vtctl/workflow: stop reverse replication before Complete drops sources#20188
Open
harshit2017 wants to merge 3 commits into
Open
vtctl/workflow: stop reverse replication before Complete drops sources#20188harshit2017 wants to merge 3 commits into
harshit2017 wants to merge 3 commits into
Conversation
harshit2017
requested review from
beingnoble03,
mattlord,
rohit-nayak-ps and
shlomi-noach
as code owners
vitess-bot
Bot
added
NeedsWebsiteDocsUpdate
Contributor
Review ChecklistHello reviewers! 👋 Please follow this checklist when reviewing this Pull Request. General
Tests
Documentation
New flags
If a workflow is added or modified:
Backward compatibility
|
Contributor
There was a problem hiding this comment.
Pull request overview
Note
Copilot was unable to run its full agentic suite in this review.
This PR adds safety checks and shutdown behavior for reverse VReplication during workflow completion to prevent completing (and potentially removing source data) while reverse streams are unhealthy or not drained.
Changes:
- Validate reverse workflow stream states during
doValidateWorkflowHasCompleted. - Add
stopAndDrainReverseVReplicationto stop reverse streams after waiting for them to catch up to target primary positions. - Update workflow completion tests to expect reverse stream stop queries and add an error-state test case.
Reviewed changes
Copilot reviewed 8 out of 8 changed files in this pull request and generated 3 comments.
Show a summary per file
| File | Description |
|---|---|
| go/vt/vtctl/workflow/utils.go | Adds validation of reverse workflow stream states during completion validation. |
| go/vt/vtctl/workflow/traffic_switcher.go | Implements draining (wait-for-pos) and stopping reverse VReplication streams prior to source removal. |
| go/vt/vtctl/workflow/switcher_interface.go | Extends the switcher interface with reverse drain/stop capability. |
| go/vt/vtctl/workflow/switcher_dry_run.go | Adds dry-run logging for reverse drain/stop behavior. |
| go/vt/vtctl/workflow/switcher.go | Wires switcher call-through to trafficSwitcher implementation. |
| go/vt/vtctl/workflow/server.go | Calls reverse drain/stop before dropping sources (unless ignoreSourceKeyspace). |
| go/vt/vtctl/workflow/server_test.go | Updates expected queries to include stopping reverse streams; adds error-state coverage. |
| go/vt/vtctl/workflow/framework_test.go | Adjusts test TM client behavior to better model reverse workflows. |
Comment on lines
+609
to
+640
| func validateReverseWorkflowForComplete(ctx context.Context, ts *trafficSwitcher, wg *sync.WaitGroup, rec *concurrency.AllErrorRecorder) { | ||
| _ = ts.ForAllSources(func(source *MigrationSource) error { | ||
| wg.Add(1) | ||
| defer wg.Done() | ||
| res, err := ts.ws.tmc.ReadVReplicationWorkflow(ctx, source.GetPrimary().Tablet, &tabletmanagerdatapb.ReadVReplicationWorkflowRequest{ | ||
| Workflow: ts.ReverseWorkflowName(), | ||
| }) | ||
| if err != nil { | ||
| rec.RecordError(err) | ||
| return nil | ||
| } | ||
| if res == nil || len(res.Streams) == 0 { | ||
| return nil | ||
| } | ||
| for _, stream := range res.Streams { | ||
| switch stream.State { | ||
| case binlogdatapb.VReplicationWorkflowState_Running, | ||
| binlogdatapb.VReplicationWorkflowState_Stopped: | ||
| case binlogdatapb.VReplicationWorkflowState_Error: | ||
| rec.RecordError(fmt.Errorf("reverse vreplication stream %d is in error state on tablet %d", | ||
| stream.Id, source.GetPrimary().Alias.Uid)) | ||
| case binlogdatapb.VReplicationWorkflowState_Copying: | ||
| rec.RecordError(fmt.Errorf("reverse vreplication stream %d is still copying on tablet %d", | ||
| stream.Id, source.GetPrimary().Alias.Uid)) | ||
