-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathlibforks.h
372 lines (330 loc) · 13.2 KB
/
libforks.h
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
// ⚠️ *this library is experimental, breaking changes can happen*
//
// libforks: A solution to use fork(2) in multithreaded programs
//
// It is well known in the UNIX world that the `fork(2)` system
// call is dangerous in a multithreaded environment and should be
// used with great care, especially if `execve(2)` is not called
// immediately after: Since only the main thread is duplicated,
// other threads do not exist and some mutexes may be locked
// forever. Unfortunately, there is no way to unlock them and the
// `pthread_atfork()` function isn’t any useful in this scenario.
//
// One solution to this issue is to use a _fork server_. The big
// picture is to call `fork(2)` early at the beginning of the
// program, before the creation of other threads in order to create
// the fork server process. The fork server process is
// single-threaded and communicates with the main program through
// UNIX sockets. When the main program wants to spawn another
// process, it sends a message to the fork server and the fork server
// calls `fork(2)` on behalf of the main program. This library also
// allows the parent process to be notified when a child exits, to
// setup UNIX sockets to communicate with the child and to transfer
// file descriptors between arbitrary processes.
//
// Of course, this library is not a drop-in replacement for `fork(2)`.
// It is similar but behaves differently.
//
// Fork servers are used in the real world by a few programs including
// CPython and the Erlang Run-Time System, but they have their own
// specific implementation. This library is basically the same thing
// bundled to be reusable in other programs.
//
// This library is written in C99 (hey, it’s been 20 years!) and
// will not compile in C89.
// # Examples
//
// Please take a look at the `examples/` directory.
// # Installation
//
// You can fetch the sources from GitHub or sourcehut:
//
// - https://github.com/motet-a/libforks
// - https://git.sr.ht/~moteta/libforks
//
// Since this small library consists of two source files, `libforks.c`
// and `libforks.h`, you can compile your code with it à la SQLite:
//
// ```
// cc -Ilibforks/ myprogram.c libforks/libforks.c
// ```
#ifndef LIBFORKS_H_ // no doc
#define LIBFORKS_H_ // no doc
#ifdef __cplusplus // no doc
extern "C" { // no doc
#endif // no doc
#include <sys/types.h> // for `pid_t` // no doc
#include <stdbool.h> // no doc
#include <unistd.h> // no doc
// # Data types
typedef struct { void *private; } libforks_ServerConn;
// Represents a connection to a fork server. Must be initialized
// by `libforks_start` before being used in other functions.
// -----
typedef struct {
pid_t pid; // Child process pid
int wait_status; // Status retured by `waitpid(2)`
} libforks_ExitEvent;
// Event emitted on the dedicated file descriptor when a child
// process exits. See `libforks_fork` for further details.
// -----
typedef enum {
libforks_OK = 0, // No error
libforks_READ_ERROR = -1,
libforks_WRITE_ERROR = -2,
libforks_SOCKET_CREATION_ERROR = -3,
libforks_MALLOC_ERROR = -4,
libforks_FORK_ERROR = -5,
libforks_WAIT_ERROR = -6,
libforks_TOO_MANY_CLIENTS_ERROR = -7,
} libforks_Result;
// Error codes used by this library. In the future, more errors
// can be added and values of existing errors may change.
// `libforks_OK` means “no error”.
// -----
// # Basic functions
// -----
__attribute__((warn_unused_result)) // no doc
libforks_Result libforks_start(libforks_ServerConn *conn_ptr);
// Starts a new fork server.
//
// This function initializes the `ServerConn` struct pointed to by
// `conn_ptr`. Most of the following functions need an initialized
// `ServerConn`.
//
// Child processes will be forked from this point so it’s a bit like
// if a copy of the calling process will be saved and frozen here
// and revived each time that someone calls `libforks_fork`.
//
// Only one thread should exist at the time when `libforks_start` is
// called. Threads should be created after the call to `libforks_start`.
//
// One process can start many fork servers and one fork server
// can be shared by many different processes, a process can call
// this function many times in order to start many different
// fork servers.
