Fix a couple of race conditions, and use enum instead of bool

tboundy-trimble · gigaplex · commit 94ab4048c44d · 2015-11-25T22:42:26.000+11:00
diff --git a/Release/include/cpprest/details/http_server_httpsys.h b/Release/include/cpprest/details/http_server_httpsys.h
@@ -99,8 +99,13 @@ struct windows_request_context : http::details::_http_server_context
     // Dispatch request to the provided http_listener.
     void dispatch_request_to_listener(_In_ web::http::experimental::listener::details::http_listener_impl *pListener);
 
-    // Initialise the response task callbacks
-    void do_response(bool bad_request);
+    enum ShouldWaitForBody
+    {
+        WaitForBody,
+        DontWaitForBody
+    };
+    // Initialise the response task callbacks. If the body has been requested, we should wait for it to avoid race conditions.
+    void init_response_callbacks(ShouldWaitForBody shouldWait);
 
     // Read in a portion of the request body.
     void read_request_body_chunk();
diff --git a/Release/src/http/listener/http_server_httpsys.cpp b/Release/src/http/listener/http_server_httpsys.cpp
@@ -536,7 +536,7 @@ void windows_request_context::async_process_request(HTTP_REQUEST_ID request_id,
     {
         CancelThreadpoolIo(pServer->m_threadpool_io);
         m_msg.reply(status_codes::InternalError);
-        do_response(true);
+        init_response_callbacks(DontWaitForBody);
     }
 }
 
@@ -548,7 +548,7 @@ void windows_request_context::read_headers_io_completion(DWORD error_code, DWORD
     if(error_code != NO_ERROR)
     {
         m_msg.reply(status_codes::InternalError);
-        do_response(true);
+        init_response_callbacks(DontWaitForBody);
     }
     else
     {
@@ -582,7 +582,9 @@ void windows_request_context::read_headers_io_completion(DWORD error_code, DWORD
         else
         {
             m_msg.reply(status_codes::BadRequest, badRequestMsg);
-            do_response(true);
+
+            // Even though we have a bad request, we should wait for the body otherwise we risk racing over m_overlapped
+            init_response_callbacks(WaitForBody);
         }
     }
 }
@@ -623,7 +625,6 @@ void windows_request_context::read_request_body_chunk()
         else
         {
             m_msg._get_impl()->_complete(0, std::make_exception_ptr(http_exception(error_code)));
-            m_msg._reply_if_not_already(status_codes::InternalError);
         }
     }
 }
@@ -649,7 +650,6 @@ void windows_request_context::read_body_io_completion(DWORD error_code, DWORD by
     {
         request_body_buf.commit(0);
         m_msg._get_impl()->_complete(0, std::make_exception_ptr(http_exception(error_code)));
-        m_msg._reply_if_not_already(status_codes::InternalError);
     }
 }
 
@@ -660,7 +660,7 @@ void windows_request_context::dispatch_request_to_listener(_In_ web::http::exper
     // Save http_request copy to dispatch to user's handler in case content_ready() completes before.
     http_request request = m_msg;
 
-    do_response(false);
+    init_response_callbacks(WaitForBody);
 
     // Look up the lock for the http_listener.
     auto *pServer = static_cast<http_windows_server *>(http_server_api::server_api());
@@ -693,7 +693,7 @@ void windows_request_context::dispatch_request_to_listener(_In_ web::http::exper
     }
 }
 
-void windows_request_context::do_response(bool bad_request)
+void windows_request_context::init_response_callbacks(ShouldWaitForBody shouldWait)
 {
     // Use a proxy event so we're not causing a circular reference between the http_request and the response task
 	pplx::task_completion_event<void> proxy_content_ready;
@@ -722,7 +722,7 @@ void windows_request_context::do_response(bool bad_request)
         proxy_content_ready.set();
     });
 
-    get_response_task.then([this, bad_request, proxy_content_ready](pplx::task<http::http_response> responseTask)
+    get_response_task.then([this, proxy_content_ready](pplx::task<http::http_response> responseTask)
     {
         // Don't let an exception from sending the response bring down the server.
         try
@@ -741,19 +741,25 @@ void windows_request_context::do_response(bool bad_request)
             m_response = http::http_response(status_codes::InternalError);
         }
 
-        if (bad_request)
-        {
-            async_process_response();
-        }
-        else
+        // Wait until the content download finished before replying because m_overlapped is reused,
+        // and we don't want to delete 'this' if the body is still downloading
+        pplx::create_task(proxy_content_ready).then([this](pplx::task<void> t)
         {
-            // Wait until the content download finished before replying.
-            pplx::create_task(proxy_content_ready).then([this](pplx::task<void> requestBody)
+            try
             {
+                t.wait();
                 async_process_response();
-            });
-        }
+            }
+            catch (...)
+            {
+            }
+        }).wait();
     });
+
+    if (shouldWait == DontWaitForBody)
+    {
+        proxy_content_ready.set();
+    }
 }
 
 void windows_request_context::async_process_response()

