1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
|
/*-
* Copyright (c) 2008-2012 WiredTiger, Inc.
* All rights reserved.
*
* See the file LICENSE for redistribution information.
*/
#include "wt_internal.h"
/*
* __wt_txn_checkpoint --
* Checkpoint a database or a list of objects in the database.
*/
int
__wt_txn_checkpoint(WT_SESSION_IMPL *session, const char *cfg[])
{
WT_CONNECTION_IMPL *conn;
WT_BTREE *btree, *saved_btree;
WT_CONFIG targetconf;
WT_CONFIG_ITEM cval, k, v;
WT_DECL_ITEM(tmp);
WT_DECL_RET;
WT_SESSION *wt_session;
WT_TXN *txn;
void *saved_meta_next;
int ckpt_closed, target_list, tracking;
conn = S2C(session);
target_list = tracking = 0;
txn = &session->txn;
/*
* Only one checkpoint can be active at a time, and checkpoints must
* run in the same order as they update the metadata; we are using the
* schema lock to determine that ordering, so we can't move this to
* __session_checkpoint.
*
* Begin a transaction for the checkpoint.
*/
WT_ASSERT(session,
F_ISSET(session, WT_SESSION_SCHEMA_LOCKED) &&
!F_ISSET(txn, TXN_RUNNING));
__wt_spin_lock(session, &conn->metadata_lock);
wt_session = &session->iface;
WT_ERR(wt_session->begin_transaction(wt_session, "isolation=snapshot"));
WT_ERR(__wt_meta_track_on(session));
tracking = 1;
/* Step through the list of targets and checkpoint each one. */
WT_ERR(__wt_config_gets(session, cfg, "target", &cval));
WT_ERR(__wt_config_subinit(session, &targetconf, &cval));
while ((ret = __wt_config_next(&targetconf, &k, &v)) == 0) {
if (!target_list) {
WT_ERR(__wt_scr_alloc(session, 512, &tmp));
target_list = 1;
}
if (v.len != 0)
WT_ERR_MSG(session, EINVAL,
"invalid checkpoint target \"%s\": URIs may "
"require quoting",
(const char *)tmp->data);
WT_ERR(__wt_buf_fmt(session, tmp, "%.*s", (int)k.len, k.str));
if ((ret = __wt_schema_worker(
session, tmp->data, __wt_checkpoint, cfg, 0)) != 0)
WT_ERR_MSG(session, ret, "%s", (const char *)tmp->data);
}
WT_ERR_NOTFOUND_OK(ret);
if (!target_list) {
/*
* Possible checkpoint name. If checkpoints are named or we're
* dropping checkpoints, checkpoint both open and closed files;
* else, we only checkpoint open files.
*
* XXX
* We don't optimize unnamed checkpoints of a list of targets,
* we open the targets and checkpoint them even if they are
* quiescent and don't need a checkpoint, believing applications
* unlikely to checkpoint a list of closed targets.
*/
cval.len = 0;
ckpt_closed = 0;
WT_ERR(__wt_config_gets(session, cfg, "name", &cval));
if (cval.len != 0)
ckpt_closed = 1;
WT_ERR(__wt_config_gets(session, cfg, "drop", &cval));
if (cval.len != 0)
ckpt_closed = 1;
WT_ERR(ckpt_closed ?
__wt_meta_btree_apply(session, __wt_checkpoint, cfg) :
__wt_conn_btree_apply(session, __wt_checkpoint, cfg));
}
/* Checkpoint the metadata file. */
TAILQ_FOREACH(btree, &conn->btqh, q)
if (strcmp(btree->name, WT_METADATA_URI) == 0)
break;
if (btree == NULL)
WT_ERR_MSG(session, EINVAL,
"checkpoint unable to find open meta-data handle");
/*
* Disable metadata tracking during the metadata checkpoint.
*
* We don't lock old checkpoints in the metadata file: there is no way
* to open one. We are holding other handle locks, it is not safe to
* lock conn->spinlock.
*/
txn->isolation = TXN_ISO_READ_UNCOMMITTED;
saved_meta_next = session->meta_track_next;
session->meta_track_next = NULL;
saved_btree = session->btree;
session->btree = btree;
ret = __wt_checkpoint(session, cfg);
session->btree = saved_btree;
session->meta_track_next = saved_meta_next;
WT_ERR(ret);
err: /*
* XXX
* Rolling back the changes here is problematic.
