Skip to content

fix: handle temp file removal race condition in concurrent initializa… #1185

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
mukhtaronif wants to merge 3 commits into
base: main
Choose a base branch
from
Open

fix: handle temp file removal race condition in concurrent initializa… #1185

mukhtaronif wants to merge 3 commits into from

Conversation

@mukhtaronif
Copy link

@mukhtaronif mukhtaronif commented Jan 11, 2026

…tion

When multiple SQLPage instances start simultaneously in the same directory, they can encounter a race condition during initialization. The create_default_database() function creates a temporary file to test directory writability, then removes it. If multiple instances try to remove the same file concurrently, some panic with 'No such file or directory'.

This commit replaces the .expect() panic with graceful error handling using if let Err(). The writability test has already succeeded by the time we try to remove the file, so whether another instance removed it is irrelevant.

Includes a test that spawns 10 concurrent threads initializing AppConfig to verify no panics occur.

ref #1183

mukhtaronif and others added 3 commits January 11, 2026 18:12
@mukhtaronif
fix: handle temp file removal race condition in concurrent initializa…
6116c6f 
…tion

When multiple SQLPage instances start simultaneously in the same directory,
they can encounter a race condition during initialization. The create_default_database()
function creates a temporary file to test directory writability, then removes it.
If multiple instances try to remove the same file concurrently, some panic with
'No such file or directory'.

This commit replaces the .expect() panic with graceful error handling using
if let Err(). The writability test has already succeeded by the time we try
to remove the file, so whether another instance removed it is irrelevant.

Includes a test that spawns 10 concurrent threads initializing AppConfig
to verify no panics occur.

ref sqlpage#1183
@lovasoa
cargo fmt
31e7b0f
@lovasoa
the error may have another cause
9b6f8d1
lovasoa
lovasoa requested changes Jan 11, 2026
View reviewed changes
src/app_config.rs
));
std::fs::create_dir_all(&test_dir).unwrap();

env::remove_var("DATABASE_URL");
Copy link
Collaborator

@lovasoa lovasoa Jan 11, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I don't think it's safe to just remove this env var like that. We are actually relying on this env var in other tests when running against a non-default db.

@lovasoa
Copy link
Collaborator

lovasoa commented Jan 11, 2026

@mukhtaronif did you actually manage to reproduce the crash with the test ? I tried removing the fix but keeping the test, and it does not catch the problem for me.

@mukhtaronif
Copy link
Author

mukhtaronif commented Jan 11, 2026

@mukhtaronif did you actually manage to reproduce the crash with the test ? I tried removing the fix but keeping the test, and it does not catch the problem for me.

No, I wasn't able to reliably reproduce the crash with the test either. I also tried reverting the fix and running the test multiple times, and it consistently passed.

The race condition is timing-dependent and difficult to trigger in a test environment. Even with a barrier to synchronize the threads in the test, the file system operations complete so quickly that the race window is extremely narrow.
The test could still serve as:

  • A regression guard that verifies concurrent initialization doesn't panic (with the fix)
  • Documentation of the expected concurrent usage pattern

@mukhtaronif
Copy link
Author

mukhtaronif commented Jan 11, 2026

We have decided to let surveilr set the DATABASE_URL environment variable before calling AppConfig::from_cli(), which prevents SQLPage from calling create_default_database() entirely and avoids triggering the race condition in the first place.

@lovasoa
Copy link
Collaborator

lovasoa commented Jan 12, 2026

ok, let's remove the test altogether then

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@lovasoa lovasoa lovasoa requested changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@mukhtaronif @lovasoa