1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
|
/**
* Copyright (C) 2018-present MongoDB, Inc.
*
* This program is free software: you can redistribute it and/or modify
* it under the terms of the Server Side Public License, version 1,
* as published by MongoDB, Inc.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* Server Side Public License for more details.
*
* You should have received a copy of the Server Side Public License
* along with this program. If not, see
* <http://www.mongodb.com/licensing/server-side-public-license>.
*
* As a special exception, the copyright holders give permission to link the
* code of portions of this program with the OpenSSL library under certain
* conditions as described in each individual source file and distribute
* linked combinations including the program with the OpenSSL library. You
* must comply with the Server Side Public License in all respects for
* all of the code used other than as permitted herein. If you modify file(s)
* with this exception, you may extend this exception to your version of the
* file(s), but you are not obligated to do so. If you do not wish to do so,
* delete this exception statement from your version. If you delete this
* exception statement from all source files in the program, then also delete
* it in the license file.
*/
#pragma once
#include "mongo/stdx/mutex.h"
#include "mongo/util/concurrency/with_lock.h"
#include <algorithm>
#include <list>
#include <string>
#include <vector>
#include "mongo/bson/bsonobj.h"
#include "mongo/bson/timestamp.h"
#include "mongo/db/catalog/commit_quorum_options.h"
#include "mongo/db/concurrency/d_concurrency.h"
#include "mongo/db/index/index_descriptor.h"
#include "mongo/db/namespace_string.h"
#include "mongo/db/operation_context.h"
#include "mongo/db/repl/optime.h"
#include "mongo/executor/task_executor.h"
#include "mongo/stdx/condition_variable.h"
#include "mongo/util/future.h"
#include "mongo/util/net/hostandport.h"
#include "mongo/util/uuid.h"
namespace mongo {
// Indicates which protocol an index build is using.
enum class IndexBuildProtocol {
/**
* Refers to the legacy index build protocol for building indexes in replica sets. Index builds
* must complete on the primary before replicating, and are not resumable in any scenario.
*/
kSinglePhase,
/**
* Refers to the two-phase index build protocol for building indexes in replica sets. Indexes
* are built simultaneously on all nodes.
*/
kTwoPhase
};
// Indicates the type of abort or commit signal that will be received by primary and secondaries.
enum class IndexBuildAction {
/**
* Does nothing. And, we set on shutdown.
*/
kNoAction,
/**
* Commit signal set by oplog applier.
*/
kOplogCommit,
/**
* Abort signal set by oplog applier.
*/
kOplogAbort,
/**
* Abort signal set on rollback.
*/
kRollbackAbort,
/**
* Abort signal set on initial sync.
*/
kInitialSyncAbort,
/**
* Abort signal set on donor when tenant migration starts.
*/
kTenantMigrationAbort,
/**
* Abort signal set by createIndexes cmd or by drop databases/collections/indexes cmds
*/
kPrimaryAbort,
/**
* Commit signal set by an index build for a single-phase build.
*/
kSinglePhaseCommit,
/**
* Commit signal set by "voteCommitIndexBuild" cmd and step up.
*/
kCommitQuorumSatisfied
};
/**
* Returns string representation of IndexBuildAction.
*/
std::string indexBuildActionToString(IndexBuildAction action);
/**
* Represents the index build state. See _checkIfValidTransition() for valid state transitions.
*/
class IndexBuildState {
public:
enum State {
/**
* Initial state, the index build is registered, but still not completely setup. Setup
* implies instantiating all the required in-memory state for the index builder thread. For
* primaries, it also implies persisting the index build entry to
* 'config.system.indexBuilds' and replicating the 'startIndexBuild' oplog entry.
*/
kSetup,
/**
* This state indicates all in-memory and durable state is prepared, but the index build is
* not yet in progress. Some additional verification and configuration is performed, during
* which we might end up with a killed index build thread. Transitioning to this state
* immediately after setup is crucial to know when it is actually required to perform
* teardown. An index build in kPostSetup or later is elegible for being aborted by an
* external thread.
*/
kPostSetup,
/**
* Once an index build is in-progress it is eligible for transition to any of the commit
* states. It is also abortable.
*/
kInProgress,
/**
* Below state indicates that IndexBuildsCoordinator thread was externally asked to commit.
* For kApplyCommitOplogEntry, this can come from an oplog entry.
*/
kApplyCommitOplogEntry,
/**
* Below state indicates that index build was successfully able to commit and is set
* immediately before it commits the index build.
