replication: forbid implicit limbo owner transition
Forbid limbo ownership transition without an explicit promote. Make it so that synchronous transactions may be committed only after it is claimed by some instance via a PROMOTE request. Make everyone but the limbo owner read-only even when the limbo is empty. Part-of #6034 @TarantoolBot document Title: synchronous replication changes `box.info.synchro.queue` receives a new field: `owner`. It's a replica id of the instance owning the synchronous transaction queue. Once some instance owns the queue, every other instance becomes read-only. When the queue is unclaimed, e.g. `box.info.synchro.queue.owner` is `0`, everyone may be writeable, but cannot create synchronous transactions. In order to claim or re-claim the queue, you have to issue `box.ctl.promote()` on the instance you wish to promote. When elections are enabled, the instance issues `box.ctl.promote()` automatically once it wins the elections, no additional actions are required.
Showing
- src/box/errcode.h 2 additions, 0 deletionssrc/box/errcode.h
- src/box/lua/info.c 3 additions, 1 deletionsrc/box/lua/info.c
- src/box/txn_limbo.c 11 additions, 21 deletionssrc/box/txn_limbo.c
- test/box/alter.result 1 addition, 1 deletiontest/box/alter.result
- test/box/error.result 2 additions, 0 deletionstest/box/error.result
- test/replication/gh-5440-qsync-ro.result 0 additions, 133 deletionstest/replication/gh-5440-qsync-ro.result
- test/replication/gh-5440-qsync-ro.test.lua 0 additions, 53 deletionstest/replication/gh-5440-qsync-ro.test.lua
Loading
Please register or sign in to comment