*
* If we unroll here, we need a way to roll back changes to the avail
* list for each tree that was successfully synced before the error
* occurred. Otherwise, the next time we try this operation, we will
* try to free an old checkpoint again.
*
* OTOH, if we commit the changes after a failure, we have partially
* overwritten the checkpoint, so what ends up on disk is not
* consistent.
*/
txn->isolation = TXN_ISO_READ_UNCOMMITTED;
if (tracking)
WT_TRET(__wt_meta_track_off(session, ret != 0));
__wt_txn_release(session);
__wt_spin_unlock(session, &conn->metadata_lock);
__wt_scr_free(&tmp);
return (ret);
}
/*
* __ckpt_name_ok --
* Complain if our reserved checkpoint name is used.
*/
static int
__ckpt_name_ok(WT_SESSION_IMPL *session, const char *name, size_t len)
{
/*
* The internal checkpoint name is special, applications aren't allowed
* to use it. Be aggressive and disallow any matching prefix, it makes
* things easier when checking in other places.
*/
if (len < strlen(WT_CHECKPOINT))
return (0);
if (!WT_PREFIX_MATCH(name, WT_CHECKPOINT))
return (0);
WT_RET_MSG(session, EINVAL,
"the checkpoint name \"%s\" is reserved", WT_CHECKPOINT);
}
/*
* __drop --
* Drop all checkpoints with a specific name.
*/
static void
__drop(WT_CKPT *ckptbase, const char *name, size_t len)
{
WT_CKPT *ckpt;
/*
* If we're dropping internal checkpoints, match to the '.' separating
* the checkpoint name from the generational number, and take all that
* we can find. Applications aren't allowed to use any variant of this
* name, so the test is still pretty simple, if the leading bytes match,
* it's one we want to drop.
*/
if (strncmp(WT_CHECKPOINT, name, len) == 0) {
WT_CKPT_FOREACH(ckptbase, ckpt)
if (WT_PREFIX_MATCH(ckpt->name, WT_CHECKPOINT))
F_SET(ckpt, WT_CKPT_DELETE);
} else
WT_CKPT_FOREACH(ckptbase, ckpt)
if (WT_STRING_MATCH(ckpt->name, name, len))
F_SET(ckpt, WT_CKPT_DELETE);
}
/*
* __drop_from --
* Drop all checkpoints after, and including, the named checkpoint.
*/
static void
__drop_from(WT_CKPT *ckptbase, const char *name, size_t len)
{
WT_CKPT *ckpt;
int matched;
/*
* There's a special case -- if the name is "all", then we delete all
* of the checkpoints.
*/
if (WT_STRING_MATCH("all", name, len)) {
WT_CKPT_FOREACH(ckptbase, ckpt)
F_SET(ckpt, WT_CKPT_DELETE);
return;
}
/*
* We use the first checkpoint we can find, that is, if there are two
* checkpoints with the same name in the list, we'll delete from the
* first match to the end.
*/
matched = 0;
WT_CKPT_FOREACH(ckptbase, ckpt) {
if (!matched && !WT_STRING_MATCH(ckpt->name, name, len))
continue;
matched = 1;
F_SET(ckpt, WT_CKPT_DELETE);
}
}
/*
* __drop_to --
* Drop all checkpoints before, and including, the named checkpoint.
*/
static void
__drop_to(WT_CKPT *ckptbase, const char *name, size_t len)
{
WT_CKPT *ckpt, *mark;
/*
* We use the last checkpoint we can find, that is, if there are two
* checkpoints with the same name in the list, we'll delete from the
* beginning to the second match, not the first.
*/
mark = NULL;
WT_CKPT_FOREACH(ckptbase, ckpt)
if (WT_STRING_MATCH(ckpt->name, name, len))
mark = ckpt;
if (mark == NULL)
return;
WT_CKPT_FOREACH(ckptbase, ckpt) {
F_SET(ckpt, WT_CKPT_DELETE);
if (ckpt == mark)
break;
}
}
/*
* __wt_checkpoint --
* Checkpoint a tree.
