Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add restartability to sesman #3346

Open
wants to merge 16 commits into
base: devel
Choose a base branch
from
Open

Add restartability to sesman #3346

wants to merge 16 commits into from

Conversation

matt335672
Copy link
Member

@matt335672 matt335672 commented Dec 16, 2024
edited
Loading

This is now ready for review.

Fixes #800

Depends on #3328

See also #819

This PR allows for sesman to be restarted without losing sessions.

A restart of xrdp will still drop connections, but these can easily be restarted.

In brief, the design is this (I can add more details around this):-

  1. When sesexec starts a session, a listening socket is created in a directory (the 'restart directory') accessible by root only.
  2. When sesman restarts, before starting its listening socket it iterates over the sockets in the restart directory, and attempts to connect to each one.
  3. When sesexec receives the connection request, it validates the other end is running as root, and if so, re-announces the managed session.
  4. sesman adds the announced sessions to its session list.
  5. sesman restarts its listening socket.

@matt335672 matt335672 force-pushed the restart_sesman branch 3 times, most recently from bfa34f4 to 63c2e18 Compare December 18, 2024 12:58
@matt335672 matt335672 marked this pull request as ready for review December 19, 2024 16:10
@matt335672
Restrict scope of sesman_close_all()
ff8a1db 
This function does not need to have global scope.
@matt335672
Remove unused variable g_con_list
1e917c3
@matt335672
Remove commented-out code
7d3b5d4 
The function sesexce_scp_data_in in sesexec.c is a development
artefact and can safely be removed
@matt335672
Add g_readdir_entries() to OS calls
adbf063
@matt335672
Add g_socket_exist() to OS calls
9278f96
@matt335672
Add ercp_connect() call to ERCP interface
6033648 
This is used by sesman to connect to sockets in the restart
directory.
@matt335672
Add session_list_get_count_by_state() to session list
561bc86
@matt335672
Make listen_port smaller than XRDP_SOCKETS_MAXPATH
dc3ca39
@matt335672
Add warning if listen_port changes
2b352e4
@matt335672
Add sesman restart module
77d8f9c 
Adds a module which can be used when sesman is restarting. This is
initially used to rediscover sessions from a previous run.
@matt335672
Add session_get_parameters()
0834f9a 
Also add useful comment to session_send_term()
@matt335672
Add sesexec discover module
be3c087 
The module is a dummy to be filled in later

Other structural changes to sesexec:-
1) A failure of sesman needs to be detected and handled without
   causing sesexec to exit
2) If sesexec exits, the session can never be rediscovered. sesexec must
   be robust enough to stay up for the lifetime of the session so that
   the discovery function always works.
3) There is a mechanism for sesexec to terminate the session, but it
   doesn't work, as SIGCHLD is not processed while we are waiting for
   the session to finish. This needs fixing.
@matt335672
Add sesexec_set_ecp_transport/sesexec_is_ecp_active()
3b74f70 
These sesexec functions are needed for the discovery module to
function.
@matt335672
Fill in discovery module
7f77ae4 
Add functionality to sesexec discovery module to enable sesman
restarts.
@matt335672
Fix missing displays on sesman restart
893c128
@matt335672
Add commented out KillMode=process to xrdp-service
bdb4654 
The KillMode of process allows an xrdp connection to survive a
reatart of the xrdp process. This is of minimal benefit, as a
user can always simply reconnect - the session will survive the
restart. The downside is that xrdp will not benefit from any
security fixes, and may well end up out-of-sync with sesman.
@metalefty
Copy link
Member

I'll try this next.

@matt335672 matt335672 mentioned this pull request Jan 7, 2025
Open
@matt335672
Copy link
Member Author

I've added a minor update to this wiki page documenting the recovery directory used by this PR.

https://github.com/neutrinolabs/xrdp/wiki/The-socketdir-directory

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Running sessions "lost" if xrdp-sesman restarts
2 participants
@matt335672 @metalefty