YARN-9667. Container-executor.c duplicates messages to stdout. Contributed by Peter Bacsko

This commit is contained in:
Jim Brennan 2020-10-08 21:09:30 +00:00
parent 4ef9cf9d71
commit e1c6804ace
6 changed files with 51 additions and 88 deletions

View File

@ -138,7 +138,7 @@ int check_executor_permissions(char *executable_file) {
#endif #endif
if (resolved_path == NULL) { if (resolved_path == NULL) {
fprintf(ERRORFILE, fprintf(ERRORFILE,
"Error resolving the canonical name for the executable : %s!", "Error resolving the canonical name for the executable : %s!\n",
strerror(errno)); strerror(errno));
return -1; return -1;
} }
@ -264,20 +264,17 @@ static int write_pid_to_file_as_nm(const char* pid_file, pid_t pid) {
gid_t group = getegid(); gid_t group = getegid();
if (change_effective_user(nm_uid, nm_gid) != 0) { if (change_effective_user(nm_uid, nm_gid) != 0) {
fprintf(ERRORFILE, "Could not change to effective users %d, %d\n", nm_uid, nm_gid); fprintf(ERRORFILE, "Could not change to effective users %d, %d\n", nm_uid, nm_gid);
fflush(ERRORFILE);
rc = -1; rc = -1;
goto cleanup; goto cleanup;
} }
temp_pid_file = concatenate("%s.tmp", "pid_file_path", 1, pid_file); temp_pid_file = concatenate("%s.tmp", "pid_file_path", 1, pid_file);
fprintf(LOGFILE, "Writing to tmp file %s\n", temp_pid_file); fprintf(LOGFILE, "Writing to tmp file %s\n", temp_pid_file);
fflush(LOGFILE);
// create with 700 // create with 700
int pid_fd = open(temp_pid_file, O_WRONLY|O_CREAT|O_EXCL, S_IRWXU); int pid_fd = open(temp_pid_file, O_WRONLY|O_CREAT|O_EXCL, S_IRWXU);
if (pid_fd == -1) { if (pid_fd == -1) {
fprintf(LOGFILE, "Can't open file %s as node manager - %s\n", temp_pid_file, fprintf(LOGFILE, "Can't open file %s as node manager - %s\n", temp_pid_file,
strerror(errno)); strerror(errno));
fflush(LOGFILE);
rc = -1; rc = -1;
goto cleanup; goto cleanup;
} }
@ -290,7 +287,6 @@ static int write_pid_to_file_as_nm(const char* pid_file, pid_t pid) {
if (written == -1) { if (written == -1) {
fprintf(LOGFILE, "Failed to write pid to file %s as node manager - %s\n", fprintf(LOGFILE, "Failed to write pid to file %s as node manager - %s\n",
temp_pid_file, strerror(errno)); temp_pid_file, strerror(errno));
fflush(LOGFILE);
rc = -1; rc = -1;
goto cleanup; goto cleanup;
} }
@ -300,7 +296,6 @@ static int write_pid_to_file_as_nm(const char* pid_file, pid_t pid) {
if (rename(temp_pid_file, pid_file)) { if (rename(temp_pid_file, pid_file)) {
fprintf(LOGFILE, "Can't move pid file from %s to %s as node manager - %s\n", fprintf(LOGFILE, "Can't move pid file from %s to %s as node manager - %s\n",
temp_pid_file, pid_file, strerror(errno)); temp_pid_file, pid_file, strerror(errno));
fflush(LOGFILE);
unlink(temp_pid_file); unlink(temp_pid_file);
rc = -1; rc = -1;
goto cleanup; goto cleanup;
@ -328,7 +323,6 @@ static int write_exit_code_file_as_nm(const char* exit_code_file,
gid_t group = getegid(); gid_t group = getegid();
if (change_effective_user(nm_uid, nm_gid) != 0) { if (change_effective_user(nm_uid, nm_gid) != 0) {
fprintf(ERRORFILE, "Could not change to effective users %d, %d\n", nm_uid, nm_gid); fprintf(ERRORFILE, "Could not change to effective users %d, %d\n", nm_uid, nm_gid);
fflush(ERRORFILE);
rc = -1; rc = -1;
goto cleanup; goto cleanup;
} }
@ -374,7 +368,6 @@ cleanup:
if (change_effective_user(user, group) != 0) { if (change_effective_user(user, group) != 0) {
fprintf(ERRORFILE, fprintf(ERRORFILE,
"Could not change to effective users %d, %d\n", user, group); "Could not change to effective users %d, %d\n", user, group);
fflush(ERRORFILE);
rc = -1; rc = -1;
} }
@ -475,7 +468,6 @@ int is_feature_enabled(const char* feature_key, int default_value,
fprintf(LOGFILE, "Illegal value '%s' for '%s' in configuration. " fprintf(LOGFILE, "Illegal value '%s' for '%s' in configuration. "
"Using default value: %d.\n", enabled_str, feature_key, "Using default value: %d.\n", enabled_str, feature_key,
default_value); default_value);
fflush(LOGFILE);
free(enabled_str); free(enabled_str);
return default_value; return default_value;
} }
@ -640,7 +632,7 @@ int mkdirs(const char* path, mode_t perm) {