*/
int
__wt_checkpoint(WT_SESSION_IMPL *session, const char *cfg[])
{
WT_BTREE *btree;
WT_CKPT *ckpt, *ckptbase;
WT_CONFIG dropconf;
WT_CONFIG_ITEM cval, k, v;
WT_CONNECTION_IMPL *conn;
WT_DECL_RET;
WT_TXN *txn;
WT_TXN_ISOLATION saved_isolation;
const char *name;
int deleted, force, is_checkpoint, track_ckpt;
char *name_alloc;
conn = S2C(session);
btree = session->btree;
ckpt = ckptbase = NULL;
name_alloc = NULL;
txn = &session->txn;
saved_isolation = txn->isolation;
track_ckpt = 1;
/*
* We're called in two ways: either because a handle is closing or
* session.checkpoint was called, figure it out.
*/
is_checkpoint = cfg == NULL ? 0 : 1;
/*
* Checkpoint handles are read-only by definition and don't participate
* in checkpoints. Closing one discards its blocks, otherwise there's
* no work to do.
*/
if (btree->checkpoint != NULL)
return (is_checkpoint ? 0 :
__wt_bt_cache_flush(
session, NULL, WT_SYNC_DISCARD_NOWRITE));
/*
* If closing a file that's never been modified, discard its blocks.
* If checkpoint of a file that's never been modified, we may still
* have to checkpoint it, we'll test again once we understand the
* nature of the checkpoint.
*/
if (!btree->modified && !is_checkpoint)
return (__wt_bt_cache_flush(
session, NULL, WT_SYNC_DISCARD_NOWRITE));
/*
* Get the list of checkpoints for this file. If there's no reference
* to the file in the metadata (the file is dead), then discard it from
* the cache without bothering to write any dirty pages.
*/
if ((ret = __wt_meta_ckptlist_get(
session, btree->name, &ckptbase)) == WT_NOTFOUND)
return (__wt_bt_cache_flush(
session, NULL, WT_SYNC_DISCARD_NOWRITE));
WT_ERR(ret);
/* This may be a named checkpoint, check the configuration. */
cval.len = 0;
if (cfg != NULL)
WT_ERR(__wt_config_gets(session, cfg, "name", &cval));
if (cval.len == 0)
name = WT_CHECKPOINT;
else {
WT_ERR(__ckpt_name_ok(session, cval.str, cval.len));
WT_ERR(__wt_strndup(session, cval.str, cval.len, &name_alloc));
name = name_alloc;
}
/* We may be dropping specific checkpoints, check the configuration. */
if (cfg != NULL) {
cval.len = 0;
WT_ERR(__wt_config_gets(session, cfg, "drop", &cval));
if (cval.len != 0) {
WT_ERR(__wt_config_subinit(session, &dropconf, &cval));
while ((ret =
__wt_config_next(&dropconf, &k, &v)) == 0) {
/* Disallow the reserved checkpoint name. */
if (v.len == 0)
WT_ERR(__ckpt_name_ok(
session, k.str, k.len));
else
WT_ERR(__ckpt_name_ok(
session, v.str, v.len));
if (v.len == 0)
__drop(ckptbase, k.str, k.len);
else if (WT_STRING_MATCH("from", k.str, k.len))
__drop_from(ckptbase, v.str, v.len);
else if (WT_STRING_MATCH("to", k.str, k.len))
__drop_to(ckptbase, v.str, v.len);
else
WT_ERR_MSG(session, EINVAL,
"unexpected value for checkpoint "
"key: %.*s",
(int)k.len, k.str);
}
WT_ERR_NOTFOUND_OK(ret);
}
}
/* Drop checkpoints with the same name as the one we're taking. */
__drop(ckptbase, name, strlen(name));
/*
* Check for clean objects not requiring a checkpoint.
*
* If we're closing a handle, and the object is clean, we can skip the
* checkpoint, whatever checkpoints we have are sufficient. (We might
* not have any checkpoints if the object was never modified, and that's
* OK: the object creation code doesn't mark the tree modified so we can
* skip newly created trees here.)
*
* If the application repeatedly checkpoints an object (imagine hourly
* checkpoints using the same explicit or internal name), there's no
* reason to repeat the checkpoint for clean objects. The test is if
* the only checkpoint we're deleting is the last one in the list and
* it has the same name as the checkpoint we're about to take, skip the
* work. (We can't skip checkpoints that delete more than the last
* checkpoint because deleting those checkpoints might free up space in
* the file.) This means an application toggling between two (or more)
* checkpoint names will repeatedly take empty checkpoints, but that's
* not likely enough to make detection worthwhile.
