mirror of
https://github.com/neondatabase/neon.git
synced 2026-01-14 17:02:56 +00:00
b54b632c6a
## Problem The storage components take an entire `SafekeeperConf` during construction, but only actually use the `no_sync` field. This makes it hard to understand the storage inputs (which fields do they actually care about?), and is also inconvenient for tests and benchmarks that need to set up a lot of unnecessary boilerplate. ## Summary of changes * Don't take the entire config, but pass in the `no_sync` field explicitly. * Take the timeline dir instead of `ttid` as an input, since it's the only thing it cares about. * Fix a couple of tests to not leak tempdirs. * Various minor tweaks.
282 lines
9.5 KiB
Rust
282 lines
9.5 KiB
Rust
//! Control file serialization, deserialization and persistence.
|
|
|
|
use anyhow::{bail, ensure, Context, Result};
|
|
use byteorder::{LittleEndian, ReadBytesExt, WriteBytesExt};
|
|
use camino::{Utf8Path, Utf8PathBuf};
|
|
use tokio::fs::File;
|
|
use tokio::io::AsyncWriteExt;
|
|
use utils::crashsafe::durable_rename;
|
|
|
|
use std::future::Future;
|
|
use std::io::Read;
|
|
use std::ops::Deref;
|
|
use std::path::Path;
|
|
use std::time::Instant;
|
|
|
|
use crate::control_file_upgrade::downgrade_v9_to_v8;
|
|
use crate::control_file_upgrade::upgrade_control_file;
|
|
use crate::metrics::PERSIST_CONTROL_FILE_SECONDS;
|
|
use crate::state::{EvictionState, TimelinePersistentState};
|
|
use utils::bin_ser::LeSer;
|
|
|
|
pub const SK_MAGIC: u32 = 0xcafeceefu32;
|
|
pub const SK_FORMAT_VERSION: u32 = 9;
|
|
|
|
// contains persistent metadata for safekeeper
|
|
pub const CONTROL_FILE_NAME: &str = "safekeeper.control";
|
|
// needed to atomically update the state using `rename`
|
|
const CONTROL_FILE_NAME_PARTIAL: &str = "safekeeper.control.partial";
|
|
pub const CHECKSUM_SIZE: usize = size_of::<u32>();
|
|
|
|
/// Storage should keep actual state inside of it. It should implement Deref
|
|
/// trait to access state fields and have persist method for updating that state.
|
|
pub trait Storage: Deref<Target = TimelinePersistentState> {
|
|
/// Persist safekeeper state on disk and update internal state.
|
|
fn persist(&mut self, s: &TimelinePersistentState) -> impl Future<Output = Result<()>> + Send;
|
|
|
|
/// Timestamp of last persist.
|
|
fn last_persist_at(&self) -> Instant;
|
|
}
|
|
|
|
#[derive(Debug)]
|
|
pub struct FileStorage {
|
|
// save timeline dir to avoid reconstructing it every time
|
|
timeline_dir: Utf8PathBuf,
|
|
no_sync: bool,
|
|
|
|
/// Last state persisted to disk.
|
|
state: TimelinePersistentState,
|
|
/// Not preserved across restarts.
|
|
last_persist_at: Instant,
|
|
}
|
|
|
|
impl FileStorage {
|
|
/// Initialize storage by loading state from disk.
|
|
pub fn restore_new(timeline_dir: &Utf8Path, no_sync: bool) -> Result<FileStorage> {
|
|
let state = Self::load_control_file_from_dir(timeline_dir)?;
|
|
|
|
Ok(FileStorage {
|
|
timeline_dir: timeline_dir.to_path_buf(),
|
|
no_sync,
|
|
state,
|
|
last_persist_at: Instant::now(),
|
|
})
|
|
}
|
|
|
|
/// Create and reliably persist new control file at given location.
|
|
///
|
|
/// Note: we normally call this in temp directory for atomic init, so
|
|
/// interested in FileStorage as a result only in tests.
