Skip to content

Fix mutex panic in BatchWithFlusher when Write() returns error #1136

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
snissn wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Fix mutex panic in BatchWithFlusher when Write() returns error #1136

snissn wants to merge 1 commit into from
+6 −4

Conversation

@snissn
Copy link

@snissn snissn commented Jan 14, 2026

This PR fixes a lock/unlock mismatch in BatchWithFlusher.Set and Delete that can cause a runtime panic when Write() returns an error on the flush path.

Both methods use defer b.mtx.Unlock() while also manually unlocking the mutex prior to calling Write(). If Write() fails, the function returns while the mutex is already unlocked, and the deferred Unlock() triggers:

fatal error: sync: unlock of unlocked mutex

Changes

  • Reworked the flush path to always re-acquire the mutex before returning.
  • Ensures that all return paths maintain the invariant expected by the deferred Unlock().

Impact

  • Converts a hard panic into normal error propagation.
  • Preserves existing behavior on successful writes.
  • Makes BatchWithFlusher safe when Write() can legitimately fail (e.g., alternative backends, injected faults, or stricter error handling).

Notes

This change intentionally does not alter higher-level error handling semantics for failed writes; it only ensures mutex correctness and stability.

If you want, I can also:

  • add a minimal unit test demonstrating the original panic,
  • tune the tone for Cosmos governance style,
  • or help you anticipate maintainer questions (e.g. about panic-safety or write-failure semantics).

@snissn
iavl: fix double-unlock panic in BatchWithFlusher on Write error
e4f891b 
BatchWithFlusher.Set and Delete could panic with
"sync: unlock of unlocked mutex" when the flush path was taken
and Write() returned an error.

Both methods used defer b.mtx.Unlock() while also manually
unlocking the mutex before calling Write(). On a Write() error,
the function returned while the mutex was already unlocked,
causing the deferred Unlock() to panic.

Rework the flush path to always re-acquire the mutex before
returning, ensuring lock/unlock invariants are preserved and
Write() errors propagate normally instead of crashing the process.
@snissn snissn mentioned this pull request Jan 14, 2026
Open
@snissn
Copy link
Author

snissn commented Jan 14, 2026

issue #1135

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@snissn