Skip to content

Skip read lock to improve concurrency #100

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Dec 1, 2021
Merged

Skip read lock to improve concurrency #100

merged 1 commit into from
Dec 1, 2021

Conversation

rayluo
Copy link
Contributor

@rayluo rayluo commented Nov 12, 2021
edited
Loading

An attempt to bypass the locking behavior when reading token cache. Most of the time, token cache is only serving read operation, so conceptually we will only need to lock once per hour. This would likely improve the concurrency a lot.

@jiasli

@jiasli jiasli mentioned this pull request Nov 17, 2021
Closed
@jiasli
Copy link
Contributor

jiasli commented Nov 18, 2021

I think this works great for find, but we still need to rethink about modify. If 2 processes are writing to he same file, maybe we can let one process wait for a while, instead of making a hard failure with portalocker.LOCK_NB?

@rayluo
Copy link
Contributor Author

rayluo commented Nov 18, 2021

I think this works great for find, but we still need to rethink about modify. If 2 processes are writing to he same file, maybe we can let one process wait for a while, instead of making a hard failure with portalocker.LOCK_NB?

True. There is still room for improvement for modify, which will probably happen in a different PR.

That being said, the improvement on find would still indirectly help modify, because now there will be zero reader to content for the lock.

@jiasli jiasli mentioned this pull request Nov 18, 2021
Merged
@jiasli
Copy link
Contributor

jiasli commented Nov 29, 2021

I think we'd better accelerate the fix. I have been tripped by this issue myself several times when executing Azure CLI in parallels.

jiasli
jiasli reviewed Dec 1, 2021
View reviewed changes
@rayluo
Skip read lock to improve concurrency
2c9690e 
Avoid the unnecessary sleep after the last retry
@rayluo rayluo merged commit 9ffc5b7 into dev Dec 1, 2021
@rayluo rayluo deleted the skip-read-lock branch December 1, 2021 15:48
@rayluo rayluo mentioned this pull request Dec 1, 2021
Closed
This was referenced Dec 9, 2021
Closed
Merged
@jiasli jiasli mentioned this pull request Jan 14, 2022
Open
@jiasli
Copy link
Contributor

jiasli commented Feb 18, 2022

I think there is still a very small chance that Azure/azure-cli#20273 can be triggered: It is when the token expires. If multiple instances refreshes at the same time, the permission issue may still happen since there is no retry logic:

microsoft-authentication-extensions-for-python/msal_extensions/token_cache.py

Lines 65 to 73 in 2c9690e

def modify(self, credential_type, old_entry, new_key_value_pairs=None):
with CrossPlatLock(self._lock_location):
self._reload_if_necessary()
super(PersistedTokenCache, self).modify(
credential_type,
old_entry,
new_key_value_pairs=new_key_value_pairs)
self._persistence.save(self.serialize())
self._last_sync = time.time()

This issue has been bugging Azure CLI for years (Azure/azure-cli#9427).

@rayluo
Copy link
Contributor Author

rayluo commented Feb 18, 2022
edited
Loading

I think there is still a very small chance that Azure/azure-cli#20273 can be triggered: It is when the token expires. If multiple instances refreshes at the same time,

We consider "multiple app instances encountered token expiration at the same time" would happen less frequently than "multiple app instances run az login at the same time". The reason is, multiple az login would presumably happening at time T, thus racing with each other. But multiple az foo bar job workers would likely run in a slightly different pace. It is like the job time adds in some natural jitter.

Please continue to advocate customers to adopt a pattern of "run one az login first, followed by a bunch of az foo bar job workers". Or, even better, "run one az login and then one az foo bar to warm up (i.e. populate the token cache with a fresh AT for scope foo), and then followed by a bunch of az foo bar job workers".

the permission issue may still happen since there is no retry logic:

microsoft-authentication-extensions-for-python/msal_extensions/token_cache.py

Lines 65 to 73 in 2c9690e

def modify(self, credential_type, old_entry, new_key_value_pairs=None):
with CrossPlatLock(self._lock_location):
self._reload_if_necessary()
super(PersistedTokenCache, self).modify(
credential_type,
old_entry,
new_key_value_pairs=new_key_value_pairs)
self._persistence.save(self.serialize())
self._last_sync = time.time()

Retry was considered unnecessary for persistence.save(), when/if the with CrossPlatLock(...) was successful. FWIW, with CrossPlatLock(...) already has its own retry logic.

This issue has been bugging Azure CLI for years (Azure/azure-cli#9427).

True. All these "unable to obtain a write lock" issues are designed to prevent a token cache file corruption issue (Azure/azure-cli#9427). In that sense, we are already in a better place than token cache file corruption.

@jiasli jiasli mentioned this pull request Jun 29, 2022
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jiasli jiasli jiasli approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@rayluo @jiasli