Skip to content

Commit

Permalink
Fix the problematic SSH handshake timeout
Browse files Browse the repository at this point in the history
  • Loading branch information
NI committed Sep 2, 2019
1 parent c0ad0ad commit bf68b88
Showing 1 changed file with 29 additions and 48 deletions.
77 changes: 29 additions & 48 deletions application/commands/ssh.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -109,27 +109,7 @@ var (
type sshRemoteConnWrapper struct {
net.Conn

readTimeout time.Duration
enableTimeout bool
retryTimeout func() bool
}

func (s *sshRemoteConnWrapper) SetReadDeadline(t time.Time) error {
s.enableTimeout = false

return s.Conn.SetReadDeadline(t)
}

func (s *sshRemoteConnWrapper) SetWriteDeadline(t time.Time) error {
s.enableTimeout = false

return s.Conn.SetWriteDeadline(t)
}

func (s *sshRemoteConnWrapper) SetDeadline(t time.Time) error {
s.enableTimeout = false

return s.Conn.SetDeadline(t)
requestTimeoutRetry func(s *sshRemoteConnWrapper) bool
}

func (s *sshRemoteConnWrapper) Read(b []byte) (int, error) {
Expand All @@ -139,36 +119,24 @@ func (s *sshRemoteConnWrapper) Read(b []byte) (int, error) {
return rLen, nil
}

if !s.enableTimeout {
return rLen, rErr
}

netErr, isNetErr := rErr.(net.Error)

if !isNetErr || !netErr.Timeout() {
if !isNetErr || !netErr.Timeout() || !s.requestTimeoutRetry(s) {
return rLen, rErr
}

s.Conn.SetReadDeadline(time.Now().Add(s.readTimeout))

for {
rLen, rErr := s.Conn.Read(b)

if rErr == nil {
return rLen, nil
}

if !s.enableTimeout {
return rLen, rErr
}

netErr, isNetErr := rErr.(net.Error)

if !isNetErr || !netErr.Timeout() || !s.retryTimeout() {
if !isNetErr || !netErr.Timeout() || !s.requestTimeoutRetry(s) {
return rLen, rErr
}

s.Conn.SetReadDeadline(time.Now().Add(s.readTimeout))
}
}

Expand All @@ -188,6 +156,7 @@ type sshClient struct {
cfg command.Configuration
remoteCloseWait sync.WaitGroup
remoteReadTimeoutRetry bool
remoteReadForceRetryNextTimeout bool
remoteReadTimeoutRetryLock sync.Mutex
credentialReceive chan []byte
credentialProcessed bool
Expand All @@ -210,6 +179,7 @@ func newSSH(
cfg: cfg,
remoteCloseWait: sync.WaitGroup{},
remoteReadTimeoutRetry: false,
remoteReadForceRetryNextTimeout: false,
remoteReadTimeoutRetryLock: sync.Mutex{},
credentialReceive: make(chan []byte, 1),
credentialProcessed: false,
Expand Down Expand Up @@ -390,6 +360,7 @@ func (d *sshClient) disableRemoteReadTimeoutRetry() {
defer d.remoteReadTimeoutRetryLock.Unlock()

d.remoteReadTimeoutRetry = false
d.remoteReadForceRetryNextTimeout = true
}

func (d *sshClient) dialRemote(
Expand All @@ -402,21 +373,29 @@ func (d *sshClient) dialRemote(
return nil, nil, err
}

conn.SetReadDeadline(time.Now().Add(config.Timeout))

sshConn := sshRemoteConnWrapper{
Conn: conn,
readTimeout: config.Timeout,
enableTimeout: true,
retryTimeout: func() bool {
sshConn := &sshRemoteConnWrapper{
Conn: conn,
requestTimeoutRetry: func(s *sshRemoteConnWrapper) bool {
d.remoteReadTimeoutRetryLock.Lock()
defer d.remoteReadTimeoutRetryLock.Unlock()

return d.remoteReadTimeoutRetry
if !d.remoteReadTimeoutRetry {
if !d.remoteReadForceRetryNextTimeout {
return false
}

d.remoteReadForceRetryNextTimeout = false
}

s.SetReadDeadline(time.Now().Add(config.Timeout))

return true
},
}

c, chans, reqs, err := ssh.NewClientConn(&sshConn, addr, config)
sshConn.SetReadDeadline(time.Now().Add(config.Timeout))

c, chans, reqs, err := ssh.NewClientConn(sshConn, addr, config)

if err != nil {
sshConn.Close()
Expand All @@ -425,11 +404,13 @@ func (d *sshClient) dialRemote(
}

return ssh.NewClient(c, chans, reqs), func() {
if sshConn.enableTimeout {
sshConn.SetReadDeadline(sshEmptyTime)
}
d.remoteReadTimeoutRetryLock.Lock()
defer d.remoteReadTimeoutRetryLock.Unlock()

d.remoteReadTimeoutRetry = false
d.remoteReadForceRetryNextTimeout = true

sshConn.enableTimeout = false
sshConn.SetReadDeadline(sshEmptyTime)
}, nil
}

Expand Down

0 comments on commit bf68b88

Please sign in to comment.