BUGFIX: Added cancel method to fix context leak #4767
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Signed-off-by: fazledyn-or <[email protected]>
fazledyn-or
requested review from
nghialv,
khanhtc1202,
kentakozuka,
ffjlabo and
t-kikuc
as code owners
Codecov ReportAll modified and coverable lines are covered by tests ✅
Additional details and impacted files@@ Coverage Diff @@
## master #4767 +/- ##
=======================================
Coverage 31.03% 31.04%
=======================================
Files 225 225
Lines 26257 26257
=======================================
+ Hits 8150 8152 +2
+ Misses 17457 17455 -2
Partials 650 650 ☔ View full report in Codecov by Sentry. |
Merged
t-kikuc
pushed a commit
that referenced
this pull request
Apr 8, 2024
Signed-off-by: fazledyn-or <[email protected]>
t-kikuc
pushed a commit
that referenced
this pull request
Apr 8, 2024
Signed-off-by: fazledyn-or <[email protected]>
t-kikuc
added a commit
that referenced
this pull request
Apr 8, 2024
* BUGFIX: Added cancel method to fix context leak (#4767) Signed-off-by: fazledyn-or <[email protected]> * Define piped pluggin api (#4815) Signed-off-by: khanhtc1202 <[email protected]> * Update BuldPlan API for piped pluggin (#4821) Signed-off-by: khanhtc1202 <[email protected]> * Relocate plugin proto (#4826) Signed-off-by: khanhtc1202 <[email protected]> * Update controller to use new planner logic (#4825) * Update controller to use new planner logic Signed-off-by: khanhtc1202 <[email protected]> * Update proto path Signed-off-by: khanhtc1202 <[email protected]> * Fix typo Signed-off-by: khanhtc1202 <[email protected]> * Fix typo Signed-off-by: khanhtc1202 <[email protected]> * Update planner logic to call proto instead of self executing Signed-off-by: khanhtc1202 <[email protected]> --------- Signed-off-by: khanhtc1202 <[email protected]> * Update plugin proto for ExecutorService and add piped pluginservice (#4834) * Add plugin planner for k8s (#4819) * [WIP] Add planner Signed-off-by: Yoshiki Fujikane <[email protected]> * Not to use out.Version Signed-off-by: Yoshiki Fujikane <[email protected]> * Use last_successful_commit_hash and last_successful_config_file_name Signed-off-by: Yoshiki Fujikane <[email protected]> * Use in.WorkingDir Signed-off-by: Yoshiki Fujikane <[email protected]> * Use in.PipedConfig Signed-off-by: Yoshiki Fujikane <[email protected]> * Create git client Signed-off-by: Yoshiki Fujikane <[email protected]> * Create secret encryptor Signed-off-by: Yoshiki Fujikane <[email protected]> * Add startup server implementation Signed-off-by: Yoshiki Fujikane <[email protected]> * Fix for relocation of proto api Signed-off-by: Yoshiki Fujikane <[email protected]> * Add roughly implementation for planner plugin Signed-off-by: Yoshiki Fujikane <[email protected]> * Rename pkg name Signed-off-by: Yoshiki Fujikane <[email protected]> * Add licence Signed-off-by: Yoshiki Fujikane <[email protected]> * Comment out for the testing code Signed-off-by: Yoshiki Fujikane <[email protected]> --------- Signed-off-by: Yoshiki Fujikane <[email protected]> * Truncate `deploymentStatus` metrics after reporting stats (#4857) * Truncate deploymentStatus metrics after reporting to avoid excess message size Signed-off-by: t-kikuc <[email protected]> * Rename func to Flush() for clarity Signed-off-by: t-kikuc <[email protected]> * Add comment of what's included in statsreporter's body Signed-off-by: t-kikuc <[email protected]> * Fix indent in the comment Signed-off-by: t-kikuc <[email protected]> * Copy change of metrics.go to pipedv1 Signed-off-by: t-kikuc <[email protected]> * Copy change of reporter.go to pipedv1 Signed-off-by: t-kikuc <[email protected]> --------- Signed-off-by: t-kikuc <[email protected]> --------- Signed-off-by: fazledyn-or <[email protected]> Signed-off-by: khanhtc1202 <[email protected]> Signed-off-by: Yoshiki Fujikane <[email protected]> Signed-off-by: t-kikuc <[email protected]> Co-authored-by: Ataf Fazledin Ahamed <[email protected]> Co-authored-by: Khanh Tran <[email protected]> Co-authored-by: Yoshiki Fujikane <[email protected]>
Merged
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
What this PR does / why we need it:
This PR fixes a context leak bug in your code.
Which issue(s) this PR fixes:
None
Does this PR introduce a user-facing change?: No
Details
While triaging your project, our bug fixing tool generated the following message-
In that line, a context is created using the
WithTimeoutmethod, where the returnedcancelFunchandler is ignored. I have introduced thecancelhandler and deferred it so that once the method completes execution, it can be safely cancelled.Sponsorship and Support
This work is done by the security researchers from OpenRefactory and is supported by the Open Source Security Foundation (OpenSSF): Project Alpha-Omega. Alpha-Omega is a project partnering with open source software project maintainers to systematically find new, as-yet-undiscovered vulnerabilities in open source code - and get them fixed – to improve global software supply chain security.
The bug is found by running the Intelligent Code Repair (iCR) tool by OpenRefactory and then manually triaging the results.