Fix windows

bwoebi · bwoebi · commit d58b820af58d · 2026-04-02T20:30:05.000+02:00
Signed-off-by: Bob Weinand &lt;bob.weinand@datadoghq.com&gt;
diff --git a/ext/sidecar.c b/ext/sidecar.c
@@ -31,9 +31,10 @@ struct ddog_InstanceId *ddtrace_sidecar_instance_id;
 static uint8_t dd_sidecar_formatted_session_id[36];
 
 // Best-effort pointer for the signal handler (SIGTERM/SIGINT). Set to the first
-// per-thread connection; never cleared until MSHUTDOWN. Signal context cannot
-// safely call TSRMLS_FETCH(), so this is the only option.
-_Atomic(ddog_SidecarTransport *) ddtrace_sidecar_for_signal = NULL;
+// per-thread connection; never cleared until MSHUTDOWN. Not atomic: concurrent
+// shutdown is already a best-effort race for signal handlers, so atomicity of
+// the pointer load alone would not prevent the underlying use-after-free.
+ddog_SidecarTransport *ddtrace_sidecar_for_signal = NULL;
 
 // Connection mode tracking
 dd_sidecar_active_mode_t ddtrace_sidecar_active_mode = DD_SIDECAR_CONNECTION_NONE;
@@ -406,9 +407,8 @@ void ddtrace_sidecar_setup(bool appsec_activation, bool appsec_config) {
     }
 
     // Record the first established connection for best-effort signal-handler use.
-    if (DDTRACE_G(sidecar)) {
-        ddog_SidecarTransport *expected = NULL;
-        atomic_compare_exchange_strong(&ddtrace_sidecar_for_signal, &expected, DDTRACE_G(sidecar));
+    if (DDTRACE_G(sidecar) && !ddtrace_sidecar_for_signal) {
+        ddtrace_sidecar_for_signal = DDTRACE_G(sidecar);
     }
 }
 
@@ -445,7 +445,7 @@ void ddtrace_sidecar_handle_fork(void) {
         ddog_sidecar_transport_drop(DDTRACE_G(sidecar));
         DDTRACE_G(sidecar) = NULL;
     }
-    atomic_store(&ddtrace_sidecar_for_signal, NULL);
+    ddtrace_sidecar_for_signal = NULL;
 
     if (ddtrace_sidecar_active_mode == DD_SIDECAR_CONNECTION_THREAD) {
         ddtrace_ffi_try("Failed clearing inherited listener state",
@@ -486,7 +486,7 @@ void ddtrace_sidecar_handle_fork(void) {
     }
 
     if (DDTRACE_G(sidecar)) {
-        atomic_store(&ddtrace_sidecar_for_signal, DDTRACE_G(sidecar));
+        ddtrace_sidecar_for_signal = DDTRACE_G(sidecar);
     }
 #endif
 }
@@ -498,9 +498,8 @@ void ddtrace_sidecar_ensure_active(void) {
         // First RINIT on this thread: the process-level setup already ran (endpoint is
         // set), so establish this thread's own connection now.
         DDTRACE_G(sidecar) = ddtrace_sidecar_connect(false);
-        if (DDTRACE_G(sidecar)) {
-            ddog_SidecarTransport *expected = NULL;
-            atomic_compare_exchange_strong(&ddtrace_sidecar_for_signal, &expected, DDTRACE_G(sidecar));
+        if (DDTRACE_G(sidecar) && !ddtrace_sidecar_for_signal) {
+            ddtrace_sidecar_for_signal = DDTRACE_G(sidecar);
         }
     }
 }
@@ -540,6 +539,8 @@ void ddtrace_sidecar_shutdown(void) {
         current_pid == ddtrace_sidecar_master_pid) {
 
         if (DDTRACE_G(sidecar)) {
+            ddtrace_sidecar_for_signal = NULL;
+
             ddog_sidecar_transport_drop(DDTRACE_G(sidecar));
             DDTRACE_G(sidecar) = NULL;
         }
@@ -554,8 +555,6 @@ void ddtrace_sidecar_shutdown(void) {
         ddtrace_sidecar_instance_id = NULL;
     }
 
