Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly
Sign up
Appearance settings

Tracer idle/deadline timeouts run on java.util.Timer #5575

Open

Description

Audit finding B1 — actual bug, MEDIUM-HIGH.

SentryTracer uses java.util.Timer for transaction idle/deadline timeouts (scheduleFinish / scheduleDeadlineTimeout, see sentry/src/main/java/io/sentry/SentryTracer.java). Timer deadlines are wall-clock based and its internal Object.wait() does not progress during Android deep sleep:

  • App backgrounded mid-ui.load → device sleeps before the 30s deadline → timer fires at wake (potentially hours later); forceFinish then stamps unfinished spans with dateProvider.now() → multi-hour transactions/spans (the classic "absurdly long ui.load transaction" artifact).
  • Wall-clock steps (NTP / user) shift firing on any platform.

Source: JAVA-557 §B1.

Metadata

Metadata

Assignees

No one assigned
    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

      Relationships

      None yet

      Development

      No branches or pull requests

      Issue actions

        AltStyle によって変換されたページ (->オリジナル) /