2006-06-25 20:48:02 -04:00
|
|
|
/*
|
|
|
|
|
* File descriptors management functions.
|
|
|
|
|
*
|
MAJOR: polling: rework the whole polling system
This commit heavily changes the polling system in order to definitely
fix the frequent breakage of SSL which needs to remember the last
EAGAIN before deciding whether to poll or not. Now we have a state per
direction for each FD, as opposed to a previous and current state
previously. An FD can have up to 8 different states for each direction,
each of which being the result of a 3-bit combination. These 3 bits
indicate a wish to access the FD, the readiness of the FD and the
subscription of the FD to the polling system.
This means that it will now be possible to remember the state of a
file descriptor across disable/enable sequences that generally happen
during forwarding, where enabling reading on a previously disabled FD
would result in forgetting the EAGAIN flag it met last time.
Several new state manipulation functions have been introduced or
adapted :
- fd_want_{recv,send} : enable receiving/sending on the FD regardless
of its state (sets the ACTIVE flag) ;
- fd_stop_{recv,send} : stop receiving/sending on the FD regardless
of its state (clears the ACTIVE flag) ;
- fd_cant_{recv,send} : report a failure to receive/send on the FD
corresponding to EAGAIN (clears the READY flag) ;
- fd_may_{recv,send} : report the ability to receive/send on the FD
as reported by poll() (sets the READY flag) ;
Some functions are used to report the current FD status :
- fd_{recv,send}_active
- fd_{recv,send}_ready
- fd_{recv,send}_polled
Some functions were removed :
- fd_ev_clr(), fd_ev_set(), fd_ev_rem(), fd_ev_wai()
The POLLHUP/POLLERR flags are now reported as ready so that the I/O layers
knows it can try to access the file descriptor to get this information.
In order to simplify the conditions to add/remove cache entries, a new
function fd_alloc_or_release_cache_entry() was created to be used from
pollers while scanning for updates.
The following pollers have been updated :
ev_select() : done, built, tested on Linux 3.10
ev_poll() : done, built, tested on Linux 3.10
ev_epoll() : done, built, tested on Linux 3.10 & 3.13
ev_kqueue() : done, built, tested on OpenBSD 5.2
2014-01-10 10:58:45 -05:00
|
|
|
* Copyright 2000-2014 Willy Tarreau <w@1wt.eu>
|
2006-06-25 20:48:02 -04:00
|
|
|
*
|
|
|
|
|
* This program is free software; you can redistribute it and/or
|
|
|
|
|
* modify it under the terms of the GNU General Public License
|
|
|
|
|
* as published by the Free Software Foundation; either version
|
|
|
|
|
* 2 of the License, or (at your option) any later version.
|
|
|
|
|
*
|
2012-11-11 09:02:54 -05:00
|
|
|
* There is no direct link between the FD and the updates list. There is only a
|
|
|
|
|
* bit in the fdtab[] to indicate than a file descriptor is already present in
|
|
|
|
|
* the updates list. Once an fd is present in the updates list, it will have to
|
|
|
|
|
* be considered even if its changes are reverted in the middle or if the fd is
|
|
|
|
|
* replaced.
|
|
|
|
|
*
|
MAJOR: polling: rework the whole polling system
This commit heavily changes the polling system in order to definitely
fix the frequent breakage of SSL which needs to remember the last
EAGAIN before deciding whether to poll or not. Now we have a state per
direction for each FD, as opposed to a previous and current state
previously. An FD can have up to 8 different states for each direction,
each of which being the result of a 3-bit combination. These 3 bits
indicate a wish to access the FD, the readiness of the FD and the
subscription of the FD to the polling system.
This means that it will now be possible to remember the state of a
file descriptor across disable/enable sequences that generally happen
during forwarding, where enabling reading on a previously disabled FD
would result in forgetting the EAGAIN flag it met last time.
Several new state manipulation functions have been introduced or
adapted :
- fd_want_{recv,send} : enable receiving/sending on the FD regardless
of its state (sets the ACTIVE flag) ;
- fd_stop_{recv,send} : stop receiving/sending on the FD regardless
of its state (clears the ACTIVE flag) ;
- fd_cant_{recv,send} : report a failure to receive/send on the FD
corresponding to EAGAIN (clears the READY flag) ;
- fd_may_{recv,send} : report the ability to receive/send on the FD
as reported by poll() (sets the READY flag) ;
Some functions are used to report the current FD status :
- fd_{recv,send}_active
- fd_{recv,send}_ready
- fd_{recv,send}_polled
Some functions were removed :
- fd_ev_clr(), fd_ev_set(), fd_ev_rem(), fd_ev_wai()
The POLLHUP/POLLERR flags are now reported as ready so that the I/O layers
knows it can try to access the file descriptor to get this information.
In order to simplify the conditions to add/remove cache entries, a new
function fd_alloc_or_release_cache_entry() was created to be used from
pollers while scanning for updates.
The following pollers have been updated :
ev_select() : done, built, tested on Linux 3.10
ev_poll() : done, built, tested on Linux 3.10
ev_epoll() : done, built, tested on Linux 3.10 & 3.13
ev_kqueue() : done, built, tested on OpenBSD 5.2
2014-01-10 10:58:45 -05:00
|
|
|
* The event state for an FD, as found in fdtab[].state, is maintained for each
|
|
|
|
|
* direction. The state field is built this way, with R bits in the low nibble
|
|
|
|
|
* and W bits in the high nibble for ease of access and debugging :
|
2012-11-11 09:02:54 -05:00
|
|
|
*
|
MAJOR: polling: rework the whole polling system
This commit heavily changes the polling system in order to definitely
fix the frequent breakage of SSL which needs to remember the last
EAGAIN before deciding whether to poll or not. Now we have a state per
direction for each FD, as opposed to a previous and current state
previously. An FD can have up to 8 different states for each direction,
each of which being the result of a 3-bit combination. These 3 bits
indicate a wish to access the FD, the readiness of the FD and the
subscription of the FD to the polling system.
This means that it will now be possible to remember the state of a
file descriptor across disable/enable sequences that generally happen
during forwarding, where enabling reading on a previously disabled FD
would result in forgetting the EAGAIN flag it met last time.
Several new state manipulation functions have been introduced or
adapted :
- fd_want_{recv,send} : enable receiving/sending on the FD regardless
of its state (sets the ACTIVE flag) ;
- fd_stop_{recv,send} : stop receiving/sending on the FD regardless
of its state (clears the ACTIVE flag) ;
- fd_cant_{recv,send} : report a failure to receive/send on the FD
corresponding to EAGAIN (clears the READY flag) ;
- fd_may_{recv,send} : report the ability to receive/send on the FD
as reported by poll() (sets the READY flag) ;
Some functions are used to report the current FD status :
- fd_{recv,send}_active
- fd_{recv,send}_ready
- fd_{recv,send}_polled
Some functions were removed :
- fd_ev_clr(), fd_ev_set(), fd_ev_rem(), fd_ev_wai()
The POLLHUP/POLLERR flags are now reported as ready so that the I/O layers
knows it can try to access the file descriptor to get this information.
In order to simplify the conditions to add/remove cache entries, a new
function fd_alloc_or_release_cache_entry() was created to be used from
pollers while scanning for updates.
The following pollers have been updated :
ev_select() : done, built, tested on Linux 3.10
ev_poll() : done, built, tested on Linux 3.10
ev_epoll() : done, built, tested on Linux 3.10 & 3.13
ev_kqueue() : done, built, tested on OpenBSD 5.2
2014-01-10 10:58:45 -05:00
|
|
|
* 7 6 5 4 3 2 1 0
|
2019-09-04 03:52:57 -04:00
|
|
|
* [ 0 | 0 | RW | AW | 0 | 0 | RR | AR ]
|
2012-11-11 09:02:54 -05:00
|
|
|
*
|
MAJOR: polling: rework the whole polling system
This commit heavily changes the polling system in order to definitely
fix the frequent breakage of SSL which needs to remember the last
EAGAIN before deciding whether to poll or not. Now we have a state per
direction for each FD, as opposed to a previous and current state
previously. An FD can have up to 8 different states for each direction,
each of which being the result of a 3-bit combination. These 3 bits
indicate a wish to access the FD, the readiness of the FD and the
subscription of the FD to the polling system.
This means that it will now be possible to remember the state of a
file descriptor across disable/enable sequences that generally happen
during forwarding, where enabling reading on a previously disabled FD
would result in forgetting the EAGAIN flag it met last time.
Several new state manipulation functions have been introduced or
adapted :
- fd_want_{recv,send} : enable receiving/sending on the FD regardless
of its state (sets the ACTIVE flag) ;
- fd_stop_{recv,send} : stop receiving/sending on the FD regardless
of its state (clears the ACTIVE flag) ;
- fd_cant_{recv,send} : report a failure to receive/send on the FD
corresponding to EAGAIN (clears the READY flag) ;
- fd_may_{recv,send} : report the ability to receive/send on the FD
as reported by poll() (sets the READY flag) ;
Some functions are used to report the current FD status :
- fd_{recv,send}_active
- fd_{recv,send}_ready
- fd_{recv,send}_polled
Some functions were removed :
- fd_ev_clr(), fd_ev_set(), fd_ev_rem(), fd_ev_wai()
The POLLHUP/POLLERR flags are now reported as ready so that the I/O layers
knows it can try to access the file descriptor to get this information.
In order to simplify the conditions to add/remove cache entries, a new
function fd_alloc_or_release_cache_entry() was created to be used from
pollers while scanning for updates.
The following pollers have been updated :
ev_select() : done, built, tested on Linux 3.10
ev_poll() : done, built, tested on Linux 3.10
ev_epoll() : done, built, tested on Linux 3.10 & 3.13
ev_kqueue() : done, built, tested on OpenBSD 5.2
2014-01-10 10:58:45 -05:00
|
|
|
* A* = active *R = read
|
2019-09-04 03:52:57 -04:00
|
|
|
* R* = ready *W = write
|
MAJOR: polling: rework the whole polling system
This commit heavily changes the polling system in order to definitely
fix the frequent breakage of SSL which needs to remember the last
EAGAIN before deciding whether to poll or not. Now we have a state per
direction for each FD, as opposed to a previous and current state
previously. An FD can have up to 8 different states for each direction,
each of which being the result of a 3-bit combination. These 3 bits
indicate a wish to access the FD, the readiness of the FD and the
subscription of the FD to the polling system.
This means that it will now be possible to remember the state of a
file descriptor across disable/enable sequences that generally happen
during forwarding, where enabling reading on a previously disabled FD
would result in forgetting the EAGAIN flag it met last time.
Several new state manipulation functions have been introduced or
adapted :
- fd_want_{recv,send} : enable receiving/sending on the FD regardless
of its state (sets the ACTIVE flag) ;
- fd_stop_{recv,send} : stop receiving/sending on the FD regardless
of its state (clears the ACTIVE flag) ;
- fd_cant_{recv,send} : report a failure to receive/send on the FD
corresponding to EAGAIN (clears the READY flag) ;
- fd_may_{recv,send} : report the ability to receive/send on the FD
as reported by poll() (sets the READY flag) ;
Some functions are used to report the current FD status :
- fd_{recv,send}_active
- fd_{recv,send}_ready
- fd_{recv,send}_polled
Some functions were removed :
- fd_ev_clr(), fd_ev_set(), fd_ev_rem(), fd_ev_wai()
The POLLHUP/POLLERR flags are now reported as ready so that the I/O layers
knows it can try to access the file descriptor to get this information.
In order to simplify the conditions to add/remove cache entries, a new
function fd_alloc_or_release_cache_entry() was created to be used from
pollers while scanning for updates.
The following pollers have been updated :
ev_select() : done, built, tested on Linux 3.10
ev_poll() : done, built, tested on Linux 3.10
ev_epoll() : done, built, tested on Linux 3.10 & 3.13
ev_kqueue() : done, built, tested on OpenBSD 5.2
2014-01-10 10:58:45 -05:00
|
|
|
*
|
|
|
|
|
* An FD is marked "active" when there is a desire to use it.
|
|
|
|
|
* An FD is marked "ready" when it has not faced a new EAGAIN since last wake-up
|
2019-09-04 03:52:57 -04:00
|
|
|
* (it is a cache of the last EAGAIN regardless of polling changes). Each poller
|
|
|
|
|
* has its own "polled" state for the same fd, as stored in the polled_mask.
|
MAJOR: polling: rework the whole polling system
This commit heavily changes the polling system in order to definitely
fix the frequent breakage of SSL which needs to remember the last
EAGAIN before deciding whether to poll or not. Now we have a state per
direction for each FD, as opposed to a previous and current state
previously. An FD can have up to 8 different states for each direction,
each of which being the result of a 3-bit combination. These 3 bits
indicate a wish to access the FD, the readiness of the FD and the
subscription of the FD to the polling system.
This means that it will now be possible to remember the state of a
file descriptor across disable/enable sequences that generally happen
during forwarding, where enabling reading on a previously disabled FD
would result in forgetting the EAGAIN flag it met last time.
Several new state manipulation functions have been introduced or
adapted :
- fd_want_{recv,send} : enable receiving/sending on the FD regardless
of its state (sets the ACTIVE flag) ;
- fd_stop_{recv,send} : stop receiving/sending on the FD regardless
of its state (clears the ACTIVE flag) ;
- fd_cant_{recv,send} : report a failure to receive/send on the FD
corresponding to EAGAIN (clears the READY flag) ;
- fd_may_{recv,send} : report the ability to receive/send on the FD
as reported by poll() (sets the READY flag) ;
Some functions are used to report the current FD status :
- fd_{recv,send}_active
- fd_{recv,send}_ready
- fd_{recv,send}_polled
Some functions were removed :
- fd_ev_clr(), fd_ev_set(), fd_ev_rem(), fd_ev_wai()
The POLLHUP/POLLERR flags are now reported as ready so that the I/O layers
knows it can try to access the file descriptor to get this information.
