8308310: HttpClient: Avoid logging or locking from within synchronized blocks

[dfuch]

Please find here a change that revisits usage of monitors in the HttpClient.

With Virtual Threads now part of the platform it should be possible to pass a newVirtualThreadPerTaskExecutor to the HttpClient. Logging, when enabled, and when called from a synchronized block, can cause the carrier thread to get pinned in case of contention when printing through the underlying PrintStream.

This change aims at avoiding situations where the carrier threads might get pinned.

---

Progress

• Change must be properly reviewed (1 review required, with at least 1 Reviewer)
• Change must not contain extraneous whitespace
• Commit message must refer to an issue

Issue

• JDK-8308310: HttpClient: Avoid logging or locking from within synchronized blocks

Reviewers

• Jaikiran Pai (@jaikiran - Reviewer)

Reviewing

Using git

Checkout this PR locally:
$ git fetch https://git.openjdk.org/jdk.git pull/14038/head:pull/14038
$ git checkout pull/14038

Update a local copy of the PR:
$ git checkout pull/14038
$ git pull https://git.openjdk.org/jdk.git pull/14038/head

Using Skara CLI tools

Checkout this PR locally:
$ git pr checkout 14038

View PR using the GUI difftool:
$ git pr show -t 14038

Using diff file

Download this PR as a diff file:
https://git.openjdk.org/jdk/pull/14038.diff

Webrev

Link to Webrev Comment

[bridgekeeper]

👋 Welcome back dfuchs! A progress list of the required criteria for merging this PR into master will be added to the body of your pull request. There are additional pull request commands available for use with this pull request.

[openjdk]

@dfuch The following labels will be automatically applied to this pull request:

• net
• security

When this pull request is ready to be reviewed, an "RFR" email will be sent to the corresponding mailing lists. If you would like to change these labels, use the /label pull request command.

[mlbridge]

Webrevs

• 09: Full - Incremental (0f34be9a)
• 08: Full - Incremental (f5986f93)
• 07: Full (c5d2f1f2)
• 06: Full - Incremental (153826db)
• 05: Full - Incremental (e3d60965)
• 04: Full - Incremental (7bd88c37)
• 03: Full - Incremental (a62cfd7e)
• 02: Full - Incremental (b72cd989)
• 01: Full - Incremental (e090e36e)
• 00: Full (889122f0)

[dfuch]

/label remove security

[openjdk]

@dfuch
The security label was successfully removed.

[openjdk]

@dfuch this pull request can not be integrated into master due to one or more merge conflicts. To resolve these merge conflicts and update this pull request you can run the following commands in the local repository for your personal fork:

git checkout HttpClient-Logging-8308310
git fetch https://git.openjdk.org/jdk.git master
git merge FETCH_HEAD
# resolve conflicts and follow the instructions given by git merge
git commit -m "Merge master"
git push

[jaikiran]

Hello Daniel, all these methods which say a lock needs to be held when they are called, should we add a assert stateLock.isHeldByCurrentThread(); to make it verifiable? I understand we didn't have a similar assert when the comment said the method needs to be called while holding the monitor, but since we are changing this part now, perhaps we can add those asserts?

[dfuch]

The stateLock variable is not available from within the method:

Non-static field 'stateLock' cannot be referenced from a static context

[jaikiran]

Thank you, that wasn't clearly noticable in the diff.

[jaikiran]

Can this code be replaced by a call to switchState(...) to be consistent with the rest of the places in this class which do a similar call?

[jaikiran]

It looks like previously (before the changes in this PR), the tryRelease could incorrectly set this state to 0x02 even when the state was 0. From what I see in this change, that seems to have been addressed now.

[jaikiran]

Nit - a space is missing between the cast and the value for the second and third parameters.

[dfuch]

OK - will do - though I usually don't put a space there.

[jaikiran]

It's fine with me in the current form if this wasn't an oversight.

[jaikiran]

Any specific reason for creating private wrapper methods instead of just using lock.lock() and lock.unlock() at the call sites?

[dfuch]

removed private methods

[jaikiran]

Perhaps we can make finalStream volatile and remove the use of locks when accessing and setting it?

[dfuch]

Looks doable

[jaikiran]

There's a behavioural change here as compared to before this change. Previously, we used to first call released() on the old exchange and cancel() the new exchange, before setting the this.exchange to the new exchange. Now, with this change, we first switch the this.exchange to the new exchange and then call released() and cancel(). Do you think that could have any (odd) issues?

[dfuch]

Good observation. When we reach here the previous exchange is practically terminated. Looking at the implementation of released(), and at the place where setExchange is called, I don't think it matters.

[jaikiran]

Thank you Daniel for checking.

