Loading...

XML

Word

Printable

JSON

Type: Bug
Resolution: Fixed
Priority: Major - P3
Fix Version/s: 4.4.14, 5.3.0, 5.0.7
Affects Version/s: 4.4.0, 5.0.0-rc7
Component/s: Networking
Labels:
- servicearch-wfbf-day

Backwards Compatibility:
Fully Compatible
Operating System:
ALL
Backport Requested:

v5.3, v5.0, v4.4
Sprint:
Service Arch 2021-10-04, Service Arch 2021-12-13, Service Arch 2022-1-10, Service Arch 2022-1-24
Linked BF Score:
20
Story Points:
3
Confidence Status:
None
Work Order:
3
CAR Domain/s:
None

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Name(s):
None
Goal Link:
None

cbState->callback is modified without holding ThreadPoolTaskExecutor::_mutex in ThreadPoolTaskExecutor::runCallbackExhaust(). This is memory unsafe because cbState->callback is also modified in the exhaust codepath's RemoteCommandOnReplyFn upon task cancellation. This issue has been observed to cause server crashes when shutting down a replica set monitor due to a partially initialized TaskExecutor::CallbackFn callback being invoked.

is related to

SERVER-58221 Stress test for ThreadPoolTaskExecutor for concurrency coverage

Closed

SERVER-62396 Add a non-deterministic variant for `ThreadPoolTaskExecutor` tests

Backlog

SERVER-45114 Connect AsyncDBClient exhaust functionality throughout

Closed

Assignee:: Amirsaman Memaripour
Reporter:: Max Hirschhorn
Participants:: Amirsaman Memaripour, Githook User, Max Hirschhorn
Votes:: 0 Vote for this issue
Watchers:: 4 Start watching this issue

Created:: Jul 06 2021 11:34:02 PM UTC
Updated:: Oct 29 2023 09:51:16 PM UTC
Resolved:: Jan 06 2022 07:27:55 PM UTC
Confidence Status Last Update:: 16/Dec/21 4:10 PM