MB-33860 [SR]: Implement High Prepared Seqno (HPS) logic in PassiveDM

The HPS represents the last locally-satisfied Prepare on a node.
As per In-Order Ack/Commit, the HPS is updated within the
"durability-fence" constraint. See DesignDoc for details.

Practically, an HPS update is triggered in response of one of the
following events:
1) A new Prepare is queued into the PassiveDM. The new Prepare may be
  locally-satisfied immediatelly.
2) The Flusher has persisted some Prepare. That may "move" the
  durability-fence onward and satisfy a number of pending Prepares.

In follow-up patches, the HPS will be the quantity that Replica nodes
ack back to the Active.

Change-Id: I95b31c1cb15f929d20fcc2c67e23debd9755e7f8
Reviewed-on: http://review.couchbase.org/108027
Reviewed-by: Dave Rigby <[email protected]>
Tested-by: Dave Rigby <[email protected]>

Author: paolococchi

engines/ep/src/durability/active_durability_monitor.h

@@ -94,13 +94,7 @@ class ActiveDurabilityMonitor : public DurabilityMonitor {
      */
     void processTimeout(std::chrono::steady_clock::time_point asOf);
 
-    /**
-     * Advances the local disk-tracking to the last persisted seqno for VBucket.
-     * Expected to be called by the Flusher.
-     *
-     * @throw std::logic_error if the replication-chain is not set
-     */
-    void notifyLocalPersistence();
+    void notifyLocalPersistence() override;
 
     /**
      * Output DurabiltyMonitor stats.

engines/ep/src/durability/durability_monitor.h

@@ -17,6 +17,7 @@
 #pragma once
 
 #include "memcached/engine_common.h"
+#include "monotonic.h"
 #include <list>
 
 /*
@@ -43,6 +44,13 @@ class DurabilityMonitor {
      */
     virtual size_t getNumTracked() const = 0;
 
+    /**
+     * Inform the DurabilityMonitor that the Flusher has run.
+     * Expected to be called by the Flusher after a flush-batch (that contains
+     * pending Prepares) has been committed to the storage.
+     */
+    virtual void notifyLocalPersistence() = 0;
+
 protected:
     class SyncWrite;
     struct ReplicationChain;
@@ -57,3 +65,34 @@ class DurabilityMonitor {
 
     friend std::ostream& operator<<(std::ostream&, const SyncWrite&);
 };
+
+/**
+ * Represents the tracked state of a node in topology.
+ * Note that the lifetime of a Position is determined by the logic in
+ * DurabilityMonitor.
+ *
+ * - it: Iterator that points to a position in the Container of tracked
+ *         SyncWrites. This is an optimization: logically it points always
+ * to the last SyncWrite acknowledged by the tracked node, so that we can
+ * avoid any O(N) scan when updating the node state at seqno-ack received.
+ * It may point to Container::end (e.g, when the pointed SyncWrite is the
+ * last element in Container and it is removed).
+ *
+ * - lastWriteSeqno: Stores always the seqno of the last SyncWrite
+ *         acknowledged by the tracked node, even when Position::it points
+ * to Container::end. Used for validation at seqno-ack received and stats.
+ *
+ * - lastAckSeqno: Stores always the last seqno acknowledged by the tracked
+ *         node. Used for validation at seqno-ack received and stats.
+ */
+struct DurabilityMonitor::Position {
+    Position() = default;
+    Position(const Container::iterator& it) : it(it) {
+    }
+    Container::iterator it;
+    // @todo: Consider using (strictly) Monotonic here. Weakly monotonic was
+    // necessary when we tracked both memory and disk seqnos.
+    // Now a Replica is not supposed to ack the same seqno twice.
+    WeaklyMonotonic<int64_t, ThrowExceptionPolicy> lastWriteSeqno{0};
+    WeaklyMonotonic<int64_t, ThrowExceptionPolicy> lastAckSeqno{0};
+};

engines/ep/src/durability/durability_monitor_impl.h

@@ -24,7 +24,6 @@
 
 #include "durability_monitor.h"
 #include "item.h"
-#include "monotonic.h"
 
 #include <chrono>
 #include <unordered_map>
@@ -113,40 +112,6 @@ class DurabilityMonitor::SyncWrite {
     friend std::ostream& operator<<(std::ostream&, const SyncWrite&);
 };
 
-// @todo: remove?
-// friend std::ostream& operator<<(std::ostream&, const
-// DurabilityMonitor::SyncWrite&);
-
-/**
- * Represents the tracked state of a node in topology.
- * Note that the lifetime of a Position is determined by the logic in
- * DurabilityMonitor.
- *
- * - it: Iterator that points to a position in the Container of tracked
- *         SyncWrites. This is an optimization: logically it points always
- * to the last SyncWrite acknowledged by the tracked node, so that we can
- * avoid any O(N) scan when updating the node state at seqno-ack received.
- * It may point to Container::end (e.g, when the pointed SyncWrite is the
- * last element in Container and it is removed).
- *
- * - lastWriteSeqno: Stores always the seqno of the last SyncWrite
- *         acknowledged by the tracked node, even when Position::it points
- * to Container::end. Used for validation at seqno-ack received and stats.
- *
- * - lastAckSeqno: Stores always the last seqno acknowledged by the tracked
- *         node. Used for validation at seqno-ack received and stats.
- */
-struct DurabilityMonitor::Position {
-    Position(const Container::iterator& it) : it(it) {
-    }
-    Container::iterator it;
-    // @todo: Consider using (strictly) Monotonic here. Weakly monotonic was
-    // necessary when we tracked both memory and disk seqnos.
-    // Now a Replica is not supposed to ack the same seqno twice.
-    WeaklyMonotonic<int64_t, ThrowExceptionPolicy> lastWriteSeqno{0};
-    WeaklyMonotonic<int64_t, ThrowExceptionPolicy> lastAckSeqno{0};
-};
-
 /**
  * Represents a VBucket Replication Chain in the ns_server meaning,
  * i.e. a list of active/replica nodes where the VBucket resides.

engines/ep/src/durability/passive_durability_monitor.cc

@@ -27,7 +27,11 @@
 #include <gsl.h>
 #include <unordered_map>
 
-PassiveDurabilityMonitor::PassiveDurabilityMonitor(VBucket& vb) : vb(vb) {
+PassiveDurabilityMonitor::PassiveDurabilityMonitor(VBucket& vb)
+    : vb(vb), state(*this) {
+    // By design, instances of Container::Position can never be invalid
+    auto s = state.wlock();
+    s->highPreparedSeqno = Position(s->trackedWrites.end());
 }
 
 PassiveDurabilityMonitor::~PassiveDurabilityMonitor() = default;
@@ -53,8 +57,7 @@ void PassiveDurabilityMonitor::addStats(const AddStatFn& addStat,
 }
 
 int64_t PassiveDurabilityMonitor::getHighPreparedSeqno() const {
-    // @todo-durability: return a correct value for this.
-    return 0;
+    return state.rlock()->highPreparedSeqno.lastWriteSeqno;
 }
 
 void PassiveDurabilityMonitor::addSyncWrite(queued_item item) {
@@ -65,20 +68,79 @@ void PassiveDurabilityMonitor::addSyncWrite(queued_item item) {
                 "PassiveDurabilityMonitor::addSyncWrite: Level::None");
     }
 
-    state.wlock()->trackedWrites.emplace_back(
+    auto s = state.wlock();
+    s->trackedWrites.emplace_back(
             nullptr /*cookie*/, std::move(item), nullptr /*firstChain*/);
 
-    /*
-     * @todo: Missing step - we may be able to increase the high_prepared_seqno
-     * and ack back back to the Active.
-     */
+    // Maybe the new tracked Prepare is already satisfied and could be ack'ed
+    // back to the Active.
+    s->updateHighPreparedSeqno();
+
+    // @todo: Send SeqnoAck
 }
 
 size_t PassiveDurabilityMonitor::getNumTracked() const {
     return state.rlock()->trackedWrites.size();
 }
 
