Why do we need to check this? It will fail theAuthorize if it is cancelled

And if we do this check, do we need to close?

I just thought it felt nice to check explicitly 🤷‍♀️

Can we defer the context handling toAuthorize?

It could be cancelled right after this check. It does not protect us from anything down the callstack.

it depends on the implementation ofAuthorize. for example, this test fails against dbmock if you remove the check, but is fine when it's in place:

dbM.EXPECT().GetFileByID(gomock.Any(),gomock.Any()).DoAndReturn(func(mTx context.Context,fileID uuid.UUID) (database.File,error) {return database.File{ID:fileID,Data:make([]byte,100),},nil})//nolint:gocritic // Unit testingcache:=files.New(prometheus.NewRegistry(),&coderdtest.FakeAuthorizer{})// Cancel the context for the first call; should fail.ctx,cancel:=context.WithCancel(dbauthz.AsFileReader(testutil.Context(t,testutil.WaitShort)))cancel()_,err:=cache.Acquire(ctx,dbM,fileID)assert.ErrorIs(t,err,context.Canceled)

nothing aboutAuthorize explicitly means that ithas to check context cancellation. none of the implementations ever check explicitly, so if the specific implementation doesn't happen to call any blocking/cancelable code it will continue anyway. I really feel like there is value in keeping this check separate and explicit.

Locking behavior

• Acquire locks Cache, then Entry
• Close locks Entry, then purge locks the cache

I think there is a deadlock.

If you callAcquire the cache gets locked, then the entry.
When you call close, it locks the entry, and then the cache (if ref count <= 0)

So they can be blocked on each other

An easy fix is just to unlock the entry after the ref count change.

honestly, there are only two places where I ended up using the entry locks, and one already holds the cache lock, and the other is likely to want to grab it. I don't think the entry locks are worth it. they mostly seem to be an opportunity for dead locks so I'm gonna get rid of them.

actually, just kidding, I can't remove it because it makes callingpurge really awkward.

also, if I unlock theentry before callingpurge, someone else couldAcquire it, up the refcount, and it'd get purged anyway. which is probably a less serious bug than a deadlock but is still really annoying.

I'm thinking maybe we accept that small issue and turnrefCount into anatomic.Int32 to avoid some of the manual locking.

Can this ever happen?purge is protected by async.Once, so an entry can only hit thedelete(c.data, fileID) once.

I like the defensive code, just wondering if the comment is accurate

I don't think it's possible now (god I hope it's not), but it could get messed up later and it would cause book keeping bugs if it continued past here.

Do not change this, but I forgot something absolutely annoying about file authorizing.

I really do not want to remedy this atm lol. We use a provisioner context for fetching things from the filecache so far. And is why we avoided it.

I'm confused here. the comment calls the functionauthorizeReadFile but the actual function name isauthorizeUpdateFileTemplate. what exactly is the annoying thing here?