-    atomic_store(&ddtrace_sidecar_for_signal, NULL);
-
     if (ddtrace_endpoint) {
         dd_free_endpoints();
     }
@@ -873,6 +872,8 @@ void ddtrace_sidecar_rshutdown(void) {
 
 void ddtrace_sidecar_gshutdown(void) {
     if (DDTRACE_G(sidecar)) {
+        ddtrace_sidecar_for_signal = NULL;
+
         // Drain any accumulated background-sender metrics before the transport goes away.
         ddtrace_telemetry_flush_bgs_metrics_final();
         ddog_sidecar_transport_drop(DDTRACE_G(sidecar));
diff --git a/ext/sidecar.h b/ext/sidecar.h
@@ -19,7 +19,8 @@ typedef enum {
 extern struct ddog_InstanceId *ddtrace_sidecar_instance_id;
 // Best-effort pointer used only by the signal handler (SIGTERM/SIGINT), which cannot call
 // TSRMLS_FETCH() safely.  Set to the first thread's connection; never cleared until MSHUTDOWN.
-extern _Atomic(ddog_SidecarTransport *) ddtrace_sidecar_for_signal;
+// Not atomic: concurrent shutdown is a pre-existing best-effort race for signal handlers.
+extern ddog_SidecarTransport *ddtrace_sidecar_for_signal;
 extern ddog_Endpoint *ddtrace_endpoint;
 extern dd_sidecar_active_mode_t ddtrace_sidecar_active_mode;
 extern int32_t ddtrace_sidecar_master_pid;
diff --git a/ext/signals.c b/ext/signals.c
@@ -363,10 +363,7 @@ static int dd_call_prev_handler(bool flush) {
     }
 
     if (flush) {
-        // Load into a plain local: the function expects ddog_SidecarTransport **,
-        // but ddtrace_sidecar_for_signal is _Atomic so &it would be the wrong type.
-        ddog_SidecarTransport *sidecar = atomic_load(&ddtrace_sidecar_for_signal);
-        ddog_sidecar_flush_traces(&sidecar);
+        ddog_sidecar_flush_traces(&ddtrace_sidecar_for_signal);
     }
 