*/
kCommitted,
/**
* Below state indicates that index build was successfully able to abort. In case of self
* abort this state is set after the build is cleaned up and the abort oplog entry is
* replicated. In case of an external abort, this state is set before interrupting the
* builder thread, as a way of indicating that a self abort is not required. Cleanup and
* oplog entry replicating in this case is done after setting the state.
*/
kAborted,
/**
* Below state indicates that the index build thread has voted for an abort to the current
* primary, and is waiting for the index build to actually be aborted either because the
* command is a loopback to itself (vote issuer is primary itself) or due to
* 'abortIndexBuild' oplog entry being replicated by the primary.
*/
kAwaitPrimaryAbort,
/**
* This state indicates that an internal operation, regardless of replication state,
* requested that this index build abort. The index builder thread is responsible for
* handling and cleaning up.
*/
kForceSelfAbort,
};
/**
* Transitions this index build to new 'state'.
* Invariants if the requested transition is not valid and 'skipCheck' is true.
* 'timestamp', 'abortStatus' may be provided for certain states such as 'commit' and
* 'abort'.
*/
void setState(State state,
bool skipCheck,
boost::optional<Timestamp> timestamp = boost::none,
boost::optional<Status> abortStatus = boost::none);
bool isApplyingCommitOplogEntry() const {
return _state == kApplyCommitOplogEntry;
}
bool isCommitted() const {
return _state == kCommitted;
}
bool isAborted() const {
return _state == kAborted;
}
bool isSettingUp() const {
return _state == kSetup;
}
bool isPostSetup() const {
return _state == kPostSetup;
}
bool isAwaitingPrimaryAbort() const {
return _state == kAwaitPrimaryAbort;
}
bool isForceSelfAbort() const {
return _state == kForceSelfAbort;
}
boost::optional<Timestamp> getTimestamp() const {
return _timestamp;
}
boost::optional<std::string> getAbortReason() const {
return boost::make_optional(!_abortStatus.isOK(), _abortStatus.reason());
}
Status getAbortStatus() const {
return _abortStatus;
}
std::string toString() const {
return toString(_state);
}
static std::string toString(State state) {
switch (state) {
case kSetup:
return "Setting up";
case kPostSetup:
return "Post setup";
case kInProgress:
return "In progress";
case kApplyCommitOplogEntry:
return "Applying commit oplog entry";
case kCommitted:
return "Committed";
case kAborted:
return "Aborted";
case kAwaitPrimaryAbort:
return "Await primary abort oplog entry";
case kForceSelfAbort:
return "Forced self-abort";
}
MONGO_UNREACHABLE;
}
/**
* Appends the current state information of the index build to the builder.
*/
void appendBuildInfo(BSONObjBuilder* builder) const;
private:
/**
* Returns true if the requested IndexBuildState transition is allowed.
*/
bool _checkIfValidTransition(IndexBuildState::State currentState,
IndexBuildState::State newState) const;
// Represents the index build state.
State _state = kSetup;
// Timestamp will be populated only if the node is secondary.
// It represents the commit or abort timestamp communicated via
// commitIndexBuild and abortIndexBuild oplog entry.
boost::optional<Timestamp> _timestamp;
// Reason for abort, if any.
Status _abortStatus = Status::OK();
};
/**
* Tracks the cross replica set progress of a particular index build identified by a build UUID.
*
* This is intended to only be used by the IndexBuildsCoordinator class.
*
* TODO: pass in commit quorum setting.
*/
class ReplIndexBuildState {
ReplIndexBuildState(const ReplIndexBuildState&) = delete;
ReplIndexBuildState& operator=(const ReplIndexBuildState&) = delete;
public:
ReplIndexBuildState(const UUID& indexBuildUUID,
const UUID& collUUID,
const DatabaseName& dbName,
const std::vector<BSONObj>& specs,
IndexBuildProtocol protocol);
/**
* The index build thread has been scheduled, from now on it should be possible to interrupt the
* index build by its opId.
*/
void onThreadScheduled(OperationContext* opCtx);
/**
* The index build setup is complete, but not yet in progress. From now onwards, teardown of
* index build state must be performed. This makes it eligible to be aborted in 'tryAbort'. Use
* the current OperationContext's opId as the means for interrupting the index build.
*/
void completeSetup();
/**
* Try to set the index build to in-progress state, does an interrupt check and throws if the
* build is already killed.
