Page MenuHomePhabricator
Create Task
Maniphest T225207

Enable scap to roll back broken changes to MediaWiki
Open, MediumPublic
Actions

Description

When scap sync-file detects a broken deployment due to a high error rate on the canary hosts, it aborts the sync, but leaves the canaries in their broken state, still serving traffic. It would be nice if it could automatically roll those changes back. According to @Reedy, this is already supported for other kinds of deployments scap supports.

Alternatively, it could automatically depool the canary hosts (compare T104352: Make scap able to depool/repool servers via the conftool API), though it’s not clear when they would be repooled.

This task is an actionable of the 20190606-wikibase incident. It might be a duplicate of an existing one – feel free to merge it in that case. Also, T224857: Enhance MediaWiki deployments for support of php7.x is likely related.

Related Objects

Event Timeline

Lucas_Werkmeister_WMDE created this task.Jun 6 2019, 1:26 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptJun 6 2019, 1:26 PM
Jdforrester-WMF subscribed.Jun 6 2019, 2:47 PM
thcipriani subscribed.Jun 6 2019, 3:29 PM
Jdforrester-WMF added a project: Release-Engineering-Team.Jun 8 2019, 12:02 AM
thcipriani mentioned this in T224857: Enhance MediaWiki deployments for support of php7.x.Jun 10 2019, 3:41 PM
ArielGlenn triaged this task as Medium priority.Jun 11 2019, 2:39 PM
greg edited projects, added Scap; removed Deployments.Jun 13 2019, 11:41 PM
Krinkle subscribed.EditedJun 14 2019, 12:51 AM

I'm pretty sure this has been brought up in past tasks, and been thought about from time to time as something to add to Scap. Can't find a task for it, though. So maybe we never created one!

From memory - I recall hearing this is non-trivial to implement, because Scap-for-MediaWiki currently isn't aware of Git patches. Once the sync-file has started with canaries (which includes the deployment host itself), then the previously version of the files no longer exists anywhere on the deployment host. This means even with the knowledge of which path is passed to the sync-file command, there is no obvious way to undo it.

This would likely be implicitly solved as part of the big Pipeline, but something earlier might also work. Specifically, I recall there being plans to treat the composite /srv/mediawiki directory as a flattened Git repo on the deployment host. This would mean each deployment is locally tracked as an implicit commit crafted by Scap, and thus reversible. It also means it is no longer possible to accidentally forget to sync part of the change because Scap would know exactly what had changed and would no longer need to be told what to deploy. Is there a task about that?

If making MW deploys auto-rollback planned in the short-mid term? (ahead of MW-Pipeline)

greg added a project: Release-Engineering-Team-TODO.Jun 21 2019, 10:31 PM
greg edited projects, added Release-Engineering-Team (Deployment services); removed Release-Engineering-Team.Jun 24 2019, 9:20 PM
greg moved this task from Should be empty (use Release-Engineering-Team) to Soon-ish on the Release-Engineering-Team-TODO board.Jul 6 2019, 6:06 AM
mmodell subscribed.Nov 19 2019, 8:48 PM
thcipriani removed a project: Release-Engineering-Team (Deployment services).Apr 20 2021, 1:10 AM
thcipriani edited projects, added Release-Engineering-Team (thcipriani-workboard-fiddling); removed Release-Engineering-Team-TODO.Apr 20 2021, 3:41 AM
thcipriani moved this task from thcipriani-workboard-fiddling to Seen (ARCHIVE) on the Release-Engineering-Team board.Apr 20 2021, 3:46 AM
thcipriani edited projects, added Release-Engineering-Team; removed Release-Engineering-Team (thcipriani-workboard-fiddling).
thcipriani edited projects, added Release-Engineering-Team (Seen); removed Release-Engineering-Team.Apr 20 2021, 3:23 PM
Lucas_Werkmeister_WMDE mentioned this in T287100: Wikidata not reachable - MediaWiki internal error.Jul 21 2021, 5:08 PM
Dzahn added a project: serviceops.May 10 2023, 8:02 PM
Clement_Goubert edited projects, added serviceops-radar; removed serviceops.Aug 1 2023, 11:52 AM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits