backupccl: prevent OR from linking in virtual file pointing to empty key space by msbutler · Pull Request #122918 · cockroachdb/cockroach

msbutler · 2024-04-23T19:03:52Z

See individual commits.

cockroach-teamcity · 2024-04-23T19:04:04Z

This change is

msbutler · 2024-04-25T15:26:31Z

unrelated test flake

blathers-crl · 2024-04-25T19:41:26Z

It looks like your PR touches production code but doesn't add or edit any test code. Did you consider adding tests to your PR?

_{🦉 Hoot! I am a Blathers, a bot for CockroachDB. My owner is dev-inf.}

msbutler · 2024-04-25T19:44:37Z

pkg/ccl/backupccl/restore_online.go

 				}
+				if !entry.Span.Contains(file.BackupFileEntrySpan) {
+					return errors.AssertionFailedf("file span %s is not contained in restore span %s", file.BackupFileEntrySpan, entry.Span)
+				}


one thought: we don't really clean up linked ssts if the link phase fails partway through. I feel fine with this for private preview. Better to fail loudly then silently corrupt the db.

We could gen spans before the actual link phase but i dont feel like optimizing UX private preview restore rn.

Let's log file.Path here as well to make it easier to investigate if it happens.

We believe entry.Span == restoringSubspan, right? Should we check that too just to be sure?

done and done.

stevendanna

Just some minor nits.

A bit of a bummer to have to bring out such a big hammer, but it's better than the alternative.

stevendanna · 2024-04-26T09:08:14Z

pkg/ccl/backupccl/restore_online.go

 				}
+				if !entry.Span.Contains(file.BackupFileEntrySpan) {
+					return errors.AssertionFailedf("file span %s is not contained in restore span %s", file.BackupFileEntrySpan, entry.Span)
+				}


Let's log file.Path here as well to make it easier to investigate if it happens.

stevendanna · 2024-04-26T09:56:43Z

pkg/ccl/backupccl/restore_job.go

+				return nil, errors.Newf("restore target contains two distinct spans with table id %d. Online restore cannot handle this as it may make an empty file span", tableID)
+			}


If you fancied we could return an unimplemented error here with a reference to an issue.

To prevent reading from a virtual file that points to empty key space, this patch fails an online restore if any of the target key spans are not table spans; for example, if a table had a dropped index. Informs cockroachdb#122176 Release note: none

…p files One way online restore can link a virtual file that points to empty key space in the backing file is if the restoreSpanEntry does not fully contain one of its backup files. This patch fails the link phase of online restore if this condition is detected. Epic: none Release note: none

msbutler · 2024-05-01T19:30:31Z

TFTR!

bors r=dt

craig · 2024-05-01T20:05:20Z

This PR was included in a batch that was canceled, it will be automatically retried

craig · 2024-05-01T20:31:09Z

Build failed (retrying...):

lint

craig · 2024-05-01T22:25:42Z

Build succeeded:

msbutler self-assigned this Apr 23, 2024

msbutler force-pushed the butler-or-targets branch from 56bc559 to 5c6c520 Compare April 25, 2024 14:56

msbutler changed the title ~~Butler or targets~~ backupccl: prevent OR from linking in virtual file pointing to empty key space Apr 25, 2024

msbutler mentioned this pull request Apr 25, 2024

backupccl: online restore does not restore correct backup data #123061

Closed

msbutler force-pushed the butler-or-targets branch from 5c6c520 to bedcce3 Compare April 25, 2024 19:41

msbutler marked this pull request as ready for review April 25, 2024 19:42

msbutler requested review from a team as code owners April 25, 2024 19:42

msbutler requested review from dt and stevendanna and removed request for a team April 25, 2024 19:42

msbutler commented Apr 25, 2024

View reviewed changes

stevendanna reviewed Apr 26, 2024

View reviewed changes

msbutler force-pushed the butler-or-targets branch from bedcce3 to 195c733 Compare April 30, 2024 20:18

msbutler added the backport-24.1.x Flags PRs that need to be backported to 24.1. label Apr 30, 2024

msbutler force-pushed the butler-or-targets branch from 195c733 to 3abb0e5 Compare May 1, 2024 14:06

dt approved these changes May 1, 2024

View reviewed changes

craig bot merged commit f8b33a7 into cockroachdb:master May 1, 2024

blathers-crl bot mentioned this pull request May 1, 2024

release-24.1: backupccl: prevent OR from linking in virtual file pointing to empty key space #123426

Merged

		return nil, errors.Newf("restore target contains two distinct spans with table id %d. Online restore cannot handle this as it may make an empty file span", tableID)
		}

Conversation

msbutler commented Apr 23, 2024 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

cockroach-teamcity commented Apr 23, 2024

Uh oh!

msbutler commented Apr 25, 2024

Uh oh!

blathers-crl bot commented Apr 25, 2024

Uh oh!

msbutler Apr 25, 2024

Choose a reason for hiding this comment

Uh oh!

stevendanna Apr 26, 2024

Choose a reason for hiding this comment

Uh oh!

dt Apr 29, 2024

Choose a reason for hiding this comment

Uh oh!

msbutler Apr 30, 2024

Choose a reason for hiding this comment

Uh oh!

stevendanna left a comment

Choose a reason for hiding this comment

Uh oh!

stevendanna Apr 26, 2024

Choose a reason for hiding this comment

Uh oh!

stevendanna Apr 26, 2024

Choose a reason for hiding this comment

Uh oh!

msbutler commented May 1, 2024

Uh oh!

craig bot commented May 1, 2024

Uh oh!

craig bot commented May 1, 2024

Uh oh!

craig bot commented May 1, 2024

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants

msbutler commented Apr 23, 2024 •

edited

Loading