Don't leak dropped column families #509
Conversation
tests/test_db.rs
Outdated
| db.compact_range_cf(cf, None::<&[u8]>, None::<&[u8]>); | ||
|
|
||
| assert!(db.get_cf(cf, b"key1").unwrap().is_none()); | ||
| let outlived_db_or_cf = { |
There was a problem hiding this comment.
these are just free-riding on unrelated test..
I'll write a proper one.
|
long time no see. I'm going to revisit this shortly. |
|
Hi, I worked on this finally. it took some time write a proper test to detect leak... I'll clean up this wip branch tomorrow: https://github.com/rust-rocksdb/rust-rocksdb/compare/master...ryoqun:fix-dropped-cf-leak-wip?expand=1 |
ryoqun
force-pushed
the
fix-dropped-cf-leak
branch
from
b4878c4
to
cf702b7
Compare
ryoqun
changed the title
|
@aleksuss hi, everythihg is done! :) could you review this? |
|
@ryoqun yes, sure. Thanks for your contribution |
| @@ -102,7 +102,7 @@ pub use crate::{ | |||
| ColumnFamilyRef, DEFAULT_COLUMN_FAMILY_NAME, | |||
| }, | |||
| compaction_filter::Decision as CompactionDecision, | |||
| db::{DBWithThreadMode, LiveFile, MultiThreaded, SingleThreaded, DB}, | |||
| db::{DBWithThreadMode, LiveFile, MultiThreaded, SingleThreaded, ThreadMode, DB}, | |||
There was a problem hiding this comment.
I think this one line is enough for #532
|
fyi, this is how you can write generic-over- |
src/column_family.rs
Outdated
|
|
||
| impl UnboundColumnFamily { | ||
| pub(crate) fn bound_column_family<'a>( | ||
| self: std::sync::Arc<Self>, |
There was a problem hiding this comment.
Why wouldn't add use std::sync::Arc ? Especially you use it more than once.
There was a problem hiding this comment.
glad to see a code hygiene like this from you. :)
I was just lazy...: 201d718
src/db.rs
Outdated
| use std::sync::RwLock; | ||
| use std::time::Duration; | ||
|
|
||
| // Marker trait to specify single or multi threaded column family alternations for DB | ||
| // Also, this is minimum common API sharable between SingleThreaded and | ||
| // MultiThreaded. Others differ in self mutability and return type. | ||
| pub trait ThreadMode { | ||
| fn new(cf_map: BTreeMap<String, ColumnFamily>) -> Self; | ||
| fn new(cf_map: BTreeMap<String, *mut crate::ffi::rocksdb_column_family_handle_t>) -> Self; |
There was a problem hiding this comment.
use crate::ffi::rocksdb_column_family_handle_t ?
There was a problem hiding this comment.
According to git grep, it looks like those C types tend to be prefixed with ffi::. So, I followed the convension instead of use just for rocksdb_column_family_handle_t (201d718):
$ git grep 'rocksdb_.*_t[^_a-z0-9]' src/
src/backup.rs: inner: *mut ffi::rocksdb_backup_engine_t,
src/backup.rs: inner: *mut ffi::rocksdb_options_t,
src/backup.rs: inner: *mut ffi::rocksdb_restore_options_t,
src/backup.rs: let be: *mut ffi::rocksdb_backup_engine_t;
src/checkpoint.rs: inner: *mut ffi::rocksdb_checkpoint_t,
src/checkpoint.rs: let checkpoint: *mut ffi::rocksdb_checkpoint_t;
src/column_family.rs: pub(crate) inner: *mut ffi::rocksdb_column_family_handle_t,
src/column_family.rs: pub(crate) inner: *mut ffi::rocksdb_column_family_handle_t,
src/column_family.rs: pub(crate) inner: *mut ffi::rocksdb_column_family_handle_t,
src/column_family.rs:fn destroy_handle(handle: *mut ffi::rocksdb_column_family_handle_t) {
src/column_family.rs: fn inner(&self) -> *mut ffi::rocksdb_column_family_handle_t;
src/column_family.rs: fn inner(&self) -> *mut ffi::rocksdb_column_family_handle_t {
src/column_family.rs: fn inner(&self) -> *mut ffi::rocksdb_column_family_handle_t {
src/column_family.rs: fn inner(&self) -> *mut ffi::rocksdb_column_family_handle_t {
src/compaction_filter_factory.rs: unsafe fn from_raw(ptr: *mut ffi::rocksdb_compactionfiltercontext_t) -> Self {
src/compaction_filter_factory.rs: context: *mut ffi::rocksdb_compactionfiltercontext_t,
