Fix deadlock when write queue full

[replay]

there is a deadlock because when the cassandra store consumes its write
queue it needs to call a callback which acquires a lock on the
aggemetrics which generated this chunk. when this aggmetric pushes new
chunk write requests into the queue it is holding that lock. this means
if the queue is full we can end up in a situation where the aggmetric
is blocked on pushing into the write queue while the write queue
consumer is blocked on calling the callback which is trying to acquire
that same aggmetric lock.
by switching the aggmetric properties which the callback is trying to
update to atomics we should be able to avoid such a deadlock.

the property aggmetric.lastSaveFinish is never used, so there is no
point maintaining its value. this removes the property and all places
which maintain it.

Related #726
Fixes https://github.com/grafana/metrictank-ops/issues/536

[Dieterbe]

race condition!
I think you need something like

        newVal := ts
	prev := atomic.SwapUint32(&a.lastSaveStart, newVal)
	for prev > newVal {
		newVal = prev
		prev = atomic.SwapUint32(&a.lastSaveStart, newVal)
	}

(i took this from idx/memory.bumpLastUpdate())

[replay]

good catch, i'll update that

[Dieterbe]

the property aggmetric.lastSaveFinish is never used, so there is no
point maintaining its value. this removes the property and all places
which maintain it.

remarkable find. this field was introduced in january 2017 (c596193) and we have basically never used it!

[Dieterbe]

similar to my comment in SyncChunkSaveState, we need to account for others setting higher values using a swap loop.

[Dieterbe]

same here. need swap loop to account for chunksaves coming in concurrently.

[Dieterbe]

my main concern here is the mixing of mutexes with atomics, this may not be valid with the Go memory model, which is very loosely defined when it comes to atomics.
I believe the Go may do certain optimizations under the hood that our assumptions are not compatible with. This needs more research.

edit:
see https://groups.google.com/forum/#!msg/golang-dev/vVkH_9fl1D8/azJa10lkAwAJ and golang/go#5045 (comment)

So I think because you changed all access to a.lastSaveStart to be atomic, we should be good!

When we ran into this in the past, we mixed atomic and non-atomic access, which was the more problematic case. (#945)

[replay]

my main concern here is the mixing of mutexes with atomics, this may not be valid with the Go memory model, which is very loosely defined when it comes to atomics.
I believe the Go may do certain optimizations under the hood that our assumptions are not compatible with. This needs more research.

The mixing of mutexes and atomics is definitely not nice, it introduces the risk that somebody who makes further changes in the future would just read one of those properties without using atomics, not being aware that when reading atomics must be used. But similar like in the case of the .LastUpdate property in the index, i think there can be cases where it makes sense.
I'm not sure what you mean with I believe the Go may do certain optimizations under the hood that our assumptions are not compatible with. This needs more research., what's the question that needs to be answered?

[Dieterbe]

There is no more question to be answered. I linked in my comment to the discussions that lead me to believe we're fine.

[replay]

oh sorry, didn't reload this page in a while and didn't see that you updated the comment

[replay]

I moved the swap loop implementations into a helper function, as this is now a repeating pattern. Unfortunately they won't get inlined due to the for, but i guess that's still fine and the additional overhead for the function call won't lead to a relevant slow down when ingesting.

[Dieterbe]

fix #726