} }
npath = strdup(path); npath = strdup(path);
if (npath == NULL) { if (npath == NULL) {
fprintf(LOGFILE, "Not enough memory to copy path string"); fprintf(LOGFILE, "Not enough memory to copy path string\n");
return -1; return -1;
} }
/* Skip leading slashes. */ /* Skip leading slashes. */
@ -821,7 +813,7 @@ static struct passwd* get_user_info(const char* user) {
} }
struct passwd* buffer = malloc(sizeof(struct passwd) + string_size); struct passwd* buffer = malloc(sizeof(struct passwd) + string_size);
if (NULL == buffer) { if (NULL == buffer) {
fprintf(LOGFILE, "Failed malloc in get_user_info"); fprintf(LOGFILE, "Failed malloc in get_user_info\n");
return NULL; return NULL;
} }
if (getpwnam_r(user, buffer, ((char*)buffer) + sizeof(struct passwd), if (getpwnam_r(user, buffer, ((char*)buffer) + sizeof(struct passwd),
@ -860,7 +852,6 @@ int is_whitelisted(const char *user) {
struct passwd* check_user(const char *user) { struct passwd* check_user(const char *user) {
if (strcmp(user, "root") == 0) { if (strcmp(user, "root") == 0) {
fprintf(LOGFILE, "Running as root is not allowed\n"); fprintf(LOGFILE, "Running as root is not allowed\n");
fflush(LOGFILE);
return NULL; return NULL;
} }
char *min_uid_str = get_section_value(MIN_USERID_KEY, &executor_cfg); char *min_uid_str = get_section_value(MIN_USERID_KEY, &executor_cfg);
@ -871,7 +862,6 @@ struct passwd* check_user(const char *user) {
if (min_uid_str == end_ptr || *end_ptr != '\0') { if (min_uid_str == end_ptr || *end_ptr != '\0') {
fprintf(LOGFILE, "Illegal value of %s for %s in configuration\n", fprintf(LOGFILE, "Illegal value of %s for %s in configuration\n",
min_uid_str, MIN_USERID_KEY); min_uid_str, MIN_USERID_KEY);
fflush(LOGFILE);
free(min_uid_str); free(min_uid_str);
return NULL; return NULL;
} }
@ -880,13 +870,11 @@ struct passwd* check_user(const char *user) {
struct passwd *user_info = get_user_info(user); struct passwd *user_info = get_user_info(user);
if (NULL == user_info) { if (NULL == user_info) {
fprintf(LOGFILE, "User %s not found\n", user); fprintf(LOGFILE, "User %s not found\n", user);
fflush(LOGFILE);
return NULL; return NULL;
} }
if (user_info->pw_uid < min_uid && !is_whitelisted(user)) { if (user_info->pw_uid < min_uid && !is_whitelisted(user)) {
fprintf(LOGFILE, "Requested user %s is not whitelisted and has id %d," fprintf(LOGFILE, "Requested user %s is not whitelisted and has id %d,"
"which is below the minimum allowed %d\n", user, user_info->pw_uid, min_uid); "which is below the minimum allowed %d\n", user, user_info->pw_uid, min_uid);
fflush(LOGFILE);
free(user_info); free(user_info);
return NULL; return NULL;
} }
@ -1051,9 +1039,8 @@ static int copy_file(int input, const char* in_filename,
const int buffer_size = 128*1024; const int buffer_size = 128*1024;
char* buffer = malloc(buffer_size); char* buffer = malloc(buffer_size);
if (buffer == NULL) { if (buffer == NULL) {
fprintf(LOGFILE, "Failed to allocate buffer while copying file: %s -> %s", fprintf(LOGFILE, "Failed to allocate buffer while copying file: %s -> %s\n",
in_filename, out_filename); in_filename, out_filename);
fflush(LOGFILE);
return -1; return -1;
} }
@ -1061,7 +1048,6 @@ static int copy_file(int input, const char* in_filename,
if (out_fd == -1) { if (out_fd == -1) {
fprintf(LOGFILE, "Can't open %s for output - %s\n", out_filename, fprintf(LOGFILE, "Can't open %s for output - %s\n", out_filename,
strerror(errno)); strerror(errno));
fflush(LOGFILE);
free(buffer); free(buffer);
return -1; return -1;
} }
@ -1352,21 +1338,18 @@ char **construct_docker_command(const char *command_file) {
uid_t user = geteuid(); uid_t user = geteuid();
gid_t group = getegid(); gid_t group = getegid();
if (change_effective_user(nm_uid, nm_gid) != 0) { if (change_effective_user(nm_uid, nm_gid) != 0) {
fprintf(ERRORFILE, "Cannot change effective user to nm"); fprintf(ERRORFILE, "Cannot change effective user to nm\n");
fflush(ERRORFILE);
exit(SETUID_OPER_FAILED); exit(SETUID_OPER_FAILED);
} }
ret = get_docker_command(command_file, &CFG, &buffer); ret = get_docker_command(command_file, &CFG, &buffer);
