Without this fix, the new added test case TestV3AuthEmptyUserPut always fails.

logger.go:130: 2022-04-14T07:42:28.034+0800	FATAL	m0	Verification failed	{"member": "m0", "data-dir": "/var/folders/n9/qhsds19d75x16c351t6tzhfc0000gp/T/TestV3AuthEmptyUserPut3114970556/002/etcd371615291", "error": "backend.ConsistentIndex (8) must be >= last snapshot index (16)"}

After applying the fix in this PR, then the case succeeds.

Codecov Report

Merging #13942 (77ee442) into main (4555fc3) will decrease coverage by 0.37%.
The diff coverage is 100.00%.

❗ Current head 77ee442 differs from pull request most recent head 6eef7ed. Consider uploading reports for the commit 6eef7ed to get more accurate results

@@            Coverage Diff             @@
##             main   #13942      +/-   ##
==========================================
- Coverage   72.52%   72.14%   -0.38%     
==========================================
  Files         469      469              
  Lines       38413    38411       -2     
==========================================
- Hits        27859    27712     -147     
- Misses       8776     8901     +125     
- Partials     1778     1798      +20     

Flags with carried forward coverage won't be shown. Click here to find out more.

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 4555fc3...6eef7ed. Read the comment docs.

Just rebased this PR.

Test failure - flake (https://github.com/etcd-io/etcd/runs/6091231156?check_suite_focus=true):

    logger.go:130: 2022-04-20T08:11:00.714Z	FATAL	m0	Verification failed	{"member": "m0", "data-dir": "/tmp/TestV3WatchRestoreSnapshotUnsync501892535/002/etcd4044943490", "error": "backend.ConsistentIndex (24) must be >= last snapshot index (25)"}

requires a second look.

The root cause should be coming from server.go#L919, and it should be a legacy issue. When sending snapshot to a slow follwer, appliedId and appliedTerm are used as the snapshot index and term. But if the sender's consistent_index is somehow smaller than the appliedIndex, then we will run into this issue.

logger.go:130: 2022-04-20T08:10:41.907Z INFO m0 applying snapshot {"member": "m0", "current-snapshot-index": 0, "current-applied-index": 8, "incoming-leader-snapshot-index": 24, "incoming-leader-snapshot-term": 17}

logger.go:130: 2022-04-20T08:11:00.714Z	FATAL	m0	Verification failed	{"member": "m0", "data-dir": "/tmp/TestV3WatchRestoreSnapshotUnsync501892535/002/etcd4044943490", "error": "backend.ConsistentIndex (23) must be >= last snapshot index (24)"}

Everything should be good now.

Eventually the if statement is as below. It's really subtle & interesting :)

if !applyV3Performed || (ar != nil && ar.err != nil) 

I think the change makes sense, however it's just a band-aid solution for the consistent index code that needs a architectural redesign.

I think the change makes sense, however it's just a band-aid solution for the consistent index code that needs a architectural redesign.

Yes, I agree. But redesign isn't an easy task, and I will try to drive this if @ptabor hasn't bandwidth, and probably will be top of @ptabor 's PR 13878

I think that the @ptabor PR wanted to fix the development issue of picking either LockInsideApply or LockOutsideApply. However looking that apply code that was changed in this PR, we will still be hard to decide if CI should be flushed or not. For v3.5.3 we fixed one type of unintentional update of consistent index, but broke case where update should still happen when authorization fails. We can continue to detect and fix such issues, however it might never end as new features and error states are added.

1. broke case where update should still happen when authorization fails -> I think it was preexisting issue, just observed when we more frequently dump snapshot.

2. I think PR Encapsulation of applier logic: Move Txn related code out of applier.go. #13878 helps with overall code quality:

   • breaks huge etcdserver in 2 subpackages with cleaner dependencies between them
   • reduces objects exposed directly in EtcdServer
   • makes wrapping story or appiers 'cleaner'. No cyclic dependency.

So would not consider it 'alternative', even if not contributing directly to the new approach.

3. I don't see a way to avoid passing some form of applyingContext to all the transactions. We will need to do this in every code-paths leading to transaction or make it part of 'applying' specific helpers on top of objects representing post-raft-state. In general I'm in favor of strongly separating pre-raft and post-raft state objects... and then we know that post-raft object mutators are responsible for cindex.

In general, I agree with @ptabor , but we still need to clarify and breakdown the details. I will keep thinking about it and probably send out a draft/doc for review later.