Galera feature: retry applying of write sets at slave nodes #387
Conversation
| --connection node_2 | ||
| SET GLOBAL wsrep_applier_retry_count = 2; | ||
| SET GLOBAL debug_dbug = "+d,innodb_insert_fail:o,/dev/null"; | ||
| CALL mtr.add_suppression("WSREP: Event 3 Write_rows_v1 apply failed: 146, seqno 4"); |
There was a problem hiding this comment.
Better not to include sequence numbers in suppressions, the seqno will not remain the same if the test is run repeatedly or part of full MTR run.
There was a problem hiding this comment.
Ok, I will fix this as suggested.
| @@ -0,0 +1,40 @@ | |||
| # | |||
There was a problem hiding this comment.
The common practice in mtr testing is to bundle several test cases in same test file, this should yield faster testing. As galera_retry_applying and galera_retry_applying2 quite similar test cases, please accommodate both in galera_retry_applying.test and remove the galera_retry_applying2.test and result as well
| SET GLOBAL debug_dbug = "+d,innodb_insert_fail:o,/dev/null"; | ||
|
|
||
| --connection node_1 | ||
| SLEEP 1; |
There was a problem hiding this comment.
there should be no reason for sleep here, please remove it.
It is possible to add wait_condition for connection node_2 to wait until table t2 has been replicated there, but as we have wsrep_sync_wait=15 by default, there should be no absolute reason to wait for the replication
storage/innobase/row/row0ins.cc
Outdated
| } else if (0 == strcmp("test/t2", node->table->name.m_name)) { | ||
| err = DB_LOCK_WAIT_TIMEOUT; | ||
| goto error_handling;}}); | ||
|
|
||
| err = row_ins(node, thr); |
There was a problem hiding this comment.
using hard-coded table names here for the failure injection works, but is not elegant.
We have recently created similar failure injection for FK failure cases, where the failure injection happens for a given number of times, and execution succeeds after last failure. Please take a look at commit ea08242 and DBUG_EXECUTE_IF implementation in storage/innobase/row/row0ins.cc. Same approach should work here.
The FK failure injection has also hard coded part to fail exactly 4 times, I assume this could be parametrized and enable the mtr script to decide how many failures are wanted (if we want to take this to the next level)
There was a problem hiding this comment.
Removed one of the two hard-coded table names and replaced the other hard-coded name with the option variable wsrep_innodb_insert_fail_table.
There was a problem hiding this comment.
now failure injection is effective only for table t1. However, the mtr test phase 2 expects insert failure for table t2, so the test phase 2 is not effective atm
storage/innobase/row/row0ins.cc
Outdated
| } else if (0 == strcmp("test/t2", node->table->name.m_name)) { | ||
| err = DB_LOCK_WAIT_TIMEOUT; | ||
| goto error_handling;}}); | ||
|
|
||
| err = row_ins(node, thr); |
There was a problem hiding this comment.
now failure injection is effective only for table t1. However, the mtr test phase 2 expects insert failure for table t2, so the test phase 2 is not effective atm
| --echo Shutting down server ... | ||
| SET wsrep_on=OFF; | ||
| --source include/shutdown_mysqld.inc | ||
| --remove_file $MYSQLTEST_VARDIR/mysqld.2/data/grastate.dat |
There was a problem hiding this comment.
here is a race condition: previously a transaction was committed in node_1 and here node_2 will shutdown. But there is no check for the fate of the replicated INSERT from node_1: it may still be replicating or is currently applying or has already committed in node_2. For deterministic test behavior, the state of the INSERT transaction should be synced here or documented if it does not matter for the test result and can be safely ignored
There was a problem hiding this comment.
also, as this test phase is supposed to cause sure applier failure, the node should crash, so no need to shutdown it anymore.
There was a problem hiding this comment.
Removed table names in row0ins.c, but DBUG_EXECUTE_IF macros still
mention the test database test. There are now two separate DBUG_EXECUTE_IF labels:
innodb_insert_fail_once - for failing INSERT once inside InnoDB, and
innodb_insert_fail_always - for failing INSERT always inside InnoDB.
