New issue
Advanced search Search tips

Issue 774056 link

Starred by 2 users
Status: Assigned
Owner:
tsniatow...@vewd.com
Cc:
ricea@chromium.org
morlovich@chromium.org
pkasting@chromium.org
pwnall@chromium.org
Components:
EstimatedDays: ----
NextAction: ----
OS: ----
Pri: 3
Type: Bug

Blocked on:
issue 839186


Sign in to add a comment

DCHECK followe by error handling in SQLite DB corruption case

Reported by tsniatow...@opera.com, Oct 12 2017 
https://cs.chromium.org/chromium/src/net/extras/sqlite/sqlite_persistent_cookie_store.cc?q=sqlite_persistent_cookie_store.cc&sq=package:chromium&dr&l=661

  if (!db_->Open(path_)) {
    NOTREACHED() << "Unable to open cookie DB.";
    if (corruption_detected_)
      db_->Raze();
  ...

This is a DCHECK/NOTREACHED followe by error handling / recovery code. It's agains the style guide and moreover, it can actually be hit in real life because files on disk do get corrupted sometimes. Crashy exits tend to sometimes make the next run rigger this NOTREACHED unless user data is cleaned, which is not helpful.

We've hit this downstream a couple times, not very often but it was an annoying obstacle hindering some other investigation. I'd prefer if these were error logs instead.

Comment 1 by ricea@chromium.org, Oct 13 2017

Components: Internals>Network>Cookies
I agree. There's a plan to enable DCHECKs for a subset of canary users, which would make these kind of real-world failures waste even more developer time.

Extra marks if you add a test for the recovery code.

Comment 2 by tsniatow...@opera.com, Oct 13 2017

Owner: tsniatow...@vewd.com
Yeah having a test hitting that code path would be ideal. I'll see if I can figure something out.

Comment 3 by mmenke@chromium.org, Oct 13 2017 

tsniatowski:  Did you mean to make this owned by your vewd account, rather than your opera one?  Just mention it because of the red "hasn't visited this site in 15 days" thing under your vewd account.

Comment 4 by tsniatow...@vewd.com, Oct 13 2017 

mmenke: Thanks for the heads-up, yes, I also meant to report this from the vewd one, oh well. A confusing time for me.

Comment 5 by tsniatow...@vewd.com, Oct 19 2017 

I can trigger both "NOTREACHED" in SQLitePersistentCookieStore::Backend::InitializeDatabase during sqlite database opening. One can trigger if the sqlite db contains junk, another if it we fail opening the file (because it's been chmod-000). Will try to come up with proper testcases for these "soon".

I'm a bit confused by https://bugs.chromium.org/p/chromium/issues/detail?id=727566 having disabled most of the cookie storage tests a couple months ago though.

Comment 6 by pwnall@chromium.org, Feb 6 2018

Cc: pwnall@chromium.org

Comment 7 by morlovich@chromium.org, Apr 6 2018

Cc: morlovich@chromium.org
We made some progress on not doing NOTREACHED all over the place in master, though a few remain (and fixes for some things going wrong in Commit are sketched), but it sounds like the database-containing-junk in particular case probably wants some sort of database recovery thing to happen, too, as to avoid losing cookies on exit every single time for someone who is in that state.

Comment 8 by pwnall@chromium.org, May 3 2018 

In general: I suspect is due to the bad example set by //sql. Issue 839186 describes the problem there and what we need to do to fix it.

Comment 9 by pwnall@chromium.org, May 3 2018

Blockedon: 839186

Comment 10 by benhenry@chromium.org, Aug 3

Status: Assigned (was: Untriaged)
This bug has an owner, thus, it's been triaged. Changing status to "assigned".

Sign in to add a comment