Expand my Community achievements bar.

thread.interrupt vulnerability in cloud manager

Avatar

Level 2
Level 2
3/2/22 7:07:57 PM

Hi Team,

 

We are using custom workflow for some data processing and have used Thread.sleep(10000) in some method waiting. We are Catching the InterruptedException and along with logging it we are calling 

Thread.currentThread().interrupt();

 

As per cloud manager code scan, it comes up as vulnerabilities. Is there any possible way to handle this.

 

Thanks,

Volga

@Shardendu_Jha 

Views

961

Replies

7
Sign in to like this content

Total Likes

Translate
Translate
7 Replies

Avatar

Community Advisor
Community Advisor
3/2/22 9:59:04 PM

Hi @Volga_Dharam_Rakshika ,

 

Is there any reason you are trying to stop/pause the thread?
Can you please explain the use case little bit. 

Views

952

Replies

5
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 2
Level 2
3/2/22 10:20:02 PM
In response to Anmol_Bhardwaj

The main thread is waiting for some background process to complete while the main thread is sleeping.

The workflow reads a file and stores the processed data internally. We have called Thread.sleep in workflow process so that internally AEM can complete its processing 

Views

949

Replies

4
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Community Advisor
Community Advisor
3/3/22 2:23:27 AM
In response to Volga_Dharam_Rakshika

Is there any particular reason you want the main thread to wait.

Like, if the job is to read the file after it has been processed, you can just call the function within the one reading it and then the thread doesn't need to wait. Or are they independent of each other and that's why you want it to wait?

Views

938

Replies

3
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 2
Level 2
3/3/22 2:27:20 AM
In response to Anmol_Bhardwaj

We have auto-advanced steps in the workflow which are being done by separate processes. Once the process reads the file, it created some data nodes in AEM and replicates those in order to persist them. Once it calls the replicate command, we are waiting for some time so that the next process access the correct data. So, if the wait is not there, the next process might read incomplete/unpublished data.

Views

933

Replies

2
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Community Advisor
Community Advisor
3/3/22 2:54:43 AM
In response to Volga_Dharam_Rakshika

I'm not sure if interrupting the thread would be the best approach.

Instead, what I can suggest is, instead of this approach, what you can do is create a workflow launcher which can auto-trigger based on node changes in the particular path/paths.

 

HelpDoc: https://experienceleague.adobe.com/docs/experience-manager-64/administering/operations/workflows-sta...

Views

925

Replies

1
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 2
Level 2
3/10/22 1:48:23 AM
In response to Anmol_Bhardwaj

The issue we are trying to resolve is not around workflows. It is around the compliant core for such scenarios to prevent SONAR issues.

Views

869

Replies

0
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Administrator
Administrator
5/30/22 12:41:42 AM

@Volga_Dharam_Rakshika 

[Webinar | AEM GEMs] Looking under the hood - Cloud Manager 2022 | Register: https://adobe.ly/3t4jfgp  & Ask Questions related to this Webinar: https://adobe.ly/3O0rdzd 

Date &Time: Wednesday, June 15, 2022 - 8 am PDT OR 5 pm CET OR 8.30 pm IST
Speakers: Remus Stratulat & Shankari Panchapakesan

Share this within your Organisation and with your AEM peers!!



Kautuk Sahni

Views

784

Replies

0
Sign in to like this content

Total Likes

Translate
Translate