Skip to content

Skip any erroring entry in FilesystemStore::list #3799

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Skip any erroring entry in FilesystemStore::list #3799

wants to merge 1 commit into from
+3 −1

Conversation

tnull
Copy link
Contributor

@tnull tnull commented May 24, 2025

Closes #3795.

Previously, we would bubble up any error that we'd encouter during retrieving the metadata for all listed entries. Here we relax this somewhat to allow for minor inconsistencies between reading the directory entries and checking whether they are valid key entries.

@tnull
Skip any erroring entry in FilesystemStore::list
73af4dd 
Previously, we would bubble up any error that we'd encouter during
retrieving the metadata for all listed entries. Here we relax this
somewhat to allow for minor inconsistencies between reading the
directory entries and checking whether they are valid key entries.
@ldk-reviews-bot
Copy link

ldk-reviews-bot commented May 24, 2025
edited
Loading

👋 Thanks for assigning @TheBlueMatt as a reviewer!
I'll wait for their review and will help manage the review process.
Once they submit their review, I'll check if a second reviewer would be helpful.

@tnull tnull mentioned this pull request May 24, 2025
Open
@tnull tnull requested a review from TheBlueMatt May 24, 2025 06:50
@ldk-reviews-bot
Copy link

🔔 1st Reminder

Hey @TheBlueMatt! This PR has been waiting for your review.
Please take a look when you have a chance. If you're unable to review, please let us know so we can find another reviewer.

@ldk-reviews-bot
Copy link

🔔 2nd Reminder

Hey @TheBlueMatt! This PR has been waiting for your review.
Please take a look when you have a chance. If you're unable to review, please let us know so we can find another reviewer.

TheBlueMatt
TheBlueMatt reviewed May 30, 2025
View reviewed changes
Copy link
Collaborator

@TheBlueMatt TheBlueMatt left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

What do we want to do about MigratableKVStore::list_all_keys?

@TheBlueMatt
Copy link
Collaborator

I also feel like we need to specify the expected semantics at the API-level here. This change can allow for an inconsistent list view - eg if someone wrote key A then deleted key B the list API can return a value without A and without B, which is weird in some cases.

@tnull
Copy link
Contributor Author

tnull commented Jun 4, 2025

What do we want to do about MigratableKVStore::list_all_keys?

I don't think we should change anything about that, as for migration we'd want be as strict as possible? For one, users really shouldn't run migration in-parallel to anything else (which is basically already documented on migrate_kv_store_data), and if we hit some inconsistencies the user probably needs to take a look rather than the migration just silently continuing with some items missing.

I also feel like we need to specify the expected semantics at the API-level here. This change can allow for an inconsistent list view - eg if someone wrote key A then deleted key B the list API can return a value without A and without B, which is weird in some cases.

Are we sure this would be the case? I'm not sure if it is honestly. Before we change the docs, we should probably first try to understand better what exactly happened in the user-reported instance.

@TheBlueMatt
Copy link
Collaborator

Are we sure this would be the case? I'm not sure if it is honestly. Before we change the docs, we should probably first try to understand better what exactly happened in the user-reported instance.

I think so. We'd first list the directory entries that doesn't have A or B, then the other thread can remove A and write B and the loop will go through, detect that A is missing and ignore it, but never look for B. Absent a full restart of the whole loop and giving up after a while I'm not sure how we'd fix it, though, honestly.

@tnull
Copy link
Contributor Author

tnull commented Jun 5, 2025

I think so. We'd first list the directory entries that doesn't have A or B, then the other thread can remove A and write B and the loop will go through, detect that A is missing and ignore it, but never look for B. Absent a full restart of the whole loop and giving up after a while I'm not sure how we'd fix it, though, honestly.

Issues like this reminds me that we still need to provide a better default KVStore implementation and discourage FilesystemStore for production use, IMO.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@TheBlueMatt TheBlueMatt TheBlueMatt left review comments

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

FilesystemStore::list is not safe to call concurrently
3 participants
@tnull @ldk-reviews-bot @TheBlueMatt