if (ret != 0) { if (ret != 0) {
fprintf(ERRORFILE, "Error constructing docker command, docker error code=%d, error message='%s'\n", ret, fprintf(ERRORFILE, "Error constructing docker command, docker error code=%d, error message='%s'\n", ret,
get_docker_error_message(ret)); get_docker_error_message(ret));
fflush(ERRORFILE);
exit(DOCKER_RUN_FAILED); exit(DOCKER_RUN_FAILED);
} }
if (change_effective_user(user, group)) { if (change_effective_user(user, group)) {
fprintf(ERRORFILE, "Cannot change effective user from nm back to original"); fprintf(ERRORFILE, "Cannot change effective user from nm back to original\n");
fflush(ERRORFILE);
exit(SETUID_OPER_FAILED); exit(SETUID_OPER_FAILED);
} }
@ -1379,10 +1362,8 @@ int run_docker(const char *command_file) {
char* docker_binary = get_docker_binary(&CFG); char* docker_binary = get_docker_binary(&CFG);
int exit_code = -1; int exit_code = -1;
if (execvp(docker_binary, args) != 0) { if (execvp(docker_binary, args) != 0) {
fprintf(ERRORFILE, "Couldn't execute the container launch with args %s - %s", fprintf(ERRORFILE, "Couldn't execute the container launch with args %s - %s\n",
docker_binary, strerror(errno)); docker_binary, strerror(errno));
fflush(LOGFILE);
fflush(ERRORFILE);
free(docker_binary); free(docker_binary);
free_values(args); free_values(args);
exit_code = DOCKER_RUN_FAILED; exit_code = DOCKER_RUN_FAILED;
@ -1411,8 +1392,6 @@ int exec_docker_command(char *docker_command, char **argv, int argc) {
// will only get here if execvp fails // will only get here if execvp fails
fprintf(ERRORFILE, "Couldn't execute the container launch with args %s - %s\n", fprintf(ERRORFILE, "Couldn't execute the container launch with args %s - %s\n",
docker_binary, strerror(errno)); docker_binary, strerror(errno));
fflush(LOGFILE);
fflush(ERRORFILE);
free(docker_binary); free(docker_binary);
free(args); free(args);
@ -1429,32 +1408,28 @@ int create_script_paths(const char *work_dir,
*script_file_dest = get_container_launcher_file(work_dir); *script_file_dest = get_container_launcher_file(work_dir);
if (script_file_dest == NULL) { if (script_file_dest == NULL) {
exit_code = OUT_OF_MEMORY; exit_code = OUT_OF_MEMORY;
fprintf(ERRORFILE, "Could not create script_file_dest"); fprintf(ERRORFILE, "Could not create script_file_dest\n");
fflush(ERRORFILE);
return exit_code; return exit_code;
} }
*cred_file_dest = get_container_credentials_file(work_dir); *cred_file_dest = get_container_credentials_file(work_dir);
if (NULL == cred_file_dest) { if (NULL == cred_file_dest) {
exit_code = OUT_OF_MEMORY; exit_code = OUT_OF_MEMORY;
fprintf(ERRORFILE, "Could not create cred_file_dest"); fprintf(ERRORFILE, "Could not create cred_file_dest\n");
fflush(ERRORFILE);
return exit_code; return exit_code;
} }
// open launch script // open launch script
*container_file_source = open_file_as_nm(script_name); *container_file_source = open_file_as_nm(script_name);
if (*container_file_source == -1) { if (*container_file_source == -1) {
exit_code = INVALID_NM_ROOT_DIRS; exit_code = INVALID_NM_ROOT_DIRS;
fprintf(ERRORFILE, "Could not open container file"); fprintf(ERRORFILE, "Could not open container file\n");
fflush(ERRORFILE);
return exit_code; return exit_code;
} }
// open credentials // open credentials
*cred_file_source = open_file_as_nm(cred_file); *cred_file_source = open_file_as_nm(cred_file);
if (*cred_file_source == -1) { if (*cred_file_source == -1) {
exit_code = INVALID_ARGUMENT_NUMBER; exit_code = INVALID_ARGUMENT_NUMBER;
fprintf(ERRORFILE, "Could not open cred file"); fprintf(ERRORFILE, "Could not open cred file\n");
fflush(ERRORFILE);
return exit_code; return exit_code;
} }
@ -1473,22 +1448,19 @@ int create_local_dirs(const char * user, const char *app_id,
// create the user directory on all disks // create the user directory on all disks
int result = initialize_user(user, local_dirs); int result = initialize_user(user, local_dirs);
if (result != 0) { if (result != 0) {
fprintf(ERRORFILE, "Could not create user dir"); fprintf(ERRORFILE, "Could not create user dir\n");
