[SERVER-75563] Enforce that setFCV always succeeds to transition to downgrading state and is always fast Created: 31/Mar/23 Updated: 25/Apr/23 |
|
| Status: | Open |
| Project: | Core Server |
| Component/s: | None |
| Affects Version/s: | None |
| Fix Version/s: | None |
| Type: | Task | Priority: | Major - P3 |
| Reporter: | Samyukta Lanka | Assignee: | Backlog - Replication Team |
| Resolution: | Unresolved | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Issue Links: |
|
||||||||
| Assigned Teams: |
Replication
|
||||||||
| Participants: | |||||||||
| Description |
|
We have the policy that the setFCV command "always succeeds and is always fast". In practice we want this to mean that the transition to the transitional downgrading FCV state is fast and always succeeds (barring command validation errors). It is easy for server engineers to introduce code that violates this policy without our knowledge. We should explore if there are any ways we can enforce this policy without manual oversight. |