Skip to content

fix(s2n-quic-dc): synchronize dispatch queue closure #2553

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Mar 17, 2025
Merged

fix(s2n-quic-dc): synchronize dispatch queue closure #2553

merged 1 commit into from
Mar 17, 2025

Conversation

camshaft
Copy link
Contributor

@camshaft camshaft commented Mar 17, 2025
edited
Loading

Description of changes:

After doing some testing, the current dispatch queue closing logic has a potential race condition where the queue can end up being freed twice. This change fixes that by locking both receivers in the same order (to avoid a deadlock) and observing the other side's status before deciding to free the queue or not.

Call-outs:

I did a little more clean up around tracing events by creating actual probes instead. I've also tried to avoid calling any of the probes while holding a mutex.

Testing:

I added a stress test that was able to reproduce the original issue and show that the changes fixed.

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.

@camshaft camshaft marked this pull request as ready for review March 17, 2025 20:30
Mark-Simulacrum
Mark-Simulacrum approved these changes Mar 17, 2025
View reviewed changes
dc/s2n-quic-dc/src/stream/recv/dispatch/queue.rs
drop(inner);

// drop wakers after the lock to avoid potential mutex poisoning
wakers.dont_wake();
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Are we waking somewhere else? Otherwise it seems like this will hang a potential read(...) when the stream closes? Or maybe that doesn't actually get hit in practice?

(I think this is not changed in this PR, so not super relevant, but might be another deadlock risk)

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This function is only called from the receivers themselves so in almost all cases they shouldn't be set. This is mostly for if one of the receivers drops prematurely before getting notified of a new packet.

@camshaft camshaft merged commit c591b3f into main Mar 17, 2025
125 of 126 checks passed
@camshaft camshaft deleted the camshaft/dc-recv-dispatch-fixes branch March 17, 2025 21:01
Mark-Simulacrum pushed a commit to Mark-Simulacrum/s2n-quic that referenced this pull request Mar 25, 2025
@camshaft @Mark-Simulacrum
fix(s2n-quic-dc): synchronize dispatch queue closure (aws#2553)
2b5ccf6
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Mark-Simulacrum Mark-Simulacrum Mark-Simulacrum approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@camshaft @Mark-Simulacrum