src/db.rs: fn new(cf_map: BTreeMap<String, *mut ffi::rocksdb_column_family_handle_t>) -> Self;
src/db.rs: fn new(cfs: BTreeMap<String, *mut ffi::rocksdb_column_family_handle_t>) -> Self {
src/db.rs: fn new(cfs: BTreeMap<String, *mut ffi::rocksdb_column_family_handle_t>) -> Self {
src/db.rs: cfopts: &[*const ffi::rocksdb_options_t],
src/db.rs: cfhandles: &mut Vec<*mut ffi::rocksdb_column_family_handle_t>,
src/db.rs: ) -> Result<*mut ffi::rocksdb_column_family_handle_t, Error> {
src/db.rs: // rocksdb_wal_readoptions_t does not appear to have any functions
src/db.rs: let opts: *const ffi::rocksdb_wal_readoptions_t = ptr::null();
src/db.rs: cf_inner: *mut ffi::rocksdb_column_family_handle_t,
src/db_iterator.rs: inner: *mut ffi::rocksdb_iterator_t,
src/db_iterator.rs: cf_handle: *mut ffi::rocksdb_column_family_handle_t,
src/db_iterator.rs: cf_handle: *mut ffi::rocksdb_column_family_handle_t,
src/db_iterator.rs: pub(crate) inner: *mut ffi::rocksdb_wal_iterator_t,
src/db_options.rs:fn new_cache(capacity: size_t) -> *mut ffi::rocksdb_cache_t {
src/db_options.rs: pub(crate) inner: *mut ffi::rocksdb_cache_t,
src/db_options.rs: inner: *mut ffi::rocksdb_env_t,
src/db_options.rs: pub(crate) inner: *mut ffi::rocksdb_options_t,
src/db_options.rs: pub(crate) inner: *mut ffi::rocksdb_writeoptions_t,
src/db_options.rs: pub(crate) inner: *mut ffi::rocksdb_flushoptions_t,
src/db_options.rs: pub(crate) inner: *mut ffi::rocksdb_block_based_table_options_t,
src/db_options.rs: pub(crate) inner: *mut ffi::rocksdb_readoptions_t,
src/db_options.rs: pub(crate) inner: *mut ffi::rocksdb_cuckoo_table_options_t,
src/db_options.rs: pub(crate) inner: *mut ffi::rocksdb_ingestexternalfileoptions_t,
src/db_options.rs: unsafe { ffi::rocksdb_block_based_options_set_data_block_index_type(self.inner, index_t) }
src/db_options.rs: .map(|path| path.inner as *const ffi::rocksdb_dbpath_t)
src/db_options.rs: ffi::rocksdb_readoptions_set_readahead_size(self.inner, v as size_t);
src/db_options.rs: pub(crate) inner: *mut ffi::rocksdb_fifo_compaction_options_t,
src/db_options.rs: pub(crate) inner: *mut ffi::rocksdb_universal_compaction_options_t,
src/db_options.rs: pub(crate) inner: *mut ffi::rocksdb_compactoptions_t,
src/db_options.rs: pub(crate) inner: *mut ffi::rocksdb_dbpath_t,
src/db_pinnable_slice.rs: ptr: *mut ffi::rocksdb_pinnableslice_t,
src/db_pinnable_slice.rs: pub(crate) unsafe fn from_c(ptr: *mut ffi::rocksdb_pinnableslice_t) -> DBPinnableSlice<'a> {
src/perf.rs: pub(crate) inner: *mut ffi::rocksdb_perfcontext_t,
src/perf.rs: inner: *mut ffi::rocksdb_memory_usage_t,
src/perf.rs: inner: *mut ffi::rocksdb_memory_consumers_t,
src/slice_transform.rs: pub inner: *mut ffi::rocksdb_slicetransform_t,
src/snapshot.rs: pub(crate) inner: *const ffi::rocksdb_snapshot_t,
src/sst_file_writer.rs: pub(crate) inner: *mut ffi::rocksdb_sstfilewriter_t,
src/sst_file_writer.rs: inner: *mut ffi::rocksdb_envoptions_t,
src/sst_file_writer.rs: fn create_raw(opts: &Options, env_opts: &EnvOptions) -> *mut ffi::rocksdb_sstfilewriter_t {
src/write_batch.rs: pub(crate) inner: *mut ffi::rocksdb_writebatch_t,
tests/test_column_family.rs
Outdated
| } | ||
|
|
||
| // if we're not leaking, the dir bytes should be well under 10M bytes in total | ||
| let dir_bytes = fs_extra::dir::get_size(&n).unwrap(); |
There was a problem hiding this comment.
I'd get rid of extra dependency to decrease compile time. I found this function on stackoverflow:
fn dir_size(path: impl Into<PathBuf>) -> io::Result<u64> {
fn dir_size(mut dir: fs::ReadDir) -> io::Result<u64> {
dir.try_fold(0, |acc, file| {
let file = file?;
let size = match file.metadata()? {
data if data.is_dir() => dir_size(fs::read_dir(file.path())?)?,
data => data.len(),
};
Ok(acc + size)
})
}
dir_size(fs::read_dir(path.into())?)
