1#[cfg(test)]
11mod tests;
12
13use std::cmp::max;
14use std::collections::{BTreeMap, VecDeque};
15use std::fmt::Debug;
16use std::str::FromStr;
17use std::sync::{Arc, LazyLock};
18use std::time::{Duration, Instant};
19
20use async_trait::async_trait;
21use differential_dataflow::lattice::Lattice;
22use futures::{FutureExt, StreamExt};
23use itertools::Itertools;
24use mz_audit_log::VersionedEvent;
25use mz_ore::metrics::MetricsFutureExt;
26use mz_ore::now::EpochMillis;
27use mz_ore::{
28 soft_assert_eq_no_log, soft_assert_eq_or_log, soft_assert_ne_or_log, soft_assert_no_log,
29 soft_assert_or_log, soft_panic_or_log,
30};
31use mz_persist_client::cfg::USE_CRITICAL_SINCE_CATALOG;
32use mz_persist_client::cli::admin::{CATALOG_FORCE_COMPACTION_FUEL, CATALOG_FORCE_COMPACTION_WAIT};
33use mz_persist_client::critical::{CriticalReaderId, Opaque, SinceHandle};
34use mz_persist_client::error::UpperMismatch;
35use mz_persist_client::read::{Listen, ListenEvent, ReadHandle};
36use mz_persist_client::write::WriteHandle;
37use mz_persist_client::{Diagnostics, PersistClient, ShardId};
38use mz_persist_types::codec_impls::UnitSchema;
39use mz_proto::{RustType, TryFromProtoError};
40use mz_repr::Diff;
41use mz_storage_client::controller::PersistEpoch;
42use mz_storage_types::StorageDiff;
43use mz_storage_types::sources::SourceData;
44use sha2::Digest;
45use timely::progress::{Antichain, Timestamp as TimelyTimestamp};
46use tracing::{debug, info, warn};
47use uuid::Uuid;
48
49use crate::durable::debug::{Collection, CollectionType, DebugCatalogState, Trace};
50use crate::durable::error::FenceError;
51use crate::durable::initialize::{
52 ENABLE_0DT_DEPLOYMENT_PANIC_AFTER_TIMEOUT, SYSTEM_CONFIG_SYNCED_KEY, USER_VERSION_KEY,
53 WITH_0DT_DEPLOYMENT_DDL_CHECK_INTERVAL, WITH_0DT_DEPLOYMENT_MAX_WAIT,
54};
55use crate::durable::metrics::Metrics;
56use crate::durable::objects::state_update::{
57 IntoStateUpdateKindJson, StateUpdate, StateUpdateKind, StateUpdateKindJson,
58 TryIntoStateUpdateKind,
59};
60use crate::durable::objects::{AuditLogKey, FenceToken, Snapshot};
61use crate::durable::transaction::TransactionBatch;
62use crate::durable::upgrade::upgrade;
63use crate::durable::{
64 BootstrapArgs, CATALOG_CONTENT_VERSION_KEY, CatalogError, DurableCatalogError,
65 DurableCatalogState, Epoch, OpenableDurableCatalogState, ReadOnlyDurableCatalogState,
66 Transaction, initialize, persist_desc,
67};
68use crate::memory;
69
70pub(crate) type Timestamp = mz_repr::Timestamp;
72
73const MIN_EPOCH: Epoch = Epoch::new(1).expect("1 is non-zero");
75
76const CATALOG_SHARD_NAME: &str = "catalog";
78
79static CATALOG_CRITICAL_SINCE: LazyLock<CriticalReaderId> = LazyLock::new(|| {
82 "c55555555-6666-7777-8888-999999999999"
83 .parse()
84 .expect("valid CriticalReaderId")
85});
86
87const CATALOG_SEED: usize = 1;
89const _UPGRADE_SEED: usize = 2;
91pub const _BUILTIN_MIGRATION_SEED: usize = 3;
93pub const _EXPRESSION_CACHE_SEED: usize = 4;
95
96#[derive(Debug, Copy, Clone, Eq, PartialEq)]
98pub(crate) enum Mode {
99 Readonly,
101 Savepoint,
103 Writable,
105}
106
107#[derive(Debug)]
109pub(crate) enum FenceableToken {
110 Initializing {
113 durable_token: Option<FenceToken>,
115 current_deploy_generation: Option<u64>,
117 },
118 Unfenced { current_token: FenceToken },
120 Fenced {
122 current_token: FenceToken,
123 fence_token: FenceToken,
124 },
125}
126
127impl FenceableToken {
128 fn new(current_deploy_generation: Option<u64>) -> Self {
130 Self::Initializing {
131 durable_token: None,
132 current_deploy_generation,
133 }
134 }
135
136 fn validate(&self) -> Result<Option<FenceToken>, FenceError> {
138 match self {
139 FenceableToken::Initializing { durable_token, .. } => Ok(durable_token.clone()),
140 FenceableToken::Unfenced { current_token, .. } => Ok(Some(current_token.clone())),
141 FenceableToken::Fenced {
142 current_token,
143 fence_token,
144 } => {
145 assert!(
146 fence_token > current_token,
147 "must be fenced by higher token; current={current_token:?}, fence={fence_token:?}"
148 );
149 if fence_token.deploy_generation > current_token.deploy_generation {
150 Err(FenceError::DeployGeneration {
151 current_generation: current_token.deploy_generation,
152 fence_generation: fence_token.deploy_generation,
153 })
154 } else {
155 assert!(
156 fence_token.epoch > current_token.epoch,
157 "must be fenced by higher token; current={current_token:?}, fence={fence_token:?}"
158 );
159 Err(FenceError::Epoch {
160 current_epoch: current_token.epoch,
161 fence_epoch: fence_token.epoch,
162 })
163 }
164 }
165 }
166 }
167
168 fn token(&self) -> Option<FenceToken> {
170 match self {
171 FenceableToken::Initializing { durable_token, .. } => durable_token.clone(),
172 FenceableToken::Unfenced { current_token, .. } => Some(current_token.clone()),
173 FenceableToken::Fenced { current_token, .. } => Some(current_token.clone()),
174 }
175 }
176
177 fn maybe_fence(&mut self, token: FenceToken) -> Result<(), FenceError> {
179 match self {
180 FenceableToken::Initializing {
181 durable_token,
182 current_deploy_generation,
183 ..
184 } => {
185 match durable_token {
186 Some(durable_token) => {
187 *durable_token = max(durable_token.clone(), token.clone());
188 }
189 None => {
190 *durable_token = Some(token.clone());
191 }
192 }
193 if let Some(current_deploy_generation) = current_deploy_generation {
194 if *current_deploy_generation < token.deploy_generation {
195 *self = FenceableToken::Fenced {
196 current_token: FenceToken {
197 deploy_generation: *current_deploy_generation,
198 epoch: token.epoch,
199 },
200 fence_token: token,
201 };
202 self.validate()?;
203 }
204 }
205 }
206 FenceableToken::Unfenced { current_token } => {
207 if *current_token < token {
208 *self = FenceableToken::Fenced {
209 current_token: current_token.clone(),
210 fence_token: token,
211 };
212 self.validate()?;
213 }
214 }
215 FenceableToken::Fenced { .. } => {
216 self.validate()?;
217 }
218 }
219
220 Ok(())
221 }
222
223 fn generate_unfenced_token(
227 &self,
228 mode: Mode,
229 ) -> Result<Option<(Vec<(StateUpdateKind, Diff)>, FenceableToken)>, DurableCatalogError> {
230 let (durable_token, current_deploy_generation) = match self {
231 FenceableToken::Initializing {
232 durable_token,
233 current_deploy_generation,
234 } => (durable_token.clone(), current_deploy_generation.clone()),
235 FenceableToken::Unfenced { .. } | FenceableToken::Fenced { .. } => return Ok(None),
236 };
237
238 let mut fence_updates = Vec::with_capacity(2);
239
240 if let Some(durable_token) = &durable_token {
241 fence_updates.push((
242 StateUpdateKind::FenceToken(durable_token.clone()),
243 Diff::MINUS_ONE,
244 ));
245 }
246
247 let current_deploy_generation = current_deploy_generation
248 .or_else(|| durable_token.as_ref().map(|token| token.deploy_generation))
249 .ok_or(DurableCatalogError::Uninitialized)?;
251 let mut current_epoch = durable_token
252 .map(|token| token.epoch)
253 .unwrap_or(MIN_EPOCH)
254 .get();
255 if matches!(mode, Mode::Writable) {
257 current_epoch = current_epoch + 1;
258 }
259 let current_epoch = Epoch::new(current_epoch).expect("known to be non-zero");
260 let current_token = FenceToken {
261 deploy_generation: current_deploy_generation,
262 epoch: current_epoch,
263 };
264
265 fence_updates.push((
266 StateUpdateKind::FenceToken(current_token.clone()),
267 Diff::ONE,
268 ));
269
270 let current_fenceable_token = FenceableToken::Unfenced { current_token };
271
272 Ok(Some((fence_updates, current_fenceable_token)))
273 }
274}
275
276#[derive(Debug, thiserror::Error)]
278pub(crate) enum CompareAndAppendError {
279 #[error(transparent)]
280 Fence(#[from] FenceError),
281 #[error(
