Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Plugin manager/bundle activation race condition #2343

Closed
tsandall opened this issue Apr 25, 2020 · 0 comments
Closed

Plugin manager/bundle activation race condition #2343

tsandall opened this issue Apr 25, 2020 · 0 comments
Assignees
@tsandall
Labels
bug

Comments

@tsandall
Copy link
Member

tsandall commented Apr 25, 2020
edited
Loading

There is a race condition in the plugin manager whereby the bundle plugin can be started and finish activating the first bundle before the plugin manager registers a trigger on the store. If this happens then the manager does not see the first bundle activation and then subsequent queries can see inconsistent state (e.g., API calls that do not use the compiler but only access the store will return expected results, but API calls that use the compiler will see incorrect/inconsistent results.)

Thanks to @istalker2 for reporting and providing a script to easily repro the problem.
@tsandall tsandall added the bug label Apr 25, 2020
tsandall added a commit to tsandall/opa that referenced this issue Apr 27, 2020
@tsandall
plugins: Fix race between manager and plugin startup
37d5e39 
This change fixes a race condition in the manager that was caused by
registering the storage trigger _after_ the plugins had been
started. The problem was that if the bundle plugin was able to
download and activate before the trigger registration in the manager
went through, the store and the manager would be out-of-sync after
startup. The bundle would activate successfully but the plugin
manager would not see the change. This meant that the server health
check, status plugin, etc. would report successful activation and
clients using either of those APIs for synchronization could start
querying. If they executed a query within this window, virtual docs
would not be visible because the plugin manager would not yet have a
compiler to return to the server. Similarly, if clients queried the
v1/policies API they would see the raw policy contents but no AST
(since the latter is retrieved from the compiler.)

To remove the race condition the plugin manager simply registers the
trigger before starting any of the plugins. This ensures that it sees
all changes made by any of the plugins.

Fixes open-policy-agent#2343

Signed-off-by: Torin Sandall <torinsandall@gmail.com>
patrick-east pushed a commit to patrick-east/opa that referenced this issue Apr 27, 2020
@tsandall @patrick-east
plugins: Fix race between manager and plugin startup
ff2681a 
This change fixes a race condition in the manager that was caused by
registering the storage trigger _after_ the plugins had been
started. The problem was that if the bundle plugin was able to
download and activate before the trigger registration in the manager
went through, the store and the manager would be out-of-sync after
startup. The bundle would activate successfully but the plugin
manager would not see the change. This meant that the server health
check, status plugin, etc. would report successful activation and
clients using either of those APIs for synchronization could start
querying. If they executed a query within this window, virtual docs
would not be visible because the plugin manager would not yet have a
compiler to return to the server. Similarly, if clients queried the
v1/policies API they would see the raw policy contents but no AST
(since the latter is retrieved from the compiler.)

To remove the race condition the plugin manager simply registers the
trigger before starting any of the plugins. This ensures that it sees
all changes made by any of the plugins.

Fixes open-policy-agent#2343

Signed-off-by: Torin Sandall <torinsandall@gmail.com>
@patrick-east patrick-east mentioned this issue Apr 27, 2020
Merged
patrick-east pushed a commit that referenced this issue Apr 27, 2020
@tsandall @patrick-east
plugins: Fix race between manager and plugin startup
2d8e311 
This change fixes a race condition in the manager that was caused by
registering the storage trigger _after_ the plugins had been
started. The problem was that if the bundle plugin was able to
download and activate before the trigger registration in the manager
went through, the store and the manager would be out-of-sync after
startup. The bundle would activate successfully but the plugin
manager would not see the change. This meant that the server health
check, status plugin, etc. would report successful activation and
clients using either of those APIs for synchronization could start
querying. If they executed a query within this window, virtual docs
would not be visible because the plugin manager would not yet have a
compiler to return to the server. Similarly, if clients queried the
v1/policies API they would see the raw policy contents but no AST
(since the latter is retrieved from the compiler.)

To remove the race condition the plugin manager simply registers the
trigger before starting any of the plugins. This ensures that it sees
all changes made by any of the plugins.

Fixes #2343

Signed-off-by: Torin Sandall <torinsandall@gmail.com>
@tsandall tsandall self-assigned this Apr 29, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@tsandall tsandall

Labels
bug
Projects
Open Policy Agent
Archived in project
Milestone
No milestone
Development

No branches or pull requests
1 participant
@tsandall