fflush(ERRORFILE);
return result; return result;
} }
// initializing log dirs // initializing log dirs
int log_create_result = create_log_dirs(app_id, log_dirs); int log_create_result = create_log_dirs(app_id, log_dirs);
if (log_create_result != 0) { if (log_create_result != 0) {
fprintf(ERRORFILE, "Could not create log dirs"); fprintf(ERRORFILE, "Could not create log dirs\n");
fflush(ERRORFILE);
return log_create_result; return log_create_result;
} }
if (effective_user == 1) { if (effective_user == 1) {
if (change_effective_user(user_detail->pw_uid, user_detail->pw_gid) != 0) { if (change_effective_user(user_detail->pw_uid, user_detail->pw_gid) != 0) {
fprintf(ERRORFILE, "Could not change to effective users %d, %d\n", user_detail->pw_uid, user_detail->pw_gid); fprintf(ERRORFILE, "Could not change to effective users %d, %d\n", user_detail->pw_uid, user_detail->pw_gid);
fflush(ERRORFILE);
goto cleanup; goto cleanup;
} }
} else { } else {
@ -1513,8 +1485,7 @@ int create_local_dirs(const char * user, const char *app_id,
int directory_create_result = create_container_directories(user, app_id, int directory_create_result = create_container_directories(user, app_id,
container_id, local_dirs, log_dirs, work_dir); container_id, local_dirs, log_dirs, work_dir);
if (directory_create_result != 0) { if (directory_create_result != 0) {
fprintf(ERRORFILE, "Could not create container dirs"); fprintf(ERRORFILE, "Could not create container dirs\n");
fflush(ERRORFILE);
exit_code = directory_create_result; exit_code = directory_create_result;
goto cleanup; goto cleanup;
} }
@ -1522,7 +1493,6 @@ int create_local_dirs(const char * user, const char *app_id,
// Copy script file with permissions 700 // Copy script file with permissions 700
if (copy_file(container_file_source, script_name, script_file_dest,S_IRWXU) != 0) { if (copy_file(container_file_source, script_name, script_file_dest,S_IRWXU) != 0) {
fprintf(ERRORFILE, "Could not create copy file %s %s (%d)\n", script_name, script_file_dest, container_file_source); fprintf(ERRORFILE, "Could not create copy file %s %s (%d)\n", script_name, script_file_dest, container_file_source);
fflush(ERRORFILE);
exit_code = COULD_NOT_CREATE_SCRIPT_COPY; exit_code = COULD_NOT_CREATE_SCRIPT_COPY;
goto cleanup; goto cleanup;
} }
@ -1531,15 +1501,13 @@ int create_local_dirs(const char * user, const char *app_id,
if (copy_file(cred_file_source, cred_file, cred_file_dest, if (copy_file(cred_file_source, cred_file, cred_file_dest,
S_IRUSR | S_IWUSR) != 0) { S_IRUSR | S_IWUSR) != 0) {
exit_code = COULD_NOT_CREATE_CREDENTIALS_FILE; exit_code = COULD_NOT_CREATE_CREDENTIALS_FILE;
fprintf(ERRORFILE, "Could not copy file"); fprintf(ERRORFILE, "Could not copy file\n");
fflush(ERRORFILE);
goto cleanup; goto cleanup;
} }
if (chdir(work_dir) != 0) { if (chdir(work_dir) != 0) {
fprintf(ERRORFILE, "Can't change directory to %s -%s\n", work_dir, fprintf(ERRORFILE, "Can't change directory to %s -%s\n", work_dir,
strerror(errno)); strerror(errno));
fflush(ERRORFILE);
goto cleanup; goto cleanup;
} }
exit_code = 0; exit_code = 0;
@ -1598,7 +1566,6 @@ int launch_docker_container_as_user(const char * user, const char *app_id,
&container_file_source, &cred_file_source); &container_file_source, &cred_file_source);
if (exit_code != 0) { if (exit_code != 0) {
fprintf(ERRORFILE, "Could not create script path\n"); fprintf(ERRORFILE, "Could not create script path\n");
fflush(ERRORFILE);
goto cleanup; goto cleanup;
} }
@ -1609,14 +1576,12 @@ int launch_docker_container_as_user(const char * user, const char *app_id,
container_file_source, cred_file_source); container_file_source, cred_file_source);
if (exit_code != 0) { if (exit_code != 0) {
fprintf(ERRORFILE, "Could not create local files and directories %d %d\n", container_file_source, cred_file_source); fprintf(ERRORFILE, "Could not create local files and directories %d %d\n", container_file_source, cred_file_source);
fflush(ERRORFILE);
goto cleanup; goto cleanup;
} }
exit_code = create_user_filecache_dirs(user, local_dirs); exit_code = create_user_filecache_dirs(user, local_dirs);
