FIX: Harden DistributedMutex

Threadsafety Since we use the same redis connection in multiple threads, a rogue transaction in another thread can trample the connection state (watched keys) that we need to acquire and release the lock properly. This is fixed by preventing other threads from using the connection when we are performing these actions. Off-by-one error A distributed mutex is now consistently determined to be expired if the current time is strictly greater than the expire time. Unwatch before transaction Since the redis connection is used by so much of the code, it is difficult to ensure that any watched keys have been cleared. In order to defend against this rogue connection state, an unwatch has been added before locking and unlocking. Logging Hopefully this log message is more clear.
2024-11-22 14:38:17 +08:00 · 2019-08-14 09:56:43 +01:00 · 2019-08-14 09:56:43 +01:00 · 1fdba2c5b2
commit 1fdba2c5b2
parent ef610af328
1 changed files with 35 additions and 27 deletions
--- a/lib/distributed_mutex.rb
+++ b/lib/distributed_mutex.rb
@ -1,6 +1,8 @@
 # frozen_string_literal: true

 # Cross-process locking using Redis.
+#
+# Expiration happens when the current time is greater than the expire time
 class DistributedMutex
  DEFAULT_VALIDITY ||= 60

@ -36,7 +38,7 @@ class DistributedMutex
        end

        if !unlock(expire_time) && current_time <= expire_time
-          warn("didn't unlock cleanly")
+          warn("the redis key appears to have been tampered with before expiration")
        end
      end
    end
@ -79,11 +81,13 @@ class DistributedMutex
    now = redis.time[0]
    expire_time = now + validity

+    redis.synchronize do
+      redis.unwatch
      redis.watch key

      current_expire_time = redis.get key

-    if current_expire_time && current_expire_time.to_i > now
+      if current_expire_time && now <= current_expire_time.to_i
        redis.unwatch

        got_lock = false
@ -99,8 +103,11 @@ class DistributedMutex

      [got_lock, expire_time]
    end
+  end

  def unlock(expire_time)
+    redis.synchronize do
+      redis.unwatch
      redis.watch key
      current_expire_time = redis.get key

@ -116,3 +123,4 @@ class DistributedMutex
      end
    end
  end
+end