filter/dscache/doc.go - Issue 1987353002: dscache: Reduce log level of memcache failures.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: filter/dscache/doc.go

Issue 1987353002: dscache: Reduce log level of memcache failures. (Closed) Base URL: https://chromium.googlesource.com/external/github.com/luci/gae@master

Patch Set: Created 4 years, 7 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: filter/dscache/doc.go

diff --git a/filter/dscache/doc.go b/filter/dscache/doc.go

index 5cdfef2d665d5836dd5f70b992e7f5a16483af8f..93277b1cdd938f851619762dba078fbd2f2c339e 100644

--- a/filter/dscache/doc.go

+++ b/filter/dscache/doc.go

@@ -157,4 +157,30 @@

// datastore value, if it hasn't been fetched in the last

// GlobalEnabledCheckInterval time (5 minutes). This equates to essentially once

// per http request, per 5 minutes, per instance.

+//

+// AppEngine's memcache reserves the right to evict keys at any moment. This is

+// especially true for shared memcache, which is subject to pressures outside of

+// your application. When when eviction happens due to memory pressure,

+// least-recently-used values are evicted first.

+//

+// https://cloud.google.com/appengine/docs/go/memcache/#Go_How_cached_data_expires

+//

+// Eviction presents a potential race window, as lock items that were put in

+// memcache may be evicted prior to the locked operations completing (or

+// failing), causing concurrent Get operations to cache bad data indefinitely.

+//

+// In practice, a dedicated memcache will be safe. LRU-based eviction means that

+// that locks recently added will almost certainly not be evicted before their

+// operations are complete, and a dedicated memcache lowers eviction pressure to

+// a single application's operation. Production systems that have data integrity

+// requirements are encouraged to use a dedicated memcache.

+//

+// Note that flusing memcache of a running application may also induce this

+// race. Flushes should be performed with this concern in mind.

+//

+// TODO: A potential mitigation to lock eviction poisoning is to use memcache

+// Statistics to identify the oldest memcache item and use that age to bound

+// the lifetime of cached datastore entries. This would cause dscache items

+// created around the time of a flush to expire quickly (instead of never),

+// bounding the period of time when poisoned data may reside in the cache.

iannucci 2016/05/29 19:49:12 but even with this, there's potential for a sampli

dnj 2016/05/29 21:25:18 Hmm we could do a post-Put Statistics grab and try

package dscache

« no previous file with comments | « no previous file | filter/dscache/ds.go » ('j') | no next file with comments »