background fetching can cause data corruption #842
Labels
bug
Something isn't working
Comments
|
@vadimberezniker Thank you for the detailed report.
Yes, that solution sounds good to me. Would you be willing to create a patch to fix it? |
|
Yes, I can work on a patch tomorrow. |
|
@vadimberezniker Thanks! |
vadimberezniker
added a commit
to vadimberezniker/stargz-snapshotter
that referenced
this issue
Jul 7, 2022
As the IDs are used for computing cache keys, it's important that they do not change. Prior to this change, background fetching would clone the reader and populate the cache with entries using possibly incorrect keys. This patch changes the clone behavior to copy over the original ID mappings. Note that I also removed the locks around the ID maps as these maps are never updated after the reader is created. Fixes containerd#842
vadimberezniker
added a commit
to vadimberezniker/stargz-snapshotter
that referenced
this issue
Jul 8, 2022
As the IDs are used for computing cache keys, it's important that they do not change. Prior to this change, background fetching would clone the reader and populate the cache with entries using possibly incorrect keys. This patch changes the clone behavior to copy over the original ID mappings. Note that I also removed the locks around the ID maps as these maps are never updated after the reader is created. Fixes containerd#842 Signed-off-by: Vadim Berezniker <vadim@berezniker.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
I have been experimenting with container image streaming using stargz-store + podman, but have run into some odd behavior which I have narrowed down to the "background fetch" feature. When background fetching is enabled, the store can return wrong contents for files.
After a few days of debugging, I think the following is happening:
When a layer is first resolved, a new
memory.readeris created.memory.NewReaderassigns an ID to each file.It's important to note that the ID assignment is not deterministic because
ForEachChildinternally iterates over a map which does not provide a stable ordering. The assigned ID is used to compute the key used for storing data in the cache.Background fetching calls
verifiableReader.Cache(reader.WithReader(...))which callsCloneonmetadata.Reader. In thememory.readercase, the IDs are not preserved which means the newly assigned IDs may not match the original assignments. Background fetching can then populate the cache with chunks for the "wrong" IDs.I think a simple fix is to copy over the ID assignments when
Cloneis called, what do you think?The text was updated successfully, but these errors were encountered: