From b593924edd7b6f6c6d95200a960b7f395037252a Mon Sep 17 00:00:00 2001
From: gm42 <16498973+gm42@users.noreply.github.com>
Date: Tue, 14 May 2024 14:40:42 +0200
Subject: [PATCH 1/3] Go: make sure that database creation happens only while
 network thread is running

All API calls which create a database are guaranteed to happen while the network thread is running;
there is no performance penalty for calls happening after network thread has already been started.

Notable change: if the call to run network thread fails, a panic will be generated instead of a logged error.
---
 bindings/go/src/fdb/fdb.go | 88 ++++++++++++++++++++++----------------
 1 file changed, 51 insertions(+), 37 deletions(-)

diff --git a/bindings/go/src/fdb/fdb.go b/bindings/go/src/fdb/fdb.go
index b84daadb6d..b65a9ac509 100644
--- a/bindings/go/src/fdb/fdb.go
+++ b/bindings/go/src/fdb/fdb.go
@@ -31,7 +31,6 @@ import (
 	"bytes"
 	"errors"
 	"fmt"
-	"log"
 	"sync"
 	"unsafe"
 )
@@ -197,9 +196,15 @@ var networkMutex sync.RWMutex
 
 var openDatabases sync.Map
 
-func startNetwork() error {
+// executeWithRunningNetworkThread starts the internal network event loop, if not already done,
+// then runs the provided function while network thread is running.
+func executeWithRunningNetworkThread(f func()) error {
 	networkMutex.RLock()
 	if networkStarted {
+
+		// network thread is guaranteed to be running while this user-provided function runs
+		f()
+
 		networkMutex.RUnlock()
 		return nil
 	}
@@ -207,35 +212,37 @@ func startNetwork() error {
 	networkMutex.RUnlock()
 	networkMutex.Lock()
 	defer networkMutex.Unlock()
-	if networkStarted {
-		return nil
-	}
 
-	if e := C.fdb_setup_network(); e != 0 {
-		return Error{int(e)}
-	}
-
-	go func() {
-		e := C.fdb_run_network()
-		if e != 0 {
-			log.Printf("Unhandled error in FoundationDB network thread: %v (%v)\n", C.GoString(C.fdb_get_error(e)), e)
+	// check if meanwhile another goroutine started the network thread
+	if !networkStarted {
+		if e := C.fdb_setup_network(); e != 0 {
+			return Error{int(e)}
 		}
-	}()
 
-	networkStarted = true
+		go func() {
+			e := C.fdb_run_network()
+			if e != 0 {
+				panic(fmt.Sprintf("Unhandled error in FoundationDB network thread: %v (%v)\n", C.GoString(C.fdb_get_error(e)), e))
+			}
+		}()
+
+		networkStarted = true
+	}
+
+	// network thread is guaranteed to be running while this user-provided function runs
+	f()
 
 	return nil
 }
 
 // Deprecated: the network is started automatically when a database is opened.
-// StartNetwork initializes the FoundationDB client networking engine. StartNetwork
-// must not be called more than once.
+// StartNetwork does nothing, but it will ensure that the API version is set and return an error otherwise.
 func StartNetwork() error {
 	if apiVersion == 0 {
 		return errAPIVersionUnset
 	}
 
-	return startNetwork()
+	return nil
 }
 
 // DefaultClusterFile should be passed to fdb.Open to allow the FoundationDB C
@@ -272,10 +279,6 @@ func MustOpenDefault() Database {
 // the multi-version client API must be used.
 // Caller must call Close() to release resources.
 func OpenDatabase(clusterFile string) (Database, error) {
-	if err := ensureNetworkIsStarted(); err != nil {
-		return Database{}, err
-	}
-
 	var db Database
 	var okDb bool
 	anyy, exist := openDatabases.Load(clusterFile)
@@ -291,15 +294,6 @@ func OpenDatabase(clusterFile string) (Database, error) {
 	return db, nil
 }
 
-// ensureNetworkIsStarted starts the network if not already done and ensures that the API version is set.
-func ensureNetworkIsStarted() error {
-	if apiVersion == 0 {
-		return errAPIVersionUnset
-	}
-
-	return startNetwork()
-}
-
 // MustOpenDatabase is like OpenDatabase but panics if the default database cannot
 // be opened.
 func MustOpenDatabase(clusterFile string) Database {
@@ -332,6 +326,10 @@ func MustOpen(clusterFile string, dbName []byte) Database {
 // createDatabase is the internal function used to create a database.
 // Caller must call Close() to release resources.
 func createDatabase(clusterFile string) (Database, error) {
+	if apiVersion == 0 {
+		return Database{}, errAPIVersionUnset
+	}
+
 	var cf *C.char
 
 	if len(clusterFile) != 0 {
@@ -340,8 +338,16 @@ func createDatabase(clusterFile string) (Database, error) {
 	}
 