In order to simplify the conditions to add/remove cache entries, a new
function fd_alloc_or_release_cache_entry() was created to be used from
pollers while scanning for updates.
The following pollers have been updated :
ev_select() : done, built, tested on Linux 3.10
ev_poll() : done, built, tested on Linux 3.10
ev_epoll() : done, built, tested on Linux 3.10 & 3.13
ev_kqueue() : done, built, tested on OpenBSD 5.2
2014-01-10 10:58:45 -05:00
|
|
|
*
|
2019-09-04 03:52:57 -04:00
|
|
|
* We have 4 possible states for each direction based on these 2 flags :
|
MAJOR: polling: rework the whole polling system
This commit heavily changes the polling system in order to definitely
fix the frequent breakage of SSL which needs to remember the last
EAGAIN before deciding whether to poll or not. Now we have a state per
direction for each FD, as opposed to a previous and current state
previously. An FD can have up to 8 different states for each direction,
each of which being the result of a 3-bit combination. These 3 bits
indicate a wish to access the FD, the readiness of the FD and the
subscription of the FD to the polling system.
This means that it will now be possible to remember the state of a
file descriptor across disable/enable sequences that generally happen
during forwarding, where enabling reading on a previously disabled FD
would result in forgetting the EAGAIN flag it met last time.
Several new state manipulation functions have been introduced or
adapted :
- fd_want_{recv,send} : enable receiving/sending on the FD regardless
of its state (sets the ACTIVE flag) ;
- fd_stop_{recv,send} : stop receiving/sending on the FD regardless
of its state (clears the ACTIVE flag) ;
- fd_cant_{recv,send} : report a failure to receive/send on the FD
corresponding to EAGAIN (clears the READY flag) ;
- fd_may_{recv,send} : report the ability to receive/send on the FD
as reported by poll() (sets the READY flag) ;
Some functions are used to report the current FD status :
- fd_{recv,send}_active
- fd_{recv,send}_ready
- fd_{recv,send}_polled
Some functions were removed :
- fd_ev_clr(), fd_ev_set(), fd_ev_rem(), fd_ev_wai()
The POLLHUP/POLLERR flags are now reported as ready so that the I/O layers
knows it can try to access the file descriptor to get this information.
In order to simplify the conditions to add/remove cache entries, a new
function fd_alloc_or_release_cache_entry() was created to be used from
pollers while scanning for updates.
The following pollers have been updated :
ev_select() : done, built, tested on Linux 3.10
ev_poll() : done, built, tested on Linux 3.10
ev_epoll() : done, built, tested on Linux 3.10 & 3.13
ev_kqueue() : done, built, tested on OpenBSD 5.2
2014-01-10 10:58:45 -05:00
|
|
|
*
|
2019-09-04 03:52:57 -04:00
|
|
|
* +---+---+----------+---------------------------------------------+
|
|
|
|
|
* | R | A | State | Description |
|
|
|
|
|
* +---+---+----------+---------------------------------------------+
|
|
|
|
|
* | 0 | 0 | DISABLED | No activity desired, not ready. |
|
|
|
|
|
* | 0 | 1 | ACTIVE | Activity desired. |
|
|
|
|
|
* | 1 | 0 | STOPPED | End of activity. |
|
|
|
|
|
* | 1 | 1 | READY | Activity desired and reported. |
|
|
|
|
|
* +---+---+----------+---------------------------------------------+
|
MAJOR: polling: rework the whole polling system
This commit heavily changes the polling system in order to definitely
fix the frequent breakage of SSL which needs to remember the last
EAGAIN before deciding whether to poll or not. Now we have a state per
direction for each FD, as opposed to a previous and current state
previously. An FD can have up to 8 different states for each direction,
each of which being the result of a 3-bit combination. These 3 bits
indicate a wish to access the FD, the readiness of the FD and the
subscription of the FD to the polling system.
This means that it will now be possible to remember the state of a
file descriptor across disable/enable sequences that generally happen
during forwarding, where enabling reading on a previously disabled FD
would result in forgetting the EAGAIN flag it met last time.
Several new state manipulation functions have been introduced or
adapted :
- fd_want_{recv,send} : enable receiving/sending on the FD regardless
of its state (sets the ACTIVE flag) ;
- fd_stop_{recv,send} : stop receiving/sending on the FD regardless
of its state (clears the ACTIVE flag) ;
- fd_cant_{recv,send} : report a failure to receive/send on the FD
corresponding to EAGAIN (clears the READY flag) ;
- fd_may_{recv,send} : report the ability to receive/send on the FD
as reported by poll() (sets the READY flag) ;
Some functions are used to report the current FD status :
- fd_{recv,send}_active
- fd_{recv,send}_ready
- fd_{recv,send}_polled
Some functions were removed :
- fd_ev_clr(), fd_ev_set(), fd_ev_rem(), fd_ev_wai()
The POLLHUP/POLLERR flags are now reported as ready so that the I/O layers
knows it can try to access the file descriptor to get this information.
In order to simplify the conditions to add/remove cache entries, a new
function fd_alloc_or_release_cache_entry() was created to be used from
pollers while scanning for updates.
The following pollers have been updated :
ev_select() : done, built, tested on Linux 3.10
ev_poll() : done, built, tested on Linux 3.10
ev_epoll() : done, built, tested on Linux 3.10 & 3.13
ev_kqueue() : done, built, tested on OpenBSD 5.2
2014-01-10 10:58:45 -05:00
|
|
|
*
|
|
|
|
|
* The transitions are pretty simple :
|
|
|
|
|
* - fd_want_*() : set flag A
|
|
|
|
|
* - fd_stop_*() : clear flag A
|
|
|
|
|
* - fd_cant_*() : clear flag R (when facing EAGAIN)
|
|
|
|
|
* - fd_may_*() : set flag R (upon return from poll())
|
|
|
|
|
*
|
2019-09-04 03:52:57 -04:00
|
|
|
* Each poller then computes its own polled state :
|
|
|
|
|
* if (A) { if (!R) P := 1 } else { P := 0 }
|
|
|
|
|
*
|
|
|
|
|
* The state transitions look like the diagram below.
|
|
|
|
|
*
|
|
|
|
|
* may +----------+
|
|
|
|
|
* ,----| DISABLED | (READY=0, ACTIVE=0)
|
|
|
|
|
* | +----------+
|
|
|
|
|
* | want | ^
|
|
|
|
|
* | | |
|
|
|
|
|
* | v | stop
|
|
|
|
|
* | +----------+
|
|
|
|
|
* | | ACTIVE | (READY=0, ACTIVE=1)
|
|
|
|
|
* | +----------+
|
|
|
|
|
* | | ^
|
|
|
|
|
* | may | |
|
2021-01-07 23:35:52 -05:00
|
|
|
* | v | EAGAIN (can't)
|
2019-09-04 03:52:57 -04:00
|
|
|
* | +--------+
|
|
|
|
|
* | | READY | (READY=1, ACTIVE=1)
|
|
|
|
|
* | +--------+
|
|
|
|
|
* | stop | ^
|
|
|
|
|
* | | |
|
|
|
|
|
* | v | want
|
|
|
|
|
* | +---------+
|
|
|
|
|
* `--->| STOPPED | (READY=1, ACTIVE=0)
|
|
|
|
|
* +---------+
|
2006-06-25 20:48:02 -04:00
|
|
|
*/
|
|
|
|
|
|
2007-04-09 13:29:56 -04:00
|
|
|
#include <stdio.h>
|
2007-04-08 10:39:58 -04:00
|
|
|
#include <string.h>
|
2006-06-25 20:48:02 -04:00
|
|
|
#include <unistd.h>
|
2018-07-26 11:55:11 -04:00
|
|
|
#include <fcntl.h>
|
2006-06-25 20:48:02 -04:00
|
|
|
#include <sys/types.h>
|
2019-02-21 16:19:17 -05:00
|
|
|
#include <sys/resource.h>
|
2019-08-27 05:08:17 -04:00
|
|
|
#include <sys/uio.h>
|
2006-06-25 20:48:02 -04:00
|
|
|
|
2019-05-22 13:24:06 -04:00
|
|
|
#if defined(USE_POLL)
|
2019-02-21 16:12:47 -05:00
|
|
|
#include <poll.h>
|
|
|
|
|
#include <errno.h>
|
|
|
|
|
#endif
|
|
|
|
|
|
2020-05-27 06:58:42 -04:00
|
|
|
#include <haproxy/api.h>
|
2020-06-18 02:58:47 -04:00
|
|
|
#include <haproxy/cfgparse.h>
|
2020-06-03 13:33:00 -04:00
|
|
|
#include <haproxy/fd.h>
|
2020-06-09 03:07:15 -04:00
|
|
|
#include <haproxy/global.h>
|
2021-05-08 14:35:03 -04:00
|
|
|
#include <haproxy/log.h>
|
2020-06-03 13:20:59 -04:00
|
|
|
#include <haproxy/port_range.h>
|
2020-06-18 02:58:47 -04:00
|
|
|
#include <haproxy/tools.h>
|
2006-06-25 20:48:02 -04:00
|
|
|
|
2020-06-09 03:07:15 -04:00
|
|
|
|
2021-04-10 10:58:13 -04:00
|
|
|
struct fdtab *fdtab __read_mostly = NULL; /* array of all the file descriptors */
|
|
|
|
|
struct polled_mask *polled_mask __read_mostly = NULL; /* Array for the polled_mask of each fd */
|
|
|
|
|
struct fdinfo *fdinfo __read_mostly = NULL; /* less-often used infos for file descriptors */
|
2006-06-25 20:48:02 -04:00
|
|
|
int totalconn; /* total # of terminated sessions */
|
|
|
|
|
int actconn; /* # of active sessions */
|
|
|
|
|
|
2021-04-10 10:58:13 -04:00
|
|
|
struct poller pollers[MAX_POLLERS] __read_mostly;
|
|
|
|
|
struct poller cur_poller __read_mostly;
|
2007-04-08 10:39:58 -04:00
|
|
|
int nbpollers = 0;
|
2006-06-25 20:48:02 -04:00
|
|
|
|
2018-04-25 10:58:25 -04:00
|
|
|
volatile struct fdlist update_list; // Global update list
|
2018-01-24 12:17:56 -05:00
|
|
|
|
MAJOR: threads/fd: Make fd stuffs thread-safe
Many changes have been made to do so. First, the fd_updt array, where all
pending FDs for polling are stored, is now a thread-local array. Then 3 locks
have been added to protect, respectively, the fdtab array, the fd_cache array
and poll information. In addition, a lock for each entry in the fdtab array has
been added to protect all accesses to a specific FD or its information.
For pollers, according to the poller, the way to manage the concurrency is
different. There is a poller loop on each thread. So the set of monitored FDs
may need to be protected. epoll and kqueue are thread-safe per-se, so there few
things to do to protect these pollers. This is not possible with select and
poll, so there is no sharing between the threads. The poller on each thread is
independant from others.
Finally, per-thread init/deinit functions are used for each pollers and for FD
part for manage thread-local ressources.
Now, you must be carefull when a FD is created during the HAProxy startup. All
update on the FD state must be made in the threads context and never before
their creation. This is mandatory because fd_updt array is thread-local and
initialized only for threads. Because there is no pollers for the main one, this
array remains uninitialized in this context. For this reason, listeners are now
enabled in run_thread_poll_loop function, just like the worker pipe.
2017-05-29 04:40:41 -04:00
|
|
|
THREAD_LOCAL int *fd_updt = NULL; // FD updates list
|
|
|
|
|
THREAD_LOCAL int fd_nbupdt = 0; // number of updates in the list
|
2018-07-26 11:55:11 -04:00
|
|
|
THREAD_LOCAL int poller_rd_pipe = -1; // Pipe to wake the thread
|
2021-04-10 10:58:13 -04:00
|
|
|
int poller_wr_pipe[MAX_THREADS] __read_mostly; // Pipe to wake the threads
|
MAJOR: threads/fd: Make fd stuffs thread-safe
Many changes have been made to do so. First, the fd_updt array, where all
pending FDs for polling are stored, is now a thread-local array. Then 3 locks
have been added to protect, respectively, the fdtab array, the fd_cache array
and poll information. In addition, a lock for each entry in the fdtab array has
been added to protect all accesses to a specific FD or its information.
For pollers, according to the poller, the way to manage the concurrency is
different. There is a poller loop on each thread. So the set of monitored FDs
may need to be protected. epoll and kqueue are thread-safe per-se, so there few
things to do to protect these pollers. This is not possible with select and
poll, so there is no sharing between the threads. The poller on each thread is
independant from others.
Finally, per-thread init/deinit functions are used for each pollers and for FD
part for manage thread-local ressources.
Now, you must be carefull when a FD is created during the HAProxy startup. All
update on the FD state must be made in the threads context and never before
their creation. This is mandatory because fd_updt array is thread-local and
initialized only for threads. Because there is no pollers for the main one, this
array remains uninitialized in this context. For this reason, listeners are now
enabled in run_thread_poll_loop function, just like the worker pipe.
