Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

AbstractAccessReferenceMap Issues #37 #329 #469

Merged
merged 6 commits into from Jan 16, 2019
Merged

AbstractAccessReferenceMap Issues #37 #329 #469

merged 6 commits into from Jan 16, 2019

Conversation

jeremiahjstacey
Copy link
Collaborator

Potential resolutions for two issues in AbstractAccessReferenceMap.

First, handling #329 I've provided a multi-threaded unit test which replicates the condition consistently. The offered solution is to add synchronized keyword to all public API of the AbstractAccessReferenceMap.

Second, #37 Provided a test which shows that in cases where subclasses return the same indirect key multiple times it can lead to corruption during update. Logic updates were made to the implementation to address.

@jeremiahjstacey
Concurrency Test for AbstractAccessReferenceMap
968ae83 
SThis test case consistently illustrates the race condition resulting from
concurrent invocations of addDirectReference.
@jeremiahjstacey
AbstractAccessReferenceMap Sync Updates
4eb0643 
Synchronizing all public access methods to this wrapper class.
@jeremiahjstacey
AbstractAccessReferenceMap Class Documentation
8ed44ac 
Updating class documentation to provide an example of multi-interaction
synchronization syntax.
@jeremiahjstacey
AbstractAccessMap field updates to use HashMap
27c2e56 
With primary synchronization being pushed to the class API level, there
really is no benefit to maintaining the overhead of ConcurrentHashMap
fields.  The thread-safety guaranteed by the ConcurrentHashMap is
superceeded by the public API of the abstract class, and should never
actually be leveraged.

This assumes that all sub-classes with extended public API continue the
use of class-level synchronization.
@jeremiahjstacey
AbstractAccessReferenceMapTest Extension
c7ab789 
Adding method which shows that it is possible to create a corrupted direct
-> Indirect to Indirect -> Direct Object relationship when using the
public update(Set) API.
@jeremiahjstacey
AbstractAccessReferenceMap.update Logic Update
6bb11e4 
Altering the logic of update behavior to avoid the possibility of the same
indirect object being associated with multiple direct instances.
@kwwall kwwall merged commit c34eeaa into ESAPI:develop Jan 16, 2019
@kwwall
Copy link
Contributor

kwwall commented Jan 16, 2019

Close issue #37
Close issue #329

This was referenced Jan 16, 2019
Closed
Closed
@jeremiahjstacey jeremiahjstacey deleted the AccessReferenceMap_329 branch April 24, 2022 12:39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@jeremiahjstacey @kwwall