[tool system] Module-level global mutable state creates race conditions and testing difficulty #671

New issue

Closed

opened 2026-06-02 23:39:40 +02:00 by sleepy · 1 comment

sleepy commented 2026-06-02 23:39:40 +02:00

Owner

Copy link

Global mutable state across the tool system

The tool system relies on 5 module-level mutable globals that create hidden coupling and make testing/concurrent use difficult:

1. src/tool_implementations.py:71-72: _active_document_id and _active_model — set via set_active_document() / set_active_model(), read globally. If two agent loops run concurrently (e.g. task scheduler), one overwrites the other's active document.

2. src/agent_tools.py:68: _mcp_manager = None — global singleton MCP manager set once at startup.

3. src/agent_loop.py:442-443: _cached_base_prompt and _cached_base_prompt_key — module-level prompt cache. Not thread-safe. Could be invalidated by one coroutine while another reads stale data.

4. src/agent_runs.py:36: _RUNS: Dict[str, _Run] = {} — in-memory run registry (unbounded growth potential).

Problems

• Race conditions: Two concurrent agent runs can corrupt _active_document_id
• Testing difficulty: Tests must manually reset globals or risk cross-contamination
• Hidden coupling: Any code can set_active_document() at any time, affecting all readers

Suggested fix

• Pass active_document and active_model as explicit parameters through the call chain (they already partially are — _build_system_prompt receives active_document but still sets the global)
• Use a context variable (contextvars.ContextVar) for request-scoped state
• Move _cached_base_prompt to an LRU cache or a class instance

## Global mutable state across the tool system The tool system relies on **5 module-level mutable globals** that create hidden coupling and make testing/concurrent use difficult: 1. **`src/tool_implementations.py:71-72`**: `_active_document_id` and `_active_model` — set via `set_active_document()` / `set_active_model()`, read globally. If two agent loops run concurrently (e.g. task scheduler), one overwrites the other's active document. 2. **`src/agent_tools.py:68`**: `_mcp_manager = None` — global singleton MCP manager set once at startup. 3. **`src/agent_loop.py:442-443`**: `_cached_base_prompt` and `_cached_base_prompt_key` — module-level prompt cache. Not thread-safe. Could be invalidated by one coroutine while another reads stale data. 4. **`src/agent_runs.py:36`**: `_RUNS: Dict[str, _Run] = {}` — in-memory run registry (unbounded growth potential). ### Problems - **Race conditions**: Two concurrent agent runs can corrupt `_active_document_id` - **Testing difficulty**: Tests must manually reset globals or risk cross-contamination - **Hidden coupling**: Any code can `set_active_document()` at any time, affecting all readers ### Suggested fix - Pass `active_document` and `active_model` as explicit parameters through the call chain (they already partially are — `_build_system_prompt` receives `active_document` but still sets the global) - Use a context variable (`contextvars.ContextVar`) for request-scoped state - Move `_cached_base_prompt` to an LRU cache or a class instance

sleepy added the

bug

enhancement

labels 2026-06-02 23:39:40 +02:00

sleepy referenced this issue 2026-06-02 23:57:35 +02:00

[structural] Module-level mutable globals in llm_core.py create thread-safety issues #709

sleepy referenced this issue 2026-06-03 00:08:47 +02:00

[chat] ai_interaction.py uses module-level mutable globals for all manager singletons #729

sleepy referenced this issue from a commit 2026-06-04 03:21:50 +02:00

[tools] Replace global mutable state with contextvars (#671)

sleepy closed this issue 2026-06-04 03:24:05 +02:00

sleepy commented 2026-06-04 03:24:11 +02:00

Author

Owner

Copy link

Fixed via PR #902 — replaced _active_document_id/_active_model with contextvars, _cached_base_prompt with _PromptCache class. _mcp_manager kept as singleton with doc comment.

Fixed via PR #902 — replaced _active_document_id/_active_model with contextvars, _cached_base_prompt with _PromptCache class. _mcp_manager kept as singleton with doc comment.

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

main

dev

fix/effective-mode-undefined

fix/async-generator-500

refactor/split-small-routes-779

refactor/split-session-routes-778

refactor/split-llm-core-700

refactor/split-chat-routes-724

refactor/split-model-routes-701

refactor/split-skills-routes-777

refactor/split-document-routes-769

refactor/split-ai-interaction-722

refactor/split-cookbook-routes-775

refactor/split-builtin-actions-723

refactor/split-task-scheduler-774

refactor/tool-execution-split-667

fix/rag-health-coordinator-756

fix/agent-core-missing-round-loop

fix/rag-health-check-756

fix/missing-readmes-782

fix/search-files-split-772

fix/dedup-search-impl-771

fix/mcp-integrations-split-781

fix/cookbook-helpers-split-785

fix/search-cross-feature-776

fix/graceful-llm-degradation-770

fix/dedup-research-handler-773

fix/cross-route-coupling-780

fix/skills-typed-request-762

fix/chat-stream-pydantic-731

fix/chat-handler-imports-737

fix/public-llm-exports-730

fix/dedup-search-content-784

fix/dedup-stream-parse-735

fix/stream-error-boundary-734

fix/typed-event-names-786

fix/dedup-js-utilities-792

fix/skills-index-lookup-761

fix/xss-charname-innerhtml-788

fix/coderunner-document-write-789

fix/ai-interaction-thread-safety-729

fix/client-side-api-key-regex-793

fix/dead-loadingtext-796

fix/active-streams-eviction-736

fix/builtin-actions-sqlite-orm-732

fix/llm-core-thread-safety-709

fix/singleton-thread-safety-768

fix/video-upload-multimodal-826

fix/mic-button-audio-825

fix/multimodal-capabilities-827

fix/dedup-system-msg-717

fix/service-dead-calls-750

fix/db-session-context-manager-757

fix/dedup-llmconfig-710

fix/keyword-lists-764-v2

fix/keyword-lists-764

fix/llm-cache-ttl-708

fix/validate-config-711

fix/totp-constant-time-689

fix/admin-tools-constant-681

fix/dedup-truncate-670

fix/threadsafe-extractions-audit-754

fix/dedup-json-io-767

fix/695-deduplicate-admin-check

fix/upload-auth-dedup-765

fix/705-deduplicate-network-constants

fix/deduplicate-chunking-749

fix/760-deduplicate-embed

fix/dedup-validation-759

fix/748-deduplicate-tokenization

fix/add-readmes-728-742-782

fix/key-file-permissions-706

fix/embedding-retry-766

fix/deterministic-doc-ids-753

fix/search-facade-783

fix/remove-dead-memory-746

fix/remove-rag-manager-747

fix/dead-docstring-763

refactor/split-tool-schemas-666

refactor/split-agent-loop-664

refactor/split-tool-implementations-665

fix/mark-stopped-500-663

fix/streamingtts-scope-662

fix/code-block-tool-parsing-661

No results found.

Labels

Clear labels   

area:chat

  

area:core

  

area:llm

  

area:routes

  

area:tools

  

bug

Something isn't working

  

documentation

Improvements or additions to documentation

  

duplicate

This issue or pull request already exists

  

enhancement

New feature or request

  

good first issue

Good for newcomers

  

help wanted

Extra attention is needed

  

invalid

This doesn't seem right

  

question

Further information is requested

  

refactor

  

wontfix

This will not be worked on

No labels

area:chat

area:core

area:llm

area:routes

area:tools

bug

documentation

duplicate

enhancement

good first issue

help wanted

invalid

question

refactor

wontfix

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

sleepy/odysseus#671

No description provided.