Custom recovery/checkpointing impl

[mihirj1993]

NOTE: Some code comments may be outdated. I will review again tomorrow and fix.

This PR does the following

• Introduce persistence types relevant for recovery.

• Introduce iterator to read log records from a persistent log file.

• Recovery protocol:

         Sort log files to be in increasing order
         MMAP one log file at a time.
         Index decision & txn records in the file. Validate Checksum per record.
         Read decision records in increasing order and add all associated txn writes to the memtable. An optimization could be to read decision records in reverse order but for simplicity we replay txn records in commit order.
         Only committed txns are written to the memtable.
         Memtable (buffer where writes are stored in SST format) is flushed to disk if it becomes full.
         Skip unmapping and closing the file in case it has some unprocessed txn records as decision record for it can be present in the next file.
         At the end of recovery, validate no orphaned txn records exist (unless these records exist at the tail of the log)
         Flush any remaining writes.
         Destroy log.
         Start DB.
  

Recovery is conducted in sorted log order since it is preferable to stop at the first encountered corrupted record.

• Log checkpointer thread:

    Only kicks in for log files that are completely full.
    Reuses most of the recovery code.
    Truncate log file after it has been completely checkpointed.
    Writes to RocksDB will now be single threaded. Checkpointing is outside the commit path so this isn't a perf impediment. 
  

Todo:

• Enable the new logging impl once testing is done. I'll do this in a follow up PR
• Disable RocksDB log (just need to update a rocks config)
• Unfork rocksdb.
• Move all rocksdb interaction (checkpointing) to a separate process.

[LaurentiuCristofor]

Add some comments to describe the use of these fields.

[LaurentiuCristofor]

mapped_data perhaps? With just mapped, the question is: "what is mapped?".

[LaurentiuCristofor]

Update custom key's value.

Something seems to be missing. Should this be "Update a custom key's value."?

[LaurentiuCristofor]

Leave an empty line after the set of namespace declarations.

[LaurentiuCristofor]

Should the argument be INT64_MAX when the type is uint64_t? Or should this be UINT64_MAX?

[LaurentiuCristofor]

Same issue for the call to recover_from_persistent_log and the second call to destroy_persistent_log below.

[LaurentiuCristofor]

This line and line 300 are too long.

[LaurentiuCristofor]

Shouldn't this comment be better placed below, before the call to eventfd_read?

[LaurentiuCristofor]

Should these messages say "Eventfd to..." or "Eventfd for...". I'm not sure what an "eventfd to X" is supposed to mean.

[LaurentiuCristofor]

We should be handling possible exceptions and perhaps have a stronger check on filenames, so that we only delete the files that we created.

I understand that this is a special folder and nobody else is meant to write to it, but still, there is nothing preventing that from happening either.

[LaurentiuCristofor]

Also, given that we want sequence numbers to be uint64_t, shouldn't this be a call to stoull (see: https://en.cppreference.com/w/cpp/string/basic_string/stoul) instead of stoi?

[LaurentiuCristofor]

We should assert that log_seq is not UINT64_MAX.

[LaurentiuCristofor]

Insert an empty line before each comment block (except for a comment block at the start of a scope, like the previous one).

[LaurentiuCristofor]

Can const auto work here?

[LaurentiuCristofor]

Message is not terminated: should be ... ordered? Or pehaps: "Log file sequence numbers should appear in increasing order"?

[LaurentiuCristofor]

This can fail if we've loaded a file that just happened to contain a number value (stoi/stoul will ignore non-numeric prefixes) and no file with just that number name exists. This is why we should have some better validation of the files that we process in the sense that we require a specific format of their names.

Another form of this issue is if we'd had file like:

1007
a1007
aa1007

With the current use of stoi, all of these names would give use the same sequence number 1007, which would lead to a failure of the above assert.

[LaurentiuCristofor]

We should be doing this check before generating the scope_guard.

[LaurentiuCristofor]

Do not use auto where the type is not clear, as would be the case here. For make_scope_guard above, the name says it all, but here I'd need to look up the method declaration.