284 "expected catalog upper {expected_upper:?} did not match actual catalog upper {actual_upper:?}"
285 )]
286 UpperMismatch {
287 expected_upper: Timestamp,
288 actual_upper: Timestamp,
289 },
290}
291
292impl CompareAndAppendError {
293 pub(crate) fn unwrap_fence_error(self) -> FenceError {
294 match self {
295 CompareAndAppendError::Fence(e) => e,
296 e @ CompareAndAppendError::UpperMismatch { .. } => {
297 panic!("unexpected upper mismatch: {e:?}")
298 }
299 }
300 }
301}
302
303impl From<UpperMismatch<Timestamp>> for CompareAndAppendError {
304 fn from(upper_mismatch: UpperMismatch<Timestamp>) -> Self {
305 Self::UpperMismatch {
306 expected_upper: antichain_to_timestamp(upper_mismatch.expected),
307 actual_upper: antichain_to_timestamp(upper_mismatch.current),
308 }
309 }
310}
311
312pub(crate) trait ApplyUpdate<T: IntoStateUpdateKindJson> {
313 fn apply_update(
317 &mut self,
318 update: StateUpdate<T>,
319 current_fence_token: &mut FenceableToken,
320 metrics: &Arc<Metrics>,
321 ) -> Result<Option<StateUpdate<T>>, FenceError>;
322}
323
324#[derive(Debug)]
338pub(crate) struct PersistHandle<T: TryIntoStateUpdateKind, U: ApplyUpdate<T>> {
339 pub(crate) mode: Mode,
341 since_handle: SinceHandle<SourceData, (), Timestamp, StorageDiff>,
343 write_handle: WriteHandle<SourceData, (), Timestamp, StorageDiff>,
345 listen: Listen<SourceData, (), Timestamp, StorageDiff>,
347 persist_client: PersistClient,
349 shard_id: ShardId,
351 pub(crate) snapshot: Vec<(T, Timestamp, Diff)>,
355 update_applier: U,
357 pub(crate) upper: Timestamp,
359 fenceable_token: FenceableToken,
361 catalog_content_version: semver::Version,
363 bootstrap_complete: bool,
365 metrics: Arc<Metrics>,
367 size_at_last_consolidation: Option<usize>,
371}
372
373impl<T: TryIntoStateUpdateKind, U: ApplyUpdate<T>> PersistHandle<T, U> {
374 #[mz_ore::instrument]
376 async fn current_upper(&mut self) -> Timestamp {
377 match self.mode {
378 Mode::Writable | Mode::Readonly => {
379 let upper = self.write_handle.fetch_recent_upper().await;
380 antichain_to_timestamp(upper.clone())
381 }
382 Mode::Savepoint => self.upper,
383 }
384 }
385
386 #[mz_ore::instrument]
390 pub(crate) async fn compare_and_append<S: IntoStateUpdateKindJson>(
391 &mut self,
392 updates: Vec<(S, Diff)>,
393 commit_ts: Timestamp,
394 ) -> Result<Timestamp, CompareAndAppendError> {
395 let contains_fence = if mz_ore::assert::soft_assertions_enabled() {
397 let parsed_updates: Vec<_> = updates
398 .clone()
399 .into_iter()
400 .filter_map(|(update, diff)| {
401 let update: StateUpdateKindJson = update.into();
402 let update = TryIntoStateUpdateKind::try_into(update).ok()?;
403 Some((update, diff))
404 })
405 .collect();
406 let contains_retraction = parsed_updates.iter().any(|(update, diff)| {
407 matches!(update, StateUpdateKind::FenceToken(..)) && *diff == Diff::MINUS_ONE
408 });
409 let contains_addition = parsed_updates.iter().any(|(update, diff)| {
410 matches!(update, StateUpdateKind::FenceToken(..)) && *diff == Diff::ONE
411 });
412 Some(contains_retraction && contains_addition)
413 } else {
414 None
415 };
416
417 let updates = updates.into_iter().map(|(kind, diff)| {
418 let kind: StateUpdateKindJson = kind.into();
419 (
420 (Into::<SourceData>::into(kind), ()),
421 commit_ts,
422 diff.into_inner(),
423 )
424 });
425 let next_upper = commit_ts.step_forward();
426 self.compare_and_append_inner(updates, next_upper)
427 .await
428 .inspect_err(|e| {
429 if let Some(contains_fence) = contains_fence {
434 soft_assert_or_log!(
435 matches!(e, CompareAndAppendError::Fence(_)) || contains_fence,
436 "encountered an upper mismatch on a non-fencing write"
437 );
438 }
439 })?;
440
441 self.sync(next_upper).await?;
442 Ok(next_upper)
443 }
444
445 async fn compare_and_append_inner(
455 &mut self,
456 updates: impl IntoIterator<Item = ((SourceData, ()), Timestamp, StorageDiff)>,
457 next_upper: Timestamp,
458 ) -> Result<(), CompareAndAppendError> {
459 assert_eq!(self.mode, Mode::Writable);
460 assert!(
461 next_upper > self.upper,
462 "next_upper ({next_upper}) not greater than current upper ({})",
463 self.upper,
464 );
465
466 let res = self
467 .write_handle
468 .compare_and_append(
469 updates,
470 Antichain::from_elem(self.upper),
471 Antichain::from_elem(next_upper),
472 )
473 .await
474 .expect("invalid usage");
475
476 if let Err(e @ UpperMismatch { .. }) = res {
477 self.sync_to_current_upper().await?;
480 return Err(e.into());
481 }
482
483 let downgrade_to = Antichain::from_elem(next_upper.saturating_sub(1));
485
486 let opaque = self.since_handle.opaque().clone();
491 let downgrade = self
492 .since_handle
493 .maybe_compare_and_downgrade_since(&opaque, (&opaque, &downgrade_to))
494 .await;
495 if let Some(Err(e)) = downgrade {
496 soft_panic_or_log!("found opaque value {e:?}, but expected {opaque:?}");
497 }
498
499 Ok(())
500 }
501
502 #[mz_ore::instrument]
505 async fn snapshot_unconsolidated(&mut self) -> Vec<StateUpdate<StateUpdateKind>> {
506 let current_upper = self.current_upper().await;
507
508 let mut snapshot = Vec::new();
509 let mut read_handle = self.read_handle().await;
510 let as_of = as_of(&read_handle, current_upper);
511 let mut stream = Box::pin(
512 read_handle
514 .snapshot_and_stream(Antichain::from_elem(as_of))
515 .await
516 .expect("we have advanced the restart_as_of by the since"),
517 );
518 while let Some(update) = stream.next().await {
519 snapshot.push(update)
520 }
521 read_handle.expire().await;
522 snapshot
523 .into_iter()
524 .map(Into::<StateUpdate<StateUpdateKindJson>>::into)
525 .map(|state_update| state_update.try_into().expect("kind decoding error"))
526 .collect()
527 }
528
529 #[mz_ore::instrument]
533 pub(crate) async fn sync_to_current_upper(&mut self) -> Result<(), FenceError> {
534 let upper = self.current_upper().await;
535 self.sync(upper).await
536 }
537
538 #[mz_ore::instrument(level = "debug")]
542 pub(crate) async fn sync(&mut self, target_upper: Timestamp) -> Result<(), FenceError> {
543 self.metrics.syncs.inc();
544 let counter = self.metrics.sync_latency_seconds.clone();
545 self.sync_inner(target_upper)
546 .wall_time()
547 .inc_by(counter)
548 .await
549 }
550
551 #[mz_ore::instrument(level = "debug")]
552 async fn sync_inner(&mut self, target_upper: Timestamp) -> Result<(), FenceError> {
553 self.fenceable_token.validate()?;
554
555 if self.mode == Mode::Savepoint {
558 self.upper = max(self.upper, target_upper);
559 return Ok(());
560 }
561
562 let mut updates: BTreeMap<_, Vec<_>> = BTreeMap::new();
563
564 self.size_at_last_consolidation = None;
567
568 while self.upper < target_upper {
569 let listen_events = self.listen.fetch_next().await;
570 for listen_event in listen_events {
571 match listen_event {
572 ListenEvent::Progress(upper) => {
573 debug!("synced up to {upper:?}");
574 self.upper = antichain_to_timestamp(upper);
575 while let Some((ts, updates)) = updates.pop_first() {
580 assert!(ts < self.upper, "expected {} < {}", ts, self.upper);
581 let updates = updates.into_iter().map(
582 |update: StateUpdate<StateUpdateKindJson>| {
583 let kind =
584 T::try_from(update.kind).expect("kind decoding error");
585 StateUpdate {
586 kind,
587 ts: update.ts,
588 diff: update.diff,
589 }
590 },
591 );
592 self.apply_updates(updates)?;
593 self.maybe_consolidate();
594 }
595 }
596 ListenEvent::Updates(batch_updates) => {
597 for update in batch_updates {
598 let update: StateUpdate<StateUpdateKindJson> = update.into();
599 updates.entry(update.ts).or_default().push(update);
600 }
601 }
602 }
603 }
604 }
605 assert_eq!(updates, BTreeMap::new(), "all updates should be applied");
606 self.consolidate();
608 Ok(())
609 }
610
