Skip to content

fix(taskworker) Improve shutdown of taskworkers #94885

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 7 commits into from
Jul 4, 2025
Merged

fix(taskworker) Improve shutdown of taskworkers #94885

merged 7 commits into from
Jul 4, 2025

Conversation

markstory
Copy link
Member

@markstory markstory commented Jul 3, 2025
edited
Loading

atexit doesn't handle SIGTERM, which we need to have clean shutdown in unprivileged container contexts. I also added names to child processes and threads to help with debugging.

@markstory
fix(taskworker) Improve shutdown of taskworkers
4130c5a 
`atexit` doesn't handle SIGTERM, which we need to have clean shutdown in
unprivileged container contexts. I also added names to child proceses
and threads to help with debugging.
@markstory markstory requested a review from a team as a code owner July 3, 2025 19:41
@github-actions github-actions bot added the Scope: Backend Automatically applied to PRs that change backend components label Jul 3, 2025
cursor[bot]

This comment was marked as outdated.

Sign in to view

@markstory
Remove daemon=true for child processes
d0139a7 
the docs say that daemonic processes cannot create child processes, and
I have to assume that somewhere we create child processes in worker
tasks, and that we're better off with non-daemonic child processes.
markstory
markstory commented Jul 3, 2025
View reviewed changes
src/sentry/taskworker/worker.py
@@ -193,7 +202,9 @@ def result_thread() -> None:
)
continue

self._result_thread = threading.Thread(target=result_thread)
self._result_thread = threading.Thread(
name="send-result", target=result_thread, daemon=True
Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The threads have daemon=true now as we don't need/want to block the worker shutdown on them.

cursor[bot]

This comment was marked as outdated.

Sign in to view

markstory added 2 commits July 3, 2025 16:30
@markstory
Remove timeouts on thread join
968358e 
These timeouts won't halt the thread and we should wait longer for them.
I've switched to using a shutdown property to avoid deadlocks on the
shutdown_event
@markstory
Join child spawn thread first
dda22eb 
Feels more correct to stop spawning children before terminating them
all.
cursor[bot]

This comment was marked as outdated.

Sign in to view

@codecov Codecov
Copy link

codecov bot commented Jul 3, 2025
edited
Loading

Codecov Report

Attention: Patch coverage is 62.50000% with 9 lines in your changes missing coverage. Please review.

✅ All tests successful. No failed tests found.

Files with missing lines Patch % Lines
src/sentry/taskworker/worker.py 60.86% 9 Missing ⚠️
Additional details and impacted files 
@@            Coverage Diff             @@
##           master   #94885      +/-   ##
==========================================
+ Coverage   87.88%   87.90%   +0.01%     
==========================================
  Files       10447    10446       -1     
  Lines      604270   603901     -369     
  Branches    23540    23468      -72     
==========================================
- Hits       531082   530869     -213     
+ Misses      72824    72670     -154     
+ Partials      364      362       -2

cursor[bot]

This comment was marked as outdated.

Sign in to view

markstory added 2 commits July 4, 2025 10:41
@markstory
Merge branch 'master' into fix-worker-term
24febc7
@markstory
Remove thread-unsafe attribute
4ca7024 
Go back to using the Event.is_set() instead of the attribute. While
using the Event can sometimes deadlock in the `result_thread`, having
a timeout on the join allow progress to be made in spite of a lock.
cursor[bot]
cursor bot reviewed Jul 4, 2025
View reviewed changes
Copy link

@cursor cursor bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Bug: Signal-Interrupted Shutdown Causes Inconsistent State

The shutdown() method is no longer idempotent due to the removal of the _shutdown_event.is_set() early return check. This allows concurrent calls to shutdown(), such as from signal handlers and manual calls. If a signal arrives while shutdown() is already executing, the resulting KeyboardInterrupt can interrupt critical cleanup operations (e.g., joining child processes or threads). This leads to race conditions, potentially leaving child processes running, causing multiple termination attempts, or resulting in an inconsistent worker state (e.g., issues with queue draining).

src/sentry/taskworker/worker.py#L117-L149

sentry/src/sentry/taskworker/worker.py

Lines 117 to 149 in 4ca7024

def shutdown(self) -> None:
"""
Shutdown cleanly
Activate the shutdown event and drain results before terminating children.
"""
logger.info("taskworker.worker.shutdown.start")
self._shutdown_event.set()
logger.info("taskworker.worker.shutdown.spawn_children")
if self._spawn_children_thread:
self._spawn_children_thread.join()
logger.info("taskworker.worker.shutdown.children")
for child in self._children:
child.terminate()
for child in self._children:
child.join()
logger.info("taskworker.worker.shutdown.result")
if self._result_thread:
# Use a timeout as sometimes this thread can deadlock on the Event.
self._result_thread.join(timeout=5)
# Drain any remaining results synchronously
while True:
try:
result = self._processed_tasks.get_nowait()
self._send_result(result, fetch=False)
except queue.Empty:
break
logger.info("taskworker.worker.shutdown.complete")

Fix in CursorFix in Web

Was this report helpful? Give feedback by reacting with 👍 or 👎

@markstory markstory merged commit 1612c88 into master Jul 4, 2025
65 checks passed
@markstory markstory deleted the fix-worker-term branch July 4, 2025 15:35
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@cursor cursor[bot] cursor[bot] left review comments

@oioki oioki oioki approved these changes

@enochtangg enochtangg enochtangg approved these changes

Assignees
No one assigned
Labels
Scope: Backend Automatically applied to PRs that change backend components
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@markstory @oioki @enochtangg