.org/?p=ctdb.git;a=shortlog;h=master


- Log -----------------------------------------------------------------
commit 9ea41d2fab612772f861270c8a59c01c43bd3a4c
Author: David Disseldorp <ddiss at suse.de>
Date:   Sun Jul 31 03:14:54 2011 +0200

    io: Make queue_io_read() safe for reentry
    
    queue_io_read() may be reentered via the queue callback, recoverd is
    particularly guilty of this.
    
    queue_io_read() is not safe for reentry if more than one packet is
    received and partial chunks follow - data read off the pipe on re-entry
    is assumed to be the start-of-packet four byte length. This leads to a
    wrongly aligned stream and the notorious "Invalid packet of length 0"
    errors.
    
    This change fixes queue_io_read() to be safe under reentry, only a
    single packet is processed per call.
    
    https://bugzilla.samba.org/show_bug.cgi?id=8319

commit f2fe0a090a9650910ebe49514b3ca01dc593bea3
Author: Ronnie Sahlberg <ronniesahlberg at gmail.com>
Date:   Fri Aug 5 10:03:34 2011 +1000

    Remove a log message about setting linkstate for an unknown interface.
    sometimes we do want to try to set the linkstate for interfaces that are not in use by public addresses right now (but posisbly by other mechanisms) and these messages just spam the logs
    
    S1026357

-----------------------------------------------------------------------

Summary of changes:
 common/ctdb_io.c       |  137 ++++++++++++++++++++++--------------------------
 server/ctdb_takeover.c |    2 -
 2 files changed, 63 insertions(+), 76 deletions(-)


Changeset truncated at 500 lines:

diff --git a/common/ctdb_io.c b/common/ctdb_io.c
index 81f9451..0f44b87 100644
--- a/common/ctdb_io.c
+++ b/common/ctdb_io.c
@@ -81,12 +81,17 @@ static void dump_packet(unsigned char *data, size_t len)
 
 /*
   called when an incoming connection is readable
+  This function MUST be safe for reentry via the queue callback!
 */
 static void queue_io_read(struct ctdb_queue *queue)
 {
 	int num_ready = 0;
-	ssize_t nread, totread, partlen;
-	uint8_t *data, *data_base;
+	uint32_t sz_bytes_req;
+	uint32_t pkt_size;
+	uint32_t pkt_bytes_remaining;
+	uint32_t to_read;
+	ssize_t nread;
+	uint8_t *data;
 
 	if (ioctl(queue->fd, FIONREAD, &num_ready) != 0) {
 		return;
@@ -96,93 +101,77 @@ static void queue_io_read(struct ctdb_queue *queue)
 		goto failed;
 	}
 
-
-	queue->partial.data = talloc_realloc_size(queue, queue->partial.data, 
-						  num_ready + queue->partial.length);
-
 	if (queue->partial.data == NULL) {
-		DEBUG(DEBUG_ERR,("%s: read error alloc failed for %u\n",
-			queue->name, num_ready + queue->partial.length));
-		goto failed;
-	}
-
-	nread = read(queue->fd, queue->partial.data + queue->partial.length, num_ready);
-	if (nread <= 0) {
-		DEBUG(DEBUG_ERR,("%s: read error nread=%d\n",
-				 queue->name, (int)nread));
-		goto failed;
+		/* starting fresh, allocate buf for size bytes */
+		sz_bytes_req = sizeof(pkt_size);
+		queue->partial.data = talloc_size(queue, sz_bytes_req);
+		if (queue->partial.data == NULL) {
+			DEBUG(DEBUG_ERR,("read error alloc failed for %u\n",
+					 sz_bytes_req));
+			goto failed;
+		}
+	} else if (queue->partial.length < sizeof(pkt_size)) {
+		/* yet to find out the packet length */
+		sz_bytes_req = sizeof(pkt_size) - queue->partial.length;
+	} else {
+		/* partial packet, length known, full buf allocated */
+		sz_bytes_req = 0;
 	}
-	totread = nread;
-	partlen = queue->partial.length;
-
 	data = queue->partial.data;
-	nread += queue->partial.length;
-
-	queue->partial.data = NULL;
-	queue->partial.length = 0;
-
-	if (nread >= 4 && *(uint32_t *)data == nread) {
-		/* it is the responsibility of the incoming packet
-		 function to free 'data' */
-		queue->callback(data, nread, queue->private_data);
-		return;
-	}
 
