Page MenuHomePhabricator
Create Task
Maniphest T177466

linter creates unsafe SQL writes
Closed, ResolvedPublic
Actions

Description

During a routine inspection, I saw DELETE /* BatchedQueryRunner::execute */ FROM linter WHERE linter_cat=12 LIMIT 500

This is an unsafe query, for which the master returns a warning, and unless that is done on purpose, a recipe for full replication breaks. We do not have yet row-based replication, that is why "SQL safe statements" mediawiki recommendation was passed:

Non-deterministic queries and unsafe statements for binlog should be avoided as they would return/write different results in a replication environment.

There are some cases in which that could be ok, but I want to be thorough at first. Could we order by PK or something else to make is safe again?

Related Objects

Event Timeline

jcrespo created this task.Oct 5 2017, 10:04 AM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptOct 5 2017, 10:04 AM
ssastry subscribed.Oct 5 2017, 1:23 PM

This query is not generated by the extension itself. This is from T176363#3659771 -- is this still an issue?

jcrespo added a subscriber: Legoktm.Oct 5 2017, 2:35 PM

@Legoktm with "I ran the replication" you mean it is not part of the code (not happening now?). If yes, it is no longer an issue.

ssastry added a comment.Oct 5 2017, 3:09 PM
In T177466#3660896, @jcrespo wrote:

@Legoktm with "I ran the replication" you mean it is not part of the code (not happening now?). If yes, it is no longer an issue.

That is correct. This is not part of the code.

jcrespo closed this task as Resolved.Oct 5 2017, 3:17 PM
jcrespo claimed this task.

Thanks. This seem to have been observed on a very delayed replica.

Legoktm reopened this task as Open.Oct 5 2017, 5:06 PM

(re-opening just so I can ask a question)

@jcrespo this was a one-off script I ran to clear out some bad data from the database. That said, there's a chance that we'll end up running something similar like this in the future. Would adding ORDER BY linter_id have resolved the issue and made the query safe?

jcrespo added a comment.Oct 5 2017, 5:17 PM

Yes, if it doesn't run slower (check explain) and makes it deterministic, it is highly preferred. Even in some cases where "we are actually going to delete all rows" it can be unsafe ,because we assume all servers have the same rows- something true in theory but with the possibility of not being true. Until we migrate to row-based replication, we should try to do safe queries only (you can check warnings on the servers, not sure if logstash stores those).

Legoktm closed this task as Resolved.Oct 5 2017, 5:19 PM

Got it - I will keep that in mind for the future.

jcrespo added a comment.EditedOct 5 2017, 5:26 PM

To give more feedback, in one occasion where doing things in an unsafe way was actually prefered (for performance reasons), we did LIMIT a number of times, but at the end we did a last execution without LIMIT to make sure all rows were deleted (making the queries safe logically). In the general case, ORDER + offset is usually suboptimal, and paging by id is recommended and more performant/more reliable in query time limit.

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL