Introduce log writer APIs (log_io.cpp, log_io.hpp)

[mihirj1993]

Introduce log writer APIs (log_io.cpp, log_io.hpp)

• The log_writer APIs will process the txn log and generate pwrite() requests for txn writes (to be written to log files)
• The log_writer APIs will be used by a single server side thread (log_writer thread : Introduce log writer thread #1146)
• The in-memory log record format is augmented with a list of chunks; which represents the order in which chunks were used in the txn. This is necessary since a txn may receive chunks in arbitrary order from the server (given chunk reuse) and the in-memory txn log does not track object offsets in the order in which they were allocated for the txn (since the client sorts the log by offset for the purposes of validation)
• The in-memory log record format is further augmented with an eventfd. The session_decision_eventfd is specific to a session and is used by the log_writer thread to signal to the session thread that txn writes have been persisted. The session thread can then return commit result back to the client.
• For simplicity, this session_decision_eventfd is stashed in the txn log. The alternative implementation requires keeping a threadsafe structure on the server which is accessed by both the session threads and the log_writer thread (to obtain the relevant session eventfd's to write to).

[LaurentiuCristofor]

shouldn't the names be event_fd instead of eventfd?

[senderista]

No, because eventfd is a kernel object type (like memfd), and has its own open(2)-like system call eventfd() (which really should have been eventfd_create()).

[LaurentiuCristofor]

Can you express this value in terms of c_max_chunks_per_txn, so that changing that value doesn't require recalculating this one?

[senderista]

Hmm, this will conflict with my current changes (which limit txn logs to 2^16 records), so I think we can postpone discussion until after those are merged.

[senderista]

In the meantime, here are some numbers to consider: we can address up to 2^16 txn logs in metadata (16 bits to embed an fd/offset), and we can have at most 2^32 live object versions (we have 2^38 bytes in the data segment and objects are at least 2^6 bytes). I think it makes sense to limit the total number of txn records to the max number of live versions (otherwise some records must be addressing versions that don't exist), so we also can have at most 2^32 txn log records, so to ensure this limit is respected we can have at most 2^16 records/txn log. That's a bit smaller than I'd like, but I think the consistency arguments above are compelling. We can discuss if this limit is actually adequate for customer use cases (ditto our 64KB object size limit).

Given the above, we can address at most 2^32 bytes of new object versions in a txn log: max object size is 2^16 bytes and at most 2^16 new versions can be addressed in a txn log. Chunk size is 2^22 bytes, so that means that a txn log can address at most 2^10 chunks. Given 16-bit chunk IDs, that's 2KB for chunk ID storage, or half a 4KB page.

[senderista]

Also, I think my current changes to redesign in-memory txn log storage unfortunately need to be merged before these changes, even though these changes are further along, because the scalability issues with mmap() revealed in benchmarking seem to have much more perf impact than any deficiencies of the current persistence implementation.

[LaurentiuCristofor]

Can you add a comment to explain what this is used for / why it is necessary?

[LaurentiuCristofor]

Also, it would help if the 3 would be a constant so its name would be more descriptive of why 3 is an appropriate value.

[senderista]

This is really looking good, just a few things could be improved. Also a heads-up that my pending changes to replace txn log fds will require some rework (but not really that much).

[senderista]

Is this data structure only accessed by a single thread? (Obviously it's not threadsafe.)

[senderista]

See my comments elsewhere: based on existing limits (including those in my pending changes for txn log storage), I think we need to allow up to 2^10 chunks/txn.

Also, the max txn log size in bytes is now 1MB (2^16 16-byte records).

[senderista]

FYI I'm removing this in my current changes (it never worked anyway for its intended purpose as shared state).

[senderista]

I don't think it makes sense to put a datum that is valid for only one process (i.e. an fd) in shared-memory state. We should discuss alternatives, e.g. registering this eventfd as part of txn submission, or registering some general index into an array of session shared state (which I think we will need anyway for reliable recovery from crashed sessions).

[senderista]

As you know, we can always infer the set of chunks used in a txn by scanning the offsets in the txn log (which we need to do anyway during conflict detection), so we should discuss if this is necessary.

[senderista]

I see no reason to track the full set of offsets in a chunk at all, when all you care about is the smallest and largest ones. Why not just track min and max offsets per chunk?

