SOLR-18011: Allow locked Admin APIs to call other locked Admin APIs

changelog/unreleased/solr-18011-locking-update.yml

@@ -0,0 +1,9 @@
+# See https://github.com/apache/solr/blob/main/dev-docs/changelog.adoc
+title: Allow locked Admin APIs to call other locked AdminAPIs without deadlocking
+type: changed # added, changed, fixed, deprecated, removed, dependency_update, security, other
+authors:
+  - name: Houston Putman
+    nick: HoustonPutman
+links:
+  - name: SOLR-18011
+    url: https://issues.apache.org/jira/browse/SOLR-18011

solr/core/src/java/org/apache/solr/api/V2HttpCall.java

@@ -18,6 +18,7 @@
 package org.apache.solr.api;
 
 import static org.apache.solr.common.cloud.ZkStateReader.COLLECTION_PROP;
+import static org.apache.solr.common.params.CollectionAdminParams.CALLING_LOCK_IDS_HEADER;
 import static org.apache.solr.servlet.SolrDispatchFilter.Action.ADMIN;
 import static org.apache.solr.servlet.SolrDispatchFilter.Action.ADMIN_OR_REMOTEPROXY;
 import static org.apache.solr.servlet.SolrDispatchFilter.Action.PROCESS;
@@ -218,6 +219,11 @@ private void initAdminRequest(String path) throws Exception {
     solrReq.getContext().put(CoreContainer.class.getName(), cores);
     requestType = AuthorizationContext.RequestType.ADMIN;
     action = ADMIN;
+
+    String callingLockIds = req.getHeader(CALLING_LOCK_IDS_HEADER);
+    if (callingLockIds != null && !callingLockIds.isBlank()) {
+      solrReq.getContext().put(CALLING_LOCK_IDS_HEADER, callingLockIds);
+    }
   }
 
   protected void parseRequest() throws Exception {

solr/core/src/java/org/apache/solr/cloud/DistributedCollectionLockFactory.java

@@ -17,6 +17,7 @@
 
 package org.apache.solr.cloud;
 
+import java.util.List;
 import org.apache.solr.cloud.api.collections.CollectionApiLockFactory;
 import org.apache.solr.common.params.CollectionParams;
 
@@ -62,5 +63,6 @@ DistributedLock createLock(
       CollectionParams.LockLevel level,
       String collName,
       String shardId,
-      String replicaName);
+      String replicaName,
+      List<String> callingLockIds);
 }

solr/core/src/java/org/apache/solr/cloud/DistributedLock.java

@@ -24,4 +24,8 @@ public interface DistributedLock {
   void release();
 
   boolean isAcquired();
+
+  String getLockId();
+
+  boolean isMirroringLock();
 }

solr/core/src/java/org/apache/solr/cloud/DistributedMultiLock.java

@@ -20,6 +20,7 @@
 import com.google.common.annotations.VisibleForTesting;
 import java.lang.invoke.MethodHandles;
 import java.util.List;
+import java.util.stream.Collectors;
 import org.apache.solr.common.SolrException;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
@@ -46,7 +47,12 @@ public void waitUntilAcquired() {
     for (DistributedLock lock : locks) {
       log.debug("DistributedMultiLock.waitUntilAcquired. About to wait on lock {}", lock);
       lock.waitUntilAcquired();
-      log.debug("DistributedMultiLock.waitUntilAcquired. Acquired lock {}", lock);
+      if (lock.isMirroringLock()) {
+        log.debug(
+            "DistributedMultiLock.waitUntilAcquired. Mirroring already-acquired lock {}", lock);
+      } else {
+        log.debug("DistributedMultiLock.waitUntilAcquired. Acquired lock {}", lock);
+      }
     }
   }
 
@@ -70,6 +76,10 @@ public boolean isAcquired() {
     return true;
   }
 
+  public String getLockId() {
+    return locks.stream().map(DistributedLock::getLockId).collect(Collectors.joining(","));
+  }
+
   @VisibleForTesting
   public int getCountInternalLocks() {
     return locks.size();

solr/core/src/java/org/apache/solr/cloud/LockTree.java

@@ -22,6 +22,7 @@
 import java.util.HashMap;
 import java.util.List;
 import java.util.Map;
+import java.util.UUID;
 import org.apache.solr.cloud.OverseerMessageHandler.Lock;
 import org.apache.solr.common.params.CollectionParams;
 import org.apache.solr.common.params.CollectionParams.LockLevel;
@@ -38,20 +39,35 @@ public class LockTree {
   private static final Logger log = LoggerFactory.getLogger(MethodHandles.lookup().lookupClass());
   private final Node root = new Node(null, LockLevel.CLUSTER, null);
 
+  public final Map<String, Lock> allLocks = new HashMap<>();
+
   private class LockImpl implements Lock {
     final Node node;
+    final String id;
 
