8294047: HttpResponseInputStream swallows interrupts #11323
Conversation
|
/csr needed |
|
👋 Welcome back DarraghClarke! A progress list of the required criteria for merging this PR into |
openjdk
bot
added
rfr
|
@DarraghClarke has indicated that a compatibility and specification (CSR) request is needed for this pull request. @DarraghClarke please create a CSR request for issue JDK-8294047 with the correct fix version. This pull request cannot be integrated until the CSR request is approved. |
|
@DarraghClarke The following label will be automatically applied to this pull request:
When this pull request is ready to be reviewed, an "RFR" email will be sent to the corresponding mailing list. If you would like to change these labels, use the /label pull request command. |
Webrevs
|
| @@ -481,7 +481,8 @@ private ByteBuffer current() throws IOException { | |||
| if (debug.on()) debug.log("Next Buffer"); | |||
| currentBuffer = currentListItr.next(); | |||
| } catch (InterruptedException ex) { | |||
| // continue | |||
| close(); | |||
| throw new IOException("interrupted", ex); | |||
There was a problem hiding this comment.
I'd suggest to throw InterruptedIOException here instead. Also it might be better to swallow any exception close() might throw - using try-finally around close() should do that.
| Thread clientThread = createClientThread(countDownLatch, port); | ||
| Thread interrupterThread = new Thread(() -> { | ||
| try { | ||
| countDownLatch.await(); |
There was a problem hiding this comment.
It would be useful to add a comment before waiting on the latch to explain what you are waiting for.
|
|
||
| static class Handler implements HttpHandler { | ||
|
|
||
| CountDownLatch countDownLatch; |
There was a problem hiding this comment.
Maybe a better name than countDownLatch could be found - that could give a clue on what this latch is used to wait for?
There was a problem hiding this comment.
I was thinking maybe messageLatch, messageReceivedLatch or clientReadyLatch
There was a problem hiding this comment.
Maybe we rename both:
countDownLatch => interruptReadyLatch
interruptLatch => interruptDoneLatch
| server = HttpServer.create(addr, 0); | ||
| port = server.getAddress().getPort(); | ||
| Handler handler = new Handler(countDownLatch, interruptLatch); | ||
| server.createContext("/", handler); |
There was a problem hiding this comment.
It would be good to use a path unique for this test to avoid potential interferences. I would suggest registering the context under "/HttpResponseInputStreamInterruptTest/" instead of "/".
And use that when building the URI below as well.
This is important because the handler is using latches, and therefore can be invoked only once...
| try { | ||
| close(); | ||
| } catch (IOException ignored) { | ||
| } | ||
| throw new InterruptedIOException(); |
There was a problem hiding this comment.
Thanks for doing that. Maybe we should keep the caught InterruptedException as the cause of the new InterruptedIOException. I'd suggest to add a new utility method to the ...common.Utils class for that. I mean - something like:
InterruptedIOException Utils.toInterruptedIOException(InterruptedException ex);
There was a problem hiding this comment.
So something in utils like return new InterruptedIOException(String.valueOf(exxeption)); ?
There was a problem hiding this comment.
No something that would call initCause(ex) to set the root cause - as AFAICS there's no constructor that takes a root cause.
There was a problem hiding this comment.
ah ok, so create a new InterruptedIOException and set the initcause to be the interruptedException.
is there anything else that would need to be set?
There was a problem hiding this comment.
preserving the root cause is the main thing.
| CountDownLatch interruptReadyLatch; | ||
| CountDownLatch interruptDoneLatch; |
There was a problem hiding this comment.
I believe this change was missed and is pending?
| countDownLatch.countDown(); | ||
| assertThrows(IOException.class, () -> response.body().readAllBytes(), "excepted IOException"); | ||
| interruptReadyLatch.countDown(); | ||
| assertThrows(InterruptedIOException.class, () -> response.body().readAllBytes(), "excepted IOException"); |
There was a problem hiding this comment.
