Skip to content

fix: deadlock between Task.Size and redrawProgress under parallel install #564

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
joshfriend merged 2 commits into from
Apr 21, 2026
Merged

fix: deadlock between Task.Size and redrawProgress under parallel install #564

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
2367fb2
fix: deadlock between Task.Size and redrawProgress under parallel ins…
mcharles-square Apr 21, 2026
45fe13f
fix: use integer range loop to satisfy intrange linter
joshfriend Apr 21, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
10 changes: 8 additions & 2 deletions ui/task.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -42,13 +42,19 @@ func (o *Task) status() (progress int, size int, started bool) {

// Size sets the size of the Task.
func (o *Task) Size(n int) *Task {
// Lock ordering: update o.size under o.lock, then call swapSize separately.
// Callers of UI.redrawProgress acquire ui.lock first and then re-enter each
// task's lock via op.status(); if we held o.lock while calling swapSize
// (which takes ui.lock) two goroutines updating different tasks would
// deadlock — task_A.lock -> ui.lock vs. ui.lock -> task_A.lock.
o.lock.Lock()
defer o.lock.Unlock()
o.w.swapSize(o.size, n)
oldSize := o.size
o.size = n
if o.progress > o.size {
o.progress = o.size
}
o.lock.Unlock()
o.w.swapSize(oldSize, n)
return o
}

Expand Down
61 changes: 61 additions & 0 deletions ui/task_test.go
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,61 @@
package ui

import (
"runtime"
"sync"
"testing"
"time"
)

// TestConcurrentTaskSizeAndAddNoDeadlock is a regression test for a deadlock
// surfaced when hermit install was parallelised in #558.
//
// Lock-ordering audit:
//
// Task.Size: task.lock -> ui.lock (via swapSize)
// UI.redrawProgress: ui.lock -> task_i.lock (via liveOperations / op.status)
//
// These orderings are inconsistent. With serial installs only one task is
// actively updating at any moment, so the cycle never closes. Under parallel
// installs many goroutines drive per-package download progress concurrently,
// each calling Task.Size followed by Task.Add for every chunk received
// (cache/http.go), and the cycle closes: goroutine A holds task_A.lock and
// waits on ui.lock; goroutine B holds ui.lock (inside redrawProgress after its
// own Add) and iterates operations waiting on task_A.lock.
//
// The test races Size and Add across many tasks and fails loudly on deadlock
// rather than hanging for the 10-minute Go test default.
func TestConcurrentTaskSizeAndAddNoDeadlock(t *testing.T) {
ui, _ := NewForTesting()
const tasks = 8
const iterations = 200

var wg sync.WaitGroup
for range tasks {
wg.Add(1)
go func() {
defer wg.Done()
task := ui.Progress("task", 1)
// Mirror cache/http.go: Size() then Add() per chunk.
for j := 1; j <= iterations; j++ {
task.Size(j)
task.Add(1)
}
task.Done()
}()
}

done := make(chan struct{})
go func() {
wg.Wait()
close(done)
}()

select {
case <-done:
case <-time.After(10 * time.Second):
buf := make([]byte, 1<<20)
n := runtime.Stack(buf, true)
t.Fatalf("deadlock: concurrent Task.Size/Task.Add did not complete within 10s\n\ngoroutines:\n%s", buf[:n])
}
}