if (exit_code != 0) { if (exit_code != 0) {
fprintf(ERRORFILE, "Could not create user filecache directory"); fprintf(ERRORFILE, "Could not create user filecache directory\n");
fflush(ERRORFILE);
goto cleanup; goto cleanup;
} }
@ -1627,15 +1592,13 @@ int launch_docker_container_as_user(const char * user, const char *app_id,
exit_code_file = get_exit_code_file(pid_file); exit_code_file = get_exit_code_file(pid_file);
if (NULL == exit_code_file) { if (NULL == exit_code_file) {
exit_code = OUT_OF_MEMORY; exit_code = OUT_OF_MEMORY;
fprintf(ERRORFILE, "Container out of memory"); fprintf(ERRORFILE, "Container out of memory\n");
fflush(ERRORFILE);
goto cleanup; goto cleanup;
} }
fprintf(LOGFILE, "Changing effective user to root...\n"); fprintf(LOGFILE, "Changing effective user to root...\n");
if (change_effective_user(0, user_gid) != 0) { if (change_effective_user(0, user_gid) != 0) {
fprintf(ERRORFILE, "Could not change to effective users %d, %d\n", 0, user_gid); fprintf(ERRORFILE, "Could not change to effective users %d, %d\n", 0, user_gid);
fflush(ERRORFILE);
goto cleanup; goto cleanup;
} }
@ -1658,7 +1621,6 @@ int launch_docker_container_as_user(const char * user, const char *app_id,
if (child_pid == -1) { if (child_pid == -1) {
fprintf (ERRORFILE, fprintf (ERRORFILE,
"Could not invoke docker %s.\n", docker_command_with_binary); "Could not invoke docker %s.\n", docker_command_with_binary);
fflush(ERRORFILE);
exit_code = UNABLE_TO_EXECUTE_CONTAINER_SCRIPT; exit_code = UNABLE_TO_EXECUTE_CONTAINER_SCRIPT;
goto cleanup; goto cleanup;
} }
@ -1711,14 +1673,12 @@ int launch_docker_container_as_user(const char * user, const char *app_id,
while (count < max_retries) { while (count < max_retries) {
fprintf(LOGFILE, "Inspecting docker container...\n"); fprintf(LOGFILE, "Inspecting docker container...\n");
fprintf(LOGFILE, "Docker inspect command: %s\n", docker_inspect_command); fprintf(LOGFILE, "Docker inspect command: %s\n", docker_inspect_command);
fflush(LOGFILE);
FILE* inspect_docker = popen(docker_inspect_command, "r"); FILE* inspect_docker = popen(docker_inspect_command, "r");
res = fscanf (inspect_docker, "%d", &pid); res = fscanf (inspect_docker, "%d", &pid);
fprintf(LOGFILE, "pid from docker inspect: %d\n", pid); fprintf(LOGFILE, "pid from docker inspect: %d\n", pid);
if (pclose (inspect_docker) != 0 || res <= 0) { if (pclose (inspect_docker) != 0 || res <= 0) {
fprintf (ERRORFILE, fprintf (ERRORFILE,
"Could not inspect docker to get pid %s.\n", docker_inspect_command); "Could not inspect docker to get pid %s.\n", docker_inspect_command);
fflush(ERRORFILE);
exit_code = UNABLE_TO_EXECUTE_CONTAINER_SCRIPT; exit_code = UNABLE_TO_EXECUTE_CONTAINER_SCRIPT;
} else { } else {
if (pid != 0) { if (pid != 0) {
@ -1751,7 +1711,6 @@ int launch_docker_container_as_user(const char * user, const char *app_id,
{ {
fprintf (ERRORFILE, fprintf (ERRORFILE,
"Could not inspect docker to get pid %s.\n", docker_inspect_command); "Could not inspect docker to get pid %s.\n", docker_inspect_command);
fflush(ERRORFILE);
exit_code = UNABLE_TO_EXECUTE_CONTAINER_SCRIPT; exit_code = UNABLE_TO_EXECUTE_CONTAINER_SCRIPT;
goto cleanup; goto cleanup;
} }
@ -1762,8 +1721,7 @@ int launch_docker_container_as_user(const char * user, const char *app_id,
if (pid_file == NULL if (pid_file == NULL
|| write_pid_to_file_as_nm(pid_file, (pid_t)pid) != 0) { || write_pid_to_file_as_nm(pid_file, (pid_t)pid) != 0) {
exit_code = WRITE_PIDFILE_FAILED; exit_code = WRITE_PIDFILE_FAILED;
fprintf(ERRORFILE, "Could not write pid to %s", pid_file); fprintf(ERRORFILE, "Could not write pid to %s\n", pid_file);
fflush(ERRORFILE);
goto cleanup; goto cleanup;
} }
@ -1777,7 +1735,6 @@ int launch_docker_container_as_user(const char * user, const char *app_id,
} }
if (dir_exists(proc_pid_path) == -1) { if (dir_exists(proc_pid_path) == -1) {
fprintf(ERRORFILE, "Error occurred checking %s\n", proc_pid_path); fprintf(ERRORFILE, "Error occurred checking %s\n", proc_pid_path);
fflush(ERRORFILE);
} }
#else #else
while (kill(pid,0) == 0) { while (kill(pid,0) == 0) {
