marcoallegretti/karapace
1
0
Fork 0
mirror of https://github.com/marcoallegretti/karapace.git synced 2026-03-26 21:43:09 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

feat: karapace-dbus — socket-activated D-Bus service with 11 methods

Browse source 
- org.karapace.Manager1 D-Bus interface
- 11 methods: ListEnvironments, GetEnvironmentStatus, GetEnvironmentHash,
  BuildEnvironment, BuildNamedEnvironment, DestroyEnvironment, RunEnvironment,
  RenameEnvironment, ListPresets, GarbageCollect, VerifyStore
- Name-aware resolution (env_id, short_id, name, prefix)
- Desktop notifications via notify-rust (non-fatal if daemon unavailable)
- Typed serde response structs (no hand-rolled JSON)
- 30-second idle timeout for socket activation
- Hardened systemd unit: ProtectSystem=strict, ProtectHome=read-only,
  PrivateTmp, NoNewPrivileges
This commit is contained in:
Marco Allegretti 2026-02-22 18:38:09 +01:00
parent 1416b0fc99
commit 38be2c584d
6 changed files with 4984 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

30
crates/karapace-dbus/Cargo.toml Normal file
View file

@ -0,0 +1,30 @@
[package]
name = "karapace-dbus"
description = "Socket-activated D-Bus desktop integration service for Karapace"
version.workspace = true
edition.workspace = true
license.workspace = true
repository.workspace = true
[lints]
workspace = true
[[bin]]
name = "karapace-dbus"
path = "src/main.rs"
[dependencies]
zbus.workspace = true
tokio.workspace = true
serde.workspace = true
serde_json.workspace = true
thiserror.workspace = true
tracing.workspace = true
tracing-subscriber.workspace = true
notify-rust.workspace = true
karapace-core = { path = "../karapace-core" }
karapace-schema = { path = "../karapace-schema" }
karapace-store = { path = "../karapace-store" }
[dev-dependencies]
tempfile.workspace = true

