XPC: reply to unknown routes and make the request timeout actually cancel the waiter#1862
Open
radheradhe01 wants to merge 1 commit into
Open
XPC: reply to unknown routes and make the request timeout actually cancel the waiter#1862radheradhe01 wants to merge 1 commit into
radheradhe01 wants to merge 1 commit into
Conversation
…ncel the waiter
### Problem
Two related issues in the XPC request path:
1. **Unknown route hangs the client.** `XPCServer` dispatches with `if let handler = routes[route] { ... }` and **no `else`**. An unknown route produces no reply at all, so the client blocks until its timeout (or forever, if it sent none).
2. **The client timeout is illusory.** `XPCClient.send` races a timeout task against the reply task in a `withThrowingTaskGroup`. The reply task uses `withCheckedThrowingContinuation`, which is **not** cancellation-aware. When the timeout fires, the group tears down and awaits the reply task — which only completes when the daemon actually replies. Against a live-but-hung daemon the "timeout" never returns.
### Fix
- `XPCServer`: add the `else` branch and reply with an `invalidArgument` error for unknown routes.
- `XPCClient`: wrap the reply task in `withTaskCancellationHandler` and bridge the continuation through a small resume-once box (`XPCReplyBox`). On cancellation the continuation is resumed promptly; a late XPC reply becomes a no-op. The box guarantees the continuation is resumed exactly once.
### Notes
The connection is left intact on timeout; only the pending request is abandoned.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Problem
Two related issues in the XPC request path:
Unknown route hangs the client.
XPCServerdispatches withif let handler = routes[route] { ... }and noelse. An unknown route produces no reply at all, so the client blocks until its timeout (or forever, if it sent none).The client timeout is illusory.
XPCClient.sendraces a timeout task against the reply task in awithThrowingTaskGroup. The reply task useswithCheckedThrowingContinuation, which is not cancellation-aware. When the timeout fires, the group tears down and awaits the reply task — which only completes when the daemon actually replies. Against a live-but-hung daemon the "timeout" never returns.Fix
XPCServer: add theelsebranch and reply with aninvalidArgumenterror for unknown routes.XPCClient: wrap the reply task inwithTaskCancellationHandlerand bridge the continuation through a small resume-once box (XPCReplyBox). On cancellation the continuation is resumed promptly; a late XPC reply becomes a no-op. The box guarantees the continuation is resumed exactly once.Notes
The connection is left intact on timeout; only the pending request is abandoned.