SNOW-1737940: Support keepalive parameters in LibSfClient

[sfc-gh-ext-simba-jy]

No description provided.

[sfc-gh-pbulawa]

There's a deadlock here as the m_lock is used in the renewSession and then the same lock is used in the underlying removeConnection method.

This could be potentially fixed by the usage of RecursiveMutex instead of the MutexUnique

[sfc-gh-ext-simba-jy]

Since these two methods don’t call each other and are handled by separate threads, I’m trying to understand the reasoning behind the deadlock concern. Could you clarify why you think a deadlock might happen here?

[sfc-gh-pbulawa]

There is a call chain on the same thread:

1. HeartbeatBackground::renewSession() acquires MutexUnique guard(m_lock)
2. While holding m_lock, it calls renew_session_sync(itr->second)
3. renew_session_sync(), if renew_session() fails, calls stop_heart_beat_for_this_session(sf)
4. stop_heart_beat_for_this_session() calls bg.removeConnection(sf)
5. removeConnection() tries to acquire MutexGuard m_guard(m_lock) - deadlock

[sfc-gh-ext-simba-jy]

Hello @sfc-gh-pbulawa, thank you for your feedback. After investigating the issue, I confirmed that this workflow can indeed cause a deadlock. Upon comparing the code flow with the ODBC implementation, I realized that stop_heartbeat is not required in renew_session_sync. Therefore, I have removed the stop_heartbeat_for_this_session call from renew_session_sync, which should resolve this issue.

[sfc-gh-pbulawa]

Let's acquire the sf->mutex_tokens here, as the Connection parameters read is unprotected right now, which could cause a race condition, e.g., when the token is updated during the query execution.

[sfc-gh-ext-simba-jy]

I’m not entirely sure which tokens you’re referring to. The heartbeat request doesn’t include any body content, and it only needs the protocol, host, and port to construct the URL. You can find the POST request here: https://github.com/snowflakedb/libsnowflakeclient/pull/841/changes#diff-c11feb72994cdbbcf8f21da1a069803f0abbf5073e068b4ec4f793b5cef71791R176

[sfc-gh-pbulawa]

genHeartBeatReq calls create_header:

libsnowflakeclient/cpp/lib/HeartbeatBackground.cpp

Line 291 in 3d1974b

if (!create_header(connection, httpExtraHeaders, &connection->error)) {

And create_header in connection.c does read the token without any lock:

libsnowflakeclient/lib/connection.c

Lines 182 to 188 in 3d1974b

	sf_bool STDCALL create_header(SF_CONNECT *sf, SF_HEADER *header, SF_ERROR_STRUCT *error) {
	sf_bool ret = SF_BOOLEAN_FALSE;
	size_t header_token_size;
	size_t header_direct_query_token_size;
	size_t header_service_name_size;
	const char *token = header->renew_session ? sf->master_token : sf->token;

It reads sf->token (or sf->master_token), which is exactly the kind of field protected by sf->mutex_tokens. Another thread performing query execution or session renewal can update these tokens concurrently.

[sfc-gh-ext-simba-jy]

Thank you for the clarification @sfc-gh-pbulawa. I applied to this. Thank you!

In this case, I believe the ODBC may need to apply this logic. WDYT?

[sfc-gh-pbulawa]

Yes, if you could update it in odbc that would be great.

[sfc-gh-pbulawa]

PTAL at the comments

[sfc-gh-pbulawa]

Lock ordering risks deadlock start_heart_beat_for_this_session and stop_heart_beat_for_this_session lock sf->mutex_heart_beat then call into HeartbeatBackground which acquires m_lock. However, renewSession iterates failedConnection under m_lock and then acquires conn->mutex_heart_beat. If these two orderings ever overlap, a deadlock occurs. Lock ordering must be documented and enforced (e.g., always acquire m_lock before mutex_heart_beat).

[sfc-gh-pbulawa]

Exception can escape. m_worker->join() can throw std::system_error. If it does, the exception propagates out of the destructor, causing std::terminate. Let's wrap in try/catch and log.

[sfc-gh-pbulawa]

Suggested change

	assert_false(sf_strncasecmp(previous_masterToken, sf->master_token, strlen(sf->token)) == 0);
	assert_false(sf_strncasecmp(previous_masterToken, sf->master_token, strlen(sf->master_token)) == 0);

[sfc-gh-pbulawa]

What if creation fails? The mutex will never be set.

[sfc-gh-pbulawa]

We should have a null check here for safety.

[Copilot]

Pull request overview

Adds client-session keepalive support to LibSfClient by sending keepalive session parameters during login and running a background heartbeat/renewal loop when enabled.

Changes:

• Introduces new connection attributes and session parameters: CLIENT_SESSION_KEEP_ALIVE and CLIENT_SESSION_KEEP_ALIVE_HEARTBEAT_FREQUENCY.
• Adds a C++ heartbeat background worker (plus C-callable wrappers) and recursive mutex plumbing to renew tokens safely.
• Adds/updates tests and mock expected JSON to cover the new session parameters and heartbeat behavior.

Reviewed changes

Copilot reviewed 21 out of 21 changed files in this pull request and generated 14 comments.

Show a summary per file

File	Description
tests/test_heartbeat.cpp	New heartbeat/keepalive integration tests (threaded + manual).
tests/mock/test_mock_mfa_token_caching.c	Forces keepalive off in MFA mock tests to match new request payload.
tests/mock/test_data/expected_second_mfa_request.json	Updates expected request JSON to include keepalive session parameters.
tests/mock/test_data/expected_first_mfa_request.json	Updates expected request JSON to include keepalive session parameters.
tests/CMakeLists.txt	Adds test_heartbeat and optional HEARTBEAT_DEBUG compile definitions.
lib/mutex.h	C API for creating/freeing a recursive mutex implemented in C++.
lib/heart_beat_background.h	C API for starting/stopping heartbeat and synchronously renewing session.
lib/connection.c	Adds keepalive session parameters to the login request body.
lib/client_int.h	Adds heartbeat URL/constants and extends error code constants; wraps uuid APIs for C++.
lib/client.c	Stores keepalive settings, session ID, starts/stops heartbeat on connect/term, and adds new set/get attributes.
include/snowflake/client.h	Exposes new attributes and adds heartbeat-related fields to SF_CONNECT.
include/snowflake/SFURL.hpp	Adds a new SFURL constructor and reorders some members.
cpp/util/SnowflakeCppUtil.cpp	Adjusts cJSON→picojson conversion to avoid leaking the printed JSON string.
cpp/util/SFURL.cpp	Implements the new SFURL constructor.
cpp/lib/SnowflakeUtil.cpp	Removes old duplicate C wrapper utilities (moved to cpp/util).
cpp/lib/Mutex.hpp	Adds C++ Mutex/RecursiveMutex wrappers (used by heartbeat + C bridge).
cpp/lib/Mutex.cpp	Implements recursive mutex bridge functions and mutex wrappers.
cpp/lib/IAuth.cpp	Uses URL constants and new SFURL constructor when building authenticator URL.
cpp/lib/HeartbeatBackground.hpp	Declares the singleton heartbeat worker and heartbeat request snapshot struct.
cpp/lib/HeartbeatBackground.cpp	Implements heartbeat worker thread, heartbeat POSTs, and session renew logic + C wrappers.
CMakeLists.txt	Adds HEARTBEAT option and includes new heartbeat/mutex sources/headers in builds.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

You can also share your feedback on Copilot code review. Take the survey.