rbd-mirror: bad state and crashes in snapshot-based mirroring

[dillaman]

Checklist

• References tracker ticket
• Updates documentation if necessary
• Includes tests for new functionality or reproducer for bug

---

Show available Jenkins commands

• jenkins retest this please
• jenkins test classic perf
• jenkins test crimson perf
• jenkins test signed
• jenkins test make check
• jenkins test make check arm64
• jenkins test submodules
• jenkins test dashboard
• jenkins test api
• jenkins test docs
• jenkins render docs
• jenkins test ceph-volume all
• jenkins test ceph-volume tox

[trociny]

Otherwise LGTM

[trociny]

Just thinking, could it be made more readable? E.g. it seems to be equivalent of the below:

       info->mirror_peer_uuids.erase(m_mirror_peer_uuid);
       if (!info->mirror_peer_uuids.empty() || !m_newer_mirror_snapshots) {
         // skip
       }

[dillaman]

I think the matching simplification would be:

auto removed_count = info->mirror_peer_uuids.erase(m_mirror_peer_uuid);
if (!info->mirror_peer_uuids.empty() ||
   (!m_newer_mirror_snapshots && removed_count == 0))) {

but your version should also be correct since even if we don't remove our peer uuid, we probably shouldn't remove the most recent mirror snapshot.

[dillaman]

... but now that I think about it, we don't want to tweak the data structure if we aren't going to remove it, so info would need to be a copy as well.

[trociny]

I was thinking it would be safe to tweak (remove a peer from) snapshot_namespace, because it could be only used for snap_remove operation and it would not affect this?

Anyway I am fine with the current version.