Skip to content

Commit

Permalink
Change meta data write failure semantics
Browse files Browse the repository at this point in the history 
Write should clearly report if storage is left in dirty state.
  • Loading branch information
Andrey Ershov committed Oct 22, 2018
1 parent 1ec0c73 commit 0cfffd5
Show file tree
Hide file tree
Showing 9 changed files with 250 additions and 75 deletions.
7 changes: 6 additions & 1 deletion server/src/main/java/org/elasticsearch/env/NodeEnvironment.java
View file
Original file line number Diff line number Diff line change
Expand Up @@ -51,6 +51,7 @@
import org.elasticsearch.common.unit.TimeValue;
import org.elasticsearch.common.xcontent.NamedXContentRegistry;
import org.elasticsearch.gateway.MetaDataStateFormat;
import org.elasticsearch.gateway.WriteStateException;
import org.elasticsearch.index.Index;
import org.elasticsearch.index.IndexSettings;
import org.elasticsearch.index.shard.ShardId;
Expand Down Expand Up @@ -390,7 +391,11 @@ private static NodeMetaData loadOrCreateNodeMetaData(Settings settings, Logger l
metaData = new NodeMetaData(generateNodeId(settings));
}
// we write again to make sure all paths have the latest state file
NodeMetaData.FORMAT.write(metaData, paths);
try {
NodeMetaData.FORMAT.write(metaData, paths);
} catch (WriteStateException e) {
throw new IOException(e);
}
return metaData;
}

Expand Down
169 changes: 123 additions & 46 deletions server/src/main/java/org/elasticsearch/gateway/MetaDataStateFormat.java
View file
Original file line number Diff line number Diff line change
Expand Up @@ -30,6 +30,7 @@
import org.apache.lucene.store.IndexOutput;
import org.apache.lucene.store.SimpleFSDirectory;
import org.elasticsearch.ExceptionsHelper;
import org.elasticsearch.common.collect.Tuple;
import org.elasticsearch.common.logging.Loggers;
import org.elasticsearch.common.lucene.store.IndexOutputOutputStream;
import org.elasticsearch.common.lucene.store.InputStreamIndexInput;
Expand Down Expand Up @@ -91,88 +92,162 @@ private static void deleteFileIfExists(Path stateLocation, Directory directory,
logger.trace("cleaned up {}", stateLocation.resolve(fileName));
}

private void writeStateToFirstLocation(final T state, Path stateLocation, Directory stateDir, String fileName, String tmpFileName)
throws IOException {
private static void deleteFileIgnoreExceptions(Path stateLocation, Directory directory, String fileName) {
try {
deleteFileIfExists(stateLocation, stateDir, tmpFileName);
try (IndexOutput out = stateDir.createOutput(tmpFileName, IOContext.DEFAULT)) {
CodecUtil.writeHeader(out, STATE_FILE_CODEC, STATE_FILE_VERSION);
out.writeInt(FORMAT.index());
try (XContentBuilder builder = newXContentBuilder(FORMAT, new IndexOutputOutputStream(out) {
@Override
public void close() throws IOException {
// this is important since some of the XContentBuilders write bytes on close.
// in order to write the footer we need to prevent closing the actual index input.
}
})) {
deleteFileIfExists(stateLocation, directory, fileName);
} catch (IOException e) {
logger.trace("clean up failed {}", stateLocation.resolve(fileName));
}
}

private static void performDirectoryCleanup(Path stateLocation, Directory stateDir, String tmpFileName) {
deleteFileIgnoreExceptions(stateLocation, stateDir, tmpFileName);
IOUtils.closeWhileHandlingException(stateDir);
}

