Skip to content

Latest commit

 

History

History
133 lines (72 loc) · 6.09 KB

20 - Database Recovery.md

File metadata and controls

133 lines (72 loc) · 6.09 KB
Raw

ARIES recovery algorithm

  1. Write-ahead logging (Steal and no-force buffer pool)
  2. Repeating history during redo
  3. Logging changes during undo

WAL record

Log sequence number is globally unique number for each log.

  • flushedLSN - Tracks of the last LSN log on disk (Kept in RAM).
  • pageLSN - Newest update to page. In every page (Kept on disk).
  • recLSN - Record which first cause a page to be dirty. In every page (Kept in RAM).
  • lastLSN - Latest record of a transaction.
  • MasterRecord - LSN of the latest "checkpoint".

Before the DBMS write a page to disk, it must flush the log at least to the point where pageLSN <= flushedLSN. (The latest update to the page is flushed)

Writing WAL records

If pageLSN <= flushLSN, it means that the latest log for the page has been flushed. It is safe to evict the page.

If not, that means the latest log for the page is still in memory only. Not safe to flush the page.

Update the pageLSN every time a transaction modifies a record.

Update the flushedLSN every time the DBMS writes out the WAL buffer to disk.

Transaction commit

DBMS guarantees that all log records up to the transactions "COMMIT" are flushed to disk before returning to the application.

When the commit finally succeeds (done with internal meta-data updates), write a special TXN-END record to log. This means no new log record for the transaction will appear in the log ever again. The in-memory log can be trimmed up to the flushedLSN.

Transaction abort

All records contain "prevLSN" field that tracks the previous LSN for a transaction.

To abort, the log records also need to include the steps we have taken so far to undo the transaction. A new type of record called CLR is introduced for this.

Compensation log record (CLR)

CLR record describes an undo action. It contains all the fields of an update record plus the "undoNext" pointer which points to the next LSN to undo.

DBMS does not wait for them to be flushed before notifying the application that transaction aborted. If the DBMS crash before the ABORT line is flushed, the recovery will undo the changes anyway.

If another transaction wants to use the values that were updated during an aborted transaction, the logs will just be appended after CLR records are added. (No need to wait for disk flush)

Non-fuzzy checkpoints

Blocking Checkpoint method waits till all active transactions to finish before flushing dirty pages to disk. This is bad for runtime performance.

Slightly Better Blocking Checkpoint method halts any new transaction while the DBMS takes checkpoint. The existing transactions are only paused. Some metadata is stored.

Metadata - What transactions were running during checkpoint? What pages were dirty during checkpoint?

Active transaction table (ATT)

An entry per active transaction. Remove after "TXN-END" record arrives for the transaction.

(txnId, status, lastLSN)

Status - Running, Committing, Candidate for Undo.

Dirty page table (DPT)

One entry per dirty page in the buffer pool. Contains all dirty pages, does not matter if the changes were caused by a transaction running, committed or aborted.

Fuzzy checkpoint

Allow transactions to keep modifying while taking the snapshot. No attempt to force dirty pages to disk.

New log records - CHECKPOINT_BEGIN, CHECKPOINT_END{ATT, DPT}

  1. When checkpoint begins, system looks at log records before checkpoint begin and try to write all the pages in the buffer pool onto the disk.
  2. Existing transactions can still make modifications.
  3. After everything before CHECKPOINT_BEGIN is flushed, DBMS records CHECKPOINT_END with active transactions and dirty pages modified by these transactions. (Transactions that begin after checkpoint starts are excluded from ATT.)

Master record is updated to LSN of CHECKPOINT_BEGIN after completion. That is the anchor point to start analysis during recovery.

ARIES recovery phases

Analysis phase

Scans forward from the last checkpoint. If a log record is not in ATT, add it with status "UNDO". On commit, change transaction status to "COMMIT". If TXN-END record is found, remove the corresponding transaction from ATT.

For update log records, if a page is not in DPT, add it to DPT and update its "recLSN" to "LSN".

ATT tells us what transactions were active at the time of crash. DPT tells us what dirty pages might not have been made it to disk.

In the example below, T96 has been added to ATT with status "UNDO". The CHECKPOINT_END provides active transactions and dirty pages that occur before CHECKPOINT_BEGIN. These are also used to update ATT and DPT.

Mark T96 as "COMMIT" in ATT.

Remove T96 from ATT after TXN-END is seen.

Redo phase

Scan forward from the log record containing the smallest "recLSN" in DPT. Redo the actions for each update or CLR log records unless 1) the affected page is not in DPT, or 2) affected page is in DPT but log record's LSN is less than the page's "recLSN", or 3) affected PageLSN (on disk) >= LSN.

To redo, reapply logged update and set the "pageLSN" to log record's LSN. No need logging! At the end of the phase, write TXN-END records for all committed transactions and remove them from ATT.

Undo phase

Undo all transactions that were active at the time of crash. Transactions with status "UNDO" in ATT after the analysis phase.

Write a CLR for every modification.

If the server has a 2nd crash before T2 is undone, there will only be T2 in the ATT after the analysis phase. During the redo phase, the "lastLSN" for T2 will be updated to 20. The undo phase will begin with LSN 20 for T2.