Update CRT sync HTTP client to use caller thread to read from input stream#7027
Open
zoewangg wants to merge 9 commits into
Open
Update CRT sync HTTP client to use caller thread to read from input stream#7027zoewangg wants to merge 9 commits into
zoewangg wants to merge 9 commits into
Conversation
Move blocking InputStream.read() off the CRT event-loop thread to fix a deadlock when a PUT body is sourced from a GET InputStream that shares the same event loop. Caller thread runs a producer loop reading the body into a bounded chunk pool; CRT's pull callback drains via non-blocking pollDrain. Pool is allocated lazily after stream acquisition (depth=4 chunks, 128KB each) to avoid pinning heap on requests queued for a connection.
…Pump # Conflicts: # http-clients/aws-crt-client/src/main/java/software/amazon/awssdk/http/crt/internal/CrtRequestExecutor.java
This was referenced Jun 10, 2026
alextwoods
reviewed
Jun 10, 2026
| * per-request footprint minimal until the producer actually starts pumping (i.e., until after the | ||
| * CRT stream has been acquired). | ||
| */ | ||
| Chunk acquireForFill() throws InterruptedException { |
Contributor
There was a problem hiding this comment.
Why default visibility?
| * CRT stream has been acquired). | ||
| */ | ||
| Chunk acquireForFill() throws InterruptedException { | ||
| synchronized (freeLock) { |
Contributor
There was a problem hiding this comment.
Rather than using locking, could we use something like the ConcurrentLinkedDeque?
| return totalBytesConsumed; | ||
| } | ||
| } | ||
| int n = Math.min(dst.remaining(), pendingDrain.len() - pendingDrain.pos()); |
Contributor
There was a problem hiding this comment.
Ditto on this - I think this may need to be a long
Comment on lines
+234
to
+235
| c.pos(0); | ||
| c.len(0); |
Contributor
There was a problem hiding this comment.
Minor - maybe a clear or reset method on the chunk?
| * @return number of bytes drained, or {@code -1} on EOF with no remaining data. | ||
| * @throws RuntimeException if the pipe is in ERROR or ABORTED state with no remaining data. | ||
| */ | ||
| int pollDrain(ByteBuffer dst) { |
Contributor
There was a problem hiding this comment.
This should probably be a long instead of int here.
| totalBytesConsumed += n; | ||
| if (pendingDrain.pos() >= pendingDrain.len()) { | ||
| // The chunk has been fully copied into dst, so we return it to the free deque | ||
| // (and notify the producer in case it was waiting). This is what bounds the pool: |
Contributor
There was a problem hiding this comment.
How does this notify the producer? Is it because of the freeLock.notifyAll();?
| // pipe was aborted while we were waiting; stop without signaling EOF. | ||
| return; | ||
| } | ||
| int read; |
Contributor
There was a problem hiding this comment.
Ditto on int->long here (probably)
| public void pump() throws IOException { | ||
| try (InputStream in = contentStreamProvider.newStream()) { | ||
| while (true) { | ||
| Chunk chunk = pipe.acquireForFill(); |
Contributor
There was a problem hiding this comment.
Just to check my own understanding - this will block waiting for a chunk and so is what provides back pressure right?
Comment on lines
+67
to
+68
| Thread.currentThread().interrupt(); | ||
| pipe.abort(); |
Contributor
There was a problem hiding this comment.
I may be totally off here, but I think generally the current thread interrupt should be after the other handling (pipe.abort()).
When assertFailsWithinTimeBound times out waiting for the request future, print a full thread dump (via ThreadMXBean.dumpAllThreads with locked monitors and synchronizers) to stderr before throwing the AssertionError. Surefire captures the forked-JVM stderr to surefire-reports, so the dump survives Catapult's report-export step. Search the per-class -output.txt for the marker "=== THREAD DUMP ===". Adds checkstyle-suppressions entries for LongRunningRequestTestSupport so the java.lang.management imports and System.err usage do not trip NonJavaBaseModuleCheck and the System-console Regexp rule.
Routes the hang-time thread dump through Logger.error so it lands in the SDK's configured appender alongside the lifecycle logs, instead of racing with CRT native stderr writes (the surefire "Corrupted channel by directly writing to native stream" warning). Drops the now-unneeded Regexp suppression for LongRunningRequestTestSupport; keeps the NonJavaBaseModuleCheck suppression because java.lang.management is still used by dumpAllThreads().
- Add Chunk.reset() and use it in BodyChunkPipe.recycle so the position+length reset is a single named call. - Swap the order in SyncRequestBodyPump's InterruptedException handler so cleanup (pipe.abort()) runs before re-asserting the thread interrupt, matching the conventional "do work, then re-interrupt last" idiom.
Gates crtResponseHandler.onAcquireStream(stream) on throwable == null in both CrtRequestExecutor and CrtAsyncRequestExecutor. On the failure path, streamBase is null and onAcquireStream(null) is wrong even though it happens to be a no-op today: passing null to a method that expects a real stream is a contract violation. Knowingly diverges from origin/master, which has the same issue.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Motivation and Context
AwsCrtHttpClient(sync) deadlocks when a customer pipes a streaming InputStream from one request into the body of another request that shares the same CRT event loop. The most common pattern:GetObjectreturns aResponseInputStreamwhose bytes are delivered by event-loop thread T1; the customer passes that stream as the body ofPutObjecton the same client; CRT's pull callback runsinputStream.read()on T1, which blocks waiting for bytes that T1 itself is supposed to deliver. The thread blocks on its own work and the request hangs indefinitely.The root cause is architectural: in master, the synchronous CRT pull callback
sendRequestBody(ByteBuffer)invokesinputStream.read()directly on the CRT event-loop thread. Any blocking InputStream that depends on the same event loop reaches this state.Modifications
Move the blocking
inputStream.read()off the CRT event-loop thread by introducing a producer/consumer hand-off:responseFuture.join()) runs a producer loop that reads the body into a bounded chunk pool.pollDrainconsumer that returns 0 when no data is ready, allowing CRT to reschedule viaaws_channel_schedule_task_now.New internal types under
software.amazon.awssdk.http.crt.internal.request:BodyChunkPipe— bounded SPSC pipe withOPEN → EOF/ERROR/ABORTEDstate machine, lazy chunk allocation gated on connection acquisition.Chunk— reusable byte-buffer wrapper with package-private accessors.PipeBackedRequestBodyStream—HttpRequestBodyStreamimpl whosesendRequestBodyis non-blocking.SyncRequestBodyPump— caller-thread producer loop.Wiring changes:
CrtRequestExecutor#executereturns aResult(responseFuture, pump, streamFuture)exposing the stream future for the caller-thread gate.CrtHttpRequest#call()now waits for stream acquisition before invokingpump.pump(), and registers aresponseFuture.whenCompletehook that aborts the pump on exceptional completion to wake a parked producer if CRT fails the request mid-pump.CrtRequestInputStreamAdapteris removed; replaced by the pipe-backed flow.Tuning: pool depth = 4 chunks × 128 KB. Earlier perf experiments showed depth=2 starves the consumer (high futex/wake cost) and 16 KB chunks don't amortize the per-chunk coordination cost. Lazy allocation means queued-for-connection requests don't pin body buffers.
Async client path is unchanged.
Testing
Added unit tests and integ tests
Types of changes
Checklist
mvn installsucceedsscripts/new-changescript and following the instructions. Commit the new file created by the script in.changes/next-releasewith your changes.License