builder.startObject();
{
toXContent(builder, state);
private Directory writeStateToFirstLocation(final T state, Path stateLocation, String tmpFileName)
throws WriteStateException {
try {
Directory stateDir = newDirectory(stateLocation);
try {
deleteFileIfExists(stateLocation, stateDir, tmpFileName);
try (IndexOutput out = stateDir.createOutput(tmpFileName, IOContext.DEFAULT)) {
CodecUtil.writeHeader(out, STATE_FILE_CODEC, STATE_FILE_VERSION);
out.writeInt(FORMAT.index());
try (XContentBuilder builder = newXContentBuilder(FORMAT, new IndexOutputOutputStream(out) {
@Override
public void close() throws IOException {
// this is important since some of the XContentBuilders write bytes on close.
// in order to write the footer we need to prevent closing the actual index input.
}
})) {

builder.startObject();
{
toXContent(builder, state);
}
builder.endObject();
}
builder.endObject();
CodecUtil.writeFooter(out);
}
CodecUtil.writeFooter(out);
} catch (IllegalStateException e) {
throw new IOException(e);
}

stateDir.sync(Collections.singleton(tmpFileName));
stateDir.rename(tmpFileName, fileName);
stateDir.syncMetaData();
logger.trace("written state to {}", stateLocation.resolve(fileName));
} finally {
deleteFileIfExists(stateLocation, stateDir, tmpFileName);
stateDir.sync(Collections.singleton(tmpFileName));
} catch (Exception e) {
// perform clean up only in case of exception, we need to keep directory open and temporary file on disk
// if everything is ok for the next algorithm steps
performDirectoryCleanup(stateLocation, stateDir, tmpFileName);
throw e;
}
return stateDir;
} catch (Exception e) {
throw new WriteStateException(false, "failed to write state to the first location tmp file", e);
}
}

private void copyStateToExtraLocation(Directory srcStateDir, Path extraStateLocation, String fileName, String tmpFileName)
throws IOException {
try (Directory extraStateDir = newDirectory(extraStateLocation)) {
private Directory copyStateToExtraLocation(Directory srcStateDir, Path extraStateLocation, String tmpFileName)
throws WriteStateException {
try {
Directory extraStateDir = newDirectory(extraStateLocation);
try {
deleteFileIfExists(extraStateLocation, extraStateDir, tmpFileName);
extraStateDir.copyFrom(srcStateDir, fileName, tmpFileName, IOContext.DEFAULT);
extraStateDir.copyFrom(srcStateDir, tmpFileName, tmpFileName, IOContext.DEFAULT);
extraStateDir.sync(Collections.singleton(tmpFileName));
extraStateDir.rename(tmpFileName, fileName);
extraStateDir.syncMetaData();
logger.trace("copied state to {}", extraStateLocation.resolve(fileName));
} finally {
deleteFileIfExists(extraStateLocation, extraStateDir, tmpFileName);
} catch (Exception e) {
// perform clean up only in case of exception, we need to keep directory open and temporary file on disk
// if everything is ok for the next algorithm steps
performDirectoryCleanup(extraStateLocation, extraStateDir, tmpFileName);
throw e;
}
return extraStateDir;
} catch (Exception e) {
throw new WriteStateException(false, "failed to copy tmp state file to extra location", e);
}
}

public void performRenames(String tmpFileName, String fileName, final List<Tuple<Path, Directory>> stateDirectories) throws
WriteStateException {
Directory firstStateDirectory = stateDirectories.get(0).v2();
try {
firstStateDirectory.rename(tmpFileName, fileName);
} catch (IOException e) {
throw new WriteStateException(false, "failed to rename tmp file to final name in the first state location", e);
}

for (int i = 1; i < stateDirectories.size(); i++) {
Directory extraStateDirectory = stateDirectories.get(i).v2();
try {
extraStateDirectory.rename(tmpFileName, fileName);
} catch (IOException e) {
throw new WriteStateException(true, "failed to rename tmp file to final name in extra state location",
e);
}
}
}

public void performStateDirectoriesFsync(List<Tuple<Path, Directory>> stateDirectories) throws WriteStateException {
for (int i = 0; i < stateDirectories.size(); i++) {
try {
stateDirectories.get(i).v2().syncMetaData();
} catch (IOException e) {
throw new WriteStateException(true, "meta data directory fsync has failed", e);
}
}
}


