CFn: correct disassociation of change sets from stacks #13128

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Merged

simonrw merged 3 commits into main from cfn/v2/delete-change-set-describe

Sep 12, 2025

Contributor

simonrw commented Sep 11, 2025 •

edited

Loading

Motivation

While executing the following set of operations:

Create change set
Execute change set
Delete change set
Create new change set
Describe new change set

the change set lookup failed.

We incorrectly associate the change set twice, once during the create and once during execute so after the execute stage the change set id was in the stack's list twice. Deleting the change set only disassociated one of the entries, which in effect deleted the stack from the store but left it associated with the stack.

Then calling describe or delete would iterate over the stack's change sets and reach a stale change set id, which is not present in the store.

Changes

Add test covering this situation
Do not associate the change set twice
Add logging statements on deletion to add clarity if an error occurs
Make association more robust by using a set

Questions

I'm not sure we should make the association more robust with a set. If this situation occurs, it is a programming error on our part and we should fix it.

simonrw added 2 commits

September 11, 2025 12:31


          Test and fix bug

eec4167

# Please enter the commit message for your changes. Lines starting
# with '#' will be ignored, and an empty message aborts the commit.
#
# On branch cfn/v2/delete-change-set-describe
# Changes to be committed:
#	modified:   localstack-core/localstack/services/cloudformation/v2/entities.py
#	modified:   localstack-core/localstack/services/cloudformation/v2/provider.py
#	modified:   tests/aws/services/cloudformation/api/test_changesets.py
#	modified:   tests/aws/services/cloudformation/api/test_changesets.snapshot.json
#	modified:   tests/aws/services/cloudformation/api/test_changesets.validation.json
#


          Make change set lookup more robust

a8f6e28

simonrw added this to the 4.9 milestone

simonrw added aws:cloudformation semver: patch review: merge when ready docs: skip labels

github-actions bot commented Sep 11, 2025 •

edited

Loading

Test Results - Preflight, Unit

22 124 tests 20 386 ✅ 6m 21s ⏱️
1 suites 1 738 💤
1 files 0 ❌

Results for commit 158f892.

♻️ This comment has been updated with latest results.

github-actions bot commented Sep 11, 2025 •

edited

Loading

Test Results (amd64) - Acceptance

7 tests 5 ✅ 3m 7s ⏱️
1 suites 2 💤
1 files 0 ❌

Results for commit 158f892.

♻️ This comment has been updated with latest results.

github-actions bot commented Sep 11, 2025 •

edited

Loading

LocalStack Community integration with Pro

2 files 2 suites 34m 46s ⏱️
559 tests 444 ✅ 115 💤 0 ❌
561 runs 444 ✅ 117 💤 0 ❌

Results for commit 158f892.

♻️ This comment has been updated with latest results.

github-actions bot commented Sep 11, 2025 •

edited

Loading

Test Results (amd64) - Integration, Bootstrap

5 files 5 suites 48m 11s ⏱️
583 tests 469 ✅ 114 💤 0 ❌
589 runs 469 ✅ 120 💤 0 ❌

Results for commit 158f892.

♻️ This comment has been updated with latest results.

github-actions bot commented Sep 11, 2025 •

edited

Loading

Test Results - Alternative Providers

558 tests 328 ✅ 23m 53s ⏱️
1 suites 230 💤
1 files 0 ❌

Results for commit 158f892.

♻️ This comment has been updated with latest results.


          Skip on v1

158f892

simonrw marked this pull request as ready for review

September 11, 2025 13:23

simonrw requested review from dominikschubert and pinzon as code owners

September 11, 2025 13:23

pinzon approved these changes

View reviewed changes

Member

pinzon left a comment

Thanks for fixing this. I can see why it was hard to find the issue.

Answering your question: Though I believe the best solution would be to add a method that validates that the change set id is not duplicated I'm fine with using a set since at least it won't cause issues like an array.

Contributor Author

simonrw commented Sep 11, 2025

Thanks for fixing this. I can see why it was hard to find the issue.

Answering your question: Though I believe the best solution would be to add a method that validates that the change set id is not duplicated I'm fine with using a set since at least it won't cause issues like an array.

I think my concern is how to surface the error to the user, or even more ideally in a way that we can find out about it. A runtime error is not great since it's not the user's fault and they are blocked. I think a set is a way to make sure the user is not affected. We will not find out about any future potential issues using this approach, however without blocking the user we would not find out about them in any other way either.

There is a big part of me that wants to revert the set change, because errors like this can be an indicator of bigger problems in the engine and we should learn about those. I think I've convinced myself that we should revert this change. WDYT?

Contributor Author

simonrw commented Sep 12, 2025

Because this is affecting customers, I am going to merge this but I'd like to revisit this conversation soon

simonrw merged commit 54de523 into main

64 of 65 checks passed

simonrw deleted the cfn/v2/delete-change-set-describe branch

September 12, 2025 07:32

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

aws:cloudformation docs: skip review: merge when ready semver: patch