| default: | ||
| rec.RecordError(fmt.Errorf("reverse vreplication stream %d is in state %s on tablet %d", | ||
| stream.Id, stream.State, source.GetPrimary().Alias.Uid)) | ||
| } | ||
| } | ||
| return nil | ||
| }) | ||
| } |
Comment on lines
+1064
to
+1091
| for _, stream := range res.Streams { | ||
| if stream.Bls == nil { | ||
| return vterrors.Errorf(vtrpcpb.Code_INTERNAL, "reverse vreplication stream %d on %s has no binlog source", | ||
| stream.Id, topoproto.TabletAliasString(source.GetPrimary().GetAlias())) | ||
| } | ||
| targetShard := stream.Bls.Shard | ||
| pos, ok := targetPositions[targetShard] | ||
| if !ok { | ||
| return vterrors.Errorf(vtrpcpb.Code_FAILED_PRECONDITION, | ||
| "reverse vreplication stream %d on %s reads from unknown target shard %s", | ||
| stream.Id, topoproto.TabletAliasString(source.GetPrimary().GetAlias()), targetShard) | ||
| } | ||
| if stream.State == binlogdatapb.VReplicationWorkflowState_Running { | ||
| ts.Logger().Infof("Waiting for reverse stream %d on %s to catch up to target shard %s position %s", | ||
| stream.Id, topoproto.TabletAliasString(source.GetPrimary().GetAlias()), targetShard, pos) | ||
| if err := ts.TabletManagerClient().VReplicationWaitForPos(ctx, source.GetPrimary().Tablet, stream.Id, pos); err != nil { | ||
| return err | ||
| } | ||
| } | ||
| if stream.State != binlogdatapb.VReplicationWorkflowState_Stopped { | ||
| ts.Logger().Infof("Stopping reverse stream %d on %s for complete", | ||
| stream.Id, topoproto.TabletAliasString(source.GetPrimary().GetAlias())) | ||
| if _, err := ts.TabletManagerClient().VReplicationExec(ctx, source.GetPrimary().Tablet, | ||
| binlogplayer.StopVReplication(stream.Id, stoppedForComplete)); err != nil { | ||
| return err | ||
| } | ||
| } | ||
| } |
Comment on lines
+78
to
+80
| // reverseReplicationDrainTimeout bounds how long Complete waits for reverse | ||
| // streams to catch up to the target primary position before stopping them. | ||
| reverseReplicationDrainTimeout = 30 * time.Second |
Contributor
|
Promptless prepared a documentation update related to this change. Triggered by PR #20188 This PR adds validation of reverse workflow state before Review: Document reverse workflow validation in MoveTables Complete |
MoveTables Complete could rename or drop source tables while reverse vreplication was still applying, causing permanent errno 1146 errors. Validate reverse workflow state, wait for catchup, stop streams, then remove source tables. Fixes vitessio#20135 Signed-off-by: Harshit Katyal <harshit1121998@gmail.com> Signed-off-by: Harshit <harshit1121998@gmail.com>
harshit2017
force-pushed
the
fix-complete-reverse-drain
branch
from
d02e4a8 to
33916df
Compare
…sCompleted Remove the redundant outer WaitGroup; ForAllSources and ForAllTargets already run callbacks concurrently and wait internally. Propagate ForAllSources aggregate errors into the error recorder instead of discarding them, and return the error from validateReverseWorkflowForComplete. Signed-off-by: Harshit <harshit1121998@gmail.com>
Comment on lines
+626
to
+633
| rec.RecordError(fmt.Errorf("reverse vreplication stream %d is in error state on tablet %d", | ||
| stream.Id, source.GetPrimary().Alias.Uid)) | ||
| case binlogdatapb.VReplicationWorkflowState_Copying: | ||
| rec.RecordError(fmt.Errorf("reverse vreplication stream %d is still copying on tablet %d", | ||
| stream.Id, source.GetPrimary().Alias.Uid)) | ||
| default: | ||
| rec.RecordError(fmt.Errorf("reverse vreplication stream %d is in state %s on tablet %d", | ||
| stream.Id, stream.State, source.GetPrimary().Alias.Uid)) |
Comment on lines
+611
to
+617