+void PassiveDurabilityMonitor::notifyLocalPersistence() {
+    state.wlock()->updateHighPreparedSeqno();
+
+    // @todo: Send SeqnoAck
+}
+
 void PassiveDurabilityMonitor::toOStream(std::ostream& os) const {
     os << "PassiveDurabilityMonitor[" << this << "]"
        << " high_prepared_seqno:" << getHighPreparedSeqno();
 }
+
+DurabilityMonitor::Container::iterator
+PassiveDurabilityMonitor::State::getIteratorNext(
+        const Container::iterator& it) {
+    // Note: Container::end could be the new position when the pointed SyncWrite
+    //     is removed from Container and the iterator repositioned.
+    //     In that case next=Container::begin
+    return (it == trackedWrites.end()) ? trackedWrites.begin() : std::next(it);
+}
+
+void PassiveDurabilityMonitor::State::updateHighPreparedSeqno() {
+    if (trackedWrites.empty()) {
+        return;
+    }
+
+    const auto updateHPS = [this](Container::iterator next) -> void {
+        // Note: Update last-write-seqno first to enforce monotonicity and
+        //     avoid any state-change if monotonicity checks fail
+        highPreparedSeqno.lastWriteSeqno = next->getBySeqno();
+        highPreparedSeqno.it = next;
+    };
+
+    Container::iterator next;
+    // First, blindly move HPS up to the given persistedSeqno. Note that
+    // here we don't need to check any Durability Level: persistence makes
+    // locally-satisfied all the pending Prepares up to persistedSeqno.
+    while ((next = getIteratorNext(highPreparedSeqno.it)) !=
+                   trackedWrites.end() &&
+           static_cast<uint64_t>(next->getBySeqno()) <=
+                   pdm.vb.getPersistenceSeqno()) {
+        updateHPS(next);
+    }
+
+    // Then, move the HPS to the last Prepare with Level != PersistToMajority.
+    // I.e., all the Majority and MajorityAndPersistToMaster Prepares that were
+    // blocked by non-satisfied PersistToMajority Prepares are implicitly
+    // satisfied now. The first non-satisfied Prepare is the first
+    // Level:PersistToMajority not covered by persistedSeqno.
+    while ((next = getIteratorNext(highPreparedSeqno.it)) !=
+           trackedWrites.end()) {
+        const auto level = next->getDurabilityReqs().getLevel();
+        Expects(level != cb::durability::Level::None);
+        // Note: We are in the PassiveDM. The first Level::PersistToMajority
+        // SyncWrite is our durability-fence.
+        if (level == cb::durability::Level::PersistToMajority) {
+            break;
+        }
+
+        updateHPS(next);
+    }
+}

engines/ep/src/durability/passive_durability_monitor.h

@@ -21,6 +21,8 @@
 
 #include <folly/Synchronized.h>
 
+#include <queue>
+
 class VBucket;
 
 /*
@@ -50,6 +52,8 @@ class PassiveDurabilityMonitor : public DurabilityMonitor {
 
     size_t getNumTracked() const override;
 
+    void notifyLocalPersistence() override;
+
 protected:
     void toOStream(std::ostream& os) const override;
 
@@ -63,8 +67,56 @@ class PassiveDurabilityMonitor : public DurabilityMonitor {
      * them on the PDM::State public interface.
      */
     struct State {
+        /**
+         * @param pdm The owning PassiveDurabilityMonitor
+         */
+        State(const PassiveDurabilityMonitor& pdm) : pdm(pdm) {
+        }
+
+        /**
+         * Returns the next position for a given Container::iterator.
+         *
+         * @param it The iterator
+         * @return the next position in Container
+         */
+        Container::iterator getIteratorNext(const Container::iterator& it);
+
+        /**
+         * Logically 'moves' forward the High Prepared Seqno to the last
+         * locally-satisfied Prepare. In other terms, the function moves the HPS
+         * to before the current durability-fence.
+         *
+         * Details.
+         *
+         * In terms of Durability Requirements, Prepares at Replica can be
+         * locally-satisfied:
+         * (1) as soon as the they are queued into the PDM, if Level Majority or
+         *     MajorityAndPersistOnMaster
+         * (2) when they are persisted, if Level PersistToMajority
+         *
+         * We call the first non-satisfied PersistToMajority Prepare the
+         * "durability-fence". All Prepares /before/ the durability-fence are
+         * locally-satisfied and can be ack'ed back to the Active.
+         *
+         * This functions's internal logic performs (2) first by moving the HPS
+         * up to the latest persisted Prepare (i.e., the durability-fence) and
+         * then (1) by moving to the HPS to the last Prepare /before/ the new
+         * durability-fence (note that after step (2) the durability-fence has
+         * implicitly moved as well).
+         */
+        void updateHighPreparedSeqno();
+
         /// The container of pending Prepares.
         Container trackedWrites;
+
+        // The seqno of the last Prepare satisfied locally. I.e.:
+        //     - the Prepare has been queued into the PDM, if Level Majority
+        //         or MajorityAndPersistToMaster
+        //     - the Prepare has been persisted locally, if Level
+        //         PersistToMajority
+        Position highPreparedSeqno;
+
+        const PassiveDurabilityMonitor& pdm;
     };
 
     // The VBucket owning this DurabilityMonitor instance