summaryrefslogtreecommitdiffstats
path: root/qga
diff options
context:
space:
mode:
authorPaolo Bonzini2017-03-16 16:29:45 +0100
committerPaolo Bonzini2017-03-19 11:12:12 +0100
commit53fabd4b86e15869e13fb762686d674c64294385 (patch)
tree8ffb29b28fd121ab3d695e6e89cdd3bef9a6df4b /qga
parentnios2: iic: Convert CPU prop to qom link (diff)
downloadqemu-53fabd4b86e15869e13fb762686d674c64294385.tar.gz
qemu-53fabd4b86e15869e13fb762686d674c64294385.tar.xz
qemu-53fabd4b86e15869e13fb762686d674c64294385.zip
qemu-ga: obey LISTEN_PID when using systemd socket activation
qemu-ga's socket activation support was not obeying the LISTEN_PID environment variable, which avoids that a process uses a socket-activation file descriptor meant for its parent. Mess can for example ensue if a process forks a children before consuming the socket-activation file descriptor and therefore setting O_CLOEXEC on it. Luckily, qemu-nbd also got socket activation code, and its copy does support LISTEN_PID. Some extra fixups are needed to ensure that the code can be used for both, but that's what this patch does. The main change is to replace get_listen_fds's "consume" argument with the FIRST_SOCKET_ACTIVATION_FD macro from the qemu-nbd code. Cc: "Richard W.M. Jones" <rjones@redhat.com> Cc: Stefan Hajnoczi <stefanha@redhat.com> Reviewed-by: Daniel P. Berrange <berrange@redhat.com> Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>
Diffstat (limited to 'qga')
-rw-r--r--qga/main.c51
1 files changed, 13 insertions, 38 deletions
diff --git a/qga/main.c b/qga/main.c
index 92658bc0e2..07c295376f 100644
--- a/qga/main.c
+++ b/qga/main.c
@@ -29,6 +29,7 @@
#include "qemu/bswap.h"
#include "qemu/help_option.h"
#include "qemu/sockets.h"
+#include "qemu/systemd.h"
#ifdef _WIN32
#include "qga/service-win32.h"
#include "qga/vss-win32.h"
@@ -186,37 +187,6 @@ void reopen_fd_to_null(int fd)
}
#endif
-/**
- * get_listen_fd:
- * @consume: true to prevent future calls from succeeding
- *
- * Fetch a listen file descriptor that was passed via systemd socket
- * activation. Use @consume to prevent child processes from thinking a file
- * descriptor was passed.
- *
- * Returns: file descriptor or -1 if no fd was passed
- */
-static int get_listen_fd(bool consume)
-{
-#ifdef _WIN32
- return -1; /* no fd passing expected, unsetenv(3) not available */
-#else
- const char *listen_fds = getenv("LISTEN_FDS");
- int fd = STDERR_FILENO + 1;
-
- if (!listen_fds || strcmp(listen_fds, "1") != 0) {
- return -1;
- }
-
- if (consume) {
- unsetenv("LISTEN_FDS");
- }
-
- qemu_set_cloexec(fd);
- return fd;
-#endif /* !_WIN32 */
-}
-
static void usage(const char *cmd)
{
printf(
@@ -1251,7 +1221,7 @@ static bool check_is_frozen(GAState *s)
return false;
}
-static int run_agent(GAState *s, GAConfig *config)
+static int run_agent(GAState *s, GAConfig *config, int socket_activation)
{
ga_state = s;
@@ -1333,7 +1303,7 @@ static int run_agent(GAState *s, GAConfig *config)
s->main_loop = g_main_loop_new(NULL, false);
if (!channel_init(ga_state, config->method, config->channel_path,
- get_listen_fd(true))) {
+ socket_activation ? FIRST_SOCKET_ACTIVATION_FD : -1)) {
g_critical("failed to initialize guest agent channel");
return EXIT_FAILURE;
}
@@ -1357,7 +1327,7 @@ int main(int argc, char **argv)
int ret = EXIT_SUCCESS;
GAState *s = g_new0(GAState, 1);
GAConfig *config = g_new0(GAConfig, 1);
- int listen_fd;
+ int socket_activation;
config->log_level = G_LOG_LEVEL_ERROR | G_LOG_LEVEL_CRITICAL;
@@ -1379,8 +1349,13 @@ int main(int argc, char **argv)
config->method = g_strdup("virtio-serial");
}
- listen_fd = get_listen_fd(false);
- if (listen_fd >= 0) {
+ socket_activation = check_socket_activation();
+ if (socket_activation > 1) {
+ g_critical("qemu-ga only supports listening on one socket");
+ ret = EXIT_FAILURE;
+ goto end;
+ }
+ if (socket_activation) {
SocketAddress *addr;
g_free(config->method);
@@ -1388,7 +1363,7 @@ int main(int argc, char **argv)
config->method = NULL;
config->channel_path = NULL;
- addr = socket_local_address(listen_fd, NULL);
+ addr = socket_local_address(FIRST_SOCKET_ACTIVATION_FD, NULL);
if (addr) {
if (addr->type == SOCKET_ADDRESS_KIND_UNIX) {
config->method = g_strdup("unix-listen");
@@ -1433,7 +1408,7 @@ int main(int argc, char **argv)
goto end;
}
- ret = run_agent(s, config);
+ ret = run_agent(s, config, socket_activation);
end:
if (s->command_state) {