rgw: RGWCoroutine::set_sleeping() checks for null stack

[cbodley]

users of the RGWOmapAppend coroutine don't manage the lifetime of its underlying coroutine stack, so end up making calls on RGWOmapAppend after its stack goes away. this null check is a band-aid, and there are still several other calls in RGWCoroutine that don't check for null stack

Fixes: https://tracker.ceph.com/issues/49302

Show available Jenkins commands

• jenkins retest this please
• jenkins test classic perf
• jenkins test crimson perf
• jenkins test signed
• jenkins test make check
• jenkins test make check arm64
• jenkins test submodules
• jenkins test dashboard
• jenkins test dashboard cephadm
• jenkins test api
• jenkins test docs
• jenkins render docs
• jenkins test ceph-volume all
• jenkins test ceph-volume tox
• jenkins test windows

[cbodley]

@ofriedma i saw this commit in #45958, and it looks like a fix for https://tracker.ceph.com/issues/49302 which we're seeing downstream too. i updated the commit and message, and added your Signed-off-by. is that ok?

[mattbenjamin]

@cbodley would it make sense to check for null stack in all the places that look plausible?

[cbodley]

@cbodley would it make sense to check for null stack in all the places that look plausible?

cc @yehudasa

probably, yeah - if RGWCoroutine::stack is null, i assume that means the stack finished running all of its coroutines, so it's too late for calls on RGWCoroutine to have any effect

in the past, we worked around issues like this by requiring the sync code to hold references to both the coroutine and its stack (some examples in RGWDataSyncShardCR and RGWMetaSyncCR)

i don't think there's a good way to track down all of the other places we could crash like this, so adding null checks to RGWCoroutine seems like the only way to rule them out

[ofriedma]

@cbodley
yes, it's fine I didn't manage to check if it happens on upstream as well (but saw that sometimes the stack could be null) , I added it as workaround for the issues I saw on the sync fairness, so not sure it it's the solution right here.

[ofriedma]

Does the returned value matters here anyway? (we should change the comment)
Maybe we should add more checks as you've mentioned to the code where the stack is being called.
Other than those, LGTM

[cbodley]

Does the returned value matters here anyway?

i see that several coroutines in rgw_sync.cc and rgw_data_sync.cc are returning the result with return io_block(0);

if coroutines return an error without calling set_cr_done() or set_cr_error(), it looks like we'd trigger this assertion in RGWCoroutinesStack::operate():

/* should r ever be negative at this point? */
ceph_assert(r >= 0);

but if we're in RGWCoroutinesStack::operate(), then RGWCoroutine::stack probably isn't null, so maybe it doesn't matter in this specific case

(we should change the comment)

i removed the comment, thanks

Maybe we should add more checks as you've mentioned to the code where the stack is being called

the crashes do seem to be specific to RGWOmapAppend, so we could resolve https://tracker.ceph.com/issues/49302 by changing its callers to hold an extra reference to its stack. but who knows where else this is broken?

i'm hoping that this change in RGWCoroutine fixes this entire class of bugs, without needing to make the calling code more complicated. but this coroutine stuff itself is complicated, so we may just be breaking other things

[cbodley]

this 'passed' qa in https://pulpito.ceph.com/cbodley-2022-04-26_01:02:21-rgw-wip-cbodley-testing-distro-default-smithi/ even though the multisite jobs failed. at least i didn't see any crashes

[cbodley]

jenkins test make check

[cbodley]

this 'passed' qa in https://pulpito.ceph.com/cbodley-2022-04-26_01:02:21-rgw-wip-cbodley-testing-distro-default-smithi/ even though the multisite jobs failed. at least i didn't see any crashes

in local testing, the only multisite failure i saw was test_multi.test_version_suspended_incremental_sync from https://tracker.ceph.com/issues/55179