2017-05-29 04:40:41 -04:00
|
|
|
|
2019-04-16 12:37:05 -04:00
|
|
|
volatile int ha_used_fds = 0; // Number of FD we're currently using
|
|
|
|
|
|
2019-12-20 01:20:00 -05:00
|
|
|
#define _GET_NEXT(fd, off) ((volatile struct fdlist_entry *)(void *)((char *)(&fdtab[fd]) + off))->next
|
|
|
|
|
#define _GET_PREV(fd, off) ((volatile struct fdlist_entry *)(void *)((char *)(&fdtab[fd]) + off))->prev
|
2018-02-05 11:14:55 -05:00
|
|
|
/* adds fd <fd> to fd list <list> if it was not yet in it */
|
2018-04-25 09:10:30 -04:00
|
|
|
void fd_add_to_fd_list(volatile struct fdlist *list, int fd, int off)
|
2018-02-05 11:14:55 -05:00
|
|
|
{
|
|
|
|
|
int next;
|
|
|
|
|
int new;
|
|
|
|
|
int old;
|
|
|
|
|
int last;
|
|
|
|
|
|
|
|
|
|
redo_next:
|
2018-04-25 09:10:30 -04:00
|
|
|
next = _GET_NEXT(fd, off);
|
2018-02-05 11:14:55 -05:00
|
|
|
/* Check that we're not already in the cache, and if not, lock us. */
|
BUG/MEDIUM: fd/threads: fix a concurrency issue between add and rm on the same fd
There's a very hard-to-trigger bug in the FD list code where the
fd_add_to_fd_list() function assumes that if the FD it's trying to add
is already locked, it's in the process of being added. Unfortunately, it
can also be in the process of being removed. It is very hard to trigger
because it requires that one thread is removing the FD while another one
is adding it. First very few FDs run on multiple threads (listeners and
DNS), and second, it does not make sense to add and remove the FD at the
same time.
In practice the DNS code built on the older callback-only model does
perform bursts of fd_want_send() for all resolvers at once when it wants
to send a new query (dns_send_query()). And this is more likely to happen
when here are lots of resolutions in parallel and many resolvers, because
the dns_response_recv() callback can also trigger a series of queries on
all resolvers for each invalid response it receives. This means that it
really is perfectly possible to both stop and start in parallel during
short periods of time there.
This issue was not reported before 2.1, but 2.1 had the FD cache, built
on the exact same code base. It's very possible that the issue caused
exactly the opposite situation, where an event was occasionally lost,
causing a DNS retry that worked, and nobody noticing the problem in the
end. In 2.1 the lost entries are the updates asking for not polling for
writes anymore, and the effect is that the poller contiuously reports
writability on the socket when the issue happens.
This patch fixes bug #416 and must be backported as far as 1.8, and
absolutely requires that previous commit "MINOR: fd/threads: make
_GET_NEXT()/_GET_PREV() use the volatile attribute" is backported as
well otherwise it will make the issue worse.
Special thanks to Julien Pivotto for setting up a reliable reproducer
for this difficult issue.
2019-12-19 12:33:08 -05:00
|
|
|
if (next > -2)
|
2018-02-05 11:14:55 -05:00
|
|
|
goto done;
|
BUG/MEDIUM: fd/threads: fix a concurrency issue between add and rm on the same fd
There's a very hard-to-trigger bug in the FD list code where the
fd_add_to_fd_list() function assumes that if the FD it's trying to add
is already locked, it's in the process of being added. Unfortunately, it
can also be in the process of being removed. It is very hard to trigger
because it requires that one thread is removing the FD while another one
is adding it. First very few FDs run on multiple threads (listeners and
DNS), and second, it does not make sense to add and remove the FD at the
same time.
In practice the DNS code built on the older callback-only model does
perform bursts of fd_want_send() for all resolvers at once when it wants
to send a new query (dns_send_query()). And this is more likely to happen
when here are lots of resolutions in parallel and many resolvers, because
the dns_response_recv() callback can also trigger a series of queries on
all resolvers for each invalid response it receives. This means that it
really is perfectly possible to both stop and start in parallel during
short periods of time there.
This issue was not reported before 2.1, but 2.1 had the FD cache, built
on the exact same code base. It's very possible that the issue caused
exactly the opposite situation, where an event was occasionally lost,
causing a DNS retry that worked, and nobody noticing the problem in the
end. In 2.1 the lost entries are the updates asking for not polling for
writes anymore, and the effect is that the poller contiuously reports
writability on the socket when the issue happens.
This patch fixes bug #416 and must be backported as far as 1.8, and
absolutely requires that previous commit "MINOR: fd/threads: make
_GET_NEXT()/_GET_PREV() use the volatile attribute" is backported as
well otherwise it will make the issue worse.
Special thanks to Julien Pivotto for setting up a reliable reproducer
for this difficult issue.
2019-12-19 12:33:08 -05:00
|
|
|
if (next == -2)
|
|
|
|
|
goto redo_next;
|
2019-03-08 12:47:42 -05:00
|
|
|
if (!_HA_ATOMIC_CAS(&_GET_NEXT(fd, off), &next, -2))
|
2018-02-05 11:14:55 -05:00
|
|
|
goto redo_next;
|
2019-03-08 07:47:21 -05:00
|
|
|
__ha_barrier_atomic_store();
|
2018-02-05 11:52:24 -05:00
|
|
|
|
|
|
|
|
new = fd;
|
2018-02-05 11:14:55 -05:00
|
|
|
redo_last:
|
|
|
|
|
/* First, insert in the linked list */
|
|
|
|
|
last = list->last;
|
|
|
|
|
old = -1;
|
|
|
|
|
|
2018-04-25 09:10:30 -04:00
|
|
|
_GET_PREV(fd, off) = -2;
|
2018-02-05 11:52:24 -05:00
|
|
|
/* Make sure the "prev" store is visible before we update the last entry */
|
|
|
|
|
__ha_barrier_store();
|
2018-02-05 11:14:55 -05:00
|
|
|
|
2018-02-05 11:52:24 -05:00
|
|
|
if (unlikely(last == -1)) {
|
|
|
|
|
/* list is empty, try to add ourselves alone so that list->last=fd */
|
2019-03-08 12:47:42 -05:00
|
|
|
if (unlikely(!_HA_ATOMIC_CAS(&list->last, &old, new)))
|
2018-02-05 11:14:55 -05:00
|
|
|
goto redo_last;
|
|
|
|
|
|
|
|
|
|
/* list->first was necessary -1, we're guaranteed to be alone here */
|
|
|
|
|
list->first = fd;
|
|
|
|
|
} else {
|
2018-02-05 11:52:24 -05:00
|
|
|
/* adding ourselves past the last element
|
|
|
|
|
* The CAS will only succeed if its next is -1,
|
|
|
|
|
* which means it's in the cache, and the last element.
|
|
|
|
|
*/
|
2019-03-08 12:47:42 -05:00
|
|
|
if (unlikely(!_HA_ATOMIC_CAS(&_GET_NEXT(last, off), &old, new)))
|
2018-02-05 11:14:55 -05:00
|
|
|
goto redo_last;
|
2018-02-05 11:52:24 -05:00
|
|
|
|
|
|
|
|
/* Then, update the last entry */
|
|
|
|
|
list->last = fd;
|
2018-02-05 11:14:55 -05:00
|
|
|
}
|
|
|
|
|
__ha_barrier_store();
|
2018-02-05 11:52:24 -05:00
|
|
|
/* since we're alone at the end of the list and still locked(-2),
|
2021-01-06 11:20:16 -05:00
|
|
|
* we know no one tried to add past us. Mark the end of list.
|
2018-02-05 11:52:24 -05:00
|
|
|
*/
|
2018-04-25 09:10:30 -04:00
|
|
|
_GET_PREV(fd, off) = last;
|
|
|
|
|
_GET_NEXT(fd, off) = -1;
|
2018-02-05 11:14:55 -05:00
|
|
|
__ha_barrier_store();
|
|
|
|
|
done:
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* removes fd <fd> from fd list <list> */
|
2018-04-25 09:10:30 -04:00
|
|
|
void fd_rm_from_fd_list(volatile struct fdlist *list, int fd, int off)
|
2018-02-05 11:14:55 -05:00
|
|
|
{
|
|
|
|
|
#if defined(HA_HAVE_CAS_DW) || defined(HA_CAS_IS_8B)
|
2020-02-25 03:25:53 -05:00
|
|
|
volatile union {
|
|
|
|
|
struct fdlist_entry ent;
|
|
|
|
|
uint64_t u64;
|
|
|
|
|
uint32_t u32[2];
|
|
|
|
|
} cur_list, next_list;
|
2018-02-05 11:14:55 -05:00
|
|
|
#endif
|
|
|
|
|
int old;
|
|
|
|
|
int new = -2;
|
|
|
|
|
int prev;
|
|
|
|
|
int next;
|
|
|
|
|
int last;
|
|
|
|
|
lock_self:
|
|
|
|
|
#if (defined(HA_CAS_IS_8B) || defined(HA_HAVE_CAS_DW))
|
2020-02-25 03:25:53 -05:00
|
|
|
next_list.ent.next = next_list.ent.prev = -2;
|
|
|
|
|
cur_list.ent = *(volatile struct fdlist_entry *)(((char *)&fdtab[fd]) + off);
|
2018-02-05 11:14:55 -05:00
|
|
|
/* First, attempt to lock our own entries */
|
|
|
|
|
do {
|
|
|
|
|
/* The FD is not in the FD cache, give up */
|
2020-02-25 03:25:53 -05:00
|
|
|
if (unlikely(cur_list.ent.next <= -3))
|
2018-02-05 11:14:55 -05:00
|
|
|
return;
|
2020-02-25 03:25:53 -05:00
|
|
|
if (unlikely(cur_list.ent.prev == -2 || cur_list.ent.next == -2))
|
2018-02-05 11:14:55 -05:00
|
|
|
goto lock_self;
|
|
|
|
|
} while (
|
|
|
|
|
#ifdef HA_CAS_IS_8B
|
2020-02-25 03:25:53 -05:00
|
|
|
unlikely(!_HA_ATOMIC_CAS(((uint64_t *)&_GET_NEXT(fd, off)), (uint64_t *)&cur_list.u64, next_list.u64))
|
2018-02-05 11:14:55 -05:00
|
|
|
#else
|
2020-02-25 03:25:53 -05:00
|
|
|
unlikely(!_HA_ATOMIC_DWCAS(((long *)&_GET_NEXT(fd, off)), (uint32_t *)&cur_list.u32, &next_list.u32))
|
2018-02-05 11:14:55 -05:00
|
|
|
#endif
|
2020-02-25 03:25:53 -05:00
|
|
|
);
|
|
|
|
|
next = cur_list.ent.next;
|
|
|
|
|
prev = cur_list.ent.prev;
|
2018-02-05 11:14:55 -05:00
|
|
|
|
|
|
|
|
#else
|
|
|
|
|
lock_self_next:
|
2019-12-20 01:20:00 -05:00
|
|
|
next = _GET_NEXT(fd, off);
|
2018-02-05 11:14:55 -05:00
|
|
|
if (next == -2)
|
|
|
|
|
goto lock_self_next;
|
|
|
|
|
if (next <= -3)
|
|
|
|
|
goto done;
|
2019-03-08 12:47:42 -05:00
|
|
|
if (unlikely(!_HA_ATOMIC_CAS(&_GET_NEXT(fd, off), &next, -2)))
|
2018-02-05 11:14:55 -05:00
|
|
|
goto lock_self_next;
|
|
|
|
|
lock_self_prev:
|
2019-12-20 01:20:00 -05:00
|
|
|
prev = _GET_PREV(fd, off);
|
2018-02-05 11:14:55 -05:00
|
|
|
if (prev == -2)
|
|
|
|
|
goto lock_self_prev;
|
2019-03-08 12:47:42 -05:00
|
|
|
if (unlikely(!_HA_ATOMIC_CAS(&_GET_PREV(fd, off), &prev, -2)))
|
2018-02-05 11:14:55 -05:00
|
|
|
goto lock_self_prev;
|
|
|
|
|
#endif
|
2019-03-08 07:47:21 -05:00
|
|
|
__ha_barrier_atomic_store();
|
2018-02-05 11:14:55 -05:00
|
|
|
|
|
|
|
|
/* Now, lock the entries of our neighbours */
|
|
|
|
|
if (likely(prev != -1)) {
|
|
|
|
|
redo_prev:
|
|
|
|
|
old = fd;
|
|
|
|
|
|
2019-03-08 12:47:42 -05:00
|
|
|
if (unlikely(!_HA_ATOMIC_CAS(&_GET_NEXT(prev, off), &old, new))) {
|
2018-02-05 11:14:55 -05:00
|
|
|
if (unlikely(old == -2)) {
|
|
|
|
|
/* Neighbour already locked, give up and
|
|
|
|
|
* retry again once he's done
|
|
|
|
|
*/
|
2018-04-25 09:10:30 -04:00
|
|
|
_GET_PREV(fd, off) = prev;
|
2018-02-05 11:14:55 -05:00
|
|
|
__ha_barrier_store();
|
2018-04-25 09:10:30 -04:00
|
|
|
_GET_NEXT(fd, off) = next;
|
2018-02-05 11:14:55 -05:00
|
|
|
__ha_barrier_store();
|
|
|
|
|
goto lock_self;
|
|
|
|
|
}
|
|
|
|
|
goto redo_prev;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if (likely(next != -1)) {
|
|
|
|
|
redo_next:
|
|
|
|
|
old = fd;
|
2019-03-08 12:47:42 -05:00
|
|
|
if (unlikely(!_HA_ATOMIC_CAS(&_GET_PREV(next, off), &old, new))) {
|
2018-02-05 11:14:55 -05:00
|
|
|
if (unlikely(old == -2)) {
|
|
|
|
|
/* Neighbour already locked, give up and
|
|
|
|
|
* retry again once he's done
|
|
|
|
|
*/
|
|
|
|
|
if (prev != -1) {
|
2018-04-25 09:10:30 -04:00
|
|
|
_GET_NEXT(prev, off) = fd;
|
2018-02-05 11:14:55 -05:00
|
|
|
__ha_barrier_store();
|
|
|
|
|
}
|
2018-04-25 09:10:30 -04:00
|
|
|
_GET_PREV(fd, off) = prev;
|
2018-02-05 11:14:55 -05:00
|
|
|
__ha_barrier_store();
|
2018-04-25 09:10:30 -04:00
|
|
|
_GET_NEXT(fd, off) = next;
|
2018-02-05 11:14:55 -05:00
|
|
|
__ha_barrier_store();
|
|
|
|
|
goto lock_self;
|
|
|
|
|
}
|
|
|
|
|
goto redo_next;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if (list->first == fd)
|
|
|
|
|
list->first = next;
|
|
|
|
|
__ha_barrier_store();
|
|
|
|
|
last = list->last;
|
2019-03-08 12:47:42 -05:00
|
|
|
while (unlikely(last == fd && (!_HA_ATOMIC_CAS(&list->last, &last, prev))))
|
2018-02-05 11:14:55 -05:00
|
|
|
__ha_compiler_barrier();
|
|
|
|
|
/* Make sure we let other threads know we're no longer in cache,
|
|
|
|
|
* before releasing our neighbours.
