process-util: make safe_fork() unset $NOTIFY_SOCKET

author Yu Watanabe <watanabe.yu+github@gmail.com>

Sun, 16 Apr 2023 17:09:38 +0000 (02:09 +0900)

committer Mike Yuan <me@yhndnzj.com>

Sun, 16 Apr 2023 21:46:32 +0000 (05:46 +0800)
author Yu Watanabe <watanabe.yu+github@gmail.com>
Sun, 16 Apr 2023 17:09:38 +0000 (02:09 +0900)
committer Mike Yuan <me@yhndnzj.com>
Sun, 16 Apr 2023 21:46:32 +0000 (05:46 +0800)
diff --git a/src/basic/process-util.c b/src/basic/process-util.c

index 58503cf22dc2ad7f30246834b455ef7945267cd8..a9826d94d3be303ed896e7d39a3e49d42692ee68 100644 (file)
--- a/src/basic/process-util.c
+++ b/src/basic/process-util.c
@@ -1365,6 +1365,14 @@ int safe_fork_full(
                  }
          }
  
+        if (!FLAGS_SET(flags, FORK_KEEP_NOTIFY_SOCKET)) {
+                r = RET_NERRNO(unsetenv("NOTIFY_SOCKET"));
+                if (r < 0) {
+                        log_full_errno(prio, r, "Failed to unset $NOTIFY_SOCKET: %m");
+                        _exit(EXIT_FAILURE);
+                }
+        }
+
          if (ret_pid)
                  *ret_pid = getpid_cached();
  
diff --git a/src/basic/process-util.h b/src/basic/process-util.h

index 5188f3c60584c5f11096f21bf7dc95753ac37905..230a0edb0934da1086850644fd7f98b18955d63d 100644 (file)
--- a/src/basic/process-util.h
+++ b/src/basic/process-util.h
@@ -156,6 +156,7 @@ typedef enum ForkFlags {
          FORK_FLUSH_STDIO        = 1 << 13, /* fflush() stdout (and stderr) before forking */
          FORK_NEW_USERNS         = 1 << 14, /* Run child in its own user namespace */
          FORK_CLOEXEC_OFF        = 1 << 15, /* In the child: turn off O_CLOEXEC on all fds in except_fds[] */
+        FORK_KEEP_NOTIFY_SOCKET = 1 << 16, /* Unless this specified, $NOTIFY_SOCKET will be unset. */
  } ForkFlags;
  
  int safe_fork_full(
diff --git a/src/sysupdate/sysupdate-resource.c b/src/sysupdate/sysupdate-resource.c

index c918de79cc9e9c3d37800ad69691b7426082193a..5f06377ade9c600af353ca5a0864816ae105104f 100644 (file)
--- a/src/sysupdate/sysupdate-resource.c
+++ b/src/sysupdate/sysupdate-resource.c
@@ -284,7 +284,6 @@ static int download_manifest(
                          NULL
                  };
  
-                (void) unsetenv("NOTIFY_SOCKET");
                  execv(pull_binary_path(), (char *const*) cmdline);
                  log_error_errno(errno, "Failed to execute %s tool: %m", pull_binary_path());
                  _exit(EXIT_FAILURE);
diff --git a/src/sysupdate/sysupdate-transfer.c b/src/sysupdate/sysupdate-transfer.c

index 6789f4896782f2d9070bdad014a02d982af0f57e..8ae58c2b1b8a30027b6320c3a95d96af20d4b8b6 100644 (file)
--- a/src/sysupdate/sysupdate-transfer.c
+++ b/src/sysupdate/sysupdate-transfer.c
@@ -793,7 +793,6 @@ static int run_helper(
          if (r == 0) {
                  /* Child */
  
-                (void) unsetenv("NOTIFY_SOCKET");
                  execv(path, (char *const*) cmdline);
                  log_error_errno(errno, "Failed to execute %s tool: %m", path);
                  _exit(EXIT_FAILURE);
diff --git a/src/udev/udevd.c b/src/udev/udevd.c

index d70fccde41e6119fdc5dcb5b628400e22f976943..c56956c378463d24d45df0dac73cfdf3180aa42c 100644 (file)
--- a/src/udev/udevd.c
+++ b/src/udev/udevd.c
@@ -706,8 +706,6 @@ static int worker_main(Manager *_manager, sd_device_monitor *monitor, sd_device
          assert(monitor);
          assert(dev);
  
-        assert_se(unsetenv("NOTIFY_SOCKET") == 0);
-
          assert_se(sigprocmask_many(SIG_BLOCK, NULL, SIGTERM, -1) >= 0);
  
          /* Reset OOM score, we only protect the main daemon. */
author	Yu Watanabe <watanabe.yu+github@gmail.com>
	Sun, 16 Apr 2023 17:09:38 +0000 (02:09 +0900)
committer	Mike Yuan <me@yhndnzj.com>
	Sun, 16 Apr 2023 21:46:32 +0000 (05:46 +0800)
src/basic/process-util.c		patch \| blob \| blame \| history
src/basic/process-util.h		patch \| blob \| blame \| history
src/sysupdate/sysupdate-resource.c		patch \| blob \| blame \| history
src/sysupdate/sysupdate-transfer.c		patch \| blob \| blame \| history
src/udev/udevd.c		patch \| blob \| blame \| history