[fix][c++ client] avoid race condition causing double callback on close #15508
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
BewareMyPower
added
component/client-c++
type/bug
BewareMyPower
approved these changes
May 9, 2022
|
The problem is that the decrement and checking of the counter are not done in atomic fashion: if (*numberOfOpenHandlers > 0) {
--(*numberOfOpenHandlers);
}
if (*numberOfOpenHandlers == 0) {
// .....
}We should instead convert into: if (--(*numberOfOpenHandlers) == 0) {
// .....
} |
|
Are we guaranteed that |
|
You're right, I was convinced we were using |
merlimat
approved these changes
May 9, 2022
merlimat
pushed a commit
that referenced
this pull request
May 9, 2022
…se (#15508) * avoid race condition causing double callback on close * Update pulsar-client-cpp/lib/ClientImpl.cc Co-authored-by: Yunze Xu <xyzinfernity@163.com>
merlimat
pushed a commit
that referenced
this pull request
May 9, 2022
…se (#15508) * avoid race condition causing double callback on close * Update pulsar-client-cpp/lib/ClientImpl.cc Co-authored-by: Yunze Xu <xyzinfernity@163.com>
merlimat
pushed a commit
that referenced
this pull request
May 9, 2022
…se (#15508) * avoid race condition causing double callback on close * Update pulsar-client-cpp/lib/ClientImpl.cc Co-authored-by: Yunze Xu <xyzinfernity@163.com>
merlimat
added
cherry-picked/branch-2.8
nicoloboschi
pushed a commit
to datastax/pulsar
that referenced
this pull request
May 11, 2022
…se (apache#15508) * avoid race condition causing double callback on close * Update pulsar-client-cpp/lib/ClientImpl.cc Co-authored-by: Yunze Xu <xyzinfernity@163.com> (cherry picked from commit b2cafb3)
1 task
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Motivation
The pulsar-client-node library uses the c api to interact with the pulsar client. The model for the c api is to pass in a
void *ctxto async functions with a callback. Typically, these callbacks free the context and rely heavily on the fact that the callback is called once. I was able to reproducibly trigger the close callback to call twice, resulting in a double free error in pulsar-client-node.Modifications
My running theory is that the cause for this is a race condition in the decrementing of
numberOfOpenHandlersshared pointer. It is possible for two threads to decrement the number in parallel, and to both end up with*numberOfOpenHandlers == 0. This fix assumes this can happen and synchronizes on the state, so even if this does happen, only one thread will be able to set the state toClosedand create the subsequent shutdown task.Verifying this change
This change is already covered by existing tests, such as all of the tests in ClientTest.cc. Given that this is a race condition it's not possible to reproduce consistently for tests. I will run reproduction steps with pulsar-client-node.
Does this pull request potentially affect one of the following parts:
Documentation
doc-requiredno-need-docdocdoc-added