maria-discuss team mailing list archive

Thread
Date

Is disabling doublewrite safe on ZFS?

To: maria-discuss@xxxxxxxxxxxxxxxxxxx
From: Gionatan Danti <g.danti@xxxxxxxxxx>
Date: Tue, 14 Aug 2018 11:37:49 +0200
Organization: Assyoma s.r.l.
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.9.1

Hi all,

as by subject: is disabling doublewrite safe on ZFS (and/or other CoWfilesystems as BTRFS)?

Background information: ZFS is a CoW/transactional filesystem, meaningthat writes are atomic: they fully commit or are rolled backup to latest"stable" version. This lend many peoples to claim not only thatdisabling doublewrite is safe when InnoDB runs on top of a ZFS storage,but even that it is the *right* thing to do for increase InnoDB writeperformance. The reason is that when ZFS recordsize is set the same asInnoDB page/record size, no partial page write can happen. Someevidence:http://assets.en.oreilly.com/1/event/21/Optimizing%20MySQL%20Performance%20with%20ZFS%20Presentation.pdf

However, I am not fully committed (pun intended!) to this idea. While Isurely appreciate ZFS write atomicity, and how it *does* protect fromsystem-wide crash (ie: powerloss), I fear that an InnoDB/MariaDB crash*can* lead to partial page writes. If, for example, the mysqld processcrashes (or it is killed) when copying an internal buffer during awrite() call, I can imagine the filesystem will receive wrong/partialdata, which it will happily write to the main storage pool (as it knownothing of internal data consistency from InnoDB point of view).

I understand that this failure scenario should be *really* rare, as thecritical operation (buffer copy from mysqld to system pagecache/ARC viawrite()) is extremely fast compared to the real data flush to stablestorage (meaning that the "vulnerable time window" is very small).However, it remain different from 100% safety. Moreover, it reallybackfired in the past:https://www.percona.com/blog/2015/06/17/update-on-the-innodb-double-write-buffer-and-ext4-transactions/

From my understanding, disabling doublebuffer is really 100% safe onlywhen enabling atomic writes on *a supported hardware*(https://mariadb.com/kb/en/library/atomic-write-support/).


Am I missing something? Am I over-thinking it, maybe?
Thanks.

--
Danti Gionatan
Supporto Tecnico
Assyoma S.r.l. - www.assyoma.it
email: g.danti@xxxxxxxxxx - info@xxxxxxxxxx
GPG public key ID: FF5F32A8

Follow ups

Re: Is disabling doublewrite safe on ZFS?
From: Vladislav Vaintroub, 2018-08-14