Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Unlock before panicking #1168

Merged
merged 6 commits into from
Jul 24, 2023
Merged

Unlock before panicking #1168

merged 6 commits into from
Jul 24, 2023

Conversation

jackdawm
Copy link
Contributor

What was changed

Unlock a locked dispatcher mutex before panicking.

Why?

Since it needs to be unlocked to finish running coroutines, and then relocked long enough to have the status changed to not executing, defer didn't fit.

Checklist

How was this tested:
make test is currently failing integration tests

jackdawm and others added 4 commits July 17, 2023 14:36
@jackdawm
Move commit info to env var to mitigate run injection vulnerability.
5e6fdb8
@jackdawm
Merge pull request #1 from jackdawm/run-shell-injection
b668672 
Move commit info to env var to mitigate run injection vulnerability.
@jackdawm
Merge branch 'temporalio:master' into master
8f13360
@jackdawm
d.mutex.Unlock()
f8ab872 
The logic of the function seems like a defer wouldn't unlock in order for that deferred function to handle updating the d.executing state.
@jackdawm jackdawm requested a review from a team as a code owner July 21, 2023 20:16
@Quinn-With-Two-Ns
Copy link
Contributor

What is the goal of this change? what bug/issue does this resolve?

@jackdawm
Copy link
Contributor Author

This is responding to a finding in Semgrep. If we try to recover from this panic, we presumably will still have left that dispatcher locked and wouldn't expect that, so we couldn't properly recover.

cretz
cretz approved these changes Jul 24, 2023
View reviewed changes
Copy link
Member

@cretz cretz left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

While I think we sometimes lock mutexes we intentionally do not unlock locally, I don't think this is one of those cases. It's just really-old pre-Temporal missed code I think (and highly unlikely these conditions are ever satisfied at runtime).

Will let @Quinn-With-Two-Ns review/merge.

Quinn-With-Two-Ns
Quinn-With-Two-Ns approved these changes Jul 24, 2023
View reviewed changes
Copy link
Contributor

@Quinn-With-Two-Ns Quinn-With-Two-Ns left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think if these panics ever trigger the dispatcher should not be used again, but in principle yeah we should unlock

@Quinn-With-Two-Ns Quinn-With-Two-Ns merged commit a059d88 into temporalio:master Jul 24, 2023
5 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Quinn-With-Two-Ns Quinn-With-Two-Ns Quinn-With-Two-Ns approved these changes

@cretz cretz cretz approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@jackdawm @Quinn-With-Two-Ns @cretz