 	var outdb *C.FDBDatabase
-	if err := C.fdb_create_database(cf, &outdb); err != 0 {
-		return Database{}, Error{int(err)}
+	var createErr error
+	if err := executeWithRunningNetworkThread(func() {
+		if err := C.fdb_create_database(cf, &outdb); err != 0 {
+			createErr = Error{int(err)}
+		}
+	}); err != nil {
+		return Database{}, err
+	}
+	if createErr != nil {
+		return Database{}, createErr
 	}
 
 	db := &database{outdb}
@@ -354,8 +360,8 @@ func createDatabase(clusterFile string) (Database, error) {
 // to the database only for a short time e.g. to test different connection strings.
 // Caller must call Close() to release resources.
 func OpenWithConnectionString(connectionString string) (Database, error) {
-	if err := ensureNetworkIsStarted(); err != nil {
-		return Database{}, err
+	if apiVersion == 0 {
+		return Database{}, errAPIVersionUnset
 	}
 
 	var cf *C.char
@@ -368,8 +374,16 @@ func OpenWithConnectionString(connectionString string) (Database, error) {
 	defer C.free(unsafe.Pointer(cf))
 
 	var outdb *C.FDBDatabase
-	if err := C.fdb_create_database_from_connection_string(cf, &outdb); err != 0 {
-		return Database{}, Error{int(err)}
+	var createErr error
+	if err := executeWithRunningNetworkThread(func() {
+		if err := C.fdb_create_database_from_connection_string(cf, &outdb); err != 0 {
+			createErr = Error{int(err)}
+		}
+	}); err != nil {
+		return Database{}, err
+	}
+	if createErr != nil {
+		return Database{}, createErr
 	}
 
 	db := &database{outdb}

From 5cfc2d00cf75202faf5f3c7478a2e4dfbe7c3f8b Mon Sep 17 00:00:00 2001
From: gm42 <16498973+gm42@users.noreply.github.com>
Date: Tue, 14 May 2024 14:52:06 +0200
Subject: [PATCH 2/3] Go: add StopNetwork method

Add a method which allows to a safe explicit stop of the network thread.
This method waits for the network thread to exit before returning to caller.
---
 bindings/go/src/fdb/fdb.go | 19 +++++++++++++++++++
 1 file changed, 19 insertions(+)

diff --git a/bindings/go/src/fdb/fdb.go b/bindings/go/src/fdb/fdb.go
index b65a9ac509..469225ecdf 100644
--- a/bindings/go/src/fdb/fdb.go
+++ b/bindings/go/src/fdb/fdb.go
@@ -193,6 +193,7 @@ func MustGetAPIVersion() int {
 var apiVersion int
 var networkStarted bool
 var networkMutex sync.RWMutex
+var networkRunning sync.WaitGroup
 
 var openDatabases sync.Map
 
@@ -219,8 +220,10 @@ func executeWithRunningNetworkThread(f func()) error {
 			return Error{int(e)}
 		}
 
+		networkRunning.Add(1)
 		go func() {
 			e := C.fdb_run_network()
+			networkRunning.Done()
 			if e != 0 {
 				panic(fmt.Sprintf("Unhandled error in FoundationDB network thread: %v (%v)\n", C.GoString(C.fdb_get_error(e)), e))
 			}
@@ -245,6 +248,22 @@ func StartNetwork() error {
 	return nil
 }
 
+// StopNetwork signals the internal network event loop to terminate and waits for its termination.
+// This function does nothing if the network has not yet started.
+// Once network is stopped it cannot be started again.
+// See also: https://github.com/apple/foundationdb/issues/3015
+func StopNetwork() {
+	networkMutex.Lock()
+	defer networkMutex.Unlock()
+
+	if !networkStarted {
+		return
+	}
+
+	C.fdb_stop_network()
+	networkRunning.Wait()
+}
+
 // DefaultClusterFile should be passed to fdb.Open to allow the FoundationDB C
 // library to select the platform-appropriate default cluster file on the current machine.
 const DefaultClusterFile string = ""

From 872c300a5c4fd32681be606d2082d384f6277517 Mon Sep 17 00:00:00 2001
From: gm42 <16498973+gm42@users.noreply.github.com>
Date: Mon, 27 May 2024 19:54:42 +0200
Subject: [PATCH 3/3] Go: return an error when calling StopNetwork() multiple
 times

Specify which functions are safe to be called from multiple goroutines
---
 bindings/go/src/fdb/errors.go |  4 ++-
 bindings/go/src/fdb/fdb.go    | 47 +++++++++++++++++++++++++++++++----
 2 files changed, 45 insertions(+), 6 deletions(-)

diff --git a/bindings/go/src/fdb/errors.go b/bindings/go/src/fdb/errors.go
index 2232256557..d72d9fb8e9 100644
--- a/bindings/go/src/fdb/errors.go
+++ b/bindings/go/src/fdb/errors.go
@@ -49,7 +49,9 @@ func (e Error) Error() string {
 // SOMEDAY: these (along with others) should be coming from fdb.options?
 
