Skip to content

Fix race condition in discovery manager causing duplicate aggregations#3471

Open
therealnb wants to merge 3 commits intomainfrom
race-condition
Open

Fix race condition in discovery manager causing duplicate aggregations#3471
therealnb wants to merge 3 commits intomainfrom
race-condition

Conversation

@therealnb
Copy link
Contributor

@therealnb therealnb commented Jan 27, 2026

Summary

This PR fixes a race condition in the discovery manager that causes duplicate capability aggregations when multiple concurrent requests arrive simultaneously at startup.

Problem

Without this fix, when multiple requests arrive concurrently:

  1. Each request checks the cache (all miss)
  2. Each request triggers expensive capability aggregation
  3. This results in duplicate work and "recursive-looking duplicate 'Starting capability aggregation' logs"

This is a distinct issue from the race condition fixed in #3450.

Solution

Uses singleflight.Group to deduplicate concurrent capability aggregation requests:

  • Multiple concurrent requests for the same cache key wait for a single aggregation
  • The first request performs the work, subsequent requests reuse the result
  • Includes a double-check of the cache after acquiring the singleflight lock
  • Prevents wasted compute and confusing duplicate logs

Changes

  • Added singleflight.Group field to DefaultManager
  • Modified Discover() method to wrap aggregation in singleFlight.Do()
  • Added double-check cache pattern after acquiring singleflight lock

Testing

Existing tests pass. The race condition is most visible under high concurrency at startup when multiple clients connect simultaneously.

@therealnb
Fix race condition in discovery manager causing duplicate aggregations
8d92893 
Use singleflight to ensure only one capability aggregation happens per cache key, even when multiple concurrent requests arrive. This prevents the recursive-looking duplicate 'Starting capability aggregation' logs.
@github-actions github-actions bot added the size/XS Extra small PR: < 100 lines changed label Jan 27, 2026
@therealnb therealnb marked this pull request as draft January 27, 2026 17:00
This was referenced Jan 27, 2026
Merged
Open
@codecov
Copy link

codecov bot commented Jan 27, 2026
edited
Loading

Codecov Report

❌ Patch coverage is 72.72727% with 3 lines in your changes missing coverage. Please review.
✅ Project coverage is 65.26%. Comparing base (2ae9e80) to head (51f5404).

Files with missing lines Patch % Lines
pkg/vmcp/discovery/manager.go 72.72% 2 Missing and 1 partial ⚠️
Additional details and impacted files 
@@            Coverage Diff             @@
##             main    #3471      +/-   ##
==========================================
- Coverage   65.28%   65.26%   -0.03%     
==========================================
  Files         399      399              
  Lines       38990    38997       +7     
==========================================
- Hits        25456    25451       -5     
- Misses      11564    11573       +9     
- Partials     1970     1973       +3

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

@therealnb
Copy link
Contributor Author

therealnb commented Jan 28, 2026
edited
Loading

Retested this. The code in #3440 works fine with this change in. It does this without it

5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
2026/01/28 17:33:00 traces export: Post "http://localhost:4318/v1/traces": dial tcp [::1]:4318: connect: connection refused
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends
5:33PM  INFO    Starting capability aggregation for 3 backends
5:33PM  INFO    Querying capabilities from 3 backends

@therealnb therealnb marked this pull request as ready for review January 28, 2026 17:34
@github-actions github-actions bot added size/XS Extra small PR: < 100 lines changed and removed size/XS Extra small PR: < 100 lines changed labels Jan 28, 2026
therealnb added a commit that referenced this pull request Jan 28, 2026
@therealnb
This is a separate PR
7961f89 
#3471

Signed-off-by: nigel brown <nigel@stacklok.com>
jerm-dro
jerm-dro requested changes Jan 28, 2026
View reviewed changes
Copy link
Contributor

@jerm-dro jerm-dro left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for splitting this out and the clear PR description. I see how we would need to fix this for the optimizer where startup is slower and more likely to cause repeated aggregation.

pkg/vmcp/discovery/manager.go
Comment on lines +153 to 157
// Check cache first (with read lock)
if caps := m.getCachedCapabilities(cacheKey); caps != nil {
logger.Debugf("Cache hit for user %s (key: %s)", identity.Subject, cacheKey)
return caps, nil
}
Copy link
Contributor

@jerm-dro jerm-dro Jan 28, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Blocker: Based on my reading of singleflight source code, singleflight actually implements a cache as well. If the function has been called for the cache key, it returns whatever results was originally produced.

Unfortunately, it's missing one important bit of functionality: expires behavior. Without this, the cache is unbounded in size and can cause OOMs for long running vMCPs. I don't see a good way to implement this on top of singleflight unfortunately, since the only delete API is Forget.

To fix this, I'd recommend:
Create a generic, time-limited cache:

func NewCacheWithTTL[V any](ttl time.Duration) Cache[V] {...}


type Cache[V any] interface {
    Get(key string, loader func() (V, error)) (V, error)
}

I haven't thought too deeply about the implementation, so I'll leave that up to you. Factoring it out like this is nice for a few reasons:

  1. This cache would easily be reusable in different circumstances.
  2. We can thoroughly unit test the cache's behavior. The current implementation that is coupled to capability aggregation is hard to unit test.

@github-actions github-actions bot added size/XS Extra small PR: < 100 lines changed and removed size/XS Extra small PR: < 100 lines changed labels Jan 29, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jerm-dro jerm-dro jerm-dro requested changes

@JAORMX JAORMX Awaiting requested review from JAORMX JAORMX is a code owner

@yrobla yrobla Awaiting requested review from yrobla yrobla is a code owner

@jhrozek jhrozek Awaiting requested review from jhrozek jhrozek is a code owner

@amirejaz amirejaz Awaiting requested review from amirejaz amirejaz is a code owner

Requested changes must be addressed to merge this pull request.

Assignees

@jerm-dro jerm-dro

Labels

size/XS Extra small PR: < 100 lines changed

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@therealnb @jerm-dro