[LaurentiuCristofor]

How is txn_index related to the file? I'm failing to find where it's created. Is this not a local variable (then it lacks a special prefix to identify it so)?

[LaurentiuCristofor]

I'd add these immediately after their respective resources are added to their collections. I.e.:

            files_to_close.push_back(file_fd);
            file_cleanup.dismiss();
            
            files_to_unmap.push_back(std::pair(it.mapped, it.map_size));
            mmap_cleanup.dismiss();

[LaurentiuCristofor]

Shouldn't the files be already sorted or are their names not fixed length? If the names have the right format, then the folder operation should read them in correct order anyway. In that case, a check for sorting could be kept just for additional validation and asserted on.

[LaurentiuCristofor]

I don't understand this check. It's still part of the loop, so why do we expect file_seq to be the last element of the file list?

[LaurentiuCristofor]

Can max_log_file_seq_to_delete skip one (or more) seq values but be set to another one following them?

I mean: we do this check in a loop. We don't set max for a number of file_seq, but then we check it for a larger one - is that okay? Is it supposed to happen or is it not supposed to happen?

[LaurentiuCristofor]

Comment should be broken on multiple lines.

[LaurentiuCristofor]

Iterare? Is that meant to be Iterate?

[LaurentiuCristofor]

Why the explicit static_cast? You can return 0 directly.

[LaurentiuCristofor]

Why the reinterpret_cast when result is already a uint64_t?

[LaurentiuCristofor]

Use the common::c_empty_string constant instead of the literal "".

[LaurentiuCristofor]

Why don't you use value directly? If you need a copy, call it read_value or something more descriptive.

[LaurentiuCristofor]

Why is this needed when we already have db_object_t? If it's necessary, we should at least add a comment explaining the reason for this duplicate struct.

[LaurentiuCristofor]

Break the assert arguments on separate lines.

[LaurentiuCristofor]

st -> statistics. Or fstat_data.

[LaurentiuCristofor]

Fix capitalization and punctuation of error message.

[LaurentiuCristofor]

in the beginning to -> in the beginning of

or perhaps:

at the beginning of

[LaurentiuCristofor]

Can we perform some additional validation on the file size? For example, if it contains a set of records and it's not empty, its size should be at least the size of a record and perhaps a multiple of that record's size?

[LaurentiuCristofor]

zeroblock -> zero_block

[LaurentiuCristofor]

How large can remaining_size be? This check that creates an array of that size for such a check seems rather inefficient. A simple iteration between start and end, checking each char for 0 is basically what memcmp will do itself, so why not do that directly and eliminate the need for zeroblock?

[LaurentiuCristofor]

Just finished a pass through this PR. I need some additional information to completely understand some of this code. I'll do another pass after you have a chance to go through my comments.

[senderista]

Lots to discuss...

[senderista]

Why isn't this atomic like s_last_queued_commit_ts_upper_bound?

[senderista]

I guess we should move these comments to the header file, but you can wait until we move the others as well.

[senderista]

Why isn't max_log_seq_to_delete a log_sequence_t?

[senderista]

What's the motivation for making these functions pluggable? Testing?

[senderista]

Can log_seq be a log_sequence_t?

[senderista]

This should be encapsulated in a helper method in read_record_t.

[senderista]

Shouldn't you be adding payload_size to payload_ptr, not to record? This is another example of why I want to keep tricky pointer arithmetic out of client code whenever possible...

[senderista]

Similar to db_object_t, I think it's more robust to have an array of fixed-size objects precede an array of variable-size objects. If the fixed-size objects are packed after the variable-size objects, then it's easy to get alignment errors.

[senderista]

I think maybe we should add a total_size() helper to db_object_t (along with data_size()).

[senderista]

(I just merged this in #1269, so please use it here.)

[senderista]

As elsewhere, you should do pointer arithmetic in the for statement itself:

auto first_id_ptr = reinterpret_cast<common::gaia_id_t*>(deleted_ids_ptr);
for (gaia_id_t* id_ptr = first_id_ptr; id_ptr < first_id_ptr + record->header.deleted_object_count; ++id_ptr)
{
...
}