[jaikiran]

Could we do this in a try/finally block? Same for the other test method.

[dfuch]

Done. Note that I avoided try-with-resource in order to ensure that the client would be closed first.

[jaikiran]

Previously, LIMIT.get() was being compared against MAX_COUNT, because REQUEST was initialized (as final) to that value. Now it's being compared to MAX_LIMIT. Is this intentional?

[dfuch]

Yes. I think the previous behaviour was buggy. The idea is to reduce concurrency if the underlying OS has trouble with too many concurrent connections.

[dfuch]

What it says here is that if we already reduced the LIMIT once and it fails again we should fail.

[jaikiran]

The tests that have been selectively changed to use virtual threads for the HttpClient (and have been set with -Djdk.tracePinnedThreads=full), I'm guessing were selected based on some of the failures that were noticed when virtual threads were used?

[dfuch]

The tests that have been selectively changed to use virtual threads for the HttpClient (and have been set with -Djdk.tracePinnedThreads=full), I'm guessing were selected based on some of the failures that were noticed when virtual threads were used?

Yes - these were the bigger offenders causing virtual threads to get pinned.

[jaikiran]

The latest changes in f5986f93 look fine to me. There's just one suggestion that's remaining in the ConcurrentResponses test about moving the closing of the client and virtual thread executor in a finally block, but other than that this looks good to me.

[openjdk]

@dfuch This change now passes all automated pre-integration checks.

ℹ️ This project also has non-automated pre-integration requirements. Please see the file CONTRIBUTING.md for details.

After integration, the commit message for the final commit will be:

8308310: HttpClient: Avoid logging or locking from within synchronized blocks

Reviewed-by: jpai

You can use pull request commands such as /summary, /contributor and /issue to adjust it as needed.

At the time when this comment was updated there had been 20 new commits pushed to the master branch:

• 7764f46: 8308761: New test TestHFA needs adaptation for JDK-8308276
• d7245f7: 8305578: X11GraphicsDevice.pGetBounds() is slow in remote X11 sessions
• 544978c: 8298066: java/util/concurrent/locks/Lock/OOMEInAQS.java timed out
• 65c8dbe: 8171221: Remove -XX:+CheckMemoryInitialization
• 2d4d850: 8308091: Remove unused iRegIHeapbase() matching operand
• b7a84b0: 8308758: Problemlist compiler/c2/irTests/TestVectorConditionalMove.java
• 20f1535: 8303040: linux PPC64le: Implementation of Foreign Function & Memory API (Preview)
• 466ec30: 8302736: Major performance regression in Math.log on aarch64
• 05c095c: 8308151: [JVMCI] capture JVMCI exceptions in hs-err
• beb75e6: 8306302: C2 Superword fix: use VectorMaskCmp and VectorBlend instead of CMoveVF/D
• ... and 10 more: https://git.openjdk.org/jdk/compare/c0c4d771922f8fce36f1014e57d7e7a213243891...master

As there are no conflicts, your changes will automatically be rebased on top of these commits when integrating. If you prefer to avoid this automatic rebasing, please check the documentation for the /integrate command for further details.

➡️ To integrate this PR with the above commit message to the master branch, type /integrate in a new comment.

[dfuch]

/integrate

[openjdk]

Going to push as commit 736b90d.
Since your change was applied there have been 20 commits pushed to the master branch:

• 7764f46: 8308761: New test TestHFA needs adaptation for JDK-8308276
• d7245f7: 8305578: X11GraphicsDevice.pGetBounds() is slow in remote X11 sessions
• 544978c: 8298066: java/util/concurrent/locks/Lock/OOMEInAQS.java timed out
• 65c8dbe: 8171221: Remove -XX:+CheckMemoryInitialization
• 2d4d850: 8308091: Remove unused iRegIHeapbase() matching operand
• b7a84b0: 8308758: Problemlist compiler/c2/irTests/TestVectorConditionalMove.java
• 20f1535: 8303040: linux PPC64le: Implementation of Foreign Function & Memory API (Preview)
• 466ec30: 8302736: Major performance regression in Math.log on aarch64
• 05c095c: 8308151: [JVMCI] capture JVMCI exceptions in hs-err
• beb75e6: 8306302: C2 Superword fix: use VectorMaskCmp and VectorBlend instead of CMoveVF/D
• ... and 10 more: https://git.openjdk.org/jdk/compare/c0c4d771922f8fce36f1014e57d7e7a213243891...master

Your commit was automatically rebased without conflicts.

[openjdk]

@dfuch Pushed as commit 736b90d.

💡 You may see a message that your pull request was closed with unmerged commits. This can be safely ignored.