//
// Errors:
//
// - `libforks_SOCKET_CREATION_ERROR`: socketpair(2) failed
// - `libforks_FORK_ERROR`: fork(2) failed
// - `libforks_MALLOC_ERROR`: malloc(3) failed
//
// Unless set to zero, `errno` contains a lower-level description of
// the error.
// -----
__attribute__((warn_unused_result)) // no doc
libforks_Result libforks_fork(
libforks_ServerConn conn,
pid_t *pid_ptr, // out
int *socket_fd_ptr, // out
int *exit_fd_ptr, // out
void (*entrypoint)(libforks_ServerConn conn, int socket_fd)
);
// Forks the server process.
//
// `conn` must be previously initialized by `libforks_start`.
//
// If `*pid_ptr` is not NULL, the pid of the new process will be
// written to `*pid_ptr`.
//
// If `*exit_fd_ptr` is not NULL, a readable “exit file descriptor”
// will be written to `*exit_fd_ptr`. When the child process will
// exit, a `libforks_ExitEvent` struct will be readable on this file
// descriptor. Functions like `poll(2)` can be used on this file
// descriptor. The caller should close it after use.
//
// If `*socket_fd_ptr` is not NULL, a bidirectional UNIX socket pair
// is allocated and one end is written at this address. The other end
// of the pair is sent to the child process as the second parameter
// of the `entrypoint` function.
//
// The `entrypoint` parameter will be called from the new child process.
// The `conn` parameter is a connection to the server that can be used
// to communicate to the fork server just like the parent process. The
// `socket_fd` parameter is `-1` unless a socket pair has been allocated
// with `socket_fd_ptr`. The child process will exit if this function
// returns.
//
// Consider destroying the `ServerConn` object of the child process with
// `libforks_free_conn` if the child does not use it.
//
// The `entrypoint` function pointer must be available when `libforks_start`
// was called so if you want to load it in the caller process with something
// like `dlopen`, do it before `libforks_start`. Or do it after the fork
// in the child process.
//
// Of course, this does not behave exactly like a plain old call
// to fork(2):
// - The parent process of the new child process is the fork server
// and not the caller.
// - The new child process will not be a copy of the caller at
// the time when `libforks_fork` is called, but when `libforks_start`
// was called. In other words, `libforks_start` saves the state of
// the process and `libforks_fork` restores it in a new process.
//
// You have to use `shutdown(2)` before `close(2)` on the socket if
// you want the child process to detect that the socket is closed.
//
// This function is thread-safe, it is safe to use it concurrently
// with the same `libfork_ServerConn` shared between multiple threads.
//
// Errors:
//
// - `libforks_WRITE_ERROR`: `write(2)` failed to send a message to the server
// - `libforks_READ_ERROR`: `read(2)` failed to receive a message from the server
// - `libforks_READ_ERROR`: `read(2)` failed to receive a message from the server
// - `libforks_TOO_MANY_CLIENTS_ERROR`: the maximum number of processes connected
// to the server has been reached
// - `libforks_SOCKET_CREATION_ERROR`: failed to create a socket pair
// - `libforks_FORK_ERROR`: the `fork(2)` system call failed
//
// Unless set to zero, `errno` contains a lower-level description of
// the error.
// -----
libforks_Result libforks_stop(libforks_ServerConn conn);
// Sends SIGTERM to every child process except the caller, wait
// until they exit and stops the fork server.
//
// This function expects that children handle SIGTERM properly and
// does not return until all of them have actually exited. Use
// `libforks_kill_all` to send a different signal that SIGTERM.
//
// This function invalidates the given ServerConn. It must be called
// from the process that started the fork server, otherwise it
// will deadlock.
//
// Errors:
//
// - `libforks_WRITE_ERROR`: `write(2)` failed to send a message to the server
// - `libforks_READ_ERROR`: `read(2)` failed to receive a message from the server
//
// Unless set to zero, `errno` contains a lower-level description of
// the error.
