trezor-agent/libagent/server.py

"""UNIX-domain socket server for ssh-agent implementation."""
import contextlib
import logging
import os
import socket
import subprocess
import threading

from . import util

log = logging.getLogger(__name__)


def remove_file(path, remove=os.remove, exists=os.path.exists):
    """Remove file, and raise OSError if still exists."""
    try:
        remove(path)
    except OSError:
        if exists(path):
            raise


@contextlib.contextmanager
def unix_domain_socket_server(sock_path):
    """
    Create UNIX-domain socket on specified path.

    Listen on it, and delete it after the generated context is over.
    """
    log.debug('serving on %s', sock_path)
    remove_file(sock_path)

    server = socket.socket(socket.AF_UNIX, socket.SOCK_STREAM)
    server.bind(sock_path)
    server.listen(1)
    try:
        yield server
    finally:
        remove_file(sock_path)


def handle_connection(conn, handler, mutex):
    """
    Handle a single connection using the specified protocol handler in a loop.

    Since this function may be called concurrently from server_thread,
    the specified mutex is used to synchronize the device handling.

    Exit when EOFError is raised.
    All other exceptions are logged as warnings.
    """
    try:
        log.debug('welcome agent')
        with contextlib.closing(conn):
            while True:
                msg = util.read_frame(conn)
                with mutex:
                    reply = handler.handle(msg=msg)
                util.send(conn, reply)
    except EOFError:
        log.debug('goodbye agent')
    except Exception as e:  # pylint: disable=broad-except
        log.warning('error: %s', e, exc_info=True)


def retry(func, exception_type, quit_event):
    """
    Run the function, retrying when the specified exception_type occurs.

    Poll quit_event on each iteration, to be responsive to an external
    exit request.
    """
    while True:
        if quit_event.is_set():
            raise StopIteration
        try:
            return func()
        except exception_type:
            pass


def server_thread(sock, handle_conn, quit_event):
    """Run a server on the specified socket."""
    log.debug('server thread started')

    def accept_connection():
        conn, _ = sock.accept()
        conn.settimeout(None)
        return conn

    while True:
        log.debug('waiting for connection on %s', sock.getsockname())
        try:
            conn = retry(accept_connection, socket.timeout, quit_event)
        except StopIteration:
            log.debug('server stopped')
            break
        # Handle connections from SSH concurrently.
        threading.Thread(target=handle_conn,
                         kwargs=dict(conn=conn)).start()
    log.debug('server thread stopped')


@contextlib.contextmanager
def spawn(func, kwargs):
    """Spawn a thread, and join it after the context is over."""
    t = threading.Thread(target=func, kwargs=kwargs)
    t.start()
    yield
    t.join()


def run_process(command, environ):
    """
    Run the specified process and wait until it finishes.

    Use environ dict for environment variables.
    """
    log.info('running %r with %r', command, environ)
    env = dict(os.environ)
    env.update(environ)
    try:
        p = subprocess.Popen(args=command, env=env)
    except OSError as e:
        raise OSError('cannot run %r: %s' % (command, e))
    log.debug('subprocess %d is running', p.pid)
    ret = p.wait()
    log.debug('subprocess %d exited: %d', p.pid, ret)
    return ret
server: add docstrings 2016-02-19 09:19:01 +00:00			`"""UNIX-domain socket server for ssh-agent implementation."""`
sort imports using isort tool 2016-01-09 14:06:47 +00:00			`import contextlib`
			`import logging`
add support Trezor SSH agent 2015-06-06 14:52:10 +00:00			`import os`
sort imports using isort tool 2016-01-09 14:06:47 +00:00			`import socket`
add support Trezor SSH agent 2015-06-06 14:52:10 +00:00			`import subprocess`
			`import threading`

server: pass handler and add debug option 2016-01-26 19:14:52 +00:00			`from . import util`
add support Trezor SSH agent 2015-06-06 14:52:10 +00:00
fix PEP8 2015-06-16 07:20:11 +00:00			`log = logging.getLogger(__name__)`

sshagent: add spaces between functions 2015-06-16 07:03:48 +00:00
server: improve coverage 2015-08-13 15:03:25 +00:00			`def remove_file(path, remove=os.remove, exists=os.path.exists):`
server: add docstrings 2016-02-19 09:19:01 +00:00			`"""Remove file, and raise OSError if still exists."""`
add support Trezor SSH agent 2015-06-06 14:52:10 +00:00			`try:`
server: improve coverage 2015-08-13 15:03:25 +00:00			`remove(path)`
add support Trezor SSH agent 2015-06-06 14:52:10 +00:00			`except OSError:`
server: improve coverage 2015-08-13 15:03:25 +00:00			`if exists(path):`
add support Trezor SSH agent 2015-06-06 14:52:10 +00:00			`raise`