/**
* Writes the given state to the given directories. The state is written to a
* state directory ({@value #STATE_DIR_NAME}) underneath each of the given file locations and is created if it
* doesn't exist. The state is serialized to a temporary file in that directory and is then atomically moved to
* it's target filename of the pattern {@code {prefix}{version}.st}.
* If this method returns without exception there is a guarantee that state is persisted to the disk and loadLatestState will return it.
* But if this method throws an exception, loadLatestState could return this state or some previous state.
* If this method returns without exception there is a guarantee that state is persisted to the disk and loadLatestState will return
* it. <br>
* This method may throw an {@link WriteStateException} if some exception during writing state occurs. <br>
* If {@link WriteStateException#isDirty()} returns false, there is a guarantee that loadLatestState will return old state. <br>
* If {@link WriteStateException#isDirty()} returns true, loadLatestState could return new state or previous state.
*
* @param state the state object to write
* @param locations the locations where the state should be written to.
* @throws IOException if an IOException occurs
* @throws WriteStateException if some exception during writing state occurs.
*/
public final void write(final T state, final Path... locations) throws IOException {

public final void write(final T state, final Path... locations) throws WriteStateException {
if (locations == null) {
throw new IllegalArgumentException("Locations must not be null");
}
if (locations.length <= 0) {
throw new IllegalArgumentException("One or more locations required");
}
final long maxStateId = findMaxStateId(prefix, locations) + 1;

long maxStateId;
try {
maxStateId = findMaxStateId(prefix, locations) + 1;
} catch (Exception e) {
throw new WriteStateException(false, "exception during looking up max state id", e);
}
assert maxStateId >= 0 : "maxStateId must be positive but was: [" + maxStateId + "]";

final String fileName = prefix + maxStateId + STATE_FILE_EXTENSION;
final String tmpFileName = fileName + ".tmp";
final Path firstStateLocation = locations[0].resolve(STATE_DIR_NAME);
try (Directory stateDir = newDirectory(firstStateLocation)) {
writeStateToFirstLocation(state, firstStateLocation, stateDir, fileName, tmpFileName);
List<Tuple<Path, Directory>> directories = new ArrayList<>();

try {
Directory firstStateDir = writeStateToFirstLocation(state, firstStateLocation, tmpFileName);
directories.add(new Tuple<>(firstStateLocation, firstStateDir));
for (int i = 1; i < locations.length; i++) {
final Path extraStateLocation = locations[i].resolve(STATE_DIR_NAME);
copyStateToExtraLocation(stateDir, extraStateLocation, fileName, tmpFileName);
Directory extraStateDir = copyStateToExtraLocation(firstStateDir, extraStateLocation, tmpFileName);
directories.add(new Tuple<>(extraStateLocation, extraStateDir));
}
performRenames(tmpFileName, fileName, directories);
performStateDirectoriesFsync(directories);
} finally {
//writeStateToFirstLocation and copyStateToExtraLocation perform clean up for themselves if they fail
//we need to perform clean up for all data paths that were successfully opened and temporary file was created
for (int i = 0; i < directories.size(); i++) {
Tuple<Path, Directory> pathAndDirectory = directories.get(i);
performDirectoryCleanup(pathAndDirectory.v1(), pathAndDirectory.v2(), tmpFileName);
}
}

Expand Down Expand Up @@ -229,16 +304,18 @@ protected Directory newDirectory(Path dir) throws IOException {
return new SimpleFSDirectory(dir);
}

