@mxpv @fuweid @Ace-Tang

Build succeeded.

• containerd-build-arm64 : SUCCESS in 8m 21s (non-voting)

Build succeeded.

• containerd-build-arm64 : SUCCESS in 8m 18s (non-voting)

Build succeeded.

• containerd-build-arm64 : SUCCESS in 8m 19s (non-voting)

Build succeeded.

• containerd-build-arm64 : SUCCESS in 8m 24s (non-voting)

Build succeeded.

• containerd-build-arm64 : SUCCESS in 8m 20s (non-voting)

Can you elaborate a bit on the story behind this patch. In which cases AddDevice can be called with duplicated name? Why would we want to maintain orphans table instead of returning ErrAlreadyExists?

Hi,

Can you elaborate a bit on the story behind this patch. In which cases AddDevice can be called with duplicated name? Why would we want to maintain orphans table instead of returning ErrAlreadyExists?

As said in commit log, the result is blow, but what is missing in commit log is a reproducer, will represent one blow:

“”“
All cases that crash/panic happens in between steps
to perform creating/deleting snapshot will cause
the error below after containerd starts again:

"""
time="2019-07-19T15:40:02.331427856+08:00" level=error msg="failed to
create snapshot device from parent vg0-mythinpool-snap-1" error="failed
to save initial metadata for snapshot "vg0-mythinpool-snap-4": object
already exists"
time="2019-07-19T15:40:02.331436436+08:00" level=debug msg="snapshotter
error" error="1 error occurred:

• failed to save initial metadata for snapshot "vg0-mythinpool-snap-4":
  object already exists"
  """
  ”“”

"snap-id" is an auto-increase from upper snapshotter code. devmapper will fail to create snapshot anymore after there has been a broken snapshot named with a "snap-id" which was reported to upper code not being taken.

So, containerd will keep trying to create snapshot with this "snap-id", but only failed with "object already exists" error.

• one fake reproducer by fault injection in code

1. fault code patch

diff --git a/snapshots/devmapper/pool_device.go b/snapshots/devmapper/pool_device.go
index 680d8b1..7db66d8 100644
--- a/snapshots/devmapper/pool_device.go
+++ b/snapshots/devmapper/pool_device.go
@@ -22,6 +22,7 @@ import (
"context"
"path/filepath"
"strconv"
+ "fmt"

"github.com/hashicorp/go-multierror"
"github.com/pkg/errors"
@@ -90,6 +91,10 @@ func (p *PoolDevice) transition(ctx context.Context, deviceName string, tryingSt
result = multierror.Append(result, err)
}

+ //log.G(ctx).Fatalf("Inject fault: dev: %s, state: %v --> %v", deviceName, tryingState, successState)
+ msg := fmt.Sprintf("Inject fault: dev: %s, state: %v --> %v", deviceName, tryingState, successState)
+ panic(msg)
+
// If operation succeeded transition to success state, otherwise save error details
uerr = p.metadata.UpdateDevice(ctx, deviceName, func(deviceInfo *DeviceInfo) error {
if err == nil {

2. revert the fault patch, and restart containerd again, you will see the problem :-)

I know that my proposed fix is not very good:-/
pro: those problematic devices in orphan table is less enough, giving a chance for admin or a helper tool to read;
con: introducing orphan bucket is a little invasive and dirty...

Another idea occurs to my mind is, since the issue only happens when extreme cases, like machine crash and disk disappear, after which a container restart is likely required, so can we remove the problematic device info in place when reloading devmapper plugin?

Thank you for looking at this issue!

I also encountered the same problem.
A disk was unplugged when trying to create a thin-device, and the thin-device create failed with the following error:

operation not supported

After repairing the disk and restarting the machine, the creation of the device still fails with the following error:

failed to create snapshot "vg0-1000" (dev: 178) from "vg0-33" (dev: 23): 1 error occurred:

* file exists

The problem should occur in the CreateThinDevice method of pool_device.go:

1. After unplugging the disk, it failed when trying to activate the device.
2. Execute two defer methods: p.deleteDevice to delete the device and p.metadata.RemoveDevice to delete the metadata respectively.
3. p.metadata.RemoveDevice delete the device's metadata successfully, p.deleteDevice delete device failed as the disk has been unplugged and the device still on the disk.
4. After restarting the machine, the status of the device is free. When trying to create the device again, it failed and occure the file exists error.

Hi,

The problem should occur in the CreateThinDevice method of pool_device.go:

1. After unplugging the disk, it failed when trying to activate the device.
2. Execute two defer methods: p.deleteDevice to delete the device and p.metadata.RemoveDevice to delete the metadata respectively.
3. p.metadata.RemoveDevice delete the device's metadata successfully, p.deleteDevice delete device failed as the disk has been unplugged and the device still on the disk.
4. After restarting the machine, the status of the device is free. When trying to create the device again, it failed and occure the file exists error.

The first patch is exactly trying to fix this problem. Thanks for confirming!

Build succeeded.

• containerd-build-arm64 : SUCCESS in 8m 20s (non-voting)

Codecov Report

Merging #3436 into master will decrease coverage by 0.02%.
The diff coverage is 42.85%.

@@            Coverage Diff             @@
##           master    #3436      +/-   ##
==========================================
- Coverage   44.11%   44.08%   -0.03%     
==========================================
  Files         124      124              
  Lines       13760    13768       +8     
==========================================
  Hits         6070     6070              
- Misses       6759     6764       +5     
- Partials      931      934       +3

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update f776141...76d612c. Read the comment docs.

I have a few ideas I'd like to experiment with. I'll update here or will post an additional PR.

I have a few ideas I'd like to experiment with. I'll update here or will post an additional PR.

Hi,
Thanks, I like your idea that adding a new state to mark problematic device instead of adding a new table though not go through the details yet.

However, one problem I can think up is, when it needs manual handling, how can I find the faulty devices to look at and repair?

We can develop handy tool to scan the database to find the "faulty" device, so please make it easy for such tool to distinguish "faulty" devices as possible :-)

However, one problem I can think up is, when it needs manual handling, how can I find the faulty devices to look at and repair?

This should be straightforward. There is a table device_ids which is <devID>=<state> with ids ever used by devmapper snapshotter. There are 3 possible here:
0=free
1=taken
2=faulty

I think it's a good idea to develop a tool that would simplify devmapper database introspection and recovery.

@mxpv has resolved these issue in #3470 #3489 , thank a lot!