|
|
|
|
|
*/
|
|
|
|
|
__ha_barrier_store();
|
|
|
|
|
if (likely(prev != -1))
|
2018-04-25 09:10:30 -04:00
|
|
|
_GET_NEXT(prev, off) = next;
|
2018-02-05 11:14:55 -05:00
|
|
|
__ha_barrier_store();
|
|
|
|
|
if (likely(next != -1))
|
2018-04-25 09:10:30 -04:00
|
|
|
_GET_PREV(next, off) = prev;
|
2018-02-05 11:14:55 -05:00
|
|
|
__ha_barrier_store();
|
|
|
|
|
/* Ok, now we're out of the fd cache */
|
2018-04-25 09:10:30 -04:00
|
|
|
_GET_NEXT(fd, off) = -(next + 4);
|
2018-02-05 11:14:55 -05:00
|
|
|
__ha_barrier_store();
|
|
|
|
|
done:
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
2018-04-25 09:10:30 -04:00
|
|
|
#undef _GET_NEXT
|
|
|
|
|
#undef _GET_PREV
|
|
|
|
|
|
BUG/MEDIUM: fd: do not wait on FD removal in fd_delete()
Christopher discovered an issue mostly affecting 2.2 and to a less extent
2.3 and above, which is that it's possible to deadlock a soft-stop when
several threads are using a same listener:
thread1 thread2
unbind_listener() fd_set_running()
lock(listener) listener_accept()
fd_delete() lock(listener)
while (running_mask); -----> deadlock
unlock(listener)
This simple case disappeared from 2.3 due to the removal of some locked
operations at the end of listener_accept() on the regular path, but the
architectural problem is still here and caused by a lock inversion built
around the loop on running_mask in fd_clr_running_excl(), because there
are situations where the caller of fd_delete() may hold a lock that is
preventing other threads from dropping their bit in running_mask.
The real need here is to make sure the last user deletes the FD. We have
all we need to know the last one, it's the one calling fd_clr_running()
last, or entering fd_delete() last, both of which can be summed up as
the last one calling fd_clr_running() if fd_delete() calls fd_clr_running()
at the end. And we can prevent new threads from appearing in running_mask
by removing their bits in thread_mask.
So what this patch does is that it sets the running_mask for the thread
in fd_delete(), clears the thread_mask, thus marking the FD as orphaned,
then clears the running mask again, and completes the deletion if it was
the last one. If it was not, another thread will pass through fd_clr_running
and will complete the deletion of the FD.
The bug is easily reproducible in 2.2 under high connection rates during
soft close. When the old process stops its listener, occasionally two
threads will deadlock and the old process will then be killed by the
watchdog. It's strongly believed that similar situations do exist in 2.3
and 2.4 (e.g. if the removal attempt happens during resume_listener()
called from listener_accept()) but if so, they should be much harder to
trigger.
This should be backported to 2.2 as the issue appeared with the FD
migration. It requires previous patches "fd: make fd_clr_running() return
the remaining running mask" and "MINOR: fd: remove the unneeded running
bit from fd_insert()".
Notes for backport: in 2.2, the fd_dodelete() function requires an extra
argument "do_close" indicating whether we want to remove and close the FD
(fd_delete) or just delete it (fd_remove). While this information is not
conveyed along the chain, we know that late calls always imply do_close=1
become do_close=0 exclusively results from fd_remove() which is only used
by the config parser and the master, both of which are single-threaded,
hence are always the last ones in the running_mask. Thus it is safe to
assume that a postponed FD deletion always implies do_close=1.
Thanks to Olivier for his help in designing this optimal solution.
2021-03-24 05:51:32 -04:00
|
|
|
/* deletes the FD once nobody uses it anymore, as detected by the caller by its
|
|
|
|
|
* thread_mask being zero and its running mask turning to zero. There is no
|
|
|
|
|
* protection against concurrent accesses, it's up to the caller to make sure
|
|
|
|
|
* only the last thread will call it. This is only for internal use, please use
|
|
|
|
|
* fd_delete() instead.
|
2007-04-08 10:39:58 -04:00
|
|
|
*/
|
BUG/MEDIUM: fd: do not wait on FD removal in fd_delete()
Christopher discovered an issue mostly affecting 2.2 and to a less extent
2.3 and above, which is that it's possible to deadlock a soft-stop when
several threads are using a same listener:
thread1 thread2
unbind_listener() fd_set_running()
lock(listener) listener_accept()
fd_delete() lock(listener)
while (running_mask); -----> deadlock
unlock(listener)
This simple case disappeared from 2.3 due to the removal of some locked
operations at the end of listener_accept() on the regular path, but the
architectural problem is still here and caused by a lock inversion built
around the loop on running_mask in fd_clr_running_excl(), because there
are situations where the caller of fd_delete() may hold a lock that is
preventing other threads from dropping their bit in running_mask.
The real need here is to make sure the last user deletes the FD. We have
all we need to know the last one, it's the one calling fd_clr_running()
last, or entering fd_delete() last, both of which can be summed up as
the last one calling fd_clr_running() if fd_delete() calls fd_clr_running()
at the end. And we can prevent new threads from appearing in running_mask
by removing their bits in thread_mask.
So what this patch does is that it sets the running_mask for the thread
in fd_delete(), clears the thread_mask, thus marking the FD as orphaned,
then clears the running mask again, and completes the deletion if it was
the last one. If it was not, another thread will pass through fd_clr_running
and will complete the deletion of the FD.
The bug is easily reproducible in 2.2 under high connection rates during
soft close. When the old process stops its listener, occasionally two
threads will deadlock and the old process will then be killed by the
watchdog. It's strongly believed that similar situations do exist in 2.3
and 2.4 (e.g. if the removal attempt happens during resume_listener()
called from listener_accept()) but if so, they should be much harder to
trigger.
This should be backported to 2.2 as the issue appeared with the FD
migration. It requires previous patches "fd: make fd_clr_running() return
the remaining running mask" and "MINOR: fd: remove the unneeded running
bit from fd_insert()".
Notes for backport: in 2.2, the fd_dodelete() function requires an extra
argument "do_close" indicating whether we want to remove and close the FD
(fd_delete) or just delete it (fd_remove). While this information is not
conveyed along the chain, we know that late calls always imply do_close=1
become do_close=0 exclusively results from fd_remove() which is only used
by the config parser and the master, both of which are single-threaded,
hence are always the last ones in the running_mask. Thus it is safe to
assume that a postponed FD deletion always implies do_close=1.
Thanks to Olivier for his help in designing this optimal solution.
2021-03-24 05:51:32 -04:00
|
|
|
void _fd_delete_orphan(int fd)
|
2006-06-25 20:48:02 -04:00
|
|
|
{
|
2021-04-06 11:49:19 -04:00
|
|
|
if (fdtab[fd].state & FD_LINGER_RISK) {
|
2013-12-15 08:19:38 -05:00
|
|
|
/* this is generally set when connecting to servers */
|
2020-04-02 06:02:08 -04:00
|
|
|
DISGUISE(setsockopt(fd, SOL_SOCKET, SO_LINGER,
|
|
|
|
|
(struct linger *) &nolinger, sizeof(struct linger)));
|
2013-12-15 08:19:38 -05:00
|
|
|
}
|
2012-11-11 10:05:19 -05:00
|
|
|
if (cur_poller.clo)
|
|
|
|
|
cur_poller.clo(fd);
|
2021-03-24 10:34:25 -04:00
|
|
|
|
|
|
|
|
port_range_release_port(fdinfo[fd].port_range, fdinfo[fd].local_port);
|
2019-08-05 12:51:52 -04:00
|
|
|
polled_mask[fd].poll_recv = polled_mask[fd].poll_send = 0;
|
2012-11-11 10:05:19 -05:00
|
|
|
|
MAJOR: polling: rework the whole polling system
This commit heavily changes the polling system in order to definitely
fix the frequent breakage of SSL which needs to remember the last
EAGAIN before deciding whether to poll or not. Now we have a state per
direction for each FD, as opposed to a previous and current state
previously. An FD can have up to 8 different states for each direction,
each of which being the result of a 3-bit combination. These 3 bits
indicate a wish to access the FD, the readiness of the FD and the
subscription of the FD to the polling system.
This means that it will now be possible to remember the state of a
file descriptor across disable/enable sequences that generally happen
during forwarding, where enabling reading on a previously disabled FD
would result in forgetting the EAGAIN flag it met last time.
Several new state manipulation functions have been introduced or
adapted :
- fd_want_{recv,send} : enable receiving/sending on the FD regardless
of its state (sets the ACTIVE flag) ;
- fd_stop_{recv,send} : stop receiving/sending on the FD regardless
of its state (clears the ACTIVE flag) ;
- fd_cant_{recv,send} : report a failure to receive/send on the FD
corresponding to EAGAIN (clears the READY flag) ;
- fd_may_{recv,send} : report the ability to receive/send on the FD
as reported by poll() (sets the READY flag) ;
Some functions are used to report the current FD status :
- fd_{recv,send}_active
- fd_{recv,send}_ready
- fd_{recv,send}_polled
Some functions were removed :
- fd_ev_clr(), fd_ev_set(), fd_ev_rem(), fd_ev_wai()
The POLLHUP/POLLERR flags are now reported as ready so that the I/O layers
knows it can try to access the file descriptor to get this information.
In order to simplify the conditions to add/remove cache entries, a new
function fd_alloc_or_release_cache_entry() was created to be used from
pollers while scanning for updates.
The following pollers have been updated :
ev_select() : done, built, tested on Linux 3.10
ev_poll() : done, built, tested on Linux 3.10
ev_epoll() : done, built, tested on Linux 3.10 & 3.13
ev_kqueue() : done, built, tested on OpenBSD 5.2
2014-01-10 10:58:45 -05:00
|
|
|
fdtab[fd].state = 0;
|
2012-11-11 10:05:19 -05:00
|
|
|
|
2020-06-23 04:04:54 -04:00
|
|
|
#ifdef DEBUG_FD
|
|
|
|
|
fdtab[fd].event_count = 0;
|
|
|
|
|
#endif
|
2009-10-18 01:25:52 -04:00
|
|
|
fdinfo[fd].port_range = NULL;
|
2012-07-05 17:19:22 -04:00
|
|
|
fdtab[fd].owner = NULL;
|
BUG/MEDIUM: fd: do not wait on FD removal in fd_delete()
Christopher discovered an issue mostly affecting 2.2 and to a less extent
2.3 and above, which is that it's possible to deadlock a soft-stop when
several threads are using a same listener:
thread1 thread2
unbind_listener() fd_set_running()
lock(listener) listener_accept()
fd_delete() lock(listener)
while (running_mask); -----> deadlock
unlock(listener)
This simple case disappeared from 2.3 due to the removal of some locked
operations at the end of listener_accept() on the regular path, but the
architectural problem is still here and caused by a lock inversion built
around the loop on running_mask in fd_clr_running_excl(), because there
are situations where the caller of fd_delete() may hold a lock that is
preventing other threads from dropping their bit in running_mask.
The real need here is to make sure the last user deletes the FD. We have
all we need to know the last one, it's the one calling fd_clr_running()
last, or entering fd_delete() last, both of which can be summed up as
the last one calling fd_clr_running() if fd_delete() calls fd_clr_running()
at the end. And we can prevent new threads from appearing in running_mask
by removing their bits in thread_mask.
So what this patch does is that it sets the running_mask for the thread
in fd_delete(), clears the thread_mask, thus marking the FD as orphaned,
then clears the running mask again, and completes the deletion if it was
the last one. If it was not, another thread will pass through fd_clr_running
and will complete the deletion of the FD.
The bug is easily reproducible in 2.2 under high connection rates during
soft close. When the old process stops its listener, occasionally two
threads will deadlock and the old process will then be killed by the
watchdog. It's strongly believed that similar situations do exist in 2.3
and 2.4 (e.g. if the removal attempt happens during resume_listener()
called from listener_accept()) but if so, they should be much harder to
trigger.
This should be backported to 2.2 as the issue appeared with the FD
migration. It requires previous patches "fd: make fd_clr_running() return
the remaining running mask" and "MINOR: fd: remove the unneeded running
bit from fd_insert()".
Notes for backport: in 2.2, the fd_dodelete() function requires an extra
argument "do_close" indicating whether we want to remove and close the FD
(fd_delete) or just delete it (fd_remove). While this information is not
conveyed along the chain, we know that late calls always imply do_close=1
become do_close=0 exclusively results from fd_remove() which is only used
by the config parser and the master, both of which are single-threaded,
hence are always the last ones in the running_mask. Thus it is safe to
assume that a postponed FD deletion always implies do_close=1.
Thanks to Olivier for his help in designing this optimal solution.