@ -1799,7 +1756,6 @@ int launch_docker_container_as_user(const char * user, const char *app_id,
res = fscanf (inspect_exitcode_docker, "%d", &exit_code); res = fscanf (inspect_exitcode_docker, "%d", &exit_code);
if (pclose (inspect_exitcode_docker) != 0 || res <= 0) { if (pclose (inspect_exitcode_docker) != 0 || res <= 0) {
fprintf (ERRORFILE, "Could not inspect docker to get Exit code %s.\n", docker_inspect_exitcode_command); fprintf (ERRORFILE, "Could not inspect docker to get Exit code %s.\n", docker_inspect_exitcode_command);
fflush(ERRORFILE);
exit_code = -1; exit_code = -1;
} else { } else {
if (exit_code != 0) { if (exit_code != 0) {
@ -1816,7 +1772,6 @@ cleanup:
if (exit_code_file != NULL && write_exit_code_file_as_nm(exit_code_file, exit_code) < 0) { if (exit_code_file != NULL && write_exit_code_file_as_nm(exit_code_file, exit_code) < 0) {
fprintf (ERRORFILE, fprintf (ERRORFILE,
"Could not write exit code to file %s.\n", exit_code_file); "Could not write exit code to file %s.\n", exit_code_file);
fflush(ERRORFILE);
} }
fprintf(LOGFILE, "Wrote the exit code %d to %s\n", exit_code, exit_code_file); fprintf(LOGFILE, "Wrote the exit code %d to %s\n", exit_code, exit_code_file);
@ -1824,7 +1779,6 @@ cleanup:
if (change_effective_user(prev_uid, user_gid) != 0) { if (change_effective_user(prev_uid, user_gid) != 0) {
fprintf(ERRORFILE, fprintf(ERRORFILE,
"Could not change to effective users %d, %d\n", prev_uid, user_gid); "Could not change to effective users %d, %d\n", prev_uid, user_gid);
fflush(ERRORFILE);
} }
#if HAVE_FCLOSEALL #if HAVE_FCLOSEALL
@ -1873,8 +1827,7 @@ int launch_container_as_user(const char *user, const char *app_id,
work_dir, script_name, cred_file, &script_file_dest, &cred_file_dest, work_dir, script_name, cred_file, &script_file_dest, &cred_file_dest,
&container_file_source, &cred_file_source); &container_file_source, &cred_file_source);
if (exit_code != 0) { if (exit_code != 0) {
fprintf(ERRORFILE, "Could not create local files and directories"); fprintf(ERRORFILE, "Could not create local files and directories\n");
fflush(ERRORFILE);
goto cleanup; goto cleanup;
} }
@ -1923,8 +1876,7 @@ int launch_container_as_user(const char *user, const char *app_id,
0, script_file_dest, cred_file_dest, 0, script_file_dest, cred_file_dest,
container_file_source, cred_file_source); container_file_source, cred_file_source);
if (exit_code != 0) { if (exit_code != 0) {
fprintf(ERRORFILE, "Could not create local files and directories"); fprintf(ERRORFILE, "Could not create local files and directories\n");
fflush(ERRORFILE);
goto cleanup; goto cleanup;
} }
@ -1943,7 +1895,7 @@ int launch_container_as_user(const char *user, const char *app_id,
umask(0027); umask(0027);
if (execlp(script_file_dest, script_file_dest, NULL) != 0) { if (execlp(script_file_dest, script_file_dest, NULL) != 0) {
fprintf(LOGFILE, "Couldn't execute the container launch file %s - %s", fprintf(LOGFILE, "Couldn't execute the container launch file %s - %s\n",
script_file_dest, strerror(errno)); script_file_dest, strerror(errno));
exit_code = UNABLE_TO_EXECUTE_CONTAINER_SCRIPT; exit_code = UNABLE_TO_EXECUTE_CONTAINER_SCRIPT;
goto cleanup; goto cleanup;
@ -1978,7 +1930,6 @@ int signal_container_as_user(const char *user, int pid, int sig) {
fprintf(LOGFILE, fprintf(LOGFILE,
"Error signalling process group %d with signal %d - %s\n", "Error signalling process group %d with signal %d - %s\n",
-pid, sig, strerror(errno)); -pid, sig, strerror(errno));
fflush(LOGFILE);
return UNABLE_TO_SIGNAL_CONTAINER; return UNABLE_TO_SIGNAL_CONTAINER;
} else { } else {
return INVALID_CONTAINER_PID; return INVALID_CONTAINER_PID;
@ -2394,7 +2345,7 @@ void chown_dir_contents(const char *dir_path, uid_t uid, gid_t gid) {
if (result > 0 && result < len) { if (result > 0 && result < len) {
change_owner(path_tmp, uid, gid); change_owner(path_tmp, uid, gid);
} else { } else {
fprintf(LOGFILE, "Ignored %s/%s due to length", dir_path, ep->d_name); fprintf(LOGFILE, "Ignored %s/%s due to length\n", dir_path, ep->d_name);
} }
} }
} }
@ -2518,7 +2469,7 @@ static int run_traffic_control(const char *opts[], char *command_file) {
