Skip to content

Fix hosting.config reload #9046

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
rob05c merged 1 commit into from
Oct 20, 2022
Merged

Fix hosting.config reload #9046

rob05c merged 1 commit into from
Oct 20, 2022

Conversation

@rob05c
Copy link
Member

@rob05c rob05c commented Aug 18, 2022
edited
Loading

This is an alternative to #8664. That PR is fine in-itself and fixes a bug around the the atomic swap not actually reloading. But fixing that bug so that reloading hosting.config works exposes another deeper bug: the reloaded object has no synchronization around it.

Not only is the pointer itself never read with synchronization, even if it were, the object itself is never synchronized. So even if the pointer were atomic, the object reads could get different variables from different objects, when callers that need multiple variables really need them to come from a single object. Worse, if a request takes longer than the arbitrary delete timer, it could access freed memory.

This fixes the object to be synchronized, and all access behind a mutex. The reload swap and bad drive removal acquire a write lock, and all other accesses (none of which modify the object) acquire a read lock.

I really don't like adding a mutex to the request path. But the only other options I see are an incredibly complex and bug-prone lock-free solution, or not making it possible to reload hosting.config. As much as I dislike it, the mutex should never have contention except on reload or drive failure. So it's probably actually faster and fewer atomic instructions than even a lock-free solution.

This also adds some helper classes, to make it impossible to accidentally forget to acquire or release the mutex, or modify the object with a readlock, via RAII idioms.

Recommend backporting to 9.2.

Fixes #7220

@rob05c rob05c added the Bug label Aug 18, 2022
@rob05c rob05c added this to the 10.0.0 milestone Aug 18, 2022
@rob05c rob05c self-assigned this Aug 18, 2022
@rob05c rob05c requested a review from SolidWallOfCode August 18, 2022 18:47
@rob05c rob05c assigned rob05c and unassigned rob05c Aug 18, 2022
@rob05c rob05c requested a review from ezelkow1 August 18, 2022 18:48
@rob05c rob05c force-pushed the fix-hosting-config-reload-2 branch 5 times, most recently from ccf7dc0 to eadf861 Compare August 23, 2022 17:18
@traeak
Copy link
Contributor

traeak commented Aug 24, 2022

[approve ci docs]

@bryancall
Copy link
Contributor

bryancall commented Aug 29, 2022

[approve ci autest]

SolidWallOfCode
SolidWallOfCode previously approved these changes Sep 26, 2022
View reviewed changes
Copy link
Member

@SolidWallOfCode SolidWallOfCode left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I wonder about line 284, though - there doesn't seem to be a provision for a failure on a reload.

randall
randall reviewed Oct 6, 2022
View reviewed changes
@rob05c rob05c force-pushed the fix-hosting-config-reload-2 branch from eadf861 to 571bc7d Compare October 17, 2022 23:40
@rob05c
Copy link
Member Author

rob05c commented Oct 18, 2022

[approve ci autest]

@rob05c rob05c merged commit 026d906 into apache:master Oct 20, 2022
@randall randall mentioned this pull request Oct 25, 2022
Closed
zwoop pushed a commit that referenced this pull request Nov 1, 2022
@rob05c @zwoop
Fix hosting.config reloading (#9046)
158e25e 
(cherry picked from commit 026d906)
@zwoop
Copy link
Contributor

zwoop commented Nov 1, 2022

Cherry-picked to v9.2.x

@zwoop zwoop modified the milestones: 10.0.0, 9.2.0 Nov 1, 2022
SolidWallOfCode pushed a commit to SolidWallOfCode/trafficserver that referenced this pull request Nov 15, 2022
@rob05c @SolidWallOfCode
Fix hosting.config reloading (apache#9046)
cd265b0
@masaori335 masaori335 mentioned this pull request Nov 18, 2022
Closed
masaori335 pushed a commit to masaori335/trafficserver that referenced this pull request Feb 21, 2023
@zwoop
Merge remote-tracking branch 'asf/9.2.x' into 9.2.x
d7c5131 
* asf/9.2.x:
  Updated ChangeLog
  Add docs for strategies.yaml hash_string (apache#9026)
  Fix hosting.config reloading (apache#9046)
  Remove unnecessary, dangerous casts from SET_HANDLER and SET_CONTINUATION invocations. (apache#9129)
  Remove deprecated ld option (--add-needed) (apache#9141)
masaori335 added a commit to masaori335/trafficserver that referenced this pull request Mar 7, 2023
@masaori335
Revert "Fix hosting.config reloading (apache#9046)"
dc7ac42 
This reverts commit 158e25e.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@randall randall randall approved these changes

@ezelkow1 ezelkow1 Awaiting requested review from ezelkow1

+1 more reviewer

@SolidWallOfCode SolidWallOfCode SolidWallOfCode left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

@rob05c rob05c

Labels

Bug

Projects

None yet

Milestone

9.2.0

Development

Successfully merging this pull request may close these issues.

hosting.config requires restart, but docs say reloadable

6 participants

@rob05c @traeak @bryancall @zwoop @randall @SolidWallOfCode