Fix deadlock when reading packages from the drop folder (#30)

joelverhagen · web-flow · commit 6dd6a8e2f9c1 · 2017-01-10T12:49:49.000-08:00
Fix potential race condition when two of the same packages are added at the same time
Make allowOverrideExistingPackageOnPush default to false in repository. It is already defaults to false in the configuration.
diff --git a/src/NuGet.Server.Core/Infrastructure/IServerPackageCache.cs b/src/NuGet.Server.Core/Infrastructure/IServerPackageCache.cs
@@ -14,6 +14,8 @@ public interface IServerPackageCache
     {
         bool IsEmpty();
 
+        bool Exists(string id, SemanticVersion version);
+
         IEnumerable<ServerPackage> GetAll();
 
         void Add(ServerPackage entity);
diff --git a/src/NuGet.Server.Core/Infrastructure/ServerPackageCache.cs b/src/NuGet.Server.Core/Infrastructure/ServerPackageCache.cs
@@ -87,6 +87,19 @@ public bool IsEmpty()
             }
         }
 
+        public bool Exists(string id, SemanticVersion version)
+        {
+            _syncLock.EnterReadLock();
+            try
+            {
+                return _packages.Any(p => IsMatch(p, id, version));
+            }
+            finally
+            {
+                _syncLock.ExitReadLock();
+            }
+        }
+
         public IEnumerable<ServerPackage> GetAll()
         {
             _syncLock.EnterReadLock();
diff --git a/src/NuGet.Server.Core/Infrastructure/ServerPackageRepository.cs b/src/NuGet.Server.Core/Infrastructure/ServerPackageRepository.cs
@@ -96,7 +96,7 @@ internal ServerPackageRepository(
         public string Source => _fileSystem.Root;
 
         private bool AllowOverrideExistingPackageOnPush =>
-            _settingsProvider.GetBoolSetting("allowOverrideExistingPackageOnPush", true);
+            _settingsProvider.GetBoolSetting("allowOverrideExistingPackageOnPush", false);
 
         private bool IgnoreSymbolsPackages =>
             _settingsProvider.GetBoolSetting("ignoreSymbolsPackages", false);
@@ -123,26 +123,7 @@ public async Task<IEnumerable<IServerPackage>> GetPackagesAsync(
             ClientCompatibility compatibility,
             CancellationToken token)
         {
-		    /*
-             * We rebuild the package storage under either of two conditions:
-             *
-             * 1. If the "needs rebuild" flag is set to true. This is initially the case when the repository is
-             *    instantiated, if a non-package drop file system event occurred (e.g. a file deletion), or if the
-             *    cache was manually cleared.
-             *
-             * 2. If the store has no packages at all. This is so we pick up initial packages as quickly as
-             *    possible.
-             */
-            if (_needsRebuild || _serverPackageCache.IsEmpty())
-            {
-                using (await LockAndSuppressFileSystemWatcherAsync(token))
-                {
-                    if (_needsRebuild || _serverPackageCache.IsEmpty())
-                    {
-                        await RebuildPackageStoreWithoutLockingAsync(token);
-                    }
-                }
-            }
+            await RebuildIfNeededAsync(shouldLock: true, token: token);
 
             // First time we come here, attach the file system watcher.
             if (_fileSystemWatcher == null &&
@@ -158,7 +139,7 @@ public async Task<IEnumerable<IServerPackage>> GetPackagesAsync(
             {
                 SetupBackgroundJobs();
             }
-            
+
             var cache = _serverPackageCache.GetAll();
 
             if (!compatibility.AllowSemVer2)
@@ -169,6 +150,38 @@ public async Task<IEnumerable<IServerPackage>> GetPackagesAsync(
             return cache;
         }
 
+        private async Task RebuildIfNeededAsync(bool shouldLock, CancellationToken token)
+        {
+            /*
+             * We rebuild the package storage under either of two conditions:
+             *
+             * 1. If the "needs rebuild" flag is set to true. This is initially the case when the repository is
+             *    instantiated, if a non-package drop file system event occurred (e.g. a file deletion), or if the
+             *    cache was manually cleared.
+             *
+             * 2. If the store has no packages at all. This is so we pick up initial packages as quickly as
+             *    possible.
+             */
+            if (_needsRebuild || _serverPackageCache.IsEmpty())
+            {
+                if (shouldLock)
+                {
+                    using (await LockAndSuppressFileSystemWatcherAsync(token))
+                    {
+                        // Check the flags again, just in case another thread already did this work.
+                        if (_needsRebuild || _serverPackageCache.IsEmpty())
+                        {
+                            await RebuildPackageStoreWithoutLockingAsync(token);
+                        }
+                    }
+                }
+                else
+                {
+                    await RebuildPackageStoreWithoutLockingAsync(token);
+                }
+            }
+        }
+
         public async Task<IEnumerable<IServerPackage>> SearchAsync(
             string searchTerm,
             IEnumerable<string> targetFrameworks,
@@ -202,18 +215,20 @@ public async Task<IEnumerable<IServerPackage>> SearchAsync(
             return packages;
         }
 
-        private async Task AddPackagesFromDropFolderAsync(CancellationToken token)
+        internal async Task AddPackagesFromDropFolderAsync(CancellationToken token)
         {
             using (await LockAndSuppressFileSystemWatcherAsync(token))
             {
-                await AddPackagesFromDropFolderWithoutLockingAsync(token);
+                await RebuildIfNeededAsync(shouldLock: false, token: token);
+
+                AddPackagesFromDropFolderWithoutLocking();
             }
         }
 
         /// <summary>
         /// This method requires <see cref="LockAndSuppressFileSystemWatcherAsync(CancellationToken)"/>.
         /// </summary>
-        private async Task AddPackagesFromDropFolderWithoutLockingAsync(CancellationToken token)
+        private void AddPackagesFromDropFolderWithoutLocking()
         {
             _logger.Log(LogLevel.Info, "Start adding packages from drop folder.");
 
@@ -228,7 +243,7 @@ private async Task AddPackagesFromDropFolderWithoutLockingAsync(CancellationToke
                         // Create package
                         var package = new OptimizedZipPackage(_fileSystem, packageFile);
 
-                        if (!await CanPackageBeAddedAsync(package, shouldThrow: false, token: token))
+                        if (!CanPackageBeAddedWithoutLocking(package, shouldThrow: false))
                         {
                             continue;
                         }
@@ -275,10 +290,12 @@ public async Task AddPackageAsync(IPackage package, CancellationToken token)
         {
             _logger.Log(LogLevel.Info, "Start adding package {0} {1}.", package.Id, package.Version);
 
-            await CanPackageBeAddedAsync(package, shouldThrow: true, token: token);
-
             using (await LockAndSuppressFileSystemWatcherAsync(token))
             {
+                await RebuildIfNeededAsync(shouldLock: false, token: token);
+
+                CanPackageBeAddedWithoutLocking(package, shouldThrow: true);
+
                 // Add the package to the file system store.
                 var serverPackage = _serverPackageStore.Add(
                     package,
@@ -291,7 +308,7 @@ public async Task AddPackageAsync(IPackage package, CancellationToken token)
             }
         }
 
-        private async Task<bool> CanPackageBeAddedAsync(IPackage package, bool shouldThrow, CancellationToken token)
+        private bool CanPackageBeAddedWithoutLocking(IPackage package, bool shouldThrow)
         {
             if (IgnoreSymbolsPackages && package.IsSymbolsPackage())
             {
@@ -309,7 +326,7 @@ private async Task<bool> CanPackageBeAddedAsync(IPackage package, bool shouldThr
 
             // Does the package already exist?
             if (!AllowOverrideExistingPackageOnPush &&
-                await this.ExistsAsync(package.Id, package.Version, token))
+                _serverPackageCache.Exists(package.Id, package.Version))
             {
                 var message = string.Format(Strings.Error_PackageAlreadyExists, package);
 
@@ -414,7 +431,7 @@ private async Task RebuildPackageStoreWithoutLockingAsync(CancellationToken toke
             _serverPackageCache.AddRange(packages);
 
             // Add packages from drop folder
-            await AddPackagesFromDropFolderWithoutLockingAsync(token);
+            AddPackagesFromDropFolderWithoutLocking();
 
             // Persist
             _serverPackageCache.PersistIfDirty();
diff --git a/test/NuGet.Server.Core.Tests/ServerPackageCacheTest.cs b/test/NuGet.Server.Core.Tests/ServerPackageCacheTest.cs
@@ -197,5 +197,59 @@ public void Remove_NoOpsWhenPackageDoesNotExist()
             Assert.Equal(PackageId, package.Id);
             Assert.Equal(PackageVersion, package.Version);
         }
+
+        [Fact]
+        public void Exists_IsCaseInsensitive()
+        {
+            // Arrange
+            var fileSystem = new Mock<IFileSystem>();
+            fileSystem
+                .Setup(x => x.FileExists(CacheFileName))
+                .Returns(false);
+            var target = new ServerPackageCache(fileSystem.Object, CacheFileName);
+            target.Add(new ServerPackage { Id = "NuGet.Versioning", Version = new SemanticVersion("3.5.0-beta2") });
+
+            // Act
+            var actual = target.Exists("nuget.versioning", new SemanticVersion("3.5.0-BETA2"));
+
+            // Assert
+            Assert.True(actual);
+        }
+
+        [Fact]
+        public void Exists_ReturnsFalseWhenPackageDoesNotExist()
+        {
+            // Arrange
+            var fileSystem = new Mock<IFileSystem>();
+            fileSystem
+                .Setup(x => x.FileExists(CacheFileName))
+                .Returns(false);
+            var target = new ServerPackageCache(fileSystem.Object, CacheFileName);
+            target.Add(new ServerPackage { Id = "NuGet.Versioning", Version = new SemanticVersion("3.5.0-beta2") });
+
+            // Act
+            var actual = target.Exists("NuGet.Frameworks", new SemanticVersion("3.5.0-beta2"));
+
+            // Assert
+            Assert.False(actual);
+        }
+
+        [Fact]
+        public void Exists_ReturnsTrueWhenPackageExists()
+        {
+            // Arrange
+            var fileSystem = new Mock<IFileSystem>();
+            fileSystem
+                .Setup(x => x.FileExists(CacheFileName))
+                .Returns(false);
+            var target = new ServerPackageCache(fileSystem.Object, CacheFileName);
+            target.Add(new ServerPackage { Id = "NuGet.Versioning", Version = new SemanticVersion("3.5.0-beta2") });
+
+            // Act
+            var actual = target.Exists("NuGet.Versioning", new SemanticVersion("3.5.0-beta2"));
+
+            // Assert
+            Assert.True(actual);
+        }
     }
 }
diff --git a/test/NuGet.Server.Core.Tests/ServerPackageRepositoryTest.cs b/test/NuGet.Server.Core.Tests/ServerPackageRepositoryTest.cs
@@ -54,8 +54,10 @@ private async Task<ServerPackageRepository> CreateServerPackageRepositoryWithSem
             });
         }
 
-        [Fact]
-        public async Task ServerPackageRepositoryAddsPackagesFromDropFolderOnStart()
+        [Theory]
+        [InlineData(true)]
+        [InlineData(false)]
+        public async Task ServerPackageRepositoryAddsPackagesFromDropFolderOnStart(bool allowOverride)
         {
             using (var temporaryDirectory = new TemporaryDirectory())
             {
@@ -78,7 +80,17 @@ public async Task ServerPackageRepositoryAddsPackagesFromDropFolderOnStart()
                     }
                 }
 
-                var serverRepository = await CreateServerPackageRepositoryAsync(temporaryDirectory.Path);
+                var serverRepository = await CreateServerPackageRepositoryAsync(
+                    temporaryDirectory.Path,
+                    getSetting: (key, defaultValue) =>
+                    {
+                        if (key == "allowOverrideExistingPackageOnPush")
+                        {
+                            return allowOverride;
+                        }
+
+                        return defaultValue;
+                    });
 
                 // Act
                 var packages = await serverRepository.GetPackagesAsync(ClientCompatibility.Max, Token);
@@ -135,17 +147,12 @@ public async Task ServerPackageRepositoryRemovePackage()
         }
 
         [Fact]
-        public async Task ServerPackageRepositoryNeedsRebuild()
+        public async Task ServerPackageRepositoryNeedsRebuildIsHandledWhenAddingAfterClear()
         {
             using (var temporaryDirectory = new TemporaryDirectory())
             {
                 // Arrange
-                var serverRepository = await CreateServerPackageRepositoryAsync(temporaryDirectory.Path,
-                    repository =>
-                    {
-                        repository.AddPackage(CreatePackage("test", "1.0"));
-                        repository.AddPackage(CreatePackage("test", "1.1"));
-                    });
+                var serverRepository = await CreateServerPackageRepositoryAsync(temporaryDirectory.Path);
 
                 // Act
                 await serverRepository.ClearCacheAsync(Token);
@@ -155,10 +162,81 @@ public async Task ServerPackageRepositoryNeedsRebuild()
                 // Assert
                 packages = packages.OrderBy(p => p.Version);
 
