git.samba.org - sahlberg/ctdb.git/commit

author	Rusty Russell <rusty@rustcorp.com.au>
	Thu, 22 Apr 2010 04:24:06 +0000 (13:54 +0930)
committer	Rusty Russell <rusty@rustcorp.com.au>
	Thu, 22 Apr 2010 04:24:06 +0000 (13:54 +0930)
commit	4215c7025d2b29439c5acd19ce4e0fc4e67370b3
tree	f0c5f673e5b8c626186f170530112202bc9dc254	tree
parent	52b0f19636565ef633e63d2726a1cc8c41dccedb	commit \| diff

tdb: handle processes dying during transaction commit.

tdb transactions were designed to be robust against the machine
powering off, but interestingly were never designed to handle the case
where an administrator kill -9's a process during commit. Because
recovery is only done on tdb_open, processes with the tdb already
mapped will simply use it despite it being corrupt and needing
recovery.

The solution to this is to check for recovery every time we grab a
data lock: we could have gained the lock because a process just died.
This has no measurable cost: here is the time for tdbtorture -s 0 -n 1
-l 10000:

Before:
2.75 2.50 2.81 3.19 2.91 2.53 2.72 2.50 2.78 2.77 = Avg 2.75

After:
2.81 2.57 3.42 2.49 3.02 2.49 2.84 2.48 2.80 2.43 = Avg 2.74

Signed-off-by: Rusty Russell <rusty@rustcorp.com.au>
(Imported from commit ec96ea690edbe3398d690b4a953d487ca1773f1c)

lib/tdb/common/lock.c		diff \| blob \| history
lib/tdb/common/tdb_private.h		diff \| blob \| history
lib/tdb/common/transaction.c		diff \| blob \| history