611 pub(crate) fn apply_updates_and_consolidate(
618 &mut self,
619 updates: impl IntoIterator<Item = StateUpdate<T>>,
620 ) -> Result<(), FenceError> {
621 self.apply_updates(updates)?;
622 self.consolidate();
623 Ok(())
624 }
625
626 #[mz_ore::instrument(level = "debug")]
634 fn apply_updates(
635 &mut self,
636 updates: impl IntoIterator<Item = StateUpdate<T>>,
637 ) -> Result<(), FenceError> {
638 let mut updates: Vec<_> = updates
639 .into_iter()
640 .map(|StateUpdate { kind, ts, diff }| (kind, ts, diff))
641 .collect();
642
643 differential_dataflow::consolidation::consolidate_updates(&mut updates);
647
648 updates.sort_by(|(_, ts1, diff1), (_, ts2, diff2)| ts1.cmp(ts2).then(diff1.cmp(diff2)));
651
652 let mut errors = Vec::new();
653
654 for (kind, ts, diff) in updates {
655 if diff != Diff::ONE && diff != Diff::MINUS_ONE {
656 panic!("invalid update in consolidated trace: ({kind:?}, {ts:?}, {diff:?})");
657 }
658
659 match self.update_applier.apply_update(
660 StateUpdate { kind, ts, diff },
661 &mut self.fenceable_token,
662 &self.metrics,
663 ) {
664 Ok(Some(StateUpdate { kind, ts, diff })) => self.snapshot.push((kind, ts, diff)),
665 Ok(None) => {}
666 Err(err) => errors.push(err),
669 }
670 }
671
672 let len = i64::try_from(self.snapshot.len()).unwrap_or(i64::MAX);
674 if len > self.metrics.snapshot_max_entries.get() {
675 self.metrics.snapshot_max_entries.set(len);
676 }
677
678 errors.sort();
679 if let Some(err) = errors.into_iter().next() {
680 return Err(err);
681 }
682
683 Ok(())
684 }
685
686 fn maybe_consolidate(&mut self) {
691 let threshold = *self
692 .size_at_last_consolidation
693 .get_or_insert_with(|| max(self.snapshot.len(), 8));
696 if self.snapshot.len() >= threshold * 2 {
697 self.consolidate();
698 self.size_at_last_consolidation = Some(self.snapshot.len());
699 }
700 }
701
702 #[mz_ore::instrument]
703 pub(crate) fn consolidate(&mut self) {
704 self.metrics.snapshot_consolidations.inc();
705 soft_assert_no_log!(
706 self.snapshot
707 .windows(2)
708 .all(|updates| updates[0].1 <= updates[1].1),
709 "snapshot should be sorted by timestamp, {:#?}",
710 self.snapshot
711 );
712
713 let new_ts = self
714 .snapshot
715 .last()
716 .map(|(_, ts, _)| *ts)
717 .unwrap_or_else(Timestamp::minimum);
718 for (_, ts, _) in &mut self.snapshot {
719 *ts = new_ts;
720 }
721 differential_dataflow::consolidation::consolidate_updates(&mut self.snapshot);
722 }
723
724 async fn with_trace<R>(
728 &mut self,
729 f: impl FnOnce(&Vec<(T, Timestamp, Diff)>) -> Result<R, CatalogError>,
730 ) -> Result<R, CatalogError> {
731 self.sync_to_current_upper().await?;
732 f(&self.snapshot)
733 }
734
735 async fn read_handle(&self) -> ReadHandle<SourceData, (), Timestamp, StorageDiff> {
737 self.persist_client
738 .open_leased_reader(
739 self.shard_id,
740 Arc::new(persist_desc()),
741 Arc::new(UnitSchema::default()),
742 Diagnostics {
743 shard_name: CATALOG_SHARD_NAME.to_string(),
744 handle_purpose: "openable durable catalog state temporary reader".to_string(),
745 },
746 USE_CRITICAL_SINCE_CATALOG.get(self.persist_client.dyncfgs()),
747 )
748 .await
749 .expect("invalid usage")
750 }
751
752 async fn expire(self: Box<Self>) {
754 self.write_handle.expire().await;
755 self.listen.expire().await;
756 }
757}
758
759impl<U: ApplyUpdate<StateUpdateKind>> PersistHandle<StateUpdateKind, U> {
760 async fn with_snapshot<T>(
764 &mut self,
765 f: impl FnOnce(Snapshot) -> Result<T, CatalogError>,
766 ) -> Result<T, CatalogError> {
767 fn apply<K, V>(map: &mut BTreeMap<K, V>, key: &K, value: &V, diff: Diff)
768 where
769 K: Ord + Clone,
770 V: Ord + Clone + Debug,
771 {
772 let key = key.clone();
773 let value = value.clone();
774 if diff == Diff::ONE {
775 let prev = map.insert(key, value);
776 assert_eq!(
777 prev, None,
778 "values must be explicitly retracted before inserting a new value"
779 );
780 } else if diff == Diff::MINUS_ONE {
781 let prev = map.remove(&key);
782 assert_eq!(
783 prev,
784 Some(value),
785 "retraction does not match existing value"
786 );
787 }
788 }
789
790 self.with_trace(|trace| {
791 let mut snapshot = Snapshot::empty();
792 for (kind, ts, diff) in trace {
793 let diff = *diff;
794 if diff != Diff::ONE && diff != Diff::MINUS_ONE {
795 panic!("invalid update in consolidated trace: ({kind:?}, {ts:?}, {diff:?})");
796 }
797
798 match kind {
799 StateUpdateKind::AuditLog(_key, ()) => {
800 }
802 StateUpdateKind::Cluster(key, value) => {
803 apply(&mut snapshot.clusters, key, value, diff);
804 }
805 StateUpdateKind::ClusterReplica(key, value) => {
806 apply(&mut snapshot.cluster_replicas, key, value, diff);
807 }
808 StateUpdateKind::Comment(key, value) => {
809 apply(&mut snapshot.comments, key, value, diff);
810 }
811 StateUpdateKind::Config(key, value) => {
812 apply(&mut snapshot.configs, key, value, diff);
813 }
814 StateUpdateKind::Database(key, value) => {
815 apply(&mut snapshot.databases, key, value, diff);
816 }
817 StateUpdateKind::DefaultPrivilege(key, value) => {
818 apply(&mut snapshot.default_privileges, key, value, diff);
819 }
820 StateUpdateKind::FenceToken(_token) => {
821 }
823 StateUpdateKind::IdAllocator(key, value) => {
824 apply(&mut snapshot.id_allocator, key, value, diff);
825 }
826 StateUpdateKind::IntrospectionSourceIndex(key, value) => {
827 apply(&mut snapshot.introspection_sources, key, value, diff);
828 }
829 StateUpdateKind::Item(key, value) => {
830 apply(&mut snapshot.items, key, value, diff);
831 }
832 StateUpdateKind::NetworkPolicy(key, value) => {
833 apply(&mut snapshot.network_policies, key, value, diff);
834 }
835 StateUpdateKind::Role(key, value) => {
836 apply(&mut snapshot.roles, key, value, diff);
837 }
838 StateUpdateKind::Schema(key, value) => {
839 apply(&mut snapshot.schemas, key, value, diff);
840 }
841 StateUpdateKind::Setting(key, value) => {
842 apply(&mut snapshot.settings, key, value, diff);
843 }
844 StateUpdateKind::SourceReferences(key, value) => {
845 apply(&mut snapshot.source_references, key, value, diff);
846 }
847 StateUpdateKind::SystemConfiguration(key, value) => {
848 apply(&mut snapshot.system_configurations, key, value, diff);
849 }
850 StateUpdateKind::ClusterSystemConfiguration(key, value) => {
851 apply(
852 &mut snapshot.cluster_system_configurations,
853 key,
854 value,
855 diff,
856 );
857 }
858 StateUpdateKind::ReplicaSystemConfiguration(key, value) => {
859 apply(
860 &mut snapshot.replica_system_configurations,
861 key,
862 value,
863 diff,
864 );
865 }
866 StateUpdateKind::SystemObjectMapping(key, value) => {
867 apply(&mut snapshot.system_object_mappings, key, value, diff);
868 }
869 StateUpdateKind::SystemPrivilege(key, value) => {
870 apply(&mut snapshot.system_privileges, key, value, diff);
871 }
872 StateUpdateKind::StorageCollectionMetadata(key, value) => {
873 apply(&mut snapshot.storage_collection_metadata, key, value, diff);
874 }
875 StateUpdateKind::UnfinalizedShard(key, ()) => {
876 apply(&mut snapshot.unfinalized_shards, key, &(), diff);
877 }
878 StateUpdateKind::TxnWalShard((), value) => {
879 apply(&mut snapshot.txn_wal_shard, &(), value, diff);
880 }
881 StateUpdateKind::RoleAuth(key, value) => {
882 apply(&mut snapshot.role_auth, key, value, diff);
883 }
884 }
885 }
886 f(snapshot)
887 })
888 .await
889 }
890
891 #[mz_ore::instrument(level = "debug")]
898 async fn persist_snapshot(&self) -> impl Iterator<Item = StateUpdate> + DoubleEndedIterator {
899 let mut read_handle = self.read_handle().await;
900 let as_of = as_of(&read_handle, self.upper);
901 let snapshot = snapshot_binary(&mut read_handle, as_of, &self.metrics)
902 .await
903 .map(|update| update.try_into().expect("kind decoding error"));
904 read_handle.expire().await;
