Ruby

ahorek (Pavel Rosický) wrote:

Hi,
I found out that using the standard IMAP library isn't very safe. It can be forced to hang the whole application.

the problem is here

s = @sock.gets(CRLF)

-> the server accepted the connection but it didn't send any data. Now I need to reboot the server because my thread is blocked forever.

I have no other option but to use this

Timeout.timeout(timeout, Net::OpenTimeout) { Net::IMAP.new(host, port, ssl) }

which basically works, but I really don't want to create a new thread for each IMAP call, so I did these changes:
1/ replaced TCPSocket with Socket.tcp
2/ replaced sock.read and sock.gets with sock.read_nonblock

now it works as expected.

Patch
https://github.com/ruby/ruby/pull/1557

Thanks for the patch, but it doesn't seem enough because:

1. The :connect_timeout option of Socket.tcp doesn't work when DNS lookups by getaddrinfo block.
   A new thread by Timeout.timeout is needed to handle this case.
2. TLS handshakes in start_tls_session may also block. Protocol#ssl_socket_connect can be used to
   handle this case.

And I'm not sure whether open_timeout should have the default value because a new thread is required.

Thanks for the review. I've fixed the second case.

The only blocker is getaddrinfo now. It's a lowlevel system api that always blocks. I'll take a look if I can rewrite the ruby api to use getaddrinfo_a or getaddrinfo_ex (no thread is required). It'll be in a separate request.

Applied in changeset trunk|r58549.

net/imap: handle timeouts

Patch by Pavel Rosický. [Feature #13379] [ruby-core:80440]