NotificationsYou must be signed in to change notification settings
Fork1k
Star11.1k

Commitb7cb275

authored

fix: stop tearing down non-TTY processes on SSH session end (#18673)

(possibly temporary) fix for#18519Matches OpenSSH for non-tty sessions, where we don't actively terminatethe process.Adds explicit tracking to the SSH server for these processes so that ifwe are shutting down we terminate them: this ensures that we can shutdown quickly to allow shutdown scripts to run. It also ensures our testsdon't leak system resources.

1 parent9ccaf86 commitb7cb275Copy full SHA for b7cb275

File tree

3 files changed

+54

-18

lines changed

agent/agentssh

3 files changed

+54

-18

lines changed

`‎agent/agentssh/agentssh.go‎`

Lines changed: 41 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -129,6 +129,7 @@ type Server struct {`
`129`	`129`	`listenersmap[net.Listener]struct{}`
`130`	`130`	`connsmap[net.Conn]struct{}`
`131`	`131`	`sessionsmap[ssh.Session]struct{}`
	`132`	`+processesmap[*os.Process]struct{}`
`132`	`133`	`closingchanstruct{}`
`133`	`134`	`// Wait for goroutines to exit, waited without`
`134`	`135`	`// a lock on mu but protected by closing.`
`@@ -188,6 +189,7 @@ func NewServer(ctx context.Context, logger slog.Logger, prometheusRegistry *prom`
`188`	`189`	`fs:fs,`
`189`	`190`	`conns:make(map[net.Conn]struct{}),`
`190`	`191`	`sessions:make(map[ssh.Session]struct{}),`
	`192`	`+processes:make(map[*os.Process]struct{}),`
`191`	`193`	`logger:logger,`
`192`	`194`
`193`	`195`	`config:config,`
`@@ -606,7 +608,10 @@ func (s *Server) startNonPTYSession(logger slog.Logger, session ssh.Session, mag`
`606`	`608`	`// otherwise context cancellation will not propagate properly`
`607`	`609`	`// and SSH server close may be delayed.`
`608`	`610`	`cmd.SysProcAttr=cmdSysProcAttr()`
`609`		`-cmd.Cancel=cmdCancel(session.Context(),logger,cmd)`
	`611`	`+`
	`612`	`+// to match OpenSSH, we don't actually tear a non-TTY command down, even if the session ends.`
	`613`	`+// c.f. https://github.com/coder/coder/issues/18519#issuecomment-3019118271`
	`614`	`+cmd.Cancel=nil`
`610`	`615`
`611`	`616`	`cmd.Stdout=session`
`612`	`617`	`cmd.Stderr=session.Stderr()`
`@@ -629,6 +634,16 @@ func (s *Server) startNonPTYSession(logger slog.Logger, session ssh.Session, mag`
`629`	`634`	`s.metrics.sessionErrors.WithLabelValues(magicTypeLabel,"no","start_command").Add(1)`
`630`	`635`	`returnxerrors.Errorf("start: %w",err)`
`631`	`636`	`}`
	`637`	`+`
	`638`	`+// Since we don't cancel the process when the session stops, we still need to tear it down if we are closing. So`
	`639`	`+// track it here.`
	`640`	`+if!s.trackProcess(cmd.Process,true) {`
	`641`	`+// must be closing`
	`642`	`+err=cmdCancel(logger,cmd.Process)`
	`643`	`+returnxerrors.Errorf("failed to track process: %w",err)`
	`644`	`+}`
	`645`	`+defers.trackProcess(cmd.Process,false)`
	`646`	`+`
`632`	`647`	`sigs:=make(chan ssh.Signal,1)`
`633`	`648`	`session.Signals(sigs)`
`634`	`649`	`deferfunc() {`
`@@ -1089,6 +1104,27 @@ func (s *Server) trackSession(ss ssh.Session, add bool) (ok bool) {`
`1089`	`1104`	`returntrue`
`1090`	`1105`	`}`
`1091`	`1106`
	`1107`	`+// trackCommand registers the process with the server. If the server is`
	`1108`	`+// closing, the process is not registered and should be closed.`
	`1109`	`+//`
	`1110`	`+//nolint:revive`
	`1111`	`+func (sServer)trackProcess(pos.Process,addbool) (okbool) {`
	`1112`	`+s.mu.Lock()`
	`1113`	`+defers.mu.Unlock()`
	`1114`	`+ifadd {`
	`1115`	`+ifs.closing!=nil {`
	`1116`	`+// Server closed.`
	`1117`	`+returnfalse`
	`1118`	`+}`
	`1119`	`+s.wg.Add(1)`
	`1120`	`+s.processes[p]=struct{}{}`
	`1121`	`+returntrue`
	`1122`	`+}`
	`1123`	`+s.wg.Done()`
	`1124`	`+delete(s.processes,p)`
	`1125`	`+returntrue`
	`1126`	`+}`
	`1127`	`+`
`1092`	`1128`	`// Close the server and all active connections. Server can be re-used`
`1093`	`1129`	`// after Close is done.`
`1094`	`1130`	`func (s*Server)Close()error {`
`@@ -1128,6 +1164,10 @@ func (s *Server) Close() error {`
`1128`	`1164`	`_=c.Close()`
`1129`	`1165`	`}`
`1130`	`1166`
	`1167`	`+forp:=ranges.processes {`
	`1168`	`+_=cmdCancel(s.logger,p)`
	`1169`	`+}`
	`1170`	`+`
`1131`	`1171`	`s.logger.Debug(ctx,"closing SSH server")`
`1132`	`1172`	`err:=s.srv.Close()`
`1133`	`1173`