     LockImpl(Node node) {
       this.node = node;
+      this.id = UUID.randomUUID().toString();
     }
 
     @Override
     public void unlock() {
       synchronized (LockTree.this) {
         node.unlock(this);
+        allLocks.remove(id);
       }
     }
 
+    @Override
+    public String id() {
+      return id;
+    }
+
+    @Override
+    public boolean validateSubpath(int lockLevel, List<String> path) {
+      return node.validateSubpath(lockLevel, path);
+    }
+
     @Override
     public String toString() {
       return StrUtils.join(node.constructPath(new ArrayDeque<>()), '/');
@@ -71,12 +87,33 @@ public String toString() {
   public class Session {
     private SessionNode root = new SessionNode(LockLevel.CLUSTER);
 
-    public Lock lock(CollectionParams.CollectionAction action, List<String> path) {
+    public Lock lock(
+        CollectionParams.CollectionAction action, List<String> path, List<String> callingLockIds) {
       if (action.lockLevel == LockLevel.NONE) return FREELOCK;
+      log.debug("Calling lock level: {}", callingLockIds);
+      Node startingNode = LockTree.this.root;
+      SessionNode startingSession = root;
+
+      // If a callingLockId was passed in, validate it with the current lock path, and only start
+      // locking below the calling lock
+      Lock callingLock = callingLockIds != null ? allLocks.get(callingLockIds.getLast()) : null;
+      boolean ignoreCallingLock = false;
+      if (callingLock != null && callingLock.validateSubpath(action.lockLevel.getHeight(), path)) {
+        startingNode = ((LockImpl) callingLock).node;
+        startingSession = startingSession.find(startingNode.level.getHeight(), path);
+        if (startingSession == null) {
+          startingSession = root;
+        }
+        ignoreCallingLock = true;
+      }
       synchronized (LockTree.this) {
-        if (root.isBusy(action.lockLevel, path)) return null;
-        Lock lockObject = LockTree.this.root.lock(action.lockLevel, path);
-        if (lockObject == null) root.markBusy(action.lockLevel, path);
+        if (startingSession.isBusy(action.lockLevel, path)) return null;
+        Lock lockObject = startingNode.lock(action.lockLevel, path, ignoreCallingLock);
+        if (lockObject == null) {
+          startingSession.markBusy(action.lockLevel, path);
+        } else {
+          allLocks.put(lockObject.id(), lockObject);
+        }
         return lockObject;
       }
     }
@@ -125,6 +162,18 @@ boolean isBusy(LockLevel lockLevel, List<String> path) {
         return false;
       }
     }
+
+    SessionNode find(int lockLevel, List<String> path) {
+      if (level.getHeight() == lockLevel) {
+        return this;
+      } else if (level.getHeight() < lockLevel
+          && kids != null
+          && kids.containsKey(path.get(level.getHeight()))) {
+        return kids.get(path.get(level.getHeight())).find(lockLevel, path);
+      } else {
+        return null;
+      }
+    }
   }
 
   public Session getSession() {
@@ -158,8 +207,9 @@ void unlock(LockImpl lockObject) {
       }
     }
 
-    Lock lock(LockLevel lockLevel, List<String> path) {
-      if (myLock != null) return null; // I'm already locked. no need to go any further
+    Lock lock(LockLevel lockLevel, List<String> path, boolean ignoreCurrentLock) {
+      if (myLock != null && !ignoreCurrentLock)
+        return null; // I'm already locked. no need to go any further
       if (lockLevel == level) {
         // lock is supposed to be acquired at this level
         // If I am locked or any of my children or grandchildren are locked
@@ -171,16 +221,37 @@ Lock lock(LockLevel lockLevel, List<String> path) {
         Node child = children.get(childName);
         if (child == null)
           children.put(childName, child = new Node(childName, level.getChild(), this));
-        return child.lock(lockLevel, path);
+        return child.lock(lockLevel, path, false);
       }
     }
 
+    boolean validateSubpath(int lockLevel, List<String> path) {
+      return level.getHeight() < lockLevel
+          && (level.getHeight() == 0 || name.equals(path.get(level.getHeight() - 1)))
+          && (mom == null || mom.validateSubpath(lockLevel, path));
+    }
+
     ArrayDeque<String> constructPath(ArrayDeque<String> collect) {
       if (name != null) collect.addFirst(name);
       if (mom != null) mom.constructPath(collect);
       return collect;
     }
   }
 
