Closed gladiatr72 closed 7 years ago
gladiatr72
commented
9 years ago I threw the external pillar exception in there just because.. .well, I just noticed that it was having the problem and it has been running without failure for several weeks--thought I may as well in case it provides some additional insights.
gladiatr72
commented
9 years ago As a follow-up, after having observed the loader seeming to not consistently keep track of external modules of various types, I had the idea of linking them into the installed salt tree to see if the problem cleared up.
Aaand it does. Not ideal but I can deal with this with my current client by writing a state collection for the master's minion to drop the modules in place and restart the salt-master.
I haven't done a deep dive into the threading/process bits of salt, but it would almost seem as if when the reactor thread is under low to moderate load, and the master is asked to spawn multiple loader instances in parallel (such as when spawning multiple runners to handle the aforementioned mass cloud instance destruction), that the threads being spawned to initialize the loader object are returning before external module loading is complete. It follows my initial observations of the first 3-4 orchestration jobs executing correctly followed by a cascade of failed jobs and loader exceptions wrt to missing module.funcs.
Putting them in place to be picked up as an internal module did help somewhat. It changed the statistics to only successfully running the orc state from only the first four to succeeding for all but the final four.
gladiatr72
commented
9 years ago I've been staring at loader code and the Depends decorator. I understand the goal but without properly synchronizing updates to the dependency_dict it causes the above error. The above commit doesn't attempt to fix the actual problem, but it does make it such that modules.(archive|oracle) and test.missing_func() can't hamstring the loader.
jacksontj
commented
9 years ago Interesting failure... I was looking through the code and that set definitely isn't mutated during the loop, so I'm very interested in how its changing size during the iterations... Especially since it specifically makes a copy of the set before iterating over it... Do any of your modules spawn background threads or anything?
If not, is it possible to make a simpler reproduction case?
gladiatr72
commented
9 years ago No thread/proc spawning other than what happens normally during reactor job-processing. I haven't dissected the thread pool bits, though--is there a trigger point where the reactor's thread pool expands or are all of its threads pre-baked during master initialization?
An additional condition I observed was that the loader's failure threshold increased when I moved most of the orchestration state and function calls directly into the reactor state rather than calling them via the orchestration runner. It still happens; however, the numbers of non-error runner calls is much higher before the failure state occurs. On Jun 2, 2015 9:34 AM, "Thomas Jackson" notifications@github.com wrote:
Interesting failure... I was looking through the code and that set definitely isn't mutated during the loop, so I'm very interested in how its changing size during the iterations... Especially since it specifically makes a copy of the set before iterating over it... Do any of your modules spawn background threads or anything?
If not, is it possible to make a simpler reproduction case?
— Reply to this email directly or view it on GitHub https://github.com/saltstack/salt/issues/23839#issuecomment-107992873.
jacksontj
commented
9 years ago They are all pre-baked, but its possible that they are all actioning on the same memory space (causing your race). Can you try setting the number of reactor threads (reactor_worker_threads) to 1? if that clears it up (which I expect it will) we'll have to come up with a way of making the loader threadsafe-- since it seems that it isn't :)
gladiatr72
commented
9 years ago I will give that a shot over the next couple days and get back to you with the results!
On Thu, Jun 4, 2015 at 10:35 AM, Thomas Jackson notifications@github.com wrote:
They are all pre-baked, but its possible that they are all actioning on the same memory space (causing your race). Can you try setting the number of reactor threads (reactor_worker_threads) to 1? if that clears it up (which I expect it will) we'll have to come up with a way of making the loader threadsafe-- since it seems that it isn't :)
— Reply to this email directly or view it on GitHub https://github.com/saltstack/salt/issues/23839#issuecomment-108937238.
You know, I used to think it was awful that life was so unfair. Then I thought, wouldn't it be much worse if life were fair, and all the terrible things that happen to us come because we actually deserve them? So, now I take great comfort in the general hostility and unfairness of the universe.
gladiatr72
commented
9 years ago Just wanted to let you know that this is still on my radar--I'll hopefully have some time to get to this within the week.
cachedout
commented
8 years ago I am wondering if this got addressed with the introduction of ContextDict
high level:
12-15 cloud instance minions custom execution module: tls2 (virtual: tls_ca) custom runner module: tls_ca_run (virtual: tls_ca)
salt-cloud -dy [list of 6+ minions]
The first 4-5 are destroyed, the event is caught, the reactor is triggered, the orchestration states are rendered and processed successfully.
Then... this.
versions
In the ext pillar calls,
_sis just an alias for__salt__tls_ca is a custom execution module
The reactor
The orchestration state
The runner
both the runner and external pillar function perfectly except when I give salt-cloud more than a handful of instances to destroy at a time. 2015.5.0 performs identically to this sort of run. 2014.7.5 also exhibits loader failures under the same context--the only difference is that it merely complains that the external module functions do not exist rather than the set size change.
I am at a loss. If it would help, I'll gzip a debug log from a failed run and toss it up somewhere.
I was looking at the possibility of just queueing the minion_ids of the destroyed instances but looks like the only interface for automatically processing them (queue runner) just wants to dump events back on the bus--I'm thinking it would experience the same difficulty.
I thought this was such a simple state that it would be easily taken care of from the reactor; however, when I saw the same sorts of problems, I imagined it to be that it needed to be passed off for orchestration.
I started developing this process using 2014.7.4 then moved to 2015.5.0 when its release was announced. The above logs fragments are from 2015.5 (from about 3 hours ago). I'll probably go back to 2014.7.5. Either way the result is the same.
It is an important part of the process I've been building that these certificates be revoked and removed very quickly after instance destruction. They contain multiple IP addresses in their subjAltName field--a minion with the same name with an old certificate would just cause all sorts of confusion.
The next step are (zomg) cron-triggered shell scripts. Kinda makes me want to cry when I think about it. Any assistance that can be provided will be quite welcome.