server: improve coverage 2015-08-13 15:03:25 +00:00
			`@contextlib.contextmanager`
			`def unix_domain_socket_server(sock_path):`
server: add docstrings 2016-02-19 09:19:01 +00:00			`"""`
			`Create UNIX-domain socket on specified path.`

			`Listen on it, and delete it after the generated context is over.`
			`"""`
server: remove 'SSH_AUTH_SOCK=' from logging 2016-11-06 18:50:02 +00:00			`log.debug('serving on %s', sock_path)`
server: improve coverage 2015-08-13 15:03:25 +00:00			`remove_file(sock_path)`

add support Trezor SSH agent 2015-06-06 14:52:10 +00:00			`server = socket.socket(socket.AF_UNIX, socket.SOCK_STREAM)`
			`server.bind(sock_path)`
			`server.listen(1)`
			`try:`
			`yield server`
			`finally:`
server: improve coverage 2015-08-13 15:03:25 +00:00			`remove_file(sock_path)`
add support Trezor SSH agent 2015-06-06 14:52:10 +00:00
sshagent: add spaces between functions 2015-06-16 07:03:48 +00:00
ssh: handle connections concurrently 2016-10-23 14:35:12 +00:00			`def handle_connection(conn, handler, mutex):`
server: add docstrings 2016-02-19 09:19:01 +00:00			`"""`
			`Handle a single connection using the specified protocol handler in a loop.`

ssh: handle connections concurrently 2016-10-23 14:35:12 +00:00			`Since this function may be called concurrently from server_thread,`
			`the specified mutex is used to synchronize the device handling.`

server: add docstrings 2016-02-19 09:19:01 +00:00			`Exit when EOFError is raised.`
			`All other exceptions are logged as warnings.`
			`"""`
code refactoring 2015-06-15 15:13:10 +00:00			`try:`
			`log.debug('welcome agent')`
ssh: handle connections concurrently 2016-10-23 14:35:12 +00:00			`with contextlib.closing(conn):`
			`while True:`
			`msg = util.read_frame(conn)`
			`with mutex:`
			`reply = handler.handle(msg=msg)`
			`util.send(conn, reply)`
code refactoring 2015-06-15 15:13:10 +00:00			`except EOFError:`
			`log.debug('goodbye agent')`
server: don't crash after single exception 2016-01-08 18:46:49 +00:00			`except Exception as e: # pylint: disable=broad-except`
			`log.warning('error: %s', e, exc_info=True)`
add support Trezor SSH agent 2015-06-06 14:52:10 +00:00
sshagent: add spaces between functions 2015-06-16 07:03:48 +00:00
server: stop the server via a threading.Event It seems that Mac OS does not support calling socket.shutdown(socket.SHUT_RD) on a listening socket (see https://github.com/romanz/trezor-agent/issues/6). The following implementation will set the accept() timeout to 0.1s and stop the server if a threading.Event (named "quit_event") is set by the main thread. 2016-01-08 18:28:38 +00:00			`def retry(func, exception_type, quit_event):`
server: add docstrings 2016-02-19 09:19:01 +00:00			`"""`
			`Run the function, retrying when the specified exception_type occurs.`

			`Poll quit_event on each iteration, to be responsive to an external`
			`exit request.`
			`"""`
server: stop the server via a threading.Event It seems that Mac OS does not support calling socket.shutdown(socket.SHUT_RD) on a listening socket (see https://github.com/romanz/trezor-agent/issues/6). The following implementation will set the accept() timeout to 0.1s and stop the server if a threading.Event (named "quit_event") is set by the main thread. 2016-01-08 18:28:38 +00:00			`while True:`
			`if quit_event.is_set():`
			`raise StopIteration`
			`try:`
			`return func()`
			`except exception_type:`
			`pass`