*
* Checkpoint read-only objects otherwise: the application must be able
* to open the checkpoint in a cursor after taking any checkpoint, which
* means it must exist.
*/
force = 0;
if (!btree->modified) {
ret = __wt_config_gets(session, cfg, "force", &cval);
if (ret != 0 && ret != WT_NOTFOUND)
WT_ERR(ret);
if (ret == 0 && cval.val != 0)
force = 1;
}
if (!btree->modified && !force) {
if (!is_checkpoint)
goto skip;
deleted = 0;
WT_CKPT_FOREACH(ckptbase, ckpt)
if (F_ISSET(ckpt, WT_CKPT_DELETE))
++deleted;
/*
* Complicated test: if we only deleted a single checkpoint, and
* it was the last checkpoint in the object, and it has the same
* name as the checkpoint we're taking (correcting for internal
* checkpoint names with their generational suffix numbers), we
* can skip the checkpoint, there's nothing to do.
*/
if (deleted == 1 &&
F_ISSET(ckpt - 1, WT_CKPT_DELETE) &&
(strcmp(name, (ckpt - 1)->name) == 0 ||
(WT_PREFIX_MATCH(name, WT_CHECKPOINT) &&
WT_PREFIX_MATCH((ckpt - 1)->name, WT_CHECKPOINT))))
goto skip;
}
/* Add a new checkpoint entry at the end of the list. */
WT_CKPT_FOREACH(ckptbase, ckpt)
;
WT_ERR(__wt_strdup(session, name, &ckpt->name));
F_SET(ckpt, WT_CKPT_ADD);
/*
* Lock the checkpoints that will be deleted.
*
* Checkpoints are only locked when tracking is enabled, which covers
* sync and drop operations, but not close. The reasoning is that
* there should be no access to a checkpoint during close, because any
* thread accessing a checkpoint will also have the current file handle
* open.
*/
if (WT_META_TRACKING(session))
WT_CKPT_FOREACH(ckptbase, ckpt) {
if (!F_ISSET(ckpt, WT_CKPT_DELETE))
continue;
/*
* We can't drop/update checkpoints if a backup cursor
* is open. WiredTiger checkpoints are uniquely named
* and it's OK to have multiple in the system: clear the
* delete flag, and otherwise fail.
*/
if (conn->ckpt_backup) {
if (WT_PREFIX_MATCH(
ckpt->name, WT_CHECKPOINT)) {
F_CLR(ckpt, WT_CKPT_DELETE);
continue;
}
WT_ERR_MSG(session, EBUSY,
"named checkpoints cannot be created if "
"backup cursors are open");
}
/*
* We can't drop/update checkpoints if referenced by a
* cursor. WiredTiger checkpoints are uniquely named
* and it's OK to have multiple in the system: clear the
* delete flag, and otherwise fail.
*/
ret =
__wt_session_lock_checkpoint(session, ckpt->name);
if (ret == 0)
continue;
if (ret == EBUSY &&
WT_PREFIX_MATCH(ckpt->name, WT_CHECKPOINT)) {
F_CLR(ckpt, WT_CKPT_DELETE);
continue;
}
WT_ERR_MSG(session, ret,
"checkpoints cannot be dropped when in-use");
}
/*
* There are special files: those being bulk-loaded, salvaged, upgraded
* or verified during the checkpoint. We have to do something for those
* objects because a checkpoint is an external name the application can
* reference and the name must exist no matter what's happening during
* the checkpoint. For bulk-loaded files, we could block until the load
* completes, checkpoint the partial load, or magic up an empty-file
* checkpoint. The first is too slow, the second is insane, so do the
* third.
* Salvage, upgrade and verify don't currently require any work, all
* three hold the schema lock, blocking checkpoints. If we ever want to
* fix that (and I bet we eventually will, at least for verify), we can
* copy the last checkpoint the file has. That works if we guarantee
* salvage, upgrade and verify act on objects with previous checkpoints
* (true if handles are closed/re-opened between object creation and a
* subsequent salvage, upgrade or verify operation). Presumably,
* salvage and upgrade will discard all previous checkpoints when they
* complete, which is fine with us. This change will require reference
* counting checkpoints, and once that's done, we should use checkpoint
* copy instead of forcing checkpoints on clean objects to associate
* names with checkpoints.
