Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fixed background apply fiber race condition in raft::state_machine_manager #16850

Merged
merged 2 commits into from
Mar 5, 2024
Merged

Fixed background apply fiber race condition in raft::state_machine_manager #16850

merged 2 commits into from
Mar 5, 2024

Conversation

mmaslankaprv
Copy link
Member

@mmaslankaprv mmaslankaprv commented Mar 4, 2024
edited

raft::state_machine_manager uses background apply fiber to
individually apply batches to state machines which are behind the main
apply fiber. When background apply fiber is active it reads and apply
batches up to current committed offset. When background apply fiber is
active it acquires the mutex. When mutex is acquired the main apply
fiber do not consider the stm as up to date.

The code was prone to very rare race condition as the background apply
was finished in one continuation but the units were release in
subsequent finally block. Normally this approach is harmless as the
semaphore is waited for and it will be signalled after the finally
fiber is executed. In state_machine_manager we only check if the
semaphore is available, this makes the solution vulnerable to timing.

Backports Required

  • none - not a bug fix
  • none - this is a backport
  • none - issue does not exist in previous branches
  • none - papercut/not impactful enough to backport
  • v23.3.x
  • v23.2.x

Release Notes

  • none

@mmaslankaprv mmaslankaprv mentioned this pull request Mar 4, 2024
Merged
@vbotbuildovich
Copy link
Collaborator

vbotbuildovich commented Mar 4, 2024
edited

ducktape was retried in https://buildkite.com/redpanda/redpanda/builds/45620#018e0a1b-7973-4376-88d9-999ed8bd5a42

ducktape was retried in https://buildkite.com/redpanda/redpanda/builds/45628#018e0ab3-5550-45bf-8afe-ae8988f35806

ducktape was retried in https://buildkite.com/redpanda/redpanda/builds/45683#018e0e08-d13b-4646-900f-a29b52690f21

ducktape was retried in https://buildkite.com/redpanda/redpanda/builds/45683#018e0e08-d138-4f1e-92b8-f357023a4e6c

ducktape was retried in https://buildkite.com/redpanda/redpanda/builds/45683#018e0e04-010d-4da6-9c4f-79be628cff35

@vbotbuildovich
Copy link
Collaborator

vbotbuildovich commented Mar 4, 2024
edited

new failures in https://buildkite.com/redpanda/redpanda/builds/45620#018e0a1b-796c-4865-ba57-5fc00b08a5e8:

"rptest.tests.tiered_storage_model_test.TieredStorageTest.test_tiered_storage.cloud_storage_type=CloudStorageType.ABS.test_case=.TS_Read==True.AdjacentSegmentMergerReupload==True.SpilloverManifestUploaded==True"

new failures in https://buildkite.com/redpanda/redpanda/builds/45628#018e0ab3-5547-482a-9e1a-35279f46e5b1:

"rptest.tests.retention_policy_test.ShadowIndexingCloudRetentionTest.test_cloud_time_based_retention.cloud_storage_type=CloudStorageType.S3"

@mmaslankaprv
r/stm_manager: release units immediately after finishing bckg apply
df97290 
`raft::state_machine_manager` uses background apply fiber to
individually apply batches to state machines which are behind the main
apply fiber. When background apply fiber is active it reads and apply
batches up to current committed offset. When background apply fiber is
active it acquires the mutex. When mutex is acquired the main apply
fiber do not consider the stm as up to date.

The code was prone to very rare race condition as the background apply
was finished in one continuation but the units were release in
subsequent `finally` block. Normally this approach is harmless as the
semaphore is waited for and it will be signaled after the `finally`
fiber is executed. In `state_machine_manager` we only check if the
semaphore is available, this makes the solution vulnerable to timing.

Signed-off-by: Michal Maslanka <michal@redpanda.com>
@mmaslankaprv
r/tests: added state machine manager test
a55d01a 
Added state machine manager test waiting for batches to be applied after
each replicate. This test is designed to detect a situation in which
background apply fiber finishes but managed stm is still behind the
others.

Signed-off-by: Michal Maslanka <michal@redpanda.com>
@mmaslankaprv mmaslankaprv force-pushed the stm-manager-race-condition-fix branch from 2aceef5 to a55d01a Compare March 4, 2024 17:01
@mmaslankaprv
Copy link
Member Author

/ci-repeat 1

@mmaslankaprv mmaslankaprv merged commit 14dd782 into redpanda-data:dev Mar 5, 2024
16 checks passed
@mmaslankaprv mmaslankaprv deleted the stm-manager-race-condition-fix branch March 5, 2024 11:31
@vbotbuildovich
Copy link
Collaborator

/backport v23.3.x

@vbotbuildovich vbotbuildovich mentioned this pull request Mar 5, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@bharathv bharathv bharathv approved these changes

@ztlpn ztlpn Awaiting requested review from ztlpn

Assignees
No one assigned
Labels
area/redpanda
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@mmaslankaprv @vbotbuildovich @bharathv