You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
I've reviewed the changes in pkg/api/webassets/webassets.go. This PR fixes a data race in the GetWebAssets function by adding proper synchronization.
Summary of Changes
The PR adds thread-safe access to the entryPointAssetsCache global variable using sync.RWMutex:
Added sync import
Introduced entryPointAssetsCacheMu (RWMutex) to guard entryPointAssetsCache
Modified GetWebAssets to use read/write locks appropriately
Review Findings
✅ Strengths
Correct mutex usage: The implementation properly uses RLock/RUnlock for reads and Lock/Unlock for writes, which is the appropriate pattern for read-write mutexes.
No lock contention on cache hit: The code reads entryPointAssetsCache while holding the read lock, stores it in ret, then releases the read lock before checking the condition. This minimizes lock hold time.
Proper defer placement: The write lock deferral is correctly placed after acquiring the lock.
Critical concurrency issue: After acquiring the write lock, the code doesn't re-check if another goroutine already populated the cache. This can lead to redundant work.
Current code:
entryPointAssetsCacheMu.Lock()
deferentryPointAssetsCacheMu.Unlock()
varerrerrorvarresult*dtos.EntryPointAssets// proceeds to load assets even if cache was just populated
Recommended fix:
entryPointAssetsCacheMu.Lock()
deferentryPointAssetsCacheMu.Unlock()
// Double-check: another goroutine might have loaded the cacheifcfg.Env!=setting.Dev&&entryPointAssetsCache!=nil {
returnentryPointAssetsCache, nil
}
varerrerrorvarresult*dtos.EntryPointAssets
Why this matters: Without double-checking, if 100 goroutines simultaneously call GetWebAssets when the cache is empty, all will pass the initial read-locked check and queue up for the write lock. Each will then load the assets from disk/CDN sequentially, wasting resources.
Potential nil return with nil error (pkg/api/webassets/webassets.go:69-70)
If readWebAssetsFromCDN returns (nil, nil) when cdn != "", the code will set entryPointAssetsCache = nil and return (nil, nil). This violates the typical Go convention where error == nil implies success.
However, looking at readWebAssetsFromCDN implementation, it appears to always return an error if the result is nil, so this may be a non-issue in practice. Still, defensive programming would add a check.
Consider removing the specific version from the comment or marking it as an example.
Additional Observations
Cache invalidation: The code only caches in non-Dev environments, which is correct for development. However, there's no mechanism to invalidate the cache at runtime if needed.
Global state: The TODO comment acknowledges that global state isn't ideal. While this PR fixes the immediate data race, consider future refactoring to dependency-inject this cache.
Error handling: The current implementation returns the last error encountered even if the cache was successfully populated. This seems intentional but could be clarified with a comment.
Verdict
Overall assessment: This is a solid fix for the data race issue. The core synchronization logic is correct and will prevent race conditions. The main concern is the missing double-check pattern, which could cause unnecessary resource usage under high concurrency but won't cause correctness issues.
Recommendation: Approve with suggestion to add double-check locking to optimize for concurrent access patterns.
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Test 8
Replicated from ai-code-review-evaluation/grafana-greptile#8