Fix[BMQ]: unsafe schemalearner use #618
Conversation
Signed-off-by: dorjesinpo <129227380+dorjesinpo@users.noreply.github.com>
Signed-off-by: dorjesinpo <129227380+dorjesinpo@users.noreply.github.com>
dorjesinpo
force-pushed
the
fix/unsafe-scheamalearner-use
branch
from
a454b0d to
91d01b5
Compare
![bmq-oss-ci[bot]](https://avatars.githubusercontent.com/u/1416818?s=60&v=4){kind=small}
678098
changed the title
| @@ -60,6 +60,7 @@ | |||
| // BMQ | |||
|
|
|||
| #include <bmqa_queueid.h> | |||
| #include <bmqp_messageproperties.h> | |||
There was a problem hiding this comment.
The only change in this header is this new field:
bmqp::MessageProperties::SchemaPtr d_schema_sp
It is a pointer type, so we don't need to know the class sizeof in advance. We can replace include to a heavy header with a forward declaration to this type. At some point in the future we might want to optimize includes to achieve a better compilation time.
If you think it's helpful, you can make this change now.
| @@ -251,8 +259,7 @@ class Event { | |||
| // has been constructed in its buffer. We | |||
| // cannot rely on 'd_msgEventMode' | |||
|
|
|||
| bsl::vector<bsl::pair<bmqt::CorrelationId, unsigned int> > | |||
| d_correlationIds; | |||
| bsl::vector<MessageContext> d_contexts; | |||
There was a problem hiding this comment.
Need to update the comment below
|
|
||
| return d_correlationIds[position].second; | ||
| return d_contexts[position]; |
There was a problem hiding this comment.
Less code possible
We can turn position arg to type size_t (it allows to remove the check 0 <= position.
And use vector.at(size_t pos) that has another range check with performance hint:
https://github.com/bloomberg/bde/blob/2c7ef378b00a779198ef4bfc774ce835d741c545/groups/bsl/bslstl/bslstl_vector.h#L2496
| @@ -811,8 +803,11 @@ inline void Event::addCorrelationId(const bmqt::CorrelationId& correlationId, | |||
| // BSLS_ASSERT_SAFE(messageEventMode() == MessageEventMode::e_READ); | |||
| // BSLS_ASSERT_SAFE(d_rawEvent.isAckEvent()); | |||
|
|
|||
| d_correlationIds.push_back( | |||
| bsl::make_pair(correlationId, subscriptionHandleId)); | |||
| d_contexts.resize(d_contexts.size() + 1); | |||
There was a problem hiding this comment.
Here, we construct MessageContext with a default constructor, then reassign all fields one by one. Might be better to emplace_back:
https://github.com/bloomberg/bde/blob/65f2de5338d10f6a947357af66b100b1490616bb/groups/bsl/bslstl/bslstl_vector.h#L3681
| void addContext(const bmqt::CorrelationId& correlationId, | ||
| unsigned int subscriptionHandleId = | ||
| bmqt::SubscriptionHandle::k_INVALID_HANDLE_ID, | ||
| bmqp::MessageProperties::SchemaPtr schema = |
There was a problem hiding this comment.
New arg schema not mentioned in docs
|
|
||
| const SchemaPtr& result = contextHandle->d_schema_sp; | ||
|
|
||
| if (!result) { |
There was a problem hiding this comment.
Can we assume that it's an unlikely scenario? Or is it better to evaluate the expression without such assumptions?
| MessageProperties mps(d_allocator_p); | ||
| int rc = mps.streamIn(blob, input, result); | ||
|
|
||
| if (rc == 0) { |
There was a problem hiding this comment.
If rc != 0 we will silently return an empty SchemaPtr. Should we log something or skip the message?
| @@ -99,6 +99,8 @@ class MessageProperties_Schema { | |||
| bslma::Allocator* basicAllocator); | |||
| MessageProperties_Schema(const MessageProperties_Schema& other); | |||
|
|
|||
| ~MessageProperties_Schema(); | |||
There was a problem hiding this comment.
Let's also add BSLS_KEYWORD_FINAL to the class head, since we declared a non-virtual destructor?
class MessageProperties_Schema BSLS_KEYWORD_FINAL {
| @@ -45,6 +45,8 @@ struct SchemaLearner::SchemaHandle { | |||
| // If 'false', needs new translation. | |||
|
|
|||
| SchemaHandle(SchemaIdType id); | |||
|
|
|||
| ~SchemaHandle(); | |||
There was a problem hiding this comment.
Let's also add BSLS_KEYWORD_FINAL to the class head, since we declared a non-virtual destructor?
struct SchemaLearner::SchemaHandle BSLS_KEYWORD_FINAL {
| bmqp::MessageProperties::SchemaPtr schema = schemaLearner().learn( | ||
| schemaLearner().createContext(queueId), | ||
| bmqp::MessagePropertiesInfo(info.d_header), | ||
| bdlbb::Blob()); |
There was a problem hiding this comment.
Looking at learn implementation:
SchemaLearner::SchemaPtr
SchemaLearner::learn(Context& context,
const MessagePropertiesInfo& input,
const bdlbb::Blob& blob)
{
const SchemaIdType inputId = input.schemaId();
if (!isPresentAndValid(inputId)) {
// Nothing to do
return SchemaPtr(); // RETURN
}
We have an early return if schemaId is not present or valid. Does it happen for all messages that don't have message properties? If it can happen that frequently, we do a lot of unnecessary work here:
- Pass args and call
schemaLearner().createContext(queueId) - Within
schemaLearner().createContext(queueId)make lookup in a map (we don't use its result) - Construct
bdlbb::Blob()that we don't use - Pass args and call
SchemaLearner::learnjust to return early
Do you think it's worth to avoid these extra operations if we don't have schemaId?
Cannot use
bmqp::SchemaLearnerin both FSM and event threads.Instead, call the leaner in FSM and cache the result (schema) in the generated event.