Original file line number	Diff line number	Diff line change
`@@ -536,7 +536,7 @@ void windows_request_context::async_process_request(HTTP_REQUEST_ID request_id,`
`536`	`536`	`{`
`537`	`537`	`CancelThreadpoolIo(pServer->m_threadpool_io);`
`538`	`538`	`m_msg.reply(status_codes::InternalError);`
`539`		`- do_response(true);`
	`539`	`+ init_response_callbacks(DontWaitForBody);`
`540`	`540`	`}`
`541`	`541`	`}`
`542`	`542`
`@@ -548,7 +548,7 @@ void windows_request_context::read_headers_io_completion(DWORD error_code, DWORD`
`548`	`548`	`if(error_code != NO_ERROR)`
`549`	`549`	`{`
`550`	`550`	`m_msg.reply(status_codes::InternalError);`
`551`		`- do_response(true);`
	`551`	`+ init_response_callbacks(DontWaitForBody);`
`552`	`552`	`}`
`553`	`553`	`else`
`554`	`554`	`{`
`@@ -582,7 +582,9 @@ void windows_request_context::read_headers_io_completion(DWORD error_code, DWORD`
`582`	`582`	`else`
`583`	`583`	`{`
`584`	`584`	`m_msg.reply(status_codes::BadRequest, badRequestMsg);`
`585`		`- do_response(true);`
	`585`	`+`
	`586`	`+ // Even though we have a bad request, we should wait for the body otherwise we risk racing over m_overlapped`
	`587`	`+ init_response_callbacks(WaitForBody);`
`586`	`588`	`}`
`587`	`589`	`}`
`588`	`590`	`}`
`@@ -623,7 +625,6 @@ void windows_request_context::read_request_body_chunk()`
`623`	`625`	`else`
`624`	`626`	`{`
`625`	`627`	`m_msg._get_impl()->_complete(0, std::make_exception_ptr(http_exception(error_code)));`
`626`		`- m_msg._reply_if_not_already(status_codes::InternalError);`
`627`	`628`	`}`
`628`	`629`	`}`
`629`	`630`	`}`
`@@ -649,7 +650,6 @@ void windows_request_context::read_body_io_completion(DWORD error_code, DWORD by`
`649`	`650`	`{`
`650`	`651`	`request_body_buf.commit(0);`
`651`	`652`	`m_msg._get_impl()->_complete(0, std::make_exception_ptr(http_exception(error_code)));`
`652`		`- m_msg._reply_if_not_already(status_codes::InternalError);`
`653`	`653`	`}`
`654`	`654`	`}`
`655`	`655`
`@@ -660,7 +660,7 @@ void windows_request_context::dispatch_request_to_listener(_In_ web::http::exper`
`660`	`660`	`// Save http_request copy to dispatch to user's handler in case content_ready() completes before.`
`661`	`661`	`http_request request = m_msg;`
`662`	`662`
`663`		`- do_response(false);`
	`663`	`+ init_response_callbacks(WaitForBody);`
`664`	`664`
`665`	`665`	`// Look up the lock for the http_listener.`
`666`	`666`	`auto pServer = static_cast<http_windows_server >(http_server_api::server_api());`
`@@ -693,7 +693,7 @@ void windows_request_context::dispatch_request_to_listener(_In_ web::http::exper`
`693`	`693`	`}`
`694`	`694`	`}`
`695`	`695`
`696`		`-void windows_request_context::do_response(bool bad_request)`
	`696`	`+void windows_request_context::init_response_callbacks(ShouldWaitForBody shouldWait)`
`697`	`697`	`{`
`698`	`698`	`// Use a proxy event so we're not causing a circular reference between the http_request and the response task`
`699`	`699`	`pplx::task_completion_event<void> proxy_content_ready;`
`@@ -722,7 +722,7 @@ void windows_request_context::do_response(bool bad_request)`
`722`	`722`	`proxy_content_ready.set();`
`723`	`723`	`});`
`724`	`724`
`725`		`- get_response_task.then([this, bad_request, proxy_content_ready](pplx::task<http::http_response> responseTask)`
	`725`	`+ get_response_task.then([this, proxy_content_ready](pplx::task<http::http_response> responseTask)`
`726`	`726`	`{`
`727`	`727`	`// Don't let an exception from sending the response bring down the server.`
`728`	`728`	`try`
`@@ -741,19 +741,25 @@ void windows_request_context::do_response(bool bad_request)`
`741`	`741`	`m_response = http::http_response(status_codes::InternalError);`
`742`	`742`	`}`
`743`	`743`
`744`		`- if (bad_request)`
`745`		`- {`
`746`		`- async_process_response();`
`747`		`- }`
`748`		`- else`
	`744`	`+ // Wait until the content download finished before replying because m_overlapped is reused,`
	`745`	`+ // and we don't want to delete 'this' if the body is still downloading`
	`746`	`+ pplx::create_task(proxy_content_ready).then([this](pplx::task<void> t)`
`749`	`747`	`{`
`750`		`- // Wait until the content download finished before replying.`
`751`		`- pplx::create_task(proxy_content_ready).then([this](pplx::task<void> requestBody)`
	`748`	`+ try`
`752`	`749`	`{`
	`750`	`+ t.wait();`
`753`	`751`	`async_process_response();`
`754`		`- });`
`755`		`- }`
	`752`	`+ }`
	`753`	`+ catch (...)`
	`754`	`+ {`
	`755`	`+ }`
	`756`	`+ }).wait();`
`756`	`757`	`});`
	`758`	`+`
	`759`	`+ if (shouldWait == DontWaitForBody)`
	`760`	`+ {`
	`761`	`+ proxy_content_ready.set();`
	`762`	`+ }`
`757`	`763`	`}`
`758`	`764`
`759`	`765`	`void windows_request_context::async_process_response()`