server: refactor server_thread() to decouple it from handle_connection() 2016-10-21 18:55:27 +00:00			`def server_thread(sock, handle_conn, quit_event):`
server: add docstrings 2016-02-19 09:19:01 +00:00			`"""Run a server on the specified socket."""`
agent: rename "worker" -> "server" 2015-06-15 06:16:47 +00:00			`log.debug('server thread started')`
server: stop the server via a threading.Event It seems that Mac OS does not support calling socket.shutdown(socket.SHUT_RD) on a listening socket (see https://github.com/romanz/trezor-agent/issues/6). The following implementation will set the accept() timeout to 0.1s and stop the server if a threading.Event (named "quit_event") is set by the main thread. 2016-01-08 18:28:38 +00:00
			`def accept_connection():`
server: add docstrings 2016-02-19 09:19:01 +00:00			`conn, _ = sock.accept()`
server: make sure accepted UNIX sockets are blocking It was a problem on Mac OS X, where sometimes we got EAGAIN errors from calling socket.recv() on them. 2016-01-18 20:49:27 +00:00			`conn.settimeout(None)`
server: stop the server via a threading.Event It seems that Mac OS does not support calling socket.shutdown(socket.SHUT_RD) on a listening socket (see https://github.com/romanz/trezor-agent/issues/6). The following implementation will set the accept() timeout to 0.1s and stop the server if a threading.Event (named "quit_event") is set by the main thread. 2016-01-08 18:28:38 +00:00			`return conn`

add support Trezor SSH agent 2015-06-06 14:52:10 +00:00			`while True:`
server: add docstrings 2016-02-19 09:19:01 +00:00			`log.debug('waiting for connection on %s', sock.getsockname())`
add support Trezor SSH agent 2015-06-06 14:52:10 +00:00			`try:`
server: stop the server via a threading.Event It seems that Mac OS does not support calling socket.shutdown(socket.SHUT_RD) on a listening socket (see https://github.com/romanz/trezor-agent/issues/6). The following implementation will set the accept() timeout to 0.1s and stop the server if a threading.Event (named "quit_event") is set by the main thread. 2016-01-08 18:28:38 +00:00			`conn = retry(accept_connection, socket.timeout, quit_event)`
			`except StopIteration:`
			`log.debug('server stopped')`
add support Trezor SSH agent 2015-06-06 14:52:10 +00:00			`break`
ssh: handle connections concurrently 2016-10-23 14:35:12 +00:00			`# Handle connections from SSH concurrently.`
			`threading.Thread(target=handle_conn,`
			`kwargs=dict(conn=conn)).start()`
agent: rename "worker" -> "server" 2015-06-15 06:16:47 +00:00			`log.debug('server thread stopped')`
add support Trezor SSH agent 2015-06-06 14:52:10 +00:00

			`@contextlib.contextmanager`
server: stop the server via a threading.Event It seems that Mac OS does not support calling socket.shutdown(socket.SHUT_RD) on a listening socket (see https://github.com/romanz/trezor-agent/issues/6). The following implementation will set the accept() timeout to 0.1s and stop the server if a threading.Event (named "quit_event") is set by the main thread. 2016-01-08 18:28:38 +00:00			`def spawn(func, kwargs):`
server: add docstrings 2016-02-19 09:19:01 +00:00			`"""Spawn a thread, and join it after the context is over."""`
add support Trezor SSH agent 2015-06-06 14:52:10 +00:00			`t = threading.Thread(target=func, kwargs=kwargs)`
			`t.start()`
			`yield`
			`t.join()`


main: remove unneeded use_shell parameter 2016-03-05 09:00:07 +00:00			`def run_process(command, environ):`
server: add docstrings 2016-02-19 09:19:01 +00:00			`"""`
			`Run the specified process and wait until it finishes.`

			`Use environ dict for environment variables.`
			`"""`
server: log command with INFO level 2016-01-08 14:04:57 +00:00			`log.info('running %r with %r', command, environ)`
server: serve should be a context manager 2015-06-17 13:52:11 +00:00			`env = dict(os.environ)`
			`env.update(environ)`
			`try:`
main: remove unneeded use_shell parameter 2016-03-05 09:00:07 +00:00			`p = subprocess.Popen(args=command, env=env)`
server: serve should be a context manager 2015-06-17 13:52:11 +00:00			`except OSError as e:`
			`raise OSError('cannot run %r: %s' % (command, e))`
			`log.debug('subprocess %d is running', p.pid)`
			`ret = p.wait()`
			`log.debug('subprocess %d exited: %d', p.pid, ret)`
code refactoring 2015-06-15 15:13:10 +00:00			`return ret`