*/
if (is_checkpoint)
switch (F_ISSET(btree, WT_BTREE_SPECIAL_FLAGS)) {
case 0:
break;
case WT_BTREE_BULK:
/*
* The only checkpoints a bulk-loaded file should have
* are fake ones we created without the underlying block
* manager. I'm leaving this code here because it's a
* cheap test and a nasty race.
*/
WT_CKPT_FOREACH(ckptbase, ckpt)
if (!F_ISSET(ckpt, WT_CKPT_ADD | WT_CKPT_FAKE))
WT_ERR_MSG(session, ret,
"block-manager checkpoint found "
"for a bulk-loaded file");
track_ckpt = 0;
goto fake;
case WT_BTREE_SALVAGE:
case WT_BTREE_UPGRADE:
case WT_BTREE_VERIFY:
WT_ERR_MSG(session, EINVAL,
"checkpoints are blocked during salvage, upgrade "
"or verify operations");
}
/*
* If an object has never been used (in other words, if it could become
* a bulk-loaded file), then we must fake the checkpoint. This is good
* because we don't write physical checkpoint blocks for just-created
* files, but it's not just a good idea. The reason is because deleting
* a physical checkpoint requires writing the file, and fake checkpoints
* can't write the file. If you (1) create a physical checkpoint for an
* empty file which writes blocks, (2) start bulk-loading records into
* the file, (3) during the bulk-load perform another checkpoint with
* the same name; in order to keep from having two checkpoints with the
* same name you would have to use the bulk-load's fake checkpoint to
* delete a physical checkpoint, and that will end in tears.
*/
if (is_checkpoint)
if (btree->bulk_load_ok) {
track_ckpt = 0;
goto fake;
}
/*
* Mark the root page dirty to ensure something gets written.
*
* Don't test the tree modify flag first: if the tree is modified,
* we must write the root page anyway, we're not adding additional
* writes to the process. If the tree is not modified, we have to
* dirty the root page to ensure something gets written. This is
* really about paranoia: if the tree modification value gets out of
* sync with the set of dirty pages (modify is set, but there are no
* dirty pages), we do a checkpoint without any writes, no checkpoint
* is created, and then things get bad.
*/
WT_ERR(__wt_bt_cache_force_write(session));
/*
* Clear the tree's modified flag; any changes before we clear the flag
* are guaranteed to be part of this checkpoint (unless reconciliation
* skips updates for transactional reasons), and changes subsequent to
* the checkpoint start, which might not be included, will re-set the
* modified flag. The "unless reconciliation skips updates" problem is
* handled in the reconciliation code: if reconciliation skips updates,
* it sets the modified flag itself. Use a full barrier so we get the
* store done quickly, this isn't a performance path.
*/
btree->modified = 0;
WT_FULL_BARRIER();
/* If closing a handle, include everything in the checkpoint. */
if (!is_checkpoint)
txn->isolation = TXN_ISO_READ_UNCOMMITTED;
/* Flush the file from the cache, creating the checkpoint. */
WT_ERR(__wt_bt_cache_flush(session,
ckptbase, is_checkpoint ? WT_SYNC : WT_SYNC_DISCARD));
fake:
/* Update the object's metadata. */
txn->isolation = TXN_ISO_READ_UNCOMMITTED;
ret = __wt_meta_ckptlist_set(session, btree->name, ckptbase);
WT_ERR(ret);
/*
* If we wrote a checkpoint (rather than faking one), pages may be
* available for re-use. If tracking enabled, defer making pages
* available until transaction end. The exception is if the handle
* is being discarded, in which case the handle will be gone by the
* time we try to apply or unroll the meta tracking event.
*/
if (track_ckpt) {
if (WT_META_TRACKING(session) && is_checkpoint)
WT_ERR(__wt_meta_track_checkpoint(session));
else
WT_ERR(__wt_bm_checkpoint_resolve(session));
}
err:
skip: __wt_meta_ckptlist_free(session, ckptbase);
__wt_free(session, name_alloc);
txn->isolation = saved_isolation;
return (ret);
}
|