|
|
pub async fn create_new(
|
|
timeline_dir: &Utf8Path,
|
|
state: TimelinePersistentState,
|
|
no_sync: bool,
|
|
) -> Result<FileStorage> {
|
|
// we don't support creating new timelines in offloaded state
|
|
assert!(matches!(state.eviction_state, EvictionState::Present));
|
|
|
|
let mut store = FileStorage {
|
|
timeline_dir: timeline_dir.to_path_buf(),
|
|
no_sync,
|
|
state: state.clone(),
|
|
last_persist_at: Instant::now(),
|
|
};
|
|
store.persist(&state).await?;
|
|
Ok(store)
|
|
}
|
|
|
|
/// Check the magic/version in the on-disk data and deserialize it, if possible.
|
|
fn deser_sk_state(buf: &mut &[u8]) -> Result<TimelinePersistentState> {
|
|
// Read the version independent part
|
|
let magic = ReadBytesExt::read_u32::<LittleEndian>(buf)?;
|
|
if magic != SK_MAGIC {
|
|
bail!(
|
|
"bad control file magic: {:X}, expected {:X}",
|
|
magic,
|
|
SK_MAGIC
|
|
);
|
|
}
|
|
let version = ReadBytesExt::read_u32::<LittleEndian>(buf)?;
|
|
if version == SK_FORMAT_VERSION {
|
|
let res = TimelinePersistentState::des(buf)?;
|
|
return Ok(res);
|
|
}
|
|
// try to upgrade
|
|
upgrade_control_file(buf, version)
|
|
}
|
|
|
|
/// Load control file from given directory.
|
|
fn load_control_file_from_dir(timeline_dir: &Utf8Path) -> Result<TimelinePersistentState> {
|
|
let path = timeline_dir.join(CONTROL_FILE_NAME);
|
|
Self::load_control_file(path)
|
|
}
|
|
|
|
/// Read in the control file.
|
|
pub fn load_control_file<P: AsRef<Path>>(
|
|
control_file_path: P,
|
|
) -> Result<TimelinePersistentState> {
|
|
let mut control_file = std::fs::OpenOptions::new()
|
|
.read(true)
|
|
.write(true)
|
|
.open(&control_file_path)
|
|
.with_context(|| {
|
|
format!(
|
|
"failed to open control file at {}",
|
|
control_file_path.as_ref().display(),
|
|
)
|
|
})?;
|
|
|
|
let mut buf = Vec::new();
|
|
control_file
|
|
.read_to_end(&mut buf)
|
|
.context("failed to read control file")?;
|
|
|
|
let calculated_checksum = crc32c::crc32c(&buf[..buf.len() - CHECKSUM_SIZE]);
|
|
|
|
let expected_checksum_bytes: &[u8; CHECKSUM_SIZE] =
|
|
buf[buf.len() - CHECKSUM_SIZE..].try_into()?;
|
|
let expected_checksum = u32::from_le_bytes(*expected_checksum_bytes);
|
|
|
|
ensure!(
|
|
calculated_checksum == expected_checksum,
|
|
format!(
|
|
"safekeeper control file checksum mismatch: expected {} got {}",
|
|
expected_checksum, calculated_checksum
|
|
)
|
|
);
|
|
|
|
let state = FileStorage::deser_sk_state(&mut &buf[..buf.len() - CHECKSUM_SIZE])
|
|
.with_context(|| {
|
|
format!(
|
|
"while reading control file {}",
|
|
control_file_path.as_ref().display(),
|
|
)
|
|
})?;
|
|
Ok(state)
|
|
}
|
|
}
|
|
|
|
impl Deref for FileStorage {
|
|
type Target = TimelinePersistentState;
|
|
|
|
fn deref(&self) -> &Self::Target {
|
|
&self.state
|
|
}
|
|
}
|
|
|
|
impl TimelinePersistentState {
|
|
pub(crate) fn write_to_buf(&self) -> Result<Vec<u8>> {
|
|
let mut buf: Vec<u8> = Vec::new();
|
|
WriteBytesExt::write_u32::<LittleEndian>(&mut buf, SK_MAGIC)?;
|
|
|
|
if self.eviction_state == EvictionState::Present {
|
|
// temp hack for forward compatibility
|
|
const PREV_FORMAT_VERSION: u32 = 8;
|
|
let prev = downgrade_v9_to_v8(self);
|
|
WriteBytesExt::write_u32::<LittleEndian>(&mut buf, PREV_FORMAT_VERSION)?;
|
|
prev.ser_into(&mut buf)?;
|
|
} else {
|
|
// otherwise, we write the current format version
|
|
WriteBytesExt::write_u32::<LittleEndian>(&mut buf, SK_FORMAT_VERSION)?;
|
|
self.ser_into(&mut buf)?;
|
|
}
|
|
|
|
// calculate checksum before resize
|
|
let checksum = crc32c::crc32c(&buf);
|
|
buf.extend_from_slice(&checksum.to_le_bytes());
|
|
Ok(buf)
|
|
}
|
|
}
|
|
|
|
impl Storage for FileStorage {
|
|
/// Persists state durably to the underlying storage.