-                Assert.Equal(3, packages.Count());
-                Assert.Equal(new SemanticVersion("1.0.0"), packages.ElementAt(0).Version);
-                Assert.Equal(new SemanticVersion("1.1.0"), packages.ElementAt(1).Version);
-                Assert.Equal(new SemanticVersion("1.2.0"), packages.ElementAt(2).Version);
+                Assert.Equal(1, packages.Count());
+                Assert.Equal(new SemanticVersion("1.2.0"), packages.ElementAt(0).Version);
+            }
+        }
+
+        [Theory]
+        [InlineData(false)]
+        [InlineData(true)]
+        public async Task ServerPackageRepository_DuplicateAddAfterClearObservesOverrideOption(bool allowOverride)
+        {
+            using (var temporaryDirectory = new TemporaryDirectory())
+            {
+                // Arrange
+                var serverRepository = await CreateServerPackageRepositoryAsync(
+                    temporaryDirectory.Path,
+                    getSetting: (key, defaultValue) =>
+                    {
+                        if (key == "allowOverrideExistingPackageOnPush")
+                        {
+                            return allowOverride;
+                        }
+
+                        return defaultValue;
+                    });
+
+                await serverRepository.AddPackageAsync(CreatePackage("test", "1.2"), Token);
+                await serverRepository.ClearCacheAsync(Token);
+
+                // Act & Assert
+                if (allowOverride)
+                {
+                    await serverRepository.AddPackageAsync(CreatePackage("test", "1.2"), Token);
+                }
+                else
+                {
+                    await Assert.ThrowsAsync<InvalidOperationException>(async () =>
+                        await serverRepository.AddPackageAsync(CreatePackage("test", "1.2"), Token));
+                }
+            }
+        }
+
+        [Theory]
+        [InlineData(false)]
+        [InlineData(true)]
+        public async Task ServerPackageRepository_DuplicateInDropFolderAfterClearObservesOverrideOption(bool allowOverride)
+        {
+            using (var temporaryDirectory = new TemporaryDirectory())
+            {
+                // Arrange
+                var serverRepository = await CreateServerPackageRepositoryAsync(
+                    temporaryDirectory.Path,
+                    getSetting: (key, defaultValue) =>
+                    {
+                        if (key == "allowOverrideExistingPackageOnPush")
+                        {
+                            return allowOverride;
+                        }
+
+                        return defaultValue;
+                    });
+
+                await serverRepository.AddPackageAsync(CreatePackage("test", "1.2"), Token);
+                var existingPackage = await serverRepository.FindPackageAsync(
+                    "test",
+                    new SemanticVersion("1.2"),
+                    Token);
+                var dropFolderPackagePath = Path.Combine(temporaryDirectory, "test.nupkg");
+                await serverRepository.ClearCacheAsync(Token);
+
+                // Act
+                File.Copy(existingPackage.FullPath, dropFolderPackagePath);
+                await serverRepository.AddPackagesFromDropFolderAsync(Token);
+
+                // Assert
+                Assert.NotEqual(allowOverride, File.Exists(dropFolderPackagePath));
             }
         }
 

Original file line number	Diff line number	Diff line change
`@@ -14,6 +14,8 @@ public interface IServerPackageCache`
`14`	`14`	`{`
`15`	`15`	`bool IsEmpty();`
`16`	`16`
	`17`	`+ bool Exists(string id, SemanticVersion version);`
	`18`	`+`
`17`	`19`	`IEnumerable<ServerPackage> GetAll();`
`18`	`20`
`19`	`21`	`void Add(ServerPackage entity);`
Original file line number	Diff line number	Diff line change
`@@ -87,6 +87,19 @@ public bool IsEmpty()`
`87`	`87`	`}`
`88`	`88`	`}`
`89`	`89`
	`90`	`+ public bool Exists(string id, SemanticVersion version)`
	`91`	`+ {`
	`92`	`+ _syncLock.EnterReadLock();`
	`93`	`+ try`
	`94`	`+ {`
	`95`	`+ return _packages.Any(p => IsMatch(p, id, version));`
	`96`	`+ }`
	`97`	`+ finally`
	`98`	`+ {`
	`99`	`+ _syncLock.ExitReadLock();`
	`100`	`+ }`
	`101`	`+ }`
	`102`	`+`
`90`	`103`	`public IEnumerable<ServerPackage> GetAll()`
`91`	`104`	`{`
`92`	`105`	`_syncLock.EnterReadLock();`