| res, err := ts.ws.tmc.ReadVReplicationWorkflow(ctx, source.GetPrimary().Tablet, &tabletmanagerdatapb.ReadVReplicationWorkflowRequest{ | ||
| Workflow: ts.ReverseWorkflowName(), | ||
| }) | ||
| if err != nil { | ||
| rec.RecordError(err) | ||
| return nil | ||
| } |
Comment on lines
+1038
to
+1040
| func (ts *trafficSwitcher) stopAndDrainReverseVReplication(ctx context.Context, waitTime time.Duration) error { | ||
| ctx, cancel := context.WithTimeout(ctx, waitTime) | ||
| defer cancel() |
Comment on lines
+1065
to
+1075
| if stream.Bls == nil { | ||
| return vterrors.Errorf(vtrpcpb.Code_INTERNAL, "reverse vreplication stream %d on %s has no binlog source", | ||
| stream.Id, topoproto.TabletAliasString(source.GetPrimary().GetAlias())) | ||
| } | ||
| targetShard := stream.Bls.Shard | ||
| pos, ok := targetPositions[targetShard] | ||
| if !ok { | ||
| return vterrors.Errorf(vtrpcpb.Code_FAILED_PRECONDITION, | ||
| "reverse vreplication stream %d on %s reads from unknown target shard %s", | ||
| stream.Id, topoproto.TabletAliasString(source.GetPrimary().GetAlias()), targetShard) | ||
| } |
Comment on lines
+1079
to
+1081
| if err := ts.TabletManagerClient().VReplicationWaitForPos(ctx, source.GetPrimary().Tablet, stream.Id, pos); err != nil { | ||
| return err | ||
| } |
Signed-off-by: Harshit <harshit1121998@gmail.com>
mattlord
reviewed
May 27, 2026
| }, | ||
| expectedSourceQueries: []*queryResult{ | ||
| { | ||
| expectedSourceQueries: append(slices.Clone(stopReverseStreamQueries), |
Member
There was a problem hiding this comment.
Why are these changes necessary? It's best to eliminate unnecessary changes if we can.
| } | ||
|
|
||
| func (ts *trafficSwitcher) stopAndDrainReverseVReplication(ctx context.Context, waitTime time.Duration) error { | ||
| targetPositions := make(map[string]string) |
Member
There was a problem hiding this comment.
I don't think that we should do all of this work to "drain" the stream. The tables are normally deleted. In this case we are renaming them. But new data is ONLY in the keyspace where they were moved. We are holding onto locks and can potentially introduce a whole new set of edge cases and failure scenarios by doing this work and having it take a long time, time out, or error.
I think that we should simply stop the workflow / delete the record for the reverse workflow. i.e. I think it's better to rename the function to just stop, and then only do that, stop it.
| return nil | ||
| } | ||
|
|
||
| func validateReverseWorkflowForComplete(ctx context.Context, ts *trafficSwitcher, rec *concurrency.AllErrorRecorder) error { |
Member
There was a problem hiding this comment.
Why do we need to validate it? Why can't we simply stop it / clean it up?
Codecov Report❌ Patch coverage is Additional details and impacted files@@ Coverage Diff @@
## main #20188 +/- ##
===========================================
+ Coverage 69.67% 72.66% +2.99%
===========================================
Files 1614 22 -1592
Lines 216793 7742 -209051
===========================================
- Hits 151044 5626 -145418
+ Misses 65749 2116 -63633
Flags with carried forward coverage won't be shown. Click here to find out more. ☔ View full report in Codecov by Sentry. 🚀 New features to boost your workflow:
|
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Description
MoveTables Complete could rename or drop source tables while reverse vreplication was still applying, causing permanent errno 1146 errors. Validate reverse workflow state, wait for catchup, stop streams, then remove source tables.
Related Issue(s)
Fixes #20135
Checklist
Deployment Notes
AI Disclosure
Tests were written by AI