technocloud-public/nginx-unit
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity

Isolation: correctly unmount non-dependent paths first.

Browse Source 
When mount points reside within other mount points, this
patch sorts them by path length and then unmounts then
in an order reverse to their mounting.  This results in
independent paths being unmounted first.

This fixes an issue in buildbots where dependent paths failed
to unmount, leading to the build script removing system-wide
language libraries.
This commit is contained in:
Tiago Natel de Moura
2020-10-29 14:24:38 +00:00
parent 6a00bab41e
commit 5ffd88ad7c
1 changed files with 36 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

40
src/nxt_isolation.c
View File

@@ -41,6 +41,8 @@ static nxt_int_t nxt_isolation_set_mounts(nxt_task_t *task,
nxt_process_t *process, nxt_str_t *app_type); nxt_process_t *process, nxt_str_t *app_type);
static nxt_int_t nxt_isolation_set_lang_mounts(nxt_task_t *task, static nxt_int_t nxt_isolation_set_lang_mounts(nxt_task_t *task,
nxt_process_t *process, nxt_array_t *syspaths); nxt_process_t *process, nxt_array_t *syspaths);
static int nxt_cdecl nxt_isolation_mount_compare(const void *v1,
const void *v2);
static void nxt_isolation_unmount_all(nxt_task_t *task, nxt_process_t *process); static void nxt_isolation_unmount_all(nxt_task_t *task, nxt_process_t *process);
#if (NXT_HAVE_PIVOT_ROOT) && (NXT_HAVE_CLONE_NEWNS) #if (NXT_HAVE_PIVOT_ROOT) && (NXT_HAVE_CLONE_NEWNS)
@@ -607,20 +609,48 @@ nxt_isolation_set_lang_mounts(nxt_task_t *task, nxt_process_t *process,
} }
#endif #endif
qsort(mounts->elts, mounts->nelts, sizeof(nxt_fs_mount_t),
nxt_isolation_mount_compare);
process->isolation.mounts = mounts; process->isolation.mounts = mounts;
return NXT_OK; return NXT_OK;
} }
static int nxt_cdecl
nxt_isolation_mount_compare(const void *v1, const void *v2)
{
const nxt_fs_mount_t *mnt1, *mnt2;
mnt1 = v1;
mnt2 = v2;
return nxt_strlen(mnt1->src) > nxt_strlen(mnt2->src);
}
void void
nxt_isolation_unmount_all(nxt_task_t *task, nxt_process_t *process) nxt_isolation_unmount_all(nxt_task_t *task, nxt_process_t *process)
{ {
size_t i, n; size_t n;
nxt_array_t *mounts; nxt_array_t *mounts;
nxt_runtime_t *rt;
nxt_fs_mount_t *mnt; nxt_fs_mount_t *mnt;
nxt_process_automount_t *automount; nxt_process_automount_t *automount;
rt = task->thread->runtime;
if (!rt->capabilities.setid) {
return;
}
#if (NXT_HAVE_CLONE_NEWNS)
if (nxt_is_clone_flag_set(process->isolation.clone.flags, NEWNS)) {
return;
}
#endif
nxt_debug(task, "unmount all (%s)", process->name); nxt_debug(task, "unmount all (%s)", process->name);
automount = &process->isolation.automount; automount = &process->isolation.automount;
@@ -628,12 +658,14 @@ nxt_isolation_unmount_all(nxt_task_t *task, nxt_process_t *process)
n = mounts->nelts; n = mounts->nelts;
mnt = mounts->elts; mnt = mounts->elts;
for (i = 0; i < n; i++) { while (n > 0) {
if (mnt[i].builtin && !automount->language_deps) { n--;
if (mnt[n].builtin && !automount->language_deps) {
continue; continue;
} }
nxt_fs_unmount(mnt[i].dst); nxt_fs_unmount(mnt[n].dst);
} }
} }