[rb] fix silent hang on oversized WebSocket frames#17710
Open
Chandan25sharma wants to merge 4 commits into
Open
[rb] fix silent hang on oversized WebSocket frames#17710Chandan25sharma wants to merge 4 commits into
Chandan25sharma wants to merge 4 commits into
Conversation
WebSocket.max_frame_size (websocket-ruby default 20 MB) is bumped to 100 MB in WebSocketConnection#initialize so typical DevTools payloads pass through. For frames that still exceed the limit, websocket-ruby rescues TooLong internally and returns nil from incoming_frame.next, leaving oversized bytes buffered and causing the read loop to spin at ~100% CPU. After the inner while loop we now check incoming_frame.error? and raise the stored error so the outer loop exits cleanly and the connection is logged and closed. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
Contributor
PR Summary by QodoFix Ruby WebSocket hang on oversized frames (raise TooLong + bump max size) Description
Diagram
High-Level Assessment
Files changed (3)
|
…> ambiguity IEventStream<T> implements both IAsyncEnumerable<T> and IAsyncDisposable. TaskAsyncEnumerableExtensions ships a ConfigureAwait overload for each interface, so a plain stream.ConfigureAwait(bool) call on an IEventStream<T> variable produces CS0121 (ambiguous call). Add EventStreamExtensions.ConfigureAwait<T>(IEventStream<T>, bool) which explicitly routes to the IAsyncEnumerable<T> overload (the behaviour callers need for await foreach). Because the new overload is more specific than the two BCL overloads, the compiler resolves to it without any cast on the call site. Fixes: SeleniumHQ#17696 Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
Problem
-------
IEventStream<T> inherits both IAsyncEnumerable<T> and IAsyncDisposable.
System.Linq.Async ships a ConfigureAwait overload for each of those
interfaces in TaskAsyncEnumerableExtensions:
ConfigureAwait<T>(IAsyncEnumerable<T>, bool) -> ConfiguredCancelableAsyncEnumerable<T>
ConfigureAwait(IAsyncDisposable, bool) -> ConfiguredAsyncDisposable
Both overloads match when the receiver is an IEventStream<T>, so the
compiler emits CS0121 ("The call is ambiguous between ..."). Users had
to add an explicit cast to either interface to work around this, which
is both surprising and hard to discover.
Fix
---
Add EventStreamExtensions.ConfigureAwait<T>(this IEventStream<T>, bool)
that explicitly delegates to the IAsyncEnumerable<T> overload. Because
a more-derived receiver type takes priority over the two BCL overloads,
the compiler now resolves the call unambiguously without any cast at the
call site. The IAsyncEnumerable<T> variant is the correct choice here
since callers use ConfigureAwait to control context capture inside
`await foreach` loops, not during disposal.
Testing
-------
EventStreamExtensionsTests verifies at the type level that the return
type is ConfiguredCancelableAsyncEnumerable<T> (not ConfiguredAsyncDisposable)
and at the behavioural level that events flow through a
ConfigureAwait(false) enumeration correctly.
Fixes: SeleniumHQ#17696
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
![qodo-code-review[bot]](https://avatars.githubusercontent.com/in/484649?s=60&v=4){kind=small}
Comment on lines
+22
to
+25
| namespace OpenQA.Selenium.BiDi; | ||
|
|
||
| public static class EventStreamExtensions | ||
| { |
Contributor
There was a problem hiding this comment.
1. Public class missing xml summary 📘 Rule violation ✧ Quality
EventStreamExtensions is a new public class but it has no XML documentation comment with a <summary> immediately preceding the declaration. This violates the requirement that all public API members include <summary> docs for tooling and consumers.
Agent Prompt
## Issue description
A new public C# type (`EventStreamExtensions`) was added without an XML documentation comment containing a non-empty `<summary>`.
## Issue Context
Compliance requires XML docs with `<summary>` for all public API members.
## Fix Focus Areas
- dotnet/src/webdriver/BiDi/EventStreamExtensions.cs[22-25]
ⓘ Copy this prompt and use it to remediate the issue with your preferred AI generation tools
Comment on lines
+151
to
+153
| # websocket-ruby rescues TooLong internally and returns nil from next; | ||
| # raise the stored error so the loop exits instead of spinning at 100% cpu | ||
| raise incoming_frame.error if incoming_frame.error? |
Contributor
There was a problem hiding this comment.
3. Listener failure causes timeouts 🐞 Bug ☼ Reliability
When attach_socket_listener raises incoming_frame.error, the surrounding rescue only logs and exits the listener thread without closing the socket or surfacing the error to waiting callers. After the listener exits, send_cmd can still successfully write but then waits until its 30s timeout because responses are never enqueued.
Agent Prompt
## Issue description
The listener thread can terminate on `incoming_frame.error`, but the error is only logged; callers waiting in `send_cmd` are not notified and may block until `Wait` times out.
## Issue Context
- `send_cmd` writes to the socket and then waits for `messages.delete(id)`.
- `attach_socket_listener` rescues and logs but does not close the socket or store/propagate the failure.
## Fix Focus Areas
- rb/lib/selenium/webdriver/common/websocket_connection.rb[104-118]
- rb/lib/selenium/webdriver/common/websocket_connection.rb[131-158]
### Suggested fix
1. In `attach_socket_listener`, when an error occurs (either `incoming_frame.error?` path or in the rescue), store it on the connection (e.g., `@listener_error = e`) and transition the connection to a closed/closing state.
2. Close the underlying socket in that error path so subsequent `send_cmd` writes fail fast.
3. In `send_cmd`’s wait loop, check `@listener_error` (or `@closing`) and raise immediately instead of waiting for the timeout.
Example sketch:
- In listener rescue: set `@listener_error ||= e`; set `@closing = true`; `socket.close rescue nil`.
- In `send_cmd` wait block: `raise @listener_error if @listener_error` before/alongside checking `messages.delete(id)`.
ⓘ Copy this prompt and use it to remediate the issue with your preferred AI generation tools
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Added MAX_FRAME_SIZE = 100 * 1024 * 1024 (100 MB) constant
In initialize: bumps WebSocket.max_frame_size to MAX_FRAME_SIZE only when the current global is lower, so user-configured values are never overridden
In attach_socket_listener: after the inner while (frame = incoming_frame.next) loop exits, checks incoming_frame.error? and raises the stored error — this breaks the outer read loop instead of spinning at 100% CPU
websocket_connection.rbs
Added MAX_FRAME_SIZE: Integer to the type signature
websocket_connection_spec.rb (new)
Tests that MAX_FRAME_SIZE is 100 MB
Tests that initialize bumps the global frame-size limit when it's below MAX_FRAME_SIZE
Tests that initialize leaves a higher value untouched