4190
crates/karapace-dbus/karapace-dbus.cdx.json Normal file
View file

File diff suppressed because it is too large Load diff

672
crates/karapace-dbus/src/interface.rs Normal file
View file

@ -0,0 +1,672 @@
use karapace_core::StoreLock;
use karapace_store::StoreLayout;
use serde::{Deserialize, Serialize};
use tracing::{error, info};
use zbus::interface;
pub const DBUS_INTERFACE: &str = "org.karapace.Manager1";
pub const DBUS_PATH: &str = "/org/karapace/Manager1";
pub const API_VERSION: u32 = 1;
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct EnvInfo {
pub env_id: String,
pub short_id: String,
#[serde(skip_serializing_if = "Option::is_none")]
pub name: Option<String>,
pub state: String,
}
#[derive(Debug, Serialize)]
struct DestroyResponse {
destroyed: String,
}
#[derive(Debug, Serialize)]
struct EnterResponse {
entered: String,
}
#[derive(Debug, Serialize)]
struct RenameResponse {
env_id: String,
name: String,
}
fn to_fdo(msg: impl std::fmt::Display) -> zbus::fdo::Error {
zbus::fdo::Error::Failed(msg.to_string())
}
fn send_notification(summary: &str, body: &str) {
if let Err(e) = notify_rust::Notification::new()
.appname("Karapace")
.summary(summary)
.body(body)
.timeout(notify_rust::Timeout::Milliseconds(5000))
.show()
{
tracing::debug!("desktop notification failed (non-fatal): {e}");
}
}
pub struct KarapaceManager {
store_root: String,
}
impl KarapaceManager {
pub fn new(store_root: String) -> Self {
Self { store_root }
}
fn engine(&self) -> karapace_core::Engine {
karapace_core::Engine::new(&self.store_root)
}
fn acquire_lock(&self) -> Result<StoreLock, zbus::fdo::Error> {
let layout = StoreLayout::new(&self.store_root);
StoreLock::acquire(&layout.lock_file()).map_err(|e| {
error!("store lock acquisition failed: {e}");
to_fdo(format!("store lock: {e}"))
})
}
fn resolve_env(&self, id_or_name: &str) -> Result<String, zbus::fdo::Error> {
let engine = self.engine();
if id_or_name.len() == 64 {
return Ok(id_or_name.to_owned());
}
let envs = engine.list().map_err(to_fdo)?;
for e in &envs {
if *e.env_id == *id_or_name
|| *e.short_id == *id_or_name
|| e.name.as_deref() == Some(id_or_name)
{
return Ok(e.env_id.to_string());
}
}
for e in &envs {
if e.env_id.starts_with(id_or_name) || e.short_id.starts_with(id_or_name) {
return Ok(e.env_id.to_string());
}
}
Err(to_fdo(format!("no environment matching '{id_or_name}'")))
}
}
#[allow(clippy::unused_async)]
#[interface(name = "org.karapace.Manager1")]
impl KarapaceManager {
#[zbus(property)]
async fn api_version(&self) -> u32 {
API_VERSION
}
#[zbus(property)]
async fn store_root(&self) -> &str {
&self.store_root
}
async fn list_environments(&self) -> Result<String, zbus::fdo::Error> {
info!("D-Bus: ListEnvironments");
let envs = self.engine().list().map_err(|e| {
error!("ListEnvironments failed: {e}");
to_fdo(e)
})?;
let infos: Vec<EnvInfo> = envs
.iter()
.map(|e| EnvInfo {
env_id: e.env_id.to_string(),
short_id: e.short_id.to_string(),
name: e.name.clone(),
state: e.state.to_string(),
})
.collect();
serde_json::to_string(&infos).map_err(to_fdo)
}
async fn get_environment_status(&self, id_or_name: String) -> Result<String, zbus::fdo::Error> {
info!("D-Bus: GetEnvironmentStatus {id_or_name}");
let resolved = self.resolve_env(&id_or_name)?;
let meta = self.engine().inspect(&resolved).map_err(|e| {
error!("GetEnvironmentStatus failed for {id_or_name}: {e}");
to_fdo(e)
})?;
serde_json::to_string(&EnvInfo {
env_id: meta.env_id.to_string(),
short_id: meta.short_id.to_string(),
name: meta.name,
state: meta.state.to_string(),
})
.map_err(to_fdo)
}
async fn get_environment_hash(&self, id_or_name: String) -> Result<String, zbus::fdo::Error> {
info!("D-Bus: GetEnvironmentHash {id_or_name}");
let resolved = self.resolve_env(&id_or_name)?;
let meta = self.engine().inspect(&resolved).map_err(|e| {
error!("GetEnvironmentHash failed for {id_or_name}: {e}");
to_fdo(e)
})?;
Ok(meta.env_id.to_string())
}
async fn build_environment(&self, manifest_path: String) -> Result<String, zbus::fdo::Error> {
info!("D-Bus: BuildEnvironment {manifest_path}");
let _lock = self.acquire_lock()?;
let result = match self.engine().build(std::path::Path::new(&manifest_path)) {
Ok(r) => {
send_notification(
"Build Complete",
&format!("Environment {} built", &r.identity.short_id),
);
r
}
Err(e) => {
send_notification("Build Failed", &e.to_string());
error!("BuildEnvironment failed: {e}");
return Err(to_fdo(e));
}
};
serde_json::to_string(&EnvInfo {
env_id: result.identity.env_id.to_string(),
short_id: result.identity.short_id.to_string(),
