Add fixes suggested by DeepSeek

me-no-dev · me-no-dev · commit c7ce71725d8b · 2025-01-27T23:36:38.000+02:00
diff --git a/src/AsyncTCP.cpp b/src/AsyncTCP.cpp
@@ -154,64 +154,66 @@ static inline bool _prepend_async_event(lwip_tcp_event_packet_t** e, TickType_t
 }
 
 static inline bool _get_async_event(lwip_tcp_event_packet_t** e) {
-  if (!_async_queue) {
-    return false;
-  }
+  while (true) {
+    if (!_async_queue) {
+      break;
+    }
 
 #if CONFIG_ASYNC_TCP_USE_WDT
-  // need to return periodically to feed the dog
-  if (xQueueReceive(_async_queue, e, pdMS_TO_TICKS(1000)) != pdPASS)
-    return false;
+    // need to return periodically to feed the dog
+    if (xQueueReceive(_async_queue, e, pdMS_TO_TICKS(1000)) != pdPASS)
+      break;
 #else
-  if (xQueueReceive(_async_queue, e, portMAX_DELAY) != pdPASS)
-    return false;
+    if (xQueueReceive(_async_queue, e, portMAX_DELAY) != pdPASS)
+      break;
 #endif
 
-  if ((*e)->event != LWIP_TCP_POLL)
-    return true;
-
-  /*
-    Let's try to coalesce two (or more) consecutive poll events into one
-    this usually happens with poor implemented user-callbacks that are runs too long and makes poll events to stack in the queue
-    if consecutive user callback for a same connection runs longer that poll time then it will fill the queue with events until it deadlocks.
-    This is a workaround to mitigate such poor designs and won't let other events/connections to starve the task time.
-    It won't be effective if user would run multiple simultaneous long running callbacks due to message interleaving.
-    todo: implement some kind of fair dequeing or (better) simply punish user for a bad designed callbacks by resetting hog connections
-  */
-  lwip_tcp_event_packet_t* next_pkt = NULL;
-  while (xQueuePeek(_async_queue, &next_pkt, 0) == pdPASS) {
-    if (next_pkt->arg == (*e)->arg && next_pkt->event == LWIP_TCP_POLL) {
-      if (xQueueReceive(_async_queue, &next_pkt, 0) == pdPASS) {
-        free(next_pkt);
-        next_pkt = NULL;
-        log_d("coalescing polls, network congestion or async callbacks might be too slow!");
-        continue;
+    if ((*e)->event != LWIP_TCP_POLL)
+      return true;
+
+    /*
+      Let's try to coalesce two (or more) consecutive poll events into one
+      this usually happens with poor implemented user-callbacks that are runs too long and makes poll events to stack in the queue
+      if consecutive user callback for a same connection runs longer that poll time then it will fill the queue with events until it deadlocks.
+      This is a workaround to mitigate such poor designs and won't let other events/connections to starve the task time.
+      It won't be effective if user would run multiple simultaneous long running callbacks due to message interleaving.
+      todo: implement some kind of fair dequeing or (better) simply punish user for a bad designed callbacks by resetting hog connections
+    */
+    lwip_tcp_event_packet_t* next_pkt = NULL;
+    while (xQueuePeek(_async_queue, &next_pkt, 0) == pdPASS) {
+      if (next_pkt->arg == (*e)->arg && next_pkt->event == LWIP_TCP_POLL) {
+        if (xQueueReceive(_async_queue, &next_pkt, 0) == pdPASS) {
+          free(next_pkt);
+          next_pkt = NULL;
+          log_d("coalescing polls, network congestion or async callbacks might be too slow!");
+          continue;
+        }
       }
+
+      // quit while loop if next event can't be discarded
+      break;
     }
 
-    // quit while loop if next event can't be discarded
-    break;
-  }
+    /*
+      now we have to decide if to proceed with poll callback handler or discard it?
+      poor designed apps using asynctcp without proper dataflow control could flood the queue with interleaved pool/ack events.
+      I.e. on each poll app would try to generate more data to send, which in turn results in additional ack event triggering chain effect
+      for long connections. Or poll callback could take long time starving other connections. Anyway our goal is to keep the queue length
+      grows under control (if possible) and poll events are the safest to discard.
+      Let's discard poll events processing using linear-increasing probability curve when queue size grows over 3/4
+      Poll events are periodic and connection could get another chance next time
+    */
+    if (uxQueueMessagesWaiting(_async_queue) > (rand() % CONFIG_ASYNC_TCP_QUEUE_SIZE / 4 + CONFIG_ASYNC_TCP_QUEUE_SIZE * 3 / 4)) {
+      free(*e);
+      *e = NULL;
+      log_d("discarding poll due to queue congestion");
+      continue; // Retry
+    }
 