|
|
async fn persist(&mut self, s: &TimelinePersistentState) -> Result<()> {
|
|
let _timer = PERSIST_CONTROL_FILE_SECONDS.start_timer();
|
|
|
|
// write data to safekeeper.control.partial
|
|
let control_partial_path = self.timeline_dir.join(CONTROL_FILE_NAME_PARTIAL);
|
|
let mut control_partial = File::create(&control_partial_path).await.with_context(|| {
|
|
format!(
|
|
"failed to create partial control file at: {}",
|
|
&control_partial_path
|
|
)
|
|
})?;
|
|
|
|
let buf: Vec<u8> = s.write_to_buf()?;
|
|
|
|
control_partial.write_all(&buf).await.with_context(|| {
|
|
format!(
|
|
"failed to write safekeeper state into control file at: {}",
|
|
control_partial_path
|
|
)
|
|
})?;
|
|
control_partial.flush().await.with_context(|| {
|
|
format!(
|
|
"failed to flush safekeeper state into control file at: {}",
|
|
control_partial_path
|
|
)
|
|
})?;
|
|
|
|
let control_path = self.timeline_dir.join(CONTROL_FILE_NAME);
|
|
durable_rename(&control_partial_path, &control_path, !self.no_sync).await?;
|
|
|
|
// update internal state
|
|
self.state = s.clone();
|
|
Ok(())
|
|
}
|
|
|
|
fn last_persist_at(&self) -> Instant {
|
|
self.last_persist_at
|
|
}
|
|
}
|
|
|
|
#[cfg(test)]
|
|
mod test {
|
|
use super::*;
|
|
use tokio::fs;
|
|
use utils::lsn::Lsn;
|
|
|
|
const NO_SYNC: bool = true;
|
|
|
|
#[tokio::test]
|
|
async fn test_read_write_safekeeper_state() -> anyhow::Result<()> {
|
|
let tempdir = camino_tempfile::tempdir()?;
|
|
let mut state = TimelinePersistentState::empty();
|
|
let mut storage = FileStorage::create_new(tempdir.path(), state.clone(), NO_SYNC).await?;
|
|
|
|
// Make a change.
|
|
state.commit_lsn = Lsn(42);
|
|
storage.persist(&state).await?;
|
|
|
|
// Reload the state. It should match the previously persisted state.
|
|
let loaded_state = FileStorage::load_control_file_from_dir(tempdir.path())?;
|
|
assert_eq!(loaded_state, state);
|
|
Ok(())
|
|
}
|
|
|
|
#[tokio::test]
|
|
async fn test_safekeeper_state_checksum_mismatch() -> anyhow::Result<()> {
|
|
let tempdir = camino_tempfile::tempdir()?;
|
|
let mut state = TimelinePersistentState::empty();
|
|
let mut storage = FileStorage::create_new(tempdir.path(), state.clone(), NO_SYNC).await?;
|
|
|
|
// Make a change.
|
|
state.commit_lsn = Lsn(42);
|
|
storage.persist(&state).await?;
|
|
|
|
// Change the first byte to fail checksum validation.
|
|
let ctrl_path = tempdir.path().join(CONTROL_FILE_NAME);
|
|
let mut data = fs::read(&ctrl_path).await?;
|
|
data[0] += 1;
|
|
fs::write(&ctrl_path, &data).await?;
|
|
|
|
// Loading the file should fail checksum validation.
|
|
if let Err(err) = FileStorage::load_control_file_from_dir(tempdir.path()) {
|
|
assert!(err.to_string().contains("control file checksum mismatch"))
|
|
} else {
|
|
panic!("expected checksum error")
|
|
}
|
|
Ok(())
|
|
}
|
|
}
|