1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
|
/**
* Copyright (C) 2018-present MongoDB, Inc.
*
* This program is free software: you can redistribute it and/or modify
* it under the terms of the Server Side Public License, version 1,
* as published by MongoDB, Inc.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* Server Side Public License for more details.
*
* You should have received a copy of the Server Side Public License
* along with this program. If not, see
* <http://www.mongodb.com/licensing/server-side-public-license>.
*
* As a special exception, the copyright holders give permission to link the
* code of portions of this program with the OpenSSL library under certain
* conditions as described in each individual source file and distribute
* linked combinations including the program with the OpenSSL library. You
* must comply with the Server Side Public License in all respects for
* all of the code used other than as permitted herein. If you modify file(s)
* with this exception, you may extend this exception to your version of the
* file(s), but you are not obligated to do so. If you do not wish to do so,
* delete this exception statement from your version. If you delete this
* exception statement from all source files in the program, then also delete
* it in the license file.
*/
#pragma once
#include <string>
#include <vector>
#include "mongo/base/status.h"
#include "mongo/bson/bsonobj.h"
#include "mongo/bson/timestamp.h"
#include "mongo/db/storage/temporary_record_store.h"
#include "mongo/util/functional.h"
#include "mongo/util/str.h"
namespace mongo {
class JournalListener;
class DurableCatalog;
class KVEngine;
class OperationContext;
class RecoveryUnit;
class SnapshotManager;
class StorageEngineLockFile;
class StorageEngineMetadata;
struct StorageGlobalParams;
/**
* The StorageEngine class is the top level interface for creating a new storage engine. All
* StorageEngine(s) must be registered by calling registerFactory in order to possibly be
* activated.
*/
class StorageEngine {
public:
/**
* When the storage engine needs to know how much oplog to preserve for the sake of active
* transactions, it executes a callback that returns either the oldest active transaction
* timestamp, or boost::none if there is no active transaction, or an error if it fails.
*/
using OldestActiveTransactionTimestampResult = StatusWith<boost::optional<Timestamp>>;
using OldestActiveTransactionTimestampCallback =
std::function<OldestActiveTransactionTimestampResult(Timestamp stableTimestamp)>;
/**
* The interface for creating new instances of storage engines.
*
* A storage engine provides an instance of this class (along with an associated
* name) to the global environment, which then sets the global storage engine
* according to the provided configuration parameter.
*/
class Factory {
public:
virtual ~Factory() {}
/**
* Return a new instance of the StorageEngine. The lockFile parameter may be null if
* params.readOnly is set. Caller owns the returned pointer.
*/
virtual StorageEngine* create(const StorageGlobalParams& params,
const StorageEngineLockFile* lockFile) const = 0;
/**
* Returns the name of the storage engine.
*
* Implementations that change the value of the returned string can cause
* data file incompatibilities.
*/
virtual StringData getCanonicalName() const = 0;
/**
* Validates creation options for a collection in the StorageEngine.
* Returns an error if the creation options are not valid.
*
* Default implementation only accepts empty objects (no options).
*/
virtual Status validateCollectionStorageOptions(const BSONObj& options) const {
if (options.isEmpty())
return Status::OK();
return Status(ErrorCodes::InvalidOptions,
str::stream() << "storage engine " << getCanonicalName()
<< " does not support any collection storage options");
}
/**
* Validates creation options for an index in the StorageEngine.
* Returns an error if the creation options are not valid.
*
* Default implementation only accepts empty objects (no options).
*/
virtual Status validateIndexStorageOptions(const BSONObj& options) const {
if (options.isEmpty())
return Status::OK();
return Status(ErrorCodes::InvalidOptions,
str::stream() << "storage engine " << getCanonicalName()
<< " does not support any index storage options");
}
/**
* Validates existing metadata in the data directory against startup options.
* Returns an error if the storage engine initialization should not proceed
* due to any inconsistencies between the current startup options and the creation
* options stored in the metadata.
*/
virtual Status validateMetadata(const StorageEngineMetadata& metadata,
const StorageGlobalParams& params) const = 0;
/**
* Returns a new document suitable for storing in the data directory metadata.
* This document will be used by validateMetadata() to check startup options
* on restart.
*/
virtual BSONObj createMetadataOptions(const StorageGlobalParams& params) const = 0;
/**
* Returns whether the engine supports read-only mode. If read-only mode is enabled, the
* engine may be started on a read-only filesystem (either mounted read-only or with
* read-only permissions). If readOnly mode is enabled, it is undefined behavior to call
* methods that write data (e.g. insertRecord). This method is provided on the Factory
* because it must be called before the storageEngine is instantiated.