*/
void setInProgress(OperationContext* opCtx);
/**
* Indicate that the index build has attempted to vote for commit readiness. After calling this,
* the index build cannot vote for abort. Performs an interrupt check, in case the build was
* concurrently forced to self abort or received a killop, in which case the vote for abort is
* necessary.
*/
void setVotedForCommitReadiness(OperationContext* opCtx);
/**
* Returns true if this index build can still vote for abort. Voting for abort is not possible
* after the index build has voted for commit.
*/
bool canVoteForAbort() const;
/**
* This index build has completed successfully and there is no further work to be done.
*/
void commit(OperationContext* opCtx);
/**
* Only for two-phase index builds. Requests the primary to abort the build, and transitions
* into a waiting state.
*
* Returns true if the thread has transitioned into the waiting state.
* Returns false if the build is already in abort state. This can happen if the build detected
* an error while an external operation (e.g. a collection drop) is concurrently aborting it.
*/
bool requestAbortFromPrimary(const Status& abortStatus);
/**
* Returns timestamp for committing this index build.
* Returns null timestamp if not set.
*/
Timestamp getCommitTimestamp() const;
/**
* Called when handling a commitIndexIndexBuild oplog entry.
* This signal can be received during primary (drain phase), secondary,
* startup (startup recovery) and startup2 (initial sync).
*/
void onOplogCommit(bool isPrimary) const;
/**
* This index build has failed while running in the builder thread due to a non-shutdown reason.
*/
void abortSelf(OperationContext* opCtx);
/**
* This index build was interrupted because the server is shutting down.
*/
void abortForShutdown(OperationContext* opCtx);
/**
* Called when handling an abortIndexIndexBuild oplog entry.
* This signal can be received during primary (drain phase), secondary,
* startup (startup recovery) and startup2 (initial sync).
*/
void onOplogAbort(OperationContext* opCtx, const NamespaceString& nss) const;
/**
* Returns true if the index build requires reverting the setup after an abort.
*/
bool isAbortCleanUpRequired() const;
/**
* Returns true if this index build has been aborted.
*/
bool isAborted() const;
/**
* Returns true if this index is in the process of aborting.
*/
bool isAborting() const;
/**
* Returns true if this index build has been committed.
*/
bool isCommitted() const;
/**
* Returns true if this index build is being set up.
*/
bool isSettingUp() const;
/**
* Returns abort reason. Invariants if not in aborted state.
*/
std::string getAbortReason() const;
/**
* Returns abort status. Returns Status::OK() if not in aborted state.
*/
Status getAbortStatus() const;
/**
* Called when commit quorum is satisfied.
*/
void setCommitQuorumSatisfied(OperationContext* opCtx);
/**
* Called when we are about to complete a single-phased index build.
* Single-phase builds don't support commit quorum, but they must go through the process of
* updating their state to synchronize with concurrent abort operations
*/
void setSinglePhaseCommit(OperationContext* opCtx);
/**
* Attempt to signal the index build to commit and advance the index build to the
* kApplyCommitOplogEntry state. Returns true if successful and false if the attempt was
* unnecessful and the caller should retry.
*/
bool tryCommit(OperationContext* opCtx);
/**
* Attempt to abort an index build. Returns a flag indicating how the caller should proceed.
*/
enum class TryAbortResult { kRetry, kAlreadyAborted, kNotAborted, kContinueAbort };
TryAbortResult tryAbort(OperationContext* opCtx,
IndexBuildAction signalAction,
std::string reason);
/**
* Force an index build to abort on its own. Will return after signalling the index build or if
* the index build is already in progress of aborting. Does not wait.
*
* Returns true if we signalled the index build. Returns false if we did not, like when the
* index build is past a point of no return, like committing.
*/
bool forceSelfAbort(OperationContext* opCtx, const Status& error);
/**
* Called when the vote request command is scheduled by the task executor.
* Skips voting if we have already received commit or abort signal.
*/
void onVoteRequestScheduled(OperationContext* opCtx,
executor::TaskExecutor::CallbackHandle handle);
/**
* Clears vote request callback handle set in onVoteRequestScheduled().
*/
void clearVoteRequestCbk();
/**
* (Re-)initializes promise for next action.
*/
void resetNextActionPromise();
/**
* Returns a future that can be used to wait on 'waitForNextAction' for the next action to be
* available.
*/
SharedSemiFuture<IndexBuildAction> getNextActionFuture() const;
/**
* Gets next action from future if available.
* Returns boost::none if future is not ready.
*/
boost::optional<IndexBuildAction> getNextActionNoWait() const;
/**
* Called when we are trying to add a new index build 'other' that conflicts with this one.