[senderista]

I think it would be clearer to use array indexing rather than pointer arithmetic.

[senderista]

Not sure what the meaning of "validate" is here when the return type is void rather than bool.

[senderista]

I like this refactoring!

[senderista]

Note how the logic in this loop would be simplified by just storing start/end offset pairs in contiguous_address_offsets.

[senderista]

Please use the same parameter name as async_disk_writer_t::submit_and_swap_in_progress_batch(): should_wait_for_completion.

[senderista]

Please use the same parameter name as async_disk_writer_t::submit_and_swap_in_progress_batch(): should_wait_for_completion.

[senderista]

Setting the TXN_DURABLE flag can only be correct if both the committed data and the decision have been persisted. How do you know at this point that the data is also durable? Isn't the log batch committed asynchronously with the decision batch?

[senderista]

A bit of a higher-level design digression: generally speaking, if we have dedicated txn metadata flags for a property, we don't need a watermark for it, and vice versa. The key difference is that metadata flags can be updated out-of-order, while a watermark is in-order by construction (it can only represent a "prefix property", i.e. a predicate which is true for every timestamp <= the watermark). If txns were made durable strictly in commit_ts order (or if there were no latency penalty from requiring a full prefix of txns to be durable before advancing the watermark), then I think a durability watermark could replace the TXN_DURABLE flag. This also seems reasonable given the current batch approach, since we can't signal a session thread that its committing txn is durable until fdatasync() has completed for that txn's log and decision batches. If we required batches to observe the prefix property as well (i.e. we couldn't finalize a batch as long as there were any "holes" in it), then I think this would be a natural approach. However, in view of the longer-term design goal to make durability fully asynchronous using O_DIRECT | O_DATASYNC (so we can signal a session thread as soon as its log/decision write has completed, without having to wait for fdatasync() to complete for the whole batch), I think it's probably better to stick with the metadata flags approach, since that would allow committing session threads to be signaled out-of-order by the logging thread (when we move to O_DIRECT), which might be important for txns with large variance in update size (to prevent large txns from blocking commit notification of small txns). Anyway, curious to hear your thoughts on this.

[senderista]

I think all of my and others' feedback has been addressed, and I also rewrote some clearly inefficient code.

I now own this PR

[simone-gaia]

LGTM, but honestly don't understand much of what is going on...

Is this code hooked up anywhere or at least tested?

[simone-gaia]

nit: should we put an _ before fd? (i.e m_validate_flush_event_fd).

[senderista]

no, eventfd is the name of a kernel object type and a syscall

[simone-gaia]

I don't think it is a good idea to prepend / to a directory name.

[senderista]

agree, will fix (I certainly haven't found all the issues in the original code)

[simone-gaia]

I think the operator is just /.

[senderista]

LGTM, but honestly don't understand much of what is going on...

Is this code hooked up anywhere or at least tested?

Neither, but there's no time for that. I'll do lots of testing for the next 2 PRs.

[LaurentiuCristofor]

Don't we also need m_current_offset(0)?

[LaurentiuCristofor]

Also, could we perform the initializations in the same order in which the arguments are passed?

[senderista]

m_current_offset is already initialized to a default value (see its declaration). We get a warning if initialization order doesn't match declaration order.

[LaurentiuCristofor]

Can we change declaration order or does it matter to optimize storage?

[senderista]

done

[LaurentiuCristofor]

dirpath -> dir_path

[senderista]

fixed

[LaurentiuCristofor]

Should "persistent" be "persistence". It's not a directory that is persistent, but a directory used for persistence. Perhaps we should also say something like "data", i.e. "Gaia data persistence directory" instead of "Gaia persistent directory".

[LaurentiuCristofor]

Or "Gaia persistent data directory" - this goes well with "persistent log directory" that is used further down.

[senderista]

fixed

[LaurentiuCristofor]

I'm not sure if I got this right:

Eventfd to signal post flush maintenance operations invalid!
->
Eventfd to signal post-flush maintenance operations are invalid!

[senderista]

done

[LaurentiuCristofor]

Can you break the arguments of this call?

[senderista]

done

[LaurentiuCristofor]

i++ -> ++i

[senderista]

done

[LaurentiuCristofor]

Left some comments on minor issues, nothing blocking.