db: fix iterator error propagation, NextPrefix violation #3593
Conversation
This commit fixes a few issues surrounding NextPrefix and iterator errors. Previously, under some circumstances, an error propagated by the underlying iterator would not immediately be propagated up. Instead the Iterator could in some circumstances call Next or NextPrefix on an already exhausted, errored iterator, resulting in undefined behavior. Similarly, the results of calling NextPrefix on an exhausted top-level pebble.Iterator are not defined. This commit adapts the implementation to early exit in this case. The metamorphic test may generate such operations. Fix cockroachdb#3592.
|
This change is |
There was a problem hiding this comment.
Just one thing. this does not fix the original violates upper bound issue in #3592.
Reviewable status: 0 of 1 files reviewed, all discussions resolved (waiting on @aadityasondhi)
There was a problem hiding this comment.
Pushed a second commit to fix the violates upper bound issue 😅
Reviewable status: 0 of 3 files reviewed, all discussions resolved (waiting on @aadityasondhi)
There was a problem hiding this comment.
Nice!!
Reviewable status: 0 of 3 files reviewed, 1 unresolved discussion (waiting on @aadityasondhi and @jbowens)
internal/keyspan/keyspanimpl/level_iter.go line 158 at r2 (raw file):
return noFileLoaded } l.iter, l.err = l.newIter(file, l.tableOpts)
[nit] maybe do iter, err := and only set l.iter in the no error case, so we don't rely on newIter returning nil
When an ingested flushable creates a range deletion iterator, it uses the keyspanimpl.LevelIter to expose a unified view of all the range deletions across the files of the atomically ingested sstables. When loading a sstable's range deletion iterator failed, it returned a non-nil iterator to work around idiosyncroncies of the keyspanimpl.LevelIter. This could cause the LevelIter to mistakenly think it had already loaded a file's range deletions. This commit fixes ingestedFlushable.constructRangeDelIter to return a nil FragmentIterator if there's an error, and refactors (keyspanimpl.LevelIter).loadFile. Fix cockroachdb#3592.
jbowens
force-pushed
the
iter-err-nextprefix
branch
from
7498751 to
925a3db
Compare
There was a problem hiding this comment.
Reviewable status: 0 of 3 files reviewed, 1 unresolved discussion (waiting on @aadityasondhi and @RaduBerinde)
internal/keyspan/keyspanimpl/level_iter.go line 158 at r2 (raw file):
Previously, RaduBerinde wrote…
[nit] maybe do
iter, err :=and only setl.iterin the no error case, so we don't rely onnewIterreturningnil
Good call
|
|
There was a problem hiding this comment.
Reviewable status: 0 of 3 files reviewed, 2 unresolved discussions
iterator.go line 1743 at r1 (raw file):
Previously, RaduBerinde wrote…
Iterator.NextPrefixsays you can't call it inIterAtLimitstate but doesn't say anything about an exhausted iterator. If it's exhausted in the backward direction, isn'tNextPrefixvalid?
Hrm yeah it seems like we could allow it as an operation semantically equivalent to a plain Next, but I also don't think we require it. Maybe this implementation should literally call Iterator.Next if exhausted.
This commit fixes a few issues surrounding NextPrefix and iterator errors. Previously, under some circumstances, an error propagated by the underlying iterator would not immediately be propagated up. Instead the Iterator could in some circumstances call Next or NextPrefix on an already exhausted, errored iterator, resulting in undefined behavior.
Similarly, the results of calling NextPrefix on an exhausted top-level pebble.Iterator are not defined. This commit adapts the implementation to early exit in this case. The metamorphic test may generate such operations.
Fix #3592.