}
tests/util/mod.rs
Outdated
| @@ -3,6 +3,7 @@ use std::path::{Path, PathBuf}; | |||
| use rocksdb::{Options, DB}; | |||
|
|
|||
| /// Temporary database path which calls DB::Destroy when DBPath is dropped. | |||
| #[derive(Debug)] | |||
There was a problem hiding this comment.
nope. remnant from my dirty dbg!()-ing... 201d718
|
@aleksuss thanks for review! I've cleaned this pr up accordingly. |
src/db.rs
Outdated
| use std::sync::RwLock; | ||
| use std::time::Duration; | ||
|
|
||
| // Marker trait to specify single or multi threaded column family alternations for DB | ||
| // Also, this is minimum common API sharable between SingleThreaded and | ||
| // MultiThreaded. Others differ in self mutability and return type. | ||
| pub trait ThreadMode { | ||
| fn new(cf_map: BTreeMap<String, ColumnFamily>) -> Self; | ||
| fn new(cf_map: BTreeMap<String, *mut ffi::rocksdb_column_family_handle_t>) -> Self; |
There was a problem hiding this comment.
Is it really good idea to use ffi types in public api ?
There was a problem hiding this comment.
certainly, it's not good idea... but we have to do that... kind of. I added some reasoning here: 0d5ff02
I googled a bit but found that it's quite bothersome to hide actual trait methods from public traits...
In short, these methods aren't intended to be consumed, nevertheless both pre- and post- this pr.
There was a problem hiding this comment.
Should the trait ThreadMode be public ??
There was a problem hiding this comment.
I got it. I've seen a description a bit later.
| impl<'a> AsColumnFamilyRef for &'a ColumnFamily { | ||
| fn inner(&self) -> *mut ffi::rocksdb_column_family_handle_t { | ||
| self.inner | ||
| } | ||
| } | ||
|
|
||
| impl<'a> AsColumnFamilyRef for BoundColumnFamily<'a> { | ||
| impl<'a> AsColumnFamilyRef for Arc<BoundColumnFamily<'a>> { |
There was a problem hiding this comment.
| impl<'a> AsColumnFamilyRef for Arc<BoundColumnFamily<'a>> { | |
| impl<'a> AsColumnFamilyRef for ColumnFamilyRef<'a> { |
?
There was a problem hiding this comment.
super good eyes you have to spot these unspoken subtleties... :)
I added some missing docs: eb509fb
src/db.rs
Outdated
| } | ||
| } | ||
|
|
||
| impl ThreadMode for MultiThreaded { | ||
| fn new(cfs: BTreeMap<String, ColumnFamily>) -> Self { | ||
| fn new(cfs: BTreeMap<String, *mut ffi::rocksdb_column_family_handle_t>) -> Self { |
There was a problem hiding this comment.
Can't we create ffi::rocksdb_column_family_handle_t inside the method new and then a signature of the method could be changed to fn new(cfs: BTreeSet<String>) -> Self ? 🤔
There was a problem hiding this comment.
technically, yes. but I double its merit...
As I went long explaining here (0d5ff02), this trait method is called deep inside DB construction at (open_cf_descriptors_internal). So, we have to move large part of code inside ThreadMode.. Then ThreadMode will be significantly fatter than now, although it's not intended to be used for users still as was before. Then this only gives us the ability of getting rid of those ffi:: types in strictly public APIs.
|
@aleksuss Sorry for delay! I'm feeling this pr is getting polished up from your reviews. Thanks for continued review. :) |
🐶 (Hachikō) <(I'm waiting for further review comments if any from you) |
@aleksuss hi! I've replied to your comments. please have a look when convenient. thanks! |
problem
Regardless
SingleThreadedorMultiThreaded,rust-rocksdbcrate doesn't free files even afterdrop_cf()as long as we're openingDBinstance. I addedtest_no_leaked_column_familyto demonstrate that.For
SingleThreaded, it has been existed since the begging. So this isn't regression of #506...For
MultiThreaded, we (Solana) originally introduced theMultiThreadedfor the ultimate goal of freeing dropped cf resources in the middle of in-process cf mutation under multi-threaded context. For that end, we managed to introduce the veryMultiThreadedmode thanks for persistent review and eventual merge and release of 0.16.0. But due to this existing bug, we still can't realize the ultimate goal.The root cause of the leak is that
rocksdb_column_family_handle_destroyisn't called until weDrop::drop()the whole DB.solution
Properly call
rocksdb_column_family_handle_destroyat earlier (but proper) timings.For
SingleThreaded, it's relatively simple: just defineDropforColumnFamily. There is no api incompatibility.For
MultiThreaded, the story isn't that simple because of its relaxed lifetime relation between DB and CFs. So, I had to wrap BoundColumnFamily with Arc. (I added small assertion for this concern intest_no_leaked_column_familyas well) So, I had to introduce api incompatibility to fix this sadly.Although there is unavoidable api breakage, I approached the problem under the constraint of providing some kind of source-level compatibility code for downstream consumers for the sake of general simpler code maintenace and generic programming. Specifically, leveraging the compiler's auto ref resolution thing, I realized that property using
&&ColumnFamilyfor the single threaded. So, all tests compiles adding another extra&at call side for the both MultiThreaded and SingleThraded.Also note that all of existing code should compile as before for default crate feature setting (no
multi-threaded-cf). I just added&across the board to make the test suite compile for the both crate configuration.As for performance, there is no overhead in SingleThreaded. and there is small Arc one for MultiThreaded.
(for the record)
Below is draft pr description: