[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
05/06: file-systems: Spawn a REPL only when interaction is possible.
|
From: |
guix-commits |
|
Subject: |
05/06: file-systems: Spawn a REPL only when interaction is possible. |
|
Date: |
Tue, 18 Dec 2018 10:04:37 -0500 (EST) |
civodul pushed a commit to branch master
in repository guix.
commit 6ea6e1476ff4a18d4b4b864c3065d18ed99c69af
Author: Ludovic Courtès <address@hidden>
Date: Tue Dec 18 14:51:56 2018 +0100
file-systems: Spawn a REPL only when interaction is possible.
Fixes <https://bugs.gnu.org/23697>.
Reported by Jan Nieuwenhuizen <address@hidden>.
* gnu/build/file-systems.scm (check-file-system): Call 'start-repl' only
if current-input-port passes 'isatty?'.
* gnu/services/shepherd.scm (shepherd-configuration-file): After
'for-each' expression, call 'redirect-port'.
* gnu/tests/base.scm (run-basic-test)["stdin is /dev/null"]: New test.
---
gnu/build/file-systems.scm | 9 ++++++---
gnu/services/shepherd.scm | 12 +++++++++++-
gnu/tests/base.scm | 15 +++++++++++++++
3 files changed, 32 insertions(+), 4 deletions(-)
diff --git a/gnu/build/file-systems.scm b/gnu/build/file-systems.scm
index 3f97afe..efd744a 100644
--- a/gnu/build/file-systems.scm
+++ b/gnu/build/file-systems.scm
@@ -535,10 +535,13 @@ were found."
(sleep 3)
(reboot))
('fatal-error
- (format (current-error-port)
- "File system check on ~a failed; spawning Bourne-like REPL~%"
+ (format (current-error-port) "File system check on ~a failed~%"
device)
- (start-repl %bournish-language)))
+
+ ;; Spawn a REPL only if someone would be able to interact with it.
+ (when (isatty? (current-input-port))
+ (format (current-error-port) "Spawning Bourne-like REPL.~%")
+ (start-repl %bournish-language))))
(format (current-error-port)
"No file system check procedure for ~a; skipping~%"
device)))
diff --git a/gnu/services/shepherd.scm b/gnu/services/shepherd.scm
index 49d08cc..12d649f 100644
--- a/gnu/services/shepherd.scm
+++ b/gnu/services/shepherd.scm
@@ -281,7 +281,17 @@ stored."
(start service)))
'#$(append-map shepherd-service-provision
(filter shepherd-service-auto-start?
- services)))))))
+ services)))
+
+ ;; Hang up stdin. At this point, we assume that 'start' methods
+ ;; that required user interaction on the console (e.g.,
+ ;; 'cryptsetup open' invocations, post-fsck emergency REPL) have
+ ;; completed. User interaction becomes impossible after this
+ ;; call; this avoids situations where services wrongfully lead
+ ;; PID 1 to read from stdin (the console), which users may not
+ ;; have access to (see <https://bugs.gnu.org/23697>).
+ (redirect-port (open-input-file "/dev/null")
+ (current-input-port))))))
(scheme-file "shepherd.conf" config)))
diff --git a/gnu/tests/base.scm b/gnu/tests/base.scm
index 03392ce..8d4e218 100644
--- a/gnu/tests/base.scm
+++ b/gnu/tests/base.scm
@@ -123,6 +123,21 @@ initialization step, such as entering a LUKS passphrase."
#f))))
marionette))
+ (test-eq "stdin is /dev/null"
+ 'eof
+ ;; Make sure services can no longer read from stdin once the
+ ;; system has booted.
+ (marionette-eval
+ `(begin
+ (use-modules (gnu services herd))
+ (start 'user-processes)
+ ((@@ (gnu services herd) eval-there)
+ '(let ((result (read (current-input-port))))
+ (if (eof-object? result)
+ 'eof
+ result))))
+ marionette))
+
(test-assert "shell and user commands"
;; Is everything in $PATH?
(zero? (marionette-eval '(system "
- branch master updated (83d4da1 -> 5de5f81), guix-commits, 2018/12/18
- 06/06: file-systems: Have the emergency REPL output to /dev/console., guix-commits, 2018/12/18
- 01/06: ui: Report file names in 'system-error' exceptions from 'execlp'., guix-commits, 2018/12/18
- 03/06: guix system: Clarify the three strategies available., guix-commits, 2018/12/18
- 04/06: doc: Remove stale reference to 'hydra.gnu.org'., guix-commits, 2018/12/18
- 05/06: file-systems: Spawn a REPL only when interaction is possible.,
guix-commits <=
- 02/06: doc: Fix typo in '.guix-channel' example., guix-commits, 2018/12/18