name: None,
state: "built".to_owned(),
})
.map_err(to_fdo)
}
async fn build_named_environment(
&self,
manifest_path: String,
name: String,
) -> Result<String, zbus::fdo::Error> {
info!("D-Bus: BuildNamedEnvironment {manifest_path} name={name}");
let _lock = self.acquire_lock()?;
let engine = self.engine();
let result = match engine.build(std::path::Path::new(&manifest_path)) {
Ok(r) => {
send_notification(
"Build Complete",
&format!("Environment '{}' ({}) built", name, &r.identity.short_id),
);
r
}
Err(e) => {
send_notification("Build Failed", &e.to_string());
error!("BuildNamedEnvironment failed: {e}");
return Err(to_fdo(e));
}
};
engine
.set_name(&result.identity.env_id, Some(name.clone()))
.map_err(|e| {
error!("BuildNamedEnvironment set_name failed: {e}");
to_fdo(e)
})?;
serde_json::to_string(&EnvInfo {
env_id: result.identity.env_id.to_string(),
short_id: result.identity.short_id.to_string(),
name: Some(name),
state: "built".to_owned(),
})
.map_err(to_fdo)
}
async fn destroy_environment(&self, id_or_name: String) -> Result<String, zbus::fdo::Error> {
info!("D-Bus: DestroyEnvironment {id_or_name}");
let resolved = self.resolve_env(&id_or_name)?;
let _lock = self.acquire_lock()?;
self.engine().destroy(&resolved).map_err(|e| {
error!("DestroyEnvironment failed for {id_or_name}: {e}");
to_fdo(e)
})?;
serde_json::to_string(&DestroyResponse {
destroyed: resolved,
})
.map_err(to_fdo)
}
async fn run_environment(&self, id_or_name: String) -> Result<String, zbus::fdo::Error> {
info!("D-Bus: RunEnvironment {id_or_name}");
let resolved = self.resolve_env(&id_or_name)?;
let _lock = self.acquire_lock()?;
self.engine().enter(&resolved).map_err(|e| {
error!("RunEnvironment failed for {id_or_name}: {e}");
to_fdo(e)
})?;
serde_json::to_string(&EnterResponse { entered: resolved }).map_err(to_fdo)
}
async fn rename_environment(
&self,
id_or_name: String,
new_name: String,
) -> Result<String, zbus::fdo::Error> {
info!("D-Bus: RenameEnvironment {id_or_name} -> {new_name}");
let resolved = self.resolve_env(&id_or_name)?;
let _lock = self.acquire_lock()?;
self.engine().rename(&resolved, &new_name).map_err(|e| {
error!("RenameEnvironment failed: {e}");
to_fdo(e)
})?;
serde_json::to_string(&RenameResponse {
env_id: resolved,
name: new_name,
})
.map_err(to_fdo)
}
async fn list_presets(&self) -> Result<String, zbus::fdo::Error> {
info!("D-Bus: ListPresets");
let presets: Vec<serde_json::Value> = karapace_schema::list_presets()
.iter()
.map(|p| {
serde_json::json!({
"name": p.name,
"description": p.description,
})
})
.collect();
serde_json::to_string(&presets).map_err(to_fdo)
}
async fn garbage_collect(&self, dry_run: bool) -> Result<String, zbus::fdo::Error> {
info!("D-Bus: GarbageCollect (dry_run={dry_run})");
let lock = self.acquire_lock()?;
let report = self.engine().gc(&lock, dry_run).map_err(|e| {
error!("GarbageCollect failed: {e}");
to_fdo(e)
})?;
serde_json::to_string(&serde_json::json!({
"dry_run": dry_run,
"removed_envs": report.removed_envs,
"removed_layers": report.removed_layers,
"removed_objects": report.removed_objects,
}))
.map_err(to_fdo)
}
async fn verify_store(&self) -> Result<String, zbus::fdo::Error> {
info!("D-Bus: VerifyStore");
let layout = StoreLayout::new(&self.store_root);
let report = karapace_store::verify_store_integrity(&layout).map_err(|e| {
error!("VerifyStore failed: {e}");
to_fdo(e)
})?;
serde_json::to_string(&serde_json::json!({
"checked": report.checked,
"passed": report.passed,
"failed": report.failed.len(),
}))
.map_err(to_fdo)
}
}
#[cfg(test)]
mod tests {
use super::*;
fn setup() -> (tempfile::TempDir, tempfile::TempDir, KarapaceManager) {
let store = tempfile::tempdir().unwrap();
let project = tempfile::tempdir().unwrap();
let manager = KarapaceManager::new(store.path().to_string_lossy().to_string());
(store, project, manager)
}
fn write_mock_manifest(dir: &std::path::Path) -> std::path::PathBuf {
let path = dir.join("karapace.toml");
std::fs::write(
&path,
r#"manifest_version = 1
[base]
image = "rolling"
[runtime]
backend = "mock"
"#,
)
.unwrap();
path
}
#[tokio::test]
async fn list_environments_empty() {
let (_store, _project, mgr) = setup();
let result = mgr.list_environments().await;
// Empty store may return empty list or error — both are valid
if let Ok(json) = result {
let parsed: Vec<EnvInfo> = serde_json::from_str(&json).unwrap();
assert!(parsed.is_empty());
}
}
#[tokio::test]
async fn build_and_list_roundtrip() {
let (_store, project, mgr) = setup();
let manifest = write_mock_manifest(project.path());
let build_result = mgr