* Returns a status that reflects whether this index build has been aborted or still active.
*/
Status onConflictWithNewIndexBuild(const ReplIndexBuildState& otherIndexBuild,
const std::string& otherIndexName) const;
/**
* Accessor and mutator for last optime in the oplog before the interceptors were installed.
* This supports resumable index builds.
*/
bool isResumable() const;
repl::OpTime getLastOpTimeBeforeInterceptors() const;
void setLastOpTimeBeforeInterceptors(repl::OpTime opTime);
void clearLastOpTimeBeforeInterceptors();
/**
* Appends index build info to builder.
*/
void appendBuildInfo(BSONObjBuilder* builder) const;
// Uniquely identifies this index build across replica set members.
const UUID buildUUID;
// Identifies the collection for which the index is being built. Collections can be renamed, so
// the collection UUID is used to maintain correct association.
const UUID collectionUUID;
// Identifies the database containing the index being built. Unlike collections, databases
// cannot be renamed.
const DatabaseName dbName;
// The names of the indexes being built.
const std::vector<std::string> indexNames;
// The specs of the index(es) being built. Facilitates new callers joining an active index
// build.
const std::vector<BSONObj> indexSpecs;
// Whether to do a two phase index build or a single phase index build like in v4.0. The FCV
// at the start of the index build will determine this setting.
const IndexBuildProtocol protocol;
/*
* Readers who read the commit quorum value from "config.system.indexBuilds" collection
* to decide if the commit quorum got satisfied for an index build, should take this lock in
* shared mode.
*
* Writers (setCommitQuorum) who update the commit quorum value of an existing index build
* entry in "config.system.indexBuilds" collection should take this lock in exclusive mode.
*
* Resource mutex will be initialized only for 2 phase index protocol.
* Mutex lock order:
* commitQuorumLock -> mutex.
*/
boost::optional<Lock::ResourceMutex> commitQuorumLock;
struct IndexCatalogStats {
int numIndexesBefore = 0;
int numIndexesAfter = 0;
};
// Tracks the index build stats that are returned to the caller upon success.
// Used only by the thread pool task for the index build. No synchronization necessary.
IndexCatalogStats stats;
// Communicates the final outcome of the index build to any callers waiting upon the associated
// SharedSemiFuture(s).
SharedPromise<IndexCatalogStats> sharedPromise;
private:
/*
* Determines whether to skip the index build state transition check.
* Index builder not using ReplIndexBuildState::waitForNextAction to signal primary and
* secondaries to commit or abort signal will violate index build state transition. So, we
* should skip state transition verification. Otherwise, we would invariant.
*/
bool _shouldSkipIndexBuildStateTransitionCheck(OperationContext* opCtx) const;
/**
* Updates the next action signal and cancels the vote request under lock.
* Used by IndexBuildsCoordinatorMongod only.
*/
void _setSignalAndCancelVoteRequestCbkIfActive(WithLock lk,
OperationContext* opCtx,
IndexBuildAction signal);
/**
* Clears vote request callback handle set in onVoteRequestScheduled().
*/
void _clearVoteRequestCbk(WithLock);
/**
* Cancels the vote request if valid and clears its callback handle.
*/
void _cancelAndClearVoteRequestCbk(WithLock, OperationContext* opCtx);
// Protects the state below.
mutable Mutex _mutex = MONGO_MAKE_LATCH("ReplIndexBuildState::_mutex");
// Primary and secondaries gets their commit or abort signal via this promise future pair.
std::unique_ptr<SharedPromise<IndexBuildAction>> _waitForNextAction;
// Maintains the state of the index build.
IndexBuildState _indexBuildState;
// Represents the callback handle for scheduled remote command "voteCommitIndexBuild".
executor::TaskExecutor::CallbackHandle _voteCmdCbkHandle;
// The OperationId of the index build. This allows external callers to interrupt the index build
// thread. Initialized in start() as we transition from setup to in-progress.
boost::optional<OperationId> _opId;
// The last optime in the oplog before the interceptors were installed. If this is a single
// phase index build, isn't running a hybrid index build, or isn't running during oplog
// application, this will be null.
repl::OpTime _lastOpTimeBeforeInterceptors;
// Set once setup is complete, indicating that a clean up is required in case of abort.
bool _cleanUpRequired = false;
// Set once before attempting to vote for commit readiness.
bool _votedForCommitReadiness = false;
};
} // namespace mongo
|