Maybe change the message while you're at it since we're actually expecting InterruptedIOException
| @@ -486,7 +486,8 @@ private ByteBuffer current() throws IOException { | |||
| close(); | |||
| } catch (IOException ignored) { | |||
| } | |||
| throw new InterruptedIOException(); | |||
| // Throw InterruptedIOException where the initCause is set to the caught InterruptedException | |||
There was a problem hiding this comment.
nit: could you break this long line after "is"
| InterruptedIOException interruptedIOException = new InterruptedIOException(); | ||
| interruptedIOException.initCause(ex); | ||
| return interruptedIOException; | ||
| } |
There was a problem hiding this comment.
The copyright years need updating.
|
Actually, there's one more thing that we probably should do. The API documentation of |
| } | ||
| // Throw InterruptedIOException where the initCause is | ||
| // set to the caught InterruptedException | ||
| throw Utils.toInterruptedIOException(ex); |
There was a problem hiding this comment.
Don't you think you need to restores the interrupt status of the thread by invoking the Thread.currentThread().interrupt() method and allowing the caller to detect the interrupt if it needs to ?
There was a problem hiding this comment.
By convention, any method that exits by throwing an InterruptedException clears interrupt status when it does so. Since we're throwing InterruptedIOException here, I don't think we need to set the interrupt flag. But the caller might do so if they want.
There was a problem hiding this comment.
Hmmm... Maybe a better solution would be to throw "ClosedByInterruptException" since we're also closing the input stream. And the specification of "ClosedByInterruptException" clearly state that the interrupt status of the thread will be preserved. Good question @vyommani .
There was a problem hiding this comment.
I am not 100% sure but for me the best option is call close() and just restore the interrupt status let the caller decide how to handle the interrupt.
There was a problem hiding this comment.
InterruptedIOException is not equivalent to InterrupedException in this way AFAIK. The thread interrupt status should be reset if any exception other than InterruptedException is thrown AFAIK, otherwise thread interruption is likely to be lost.
| try { | ||
| close(); | ||
| } catch (IOException ignored) { | ||
| } |
There was a problem hiding this comment.
This will swallow the interrupt status, you' need to do Thread.currentThread().interrupt() before throwing the IOException.
|
Thanks for pointing out those issues, with the last few commits I've hopefully addressed everything, but let me know if there is anything else that need to be changed |
|
|
||
| // countdown on latch, and assert that an IOException is throw due to the interrupt | ||
| interruptReadyLatch.countDown(); | ||
| assertThrows(IOException.class, () -> response.body().readAllBytes(), "expected IOException"); |
There was a problem hiding this comment.
I suggest checking that the exception cause is the expected InterruptedException. If I'm not mistaken something like that should do it:
var thrown = assertThrows(IOException.class, () -> response.body().readAllBytes(), "expected IOException");
var cause = thrown.getCause();
assertTrue(cause instanceof InterruptedException, cause + " is not an InterruptedException");
| interruptReadyLatch.countDown(); | ||
| assertThrows(IOException.class, () -> response.body().readAllBytes(), "expected IOException"); | ||
| } catch (Exception e) { | ||
| throw new RuntimeException(e); |
There was a problem hiding this comment.
You might want to catch Throwable, then print the stack trace and call Asserts.fail here - because unhandled exceptions in threads might just be swallowed.
Another possibility is to relay the throwable to the main thread and throw it from the main thread.
| throw new RuntimeException(e); | ||
| var thrown = assertThrows(IOException.class, () -> response.body().readAllBytes(), "expected IOException"); | ||
| var cause = thrown.getCause(); | ||
| assertTrue(cause instanceof InterruptedException, cause + " is not an InterruptedException"); |
There was a problem hiding this comment.
Ah - and of course the test should verify that the thread interrupted status is set too, since we specified that :-)
var thread = Thread.currentThread();
assertTrue(thread.isInterrupted(), "Thread " + thread + " is not interrupted");
| @@ -1178,6 +1178,12 @@ public static BodySubscriber<Path> ofFile(Path file) { | |||
| * the underlying HTTP connection to be closed and prevent it | |||
| * from being reused for subsequent operations. | |||
| * | |||
| * @implNote The read method of the default implementation returned | |||
There was a problem hiding this comment.