.build_environment(manifest.to_string_lossy().to_string())
.await
.unwrap();
let info: EnvInfo = serde_json::from_str(&build_result).unwrap();
assert_eq!(info.state, "built");
assert!(!info.env_id.is_empty());
let list_result = mgr.list_environments().await.unwrap();
let envs: Vec<EnvInfo> = serde_json::from_str(&list_result).unwrap();
assert_eq!(envs.len(), 1);
assert_eq!(envs[0].env_id, info.env_id);
}
#[tokio::test]
async fn get_status_of_built_env() {
let (_store, project, mgr) = setup();
let manifest = write_mock_manifest(project.path());
let build_result = mgr
.build_environment(manifest.to_string_lossy().to_string())
.await
.unwrap();
let info: EnvInfo = serde_json::from_str(&build_result).unwrap();
let status = mgr
.get_environment_status(info.env_id.clone())
.await
.unwrap();
let status_info: EnvInfo = serde_json::from_str(&status).unwrap();
assert_eq!(status_info.state, "built");
}
#[tokio::test]
async fn get_hash_returns_env_id() {
let (_store, project, mgr) = setup();
let manifest = write_mock_manifest(project.path());
let build_result = mgr
.build_environment(manifest.to_string_lossy().to_string())
.await
.unwrap();
let info: EnvInfo = serde_json::from_str(&build_result).unwrap();
let hash = mgr.get_environment_hash(info.env_id.clone()).await.unwrap();
assert_eq!(hash, info.env_id);
}
#[tokio::test]
async fn destroy_removes_environment() {
let (_store, project, mgr) = setup();
let manifest = write_mock_manifest(project.path());
let build_result = mgr
.build_environment(manifest.to_string_lossy().to_string())
.await
.unwrap();
let info: EnvInfo = serde_json::from_str(&build_result).unwrap();
mgr.destroy_environment(info.env_id.clone()).await.unwrap();
// Should no longer be in the list
let list_result = mgr.list_environments().await.unwrap();
let envs: Vec<EnvInfo> = serde_json::from_str(&list_result).unwrap();
assert!(envs.is_empty());
}
#[tokio::test]
async fn gc_on_empty_store() {
let (_store, _project, mgr) = setup();
// GC on empty/uninitialized store should not panic
let result = mgr.garbage_collect(true).await;
// May succeed or fail depending on store init — should not panic
assert!(result.is_ok() || result.is_err());
}
#[tokio::test]
async fn get_status_nonexistent_returns_error() {
let (_store, _project, mgr) = setup();
let result = mgr.get_environment_status("nonexistent".to_owned()).await;
assert!(result.is_err());
}
#[tokio::test]
async fn build_named_environment_sets_name() {
let (_store, project, mgr) = setup();
let manifest = write_mock_manifest(project.path());
let result = mgr
.build_named_environment(manifest.to_string_lossy().to_string(), "my-env".to_owned())
.await
.unwrap();
let info: EnvInfo = serde_json::from_str(&result).unwrap();
assert_eq!(info.name, Some("my-env".to_owned()));
assert_eq!(info.state, "built");
// List should include name
let list_result = mgr.list_environments().await.unwrap();
let envs: Vec<EnvInfo> = serde_json::from_str(&list_result).unwrap();
assert_eq!(envs[0].name, Some("my-env".to_owned()));
}
#[tokio::test]
async fn rename_environment_works() {
let (_store, project, mgr) = setup();
let manifest = write_mock_manifest(project.path());
let build_result = mgr
.build_environment(manifest.to_string_lossy().to_string())
.await
.unwrap();
let info: EnvInfo = serde_json::from_str(&build_result).unwrap();
mgr.rename_environment(info.env_id.clone(), "renamed-env".to_owned())
.await
.unwrap();
// Verify name via status
let status = mgr
.get_environment_status(info.env_id.clone())
.await
.unwrap();
let status_info: EnvInfo = serde_json::from_str(&status).unwrap();
assert_eq!(status_info.name, Some("renamed-env".to_owned()));
}
#[tokio::test]
async fn resolve_by_name_works() {
let (_store, project, mgr) = setup();
let manifest = write_mock_manifest(project.path());
let build_result = mgr
.build_named_environment(
manifest.to_string_lossy().to_string(),
"named-env".to_owned(),
)
.await
.unwrap();
let info: EnvInfo = serde_json::from_str(&build_result).unwrap();
// Get status by name
let status = mgr
.get_environment_status("named-env".to_owned())
.await
.unwrap();
let status_info: EnvInfo = serde_json::from_str(&status).unwrap();
assert_eq!(status_info.env_id, info.env_id);
}
#[tokio::test]
async fn list_presets_returns_presets() {
let (_store, _project, mgr) = setup();
let result = mgr.list_presets().await.unwrap();
let presets: Vec<serde_json::Value> = serde_json::from_str(&result).unwrap();
assert!(!presets.is_empty());
assert!(presets.iter().any(|p| p["name"] == "dev"));