 var (
-	errNetworkNotSetup = Error{2008}
+	errNetworkNotSetup          = Error{2008}
+	errNetworkAlreadySetup      = Error{2009} // currently unused
+	errNetworkCannotBeRestarted = Error{2025} // currently unused
 
 	errAPIVersionUnset        = Error{2200}
 	errAPIVersionAlreadySet   = Error{2201}
diff --git a/bindings/go/src/fdb/fdb.go b/bindings/go/src/fdb/fdb.go
index 469225ecdf..f2f3d63428 100644
--- a/bindings/go/src/fdb/fdb.go
+++ b/bindings/go/src/fdb/fdb.go
@@ -35,6 +35,18 @@ import (
 	"unsafe"
 )
 
+var (
+	// ErrNetworkAlreadyStopped for multiple calls to StopNetwork().
+	ErrNetworkAlreadyStopped = errors.New("network has already been stopped")
+
+	// ErrNetworkIsStopped is returned when attempting to execute a function which needs to interact
+	// with the network thread while the network thread is no more running.
+	ErrNetworkIsStopped = errors.New("network is stopped")
+
+	// ErrNetworkAlreadyStopped for a too early call to StopNetwork().
+	ErrNetworkNotStarted = errors.New("network has not been started")
+)
+
 // Would put this in futures.go but for the documented issue with
 // exports and functions in preamble
 // (https://code.google.com/p/go-wiki/wiki/cgo#Global_functions)
@@ -107,6 +119,7 @@ func (opt NetworkOptions) setOpt(code int, param []byte) error {
 // version is not supported by both the fdb package and the FoundationDB C
 // library, an error will be returned. APIVersion must be called prior to any
 // other functions in the fdb package.
+// This function is safe to be called from multiple goroutines.
 //
 // Currently, this package supports API versions 200 through 740.
 //
@@ -191,7 +204,7 @@ func MustGetAPIVersion() int {
 }
 
 var apiVersion int
-var networkStarted bool
+var networkStarted, networkStopped bool
 var networkMutex sync.RWMutex
 var networkRunning sync.WaitGroup
 
@@ -199,8 +212,15 @@ var openDatabases sync.Map
 
 // executeWithRunningNetworkThread starts the internal network event loop, if not already done,
 // then runs the provided function while network thread is running.
+// This function is safe to be called from multiple goroutines.
 func executeWithRunningNetworkThread(f func()) error {
 	networkMutex.RLock()
+	if networkStopped {
+		networkMutex.RUnlock()
+
+		return ErrNetworkIsStopped
+	}
+
 	if networkStarted {
 
 		// network thread is guaranteed to be running while this user-provided function runs
@@ -214,6 +234,10 @@ func executeWithRunningNetworkThread(f func()) error {
 	networkMutex.Lock()
 	defer networkMutex.Unlock()
 
+	if networkStopped {
+		return ErrNetworkIsStopped
+	}
+
 	// check if meanwhile another goroutine started the network thread
 	if !networkStarted {
 		if e := C.fdb_setup_network(); e != 0 {
@@ -249,19 +273,27 @@ func StartNetwork() error {
 }
 
 // StopNetwork signals the internal network event loop to terminate and waits for its termination.
-// This function does nothing if the network has not yet started.
-// Once network is stopped it cannot be started again.
+// This function is safe to be called from multiple goroutines.
+// This function returns an error if network has not yet started or if network has already been stopped.
 // See also: https://github.com/apple/foundationdb/issues/3015
-func StopNetwork() {
+func StopNetwork() error {
 	networkMutex.Lock()
 	defer networkMutex.Unlock()
 
 	if !networkStarted {
-		return
+		return ErrNetworkNotStarted
+	}
+
+	if networkStopped {
+		return ErrNetworkAlreadyStopped
 	}
 
 	C.fdb_stop_network()
 	networkRunning.Wait()
+
+	networkStopped = true
+
+	return nil
 }
 
 // DefaultClusterFile should be passed to fdb.Open to allow the FoundationDB C
@@ -413,6 +445,7 @@ func OpenWithConnectionString(connectionString string) (Database, error) {
 // Deprecated: Use OpenDatabase instead.
 // CreateCluster returns a cluster handle to the FoundationDB cluster identified
 // by the provided cluster file.
+// This function is safe to be called from multiple goroutines.
 func CreateCluster(clusterFile string) (Cluster, error) {
 	networkMutex.Lock()
 	defer networkMutex.Unlock()
@@ -425,6 +458,10 @@ func CreateCluster(clusterFile string) (Cluster, error) {
 		return Cluster{}, errNetworkNotSetup
 	}
 
+	if networkStopped {
+		return Cluster{}, ErrNetworkIsStopped
+	}
+
 	return Cluster{clusterFile}, nil
 }