Hello Darragh, should we instead reword this as:
@implNote The {@code read} method of the {@code InputStream} returned by the default implementation of this method will throw an {@code IOException} with the {@link Thread#isInterrupted() thread interrupt status set} if the thread is interrupted while blocking on read. In that case, the request will also be cancelled and the {@code InputStream} will be closed.
Additionally, irrespective of whether or not we decide to reword this, this file will need an update for the copyright year.
There was a problem hiding this comment.
Agreed but it should be {@linkplain Thread#isInterrupted() thread interrupt status set}
| @@ -29,6 +29,7 @@ | |||
| import java.io.FilePermission; | |||
| import java.io.IOException; | |||
| import java.io.InputStream; | |||
| import java.io.InterruptedIOException; | |||
There was a problem hiding this comment.
I think this is now an unused import and we can remove it?
| try { | ||
| close(); | ||
| } catch (IOException ignored) { | ||
| } |
There was a problem hiding this comment.
I don't have specific opinion here and this is more of a question - should we be doing:
} catch (InterruptedException ex) {
final IOException toThrow = new IOException(ex);
try {
close();
} catch (IOException ignored) {
toThrow.addSuppressed(ignored);
}
Thread.currentThread().interrupt();
throw toThrow;
}
i.e. should we be adding any failure to close() as a suppressed exception to the IOException that we throw?
There was a problem hiding this comment.
I am not sure whether that would be helpful or confusing.
There was a problem hiding this comment.
I think that's a good point, I don't really have a strong opinion one way or the other on it but would be curious if anyone else does?
There was a problem hiding this comment.
Let's leave it the way you have it now.
| } | ||
|
|
||
| @Test | ||
| public void test() { |
There was a problem hiding this comment.
To keep this method relatively simpler, you could remove the top level try/catch block (which just catches and rethrows) and change this method's signature to throws Exception. If you decide to leave it in the current form, that's fine too.
There was a problem hiding this comment.
Thank you for these changes Darragh. Looks fine to me. There was one review comment by Daniel where he noted that the fields of the Handler in the test should be final (which I agree with). From what I can see, that hasn't been addressed in the updates. In the current test, it doesn't functionally impact anything, so it is OK if you want to leave it in this form.
|
@DarraghClarke This change now passes all automated pre-integration checks. ℹ️ This project also has non-automated pre-integration requirements. Please see the file CONTRIBUTING.md for details. After integration, the commit message for the final commit will be: You can use pull request commands such as /summary, /contributor and /issue to adjust it as needed. At the time when this comment was updated there had been 254 new commits pushed to the
As there are no conflicts, your changes will automatically be rebased on top of these commits when integrating. If you prefer to avoid this automatic rebasing, please check the documentation for the /integrate command for further details. As you do not have Committer status in this project an existing Committer must agree to sponsor your change. Possible candidates are the reviewers of this PR (@dfuch, @vyommani, @jaikiran) but any other Committer may sponsor as well. ➡️ To flag this PR as ready for integration with the above commit message, type |
|
/integrate |
|
@DarraghClarke |
|
/sponsor |
|
Going to push as commit 3aa4070.
Your commit was automatically rebased without conflicts. |
openjdk
bot
removed
ready
|
@jaikiran @DarraghClarke Pushed as commit 3aa4070. 💡 You may see a message that your pull request was closed with unmerged commits. This can be safely ignored. |
Currently if a
HttpResonseInputStreamgets interrupted while reading it will just swallow the exception and continue,This PR changes it to close the stream and throw an IOException, I added a test to cover this which just uses two threads to read the stream then interrupt it.
Progress
Issues
Reviewers
Reviewing
Using
gitCheckout this PR locally:
$ git fetch https://git.openjdk.org/jdk pull/11323/head:pull/11323$ git checkout pull/11323Update a local copy of the PR:
$ git checkout pull/11323$ git pull https://git.openjdk.org/jdk pull/11323/headUsing Skara CLI tools
Checkout this PR locally:
$ git pr checkout 11323View PR using the GUI difftool:
$ git pr show -t 11323Using diff file
Download this PR as a diff file:
https://git.openjdk.org/jdk/pull/11323.diff