-  /*
-    now we have to decide if to proceed with poll callback handler or discard it?
-    poor designed apps using asynctcp without proper dataflow control could flood the queue with interleaved pool/ack events.
-    I.e. on each poll app would try to generate more data to send, which in turn results in additional ack event triggering chain effect
-    for long connections. Or poll callback could take long time starving other connections. Anyway our goal is to keep the queue length
-    grows under control (if possible) and poll events are the safest to discard.
-    Let's discard poll events processing using linear-increasing probability curve when queue size grows over 3/4
-    Poll events are periodic and connection could get another chance next time
-  */
-  if (uxQueueMessagesWaiting(_async_queue) > (rand() % CONFIG_ASYNC_TCP_QUEUE_SIZE / 4 + CONFIG_ASYNC_TCP_QUEUE_SIZE * 3 / 4)) {
-    free(*e);
-    *e = NULL;
-    log_d("discarding poll due to queue congestion");
-    // evict next event from a queue
-    return _get_async_event(e);
+    // last resort return
+    return true;
   }
-
-  // last resort return
-  return true;
+  return false;
 }
 
 static bool _remove_events_with_arg(void* arg) {
@@ -228,7 +230,7 @@ static bool _remove_events_with_arg(void* arg) {
       return false;
     }
     // discard packet if matching
-    if ((int)first_packet->arg == (int)arg) {
+    if ((uintptr_t)first_packet->arg == (uintptr_t)arg) {
       free(first_packet);
       first_packet = NULL;
     } else if (xQueueSend(_async_queue, &first_packet, 0) != pdPASS) {
@@ -245,7 +247,7 @@ static bool _remove_events_with_arg(void* arg) {
     if (xQueueReceive(_async_queue, &packet, 0) != pdPASS) {
       return false;
     }
-    if ((int)packet->arg == (int)arg) {
+    if ((uintptr_t)packet->arg == (uintptr_t)arg) {
       // remove matching event
       free(packet);
       packet = NULL;
@@ -363,6 +365,10 @@ static bool _start_async_task() {
 
 static int8_t _tcp_clear_events(void* arg) {
   lwip_tcp_event_packet_t* e = (lwip_tcp_event_packet_t*)malloc(sizeof(lwip_tcp_event_packet_t));
+  if (!e) {
+    log_e("Failed to allocate event packet");
+    return ERR_MEM;
+  }
   e->event = LWIP_TCP_CLEAR;
   e->arg = arg;
   if (!_prepend_async_event(&e)) {
@@ -374,6 +380,10 @@ static int8_t _tcp_clear_events(void* arg) {
 static int8_t _tcp_connected(void* arg, tcp_pcb* pcb, int8_t err) {
   // ets_printf("+C: 0x%08x\n", pcb);
   lwip_tcp_event_packet_t* e = (lwip_tcp_event_packet_t*)malloc(sizeof(lwip_tcp_event_packet_t));
+  if (!e) {
+    log_e("Failed to allocate event packet");
+    return ERR_MEM;
+  }
   e->event = LWIP_TCP_CONNECTED;
   e->arg = arg;
   e->connected.pcb = pcb;
@@ -394,6 +404,10 @@ static int8_t _tcp_poll(void* arg, struct tcp_pcb* pcb) {
 
   // ets_printf("+P: 0x%08x\n", pcb);
   lwip_tcp_event_packet_t* e = (lwip_tcp_event_packet_t*)malloc(sizeof(lwip_tcp_event_packet_t));
+  if (!e) {
+    log_e("Failed to allocate event packet");
+    return ERR_MEM;
+  }
   e->event = LWIP_TCP_POLL;
   e->arg = arg;
   e->poll.pcb = pcb;
@@ -406,6 +420,10 @@ static int8_t _tcp_poll(void* arg, struct tcp_pcb* pcb) {
 
