summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorWerner Koch <wk@gnupg.org>2016-11-12 11:02:48 +0100
committerWerner Koch <wk@gnupg.org>2016-11-12 11:03:10 +0100
commit6bf698197222bf6081c249c815aebb075e8ec820 (patch)
tree0681b0eea4908259d88103feda36b03e9d976f43
parentagent: Kludge to mitigate blocking calls in Libgcrypt. (diff)
downloadgnupg2-6bf698197222bf6081c249c815aebb075e8ec820.tar.xz
gnupg2-6bf698197222bf6081c249c815aebb075e8ec820.zip
agent: Improve concurrency when Libgcrypt 1.8 is used.
* agent/gpg-agent.c (thread_init_once): Tell Libgcrypt to reinit the system call clamp. (agent_libgcrypt_progress_cb): Do not sleep if Libgcrypt is recent enough. -- This patch prepares for a feature comming with Libgcrypt 1.8. Signed-off-by: Werner Koch <wk@gnupg.org>
-rw-r--r--agent/gpg-agent.c24
1 files changed, 15 insertions, 9 deletions
diff --git a/agent/gpg-agent.c b/agent/gpg-agent.c
index d767879ce..1433f7f6a 100644
--- a/agent/gpg-agent.c
+++ b/agent/gpg-agent.c
@@ -901,6 +901,14 @@ thread_init_once (void)
npth_init ();
}
gpgrt_set_syscall_clamp (npth_unprotect, npth_protect);
+ /* Now that we have set the syscall clamp we need to tell Libgcrypt
+ * that it should get them from libgpg-error. Note that Libgcrypt
+ * has already been initialized but at that point nPth was not
+ * initialized and thus Libgcrypt could not set its system call
+ * clamp. */
+#if GCRYPT_VERSION_NUMBER >= 0x010800 /* 1.8.0 */
+ gcry_control (GCRYCTL_REINIT_SYSCALL_CLAMP, 0, 0);
+#endif
}
@@ -1748,16 +1756,14 @@ agent_libgcrypt_progress_cb (void *data, const char *what, int printchar,
if (dispatch && dispatch->cb)
dispatch->cb (dispatch->ctrl, what, printchar, current, total);
- /* If Libgcrypt tells us that it needs more entropy, we better take
- * a nap to give other threads a chance to run. Note that Libgcrypt
- * does not know about nPth and thus when it selects and reads from
- * /dev/random this will block the process. Maybe we should add a
- * function similar to gpgrt_set_syscall_clamp to Libgcrypt or use
- * those clamps directly. For now sleeping for 100ms seems to be
- * appropriate. */
+ /* Libgcrypt < 1.8 does not know about nPth and thus when it reads
+ * from /dev/random this will block the process. To mitigate this
+ * problem we take a short nap when Libgcrypt tells us that it needs
+ * more entropy. This way other threads have chance to run. */
+#if GCRYPT_VERSION_NUMBER < 0x010800 /* 1.8.0 */
if (what && !strcmp (what, "need_entropy"))
- npth_usleep (100000);
-
+ npth_usleep (100000); /* 100ms */
+#endif
}