*/
virtual bool supportsReadOnly() const {
return false;
}
};
/**
* The destructor should only be called if we are tearing down but not exiting the process.
*/
virtual ~StorageEngine() {}
/**
* Called after the globalStorageEngine pointer has been set up, before any other methods
* are called. Any initialization work that requires the ability to create OperationContexts
* should be done here rather than in the constructor.
*/
virtual void finishInit() {}
/**
* Returns a new interface to the storage engine's recovery unit. The recovery
* unit is the durability interface. For details, see recovery_unit.h
*
* Caller owns the returned pointer.
*/
virtual RecoveryUnit* newRecoveryUnit() = 0;
/**
* List the databases stored in this storage engine.
*/
virtual std::vector<std::string> listDatabases() const = 0;
/**
* Returns whether the storage engine supports its own locking locking below the collection
* level. If the engine returns true, MongoDB will acquire intent locks down to the
* collection level and will assume that the engine will ensure consistency at the level of
* documents. If false, MongoDB will lock the entire collection in Shared/Exclusive mode
* for read/write operations respectively.
*/
virtual bool supportsDocLocking() const = 0;
/**
* Returns whether the storage engine supports locking at a database level.
*/
virtual bool supportsDBLocking() const {
return true;
}
/**
* Returns whether the storage engine supports capped collections.
*/
virtual bool supportsCappedCollections() const {
return true;
}
/**
* Returns whether the engine supports a journalling concept or not.
*/
virtual bool isDurable() const = 0;
/**
* Returns true if the engine does not persist data to disk; false otherwise.
*/
virtual bool isEphemeral() const = 0;
/**
* Populates and tears down in-memory data structures, respectively. Only required for storage
* engines that support recoverToStableTimestamp().
*
* Must be called with the global lock acquired in exclusive mode.
*/
virtual void loadCatalog(OperationContext* opCtx) {}
virtual void closeCatalog(OperationContext* opCtx) {}
/**
* Closes all file handles associated with a database.
*/
virtual Status closeDatabase(OperationContext* opCtx, StringData db) = 0;
/**
* Deletes all data and metadata for a database.
*/
virtual Status dropDatabase(OperationContext* opCtx, StringData db) = 0;
/**
* @return number of files flushed
*/
virtual int flushAllFiles(OperationContext* opCtx, bool sync) = 0;
/**
* Transitions the storage engine into backup mode.
*
* During backup mode the storage engine must stabilize its on-disk files, and avoid
* any internal processing that may involve file I/O, such as online compaction, so
* a filesystem level backup may be performed.
*
* Storage engines that do not support this feature should use the default implementation.
* Storage engines that implement this must also implement endBackup().
*
* For Storage engines that implement beginBackup the _inBackupMode variable is provided
* to avoid multiple instance enterting/leaving backup concurrently.
*
* If this function returns an OK status, MongoDB can call endBackup to signal the storage
* engine that filesystem writes may continue. This function should return a non-OK status if
* filesystem changes cannot be stopped to allow for online backup. If the function should be
* retried, returns a non-OK status. This function may throw a WriteConflictException, which
* should trigger a retry by the caller. All other exceptions should be treated as errors.
*/
virtual Status beginBackup(OperationContext* opCtx) {
return Status(ErrorCodes::CommandNotSupported,
"The current storage engine doesn't support backup mode");
}
/**
* Transitions the storage engine out of backup mode.
*
* Storage engines that do not support this feature should use the default implementation.
*
* Storage engines implementing this feature should fassert when unable to leave backup mode.
*/
virtual void endBackup(OperationContext* opCtx) {
return;
}
virtual StatusWith<std::vector<std::string>> beginNonBlockingBackup(OperationContext* opCtx) {
return Status(ErrorCodes::CommandNotSupported,
"The current storage engine does not support a concurrent mode.");
}
virtual void endNonBlockingBackup(OperationContext* opCtx) {
return;
}
virtual StatusWith<std::vector<std::string>> extendBackupCursor(OperationContext* opCtx) {
return Status(ErrorCodes::CommandNotSupported,
"The current storage engine does not support a concurrent mode.");
}
/**
* Recover as much data as possible from a potentially corrupt RecordStore.
* This only recovers the record data, not indexes or anything else.
*
* Generally, this method should not be called directly except by the repairDatabase()
* free function.
*/
virtual Status repairRecordStore(OperationContext* opCtx, const NamespaceString& nss) = 0;
/**
* Creates a temporary RecordStore on the storage engine. This record store will drop itself
* automatically when it goes out of scope. This means the TemporaryRecordStore should not exist
* any longer than the OperationContext used to create it. On startup, the storage engine will
* drop any un-dropped temporary record stores.