 static int8_t _tcp_recv(void* arg, struct tcp_pcb* pcb, struct pbuf* pb, int8_t err) {
   lwip_tcp_event_packet_t* e = (lwip_tcp_event_packet_t*)malloc(sizeof(lwip_tcp_event_packet_t));
+  if (!e) {
+    log_e("Failed to allocate event packet");
+    return ERR_MEM;
+  }
   e->arg = arg;
   if (pb) {
     // ets_printf("+R: 0x%08x\n", pcb);
@@ -430,6 +448,10 @@ static int8_t _tcp_recv(void* arg, struct tcp_pcb* pcb, struct pbuf* pb, int8_t
 static int8_t _tcp_sent(void* arg, struct tcp_pcb* pcb, uint16_t len) {
   // ets_printf("+S: 0x%08x\n", pcb);
   lwip_tcp_event_packet_t* e = (lwip_tcp_event_packet_t*)malloc(sizeof(lwip_tcp_event_packet_t));
+  if (!e) {
+    log_e("Failed to allocate event packet");
+    return ERR_MEM;
+  }
   e->event = LWIP_TCP_SENT;
   e->arg = arg;
   e->sent.pcb = pcb;
@@ -443,6 +465,10 @@ static int8_t _tcp_sent(void* arg, struct tcp_pcb* pcb, uint16_t len) {
 static void _tcp_error(void* arg, int8_t err) {
   // ets_printf("+E: 0x%08x\n", arg);
   lwip_tcp_event_packet_t* e = (lwip_tcp_event_packet_t*)malloc(sizeof(lwip_tcp_event_packet_t));
+  if (!e) {
+    log_e("Failed to allocate event packet");
+    return ERR_MEM;
+  }
   e->event = LWIP_TCP_ERROR;
   e->arg = arg;
   e->error.err = err;
@@ -453,6 +479,10 @@ static void _tcp_error(void* arg, int8_t err) {
 
 static void _tcp_dns_found(const char* name, struct ip_addr* ipaddr, void* arg) {
   lwip_tcp_event_packet_t* e = (lwip_tcp_event_packet_t*)malloc(sizeof(lwip_tcp_event_packet_t));
+  if (!e) {
+    log_e("Failed to allocate event packet");
+    return ERR_MEM;
+  }
   // ets_printf("+DNS: name=%s ipaddr=0x%08x arg=%x\n", name, ipaddr, arg);
   e->event = LWIP_TCP_DNS;
   e->arg = arg;
@@ -470,6 +500,10 @@ static void _tcp_dns_found(const char* name, struct ip_addr* ipaddr, void* arg)
 // Used to switch out from LwIP thread
 static int8_t _tcp_accept(void* arg, AsyncClient* client) {
   lwip_tcp_event_packet_t* e = (lwip_tcp_event_packet_t*)malloc(sizeof(lwip_tcp_event_packet_t));
+  if (!e) {
+    log_e("Failed to allocate event packet");
+    return ERR_MEM;
+  }
   e->event = LWIP_TCP_ACCEPT;
   e->arg = arg;
   e->accept.client = client;
@@ -680,7 +714,7 @@ static tcp_pcb* _tcp_listen_with_backlog(tcp_pcb* pcb, uint8_t backlog) {
  */
 
 AsyncClient::AsyncClient(tcp_pcb* pcb)
-    : _connect_cb(0), _connect_cb_arg(0), _discard_cb(0), _discard_cb_arg(0), _sent_cb(0), _sent_cb_arg(0), _error_cb(0), _error_cb_arg(0), _recv_cb(0), _recv_cb_arg(0), _pb_cb(0), _pb_cb_arg(0), _timeout_cb(0), _timeout_cb_arg(0), _ack_pcb(true), _tx_last_packet(0), _rx_timeout(0), _rx_last_ack(0), _ack_timeout(CONFIG_ASYNC_TCP_MAX_ACK_TIME), _connect_port(0), prev(NULL), next(NULL) {
+    : _connect_cb(0), _connect_cb_arg(0), _discard_cb(0), _discard_cb_arg(0), _sent_cb(0), _sent_cb_arg(0), _error_cb(0), _error_cb_arg(0), _recv_cb(0), _recv_cb_arg(0), _pb_cb(0), _pb_cb_arg(0), _timeout_cb(0), _timeout_cb_arg(0), _poll_cb(0), _poll_cb_arg(0), _ack_pcb(true), _tx_last_packet(0), _rx_timeout(0), _rx_last_ack(0), _ack_timeout(CONFIG_ASYNC_TCP_MAX_ACK_TIME), _connect_port(0), prev(NULL), next(NULL) {
   _pcb = pcb;
   _closed_slot = INVALID_CLOSED_SLOT;
   if (_pcb) {
diff --git a/src/AsyncTCP.h b/src/AsyncTCP.h
@@ -228,6 +228,7 @@ class AsyncClient {
     // set callback - data received (called if onPacket is not used)
     void onData(AcDataHandler cb, void* arg = 0);
     // set callback - data received
+    // !!! You MUST call ackPacket() or free the pbuf yourself to prevent memory leaks
     void onPacket(AcPacketHandler cb, void* arg = 0);
     // set callback - ack timeout
     void onTimeout(AcTimeoutHandler cb, void* arg = 0);
