(maint) Avoid deadlock of Facter::Core::Execution.execute#2114
(maint) Avoid deadlock of Facter::Core::Execution.execute#2114mihaibuzgau merged 1 commit intopuppetlabs:mainfrom
Conversation
oanatmaria
force-pushed
the
long_stderr_during_execution
branch
4 times, most recently
from
a9df684 to
6baf069
Compare
| test_name "Facter::Core::Execution doesn't kill process with long stderr message" do | ||
| tag 'risk:high' | ||
|
|
||
| file_content = <<-EOM |
There was a problem hiding this comment.
You can make use of ruby here, to generate the needed text, eg:
length = 1000
file_content = <<-EOM
#!/bin/sh
long_output=#{"Lorem ipsum dolor sit amet" * length }
echo 'newfact=value_of_fact'
1>&2 echo $long_output
exit 1
EOMAnd play with the length to achieve the expected output.
Also i think would be useful to add some description to this scenario and what is this test doing
| stdout_messages = +'' | ||
| stderr_messages = +'' |
There was a problem hiding this comment.
why not use a simple initialize?
stdout_messages = ''
stderr_messages = ''There was a problem hiding this comment.
they will be treated as frozen strings and this will generate an error later when we try to append the output of the command to these strings
There was a problem hiding this comment.
I've started using String.new to make it clearer that I'm creating a string that isn't frozen
There was a problem hiding this comment.
Unfortunately i get the following error when i try to use String.new : lib/facter/custom_facts/core/execution/base.rb:104:33: C: Performance/UnfreezeString: Use unary plus to get an unfrozen string literal.
|
CLA signed by all contributors. |
oanatmaria
force-pushed
the
long_stderr_during_execution
branch
5 times, most recently
from
5df2c97 to
10b7529
Compare
|
Jenkins please test this on all |
| output << stdout.read | ||
| err << stderr.read | ||
| stdout_messages << out_reader.value | ||
| stderr_messages << err_reader.value |
There was a problem hiding this comment.
If stdout.read (on line 105) raises then ruby will raise that exception when out_reader.value is called. So it's possible for line 109 to raise something like Errno::EIO, in which case we never call err_reader.value. As a result we may never join that thread and fully read stderr. I don't know if that's going to be an actual problem though...
There was a problem hiding this comment.
If out_reader.value raises an error, the error message will be logged (if execution is called with on_fail => :raise line 122). If the stdout will raise an error, the resolvers can't get the information needed for facts to be solved, the stderr message can only be used for debug purposes in this case.
| @log.debug("Timeout encounter after #{time_limit}s, killing process with pid: #{pid}") | ||
| Process.kill('KILL', pid) | ||
| out_reader.kill | ||
| err_reader.kill |
There was a problem hiding this comment.
Can Process.kill raise such as if the child process no longer exists? If so then kill is never called on the readers.
There was a problem hiding this comment.
i wrapped the threads kill in an ensure block
oanatmaria
force-pushed
the
long_stderr_during_execution
branch
13 times, most recently
from
57f349e to
68b5d16
Compare
oanatmaria
force-pushed
the
long_stderr_during_execution
branch
from
68b5d16 to
1a93169
Compare
6 participants
Description of the problem: If stdout/stderr are N bytes, and the child process writes N+1 bytes to stderr, but nothing to stdout, then facter will block waiting to read from stdout, hit the timeout, and never read from stderr.
Description of the fix Facter will create two reader threads to avoid the deadlock