2021-03-24 05:51:32 -04:00
|
|
|
/* perform the close() call last as it's what unlocks the instant reuse
|
|
|
|
|
* of this FD by any other thread.
|
|
|
|
|
*/
|
2020-08-26 05:54:06 -04:00
|
|
|
close(fd);
|
2021-04-06 07:53:36 -04:00
|
|
|
_HA_ATOMIC_DEC(&ha_used_fds);
|
BUG/MEDIUM: fd: do not wait on FD removal in fd_delete()
Christopher discovered an issue mostly affecting 2.2 and to a less extent
2.3 and above, which is that it's possible to deadlock a soft-stop when
several threads are using a same listener:
thread1 thread2
unbind_listener() fd_set_running()
lock(listener) listener_accept()
fd_delete() lock(listener)
while (running_mask); -----> deadlock
unlock(listener)
This simple case disappeared from 2.3 due to the removal of some locked
operations at the end of listener_accept() on the regular path, but the
architectural problem is still here and caused by a lock inversion built
around the loop on running_mask in fd_clr_running_excl(), because there
are situations where the caller of fd_delete() may hold a lock that is
preventing other threads from dropping their bit in running_mask.
The real need here is to make sure the last user deletes the FD. We have
all we need to know the last one, it's the one calling fd_clr_running()
last, or entering fd_delete() last, both of which can be summed up as
the last one calling fd_clr_running() if fd_delete() calls fd_clr_running()
at the end. And we can prevent new threads from appearing in running_mask
by removing their bits in thread_mask.
So what this patch does is that it sets the running_mask for the thread
in fd_delete(), clears the thread_mask, thus marking the FD as orphaned,
then clears the running mask again, and completes the deletion if it was
the last one. If it was not, another thread will pass through fd_clr_running
and will complete the deletion of the FD.
The bug is easily reproducible in 2.2 under high connection rates during
soft close. When the old process stops its listener, occasionally two
threads will deadlock and the old process will then be killed by the
watchdog. It's strongly believed that similar situations do exist in 2.3
and 2.4 (e.g. if the removal attempt happens during resume_listener()
called from listener_accept()) but if so, they should be much harder to
trigger.
This should be backported to 2.2 as the issue appeared with the FD
migration. It requires previous patches "fd: make fd_clr_running() return
the remaining running mask" and "MINOR: fd: remove the unneeded running
bit from fd_insert()".
Notes for backport: in 2.2, the fd_dodelete() function requires an extra
argument "do_close" indicating whether we want to remove and close the FD
(fd_delete) or just delete it (fd_remove). While this information is not
conveyed along the chain, we know that late calls always imply do_close=1
become do_close=0 exclusively results from fd_remove() which is only used
by the config parser and the master, both of which are single-threaded,
hence are always the last ones in the running_mask. Thus it is safe to
assume that a postponed FD deletion always implies do_close=1.
Thanks to Olivier for his help in designing this optimal solution.
2021-03-24 05:51:32 -04:00
|
|
|
}
|
|
|
|
|
|
2021-03-24 20:38:54 -04:00
|
|
|
#ifndef HA_HAVE_CAS_DW
|
|
|
|
|
__decl_thread(__decl_rwlock(fd_mig_lock));
|
|
|
|
|
#endif
|
|
|
|
|
|
BUG/MEDIUM: fd: do not wait on FD removal in fd_delete()
Christopher discovered an issue mostly affecting 2.2 and to a less extent
2.3 and above, which is that it's possible to deadlock a soft-stop when
several threads are using a same listener:
thread1 thread2
unbind_listener() fd_set_running()
lock(listener) listener_accept()
fd_delete() lock(listener)
while (running_mask); -----> deadlock
unlock(listener)
This simple case disappeared from 2.3 due to the removal of some locked
operations at the end of listener_accept() on the regular path, but the
architectural problem is still here and caused by a lock inversion built
around the loop on running_mask in fd_clr_running_excl(), because there
are situations where the caller of fd_delete() may hold a lock that is
preventing other threads from dropping their bit in running_mask.
The real need here is to make sure the last user deletes the FD. We have
all we need to know the last one, it's the one calling fd_clr_running()
last, or entering fd_delete() last, both of which can be summed up as
the last one calling fd_clr_running() if fd_delete() calls fd_clr_running()
at the end. And we can prevent new threads from appearing in running_mask
by removing their bits in thread_mask.
So what this patch does is that it sets the running_mask for the thread
in fd_delete(), clears the thread_mask, thus marking the FD as orphaned,
then clears the running mask again, and completes the deletion if it was
the last one. If it was not, another thread will pass through fd_clr_running
and will complete the deletion of the FD.
The bug is easily reproducible in 2.2 under high connection rates during
soft close. When the old process stops its listener, occasionally two
threads will deadlock and the old process will then be killed by the
watchdog. It's strongly believed that similar situations do exist in 2.3
and 2.4 (e.g. if the removal attempt happens during resume_listener()
called from listener_accept()) but if so, they should be much harder to
trigger.
This should be backported to 2.2 as the issue appeared with the FD
migration. It requires previous patches "fd: make fd_clr_running() return
the remaining running mask" and "MINOR: fd: remove the unneeded running
bit from fd_insert()".
Notes for backport: in 2.2, the fd_dodelete() function requires an extra
argument "do_close" indicating whether we want to remove and close the FD
(fd_delete) or just delete it (fd_remove). While this information is not
conveyed along the chain, we know that late calls always imply do_close=1
become do_close=0 exclusively results from fd_remove() which is only used
by the config parser and the master, both of which are single-threaded,
hence are always the last ones in the running_mask. Thus it is safe to
assume that a postponed FD deletion always implies do_close=1.
Thanks to Olivier for his help in designing this optimal solution.
2021-03-24 05:51:32 -04:00
|
|
|
/* Deletes an FD from the fdsets. The file descriptor is also closed, possibly
|
|
|
|
|
* asynchronously. Only the owning thread may do this.
|
|
|
|
|
*/
|
|
|
|
|
void fd_delete(int fd)
|
|
|
|
|
{
|
|
|
|
|
/* we must postpone removal of an FD that may currently be in use
|
2021-04-24 04:25:42 -04:00
|
|
|
* by another thread. This can happen in the following two situations:
|
BUG/MEDIUM: fd: do not wait on FD removal in fd_delete()
Christopher discovered an issue mostly affecting 2.2 and to a less extent
2.3 and above, which is that it's possible to deadlock a soft-stop when
several threads are using a same listener:
thread1 thread2
unbind_listener() fd_set_running()
lock(listener) listener_accept()
fd_delete() lock(listener)
while (running_mask); -----> deadlock
unlock(listener)
This simple case disappeared from 2.3 due to the removal of some locked
operations at the end of listener_accept() on the regular path, but the
architectural problem is still here and caused by a lock inversion built
around the loop on running_mask in fd_clr_running_excl(), because there
are situations where the caller of fd_delete() may hold a lock that is
preventing other threads from dropping their bit in running_mask.
The real need here is to make sure the last user deletes the FD. We have
all we need to know the last one, it's the one calling fd_clr_running()
last, or entering fd_delete() last, both of which can be summed up as
the last one calling fd_clr_running() if fd_delete() calls fd_clr_running()
at the end. And we can prevent new threads from appearing in running_mask
by removing their bits in thread_mask.
So what this patch does is that it sets the running_mask for the thread
in fd_delete(), clears the thread_mask, thus marking the FD as orphaned,
then clears the running mask again, and completes the deletion if it was
the last one. If it was not, another thread will pass through fd_clr_running
and will complete the deletion of the FD.
The bug is easily reproducible in 2.2 under high connection rates during
soft close. When the old process stops its listener, occasionally two
threads will deadlock and the old process will then be killed by the
watchdog. It's strongly believed that similar situations do exist in 2.3
and 2.4 (e.g. if the removal attempt happens during resume_listener()
called from listener_accept()) but if so, they should be much harder to
trigger.
This should be backported to 2.2 as the issue appeared with the FD
migration. It requires previous patches "fd: make fd_clr_running() return
the remaining running mask" and "MINOR: fd: remove the unneeded running
bit from fd_insert()".
Notes for backport: in 2.2, the fd_dodelete() function requires an extra
argument "do_close" indicating whether we want to remove and close the FD
(fd_delete) or just delete it (fd_remove). While this information is not
conveyed along the chain, we know that late calls always imply do_close=1
become do_close=0 exclusively results from fd_remove() which is only used
by the config parser and the master, both of which are single-threaded,
hence are always the last ones in the running_mask. Thus it is safe to
assume that a postponed FD deletion always implies do_close=1.
Thanks to Olivier for his help in designing this optimal solution.
2021-03-24 05:51:32 -04:00
|
|
|
* - after a takeover, the owning thread closes the connection but
|
|
|
|
|
* the previous one just woke up from the poller and entered
|
|
|
|
|
* the FD handler iocb. That thread holds an entry in running_mask
|
|
|
|
|
* and requires removal protection.
|
|
|
|
|
* - multiple threads are accepting connections on a listener, and
|
|
|
|
|
* one of them (or even an separate one) decides to unbind the
|
|
|
|
|
* listener under the listener's lock while other ones still hold
|
|
|
|
|
* the running bit.
|
|
|
|
|
* In both situations the FD is marked as unused (thread_mask = 0) and
|
|
|
|
|
* will not take new bits in its running_mask so we have the guarantee
|
|
|
|
|
* that the last thread eliminating running_mask is the one allowed to
|
|
|
|
|
* safely delete the FD. Most of the time it will be the current thread.
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
HA_ATOMIC_OR(&fdtab[fd].running_mask, tid_bit);
|
2021-03-24 20:38:54 -04:00
|
|
|
#ifndef HA_HAVE_CAS_DW
|
|
|
|
|
HA_RWLOCK_WRLOCK(OTHER_LOCK, &fd_mig_lock);
|
|
|
|
|
#endif
|
BUG/MEDIUM: fd: do not wait on FD removal in fd_delete()
Christopher discovered an issue mostly affecting 2.2 and to a less extent
2.3 and above, which is that it's possible to deadlock a soft-stop when
several threads are using a same listener:
thread1 thread2
unbind_listener() fd_set_running()
lock(listener) listener_accept()
fd_delete() lock(listener)
while (running_mask); -----> deadlock
unlock(listener)
This simple case disappeared from 2.3 due to the removal of some locked
operations at the end of listener_accept() on the regular path, but the
architectural problem is still here and caused by a lock inversion built
around the loop on running_mask in fd_clr_running_excl(), because there
are situations where the caller of fd_delete() may hold a lock that is
preventing other threads from dropping their bit in running_mask.
The real need here is to make sure the last user deletes the FD. We have
all we need to know the last one, it's the one calling fd_clr_running()
last, or entering fd_delete() last, both of which can be summed up as
the last one calling fd_clr_running() if fd_delete() calls fd_clr_running()
at the end. And we can prevent new threads from appearing in running_mask
by removing their bits in thread_mask.
So what this patch does is that it sets the running_mask for the thread
in fd_delete(), clears the thread_mask, thus marking the FD as orphaned,
then clears the running mask again, and completes the deletion if it was
the last one. If it was not, another thread will pass through fd_clr_running
and will complete the deletion of the FD.
The bug is easily reproducible in 2.2 under high connection rates during
soft close. When the old process stops its listener, occasionally two
threads will deadlock and the old process will then be killed by the
watchdog. It's strongly believed that similar situations do exist in 2.3
and 2.4 (e.g. if the removal attempt happens during resume_listener()
called from listener_accept()) but if so, they should be much harder to
trigger.
This should be backported to 2.2 as the issue appeared with the FD
migration. It requires previous patches "fd: make fd_clr_running() return
the remaining running mask" and "MINOR: fd: remove the unneeded running
bit from fd_insert()".
Notes for backport: in 2.2, the fd_dodelete() function requires an extra
argument "do_close" indicating whether we want to remove and close the FD
(fd_delete) or just delete it (fd_remove). While this information is not
conveyed along the chain, we know that late calls always imply do_close=1
become do_close=0 exclusively results from fd_remove() which is only used
by the config parser and the master, both of which are single-threaded,
hence are always the last ones in the running_mask. Thus it is safe to
assume that a postponed FD deletion always implies do_close=1.
Thanks to Olivier for his help in designing this optimal solution.
2021-03-24 05:51:32 -04:00
|
|
|
HA_ATOMIC_STORE(&fdtab[fd].thread_mask, 0);
|
2021-03-24 20:38:54 -04:00
|
|
|
#ifndef HA_HAVE_CAS_DW
|
|
|
|
|
HA_RWLOCK_WRUNLOCK(OTHER_LOCK, &fd_mig_lock);
|
|
|
|
|
#endif
|
BUG/MEDIUM: fd: do not wait on FD removal in fd_delete()
Christopher discovered an issue mostly affecting 2.2 and to a less extent
2.3 and above, which is that it's possible to deadlock a soft-stop when
several threads are using a same listener:
thread1 thread2
unbind_listener() fd_set_running()
lock(listener) listener_accept()
fd_delete() lock(listener)
while (running_mask); -----> deadlock
unlock(listener)
This simple case disappeared from 2.3 due to the removal of some locked
operations at the end of listener_accept() on the regular path, but the
architectural problem is still here and caused by a lock inversion built
around the loop on running_mask in fd_clr_running_excl(), because there
are situations where the caller of fd_delete() may hold a lock that is
preventing other threads from dropping their bit in running_mask.
The real need here is to make sure the last user deletes the FD. We have
all we need to know the last one, it's the one calling fd_clr_running()
last, or entering fd_delete() last, both of which can be summed up as
the last one calling fd_clr_running() if fd_delete() calls fd_clr_running()
at the end. And we can prevent new threads from appearing in running_mask
by removing their bits in thread_mask.
So what this patch does is that it sets the running_mask for the thread
in fd_delete(), clears the thread_mask, thus marking the FD as orphaned,
then clears the running mask again, and completes the deletion if it was
the last one. If it was not, another thread will pass through fd_clr_running
and will complete the deletion of the FD.
The bug is easily reproducible in 2.2 under high connection rates during
soft close. When the old process stops its listener, occasionally two
threads will deadlock and the old process will then be killed by the
watchdog. It's strongly believed that similar situations do exist in 2.3
and 2.4 (e.g. if the removal attempt happens during resume_listener()
called from listener_accept()) but if so, they should be much harder to
trigger.
