diff options
author | Werner Koch <wk@gnupg.org> | 2016-11-12 11:02:48 +0100 |
---|---|---|
committer | Werner Koch <wk@gnupg.org> | 2016-11-12 11:03:10 +0100 |
commit | 6bf698197222bf6081c249c815aebb075e8ec820 (patch) | |
tree | 0681b0eea4908259d88103feda36b03e9d976f43 | |
parent | agent: Kludge to mitigate blocking calls in Libgcrypt. (diff) | |
download | gnupg2-6bf698197222bf6081c249c815aebb075e8ec820.tar.xz gnupg2-6bf698197222bf6081c249c815aebb075e8ec820.zip |
agent: Improve concurrency when Libgcrypt 1.8 is used.
* agent/gpg-agent.c (thread_init_once): Tell Libgcrypt to reinit the
system call clamp.
(agent_libgcrypt_progress_cb): Do not sleep if Libgcrypt is recent
enough.
--
This patch prepares for a feature comming with Libgcrypt 1.8.
Signed-off-by: Werner Koch <wk@gnupg.org>
-rw-r--r-- | agent/gpg-agent.c | 24 |
1 files changed, 15 insertions, 9 deletions
diff --git a/agent/gpg-agent.c b/agent/gpg-agent.c index d767879ce..1433f7f6a 100644 --- a/agent/gpg-agent.c +++ b/agent/gpg-agent.c @@ -901,6 +901,14 @@ thread_init_once (void) npth_init (); } gpgrt_set_syscall_clamp (npth_unprotect, npth_protect); + /* Now that we have set the syscall clamp we need to tell Libgcrypt + * that it should get them from libgpg-error. Note that Libgcrypt + * has already been initialized but at that point nPth was not + * initialized and thus Libgcrypt could not set its system call + * clamp. */ +#if GCRYPT_VERSION_NUMBER >= 0x010800 /* 1.8.0 */ + gcry_control (GCRYCTL_REINIT_SYSCALL_CLAMP, 0, 0); +#endif } @@ -1748,16 +1756,14 @@ agent_libgcrypt_progress_cb (void *data, const char *what, int printchar, if (dispatch && dispatch->cb) dispatch->cb (dispatch->ctrl, what, printchar, current, total); - /* If Libgcrypt tells us that it needs more entropy, we better take - * a nap to give other threads a chance to run. Note that Libgcrypt - * does not know about nPth and thus when it selects and reads from - * /dev/random this will block the process. Maybe we should add a - * function similar to gpgrt_set_syscall_clamp to Libgcrypt or use - * those clamps directly. For now sleeping for 100ms seems to be - * appropriate. */ + /* Libgcrypt < 1.8 does not know about nPth and thus when it reads + * from /dev/random this will block the process. To mitigate this + * problem we take a short nap when Libgcrypt tells us that it needs + * more entropy. This way other threads have chance to run. */ +#if GCRYPT_VERSION_NUMBER < 0x010800 /* 1.8.0 */ if (what && !strcmp (what, "need_entropy")) - npth_usleep (100000); - + npth_usleep (100000); /* 100ms */ +#endif } |