refactor: replace RecursiveMutex cs_vProcessMsg with Mutex (and rename)
#24122
Conversation
-BEGIN VERIFY SCRIPT- sed -i 's/cs_vProcessMsg/m_process_msgs_mutex/g' $(git grep -l cs_vProcessMsg) sed -i 's/vProcessMsg/m_process_msgs/g' $(git grep -l vProcessMsg) -END VERIFY SCRIPT-
In each of the critical sections, only the the m_process_msgs member is accessed, without any chance that within one section another one is called. Hence, we can use an ordinary Mutex instead of RecursiveMutex.
There was a problem hiding this comment.
Concept ACK
I was thinking, should we use AssertLockNotHeld(m_process_msgs_mutex) before locking the mutex and add thread safety annotation LOCKS_EXCLUDED(m_process_msgs_mutex), with the function declaration of where this mutex is used?
Doing so will prevent any risk of error due to simultaneous locking of this mutex.
|
@shaavan @w0xlt: Thanks for your feedback, I agree that adding thread safety assertions and annotations is a good idea. Added a commit doing that -- note though that the |
|
The following sections might be updated with supplementary metadata relevant to reviewers and maintainers. ConflictsReviewers, this pull request conflicts with the following ones:
If you consider this pull request important, please also help to review the conflicting pull requests. Ideally, start with the one that should be merged first. |
There was a problem hiding this comment.
as for the other (CConnman::SocketHandlerConnected) the elements that cointain the loop are in a list rather than a direct parameter that can be accessed.
Sounds interesting. Let me take another look at this before I can be 100% sure. In the meantime, I had one observation that I would like to discuss.
| @@ -22,8 +22,8 @@ void ConnmanTestMsg::NodeReceiveMsgBytes(CNode& node, Span<const uint8_t> msg_by | |||
| nSizeAdded += it->m_raw_message_size; | |||
| } | |||
| { | |||
| LOCK(node.cs_vProcessMsg); | |||
| node.vProcessMsg.splice(node.vProcessMsg.end(), node.vRecvMsg, node.vRecvMsg.begin(), it); | |||
| LOCK(node.m_process_msgs_mutex); | |||
There was a problem hiding this comment.
Can we add AssertLockNotHeld above this line?
| LOCK(node.m_process_msgs_mutex); | |
| AssertLockNotHeld(node.m_process_msgs_mutex); | |
| LOCK(node.m_process_msgs_mutex); |
There was a problem hiding this comment.
Good catch, done! Also added the thread safety annotation to the corresponding method ConnmanTestMsg::NodeReceiveMsgBytes.
9add3f9 to
b819ae4
Compare
Co-authored-by: Shashwat <svangani239@gmail.com>
b819ae4 to
9c0b268
Compare
There was a problem hiding this comment.
Concept ACK.
Following best practices, mutexes should synchronize access to internal class data to prevent violation of class invariants.
The current implementation has a significant design drawback -- external synchronizing, i.e., acquiring CNode::m_process_msgs_mutex from outside of the CNode instance.
Therefore, I'm suggesting to consider to encapsulate access to the private members m_process_msgs and nProcessQueueSize with internal synchronizing using m_process_msgs_mutex.
One new CNode member function could implement
Lines 1592 to 1604 in e3de7cb
Another one
bitcoin/src/net_processing.cpp
Lines 4165 to 4173 in e3de7cb
| RecursiveMutex cs_vProcessMsg; | ||
| std::list<CNetMessage> vProcessMsg GUARDED_BY(cs_vProcessMsg); | ||
| Mutex m_process_msgs_mutex; | ||
| std::list<CNetMessage> m_process_msgs GUARDED_BY(m_process_msgs_mutex); | ||
| size_t nProcessQueueSize{0}; |
There was a problem hiding this comment.
Reading the code makes me strongly believe that the value of nProcessQueueSize must correspond to the m_process_msgs content. To preserve this invariant of the CNode class I'm suggesting:
| size_t nProcessQueueSize{0}; | |
| size_t nProcessQueueSize GUARDED_BY(m_process_msgs_mutex){0}; |
|
🐙 This pull request conflicts with the target branch and needs rebase. Want to unsubscribe from rebase notifications on this pull request? Just convert this pull request to a "draft". |
There hasn't been much activity lately and the patch still needs rebase. What is the status here?
|
|
Are you still working on this? |
|
Closing this as it has not had any activity in a while. If you are interested in continuing work on this, please leave a comment so that it can be reopened. |
This PR is related to #19303 and gets rid of the RecursiveMutex cs_vProcessMsg. Both of the critical sections only directly access the guarded elements, i.e. it is not possible that within one section another one is called, and we can use a regular Mutex:
bitcoin/src/net.cpp
Lines 1597 to 1602 in e3ce019
bitcoin/src/net_processing.cpp
Lines 4142 to 4150 in e3ce019
Also, it is renamed to adapt to the (unwritten) naming convention to use the
_mutexsuffix rather than thecs_prefix.