txn: run statement on_rollback triggers before rolling back statement
#9936
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
CuriousGeorgiy
force-pushed
the
gh-9893-rollback-ddl-on-_space-space
branch
2 times, most recently
from
0779ee6
to
0ed3fe6
Compare
CuriousGeorgiy
force-pushed
the
gh-9893-rollback-ddl-on-_space-space
branch
4 times, most recently
from
6986041
to
11725c6
Compare
drewdzzz
reviewed
Apr 11, 2024
CuriousGeorgiy
force-pushed
the
gh-9893-rollback-ddl-on-_space-space
branch
3 times, most recently
from
6946a0e
to
71316f4
Compare
p7nov
approved these changes
Apr 12, 2024
CuriousGeorgiy
force-pushed
the
gh-9893-rollback-ddl-on-_space-space
branch
4 times, most recently
from
e71b773
to
0870e08
Compare
CuriousGeorgiy
force-pushed
the
gh-9893-rollback-ddl-on-_space-space
branch
from
0870e08
to
73b94b1
Compare
drewdzzz
reviewed
May 8, 2024
There was a problem hiding this comment.
I don't like that we need to add priv_reload_info to txn_stmt_rollback_info.
As I understand, we assume that space _priv is small, so we could save all tuples in on_replace, insert the new tuple, if any, and delete the old one, if any - then we could pass priv_reload_info as on_rollback->data to the trigger.
|
You can allocate |
|
@drewdzzz The solution you suggest requires manually patching the port contents to restore the old space state, i.e., removing the new tuple, if any, and restoring the old tuple, if any. Since ports are append-only structures, supporting this operation requires hacking around them and adding a lot of new one-time-use code (for insertion and removal of port entries into the middle of the port entry list) compared to the current solution. I would like a second opinion to opt for your solution. |
CuriousGeorgiy
force-pushed
the
gh-9893-rollback-ddl-on-_space-space
branch
3 times, most recently
from
6a49aec
to
b3156d3
Compare
|
@drewdzzz @sergepetrenko I implemented the solution that @sergepetrenko suggested, please take a look. I guess #10004 is not worth taking a look then if we all agree on this solution, so I will just close it. |
drewdzzz
approved these changes
May 15, 2024
drewdzzz
reviewed
May 15, 2024
CuriousGeorgiy
force-pushed
the
gh-9893-rollback-ddl-on-_space-space
branch
4 times, most recently
from
63f5a1a
to
24e8fcc
Compare
sergepetrenko
requested changes
May 20, 2024
CuriousGeorgiy
force-pushed
the
gh-9893-rollback-ddl-on-_space-space
branch
from
24e8fcc
to
22c2082
Compare
In scope of tarantool#9893 we are going to run statement `on_rollback` triggers before rolling back the corresponding statement. During rollback of DDL in the `_priv` space, the database is accessed from `user_reload_privs` to reload user privileges, so we need it to account for the current statement being rolled back: i.e., the new tuple that was introduced (if any) must not be used, while the old tuple (if any) must be used. Needed for tarantool#9893 NO_CHANGELOG=<refactoring> NO_DOC=<refactoring>
Logically, we call triggers after running statements. These triggers can make significant changes (for instance, DDL triggers), so, for consistency, we should call the statement's `on_rollback` triggers before rolling back the statement. This also adheres to the logic that transaction `on_rollback` triggers are called before rolling back individual transaction statements. One particular bug that this patch fixes is rolling back of DDL on the `_space` space. DDL is essentially a replace operation on the `_space` space, which also invokes the `on_replace_dd_space` trigger. In this trigger, among other things, we swap the indexes of the original space, `alter->old_space`, which is equal to the corresponding transaction `stmt->space`, with the indexes of the newly created space, `alter->new_space`: https://github.com/tarantool/tarantool/blob/de80e0264f7deb58ea86ef85b37b92653a803430/src/box/alter.cc#L1036-L1047 If then a rollback happens, we first rollback the replace operation, using `stmt->space`, and only after that do we swap back the indexes in `alter_space_rollback`: https://github.com/tarantool/tarantool/blob/de80e0264f7deb58ea86ef85b37b92653a803430/src/box/memtx_engine.cc#L659-L669 https://github.com/tarantool/tarantool/blob/de80e0264f7deb58ea86ef85b37b92653a803430/src/box/alter.cc#L916-L925 For DDL on the _space space, the replace operation and DDL occur on the same space. This means that during rollback of the replace, we will try to do a replace in the empty indexes that were created for `alter->new_space`. Not only does this break the replace operation, but also the newly inserted tuple, which remains in the index, gets deleted, and access to it causes undefined behavior (heap-use-after-free). As part of the work on this patch, tests of rollback of DDL on system spaces which use `on_rollback` triggers were enumerated: * `_sequence` — box/sequence.test.lua; * `_sequence_data` — box/sequence.test.lua; * `_space_sequence` — box/sequence.test.lua; * `_trigger` — sql/ddl.test.lua, sql/errinj.test.lua; * `_collation` — engine-luatest/gh_4544_collation_drop_test.lua, box/ddl_collation.test.lua; * `_space` — box/transaction.test.lua, sql/ddl.test.lua; * `_index` — box/transaction.test.lua, sql/ddl.test.lua; * `_cluster` — box/transaction.test.lua; * `_func` — box/transaction.test.lua, box/function1.test.lua; * `_priv` — box/errinj.test.lua, box-luatest/rollback_ddl_on__priv_space_test.lua; * `_user` — box/transaction.test.lua, box-luatest/gh_4348_transactional_ddl_test.lua. Closes tarantool#9893 NO_DOC=<bugfix>
CuriousGeorgiy
force-pushed
the
gh-9893-rollback-ddl-on-_space-space
branch
from
22c2082
to
af153d4
Compare
sergepetrenko
approved these changes
May 29, 2024
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This patch fixes the order of running a transaction statement's
on_rollbacktriggers and rolling back the statement itself.Closes #9893