-  static final Lock FREELOCK = () -> {};
+  static final String FREELOCK_ID = "-1";
+  static final Lock FREELOCK =
+      new Lock() {
+        @Override
+        public void unlock() {}
+
+        @Override
+        public String id() {
+          return FREELOCK_ID;
+        }
+
+        @Override
+        public boolean validateSubpath(int lockLevel, List<String> path) {
+          return false;
+        }
+      };
 }

solr/core/src/java/org/apache/solr/cloud/OverseerConfigSetMessageHandler.java

@@ -21,6 +21,7 @@
 
 import java.lang.invoke.MethodHandles;
 import java.util.HashSet;
+import java.util.List;
 import java.util.Set;
 import org.apache.solr.common.SolrException;
 import org.apache.solr.common.SolrException.ErrorCode;
@@ -61,7 +62,7 @@ public OverseerConfigSetMessageHandler(ZkStateReader zkStateReader, CoreContaine
   }
 
   @Override
-  public OverseerSolrResponse processMessage(ZkNodeProps message, String operation) {
+  public OverseerSolrResponse processMessage(ZkNodeProps message, String operation, Lock lock) {
     NamedList<Object> results = new NamedList<>();
     try {
       if (!operation.startsWith(CONFIGSETS_ACTION_PREFIX)) {
@@ -117,7 +118,22 @@ public Lock lockTask(ZkNodeProps message, long ignored) {
     String configSetName = getTaskKey(message);
     if (canExecute(configSetName, message)) {
       markExclusiveTask(configSetName, message);
-      return () -> unmarkExclusiveTask(configSetName, message);
+      return new Lock() {
+        @Override
+        public void unlock() {
+          unmarkExclusiveTask(configSetName, message);
+        }
+
+        @Override
+        public String id() {
+          return configSetName;
+        }
+
+        @Override
+        public boolean validateSubpath(int lockLevel, List<String> path) {
+          return false;
+        }
+      };
     }
     return null;
   }

solr/core/src/java/org/apache/solr/cloud/OverseerMessageHandler.java

@@ -16,6 +16,7 @@
  */
 package org.apache.solr.cloud;
 
+import java.util.List;
 import org.apache.solr.common.cloud.ZkNodeProps;
 
 /** Interface for processing messages received by an {@link OverseerTaskProcessor} */
@@ -26,7 +27,7 @@ public interface OverseerMessageHandler {
    * @param operation the operation to process
    * @return response
    */
-  OverseerSolrResponse processMessage(ZkNodeProps message, String operation);
+  OverseerSolrResponse processMessage(ZkNodeProps message, String operation, Lock lock);
 
   /**
    * @return the name of the OverseerMessageHandler
@@ -41,6 +42,10 @@ public interface OverseerMessageHandler {
 
   interface Lock {
     void unlock();
+
+    String id();
+
+    boolean validateSubpath(int lockLevel, List<String> path);
   }
 
   /**

solr/core/src/java/org/apache/solr/cloud/OverseerTaskProcessor.java

@@ -562,7 +562,7 @@ public void run() {
           if (log.isDebugEnabled()) {
             log.debug("Runner processing {}", head.getId());
           }
-          response = messageHandler.processMessage(message, operation);
+          response = messageHandler.processMessage(message, operation, lock);
         } finally {
           timerContext.stop();
           updateStats(statsName);

solr/core/src/java/org/apache/solr/cloud/ZkDistributedCollectionLockFactory.java

@@ -17,6 +17,7 @@
 
 package org.apache.solr.cloud;
 
+import java.util.List;
 import java.util.Objects;
 import org.apache.solr.cloud.api.collections.DistributedCollectionConfigSetCommandRunner;
 import org.apache.solr.common.SolrException;
@@ -44,7 +45,8 @@ public DistributedLock createLock(
       CollectionParams.LockLevel level,
       String collName,
       String shardId,
-      String replicaName) {
+      String replicaName,
+      List<String> callingLockIds) {
     Objects.requireNonNull(collName, "collName can't be null");
     if (level != CollectionParams.LockLevel.COLLECTION) {
       Objects.requireNonNull(
@@ -56,7 +58,8 @@ public DistributedLock createLock(
     }
 
     String lockPath = getLockPath(level, collName, shardId, replicaName);
-    return doCreateLock(isWriteLock, lockPath);
+
+    return doCreateLock(isWriteLock, lockPath, callingLockIds);
   }
 
   /**

solr/core/src/java/org/apache/solr/cloud/ZkDistributedConfigSetLockFactory.java

@@ -17,6 +17,7 @@
 
 package org.apache.solr.cloud;
 
+import java.util.Collections;
 import java.util.Objects;
 import org.apache.solr.common.cloud.SolrZkClient;
 
@@ -40,7 +41,7 @@ public DistributedLock createLock(boolean isWriteLock, String configSetName) {
     Objects.requireNonNull(configSetName, "configSetName can't be null");
 
     String lockPath = getLockPath(configSetName);
-    return doCreateLock(isWriteLock, lockPath);
+    return doCreateLock(isWriteLock, lockPath, Collections.emptyList());
   }
 
   /**