Synchronization.
There are now 4 synchronization points in the MTR test, two in each of
the 2 test cases:
-
Test case 1: wait till the insert transaction has been replicated and committed in node_2 (line 25)
-
Test case 1: wait till the transaction has been replicated and committed in node_2 (line 44)
-
Test case 2: wait for node_2 to crash (line 54)
-
Test case 2: wait till node 2 is back in the cluster (line 120)
The test does not work without shutting down the server on node 2 after applier failure.
|
|
||
| /* rollback to savepoint without telling Wsrep-lib */ | ||
| bool saved_wsrep_on = thd->variables.wsrep_on; | ||
| thd->variables.wsrep_on = false; |
There was a problem hiding this comment.
this thread is replication applier, so it must have wsrep_on == ON, therefore using saved_wsrep_on is redundant
sql/sys_vars.cc
Outdated
| VALID_RANGE(0, UINT_MAX), DEFAULT(0), BLOCK_SIZE(1), | ||
| NO_MUTEX_GUARD, NOT_IN_BINLOG); | ||
|
|
||
| #if defined(ENABLED_DEBUG_SYNC) |
There was a problem hiding this comment.
Adding a new system variable just for test fault injection does not sound like acceptable. This change will change the result set for all MTR tests which list system variable, and the change is depends on build configuration.
There was a problem hiding this comment.
Reverted the change that introduced a new system variable. So, now the table names for which inserts fail inside InnoDB are once again hard-coded in the InnoDB code.
Is there any other way (besides a system variable) to pass table names from MTR tests to InnoDB code at run-time?
If not, then hard-coding table names in InnoDB code can't be avoided for the MTR test galera.galera_retry_applying.
There was a problem hiding this comment.
as a reference, take a look at another PR: #385
which causes failure injection for given number of times. This is for all tables, but could be usable in your test as well.
There was a problem hiding this comment.
It would be possible to follow the method displayed in PR 385, but I think the way failure injection is now implemented inside InnoDB for INSERTs is actually simpler.
writesets at slave nodes (MariaDB#1619).
Remove debug messages.
If the variable "wsrep_retry_applying" is nonzero, then a temporary savepoint "wsrep-retry" is created for each apply of a writeset.
Merged "galera.galera_retry_applying2" into "galera.galera_retry_applying" and remove MTR test "galera.galera_retry_applying2".
… test "galera.galera_retry_applying".
Improved MTR test "galera.galera_retry_applying".
1) The retry applying feature did not work for streaming replication (SR)
transactions at slave nodes. The MTR tests
galera_sr.galera_sr_log_bin
galera_sr.galera_sr_gtid
galera_sr.mysql-wsrep-features-136
galera.mdev_18730
failed because of this. This problem was fixed by disabling retry
applying feature for SR transactions.
2) Some transactions (such as DDL statemens) automatically cleared
savepoints causing retry applying fail at slave nodes. As a result
of this the following MTR tests showed error voting behavior changes
galera.mysql-wsrep-216
galera.galera_vote_ddl
galera_3nodes.galera_toi_vote
galera_3nodes.galera_vote_rejoin_mysqldump
The problem was fixed by checking after every apply attempt that
the savepoint still exists.
moving failure inject from InnoDB code to MySQL code.
37c0855
to
2b477c4
Compare
|
Rebased the branch. |
Description
Initial version of the feature that allows retrying of applying of write sets at slave nodes. If Galera Cluster fails to apply a write set at a slave node, replication fails and the slave node is dropped from the cluster. However, the apply failure might be only temporary; a second apply attempt might succeed. Therefore, Galera Cluster might sometimes recover from such a failure by retrying applying of write sets at slave nodes.
This patch is quite separate from the server code and should not introduce any side-effects in other parts of the server.
How can this PR be tested?
This patch introduces two new MTR tests:
galera.galera_retry_applyingandgalera.galera_retry_applying2for testing the feature. In the first test, a retry succeeds and in the second test all retry attempts fail.The new MTR tests need some more work: the cleanup after the tests is not complete.