Skip to content

fix: resolve_thread adopts existing session threads by UUID #377

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
henrypark133 merged 2 commits into from
Feb 26, 2026
Merged

fix: resolve_thread adopts existing session threads by UUID #377

Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
e04b32b
fix: resolve_thread adopts existing session threads by UUID
henrypark133 Feb 25, 2026
ecc2378
fix: double-checked locking in resolve_thread UUID adoption
henrypark133 Feb 25, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
75 changes: 75 additions & 0 deletions src/agent/session_manager.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -128,6 +128,42 @@ impl SessionManager {
}
}

// Check if external_thread_id is itself a known thread UUID that
// exists in the session but was never registered in the thread_map
// (e.g. created by chat_new_thread_handler or hydrated from DB).
// We only adopt it if no thread_map entry maps to this UUID —
// otherwise it belongs to a different channel scope.
if let Some(ext_tid) = external_thread_id
&& let Ok(ext_uuid) = Uuid::parse_str(ext_tid)
{
let thread_map = self.thread_map.read().await;
let mapped_elsewhere = thread_map.values().any(|&v| v == ext_uuid);
drop(thread_map);

if !mapped_elsewhere {
let sess = session.lock().await;
if sess.threads.contains_key(&ext_uuid) {
drop(sess);

let mut thread_map = self.thread_map.write().await;
// Re-check after acquiring write lock to prevent race condition
// where another task mapped this UUID between our read and write.
if !thread_map.values().any(|&v| v == ext_uuid) {
thread_map.insert(key, ext_uuid);
drop(thread_map);
// Ensure undo manager exists
let mut undo_managers = self.undo_managers.write().await;
undo_managers
.entry(ext_uuid)
.or_insert_with(|| Arc::new(Mutex::new(UndoManager::new())));
return (session, ext_uuid);
}
// If it was mapped elsewhere while we were unlocked, fall through
// to create a new thread, preserving channel isolation.
}
}
Comment on lines +143 to +164
Copy link
Copy Markdown
Contributor

@gemini-code-assist gemini-code-assist Bot Feb 25, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

high

There is a potential race condition in this block that could violate the intended channel-scoped thread isolation. The check for mapped_elsewhere is done under a read lock, which is then released. If another thread acquires a write lock and maps the same ext_uuid before this thread acquires its write lock for insertion, this thread will proceed to create a duplicate mapping. This would break the rule that a thread UUID should only be mapped from one channel.

To fix this, you should re-check if the ext_uuid is mapped after acquiring the write lock on thread_map but before inserting the new key. This double-checked locking approach ensures the check and insertion are effectively atomic with respect to other threads trying to map the same UUID.

            if !mapped_elsewhere {
                let sess = session.lock().await;
                if sess.threads.contains_key(&ext_uuid) {
                    drop(sess);

                    let mut thread_map = self.thread_map.write().await;
                    // Re-check after acquiring write lock to prevent race condition.
                    if !thread_map.values().any(|&v| v == ext_uuid) {
                        // Register mapping so future lookups are fast
                        thread_map.insert(key, ext_uuid);
                        drop(thread_map);
                        // Ensure undo manager exists
                        let mut undo_managers = self.undo_managers.write().await;
                        undo_managers
                            .entry(ext_uuid)
                            .or_insert_with(|| Arc::new(Mutex::new(UndoManager::new())));
                        return (session, ext_uuid);
                    }
                    // If it was mapped elsewhere while we were unlocked, we fall through
                    // to create a new thread, preserving channel isolation.
                }
            }

Copy link
Copy Markdown
Collaborator Author

@henrypark133 henrypark133 Feb 25, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Good catch — this is a real TOCTOU race. Applied double-checked locking: re-check thread_map.values().any(|&v| v == ext_uuid) after acquiring the write lock. If the UUID was mapped by another task in the interim, we fall through to create a new thread instead. All 8 resolve_thread tests pass. See ecc2378.

}

// Create new thread (always create a new one for a new key)
let thread_id = {
let mut sess = session.lock().await;
Expand Down Expand Up @@ -735,4 +771,43 @@ mod tests {
.await;
assert_ne!(resolved, tid);
}

#[tokio::test]
async fn test_resolve_thread_finds_existing_session_thread_by_uuid() {
use crate::agent::session::{Session, Thread};

let manager = SessionManager::new();
let tid = Uuid::new_v4();

// Simulate chat_new_thread_handler: create thread directly in session
// without registering it in thread_map
let session = Arc::new(Mutex::new(Session::new("user-direct")));
{
let mut sess = session.lock().await;
let thread = Thread::with_id(tid, sess.id);
sess.threads.insert(tid, thread);
}
{
let mut sessions = manager.sessions.write().await;
sessions.insert("user-direct".to_string(), Arc::clone(&session));
}

// resolve_thread should find the existing thread by UUID
// instead of creating a duplicate
let (_, resolved) = manager
.resolve_thread("user-direct", "gateway", Some(&tid.to_string()))
.await;
assert_eq!(
resolved, tid,
"should reuse existing thread, not create a new one"
);

// Verify no duplicate threads were created
let sess = session.lock().await;
assert_eq!(
sess.threads.len(),
1,
"should have exactly 1 thread, not a duplicate"
);
}
}
Loading