This should be backported to 2.2 as the issue appeared with the FD
migration. It requires previous patches "fd: make fd_clr_running() return
the remaining running mask" and "MINOR: fd: remove the unneeded running
bit from fd_insert()".
Notes for backport: in 2.2, the fd_dodelete() function requires an extra
argument "do_close" indicating whether we want to remove and close the FD
(fd_delete) or just delete it (fd_remove). While this information is not
conveyed along the chain, we know that late calls always imply do_close=1
become do_close=0 exclusively results from fd_remove() which is only used
by the config parser and the master, both of which are single-threaded,
hence are always the last ones in the running_mask. Thus it is safe to
assume that a postponed FD deletion always implies do_close=1.
Thanks to Olivier for his help in designing this optimal solution.
2021-03-24 05:51:32 -04:00
|
|
|
if (fd_clr_running(fd) == 0)
|
|
|
|
|
_fd_delete_orphan(fd);
|
2006-06-25 20:48:02 -04:00
|
|
|
}
|
|
|
|
|
|
2020-03-05 12:10:51 -05:00
|
|
|
/*
|
|
|
|
|
* Take over a FD belonging to another thread.
|
|
|
|
|
* unexpected_conn is the expected owner of the fd.
|
|
|
|
|
* Returns 0 on success, and -1 on failure.
|
|
|
|
|
*/
|
|
|
|
|
int fd_takeover(int fd, void *expected_owner)
|
|
|
|
|
{
|
2020-06-18 01:28:09 -04:00
|
|
|
int ret = -1;
|
2020-03-05 12:10:51 -05:00
|
|
|
|
2020-06-18 02:14:59 -04:00
|
|
|
#ifndef HA_HAVE_CAS_DW
|
2021-04-06 05:44:07 -04:00
|
|
|
if (_HA_ATOMIC_OR_FETCH(&fdtab[fd].running_mask, tid_bit) == tid_bit) {
|
2020-06-18 01:28:09 -04:00
|
|
|
HA_RWLOCK_WRLOCK(OTHER_LOCK, &fd_mig_lock);
|
|
|
|
|
if (fdtab[fd].owner == expected_owner) {
|
|
|
|
|
fdtab[fd].thread_mask = tid_bit;
|
|
|
|
|
ret = 0;
|
|
|
|
|
}
|
|
|
|
|
HA_RWLOCK_WRUNLOCK(OTHER_LOCK, &fd_mig_lock);
|
2020-03-05 12:10:51 -05:00
|
|
|
}
|
|
|
|
|
#else
|
|
|
|
|
unsigned long old_masks[2];
|
|
|
|
|
unsigned long new_masks[2];
|
|
|
|
|
|
|
|
|
|
new_masks[0] = new_masks[1] = tid_bit;
|
2020-06-18 02:05:15 -04:00
|
|
|
|
2021-04-06 05:44:07 -04:00
|
|
|
old_masks[0] = _HA_ATOMIC_OR_FETCH(&fdtab[fd].running_mask, tid_bit);
|
2020-06-18 02:05:15 -04:00
|
|
|
old_masks[1] = fdtab[fd].thread_mask;
|
|
|
|
|
|
2020-03-05 12:10:51 -05:00
|
|
|
/* protect ourself against a delete then an insert for the same fd,
|
|
|
|
|
* if it happens, then the owner will no longer be the expected
|
|
|
|
|
* connection.
|
|
|
|
|
*/
|
2020-06-18 02:14:59 -04:00
|
|
|
if (fdtab[fd].owner == expected_owner) {
|
|
|
|
|
while (old_masks[0] == tid_bit && old_masks[1]) {
|
|
|
|
|
if (_HA_ATOMIC_DWCAS(&fdtab[fd].running_mask, &old_masks, &new_masks)) {
|
|
|
|
|
ret = 0;
|
|
|
|
|
break;
|
|
|
|
|
}
|
2020-03-05 12:10:51 -05:00
|
|
|
}
|
2020-06-18 02:14:59 -04:00
|
|
|
}
|
|
|
|
|
#endif /* HW_HAVE_CAS_DW */
|
|
|
|
|
|
2020-03-05 12:10:51 -05:00
|
|
|
_HA_ATOMIC_AND(&fdtab[fd].running_mask, ~tid_bit);
|
2020-06-18 02:14:59 -04:00
|
|
|
|
2020-06-17 14:34:05 -04:00
|
|
|
/* Make sure the FD doesn't have the active bit. It is possible that
|
|
|
|
|
* the fd is polled by the thread that used to own it, the new thread
|
|
|
|
|
* is supposed to call subscribe() later, to activate polling.
|
|
|
|
|
*/
|
2020-06-18 02:14:59 -04:00
|
|
|
if (likely(ret == 0))
|
|
|
|
|
fd_stop_recv(fd);
|
|
|
|
|
return ret;
|
2020-03-05 12:10:51 -05:00
|
|
|
}
|
|
|
|
|
|
2019-09-04 07:25:41 -04:00
|
|
|
void updt_fd_polling(const int fd)
|
|
|
|
|
{
|
2020-11-26 16:25:10 -05:00
|
|
|
if (all_threads_mask == 1UL || (fdtab[fd].thread_mask & all_threads_mask) == tid_bit) {
|
2019-09-04 07:25:41 -04:00
|
|
|
if (HA_ATOMIC_BTS(&fdtab[fd].update_mask, tid))
|
|
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
fd_updt[fd_nbupdt++] = fd;
|
|
|
|
|
} else {
|
|
|
|
|
unsigned long update_mask = fdtab[fd].update_mask;
|
|
|
|
|
do {
|
|
|
|
|
if (update_mask == fdtab[fd].thread_mask)
|
|
|
|
|
return;
|
2020-09-25 06:18:53 -04:00
|
|
|
} while (!_HA_ATOMIC_CAS(&fdtab[fd].update_mask, &update_mask, fdtab[fd].thread_mask));
|
|
|
|
|
|
2019-09-04 07:25:41 -04:00
|
|
|
fd_add_to_fd_list(&update_list, fd, offsetof(struct fdtab, update));
|
2020-09-25 06:18:53 -04:00
|
|
|
|
|
|
|
|
if (fd_active(fd) &&
|
|
|
|
|
!(fdtab[fd].thread_mask & tid_bit) &&
|
|
|
|
|
(fdtab[fd].thread_mask & ~tid_bit & all_threads_mask & ~sleeping_thread_mask) == 0) {
|
|
|
|
|
/* we need to wake up one thread to handle it immediately */
|
|
|
|
|
int thr = my_ffsl(fdtab[fd].thread_mask & ~tid_bit & all_threads_mask) - 1;
|
|
|
|
|
|
|
|
|
|
_HA_ATOMIC_AND(&sleeping_thread_mask, ~(1UL << thr));
|
|
|
|
|
wake_thread(thr);
|
|
|
|
|
}
|
2019-09-04 07:25:41 -04:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2019-08-27 05:08:17 -04:00
|
|
|
/* Tries to send <npfx> parts from <prefix> followed by <nmsg> parts from <msg>
|
|
|
|
|
* optionally followed by a newline if <nl> is non-null, to file descriptor
|
|
|
|
|
* <fd>. The message is sent atomically using writev(). It may be truncated to
|
|
|
|
|
* <maxlen> bytes if <maxlen> is non-null. There is no distinction between the
|
|
|
|
|
* two lists, it's just a convenience to help the caller prepend some prefixes
|
|
|
|
|
* when necessary. It takes the fd's lock to make sure no other thread will
|
|
|
|
|
* write to the same fd in parallel. Returns the number of bytes sent, or <=0
|
|
|
|
|
* on failure. A limit to 31 total non-empty segments is enforced. The caller
|
|
|
|
|
* is responsible for taking care of making the fd non-blocking.
|
|
|
|
|
*/
|
|
|
|
|
ssize_t fd_write_frag_line(int fd, size_t maxlen, const struct ist pfx[], size_t npfx, const struct ist msg[], size_t nmsg, int nl)
|
|
|
|
|
{
|
|
|
|
|
struct iovec iovec[32];
|
|
|
|
|
size_t totlen = 0;
|
|
|
|
|
size_t sent = 0;
|
|
|
|
|
int vec = 0;
|
2020-06-11 08:25:47 -04:00
|
|
|
int attempts = 0;
|
2019-08-27 05:08:17 -04:00
|
|
|
|
|
|
|
|
if (!maxlen)
|
|
|
|
|
maxlen = ~0;
|
|
|
|
|
|
|
|
|
|
/* keep one char for a possible trailing '\n' in any case */
|
|
|
|
|
maxlen--;
|
|
|
|
|
|
|
|
|
|
/* make an iovec from the concatenation of all parts of the original
|
|
|
|
|
* message. Skip empty fields and truncate the whole message to maxlen,
|
|
|
|
|
* leaving one spare iovec for the '\n'.
|
|
|
|
|
*/
|
|
|
|
|
while (vec < (sizeof(iovec) / sizeof(iovec[0]) - 1)) {
|
|
|
|
|
if (!npfx) {
|
|
|
|
|
pfx = msg;
|
|
|
|
|
npfx = nmsg;
|
|
|
|
|
nmsg = 0;
|
|
|
|
|
if (!npfx)
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
iovec[vec].iov_base = pfx->ptr;
|
|
|
|
|
iovec[vec].iov_len = MIN(maxlen, pfx->len);
|
|
|
|
|
maxlen -= iovec[vec].iov_len;
|
|
|
|
|
totlen += iovec[vec].iov_len;
|
|
|
|
|
if (iovec[vec].iov_len)
|
|
|
|
|
vec++;
|
|
|
|
|
pfx++; npfx--;
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
if (nl) {
|
|
|
|
|
iovec[vec].iov_base = "\n";
|
|
|
|
|
iovec[vec].iov_len = 1;
|
|
|
|
|
vec++;
|
|
|
|
|
}
|
|
|
|
|
|
2020-06-11 08:25:47 -04:00
|
|
|
/* make sure we never interleave writes and we never block. This means
|
|
|
|
|
* we prefer to fail on collision than to block. But we don't want to
|
|
|
|
|
* lose too many logs so we just perform a few lock attempts then give
|
|
|
|
|
* up.
|
|
|
|
|
*/
|
|
|
|
|
|
2021-04-07 11:36:57 -04:00
|
|
|
while (HA_ATOMIC_BTS(&fdtab[fd].state, FD_EXCL_SYSCALL_BIT)) {
|
2020-06-11 08:25:47 -04:00
|
|
|
if (++attempts >= 200) {
|
|
|
|
|
/* so that the caller knows the message couldn't be delivered */
|
|
|
|
|
sent = -1;
|
|
|
|
|
errno = EAGAIN;
|
|
|
|
|
goto leave;
|
|
|
|
|
}
|
|
|
|
|
ha_thread_relax();
|
|
|
|
|
}
|
|
|
|
|
|
2021-04-06 11:57:12 -04:00
|
|
|
if (unlikely(!(fdtab[fd].state & FD_INITIALIZED))) {
|
|
|
|
|
HA_ATOMIC_OR(&fdtab[fd].state, FD_INITIALIZED);
|
2019-08-30 08:41:47 -04:00
|
|
|
if (!isatty(fd))
|
|
|
|
|
fcntl(fd, F_SETFL, O_NONBLOCK);
|
|
|
|
|
}
|
2019-08-27 05:08:17 -04:00
|
|
|
sent = writev(fd, iovec, vec);
|
2021-04-07 11:36:57 -04:00
|
|
|
HA_ATOMIC_BTR(&fdtab[fd].state, FD_EXCL_SYSCALL_BIT);
|
2019-08-27 05:08:17 -04:00
|
|
|
|
2020-06-11 08:25:47 -04:00
|
|
|
leave:
|
2019-08-27 05:08:17 -04:00
|
|
|
/* sent > 0 if the message was delivered */
|
|
|
|
|
return sent;
|
|
|
|
|
}
|
|
|
|
|
|
2019-02-25 08:26:54 -05:00
|
|
|
#if defined(USE_CLOSEFROM)
|
|
|
|
|
void my_closefrom(int start)
|
|
|
|
|
{
|
|
|
|
|
closefrom(start);
|
|
|
|
|
}
|
|
|
|
|
|
2019-05-22 13:24:06 -04:00
|
|
|
#elif defined(USE_POLL)
|
2019-02-21 16:12:47 -05:00
|
|
|
/* This is a portable implementation of closefrom(). It closes all open file
|
|
|
|
|
* descriptors starting at <start> and above. It relies on the fact that poll()
|
|
|
|
|
* will return POLLNVAL for each invalid (hence close) file descriptor passed
|
|
|
|
|
* in argument in order to skip them. It acts with batches of FDs and will
|
|
|
|
|
* typically perform one poll() call per 1024 FDs so the overhead is low in
|
|
|
|
|
* case all FDs have to be closed.
