Guarantee atomicity of WINDOW_UPDATE increments. #622
Conversation
|
For the record, I've been hammering a If you want a repro case, use the exe in the above link and use this for server: |
|
LGTM. But I have a comment. |
| @@ -232,9 +232,12 @@ control FrameGoAway _ _ Context{controlQ} = do | |||
|
|
|||
| control FrameWindowUpdate header bs Context{connectionWindow} = do | |||
| WindowUpdateFrame n <- guardIt $ decodeWindowUpdateFrame header bs | |||
| !w <- (n +) <$> atomically (readTVar connectionWindow) | |||
| !w <- atomically $ do | |||
There was a problem hiding this comment.
Why don't you use modifyTVar'?
There was a problem hiding this comment.
Last time I checked (and I was sad) TVar.modifyTVar returns unit, unlike modifyIORef.
As per the strictness, the strict pattern binding '!w' will evaluate the thunk.
There was a problem hiding this comment.
Last time I checked (and I was sad) TVar.modifyTVar returns unit, unlike modifyIORef.
You are right. This is my fault. Never mind.
As per the strictness, the strict pattern binding '!w' will evaluate the thunk.
Yes. Please do so.
There was a problem hiding this comment.
No worries :-).
For the point about strictness, I think the bang pattern at the output of the atomically call in my current patch is enough. It's true I could seq the thunk from within the STM. I believe it does not matter much performance-wise here: either concurrent threads will wait more in the STM or evaluating the thunk themselves. But if I'm wrong I'll be happy to learn something :-) (maybe I overlooked some bit about the senders).
There was a problem hiding this comment.
I worry about space leak. If you don't have a strong reason to use lazy evaluation, I would recommend the bang pattern.
There was a problem hiding this comment.
Ack. I've added a strictness annotation from within the STM (cf. a48c7aa.) In that particular instance since w1 was returned and immediately evaluated by the bang pattern I guess it was fine.
I can rebase on master and squash if you prefer a clean history. Let me know.
Thanks for the review!
There was a problem hiding this comment.
No need for squash but rebase is great.
There was a problem hiding this comment.
Thanks. I've rebased (and made the commit message more precise for the 2nd commit).
The current code may lead to over-estimating the window size. The over-estimation occurs as follows: - the initial window state is W - the receiver observes a window update and computes W+K in a first transaction - the sender decrease the window by the payload size P, hence the window state is set to W-P - the receiver writes W+K in the second transaction This over-estimation carries over and may lead to unexpected GOAWAYs.
lucasdicioccio
force-pushed
the
fix-window-update-race-condition
branch
from
a48c7aa
to
f860142
Compare
|
Merged. Thank you for your contribution! |
The current code may lead to over-estimating the window size.
The over-estimation occurs as follows:
transaction
state is set to W-P
This over-estimation carries over and may lead to unexpected GOAWAYs.