Mirroristas/etcd
2
0
Fork 0
mirror of https://github.com/etcd-io/etcd.git synced 2024-09-27 06:25:44 +00:00
Code Issues Packages Projects Releases Wiki Activity

auth: fix race on stopping simple token keeper

Browse Source 
run goroutine was resetting a field for no reason and without holding a lock.
This patch cleans up the run goroutine management to make the start/stop path
less racey in general.
This commit is contained in:
Anthony Romano 2017-04-14 09:50:33 -07:00 committed by Gyu-Ho Lee
parent 9f7bb0df3a
commit a20295c65b
2 changed files with 18 additions and 13 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

24
auth/simple_token.go
View File

@ -38,16 +38,18 @@ var (
type simpleTokenTTLKeeper struct { type simpleTokenTTLKeeper struct {
tokens map[string]time.Time tokens map[string]time.Time
stopCh chan chan struct{} donec chan struct{}
stopc chan struct{}
deleteTokenFunc func(string) deleteTokenFunc func(string)
mu *sync.Mutex mu *sync.Mutex
} }
func (tm *simpleTokenTTLKeeper) stop() { func (tm *simpleTokenTTLKeeper) stop() {
waitCh := make(chan struct{}) select {
tm.stopCh <- waitCh case tm.stopc <- struct{}{}:
<-waitCh case <-tm.donec:
close(tm.stopCh) }
<-tm.donec
} }
func (tm *simpleTokenTTLKeeper) addSimpleToken(token string) { func (tm *simpleTokenTTLKeeper) addSimpleToken(token string) {
@ -66,7 +68,10 @@ func (tm *simpleTokenTTLKeeper) deleteSimpleToken(token string) {
func (tm *simpleTokenTTLKeeper) run() { func (tm *simpleTokenTTLKeeper) run() {
tokenTicker := time.NewTicker(simpleTokenTTLResolution) tokenTicker := time.NewTicker(simpleTokenTTLResolution)
defer tokenTicker.Stop() defer func() {
tokenTicker.Stop()
close(tm.donec)
}()
for { for {
select { select {
case <-tokenTicker.C: case <-tokenTicker.C:
@ -79,9 +84,7 @@ func (tm *simpleTokenTTLKeeper) run() {
} }
} }
tm.mu.Unlock() tm.mu.Unlock()
case waitCh := <-tm.stopCh: case <-tm.stopc:
tm.tokens = make(map[string]time.Time)
waitCh <- struct{}{}
return return
} }
} }
@ -96,7 +99,8 @@ func (as *authStore) enable() {
} }
as.simpleTokenKeeper = &simpleTokenTTLKeeper{ as.simpleTokenKeeper = &simpleTokenTTLKeeper{
tokens: make(map[string]time.Time), tokens: make(map[string]time.Time),
stopCh: make(chan chan struct{}), donec: make(chan struct{}),
stopc: make(chan struct{}),
deleteTokenFunc: delf, deleteTokenFunc: delf,
mu: &as.simpleTokensMu, mu: &as.simpleTokensMu,
} }

7
auth/store.go
View File

@ -243,11 +243,12 @@ func (as *authStore) AuthDisable() {
as.enabled = false as.enabled = false
as.simpleTokensMu.Lock() as.simpleTokensMu.Lock()
tk := as.simpleTokenKeeper
as.simpleTokenKeeper = nil
as.simpleTokens = make(map[string]string) // invalidate all tokens as.simpleTokens = make(map[string]string) // invalidate all tokens
as.simpleTokensMu.Unlock() as.simpleTokensMu.Unlock()
if as.simpleTokenKeeper != nil { if tk != nil {
as.simpleTokenKeeper.stop() tk.stop()
as.simpleTokenKeeper = nil
} }
plog.Noticef("Authentication disabled") plog.Noticef("Authentication disabled")