-	data_base = data;
-
-	while (nread >= 4 && *(uint32_t *)data <= nread) {
-		/* we have at least one packet */
-		uint8_t *d2;
-		uint32_t len;
-		bool destroyed = false;
-
-		len = *(uint32_t *)data;
-		if (len == 0) {
-			/* bad packet! treat as EOF */
-			DEBUG(DEBUG_CRIT,("%s: Invalid packet of length 0 (nread = %zu, totread = %zu, partlen = %zu)\n",
-					  queue->name, nread, totread, partlen));
-			dump_packet(data_base, totread + partlen);
-			goto failed;
-		}
-		d2 = talloc_memdup(queue, data, len);
-		if (d2 == NULL) {
-			DEBUG(DEBUG_ERR,("%s: read error memdup failed for %u\n",
-					 queue->name, len));
-			/* sigh */
+	if (sz_bytes_req > 0) {
+		to_read = MIN(sz_bytes_req, num_ready);
+		nread = read(queue->fd, data + queue->partial.length,
+			     to_read);
+		if (nread <= 0) {
+			DEBUG(DEBUG_ERR,("read error nread=%d\n", (int)nread));
 			goto failed;
 		}
+		queue->partial.length += nread;
 
-		queue->destroyed = &destroyed;
-		queue->callback(d2, len, queue->private_data);
-		/* If callback freed us, don't do anything else. */
-		if (destroyed) {
+		if (nread < sz_bytes_req) {
+			/* not enough to know the length */
+			DEBUG(DEBUG_DEBUG,("Partial packet length read\n"));
 			return;
 		}
-		queue->destroyed = NULL;
+		/* size now known, allocate buffer for the full packet */
+		queue->partial.data = talloc_realloc_size(queue, data,
+							  *(uint32_t *)data);
+		if (queue->partial.data == NULL) {
+			DEBUG(DEBUG_ERR,("read error alloc failed for %u\n",
+					 *(uint32_t *)data));
+			goto failed;
+		}
+		data = queue->partial.data;
+		num_ready -= nread;
+	}
 
-		data += len;
-		nread -= len;		
+	pkt_size = *(uint32_t *)data;
+	if (pkt_size == 0) {
+		DEBUG(DEBUG_CRIT,("Invalid packet of length 0\n"));
+		goto failed;
 	}
 
-	if (nread > 0) {
-		/* we have only part of a packet */
-		if (data_base == data) {
-			queue->partial.data = data;
-			queue->partial.length = nread;
-		} else {
-			queue->partial.data = talloc_memdup(queue, data, nread);
-			if (queue->partial.data == NULL) {
-				DEBUG(DEBUG_ERR,("%s: read error memdup partial failed for %u\n",
-						 queue->name, (unsigned)nread));
-				goto failed;
-			}
-			queue->partial.length = nread;
-			talloc_free(data_base);
-		}
+	pkt_bytes_remaining = pkt_size - queue->partial.length;
+	to_read = MIN(pkt_bytes_remaining, num_ready);
+	nread = read(queue->fd, data + queue->partial.length,
+		     to_read);
+	if (nread <= 0) {
+		DEBUG(DEBUG_ERR,("read error nread=%d\n",
+				 (int)nread));
+		goto failed;
+	}
+	queue->partial.length += nread;
+
+	if (queue->partial.length < pkt_size) {
+		DEBUG(DEBUG_DEBUG,("Partial packet data read\n"));
 		return;
 	}
 
-	talloc_free(data_base);
+	queue->partial.data = NULL;
+	queue->partial.length = 0;
+	/* it is the responsibility of the callback to free 'data' */
+	queue->callback(data, pkt_size, queue->private_data);
 	return;
 
 failed:
diff --git a/server/ctdb_takeover.c b/server/ctdb_takeover.c
index 5512acc..626b10e 100644
--- a/server/ctdb_takeover.c
+++ b/server/ctdb_takeover.c
@@ -2633,8 +2633,6 @@ int32_t ctdb_control_set_iface_link(struct ctdb_context *ctdb,
 
 	iface = ctdb_find_iface(ctdb, info->name);
 	if (iface == NULL) {
-		DEBUG(DEBUG_ERR, (__location__ "iface[%s] is unknown\n",
-				  info->name));
 		return -1;
 	}
 


-- 
CTDB repository

More information about the samba-cvs mailing list