// -----
__attribute__((warn_unused_result)) // no doc
const char *libforks_result_string(libforks_Result result);
// Returns the name of the result code. For example,
// `libforks_result_string(libforks_WRITE_ERROR)` will return a
// pointer to the string `"WRITE_ERROR"`.
// -----
// # Advanced functions
libforks_Result libforks_free_conn(libforks_ServerConn conn);
// Releases resources used by the `ServerConn` struct.
//
// This function should be used in child processes before
// calling `execve` in order to close some internal file
// descriptors.
//
// This function does not send any message to the fork server
// but the server will notice that the connection has been
// closed. Exit file descriptors will continue to work
// (i.e. the parent will be notified when this process will
// exit in anyway).
//
// This function never fails and always return `libforks_OK`.
// -----
__attribute__((warn_unused_result)) // no doc
libforks_Result libforks_kill_all(libforks_ServerConn conn, int signal);
// Sends the given signal to any running children (except the caller).
//
// Errors:
//
// - `libforks_WRITE_ERROR`: `write(2)` failed to send a message to the server
// - `libforks_READ_ERROR`: `read(2)` failed to receive a message from the server
//
// Unless set to zero, `errno` contains a lower-level description of
// the error.
// -----
__attribute__((warn_unused_result)) // no doc
libforks_Result libforks_stop_server_only(libforks_ServerConn conn);
// Stops the fork server. Does not stop running children!
//
// This function can be used to daemonize child processes.
//
// This function invalidates the given ServerConn. It must be called
// from the process that started the fork server.
//
// Errors:
//
// - `libforks_WRITE_ERROR`: `write(2)` failed to send a message to the server
// - `libforks_READ_ERROR`: `read(2)` failed to receive a message from the server
//
// Unless set to zero, `errno` contains a lower-level description of
// the error.
// -----
pid_t libforks_get_server_pid(libforks_ServerConn conn);
// Returns the process identifier of the fork server.
// -----
__attribute__((warn_unused_result)) // no doc
libforks_Result libforks_eval(
libforks_ServerConn conn_p,
void (*function)(void)
);
// Executes arbitrary code on the server.
//
// This is powerful but dangerous, use this only if you know what you
// are doing.
//
// Errors:
//
// - `libforks_WRITE_ERROR`: `write(2)` failed to send a message to the server
// - `libforks_READ_ERROR`: `read(2)` failed to receive a message from the server
//
// Unless set to zero, `errno` contains a lower-level description of
// the error.
// -----
__attribute__((warn_unused_result)) // no doc
int libforks_read_socket_fds(
int socket_fd,
void *data, size_t length,
int *fds, size_t max_fd_count);
__attribute__((warn_unused_result)) // no doc
int libforks_write_socket_fds(
int socket_fd,
void *data, size_t length,
const int *fds, size_t fd_count);
// Low-level utility functions that can be used to transfer PIDs between
// arbitrary processes. These are a bit unrelated to the previous
// functions. They are made available because they are used internally
// and can be useful for advanced users.
//
// `socket_fd` must be a UNIX socket file descriptor. These functions do
// not work if `socket_fd` is a pipe or a regular file.
//
// `fds` is an array of file descriptors to send or to receive.
// `fd_count` is the number of file descriptors to send.
//
// `max_fd_count` is the maximum number of file descriptors to receive.
// Should match the size of the array at `fds`. The call succeed even if
// `max_fd_count` is greater than the number of file descriptors available
// on the socket. The recommended way to know how many file descriptors
// have been transfered is to fill `fds` with -1 and to check after the call
// how many valid file descriptors have been written to `fds`.
//
// On success, these functions return 0. On error, they return -1
// and set errno. Unlike `read(2)` and `write(2)` they fail with
// EMSGSIZE if the number of transfered bytes is lower than `length`.
#ifdef __cplusplus // no doc
} // no doc
#endif // no doc
#endif // LIBFORKS_H_ // no doc
// -----
// # License
//
// ```
// Copyright Ericsson AB 1996-2018. All Rights Reserved.
// Copyright 2019-2020 Antoine Motet
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this library except in compliance with the License.
// You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
// ```