Skip to content

CASSANDRA-20996 Use LWTs for all auto-repair history mutations #4456

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 5 commits into
base: trunk
Choose a base branch
from
Open

CASSANDRA-20996 Use LWTs for all auto-repair history mutations #4456

wants to merge 5 commits into from
+52 −5

Conversation

@kzalys
Copy link
Contributor

@kzalys kzalys commented Oct 31, 2025
edited
Loading

For issue https://issues.apache.org/jira/browse/CASSANDRA-20996

The auto-repair history management mechanism does not use LWTs for all of its history table queries. As a result, it is possible to run into a few edge cases where a deleted node's repair history gets resurrected. For example:
This can lead to the following race condition:

  1. Node A sends out a query to vote for Node D to be removed from auto-repair history
  2. Whereas node B sends out a query clear the node D's delete hosts list (or to set force repair to true for node D)
  3. Node A's vote is carried out, it is now present in the auto-repair history table
  4. Node C sees that enough nodes have voted to remove Node D and sends out a query to delete the auto-repair history for Node D.
  5. The delete query is executed, a tombstone is inserted for Node D's auto-repair history
  6. Finally, Node B's query to modify Node D's entry in the repair history is carried out, this mutation has a higher timestamp than the tombstone inserted by Node C. As a result, Node D's auto-repair history gets resurrected.

This PR introduces a unit test to simulate these out-of-order deletions/upserts and updates the auto-repair history mutations to use LWTs in order to prevent the race conditions from happening.

@kzalys kzalys changed the title Use LWTs for all auto-repair history mutations CASSANDRA-20996 Use LWTs for all auto-repair history mutations Oct 31, 2025
@kzalys
Copy link
Contributor Author

kzalys commented Nov 11, 2025

@jaydeepkumar1984 can I have a review on this please?

jaydeepkumar1984
jaydeepkumar1984 reviewed Nov 11, 2025
View reviewed changes
test/unit/org/apache/cassandra/repair/autorepair/AutoRepairUtilsTest.java
@@ -538,4 +538,42 @@ public void testSkipSystemTraces()
{
assertFalse(AutoRepairUtils.shouldConsiderKeyspace(Keyspace.open(SchemaConstants.TRACE_KEYSPACE_NAME)));
}

@Test
public void testAutoRepairHistoryOutOfOrderDeleteRaceCondition()
Copy link
Contributor

@jaydeepkumar1984 jaydeepkumar1984 Nov 11, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This test passes even without any of the changes because ADD_HOST_ID_TO_DELETE_HOSTS already had IF EXISTS, however, the changes in this PR are necessary.
Please clarify in the description that the PR includes the test case and a certain cases we missed earlier.

Copy link
Contributor Author

@kzalys kzalys Dec 4, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Good point, I've extended this test to include cases that make this test fail without the changes in this PR.

Copy link
Contributor Author

@kzalys kzalys Dec 4, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Also, updated the description

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jaydeepkumar1984 jaydeepkumar1984 jaydeepkumar1984 left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@kzalys @jaydeepkumar1984