private void cleanupOldFiles(final String currentStateFile, Path[] locations) throws IOException {
private void cleanupOldFiles(final String currentStateFile, Path[] locations) {
for (Path location : locations) {
logger.trace("cleanupOldFiles: cleaning up {}", location);
Path stateLocation = location.resolve(STATE_DIR_NAME);
try (Directory stateDir = newDirectory(stateLocation)) {
for (String file : stateDir.listAll()) {
if (file.startsWith(prefix) && file.equals(currentStateFile) == false) {
deleteFileIfExists(stateLocation, stateDir, file);
deleteFileIgnoreExceptions(stateLocation, stateDir, file);
}
}
} catch (Exception e) {
logger.trace("clean up failed for state location {}", stateLocation);
}
}
}
Expand Down
37 changes: 37 additions & 0 deletions server/src/main/java/org/elasticsearch/gateway/WriteStateException.java
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,37 @@
/*
* Licensed to Elasticsearch under one or more contributor
* license agreements. See the NOTICE file distributed with
* this work for additional information regarding copyright
* ownership. Elasticsearch licenses this file to you under
* the Apache License, Version 2.0 (the "License"); you may
* not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing,
* software distributed under the License is distributed on an
* "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
* KIND, either express or implied. See the License for the
* specific language governing permissions and limitations
* under the License.
*/
package org.elasticsearch.gateway;

/**
* This exception is thrown when there is a problem of writing state to disk. <br>
* If {@link #isDirty()} returns false, state is guaranteed to be not written to disk.
* If {@link #isDirty()} returns true, we don't know if state is written to disk.
*/
public class WriteStateException extends Exception {
private boolean dirty;

public WriteStateException(boolean dirty, String message, Exception cause) {
super(message, cause);
this.dirty = dirty;
}

public boolean isDirty() {
return dirty;
}
}
7 changes: 6 additions & 1 deletion server/src/main/java/org/elasticsearch/index/shard/IndexShard.java
View file
Original file line number Diff line number Diff line change
Expand Up @@ -64,6 +64,7 @@
import org.elasticsearch.common.util.concurrent.AsyncIOProcessor;
import org.elasticsearch.common.xcontent.XContentHelper;
import org.elasticsearch.core.internal.io.IOUtils;
import org.elasticsearch.gateway.WriteStateException;
import org.elasticsearch.index.Index;
import org.elasticsearch.index.IndexModule;
import org.elasticsearch.index.IndexNotFoundException;
Expand Down Expand Up @@ -2243,7 +2244,11 @@ private static void persistMetadata(
logger.trace("{} writing shard state, reason [{}]", shardId, writeReason);
final ShardStateMetaData newShardStateMetadata =
new ShardStateMetaData(newRouting.primary(), indexSettings.getUUID(), newRouting.allocationId());
ShardStateMetaData.FORMAT.write(newShardStateMetadata, shardPath.getShardStatePath());
try {
ShardStateMetaData.FORMAT.write(newShardStateMetadata, shardPath.getShardStatePath());
} catch (WriteStateException e) {
throw new IOException(e);
}
} else {
logger.trace("{} skip writing shard state, has been written before", shardId);
}
Expand Down
8 changes: 6 additions & 2 deletions server/src/main/java/org/elasticsearch/index/shard/RemoveCorruptedShardDataCommand.java
View file
Original file line number Diff line number Diff line change
Expand Up @@ -53,6 +53,7 @@
import org.elasticsearch.env.NodeEnvironment;
import org.elasticsearch.env.NodeMetaData;
import org.elasticsearch.gateway.MetaDataStateFormat;
import org.elasticsearch.gateway.WriteStateException;
import org.elasticsearch.index.Index;
import org.elasticsearch.index.IndexSettings;
import org.elasticsearch.index.engine.Engine;
Expand Down Expand Up @@ -460,8 +461,11 @@ protected void newAllocationId(Environment environment, ShardPath shardPath, Ter
final ShardStateMetaData newShardStateMetaData =
new ShardStateMetaData(shardStateMetaData.primary, shardStateMetaData.indexUUID, newAllocationId);

ShardStateMetaData.FORMAT.write(newShardStateMetaData, shardStatePath);

try {
ShardStateMetaData.FORMAT.write(newShardStateMetaData, shardStatePath);
} catch (WriteStateException e) {
throw new IOException(e);
}
terminal.println("");
terminal.println("You should run the following command to allocate this shard:");

Expand Down
Loading

0 comments on commit 0cfffd5

Please sign in to comment.