905 snapshot
906 }
907}
908
909#[derive(Debug)]
911pub(crate) struct UnopenedCatalogStateInner {
912 configs: BTreeMap<String, u64>,
914 settings: BTreeMap<String, String>,
916}
917
918impl UnopenedCatalogStateInner {
919 fn new() -> UnopenedCatalogStateInner {
920 UnopenedCatalogStateInner {
921 configs: BTreeMap::new(),
922 settings: BTreeMap::new(),
923 }
924 }
925}
926
927impl ApplyUpdate<StateUpdateKindJson> for UnopenedCatalogStateInner {
928 fn apply_update(
929 &mut self,
930 update: StateUpdate<StateUpdateKindJson>,
931 current_fence_token: &mut FenceableToken,
932 _metrics: &Arc<Metrics>,
933 ) -> Result<Option<StateUpdate<StateUpdateKindJson>>, FenceError> {
934 if !update.kind.is_audit_log() && update.kind.is_always_deserializable() {
935 let kind = TryInto::try_into(&update.kind).expect("kind is known to be deserializable");
936 match (kind, update.diff) {
937 (StateUpdateKind::Config(key, value), Diff::ONE) => {
938 let prev = self.configs.insert(key.key, value.value);
939 assert_eq!(
940 prev, None,
941 "values must be explicitly retracted before inserting a new value"
942 );
943 }
944 (StateUpdateKind::Config(key, value), Diff::MINUS_ONE) => {
945 let prev = self.configs.remove(&key.key);
946 assert_eq!(
947 prev,
948 Some(value.value),
949 "retraction does not match existing value"
950 );
951 }
952 (StateUpdateKind::Setting(key, value), Diff::ONE) => {
953 let prev = self.settings.insert(key.name, value.value);
954 assert_eq!(
955 prev, None,
956 "values must be explicitly retracted before inserting a new value"
957 );
958 }
959 (StateUpdateKind::Setting(key, value), Diff::MINUS_ONE) => {
960 let prev = self.settings.remove(&key.name);
961 assert_eq!(
962 prev,
963 Some(value.value),
964 "retraction does not match existing value"
965 );
966 }
967 (StateUpdateKind::FenceToken(fence_token), Diff::ONE) => {
968 current_fence_token.maybe_fence(fence_token)?;
969 }
970 _ => {}
971 }
972 }
973
974 Ok(Some(update))
975 }
976}
977
978pub(crate) type UnopenedPersistCatalogState =
986 PersistHandle<StateUpdateKindJson, UnopenedCatalogStateInner>;
987
988impl UnopenedPersistCatalogState {
989 #[mz_ore::instrument]
995 pub(crate) async fn new(
996 persist_client: PersistClient,
997 organization_id: Uuid,
998 version: semver::Version,
999 deploy_generation: Option<u64>,
1000 metrics: Arc<Metrics>,
1001 ) -> Result<UnopenedPersistCatalogState, DurableCatalogError> {
1002 let catalog_shard_id = shard_id(organization_id, CATALOG_SEED);
1003 debug!(?catalog_shard_id, "new persist backed catalog state");
1004
1005 let version_in_catalog_shard =
1009 fetch_catalog_shard_version(&persist_client, catalog_shard_id).await;
1010 if let Some(version_in_catalog_shard) = version_in_catalog_shard {
1011 if !mz_persist_client::cfg::code_can_write_data(&version, &version_in_catalog_shard) {
1012 return Err(DurableCatalogError::IncompatiblePersistVersion {
1013 found_version: version_in_catalog_shard,
1014 catalog_version: version,
1015 });
1016 }
1017 }
1018
1019 let open_handles_start = Instant::now();
1020 info!("startup: envd serve: catalog init: open handles beginning");
1021 let since_handle = persist_client
1022 .open_critical_since(
1023 catalog_shard_id,
1024 CATALOG_CRITICAL_SINCE.clone(),
1025 Opaque::encode(&i64::MIN),
1026 Diagnostics {
1027 shard_name: CATALOG_SHARD_NAME.to_string(),
1028 handle_purpose: "durable catalog state critical since".to_string(),
1029 },
1030 )
1031 .await
1032 .expect("invalid usage");
1033
1034 let (mut write_handle, mut read_handle) = persist_client
1035 .open(
1036 catalog_shard_id,
1037 Arc::new(persist_desc()),
1038 Arc::new(UnitSchema::default()),
1039 Diagnostics {
1040 shard_name: CATALOG_SHARD_NAME.to_string(),
1041 handle_purpose: "durable catalog state handles".to_string(),
1042 },
1043 USE_CRITICAL_SINCE_CATALOG.get(persist_client.dyncfgs()),
1044 )
1045 .await
1046 .expect("invalid usage");
1047 info!(
1048 "startup: envd serve: catalog init: open handles complete in {:?}",
1049 open_handles_start.elapsed()
1050 );
1051
1052 let upper = {
1054 const EMPTY_UPDATES: &[((SourceData, ()), Timestamp, StorageDiff)] = &[];
1055 let upper = Antichain::from_elem(Timestamp::minimum());
1056 let next_upper = Timestamp::minimum().step_forward();
1057 match write_handle
1058 .compare_and_append(EMPTY_UPDATES, upper, Antichain::from_elem(next_upper))
1059 .await
1060 .expect("invalid usage")
1061 {
1062 Ok(()) => next_upper,
1063 Err(mismatch) => antichain_to_timestamp(mismatch.current),
1064 }
1065 };
1066
1067 let snapshot_start = Instant::now();
1068 info!("startup: envd serve: catalog init: snapshot beginning");
1069 let as_of = as_of(&read_handle, upper);
1070 let snapshot: Vec<_> = snapshot_binary(&mut read_handle, as_of, &metrics)
1071 .await
1072 .map(|StateUpdate { kind, ts, diff }| (kind, ts, diff))
1073 .collect();
1074 let listen = read_handle
1075 .listen(Antichain::from_elem(as_of))
1076 .await
1077 .expect("invalid usage");
1078 info!(
1079 "startup: envd serve: catalog init: snapshot complete in {:?}",
1080 snapshot_start.elapsed()
1081 );
1082
1083 let mut handle = UnopenedPersistCatalogState {
1084 mode: Mode::Writable,
1086 since_handle,
1087 write_handle,
1088 listen,
1089 persist_client,
1090 shard_id: catalog_shard_id,
1091 snapshot: Vec::new(),
1093 update_applier: UnopenedCatalogStateInner::new(),
1094 upper,
1095 fenceable_token: FenceableToken::new(deploy_generation),
1096 catalog_content_version: version,
1097 bootstrap_complete: false,
1098 metrics,
1099 size_at_last_consolidation: None,
1100 };
1101 soft_assert_no_log!(
1104 snapshot.iter().all(|(_, _, diff)| *diff == Diff::ONE),
1105 "snapshot should be consolidated: {snapshot:#?}"
1106 );
1107
1108 let apply_start = Instant::now();
1109 info!("startup: envd serve: catalog init: apply updates beginning");
1110 let updates = snapshot
1111 .into_iter()
1112 .map(|(kind, ts, diff)| StateUpdate { kind, ts, diff });
1113 handle.apply_updates_and_consolidate(updates)?;
1114 info!(
1115 "startup: envd serve: catalog init: apply updates complete in {:?}",
1116 apply_start.elapsed()
1117 );
1118
1119 if let Some(found_version) = handle.get_catalog_content_version().await? {
1125 if handle
1127 .catalog_content_version
1128 .cmp_precedence(&found_version)
1129 == std::cmp::Ordering::Less
1130 {
1131 return Err(DurableCatalogError::IncompatiblePersistVersion {
1132 found_version,
1133 catalog_version: handle.catalog_content_version,
1134 });
1135 }
1136 }
1137
1138 Ok(handle)
1139 }
1140
1141 #[mz_ore::instrument]
1142 async fn open_inner(
1143 mut self,
1144 mode: Mode,
1145 initial_ts: Timestamp,
1146 bootstrap_args: &BootstrapArgs,
1147 ) -> Result<Box<dyn DurableCatalogState>, CatalogError> {
1148 let mut commit_ts = self.upper;
1151 self.mode = mode;
1152
1153 match (&self.mode, &self.fenceable_token) {
1155 (_, FenceableToken::Unfenced { .. } | FenceableToken::Fenced { .. }) => {
1156 return Err(DurableCatalogError::Internal(
1157 "catalog should not have fenced before opening".to_string(),
1158 )
1159 .into());
1160 }
1161 (
1162 Mode::Writable | Mode::Savepoint,
1163 FenceableToken::Initializing {
1164 current_deploy_generation: None,
1165 ..
1166 },
1167 ) => {
1168 return Err(DurableCatalogError::Internal(format!(
1169 "cannot open in mode '{:?}' without a deploy generation",
1170 self.mode,
1171 ))
1172 .into());
1173 }
1174 _ => {}
1175 }
1176
1177 let read_only = matches!(self.mode, Mode::Readonly);
1178
1179 loop {
1181 self.sync_to_current_upper().await?;
1182 commit_ts = max(commit_ts, self.upper);
1183 let (fence_updates, current_fenceable_token) = self
1184 .fenceable_token
1185 .generate_unfenced_token(self.mode)?