|
|
|
|
|
*/
|
|
|
|
|
void my_closefrom(int start)
|
|
|
|
|
{
|
|
|
|
|
struct pollfd poll_events[1024];
|
|
|
|
|
struct rlimit limit;
|
|
|
|
|
int nbfds, fd, ret, idx;
|
|
|
|
|
int step, next;
|
|
|
|
|
|
|
|
|
|
if (getrlimit(RLIMIT_NOFILE, &limit) == 0)
|
|
|
|
|
step = nbfds = limit.rlim_cur;
|
|
|
|
|
else
|
|
|
|
|
step = nbfds = 0;
|
|
|
|
|
|
|
|
|
|
if (nbfds <= 0) {
|
|
|
|
|
/* set safe limit */
|
|
|
|
|
nbfds = 1024;
|
|
|
|
|
step = 256;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (step > sizeof(poll_events) / sizeof(poll_events[0]))
|
|
|
|
|
step = sizeof(poll_events) / sizeof(poll_events[0]);
|
|
|
|
|
|
|
|
|
|
while (start < nbfds) {
|
|
|
|
|
next = (start / step + 1) * step;
|
|
|
|
|
|
|
|
|
|
for (fd = start; fd < next && fd < nbfds; fd++) {
|
|
|
|
|
poll_events[fd - start].fd = fd;
|
|
|
|
|
poll_events[fd - start].events = 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
do {
|
|
|
|
|
ret = poll(poll_events, fd - start, 0);
|
|
|
|
|
if (ret >= 0)
|
|
|
|
|
break;
|
|
|
|
|
} while (errno == EAGAIN || errno == EINTR || errno == ENOMEM);
|
|
|
|
|
|
2019-02-22 03:07:42 -05:00
|
|
|
if (ret)
|
|
|
|
|
ret = fd - start;
|
|
|
|
|
|
2019-02-21 16:12:47 -05:00
|
|
|
for (idx = 0; idx < ret; idx++) {
|
|
|
|
|
if (poll_events[idx].revents & POLLNVAL)
|
|
|
|
|
continue; /* already closed */
|
|
|
|
|
|
|
|
|
|
fd = poll_events[idx].fd;
|
|
|
|
|
close(fd);
|
|
|
|
|
}
|
|
|
|
|
start = next;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2019-05-22 13:24:06 -04:00
|
|
|
#else // defined(USE_POLL)
|
2019-02-21 16:12:47 -05:00
|
|
|
|
2019-02-21 16:19:17 -05:00
|
|
|
/* This is a portable implementation of closefrom(). It closes all open file
|
|
|
|
|
* descriptors starting at <start> and above. This is a naive version for use
|
|
|
|
|
* when the operating system provides no alternative.
|
|
|
|
|
*/
|
|
|
|
|
void my_closefrom(int start)
|
|
|
|
|
{
|
|
|
|
|
struct rlimit limit;
|
|
|
|
|
int nbfds;
|
|
|
|
|
|
|
|
|
|
if (getrlimit(RLIMIT_NOFILE, &limit) == 0)
|
|
|
|
|
nbfds = limit.rlim_cur;
|
|
|
|
|
else
|
|
|
|
|
nbfds = 0;
|
|
|
|
|
|
|
|
|
|
if (nbfds <= 0)
|
|
|
|
|
nbfds = 1024; /* safe limit */
|
|
|
|
|
|
|
|
|
|
while (start < nbfds)
|
|
|
|
|
close(start++);
|
|
|
|
|
}
|
2019-05-22 13:24:06 -04:00
|
|
|
#endif // defined(USE_POLL)
|
2019-02-21 16:19:17 -05:00
|
|
|
|
2007-04-08 10:39:58 -04:00
|
|
|
/* disable the specified poller */
|
|
|
|
|
void disable_poller(const char *poller_name)
|
|
|
|
|
{
|
|
|
|
|
int p;
|
2006-06-25 20:48:02 -04:00
|
|
|
|
2007-04-08 10:39:58 -04:00
|
|
|
for (p = 0; p < nbpollers; p++)
|
|
|
|
|
if (strcmp(pollers[p].name, poller_name) == 0)
|
|
|
|
|
pollers[p].pref = 0;
|
|
|
|
|
}
|
2006-06-25 20:48:02 -04:00
|
|
|
|
2018-07-26 11:55:11 -04:00
|
|
|
void poller_pipe_io_handler(int fd)
|
|
|
|
|
{
|
|
|
|
|
char buf[1024];
|
|
|
|
|
/* Flush the pipe */
|
|
|
|
|
while (read(fd, buf, sizeof(buf)) > 0);
|
|
|
|
|
fd_cant_recv(fd);
|
|
|
|
|
}
|
|
|
|
|
|
2019-05-22 08:42:12 -04:00
|
|
|
/* allocate the per-thread fd_updt thus needs to be called early after
|
|
|
|
|
* thread creation.
|
|
|
|
|
*/
|
|
|
|
|
static int alloc_pollers_per_thread()
|
|
|
|
|
{
|
|
|
|
|
fd_updt = calloc(global.maxsock, sizeof(*fd_updt));
|
|
|
|
|
return fd_updt != NULL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Initialize the pollers per thread.*/
|
MAJOR: threads/fd: Make fd stuffs thread-safe
Many changes have been made to do so. First, the fd_updt array, where all
pending FDs for polling are stored, is now a thread-local array. Then 3 locks
have been added to protect, respectively, the fdtab array, the fd_cache array
and poll information. In addition, a lock for each entry in the fdtab array has
been added to protect all accesses to a specific FD or its information.
For pollers, according to the poller, the way to manage the concurrency is
different. There is a poller loop on each thread. So the set of monitored FDs
may need to be protected. epoll and kqueue are thread-safe per-se, so there few
things to do to protect these pollers. This is not possible with select and
poll, so there is no sharing between the threads. The poller on each thread is
independant from others.
Finally, per-thread init/deinit functions are used for each pollers and for FD
part for manage thread-local ressources.
Now, you must be carefull when a FD is created during the HAProxy startup. All
update on the FD state must be made in the threads context and never before
their creation. This is mandatory because fd_updt array is thread-local and
initialized only for threads. Because there is no pollers for the main one, this
array remains uninitialized in this context. For this reason, listeners are now
enabled in run_thread_poll_loop function, just like the worker pipe.
2017-05-29 04:40:41 -04:00
|
|
|
static int init_pollers_per_thread()
|
|
|
|
|
{
|
2018-07-26 11:55:11 -04:00
|
|
|
int mypipe[2];
|
2019-05-22 08:42:12 -04:00
|
|
|
|
|
|
|
|
if (pipe(mypipe) < 0)
|
2018-07-26 11:55:11 -04:00
|
|
|
return 0;
|
2019-05-22 08:42:12 -04:00
|
|
|
|
2018-07-26 11:55:11 -04:00
|
|
|
poller_rd_pipe = mypipe[0];
|
|
|
|
|
poller_wr_pipe[tid] = mypipe[1];
|
|
|
|
|
fcntl(poller_rd_pipe, F_SETFL, O_NONBLOCK);
|
|
|
|
|
fd_insert(poller_rd_pipe, poller_pipe_io_handler, poller_pipe_io_handler,
|
|
|
|
|
tid_bit);
|
|
|
|
|
fd_want_recv(poller_rd_pipe);
|
MAJOR: threads/fd: Make fd stuffs thread-safe
Many changes have been made to do so. First, the fd_updt array, where all
pending FDs for polling are stored, is now a thread-local array. Then 3 locks
have been added to protect, respectively, the fdtab array, the fd_cache array
and poll information. In addition, a lock for each entry in the fdtab array has
been added to protect all accesses to a specific FD or its information.
For pollers, according to the poller, the way to manage the concurrency is
different. There is a poller loop on each thread. So the set of monitored FDs
may need to be protected. epoll and kqueue are thread-safe per-se, so there few
things to do to protect these pollers. This is not possible with select and
poll, so there is no sharing between the threads. The poller on each thread is
independant from others.
Finally, per-thread init/deinit functions are used for each pollers and for FD
part for manage thread-local ressources.
Now, you must be carefull when a FD is created during the HAProxy startup. All
update on the FD state must be made in the threads context and never before
their creation. This is mandatory because fd_updt array is thread-local and
initialized only for threads. Because there is no pollers for the main one, this
array remains uninitialized in this context. For this reason, listeners are now
enabled in run_thread_poll_loop function, just like the worker pipe.
2017-05-29 04:40:41 -04:00
|
|
|
return 1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Deinitialize the pollers per thread */
|
|
|
|
|
static void deinit_pollers_per_thread()
|
|
|
|
|
{
|
2018-12-15 16:34:31 -05:00
|
|
|
/* rd and wr are init at the same place, but only rd is init to -1, so
|
|
|
|
|
we rely to rd to close. */
|
|
|
|
|
if (poller_rd_pipe > -1) {
|
|
|
|
|
close(poller_rd_pipe);
|
|
|
|
|
poller_rd_pipe = -1;
|
|
|
|
|
close(poller_wr_pipe[tid]);
|
|
|
|
|
poller_wr_pipe[tid] = -1;
|
|
|
|
|
}
|
MAJOR: threads/fd: Make fd stuffs thread-safe
Many changes have been made to do so. First, the fd_updt array, where all
pending FDs for polling are stored, is now a thread-local array. Then 3 locks
have been added to protect, respectively, the fdtab array, the fd_cache array
and poll information. In addition, a lock for each entry in the fdtab array has
been added to protect all accesses to a specific FD or its information.
For pollers, according to the poller, the way to manage the concurrency is
different. There is a poller loop on each thread. So the set of monitored FDs
may need to be protected. epoll and kqueue are thread-safe per-se, so there few
things to do to protect these pollers. This is not possible with select and
poll, so there is no sharing between the threads. The poller on each thread is
independant from others.
Finally, per-thread init/deinit functions are used for each pollers and for FD
part for manage thread-local ressources.
Now, you must be carefull when a FD is created during the HAProxy startup. All
update on the FD state must be made in the threads context and never before
their creation. This is mandatory because fd_updt array is thread-local and
initialized only for threads. Because there is no pollers for the main one, this
array remains uninitialized in this context. For this reason, listeners are now
enabled in run_thread_poll_loop function, just like the worker pipe.
2017-05-29 04:40:41 -04:00
|
|
|
}
|
|
|
|
|
|
2019-05-22 08:42:12 -04:00
|
|
|
/* Release the pollers per thread, to be called late */
|
|
|
|
|
static void free_pollers_per_thread()
|
|
|
|
|
{
|
2021-02-20 04:46:51 -05:00
|
|
|
ha_free(&fd_updt);
|
2019-05-22 08:42:12 -04:00
|
|
|
}
|
|
|
|
|
|
2006-06-25 20:48:02 -04:00
|
|
|
/*
|
2007-04-08 10:39:58 -04:00
|
|
|
* Initialize the pollers till the best one is found.
|
|
|
|
|
* If none works, returns 0, otherwise 1.
|
2006-06-25 20:48:02 -04:00
|
|
|
*/
|
2007-04-08 10:39:58 -04:00
|
|
|
int init_pollers()
|
2006-06-25 20:48:02 -04:00
|
|
|
{
|
2007-04-08 10:39:58 -04:00
|
|
|
int p;
|
|
|
|
|
struct poller *bp;
|
2006-06-25 20:48:02 -04:00
|
|
|
|
2020-10-13 09:45:07 -04:00
|
|
|
if ((fdtab = calloc(global.maxsock, sizeof(*fdtab))) == NULL) {
|
|
|
|
|
ha_alert("Not enough memory to allocate %d entries for fdtab!\n", global.maxsock);
|
2017-08-31 11:52:09 -04:00
|
|
|
goto fail_tab;
|
2020-10-13 09:45:07 -04:00
|
|
|
}
|
2017-08-31 11:52:09 -04:00
|
|
|
|
2020-10-13 09:45:07 -04:00
|
|
|
if ((polled_mask = calloc(global.maxsock, sizeof(*polled_mask))) == NULL) {
|
|
|
|
|
ha_alert("Not enough memory to allocate %d entries for polled_mask!\n", global.maxsock);
|
2018-04-26 08:23:07 -04:00
|
|
|
goto fail_polledmask;
|
2020-10-13 09:45:07 -04:00
|
|
|
}
|
2019-01-17 03:21:39 -05:00
|
|
|
|
2020-10-13 09:45:07 -04:00
|
|
|
if ((fdinfo = calloc(global.maxsock, sizeof(*fdinfo))) == NULL) {
|
|
|
|
|
ha_alert("Not enough memory to allocate %d entries for fdinfo!\n", global.maxsock);
|
2017-08-31 11:52:09 -04:00
|
|
|
goto fail_info;
|
2020-10-13 09:45:07 -04:00
|
|
|
}
|
2017-08-31 11:52:09 -04:00
|
|
|
|
2018-04-25 10:58:25 -04:00
|
|
|
update_list.first = update_list.last = -1;
|
2006-06-25 20:48:02 -04:00
|
|
|
|
2018-01-24 12:17:56 -05:00
|
|
|
for (p = 0; p < global.maxsock; p++) {
|
|
|
|
|
/* Mark the fd as out of the fd cache */
|
2018-04-25 10:58:25 -04:00
|
|
|
fdtab[p].update.next = -3;
|
2018-01-24 12:17:56 -05:00
|
|
|
}
|
MAJOR: threads/fd: Make fd stuffs thread-safe
Many changes have been made to do so. First, the fd_updt array, where all
pending FDs for polling are stored, is now a thread-local array. Then 3 locks
have been added to protect, respectively, the fdtab array, the fd_cache array
and poll information. In addition, a lock for each entry in the fdtab array has
been added to protect all accesses to a specific FD or its information.
For pollers, according to the poller, the way to manage the concurrency is
different. There is a poller loop on each thread. So the set of monitored FDs
may need to be protected. epoll and kqueue are thread-safe per-se, so there few
things to do to protect these pollers. This is not possible with select and
poll, so there is no sharing between the threads. The poller on each thread is
independant from others.
Finally, per-thread init/deinit functions are used for each pollers and for FD
part for manage thread-local ressources.
Now, you must be carefull when a FD is created during the HAProxy startup. All
update on the FD state must be made in the threads context and never before
their creation. This is mandatory because fd_updt array is thread-local and
initialized only for threads. Because there is no pollers for the main one, this
array remains uninitialized in this context. For this reason, listeners are now
enabled in run_thread_poll_loop function, just like the worker pipe.
