Bugfix: deduplicate concurrent resolver cache requests with singleflight.#9365
Merged
tekton-robot merged 2 commits intotektoncd:mainfrom Mar 24, 2026
Merged
Conversation
tekton-robot
added
the
release-note
tekton-robot
added
the
size/XL
Member
Author
|
@waveywaves check out the fix! 😺 |
aThorp96
reviewed
Feb 11, 2026
Member
aThorp96
left a comment
aThorp96
left a comment
There was a problem hiding this comment.
Haven't gone through the tests yet but the fix looks good to me!
tekton-robot
added
the
do-not-merge/work-in-progress
twoGiants
force-pushed
the
issue-9364-resolver-cache-race-condition
branch
from
85f2292 to
ffba4f2
Compare
tekton-robot
added
size/XXL
twoGiants
force-pushed
the
issue-9364-resolver-cache-race-condition
branch
2 times, most recently
from
feea6ff to
db4118b
Compare
Member
Author
|
/retest |
vdemeester
reviewed
Feb 16, 2026
vdemeester
reviewed
Feb 16, 2026
Member
|
/retest |
twoGiants
force-pushed
the
issue-9364-resolver-cache-race-condition
branch
from
db4118b to
618f491
Compare
vdemeester
reviewed
Mar 17, 2026
Comment on lines
+65
to
+73
| // Check if user provided explicit -run flag | ||
| // If so, skip category filtering and run normally to respect user's choice | ||
| runFlag := flag.Lookup("test.run") | ||
| if runFlag != nil && runFlag.Value.String() != "" { | ||
| exitCode := m.Run() | ||
| fmt.Fprintf(os.Stderr, "Using kubeconfig at `%s` with cluster `%s`\n", knativetest.Flags.Kubeconfig, knativetest.Flags.Cluster) | ||
| os.Exit(exitCode) | ||
| } | ||
|
|
vdemeester
approved these changes
Mar 17, 2026
Member
vdemeester
left a comment
vdemeester
left a comment
There was a problem hiding this comment.
One comment (nit really) and same comments as @afrittoli, otherwise looks good to me !
test/init_test.go
Outdated
| runFlag := flag.Lookup("test.run") | ||
| if runFlag != nil && runFlag.Value.String() != "" { | ||
| exitCode := m.Run() | ||
| fmt.Fprintf(os.Stderr, "Using kubeconfig at `%s` with cluster `%s`\n", knativetest.Flags.Kubeconfig, knativetest.Flags.Cluster) |
Member
There was a problem hiding this comment.
shouldn't this be "before" m.Run() though ?
Member
Author
There was a problem hiding this comment.
Good point! I moved it after flag.Parse at the top and removed duplication. Now it's shown for every case before the e2e tests run, which is better anyway 😸
Before this change, cache Get and Add were separate operations, creating a TOCTOU race: concurrent requests for the same resource could all miss the cache and each trigger a remote resolution. Merge Get/Add/GetFromCacheOrResolve into a single GetCachedOrResolveFromRemote method on resolverCache that wraps the resolve callback with golang.org/x/sync/singleflight. Only one in-flight resolution per cache key proceeds; all concurrent callers share its result. Other changes in this commit: - Use strings.Builder in generateCacheKey instead of string concatenation - Remove unused resolverType param from ShouldUse - Rework e2e tests to verify caching by counting actual registry GET requests (via logs and metrics) instead of checking resolver log messages - Add multi-replica resolver test (4 replicas, 200 TaskRuns) - Allow -run flag to bypass category filtering in TestMain - Log when resolution was deduped by singleflight Issue tektoncd#9364 Signed-off-by: Stanislav Jakuschevskij <stas@two-giants.com>
Before, a corrupted cache entry (one that fails type assertion) would return an error but stay in the cache, blocking all future lookups for that key until TTL expiration or LRU eviction. Now the corrupted entry is removed immediately so the next request triggers a fresh resolution. Also deduplicate the kubeconfig log line in TestMain by moving it before the category-filtering branches. Issue tektoncd#9364
twoGiants
force-pushed
the
issue-9364-resolver-cache-race-condition
branch
from
5d9c078 to
7de253c
Compare
Member
Author
|
@afrittoli @khrm @vdemeester Thank you for taking a look 😸 👍 I addressed your comments in the latest commit 7de253c PTAL. If you approve I squash or you can merge as is => let me know. |
Member
Author
|
/retest |
vdemeester
approved these changes
Mar 24, 2026
Collaborator
|
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: afrittoli, vdemeester The full list of commands accepted by this bot can be found here. The pull request process is described here DetailsNeeds approval from an approver in each of these files:
Approvers can indicate their approval by writing |
Member
|
/lgtm |
waveywaves
reviewed
Mar 25, 2026
Member
waveywaves
left a comment
waveywaves
left a comment
There was a problem hiding this comment.
Thank you for this fix @twoGiants 🤗
Member
|
@twoGiants @waveywaves should we cherry-pick this ? |
Member
|
/cherry-pick release-v1.10.x |
Member
|
/cherry-pick release-v1.9.x |
Member
|
/cherry-pick release-v1.6.x |
Collaborator
|
❌ Cherry-pick to The automatic cherry-pick to Output: Next steps:
|
Collaborator
|
✅ Cherry-pick to A new pull request has been created to cherry-pick this change to PR: #9662 Please review and merge the cherry-pick PR. |
Collaborator
|
✅ Cherry-pick to A new pull request has been created to cherry-pick this change to PR: #9663 Please review and merge the cherry-pick PR. |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
7 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Changes
Fix race condition in resolver cache where concurrent requests for the same resource bypass the cache and independently resolve upstream (cache stampede / thundering herd).
What changed
Before this change, cache lookup (
Get) and storage (Add) were separate operations exposed onresolverCache, and the orchestration lived inGetFromCacheOrResolveinoperations.go.Now the entire check-or-resolve flow is a single
GetCachedOrResolveFromRemotemethod onresolverCachethat wraps the resolve callback withgolang.org/x/sync/singleflight. Only one in-flight resolution proceeds per cache key; all concurrent callers share its result. The separateGet,Add,Remove, andGetFromCacheOrResolvepublic methods are removed — the cache surface is now justGetCachedOrResolveFromRemoteandClear.Other changes
strings.BuilderingenerateCacheKeyinstead of repeated string concatenationresolverTypeparameter fromShouldUse/metricsendpoint) instead of checking resolver log messages-runflag to bypass category filtering inTestMainso individual tests can run in isolationtest/README.md@vdemeester also found and fixed a small bug in the e2e test annotations. I wasn't able to run tests in isolation. Now the little fix does the magic 🐱.
Fixes #9364
Submitter Checklist
As the author of this PR, please check off the items in this checklist:
/kind <type>. Valid types are bug, cleanup, design, documentation, feature, flake, misc, question, tepRelease Notes