1186 .ok_or_else(|| {
1187 DurableCatalogError::Internal(
1188 "catalog should not have fenced before opening".to_string(),
1189 )
1190 })?;
1191 debug!(
1192 ?self.upper,
1193 ?self.fenceable_token,
1194 ?current_fenceable_token,
1195 "fencing previous catalogs"
1196 );
1197 if matches!(self.mode, Mode::Writable) {
1198 match self
1199 .compare_and_append(fence_updates.clone(), commit_ts)
1200 .await
1201 {
1202 Ok(upper) => {
1203 commit_ts = upper;
1204 }
1205 Err(CompareAndAppendError::Fence(e)) => return Err(e.into()),
1206 Err(e @ CompareAndAppendError::UpperMismatch { .. }) => {
1207 warn!("catalog write failed due to upper mismatch, retrying: {e:?}");
1208 continue;
1209 }
1210 }
1211 }
1212 self.fenceable_token = current_fenceable_token;
1213 break;
1214 }
1215
1216 if matches!(self.mode, Mode::Writable) {
1217 let mut controller_handle = self
1224 .persist_client
1225 .open_critical_since::<SourceData, (), Timestamp, StorageDiff>(
1226 self.shard_id,
1227 PersistClient::CONTROLLER_CRITICAL_SINCE,
1228 Opaque::encode(&i64::MIN),
1229 Diagnostics {
1230 shard_name: CATALOG_SHARD_NAME.to_string(),
1231 handle_purpose: "durable catalog state critical since (migration)"
1232 .to_string(),
1233 },
1234 )
1235 .await
1236 .expect("invalid usage");
1237
1238 let since = controller_handle.since().clone();
1239 let res = controller_handle
1240 .compare_and_downgrade_since(
1241 &Opaque::encode(&i64::MIN),
1242 (&Opaque::encode(&PersistEpoch::default()), &since),
1243 )
1244 .await;
1245 match res {
1246 Ok(_) => info!("migrated Opaque of catalog since handle"),
1247 Err(_) => { }
1248 }
1249 }
1250
1251 let is_initialized = self.is_initialized_inner();
1252 if !matches!(self.mode, Mode::Writable) && !is_initialized {
1253 return Err(CatalogError::Durable(DurableCatalogError::NotWritable(
1254 format!(
1255 "catalog tables do not exist; will not create in {:?} mode",
1256 self.mode
1257 ),
1258 )));
1259 }
1260 soft_assert_ne_or_log!(self.upper, Timestamp::minimum());
1261
1262 let (audit_logs, snapshot): (Vec<_>, Vec<_>) = self
1267 .snapshot
1268 .into_iter()
1269 .partition(|(update, _, _)| update.is_audit_log());
1270 self.snapshot = snapshot;
1271 let audit_log_count = audit_logs.iter().map(|(_, _, diff)| diff).sum::<Diff>();
1272 drop(audit_logs);
1273
1274 if is_initialized && !read_only {
1276 commit_ts = upgrade(&mut self, commit_ts).await?;
1277 }
1278
1279 debug!(
1280 ?is_initialized,
1281 ?self.upper,
1282 "initializing catalog state"
1283 );
1284 let mut catalog = PersistCatalogState {
1285 mode: self.mode,
1286 since_handle: self.since_handle,
1287 write_handle: self.write_handle,
1288 listen: self.listen,
1289 persist_client: self.persist_client,
1290 shard_id: self.shard_id,
1291 upper: self.upper,
1292 fenceable_token: self.fenceable_token,
1293 snapshot: Vec::new(),
1295 update_applier: CatalogStateInner::new(),
1296 catalog_content_version: self.catalog_content_version,
1297 bootstrap_complete: false,
1298 metrics: self.metrics,
1299 size_at_last_consolidation: None,
1300 };
1301 catalog.metrics.collection_entries.reset();
1302 catalog
1305 .metrics
1306 .collection_entries
1307 .with_label_values(&[&CollectionType::AuditLog.to_string()])
1308 .add(audit_log_count.into_inner());
1309 let updates = self.snapshot.into_iter().map(|(kind, ts, diff)| {
1310 let kind = TryIntoStateUpdateKind::try_into(kind).expect("kind decoding error");
1311 StateUpdate { kind, ts, diff }
1312 });
1313 catalog.apply_updates_and_consolidate(updates)?;
1314
1315 let catalog_content_version = catalog.catalog_content_version.to_string();
1316 let txn = if is_initialized {
1317 let mut txn = catalog.transaction().await?;
1318
1319 if txn.get_setting("migration_version".into()).is_none() && mode != Mode::Readonly {
1326 let old_version = txn.get_catalog_content_version();
1327 txn.set_setting("migration_version".into(), old_version.map(Into::into))?;
1328 }
1329
1330 txn.set_catalog_content_version(catalog_content_version)?;
1331 txn
1332 } else {
1333 soft_assert_eq_no_log!(
1334 catalog
1335 .snapshot
1336 .iter()
1337 .filter(|(kind, _, _)| !matches!(kind, StateUpdateKind::FenceToken(_)))
1338 .count(),
1339 0,
1340 "trace should not contain any updates for an uninitialized catalog: {:#?}",
1341 catalog.snapshot
1342 );
1343
1344 let mut txn = catalog.transaction().await?;
1345 initialize::initialize(
1346 &mut txn,
1347 bootstrap_args,
1348 initial_ts.into(),
1349 catalog_content_version,
1350 )
1351 .await?;
1352 txn
1353 };
1354
1355 if read_only {
1356 let (txn_batch, _) = txn.into_parts();
1357 let updates = StateUpdate::from_txn_batch_ts(txn_batch, catalog.upper);
1359 catalog.apply_updates_and_consolidate(updates)?;
1360 } else {
1361 txn.commit_internal(commit_ts).await?;
1362 }
1363
1364 if matches!(catalog.mode, Mode::Writable) {
1365 let write_handle = catalog
1366 .persist_client
1367 .open_writer::<SourceData, (), Timestamp, i64>(
1368 catalog.write_handle.shard_id(),
1369 Arc::new(persist_desc()),
1370 Arc::new(UnitSchema::default()),
1371 Diagnostics {
1372 shard_name: CATALOG_SHARD_NAME.to_string(),
1373 handle_purpose: "compact catalog".to_string(),
1374 },
1375 )
1376 .await
1377 .expect("invalid usage");
1378 let fuel = CATALOG_FORCE_COMPACTION_FUEL.handle(catalog.persist_client.dyncfgs());
1379 let wait = CATALOG_FORCE_COMPACTION_WAIT.handle(catalog.persist_client.dyncfgs());
1380 let _task = mz_ore::task::spawn(|| "catalog::force_shard_compaction", async move {
1383 let () =
1384 mz_persist_client::cli::admin::dangerous_force_compaction_and_break_pushdown(
1385 &write_handle,
1386 || fuel.get(),
1387 || wait.get(),
1388 )
1389 .await;
1390 });
1391 }
1392
1393 Ok(Box::new(catalog))
1394 }
1395
1396 #[mz_ore::instrument]
1401 fn is_initialized_inner(&self) -> bool {
1402 !self.update_applier.configs.is_empty()
1403 }
1404
1405 #[mz_ore::instrument]
1409 async fn get_current_config(&mut self, key: &str) -> Result<Option<u64>, DurableCatalogError> {
1410 self.sync_to_current_upper().await?;
1411 Ok(self.update_applier.configs.get(key).cloned())
1412 }
1413
1414 #[mz_ore::instrument]
1418 pub(crate) async fn get_user_version(&mut self) -> Result<Option<u64>, DurableCatalogError> {
1419 self.get_current_config(USER_VERSION_KEY).await
1420 }
1421
1422 #[mz_ore::instrument]
1426 async fn get_current_setting(
1427 &mut self,
1428 name: &str,
1429 ) -> Result<Option<String>, DurableCatalogError> {
1430 self.sync_to_current_upper().await?;
1431 Ok(self.update_applier.settings.get(name).cloned())
1432 }
1433
1434 #[mz_ore::instrument]
1439 async fn get_catalog_content_version(
1440 &mut self,
1441 ) -> Result<Option<semver::Version>, DurableCatalogError> {
1442 let version = self
1443 .get_current_setting(CATALOG_CONTENT_VERSION_KEY)
1444 .await?;
1445 let version = version.map(|version| version.parse().expect("invalid version persisted"));
1446 Ok(version)
1447 }
1448}
1449
1450#[async_trait]
1451impl OpenableDurableCatalogState for UnopenedPersistCatalogState {
1452 #[mz_ore::instrument]
1453 async fn open_savepoint(
1454 mut self: Box<Self>,
1455 initial_ts: Timestamp,
1456 bootstrap_args: &BootstrapArgs,
1457 ) -> Result<Box<dyn DurableCatalogState>, CatalogError> {
1458 self.open_inner(Mode::Savepoint, initial_ts, bootstrap_args)
1459 .boxed()
1460 .await
1461 }
1462
1463 #[mz_ore::instrument]
1464 async fn open_read_only(
1465 mut self: Box<Self>,
1466 bootstrap_args: &BootstrapArgs,
1467 ) -> Result<Box<dyn DurableCatalogState>, CatalogError> {
1468 self.open_inner(Mode::Readonly, EpochMillis::MIN.into(), bootstrap_args)
1469 .boxed()
1470 .await
1471 }
1472
1473 #[mz_ore::instrument]
1474 async fn open(
1475 mut self: Box<Self>,
1476 initial_ts: Timestamp,
1477 bootstrap_args: &BootstrapArgs,
1478 ) -> Result<Box<dyn DurableCatalogState>, CatalogError> {
1479 self.open_inner(Mode::Writable, initial_ts, bootstrap_args)
1480 .boxed()
1481 .await
1482 }
1483
1484 #[mz_ore::instrument(level = "debug")]
1485 async fn open_debug(mut self: Box<Self>) -> Result<DebugCatalogState, CatalogError> {
1486 Ok(DebugCatalogState(*self))
1487 }
1488
1489 #[mz_ore::instrument]
1490 async fn is_initialized(&mut self) -> Result<bool, CatalogError> {
1491 self.sync_to_current_upper().await?;
1492 Ok(self.is_initialized_inner())
1493 }
1494
1495 #[mz_ore::instrument]
1496 async fn epoch(&mut self) -> Result<Epoch, CatalogError> {
1497 self.sync_to_current_upper().await?;
1498 self.fenceable_token
1499 .validate()?
1500 .map(|token| token.epoch)
1501 .ok_or(CatalogError::Durable(DurableCatalogError::Uninitialized))
1502 }
1503
1504 #[mz_ore::instrument]
1505 async fn get_deployment_generation(&mut self) -> Result<u64, CatalogError> {
1506 self.sync_to_current_upper().await?;
1507 self.fenceable_token
1508 .token()
1509 .map(|token| token.deploy_generation)
1510 .ok_or(CatalogError::Durable(DurableCatalogError::Uninitialized))
1511 }
1512
1513 #[mz_ore::instrument(level = "debug")]
1514 async fn get_0dt_deployment_max_wait(&mut self) -> Result<Option<Duration>, CatalogError> {
1515 let value = self
1516 .get_current_config(WITH_0DT_DEPLOYMENT_MAX_WAIT)
1517 .await?;
1518 match value {
1519 None => Ok(None),
1520 Some(millis) => Ok(Some(Duration::from_millis(millis))),
1521 }
1522 }
1523
1524 #[mz_ore::instrument(level = "debug")]
1525 async fn get_0dt_deployment_ddl_check_interval(
1526 &mut self,
1527 ) -> Result<Option<Duration>, CatalogError> {
1528 let value = self
1529 .get_current_config(WITH_0DT_DEPLOYMENT_DDL_CHECK_INTERVAL)
1530 .await?;
1531 match value {
1532 None => Ok(None),
1533 Some(millis) => Ok(Some(Duration::from_millis(millis))),
1534 }
1535 }
1536
1537 #[mz_ore::instrument(level = "debug")]
1538 async fn get_enable_0dt_deployment_panic_after_timeout(
1539 &mut self,
1540 ) -> Result<Option<bool>, CatalogError> {
1541 let value = self
1542 .get_current_config(ENABLE_0DT_DEPLOYMENT_PANIC_AFTER_TIMEOUT)
1543 .await?;
1544 match value {
1545 None => Ok(None),
1546 Some(0) => Ok(Some(false)),
1547 Some(1) => Ok(Some(true)),
1548 Some(v) => Err(
1549 DurableCatalogError::from(TryFromProtoError::UnknownEnumVariant(format!(
1550 "{v} is not a valid boolean value"
1551 )))
1552 .into(),
1553 ),
1554 }
1555 }
1556
1557 #[mz_ore::instrument]
1558 async fn has_system_config_synced_once(&mut self) -> Result<bool, DurableCatalogError> {
1559 self.get_current_config(SYSTEM_CONFIG_SYNCED_KEY)
1560 .await
1561 .map(|value| value.map(|value| value > 0).unwrap_or(false))
1562 }
1563
1564 #[mz_ore::instrument]
1565 async fn trace_unconsolidated(&mut self) -> Result<Trace, CatalogError> {
1566 self.sync_to_current_upper().await?;
1567 if self.is_initialized_inner() {
1568 let snapshot = self.snapshot_unconsolidated().await;
1569 Ok(Trace::from_snapshot(snapshot))
1570 } else {
1571 Err(CatalogError::Durable(DurableCatalogError::Uninitialized))
1572 }
1573 }
1574
1575 #[mz_ore::instrument]
1576 async fn trace_consolidated(&mut self) -> Result<Trace, CatalogError> {
1577 self.sync_to_current_upper().await?;
1578 if self.is_initialized_inner() {
1579 let snapshot = self.current_snapshot().await?;
1580 Ok(Trace::from_snapshot(snapshot))
1581 } else {
1582 Err(CatalogError::Durable(DurableCatalogError::Uninitialized))
1583 }
1584 }
1585
1586 #[mz_ore::instrument(level = "debug")]
1587 async fn expire(self: Box<Self>) {
1588 self.expire().await
1589 }
1590}
1591
1592#[derive(Debug)]
1594struct CatalogStateInner {
1595 updates: VecDeque<memory::objects::StateUpdate>,
1597}
1598
1599impl CatalogStateInner {
1600 fn new() -> CatalogStateInner {
1601 CatalogStateInner {
1602 updates: VecDeque::new(),
1603 }
1604 }
1605}
1606
1607impl ApplyUpdate<StateUpdateKind> for CatalogStateInner {
1608 fn apply_update(
1609 &mut self,
1610 update: StateUpdate<StateUpdateKind>,
1611 current_fence_token: &mut FenceableToken,
1612 metrics: &Arc<Metrics>,
1613 ) -> Result<Option<StateUpdate<StateUpdateKind>>, FenceError> {
1614 if let Some(collection_type) = update.kind.collection_type() {
1615 metrics
1616 .collection_entries
1617 .with_label_values(&[&collection_type.to_string()])
1618 .add(update.diff.into_inner());
1619 }
1620
1621 {
1622 let update: Option<memory::objects::StateUpdate> = (&update)
1623 .try_into()
1624 .expect("invalid persisted update: {update:#?}");
1625 if let Some(update) = update {
1626 self.updates.push_back(update);
1627 }
1628 }
1629
1630 match (update.kind, update.diff) {
1631 (StateUpdateKind::AuditLog(_, ()), _) => Ok(None),
1632 (StateUpdateKind::FenceToken(_), Diff::MINUS_ONE) => Ok(None),
1634 (StateUpdateKind::FenceToken(token), Diff::ONE) => {
1635 current_fence_token.maybe_fence(token)?;
1636 Ok(None)
1637 }
1638 (kind, diff) => Ok(Some(StateUpdate {
1639 kind,
1640 ts: update.ts,
1641 diff,
1642 })),
1643 }
1644 }
1645}
1646
1647type PersistCatalogState = PersistHandle<StateUpdateKind, CatalogStateInner>;
1653
1654#[async_trait]
1655impl ReadOnlyDurableCatalogState for PersistCatalogState {
1656 fn epoch(&self) -> Epoch {
1657 self.fenceable_token
1658 .token()
1659 .expect("opened catalog state must have an epoch")
1660 .epoch
1661 }
1662
1663 fn metrics(&self) -> &Metrics {
1664 &self.metrics
1665 }
1666
1667 #[mz_ore::instrument(level = "debug")]
1668 async fn expire(self: Box<Self>) {
1669 self.expire().await
1670 }
1671
1672 fn is_bootstrap_complete(&self) -> bool {
1673 self.bootstrap_complete
1674 }
1675
1676 async fn get_audit_logs(&mut self) -> Result<Vec<VersionedEvent>, CatalogError> {
1677 self.sync_to_current_upper().await?;
1678 let audit_logs: Vec<_> = self
1679 .persist_snapshot()
1680 .await
1681 .filter_map(
1682 |StateUpdate {
1683 kind,
1684 ts: _,
1685 diff: _,
1686 }| match kind {
1687 StateUpdateKind::AuditLog(key, ()) => Some(key),
1688 _ => None,
1689 },
1690 )
1691 .collect();
1692 let mut audit_logs: Vec<_> = audit_logs
1693 .into_iter()
1694 .map(RustType::from_proto)
1695 .map_ok(|key: AuditLogKey| key.event)
1696 .collect::<Result<_, _>>()?;
1697 audit_logs.sort_by(|a, b| a.sortable_id().cmp(&b.sortable_id()));
1698 Ok(audit_logs)
1699 }
1700
1701 #[mz_ore::instrument(level = "debug")]
1702 async fn get_next_id(&mut self, id_type: &str) -> Result<u64, CatalogError> {
1703 self.with_trace(|trace| {
1704 Ok(trace
1705 .into_iter()
1706 .rev()
1707 .filter_map(|(kind, _, _)| match kind {
1708 StateUpdateKind::IdAllocator(key, value) if key.name == id_type => {
1709 Some(value.next_id)
1710 }
1711 _ => None,
1712 })
1713 .next()
1714 .expect("must exist"))
1715 })
1716 .await
1717 }
1718
1719 #[mz_ore::instrument(level = "debug")]
1720 async fn get_deployment_generation(&mut self) -> Result<u64, CatalogError> {
1721 self.sync_to_current_upper().await?;
1722 Ok(self
1723 .fenceable_token
1724 .token()
1725 .expect("opened catalogs must have a token")
1726 .deploy_generation)
1727 }
1728
1729 #[mz_ore::instrument(level = "debug")]
1730 async fn snapshot(&mut self) -> Result<Snapshot, CatalogError> {
1731 self.with_snapshot(Ok).await
1732 }
1733
1734 #[mz_ore::instrument(level = "debug")]
1735 async fn sync_to_current_updates(
1736 &mut self,
1737 ) -> Result<Vec<memory::objects::StateUpdate>, CatalogError> {
1738 let upper = self.current_upper().await;
1739 self.sync_updates(upper).await
1740 }
1741
1742 #[mz_ore::instrument(level = "debug")]
1743 async fn sync_updates(
1744 &mut self,
1745 target_upper: mz_repr::Timestamp,
1746 ) -> Result<Vec<memory::objects::StateUpdate>, CatalogError> {
1747 self.sync(target_upper).await?;
1748 let mut updates = Vec::new();
1749 while let Some(update) = self.update_applier.updates.front() {
