BUG/MEDIUM: threads/stick-tables: close a race condition on stktable_trash_expired() The spin_unlock() was called just before setting the expiry to TICK_ETERNITY, so if another thread has the time to perform its update and set a timeout, this would would clear it.

commit: 4d5f13cab3411cae504d579c4011a6707f133580 [log] [tgz]
author: Willy Tarreau <w@1wt.eu> Sun Nov 05 11:04:47 2017 +0100
committer: Willy Tarreau <w@1wt.eu> Sun Nov 05 11:04:47 2017 +0100
tree: 9a152e2024176778c07e0d3328c657172bf2a517
parent: 03071f69377f94fbe69f6ca00f10f4313432edf1 [diff] [blame]
diff --git a/src/stick_table.c b/src/stick_table.c
index 0e84102..4810c7f 100644
--- a/src/stick_table.c
+++ b/src/stick_table.c

@@ -536,8 +536,7 @@
 		if (likely(tick_is_lt(now_ms, eb->key))) {
 			/* timer not expired yet, revisit it later */
 			t->exp_next = eb->key;
-			SPIN_UNLOCK(STK_TABLE_LOCK, &t->lock);
-			return t->exp_next;
+			goto out_unlock;
 		}
 
 		/* timer looks expired, detach it from the queue */
@@ -567,10 +566,11 @@
 		eb32_delete(&ts->upd);
 		__stksess_free(t, ts);
 	}
-	SPIN_UNLOCK(STK_TABLE_LOCK, &t->lock);
 
 	/* We have found no task to expire in any tree */
 	t->exp_next = TICK_ETERNITY;
+out_unlock:
+	SPIN_UNLOCK(STK_TABLE_LOCK, &t->lock);
 	return t->exp_next;
 }
commit	4d5f13cab3411cae504d579c4011a6707f133580	[log] [tgz]
author	Willy Tarreau <w@1wt.eu>	Sun Nov 05 11:04:47 2017 +0100
committer	Willy Tarreau <w@1wt.eu>	Sun Nov 05 11:04:47 2017 +0100
tree	9a152e2024176778c07e0d3328c657172bf2a517
parent	03071f69377f94fbe69f6ca00f10f4313432edf1 [diff] [blame]