*/
virtual std::unique_ptr<TemporaryRecordStore> makeTemporaryRecordStore(
OperationContext* opCtx) = 0;
/**
* This method will be called before there is a clean shutdown. Storage engines should
* override this method if they have clean-up to do that is different from unclean shutdown.
* MongoDB will not call into the storage subsystem after calling this function.
*
* On error, the storage engine should assert and crash.
* There is intentionally no uncleanShutdown().
*/
virtual void cleanShutdown() = 0;
/**
* Returns the SnapshotManager for this StorageEngine or NULL if not supported.
*
* Pointer remains owned by the StorageEngine, not the caller.
*/
virtual SnapshotManager* getSnapshotManager() const {
return nullptr;
}
/**
* Sets a new JournalListener, which is used by the storage engine to alert the rest of the
* system about journaled write progress.
*/
virtual void setJournalListener(JournalListener* jl) = 0;
/**
* Returns whether the storage engine supports "recover to stable timestamp". Returns true
* if the storage engine supports "recover to stable timestamp" but does not currently have
* a stable timestamp. In that case StorageEngine::recoverToStableTimestamp() will return
* a bad status.
*/
virtual bool supportsRecoverToStableTimestamp() const {
return false;
}
/**
* Returns whether the storage engine can provide a recovery timestamp.
*/
virtual bool supportsRecoveryTimestamp() const {
return false;
}
/**
* Returns true if the storage engine supports the readConcern level "snapshot".
*/
virtual bool supportsReadConcernSnapshot() const {
return false;
}
virtual bool supportsReadConcernMajority() const {
return false;
}
/**
* Returns true if the storage engine uses oplog stones to more finely control
* deletion of oplog history, instead of the standard capped collection controls on
* the oplog collection size.
*/
virtual bool supportsOplogStones() const {
return false;
}
/**
* Returns true if the storage engine supports deferring collection drops until the the storage
* engine determines that the storage layer artifacts for the pending drops are no longer needed
* based on the stable and oldest timestamps.
*/
virtual bool supportsPendingDrops() const = 0;
/**
* Returns a set of drop pending idents inside the storage engine.
*/
virtual std::set<std::string> getDropPendingIdents() const = 0;
/**
* Clears list of drop-pending idents in the storage engine.
* Used primarily by rollback after recovering to a stable timestamp.
*/
virtual void clearDropPendingState() = 0;
/**
* Recovers the storage engine state to the last stable timestamp. "Stable" in this case
* refers to a timestamp that is guaranteed to never be rolled back. The stable timestamp
* used should be one provided by StorageEngine::setStableTimestamp().
*
* The "local" database is exempt and should not roll back any state except for
* "local.replset.minvalid" which must roll back to the last stable timestamp.
*
* If successful, returns the timestamp that the storage engine recovered to.
*
* fasserts if StorageEngine::supportsRecoverToStableTimestamp() would return
* false. Returns a bad status if there is no stable timestamp to recover to.
*
* It is illegal to call this concurrently with `setStableTimestamp` or
* `setInitialDataTimestamp`.
*/
virtual StatusWith<Timestamp> recoverToStableTimestamp(OperationContext* opCtx) {
fassertFailed(40547);
}
/**
* Returns the stable timestamp that the storage engine recovered to on startup. If the
* recovery point was not stable, returns "none".
* fasserts if StorageEngine::supportsRecoverToStableTimestamp() would return false.
*/
virtual boost::optional<Timestamp> getRecoveryTimestamp() const {
MONGO_UNREACHABLE;
}
/**
* Returns a timestamp that is guaranteed to exist on storage engine recovery to a stable
* timestamp. This indicates when the storage engine can safely rollback to stable; and for
* durable engines, it is also the guaranteed minimum stable recovery point on server restart
* after crash or shutdown.
*
* fasserts if StorageEngine::supportsRecoverToStableTimestamp() would return false. Returns
* boost::none if the recovery time has not yet been established. Replication recoverable
* rollback may not succeed before establishment, and restart will require resync.
*/
virtual boost::optional<Timestamp> getLastStableRecoveryTimestamp() const {
MONGO_UNREACHABLE;
}
/**
* Sets the highest timestamp at which the storage engine is allowed to take a checkpoint. This
* timestamp must not decrease unless force=true is set, in which case we force the stable
* timestamp, the oldest timestamp, and the commit timestamp backward.
*/
virtual void setStableTimestamp(Timestamp stableTimestamp, bool force = false) {}
/**
* Tells the storage engine the timestamp of the data at startup. This is necessary because
* timestamps are not persisted in the storage layer.