assert!(presets.iter().any(|p| p["name"] == "minimal"));
}
#[tokio::test]
async fn destroy_by_name_works() {
let (_store, project, mgr) = setup();
let manifest = write_mock_manifest(project.path());
mgr.build_named_environment(
manifest.to_string_lossy().to_string(),
"to-destroy".to_owned(),
)
.await
.unwrap();
mgr.destroy_environment("to-destroy".to_owned())
.await
.unwrap();
let list_result = mgr.list_environments().await.unwrap();
let envs: Vec<EnvInfo> = serde_json::from_str(&list_result).unwrap();
assert!(envs.is_empty());
}
#[tokio::test]
async fn build_invalid_manifest_returns_error() {
let (_store, project, mgr) = setup();
let bad_path = project.path().join("nonexistent.toml");
let result = mgr
.build_environment(bad_path.to_string_lossy().to_string())
.await;
assert!(result.is_err());
}
#[tokio::test]
async fn rename_to_taken_name_returns_error() {
let (_store, project, mgr) = setup();
let manifest = write_mock_manifest(project.path());
mgr.build_named_environment(
manifest.to_string_lossy().to_string(),
"first-env".to_owned(),
)
.await
.unwrap();
// Build a second manifest with different content to get a different env_id
let path2 = project.path().join("karapace2.toml");
std::fs::write(
&path2,
r#"manifest_version = 1
[base]
image = "rolling"
[system]
packages = ["curl"]
[runtime]
backend = "mock"
"#,
)
.unwrap();
let build2 = mgr
.build_environment(path2.to_string_lossy().to_string())
.await
.unwrap();
let info2: EnvInfo = serde_json::from_str(&build2).unwrap();
let result = mgr
.rename_environment(info2.env_id, "first-env".to_owned())
.await;
assert!(result.is_err());
}
#[tokio::test]
async fn destroy_nonexistent_returns_error() {
let (_store, _project, mgr) = setup();
let result = mgr.destroy_environment("does-not-exist".to_owned()).await;
assert!(result.is_err());
}
#[tokio::test]
async fn gc_after_build_and_destroy() {
let (_store, project, mgr) = setup();
let manifest = write_mock_manifest(project.path());
let build_result = mgr
.build_environment(manifest.to_string_lossy().to_string())
.await
.unwrap();
let info: EnvInfo = serde_json::from_str(&build_result).unwrap();
mgr.destroy_environment(info.env_id).await.unwrap();
let gc_result = mgr.garbage_collect(false).await.unwrap();
let gc: serde_json::Value = serde_json::from_str(&gc_result).unwrap();
assert_eq!(gc["dry_run"], false);
}
#[tokio::test]
async fn verify_store_on_fresh_store() {
let (_store, project, mgr) = setup();
let manifest = write_mock_manifest(project.path());
mgr.build_environment(manifest.to_string_lossy().to_string())
.await
.unwrap();
let result = mgr.verify_store().await.unwrap();
let report: serde_json::Value = serde_json::from_str(&result).unwrap();
assert!(report["checked"].as_u64().unwrap() > 0);
assert_eq!(report["failed"], 0);
}
#[tokio::test]
async fn list_after_rename_shows_new_name() {
let (_store, project, mgr) = setup();
let manifest = write_mock_manifest(project.path());
let build_result = mgr
.build_environment(manifest.to_string_lossy().to_string())
.await
.unwrap();
let info: EnvInfo = serde_json::from_str(&build_result).unwrap();
mgr.rename_environment(info.env_id.clone(), "new-name".to_owned())
.await
.unwrap();
let list_result = mgr.list_environments().await.unwrap();
let envs: Vec<EnvInfo> = serde_json::from_str(&list_result).unwrap();
assert_eq!(envs.len(), 1);
assert_eq!(envs[0].name, Some("new-name".to_owned()));
}
#[tokio::test]
async fn destroy_response_is_valid_json() {
let (_store, project, mgr) = setup();
let manifest = write_mock_manifest(project.path());
let build_result = mgr
.build_environment(manifest.to_string_lossy().to_string())
.await
.unwrap();
let info: EnvInfo = serde_json::from_str(&build_result).unwrap();
let destroy_result = mgr.destroy_environment(info.env_id.clone()).await.unwrap();
let parsed: serde_json::Value = serde_json::from_str(&destroy_result).unwrap();
assert_eq!(parsed["destroyed"].as_str().unwrap(), info.env_id);
}
#[tokio::test]
async fn rename_response_is_valid_json() {
let (_store, project, mgr) = setup();
let manifest = write_mock_manifest(project.path());
let build_result = mgr
.build_environment(manifest.to_string_lossy().to_string())
.await
.unwrap();
let info: EnvInfo = serde_json::from_str(&build_result).unwrap();
let rename_result = mgr
.rename_environment(info.env_id.clone(), "test-rename".to_owned())
.await
.unwrap();
let parsed: serde_json::Value = serde_json::from_str(&rename_result).unwrap();
assert_eq!(parsed["env_id"].as_str().unwrap(), info.env_id);
assert_eq!(parsed["name"].as_str().unwrap(), "test-rename");
}
}

