Make SNTP connection failure (more) reliable.

hlef · hlef · commit 136787e7c802 · 2024-08-13T13:29:51.000-07:00
There are two reliability issues in the SNTP code.

Right now if we fail in the last step of `ntp_time_update` (when we do
`Smtp_ReceiveTimeResponse`) because of a network error, we run into an
infinite loop of retries. Even worse, the loop does not print anything
(the system looks frozen).

Also, although `sntp_update` is run in a loop in the examples, we do not
reset the timeout before calling `sntp_update`, which leads subsequent
calls to always fail.

Address this by not calling again `Smtp_ReceiveTimeResponse` if we reach
the timeout and reset-ing the timeout before calling again `sntp_update`
in examples.

Signed-off-by: Hugo Lefeuvre &lt;hlef@cs.ubc.ca&gt;
diff --git a/examples/01.SNTP/sntp.cc b/examples/01.SNTP/sntp.cc
@@ -19,6 +19,7 @@ void __cheri_compartment("sntp_example") example()
 	{
 		Debug::log("Failed to update NTP time");
 		Timeout oneSecond{MS_TO_TICKS(1000)};
+		t = Timeout{MS_TO_TICKS(5000)};
 	}
 	Debug::log("Updating NTP took {} ticks", t.elapsed);
 	t = UnlimitedTimeout;
diff --git a/examples/03.HTTPS/https.cc b/examples/03.HTTPS/https.cc
@@ -32,6 +32,7 @@ void __cheri_compartment("https_example") example()
 	{
 		Debug::log("Failed to update NTP time");
 		Timeout oneSecond{MS_TO_TICKS(1000)};
+		t = Timeout{MS_TO_TICKS(5000)};
 	}
 	Debug::log("Updating NTP took {} ticks", t.elapsed);
 	t = UnlimitedTimeout;
diff --git a/examples/04.MQTT/mqtt.cc b/examples/04.MQTT/mqtt.cc
@@ -96,6 +96,7 @@ void __cheri_compartment("mqtt_example") example()
 	{
 		Debug::log("Failed to update NTP time");
 		Timeout oneSecond{MS_TO_TICKS(1000)};
+		t = Timeout{MS_TO_TICKS(5000)};
 	}
 	Debug::log("Updating NTP took {} ticks", t.elapsed);
 	t = UnlimitedTimeout;
diff --git a/lib/sntp/sntp.cc b/lib/sntp/sntp.cc
@@ -410,6 +410,7 @@ namespace
 				SntpStatus_t lastStatus = SntpSuccess;
 				do
 				{
+					// `timeout` is updated through `context`.
 					status = Sntp_ReceiveTimeResponse(&context, 0);
 					if (status != lastStatus)
 					{
@@ -423,8 +424,21 @@ namespace
 						thread_sleep(&t);
 						timeout->elapse(t.elapsed);
 					}
-				} while (status == SntpNoResponseReceived);
-				Debug::log("Received new time fron NTP!");
+				} while (status == SntpNoResponseReceived &&
+				         timeout->may_block());
+
+				if (status != SntpSuccess)
+				{
+					Debug::log("Failed to receive SNTP time response: {}",
+					           status);
+					Timeout t{UnlimitedTimeout};
+					network_socket_close(
+					  &t, MALLOC_CAPABILITY, udpContext.socket);
+					timeout->elapse(t.elapsed);
+					return ntp_error_to_errno(status);
+				}
+
+				Debug::log("Received new time from NTP!");
 			}
 			else
 			{

Original file line number	Diff line number	Diff line change
`@@ -19,6 +19,7 @@ void __cheri_compartment("sntp_example") example()`
`19`	`19`	`{`
`20`	`20`	`Debug::log("Failed to update NTP time");`
`21`	`21`	`Timeout oneSecond{MS_TO_TICKS(1000)};`
	`22`	`+ t = Timeout{MS_TO_TICKS(5000)};`
`22`	`23`	`}`
`23`	`24`	`Debug::log("Updating NTP took {} ticks", t.elapsed);`
`24`	`25`	`t = UnlimitedTimeout;`
Original file line number	Diff line number	Diff line change
`@@ -32,6 +32,7 @@ void __cheri_compartment("https_example") example()`
`32`	`32`	`{`
`33`	`33`	`Debug::log("Failed to update NTP time");`
`34`	`34`	`Timeout oneSecond{MS_TO_TICKS(1000)};`
	`35`	`+ t = Timeout{MS_TO_TICKS(5000)};`
`35`	`36`	`}`
`36`	`37`	`Debug::log("Updating NTP took {} ticks", t.elapsed);`
`37`	`38`	`t = UnlimitedTimeout;`
Original file line number	Diff line number	Diff line change
`@@ -96,6 +96,7 @@ void __cheri_compartment("mqtt_example") example()`
`96`	`96`	`{`
`97`	`97`	`Debug::log("Failed to update NTP time");`
`98`	`98`	`Timeout oneSecond{MS_TO_TICKS(1000)};`
	`99`	`+ t = Timeout{MS_TO_TICKS(5000)};`
`99`	`100`	`}`
`100`	`101`	`Debug::log("Updating NTP took {} ticks", t.elapsed);`
`101`	`102`	`t = UnlimitedTimeout;`