*/
virtual void setInitialDataTimestamp(Timestamp timestamp) {}
/**
* Uses the current stable timestamp to set the oldest timestamp for which the storage engine
* must maintain snapshot history through.
*
* oldest_timestamp will be set to stable_timestamp adjusted by
* 'targetSnapshotHistoryWindowInSeconds' to create a window of available snapshots on the
* storage engine from oldest to stable. Furthermore, oldest_timestamp will never be set ahead
* of the oplog read timestamp, ensuring the oplog reader's 'read_timestamp' can always be
* serviced.
*/
virtual void setOldestTimestampFromStable() {}
/**
* Sets the oldest timestamp for which the storage engine must maintain snapshot history
* through. Additionally, all future writes must be newer or equal to this value.
*/
virtual void setOldestTimestamp(Timestamp timestamp) {}
/**
* Sets a callback which returns the timestamp of the oldest oplog entry involved in an
* active MongoDB transaction. The storage engine calls this function to determine how much
* oplog it must preserve.
*/
virtual void setOldestActiveTransactionTimestampCallback(
OldestActiveTransactionTimestampCallback callback){};
/**
* Indicates whether the storage engine cache is under pressure.
*
* Retrieves a cache pressure value in the range [0, 100] from the storage engine, and compares
* it against storageGlobalParams.cachePressureThreshold, a dynamic server parameter, to
* determine whether cache pressure is too high.
*/
virtual bool isCacheUnderPressure(OperationContext* opCtx) const {
return false;
}
/**
* For unit tests only. Sets the cache pressure value with which isCacheUnderPressure()
* evalutates to 'pressure'.
*/
virtual void setCachePressureForTest(int pressure) {}
/**
* Notifies the storage engine that a replication batch has completed.
* This means that all the writes associated with the oplog entries in the batch are
* finished and no new writes with timestamps associated with those oplog entries will show
* up in the future.
* This function can be used to ensure oplog visibility rules are not broken, for example.
*/
virtual void replicationBatchIsComplete() const {};
// (CollectionName, IndexName)
typedef std::pair<std::string, std::string> CollectionIndexNamePair;
/**
* Drop abandoned idents. In the successful case, returns a list of collection, index name
* pairs to rebuild.
*/
virtual StatusWith<std::vector<CollectionIndexNamePair>> reconcileCatalogAndIdents(
OperationContext* opCtx) {
return std::vector<CollectionIndexNamePair>();
};
/**
* Returns the all_durable timestamp. All transactions with timestamps earlier than the
* all_durable timestamp are committed. Only storage engines that support document level locking
* must provide an implementation. Other storage engines may provide a no-op implementation.
*
* The all_durable timestamp only includes non-prepared transactions that have been given a
* commit_timestamp and prepared transactions that have been given a durable_timestamp.
* Previously, the deprecated all_committed timestamp would also include prepared transactions
* that were prepared but not committed which could make the stable timestamp briefly jump back.
*/
virtual Timestamp getAllDurableTimestamp() const = 0;
/**
* Returns the oldest read timestamp in use by an open transaction. Storage engines that support
* the 'snapshot' ReadConcern must provide an implementation. Other storage engines may provide
* a no-op implementation.
*/
virtual Timestamp getOldestOpenReadTimestamp() const = 0;
/**
* Returns the minimum possible Timestamp value in the oplog that replication may need for
* recovery in the event of a crash.
*
* Returns boost::none when called on an ephemeral database.
*/
virtual boost::optional<Timestamp> getOplogNeededForCrashRecovery() const = 0;
/**
* Returns the path to the directory which has the data files of database with `dbName`.
*/
virtual std::string getFilesystemPathForDb(const std::string& dbName) const = 0;
/**
* Returns whethers the data files are compatible with the current code:
*
* - Status::OK() if the data files are compatible with the current code.
*
* - ErrorCodes::CanRepairToDowngrade if the data files are incompatible with the current
* code, but a --repair would make them compatible. For example, when rebuilding all indexes
* in the data files would resolve the incompatibility.
*
* - ErrorCodes::MustUpgrade if the data files are incompatible with the current code and a
* newer version is required to start up.
*/
virtual Status currentFilesCompatible(OperationContext* opCtx) const = 0;
virtual int64_t sizeOnDiskForDb(OperationContext* opCtx, StringData dbName) = 0;
virtual KVEngine* getEngine() = 0;
virtual const KVEngine* getEngine() const = 0;
virtual DurableCatalog* getCatalog() = 0;
virtual const DurableCatalog* getCatalog() const = 0;
};
} // namespace mongo
|