12
crates/karapace-dbus/src/lib.rs Normal file
View file

@ -0,0 +1,12 @@
//! D-Bus desktop integration service for Karapace.
//!
//! This crate exposes the Karapace engine over the `org.karapace.Manager1` D-Bus
//! interface, enabling desktop applications and system services to build, destroy,
//! enter, and query environments without invoking the CLI directly. Designed for
//! socket activation with an idle timeout.
pub mod interface;
pub mod service;
pub use interface::{KarapaceManager, API_VERSION, DBUS_INTERFACE, DBUS_PATH};
pub use service::{run_service, run_service_with_timeout, ServiceError};

30
crates/karapace-dbus/src/main.rs Normal file
View file

@ -0,0 +1,30 @@
use std::path::PathBuf;
use tracing::info;
fn default_store_path() -> PathBuf {
if let Ok(home) = std::env::var("HOME") {
PathBuf::from(home).join(".local/share/karapace")
} else {
PathBuf::from("/tmp/karapace")
}
}
#[tokio::main(flavor = "current_thread")]
async fn main() -> Result<(), Box<dyn std::error::Error>> {
tracing_subscriber::fmt()
.with_env_filter(
tracing_subscriber::EnvFilter::try_from_env("KARAPACE_LOG")
.unwrap_or_else(|_| tracing_subscriber::EnvFilter::new("info")),
)
.with_target(false)
.without_time()
.init();
let store_root =
std::env::var("KARAPACE_STORE").map_or_else(|_| default_store_path(), PathBuf::from);
info!("karapace-dbus starting, store: {}", store_root.display());
karapace_dbus::run_service(store_root.to_string_lossy().to_string()).await?;
Ok(())
}

50
crates/karapace-dbus/src/service.rs Normal file
View file

@ -0,0 +1,50 @@
use crate::interface::{KarapaceManager, DBUS_PATH};
use thiserror::Error;
use tracing::info;
use zbus::connection::Builder;
/// Default idle timeout before the service exits (for socket activation).
const IDLE_TIMEOUT_SECS: u64 = 30;
#[derive(Debug, Error)]
pub enum ServiceError {
#[error("DBus error: {0}")]
Dbus(#[from] zbus::Error),
}
/// Run the D-Bus service. If `idle_timeout` is Some, the service will exit
/// after that many seconds of inactivity. Use None for infinite runtime.
pub async fn run_service(store_root: String) -> Result<(), ServiceError> {
run_service_with_timeout(store_root, Some(IDLE_TIMEOUT_SECS)).await
}
pub async fn run_service_with_timeout(
store_root: String,
idle_timeout: Option<u64>,
) -> Result<(), ServiceError> {
let manager = KarapaceManager::new(store_root);
let _conn = Builder::session()?
.name("org.karapace.Manager1")?
.serve_at(DBUS_PATH, manager)?
.build()
.await?;
info!("karapace-dbus service started on session bus");
match idle_timeout {
Some(secs) => {
info!("idle timeout: {secs}s");
// In a socket-activated setup, the service exits after idle timeout.
// The D-Bus broker will restart it on next method call.
tokio::time::sleep(std::time::Duration::from_secs(secs)).await;
info!("idle timeout reached, shutting down");
}
None => {
// Run forever (e.g., when started manually for debugging)
std::future::pending::<()>().await;
}
}
Ok(())
}