} }
//too many args to tc //too many args to tc
if (i == max_tc_args - 1) { if (i == max_tc_args - 1) {
fprintf(LOGFILE, "too many args to tc"); fprintf(LOGFILE, "too many args to tc\n");
return TRAFFIC_CONTROL_EXECUTION_FAILED; return TRAFFIC_CONTROL_EXECUTION_FAILED;
} }
args[i++] = command_file; args[i++] = command_file;
@ -2717,7 +2668,6 @@ int remove_docker_container(char**argv, int argc) {
if (child_pid == -1) { if (child_pid == -1) {
fprintf (ERRORFILE, fprintf (ERRORFILE,
"Failed to fork for docker remove command\n"); "Failed to fork for docker remove command\n");
fflush(ERRORFILE);
return DOCKER_RUN_FAILED; return DOCKER_RUN_FAILED;
} }

View File

@ -110,10 +110,20 @@ static void display_usage(FILE *stream) {
static void open_log_files() { static void open_log_files() {
if (LOGFILE == NULL) { if (LOGFILE == NULL) {
LOGFILE = stdout; LOGFILE = stdout;
if (setvbuf(LOGFILE, NULL, _IOLBF, BUFSIZ)) {
fprintf(LOGFILE, "Failed to invoke setvbuf() for LOGFILE: %s\n", strerror(errno));
fflush(LOGFILE);
exit(ERROR_CALLING_SETVBUF);
}
} }
if (ERRORFILE == NULL) { if (ERRORFILE == NULL) {
ERRORFILE = stderr; ERRORFILE = stderr;
if (setvbuf(ERRORFILE, NULL, _IOLBF, BUFSIZ)) {
fprintf(ERRORFILE, "Failed to invoke setvbuf() for ERRORFILE: %s\n", strerror(errno));
fflush(ERRORFILE);
exit(ERROR_CALLING_SETVBUF);
}
} }
// There may be a process reading from stdout/stderr, and if it // There may be a process reading from stdout/stderr, and if it
@ -405,7 +415,6 @@ static int validate_run_as_user_commands(int argc, char **argv, int *operation)
fprintf(LOGFILE, "main : command provided %d\n", command); fprintf(LOGFILE, "main : command provided %d\n", command);
fprintf(LOGFILE, "main : run as user is %s\n", cmd_input.run_as_user_name); fprintf(LOGFILE, "main : run as user is %s\n", cmd_input.run_as_user_name);
fprintf(LOGFILE, "main : requested yarn user is %s\n", cmd_input.yarn_user_name); fprintf(LOGFILE, "main : requested yarn user is %s\n", cmd_input.yarn_user_name);
fflush(LOGFILE);
char * resources = NULL;// key,value pair describing resources char * resources = NULL;// key,value pair describing resources
char * resources_key = NULL; char * resources_key = NULL;
char * resources_value = NULL; char * resources_value = NULL;
@ -414,7 +423,6 @@ static int validate_run_as_user_commands(int argc, char **argv, int *operation)
if (argc < 10) { if (argc < 10) {
fprintf(ERRORFILE, "Too few arguments (%d vs 10) for initialize container\n", fprintf(ERRORFILE, "Too few arguments (%d vs 10) for initialize container\n",
argc); argc);
fflush(ERRORFILE);
return INVALID_ARGUMENT_NUMBER; return INVALID_ARGUMENT_NUMBER;
} }
cmd_input.app_id = argv[optind++]; cmd_input.app_id = argv[optind++];
@ -435,7 +443,6 @@ static int validate_run_as_user_commands(int argc, char **argv, int *operation)
if (!(argc == 13 || argc == 14)) { if (!(argc == 13 || argc == 14)) {
fprintf(ERRORFILE, "Wrong number of arguments (%d vs 13 or 14) for" fprintf(ERRORFILE, "Wrong number of arguments (%d vs 13 or 14) for"
" launch docker container\n", argc); " launch docker container\n", argc);
fflush(ERRORFILE);
return INVALID_ARGUMENT_NUMBER; return INVALID_ARGUMENT_NUMBER;
} }
@ -472,7 +479,6 @@ static int validate_run_as_user_commands(int argc, char **argv, int *operation)
if (!(argc == 13 || argc == 14)) { if (!(argc == 13 || argc == 14)) {
fprintf(ERRORFILE, "Wrong number of arguments (%d vs 13 or 14)" fprintf(ERRORFILE, "Wrong number of arguments (%d vs 13 or 14)"
" for launch container\n", argc); " for launch container\n", argc);
fflush(ERRORFILE);
return INVALID_ARGUMENT_NUMBER; return INVALID_ARGUMENT_NUMBER;
} }
@ -490,9 +496,8 @@ static int validate_run_as_user_commands(int argc, char **argv, int *operation)
if (get_kv_key(resources, resources_key, strlen(resources)) < 0 || if (get_kv_key(resources, resources_key, strlen(resources)) < 0 ||
get_kv_value(resources, resources_value, strlen(resources)) < 0) { get_kv_value(resources, resources_value, strlen(resources)) < 0) {
