The following sections might be updated with supplementary metadata relevant to reviewers and maintainers.

Conflicts

Reviewers, this pull request conflicts with the following ones:

• sync: detect double lock from the same thread #19337 (sync: detect double lock from the same thread by vasild)

If you consider this pull request important, please also help to review the conflicting pull requests. Ideally, start with the one that should be merged first.

@vasild

It would be good if the offending entry is still in the lock stack by the time potential_deadlock_detected() is called because it prints the stack and we want to see the offender in the debug log.

It prints from LockOrders instances, not from the lock stack of the current thread, no?

You are right! I did not realize that the LockStack objects are copied.

Anyway - I think, for EnterCritical() to be a good citizen, if it throws, it should leave its internal structures in the state they were before it was called.

Updated c810cd4 -> 236e760 (pr19340.01 -> pr19340.02, diff):

• addressed @vasild's comment:

operator[] has a side effect that it would insert a new element in m_lock_stacks if the thread that called it does not own any locks.

@vasild

Anyway - I think, for EnterCritical() to be a good citizen, if it throws, it should leave its internal structures in the state they were before it was called.

I'd leave it as is since it seems unrelated to this PR goal.

Reworked after the discussion with @vasild on IRC.

Going to update the OP soon. The OP has been updated.

I'm not sure I fully get what's going on here, but the change looks fine to me. Can you explain how making the copy of the lockstack actually helps? It looks like a race condition to even copy it?

@JeremyRubin thanks for asking! The key here is the added lock_stack.pop_back(), not the copying. The copying is needed because without it the prints from potential_deadlock_detected() would not be complete (because we already removed one element). There is no race because that code is operating under lockdata.dd_mutex.

Let me elaborate with an example:

• Thread t1 acquires lockA
• Thread t2 acquires lockB
• Thread t1 tries to acquire lockB
  • EnterCritical() adds lockB to the lock stack of t1 and succeeds
  • The lock stacks are: t1: lockA, lockB, t2: lockB
  • Now t1 hangs inside the OS mutex lock() function, waiting for lockB to be released.
• Thread t2 tries to acquire lockA
  • EnterCritical() adds lockA to the lock stack of t2 and it is really upset because some threads first (try to) acquire lockA and then lockB and some other threads try in reverse order. It is going to either abort() or throw, lets assume it is going to throw.
  • The lock stacks are: t1: lockA, lockB, t2: lockB, lockA
  • EnterCritical() prints both lock stacks and throws.
  • The caller (in t2) catches the exception and continues executing (this is only happening from tests).

Notice that at the end t2's lock stack is lockB, lockA but it actually only owns lockB -- this is the problem being fixed by this PR. This only matters in tests which catch the exception and continue executing. The other code ends up with abort() and the whole program terminates immediately.

Updated f88222a -> cab80f4 (pr19340.03 -> pr19340.04, diff):

• addressed @MarcoFalke's comment:

Any reason this is now being done before if (lockdata.lockorders.count(p1))continue?

• addressed @MarcoFalke's comment:

Could remove the confusing static's here?

Rebased cab80f4 -> 63e9e40 (pr19340.04 -> pr19340.05) to fix Travis "lint" job errors.

re-ACK 63e9e40