1750 if update.ts >= target_upper {
1751 break;
1752 }
1753
1754 let update = self
1755 .update_applier
1756 .updates
1757 .pop_front()
1758 .expect("peeked above");
1759 updates.push(update);
1760 }
1761 Ok(updates)
1762 }
1763
1764 async fn current_upper(&mut self) -> Timestamp {
1765 self.current_upper().await
1766 }
1767}
1768
1769#[async_trait]
1770#[allow(mismatched_lifetime_syntaxes)]
1771impl DurableCatalogState for PersistCatalogState {
1772 fn is_read_only(&self) -> bool {
1773 matches!(self.mode, Mode::Readonly)
1774 }
1775
1776 fn is_savepoint(&self) -> bool {
1777 matches!(self.mode, Mode::Savepoint)
1778 }
1779
1780 async fn mark_bootstrap_complete(&mut self) {
1781 self.bootstrap_complete = true;
1782 if matches!(self.mode, Mode::Writable) {
1783 self.since_handle
1784 .upgrade_version()
1785 .await
1786 .expect("invalid usage")
1787 }
1788 }
1789
1790 #[mz_ore::instrument(level = "debug")]
1791 async fn transaction(&mut self) -> Result<Transaction, CatalogError> {
1792 self.metrics.transactions_started.inc();
1793 let snapshot = self.snapshot().await?;
1794 let commit_ts = self.upper.clone();
1795 Transaction::new(self, snapshot, commit_ts)
1796 }
1797
1798 fn transaction_from_snapshot(
1799 &mut self,
1800 snapshot: Snapshot,
1801 ) -> Result<Transaction, CatalogError> {
1802 let commit_ts = self.upper.clone();
1803 Transaction::new(self, snapshot, commit_ts)
1804 }
1805
1806 #[mz_ore::instrument(level = "debug")]
1807 async fn commit_transaction(
1808 &mut self,
1809 txn_batch: TransactionBatch,
1810 commit_ts: Timestamp,
1811 ) -> Result<Timestamp, CatalogError> {
1812 async fn commit_transaction_inner(
1813 catalog: &mut PersistCatalogState,
1814 txn_batch: TransactionBatch,
1815 commit_ts: Timestamp,
1816 ) -> Result<Timestamp, CatalogError> {
1817 if catalog.mode == Mode::Readonly {
1821 let updates: Vec<_> = StateUpdate::from_txn_batch(txn_batch).collect();
1822 if !updates.is_empty() {
1823 let collection_types: Vec<_> = updates
1824 .iter()
1825 .filter_map(|u| u.0.collection_type())
1826 .collect();
1827 return Err(DurableCatalogError::NotWritable(format!(
1828 "cannot commit a transaction in a read-only catalog: \
1829 {} updates across collections: {collection_types:?}",
1830 updates.len(),
1831 ))
1832 .into());
1833 }
1834 return Ok(catalog.upper);
1835 }
1836
1837 assert_eq!(
1842 catalog.upper, txn_batch.upper,
1843 "only one transaction at a time is supported"
1844 );
1845
1846 assert!(
1847 commit_ts >= catalog.upper,
1848 "expected commit ts, {}, to be greater than or equal to upper, {}",
1849 commit_ts,
1850 catalog.upper
1851 );
1852
1853 let updates = StateUpdate::from_txn_batch(txn_batch).collect();
1854 debug!("committing updates: {updates:?}");
1855
1856 let next_upper = match catalog.mode {
1857 Mode::Writable => catalog
1858 .compare_and_append(updates, commit_ts)
1859 .await
1860 .map_err(|e| e.unwrap_fence_error())?,
1861 Mode::Savepoint => {
1862 let updates = updates.into_iter().map(|(kind, diff)| StateUpdate {
1863 kind,
1864 ts: commit_ts,
1865 diff,
1866 });
1867 catalog.apply_updates_and_consolidate(updates)?;
1868 catalog.upper = commit_ts.step_forward();
1869 catalog.upper
1870 }
1871 Mode::Readonly => unreachable!("handled above"),
1872 };
1873
1874 Ok(next_upper)
1875 }
1876 self.metrics.transaction_commits.inc();
1877 let counter = self.metrics.transaction_commit_latency_seconds.clone();
1878 commit_transaction_inner(self, txn_batch, commit_ts)
1879 .wall_time()
1880 .inc_by(counter)
1881 .await
1882 }
1883
1884 #[mz_ore::instrument(level = "debug")]
1885 async fn advance_upper(&mut self, new_upper: Timestamp) -> Result<(), CatalogError> {
1886 if self.upper >= new_upper {
1887 soft_panic_or_log!(
1895 "new_upper ({new_upper}) not greater than current upper ({})",
1896 self.upper
1897 );
1898 return Ok(());
1899 }
1900
1901 match self.mode {
1902 Mode::Writable => self
1903 .compare_and_append_inner([], new_upper)
1904 .await
1905 .map_err(|e| e.unwrap_fence_error())?,
1906 Mode::Savepoint => (),
1907 Mode::Readonly => {
1908 return Err(DurableCatalogError::NotWritable(
1909 "cannot advance upper of a read-only catalog".into(),
1910 )
1911 .into());
1912 }
1913 }
1914
1915 self.upper = new_upper;
1916 Ok(())
1919 }
1920
1921 fn shard_id(&self) -> ShardId {
1922 self.shard_id
1923 }
1924}
1925
1926pub fn shard_id(organization_id: Uuid, seed: usize) -> ShardId {
1928 let hash = sha2::Sha256::digest(format!("{organization_id}{seed}")).to_vec();
1929 soft_assert_eq_or_log!(hash.len(), 32, "SHA256 returns 32 bytes (256 bits)");
1930 let uuid = Uuid::from_slice(&hash[0..16]).expect("from_slice accepts exactly 16 bytes");
1931 ShardId::from_str(&format!("s{uuid}")).expect("known to be valid")
1932}
1933
1934fn as_of(
1937 read_handle: &ReadHandle<SourceData, (), Timestamp, StorageDiff>,
1938 upper: Timestamp,
1939) -> Timestamp {
1940 let since = read_handle.since().clone();
1941 let mut as_of = upper.checked_sub(1).unwrap_or_else(|| {
1942 panic!("catalog persist shard should be initialize, found upper: {upper:?}")
1943 });
1944 soft_assert_or_log!(
1947 since.less_equal(&as_of),
1948 "since={since:?}, as_of={as_of:?}; since must be less than or equal to as_of"
1949 );
1950 as_of.advance_by(since.borrow());
1953 as_of
1954}
1955
1956async fn fetch_catalog_shard_version(
1959 persist_client: &PersistClient,
1960 catalog_shard_id: ShardId,
1961) -> Option<semver::Version> {
1962 let shard_state = persist_client
1963 .inspect_shard::<Timestamp>(&catalog_shard_id)
1964 .await
1965 .ok()?;
1966 let json_state = serde_json::to_value(shard_state).expect("state serialization error");
1967 let json_version = json_state
1968 .get("applier_version")
1969 .cloned()
1970 .expect("missing applier_version");
1971 let version = serde_json::from_value(json_version).expect("version deserialization error");
1972 Some(version)
1973}
1974
1975#[mz_ore::instrument(level = "debug")]
1980async fn snapshot_binary(
1981 read_handle: &mut ReadHandle<SourceData, (), Timestamp, StorageDiff>,
1982 as_of: Timestamp,
1983 metrics: &Arc<Metrics>,
1984) -> impl Iterator<Item = StateUpdate<StateUpdateKindJson>> + DoubleEndedIterator + use<> {
1985 metrics.snapshots_taken.inc();
1986 let counter = metrics.snapshot_latency_seconds.clone();
1987 snapshot_binary_inner(read_handle, as_of)
1988 .wall_time()
1989 .inc_by(counter)
1990 .await
1991}
1992
1993#[mz_ore::instrument(level = "debug")]
1998async fn snapshot_binary_inner(
1999 read_handle: &mut ReadHandle<SourceData, (), Timestamp, StorageDiff>,
2000 as_of: Timestamp,
2001) -> impl Iterator<Item = StateUpdate<StateUpdateKindJson>> + DoubleEndedIterator + use<> {
2002 let snapshot = read_handle
2003 .snapshot_and_fetch(Antichain::from_elem(as_of))
2004 .await
2005 .expect("we have advanced the restart_as_of by the since");
2006 soft_assert_no_log!(
2007 snapshot.iter().all(|(_, _, diff)| *diff == 1),
2008 "snapshot_and_fetch guarantees a consolidated result: {snapshot:#?}"
2009 );
2010 snapshot
2011 .into_iter()