fprintf(ERRORFILE, "Invalid arguments for cgroups resources: %s", fprintf(ERRORFILE, "Invalid arguments for cgroups resources: %s\n",
resources); resources);
fflush(ERRORFILE);
free(resources_key); free(resources_key);
free(resources_value); free(resources_value);
return INVALID_ARGUMENT_NUMBER; return INVALID_ARGUMENT_NUMBER;
@ -518,7 +523,6 @@ static int validate_run_as_user_commands(int argc, char **argv, int *operation)
if (argc != 6) { if (argc != 6) {
fprintf(ERRORFILE, "Wrong number of arguments (%d vs 6) for " \ fprintf(ERRORFILE, "Wrong number of arguments (%d vs 6) for " \
"signal container\n", argc); "signal container\n", argc);
fflush(ERRORFILE);
return INVALID_ARGUMENT_NUMBER; return INVALID_ARGUMENT_NUMBER;
} }
@ -527,14 +531,12 @@ static int validate_run_as_user_commands(int argc, char **argv, int *operation)
cmd_input.container_pid = strtol(option, &end_ptr, 10); cmd_input.container_pid = strtol(option, &end_ptr, 10);
if (option == end_ptr || *end_ptr != '\0') { if (option == end_ptr || *end_ptr != '\0') {
fprintf(ERRORFILE, "Illegal argument for container pid %s\n", option); fprintf(ERRORFILE, "Illegal argument for container pid %s\n", option);
fflush(ERRORFILE);
return INVALID_ARGUMENT_NUMBER; return INVALID_ARGUMENT_NUMBER;
} }
option = argv[optind++]; option = argv[optind++];
cmd_input.signal = strtol(option, &end_ptr, 10); cmd_input.signal = strtol(option, &end_ptr, 10);
if (option == end_ptr || *end_ptr != '\0') { if (option == end_ptr || *end_ptr != '\0') {
fprintf(ERRORFILE, "Illegal argument for signal %s\n", option); fprintf(ERRORFILE, "Illegal argument for signal %s\n", option);
fflush(ERRORFILE);
return INVALID_ARGUMENT_NUMBER; return INVALID_ARGUMENT_NUMBER;
} }
@ -550,8 +552,7 @@ static int validate_run_as_user_commands(int argc, char **argv, int *operation)
*operation = RUN_AS_USER_LIST; *operation = RUN_AS_USER_LIST;
return 0; return 0;
default: default:
fprintf(ERRORFILE, "Invalid command %d not supported.",command); fprintf(ERRORFILE, "Invalid command %d not supported.\n",command);
fflush(ERRORFILE);
return INVALID_COMMAND_PROVIDED; return INVALID_COMMAND_PROVIDED;
} }
} }

View File

@ -138,8 +138,7 @@ int execute_regex_match(const char *regex_str, const char *input) {
regex_t regex; regex_t regex;
int regex_match; int regex_match;
if (0 != regcomp(&regex, regex_str, REG_EXTENDED|REG_NOSUB)) { if (0 != regcomp(&regex, regex_str, REG_EXTENDED|REG_NOSUB)) {
fprintf(LOGFILE, "Unable to compile regex."); fprintf(LOGFILE, "Unable to compile regex.\n");
fflush(LOGFILE);
exit(ERROR_COMPILING_REGEX); exit(ERROR_COMPILING_REGEX);
} }
regex_match = regexec(&regex, input, (size_t) 0, NULL, 0); regex_match = regexec(&regex, input, (size_t) 0, NULL, 0);

View File

@ -68,7 +68,8 @@ enum errorcodes {
DOCKER_IMAGE_INVALID = 40, DOCKER_IMAGE_INVALID = 40,
// DOCKER_CONTAINER_NAME_INVALID = 41, (NOT USED) // DOCKER_CONTAINER_NAME_INVALID = 41, (NOT USED)
ERROR_COMPILING_REGEX = 42, ERROR_COMPILING_REGEX = 42,
INVALID_CONTAINER_ID = 43 INVALID_CONTAINER_ID = 43,
ERROR_CALLING_SETVBUF = 44
}; };
/* Macros for min/max. */ /* Macros for min/max. */

View File

@ -296,7 +296,6 @@ static int validate_container_name(const char *container_name) {
} }
} }
fprintf(ERRORFILE, "Specified container_id=%s is invalid\n", container_name); fprintf(ERRORFILE, "Specified container_id=%s is invalid\n", container_name);
fflush(ERRORFILE);
return INVALID_DOCKER_CONTAINER_NAME; return INVALID_DOCKER_CONTAINER_NAME;
} }

View File

@ -1399,6 +1399,19 @@ int main(int argc, char **argv) {
LOGFILE = stdout; LOGFILE = stdout;
ERRORFILE = stderr; ERRORFILE = stderr;
if (setvbuf(LOGFILE, NULL, _IOLBF, BUFSIZ)) {
fprintf(LOGFILE, "Failed to invoke setvbuf() for LOGFILE: %s\n", strerror(errno));
fflush(LOGFILE);
exit(ERROR_CALLING_SETVBUF);
}
if (setvbuf(ERRORFILE, NULL, _IOLBF, BUFSIZ)) {
fprintf(ERRORFILE, "Failed to invoke setvbuf() for ERRORFILE: %s\n", strerror(errno));
fflush(ERRORFILE);
exit(ERROR_CALLING_SETVBUF);
}
nm_uid = getuid(); nm_uid = getuid();
printf("Attempting to clean up from any previous runs\n"); printf("Attempting to clean up from any previous runs\n");