Fix batch processor shutdown deadlock & goroutine leak under load #14463
+604
−5
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Signed-off-by: WHOIM1205 <rathourprateek8@gmail.com>
WHOIM1205
force-pushed
the
fix/batch-processor-shutdown-deadlock
branch
from
1c0b498 to
d39b5b0
Compare
iblancasa
suggested changes
Jan 22, 2026
| }() | ||
|
|
||
| // Wait for the shard to be blocked in export | ||
| time.Sleep(50 * time.Millisecond) |
Contributor
There was a problem hiding this comment.
Avoid time.Sleep calls, please.
| close(shutdownDone) | ||
| }() | ||
|
|
||
| // Unblock the consumer so shutdown can complete |
Contributor
There was a problem hiding this comment.
It is not needed to comment all the lines
| var errTooManyBatchers = consumererror.NewPermanent(errors.New("too many batcher metadata-value combinations")) | ||
|
|
||
| // errShuttingDown is returned when data is received while the processor is shutting down. | ||
| var errShuttingDown = errors.New("batch processor is shutting down") |
Contributor
There was a problem hiding this comment.
Depending on the component sending the data, I think this can be retried if it is not marked as permanent.
Contributor
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Summary
This PR fixes a critical shutdown deadlock and goroutine leak in the core batch processor caused by blocking channel sends that ignore context cancellation and shutdown signals.
Under high load, this bug can cause the OpenTelemetry Collector to hang indefinitely during shutdown, resulting in SIGKILL by Kubernetes and 100% loss of buffered telemetry.
Problem Description
The batch processor’s
consume()path performs an unconditional blocking send to an internal buffered channel.Key issues:
consume()ignorescontext.ContextDuring shutdown:
consume()This leads to deadlock, goroutine leaks, and silent telemetry loss.
Affected Code
processor/batchprocessor/batch_processor.gosingleShardBatcher.consumemultiShardBatcher.consumeRoot Cause
The batch processor assumes:
These assumptions break under load:
Fix
Make
consume()context- and shutdown-aware:selectctx.Done()(request cancellation / deadlines)shutdownC(processor shutdown signal)This preserves existing behavior while preventing deadlocks and leaks.
Tests Added
Shutdown Safety
Context Cancellation
Consume*respects request timeoutscontext.DeadlineExceededinstead of blockingRegression Coverage
Reproduction (Before Fix)
otlpreceiverbatchprocessorImpact
Before
After
Risk Assessment