2017-05-29 04:40:41 -04:00
|
|
|
|
2007-04-08 10:39:58 -04:00
|
|
|
do {
|
|
|
|
|
bp = NULL;
|
|
|
|
|
for (p = 0; p < nbpollers; p++)
|
|
|
|
|
if (!bp || (pollers[p].pref > bp->pref))
|
|
|
|
|
bp = &pollers[p];
|
2006-06-25 20:48:02 -04:00
|
|
|
|
2007-04-08 10:39:58 -04:00
|
|
|
if (!bp || bp->pref == 0)
|
2006-06-25 20:48:02 -04:00
|
|
|
break;
|
|
|
|
|
|
2007-04-08 10:39:58 -04:00
|
|
|
if (bp->init(bp)) {
|
|
|
|
|
memcpy(&cur_poller, bp, sizeof(*bp));
|
|
|
|
|
return 1;
|
2006-06-25 20:48:02 -04:00
|
|
|
}
|
2007-04-08 10:39:58 -04:00
|
|
|
} while (!bp || bp->pref == 0);
|
2012-11-11 09:02:54 -05:00
|
|
|
|
2017-08-31 11:52:09 -04:00
|
|
|
free(fdinfo);
|
|
|
|
|
fail_info:
|
2018-04-26 08:23:07 -04:00
|
|
|
free(polled_mask);
|
|
|
|
|
fail_polledmask:
|
2019-01-17 03:21:39 -05:00
|
|
|
free(fdtab);
|
|
|
|
|
fail_tab:
|
2012-11-11 09:02:54 -05:00
|
|
|
return 0;
|
2006-06-25 20:48:02 -04:00
|
|
|
}
|
|
|
|
|
|
[MEDIUM] Fix memory freeing at exit
New functions implemented:
- deinit_pollers: called at the end of deinit())
- prune_acl: called via list_for_each_entry_safe
Add missing pool_destroy2 calls:
- p->hdr_idx_pool
- pool2_tree64
Implement all task stopping:
- health-check: needs new "struct task" in the struct server
- queue processing: queue_mgt
- appsess_refresh: appsession_refresh
before (idle system):
==6079== LEAK SUMMARY:
==6079== definitely lost: 1,112 bytes in 75 blocks.
==6079== indirectly lost: 53,356 bytes in 2,090 blocks.
==6079== possibly lost: 52 bytes in 1 blocks.
==6079== still reachable: 150,996 bytes in 504 blocks.
==6079== suppressed: 0 bytes in 0 blocks.
after (idle system):
==6945== LEAK SUMMARY:
==6945== definitely lost: 7,644 bytes in 137 blocks.
==6945== indirectly lost: 9,913 bytes in 587 blocks.
==6945== possibly lost: 0 bytes in 0 blocks.
==6945== still reachable: 0 bytes in 0 blocks.
==6945== suppressed: 0 bytes in 0 blocks.
before (running system for ~2m):
==9343== LEAK SUMMARY:
==9343== definitely lost: 1,112 bytes in 75 blocks.
==9343== indirectly lost: 54,199 bytes in 2,122 blocks.
==9343== possibly lost: 52 bytes in 1 blocks.
==9343== still reachable: 151,128 bytes in 509 blocks.
==9343== suppressed: 0 bytes in 0 blocks.
after (running system for ~2m):
==11616== LEAK SUMMARY:
==11616== definitely lost: 7,644 bytes in 137 blocks.
==11616== indirectly lost: 9,981 bytes in 591 blocks.
==11616== possibly lost: 0 bytes in 0 blocks.
==11616== still reachable: 4 bytes in 1 blocks.
==11616== suppressed: 0 bytes in 0 blocks.
Still not perfect but significant improvement.
2008-05-29 17:53:44 -04:00
|
|
|
/*
|
|
|
|
|
* Deinitialize the pollers.
|
|
|
|
|
*/
|
|
|
|
|
void deinit_pollers() {
|
|
|
|
|
|
|
|
|
|
struct poller *bp;
|
|
|
|
|
int p;
|
|
|
|
|
|
|
|
|
|
for (p = 0; p < nbpollers; p++) {
|
|
|
|
|
bp = &pollers[p];
|
|
|
|
|
|
|
|
|
|
if (bp && bp->pref)
|
|
|
|
|
bp->term(bp);
|
|
|
|
|
}
|
MAJOR: threads/fd: Make fd stuffs thread-safe
Many changes have been made to do so. First, the fd_updt array, where all
pending FDs for polling are stored, is now a thread-local array. Then 3 locks
have been added to protect, respectively, the fdtab array, the fd_cache array
and poll information. In addition, a lock for each entry in the fdtab array has
been added to protect all accesses to a specific FD or its information.
For pollers, according to the poller, the way to manage the concurrency is
different. There is a poller loop on each thread. So the set of monitored FDs
may need to be protected. epoll and kqueue are thread-safe per-se, so there few
things to do to protect these pollers. This is not possible with select and
poll, so there is no sharing between the threads. The poller on each thread is
independant from others.
Finally, per-thread init/deinit functions are used for each pollers and for FD
part for manage thread-local ressources.
Now, you must be carefull when a FD is created during the HAProxy startup. All
update on the FD state must be made in the threads context and never before
their creation. This is mandatory because fd_updt array is thread-local and
initialized only for threads. Because there is no pollers for the main one, this
array remains uninitialized in this context. For this reason, listeners are now
enabled in run_thread_poll_loop function, just like the worker pipe.
2017-05-29 04:40:41 -04:00
|
|
|
|
2021-02-20 04:46:51 -05:00
|
|
|
ha_free(&fdinfo);
|
|
|
|
|
ha_free(&fdtab);
|
|
|
|
|
ha_free(&polled_mask);
|
[MEDIUM] Fix memory freeing at exit
New functions implemented:
- deinit_pollers: called at the end of deinit())
- prune_acl: called via list_for_each_entry_safe
Add missing pool_destroy2 calls:
- p->hdr_idx_pool
- pool2_tree64
Implement all task stopping:
- health-check: needs new "struct task" in the struct server
- queue processing: queue_mgt
- appsess_refresh: appsession_refresh
before (idle system):
==6079== LEAK SUMMARY:
==6079== definitely lost: 1,112 bytes in 75 blocks.
==6079== indirectly lost: 53,356 bytes in 2,090 blocks.
==6079== possibly lost: 52 bytes in 1 blocks.
==6079== still reachable: 150,996 bytes in 504 blocks.
==6079== suppressed: 0 bytes in 0 blocks.
after (idle system):
==6945== LEAK SUMMARY:
==6945== definitely lost: 7,644 bytes in 137 blocks.
==6945== indirectly lost: 9,913 bytes in 587 blocks.
==6945== possibly lost: 0 bytes in 0 blocks.
==6945== still reachable: 0 bytes in 0 blocks.
==6945== suppressed: 0 bytes in 0 blocks.
before (running system for ~2m):
==9343== LEAK SUMMARY:
==9343== definitely lost: 1,112 bytes in 75 blocks.
==9343== indirectly lost: 54,199 bytes in 2,122 blocks.
==9343== possibly lost: 52 bytes in 1 blocks.
==9343== still reachable: 151,128 bytes in 509 blocks.
==9343== suppressed: 0 bytes in 0 blocks.
after (running system for ~2m):
==11616== LEAK SUMMARY:
==11616== definitely lost: 7,644 bytes in 137 blocks.
==11616== indirectly lost: 9,981 bytes in 591 blocks.
==11616== possibly lost: 0 bytes in 0 blocks.
==11616== still reachable: 4 bytes in 1 blocks.
==11616== suppressed: 0 bytes in 0 blocks.
Still not perfect but significant improvement.
2008-05-29 17:53:44 -04:00
|
|
|
}
|
|
|
|
|
|
2007-04-09 13:29:56 -04:00
|
|
|
/*
|
|
|
|
|
* Lists the known pollers on <out>.
|
|
|
|
|
* Should be performed only before initialization.
|
|
|
|
|
*/
|
|
|
|
|
int list_pollers(FILE *out)
|
|
|
|
|
{
|
|
|
|
|
int p;
|
|
|
|
|
int last, next;
|
|
|
|
|
int usable;
|
|
|
|
|
struct poller *bp;
|
|
|
|
|
|
|
|
|
|
fprintf(out, "Available polling systems :\n");
|
|
|
|
|
|
|
|
|
|
usable = 0;
|
|
|
|
|
bp = NULL;
|
|
|
|
|
last = next = -1;
|
|
|
|
|
while (1) {
|
|
|
|
|
for (p = 0; p < nbpollers; p++) {
|
|
|
|
|
if ((next < 0 || pollers[p].pref > next)
|
2010-11-19 04:20:36 -05:00
|
|
|
&& (last < 0 || pollers[p].pref < last)) {
|
2007-04-09 13:29:56 -04:00
|
|
|
next = pollers[p].pref;
|
2010-11-19 04:20:36 -05:00
|
|
|
if (!bp || (pollers[p].pref > bp->pref))
|
|
|
|
|
bp = &pollers[p];
|
|
|
|
|
}
|
2007-04-09 13:29:56 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (next == -1)
|
|
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
for (p = 0; p < nbpollers; p++) {
|
|
|
|
|
if (pollers[p].pref == next) {
|
|
|
|
|
fprintf(out, " %10s : ", pollers[p].name);
|
|
|
|
|
if (pollers[p].pref == 0)
|
|
|
|
|
fprintf(out, "disabled, ");
|
|
|
|
|
else
|
|
|
|
|
fprintf(out, "pref=%3d, ", pollers[p].pref);
|
|
|
|
|
if (pollers[p].test(&pollers[p])) {
|
|
|
|
|
fprintf(out, " test result OK");
|
|
|
|
|
if (next > 0)
|
|
|
|
|
usable++;
|
2010-11-19 04:20:36 -05:00
|
|
|
} else {
|
2007-04-09 13:29:56 -04:00
|
|
|
fprintf(out, " test result FAILED");
|
2010-11-19 04:20:36 -05:00
|
|
|
if (bp == &pollers[p])
|
|
|
|
|
bp = NULL;
|
|
|
|
|
}
|
2007-04-09 13:29:56 -04:00
|
|
|
fprintf(out, "\n");
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
last = next;
|
|
|
|
|
next = -1;
|
|
|
|
|
};
|
|
|
|
|
fprintf(out, "Total: %d (%d usable), will use %s.\n", nbpollers, usable, bp ? bp->name : "none");
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Some pollers may lose their connection after a fork(). It may be necessary
|
|
|
|
|
* to create initialize part of them again. Returns 0 in case of failure,
|
|
|
|
|
* otherwise 1. The fork() function may be NULL if unused. In case of error,
|
|
|
|
|
* the the current poller is destroyed and the caller is responsible for trying
|
|
|
|
|
* another one by calling init_pollers() again.
|
|
|
|
|
*/
|
|
|
|
|
int fork_poller()
|
|
|
|
|
{
|
2014-05-20 08:28:24 -04:00
|
|
|
int fd;
|
2018-01-29 08:58:02 -05:00
|
|
|
for (fd = 0; fd < global.maxsock; fd++) {
|
2014-05-20 08:28:24 -04:00
|
|
|
if (fdtab[fd].owner) {
|
2021-04-06 11:53:33 -04:00
|
|
|
HA_ATOMIC_OR(&fdtab[fd].state, FD_CLONED);
|
2014-05-20 08:28:24 -04:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2007-04-09 13:29:56 -04:00
|
|
|
if (cur_poller.fork) {
|
|
|
|
|
if (cur_poller.fork(&cur_poller))
|
|
|
|
|
return 1;
|
|
|
|
|
cur_poller.term(&cur_poller);
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
|
|
|
|
|
2020-06-18 02:58:47 -04:00
|
|
|
/* config parser for global "tune.fd.edge-triggered", accepts "on" or "off" */
|
|
|
|
|
static int cfg_parse_tune_fd_edge_triggered(char **args, int section_type, struct proxy *curpx,
|
2021-03-09 03:53:46 -05:00
|
|
|
const struct proxy *defpx, const char *file, int line,
|
2020-06-18 02:58:47 -04:00
|
|
|
char **err)
|
|
|
|
|
{
|
|
|
|
|
if (too_many_args(1, args, err, NULL))
|
|
|
|
|
return -1;
|
|
|
|
|
|
|
|
|
|
if (strcmp(args[1], "on") == 0)
|
|
|
|
|
global.tune.options |= GTUNE_FD_ET;
|
|
|
|
|
else if (strcmp(args[1], "off") == 0)
|
|
|
|
|
global.tune.options &= ~GTUNE_FD_ET;
|
|
|
|
|
else {
|
|
|
|
|
memprintf(err, "'%s' expects either 'on' or 'off' but got '%s'.", args[0], args[1]);
|
|
|
|
|
return -1;
|
|
|
|
|
}
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* config keyword parsers */
|
|
|
|
|
static struct cfg_kw_list cfg_kws = {ILH, {
|
2021-05-08 05:06:32 -04:00
|
|
|
{ CFG_GLOBAL, "tune.fd.edge-triggered", cfg_parse_tune_fd_edge_triggered, KWF_EXPERIMENTAL },
|
2020-06-18 02:58:47 -04:00
|
|
|
{ 0, NULL, NULL }
|
|
|
|
|
}};
|
|
|
|
|
|
|
|
|
|
INITCALL1(STG_REGISTER, cfg_register_keywords, &cfg_kws);
|
|
|
|
|
|
2019-05-22 08:42:12 -04:00
|
|
|
REGISTER_PER_THREAD_ALLOC(alloc_pollers_per_thread);
|
2018-11-26 05:21:50 -05:00
|
|
|
REGISTER_PER_THREAD_INIT(init_pollers_per_thread);
|
|
|
|
|
REGISTER_PER_THREAD_DEINIT(deinit_pollers_per_thread);
|
2019-05-22 08:42:12 -04:00
|
|
|
REGISTER_PER_THREAD_FREE(free_pollers_per_thread);
|
2018-11-26 05:21:50 -05:00
|
|
|
|
2006-06-25 20:48:02 -04:00
|
|
|
/*
|
|
|
|
|
* Local variables:
|
|
|
|
|
* c-indent-level: 8
|
|
|
|
|
* c-basic-offset: 8
|
|
|
|
|
* End:
|
|
|
|
|
*/
|