`‎agent/agentssh/exec_other.go‎`

Lines changed: 4 additions & 6 deletions

Original file line number	Diff line number	Diff line change
`@@ -4,7 +4,7 @@ package agentssh`
`4`	`4`
`5`	`5`	`import (`
`6`	`6`	`"context"`
`7`		`-"os/exec"`
	`7`	`+"os"`
`8`	`8`	`"syscall"`
`9`	`9`
`10`	`10`	`"cdr.dev/slog"`
`@@ -16,9 +16,7 @@ func cmdSysProcAttr() *syscall.SysProcAttr {`
`16`	`16`	`}`
`17`	`17`	`}`
`18`	`18`
`19`		`-funccmdCancel(ctx context.Context,logger slog.Logger,cmd*exec.Cmd)func()error {`
`20`		`-returnfunc()error {`
`21`		`-logger.Debug(ctx,"cmdCancel: sending SIGHUP to process and children",slog.F("pid",cmd.Process.Pid))`
`22`		`-returnsyscall.Kill(-cmd.Process.Pid,syscall.SIGHUP)`
`23`		`-}`
	`19`	`+funccmdCancel(logger slog.Logger,p*os.Process)error {`
	`20`	`+logger.Debug(context.Background(),"cmdCancel: sending SIGHUP to process and children",slog.F("pid",p.Pid))`
	`21`	`+returnsyscall.Kill(-p.Pid,syscall.SIGHUP)`
`24`	`22`	`}`

`‎agent/agentssh/exec_windows.go‎`

Lines changed: 9 additions & 11 deletions

Original file line number	Diff line number	Diff line change
`@@ -2,7 +2,7 @@ package agentssh`
`2`	`2`
`3`	`3`	`import (`
`4`	`4`	`"context"`
`5`		`-"os/exec"`
	`5`	`+"os"`
`6`	`6`	`"syscall"`
`7`	`7`
`8`	`8`	`"cdr.dev/slog"`
`@@ -12,14 +12,12 @@ func cmdSysProcAttr() *syscall.SysProcAttr {`
`12`	`12`	`return&syscall.SysProcAttr{}`
`13`	`13`	`}`
`14`	`14`
`15`		`-funccmdCancel(ctx context.Context,logger slog.Logger,cmd*exec.Cmd)func()error {`
`16`		`-returnfunc()error {`
`17`		`-logger.Debug(ctx,"cmdCancel: killing process",slog.F("pid",cmd.Process.Pid))`
`18`		`-// Windows doesn't support sending signals to process groups, so we`
`19`		`-// have to kill the process directly. In the future, we may want to`
`20`		`-// implement a more sophisticated solution for process groups on`
`21`		`-// Windows, but for now, this is a simple way to ensure that the`
`22`		`-// process is terminated when the context is cancelled.`
`23`		`-returncmd.Process.Kill()`
`24`		`-}`
	`15`	`+funccmdCancel(logger slog.Logger,p*os.Process)error {`
	`16`	`+logger.Debug(context.Background(),"cmdCancel: killing process",slog.F("pid",p.Pid))`
	`17`	`+// Windows doesn't support sending signals to process groups, so we`
	`18`	`+// have to kill the process directly. In the future, we may want to`
	`19`	`+// implement a more sophisticated solution for process groups on`
	`20`	`+// Windows, but for now, this is a simple way to ensure that the`
	`21`	`+// process is terminated when the context is cancelled.`
	`22`	`+returnp.Kill()`
`25`	`23`	`}`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commitb7cb275

File tree

3 files changed

3 files changed

`‎agent/agentssh/agentssh.go‎`

`‎agent/agentssh/exec_other.go‎`

`‎agent/agentssh/exec_windows.go‎`

0 commit comments