     if (prev_handler == SIG_DFL) {

Original file line number	Diff line number	Diff line change
`@@ -31,9 +31,10 @@ struct ddog_InstanceId *ddtrace_sidecar_instance_id;`
`31`	`31`	`static uint8_t dd_sidecar_formatted_session_id[36];`
`32`	`32`
`33`	`33`	`// Best-effort pointer for the signal handler (SIGTERM/SIGINT). Set to the first`
`34`		`-// per-thread connection; never cleared until MSHUTDOWN. Signal context cannot`
`35`		`-// safely call TSRMLS_FETCH(), so this is the only option.`
`36`		`-_Atomic(ddog_SidecarTransport *) ddtrace_sidecar_for_signal = NULL;`
	`34`	`+// per-thread connection; never cleared until MSHUTDOWN. Not atomic: concurrent`
	`35`	`+// shutdown is already a best-effort race for signal handlers, so atomicity of`
	`36`	`+// the pointer load alone would not prevent the underlying use-after-free.`
	`37`	`+ddog_SidecarTransport *ddtrace_sidecar_for_signal = NULL;`
`37`	`38`
`38`	`39`	`// Connection mode tracking`
`39`	`40`	`dd_sidecar_active_mode_t ddtrace_sidecar_active_mode = DD_SIDECAR_CONNECTION_NONE;`
`@@ -406,9 +407,8 @@ void ddtrace_sidecar_setup(bool appsec_activation, bool appsec_config) {`
`406`	`407`	`}`
`407`	`408`
`408`	`409`	`// Record the first established connection for best-effort signal-handler use.`
`409`		`- if (DDTRACE_G(sidecar)) {`
`410`		`- ddog_SidecarTransport *expected = NULL;`
`411`		`- atomic_compare_exchange_strong(&ddtrace_sidecar_for_signal, &expected, DDTRACE_G(sidecar));`
	`410`	`+ if (DDTRACE_G(sidecar) && !ddtrace_sidecar_for_signal) {`
	`411`	`+ ddtrace_sidecar_for_signal = DDTRACE_G(sidecar);`
`412`	`412`	`}`
`413`	`413`	`}`
`414`	`414`
`@@ -445,7 +445,7 @@ void ddtrace_sidecar_handle_fork(void) {`
`445`	`445`	`ddog_sidecar_transport_drop(DDTRACE_G(sidecar));`
`446`	`446`	`DDTRACE_G(sidecar) = NULL;`
`447`	`447`	`}`
`448`		`- atomic_store(&ddtrace_sidecar_for_signal, NULL);`
	`448`	`+ ddtrace_sidecar_for_signal = NULL;`
`449`	`449`
`450`	`450`	`if (ddtrace_sidecar_active_mode == DD_SIDECAR_CONNECTION_THREAD) {`
`451`	`451`	`ddtrace_ffi_try("Failed clearing inherited listener state",`
`@@ -486,7 +486,7 @@ void ddtrace_sidecar_handle_fork(void) {`
`486`	`486`	`}`
`487`	`487`
`488`	`488`	`if (DDTRACE_G(sidecar)) {`
`489`		`- atomic_store(&ddtrace_sidecar_for_signal, DDTRACE_G(sidecar));`
	`489`	`+ ddtrace_sidecar_for_signal = DDTRACE_G(sidecar);`
`490`	`490`	`}`
`491`	`491`	`#endif`
`492`	`492`	`}`
`@@ -498,9 +498,8 @@ void ddtrace_sidecar_ensure_active(void) {`
`498`	`498`	`// First RINIT on this thread: the process-level setup already ran (endpoint is`
`499`	`499`	`// set), so establish this thread's own connection now.`
`500`	`500`	`DDTRACE_G(sidecar) = ddtrace_sidecar_connect(false);`
`501`		`- if (DDTRACE_G(sidecar)) {`
`502`		`- ddog_SidecarTransport *expected = NULL;`
`503`		`- atomic_compare_exchange_strong(&ddtrace_sidecar_for_signal, &expected, DDTRACE_G(sidecar));`
	`501`	`+ if (DDTRACE_G(sidecar) && !ddtrace_sidecar_for_signal) {`
	`502`	`+ ddtrace_sidecar_for_signal = DDTRACE_G(sidecar);`
`504`	`503`	`}`
`505`	`504`	`}`
`506`	`505`	`}`
`@@ -540,6 +539,8 @@ void ddtrace_sidecar_shutdown(void) {`
`540`	`539`	`current_pid == ddtrace_sidecar_master_pid) {`
`541`	`540`
`542`	`541`	`if (DDTRACE_G(sidecar)) {`
	`542`	`+ ddtrace_sidecar_for_signal = NULL;`
	`543`	`+`
`543`	`544`	`ddog_sidecar_transport_drop(DDTRACE_G(sidecar));`
`544`	`545`	`DDTRACE_G(sidecar) = NULL;`
`545`	`546`	`}`
`@@ -554,8 +555,6 @@ void ddtrace_sidecar_shutdown(void) {`
`554`	`555`	`ddtrace_sidecar_instance_id = NULL;`
`555`	`556`	`}`
`556`	`557`
`557`		`- atomic_store(&ddtrace_sidecar_for_signal, NULL);`
`558`		`-`
`559`	`558`	`if (ddtrace_endpoint) {`
`560`	`559`	`dd_free_endpoints();`
`561`	`560`	`}`
`@@ -873,6 +872,8 @@ void ddtrace_sidecar_rshutdown(void) {`
`873`	`872`
`874`	`873`	`void ddtrace_sidecar_gshutdown(void) {`
`875`	`874`	`if (DDTRACE_G(sidecar)) {`
	`875`	`+ ddtrace_sidecar_for_signal = NULL;`
	`876`	`+`
`876`	`877`	`// Drain any accumulated background-sender metrics before the transport goes away.`
`877`	`878`	`ddtrace_telemetry_flush_bgs_metrics_final();`
`878`	`879`	`ddog_sidecar_transport_drop(DDTRACE_G(sidecar));`
Original file line number	Diff line number	Diff line change
`@@ -363,10 +363,7 @@ static int dd_call_prev_handler(bool flush) {`
`363`	`363`	`}`
`364`	`364`
`365`	`365`	`if (flush) {`
`366`		`- // Load into a plain local: the function expects ddog_SidecarTransport **,`
`367`		`- // but ddtrace_sidecar_for_signal is _Atomic so &it would be the wrong type.`
`368`		`- ddog_SidecarTransport *sidecar = atomic_load(&ddtrace_sidecar_for_signal);`
`369`		`- ddog_sidecar_flush_traces(&sidecar);`
	`366`	`+ ddog_sidecar_flush_traces(&ddtrace_sidecar_for_signal);`
`370`	`367`	`}`
`371`	`368`
`372`	`369`	`if (prev_handler == SIG_DFL) {`