2012 .map(Into::<StateUpdate<StateUpdateKindJson>>::into)
2013 .sorted_by(|a, b| Ord::cmp(&b.ts, &a.ts))
2014}
2015
2016pub(crate) fn antichain_to_timestamp(antichain: Antichain<Timestamp>) -> Timestamp {
2021 antichain
2022 .into_option()
2023 .expect("we use a totally ordered time and never finalize the shard")
2024}
2025
2026impl Trace {
2029 fn from_snapshot(snapshot: impl IntoIterator<Item = StateUpdate>) -> Trace {
2031 let mut trace = Trace::new();
2032 for StateUpdate { kind, ts, diff } in snapshot {
2033 match kind {
2034 StateUpdateKind::AuditLog(k, v) => trace.audit_log.values.push(((k, v), ts, diff)),
2035 StateUpdateKind::Cluster(k, v) => trace.clusters.values.push(((k, v), ts, diff)),
2036 StateUpdateKind::ClusterReplica(k, v) => {
2037 trace.cluster_replicas.values.push(((k, v), ts, diff))
2038 }
2039 StateUpdateKind::Comment(k, v) => trace.comments.values.push(((k, v), ts, diff)),
2040 StateUpdateKind::Config(k, v) => trace.configs.values.push(((k, v), ts, diff)),
2041 StateUpdateKind::Database(k, v) => trace.databases.values.push(((k, v), ts, diff)),
2042 StateUpdateKind::DefaultPrivilege(k, v) => {
2043 trace.default_privileges.values.push(((k, v), ts, diff))
2044 }
2045 StateUpdateKind::FenceToken(_) => {
2046 }
2048 StateUpdateKind::IdAllocator(k, v) => {
2049 trace.id_allocator.values.push(((k, v), ts, diff))
2050 }
2051 StateUpdateKind::IntrospectionSourceIndex(k, v) => {
2052 trace.introspection_sources.values.push(((k, v), ts, diff))
2053 }
2054 StateUpdateKind::Item(k, v) => trace.items.values.push(((k, v), ts, diff)),
2055 StateUpdateKind::NetworkPolicy(k, v) => {
2056 trace.network_policies.values.push(((k, v), ts, diff))
2057 }
2058 StateUpdateKind::Role(k, v) => trace.roles.values.push(((k, v), ts, diff)),
2059 StateUpdateKind::Schema(k, v) => trace.schemas.values.push(((k, v), ts, diff)),
2060 StateUpdateKind::Setting(k, v) => trace.settings.values.push(((k, v), ts, diff)),
2061 StateUpdateKind::SourceReferences(k, v) => {
2062 trace.source_references.values.push(((k, v), ts, diff))
2063 }
2064 StateUpdateKind::SystemConfiguration(k, v) => {
2065 trace.system_configurations.values.push(((k, v), ts, diff))
2066 }
2067 StateUpdateKind::ClusterSystemConfiguration(k, v) => trace
2068 .cluster_system_configurations
2069 .values
2070 .push(((k, v), ts, diff)),
2071 StateUpdateKind::ReplicaSystemConfiguration(k, v) => trace
2072 .replica_system_configurations
2073 .values
2074 .push(((k, v), ts, diff)),
2075 StateUpdateKind::SystemObjectMapping(k, v) => {
2076 trace.system_object_mappings.values.push(((k, v), ts, diff))
2077 }
2078 StateUpdateKind::SystemPrivilege(k, v) => {
2079 trace.system_privileges.values.push(((k, v), ts, diff))
2080 }
2081 StateUpdateKind::StorageCollectionMetadata(k, v) => trace
2082 .storage_collection_metadata
2083 .values
2084 .push(((k, v), ts, diff)),
2085 StateUpdateKind::UnfinalizedShard(k, ()) => {
2086 trace.unfinalized_shards.values.push(((k, ()), ts, diff))
2087 }
2088 StateUpdateKind::TxnWalShard((), v) => {
2089 trace.txn_wal_shard.values.push((((), v), ts, diff))
2090 }
2091 StateUpdateKind::RoleAuth(k, v) => trace.role_auth.values.push(((k, v), ts, diff)),
2092 }
2093 }
2094 trace
2095 }
2096}
2097
2098impl UnopenedPersistCatalogState {
2099 #[mz_ore::instrument]
2101 pub(crate) async fn debug_edit<T: Collection>(
2102 &mut self,
2103 key: T::Key,
2104 value: T::Value,
2105 ) -> Result<Option<T::Value>, CatalogError>
2106 where
2107 T::Key: PartialEq + Eq + Debug + Clone,
2108 T::Value: Debug + Clone,
2109 {
2110 let prev_value = loop {
2111 let key = key.clone();
2112 let value = value.clone();
2113 let snapshot = self.current_snapshot().await?;
2114 let trace = Trace::from_snapshot(snapshot);
2115 let collection_trace = T::collection_trace(trace);
2116 let prev_values: Vec<_> = collection_trace
2117 .values
2118 .into_iter()
2119 .filter(|((k, _), _, diff)| {
2120 soft_assert_eq_or_log!(*diff, Diff::ONE, "trace is consolidated");
2121 &key == k
2122 })
2123 .collect();
2124
2125 let prev_value = match &prev_values[..] {
2126 [] => None,
2127 [((_, v), _, _)] => Some(v.clone()),
2128 prev_values => panic!("multiple values found for key {key:?}: {prev_values:?}"),
2129 };
2130
2131 let mut updates: Vec<_> = prev_values
2132 .into_iter()
2133 .map(|((k, v), _, _)| (T::update(k, v), Diff::MINUS_ONE))
2134 .collect();
2135 updates.push((T::update(key, value), Diff::ONE));
2136 match self.fenceable_token.generate_unfenced_token(self.mode)? {
2138 Some((fence_updates, current_fenceable_token)) => {
2139 updates.extend(fence_updates.clone());
2140 match self.compare_and_append(updates, self.upper).await {
2141 Ok(_) => {
2142 self.fenceable_token = current_fenceable_token;
2143 break prev_value;
2144 }
2145 Err(CompareAndAppendError::Fence(e)) => return Err(e.into()),
2146 Err(e @ CompareAndAppendError::UpperMismatch { .. }) => {
2147 warn!("catalog write failed due to upper mismatch, retrying: {e:?}");
2148 continue;
2149 }
2150 }
2151 }
2152 None => {
2153 self.compare_and_append(updates, self.upper)
2154 .await
2155 .map_err(|e| e.unwrap_fence_error())?;
2156 break prev_value;
2157 }
2158 }
2159 };
2160 Ok(prev_value)
2161 }
2162
2163 #[mz_ore::instrument]
2165 pub(crate) async fn debug_delete<T: Collection>(
2166 &mut self,
2167 key: T::Key,
2168 ) -> Result<(), CatalogError>
2169 where
2170 T::Key: PartialEq + Eq + Debug + Clone,
2171 T::Value: Debug,
2172 {
2173 loop {
2174 let key = key.clone();
2175 let snapshot = self.current_snapshot().await?;
2176 let trace = Trace::from_snapshot(snapshot);
2177 let collection_trace = T::collection_trace(trace);
2178 let mut retractions: Vec<_> = collection_trace
2179 .values
2180 .into_iter()
2181 .filter(|((k, _), _, diff)| {
2182 soft_assert_eq_or_log!(*diff, Diff::ONE, "trace is consolidated");
2183 &key == k
2184 })
2185 .map(|((k, v), _, _)| (T::update(k, v), Diff::MINUS_ONE))
2186 .collect();
2187
2188 match self.fenceable_token.generate_unfenced_token(self.mode)? {
2190 Some((fence_updates, current_fenceable_token)) => {
2191 retractions.extend(fence_updates.clone());
2192 match self.compare_and_append(retractions, self.upper).await {
2193 Ok(_) => {
2194 self.fenceable_token = current_fenceable_token;
2195 break;
2196 }
2197 Err(CompareAndAppendError::Fence(e)) => return Err(e.into()),
2198 Err(e @ CompareAndAppendError::UpperMismatch { .. }) => {
2199 warn!("catalog write failed due to upper mismatch, retrying: {e:?}");
2200 continue;
2201 }
2202 }
2203 }
2204 None => {
2205 self.compare_and_append(retractions, self.upper)
2206 .await
2207 .map_err(|e| e.unwrap_fence_error())?;
2208 break;
2209 }
2210 }
2211 }
2212 Ok(())
2213 }
2214
2215 async fn current_snapshot(
2220 &mut self,
2221 ) -> Result<impl IntoIterator<Item = StateUpdate> + '_, CatalogError> {
2222 self.sync_to_current_upper().await?;
2223 self.consolidate();
2224 Ok(self.snapshot.iter().cloned().map(|(kind, ts, diff)| {
2225 let kind = TryIntoStateUpdateKind::try_into(kind).expect("kind decoding error");
2226 StateUpdate { kind, ts, diff }
2227 }))
2228 }
2229}