[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
08/13: secret-service: Add a timeout when waiting for a client.
|
From: |
guix-commits |
|
Subject: |
08/13: secret-service: Add a timeout when waiting for a client. |
|
Date: |
Tue, 29 Sep 2020 16:06:13 -0400 (EDT) |
civodul pushed a commit to branch master
in repository guix.
commit 4d047853da76dc5fa5dd50ecb750c861342ef47b
Author: Ludovic Courtès <ludo@gnu.org>
AuthorDate: Sun Sep 27 17:21:16 2020 +0200
secret-service: Add a timeout when waiting for a client.
* gnu/build/secret-service.scm (secret-service-receive-secrets)
[wait-for-client]: Call 'select' with a 60s timeout before 'accept'.
Return #f upon timeout.
[read-secrets]: Return FILES on success.
Adjust caller of 'wait-for-client' to handle #f.
---
gnu/build/secret-service.scm | 33 +++++++++++++++++++++------------
1 file changed, 21 insertions(+), 12 deletions(-)
diff --git a/gnu/build/secret-service.scm b/gnu/build/secret-service.scm
index aafb168..40c24ab 100644
--- a/gnu/build/secret-service.scm
+++ b/gnu/build/secret-service.scm
@@ -75,7 +75,8 @@ local PORT. If connect fails, sleep 1s and retry RETRY
times."
(define (secret-service-receive-secrets port)
"Listen to local PORT and wait for a secret service client to send secrets.
-Write them to the file system."
+Write them to the file system. Return the list of files installed on success,
+and #f otherwise."
(define (wait-for-client port)
;; Wait for a TCP connection on PORT. Note: We cannot use the
@@ -87,14 +88,20 @@ Write them to the file system."
(format (current-error-port)
"secret service: waiting for secrets on port ~a...~%"
port)
- (match (accept sock)
- ((client . address)
+ (match (select (list sock) '() '() 60)
+ (((_) () ())
+ (match (accept sock)
+ ((client . address)
+ (format (current-error-port)
+ "secret service: client connection from ~a~%"
+ (inet-ntop (sockaddr:fam address)
+ (sockaddr:addr address)))
+ (close-port sock)
+ client)))
+ ((() () ())
(format (current-error-port)
- "secret service: client connection from ~a~%"
- (inet-ntop (sockaddr:fam address)
- (sockaddr:addr address)))
- (close-port sock)
- client))))
+ "secret service: did not receive any secrets; time out~%")
+ #f))))
;; TODO: Remove when (@ (guix build utils) dump-port) has a 'size'
;; parameter.
@@ -128,15 +135,17 @@ installing file '~a' (~a bytes)...~%"
(lambda (output)
(dump port output size)
(chmod file mode))))
- files sizes modes))
+ files sizes modes)
+ files)
(_
(format (current-error-port)
"secret service: invalid secrets received~%")
#f)))
- (let* ((port (wait-for-client port))
- (result (read-secrets port)))
- (close-port port)
+ (let* ((port (wait-for-client port))
+ (result (and=> port read-secrets)))
+ (when port
+ (close-port port))
result))
;;; secret-service.scm ends here
- branch master updated (ac324be -> c11c19b), guix-commits, 2020/09/29
- 01/13: services: hurd-vm: Run QEMU as an unprivileged user., guix-commits, 2020/09/29
- 02/13: services: childhurd: Tweak description., guix-commits, 2020/09/29
- 03/13: secret-service: Clarify the origin of messages., guix-commits, 2020/09/29
- 07/13: services: hurd-vm: Pass "-no-reboot" when spawning the Hurd VM., guix-commits, 2020/09/29
- 04/13: services: hurd-vm: Check whether /dev/kvm exists at run time., guix-commits, 2020/09/29
- 05/13: services: guix: Generate key pair if needed during activation., guix-commits, 2020/09/29
- 06/13: services: hurd-vm: Initialize the guest's SSH/Guix keys at activation time., guix-commits, 2020/09/29
- 08/13: secret-service: Add a timeout when waiting for a client.,
guix-commits <=
- 10/13: services: secret-service: Move instance last in the list of services., guix-commits, 2020/09/29
- 13/13: services: hurd-vm: Add system test., guix-commits, 2020/09/29
- 11/13: services: secret-service: Add initial client/server handshake., guix-commits, 2020/09/29
- 09/13: secret-service: Fix file port leak in 'secret-service-send-secrets'., guix-commits, 2020/09/29
- 12/13: secret-service: Add proper logging procedure and log to syslog., guix-commits, 2020/09/29