Fix concurrency issue in AuthorizationRequestContext.loadRole #8703
Conversation
|
This |
|
@jerqi My motivation for doing this change was to make loadRole() more future-proof and robust against future race conditions if the usage pattern changes (e.g., multi-threaded server environments or future functionality). The extra concurrency guard loads the role only once without incurring heavy overhead. That being the case, if the maintainers prefer this extra complexity isn't required at the moment, I'd be content to just make it simpler. Revert to the less complicated AtomicBoolean.compareAndSet guard, or Maintain the present concurrency-safe solution for future security, perhaps with better documentation, or Do something entirely different? |
|
Context is usually used for provide the variables in the one thread. The context can be accessed by multiple thread. It is a little weird for me. |
There was a problem hiding this comment.
What do you think about modifying it like this:
private final CompletableFuture<Void> roleLoadFuture = new CompletableFuture<>();
private final AtomicBoolean hasLoadedRole = new AtomicBoolean(false);
public void loadRole(Runnable runnable) {
if (hasLoadedRole.compareAndSet(false, true)) {
try {
runnable.run();
roleLoadFuture.complete(null);
} catch (Throwable t) {
roleLoadFuture.completeExceptionally(t);
}
}
}
public boolean authorizeAllow(...) {
roleLoadFuture.join();
AuthorizationKey context = new AuthorizationKey(...);
return allowAuthorizerCache.computeIfAbsent(context, authorizer);
}3 participants
This PR resolves a race condition in AuthorizationRequestContext.loadRole, where multiple threads could execute the role initializer concurrently.
The fix introduces a FutureTask guarded by an AtomicReference, ensuring the initializer runs exactly once, even under concurrent access.
A focused unit test (TestAuthorizationRequestContext) is added to verify that loadRole executes the initializer only once when called from multiple threads.