Keyboard shortcuts

Press or to navigate between chapters

Press S or / to search in the book

Press ? to show this help

Press Esc to hide this help

Percolator Distributed Transaction Design

This document explains NoKV’s distributed transaction path implemented by percolator/ and executed through raftstore.

The scope here is the current code path:

  • Prewrite
  • Commit
  • BatchRollback
  • ResolveLock
  • CheckTxnStatus
  • MVCC read visibility (KvGet/KvScan through percolator.Reader)

1. Where It Runs

Percolator logic is executed on the Raft apply path:

  1. Client sends NoKV RPC (KvPrewrite, KvCommit, …).
  2. raftstore/kv/service.go wraps it into a RaftCmdRequest.
  3. Store proposes command through Raft.
  4. On apply, raftstore/kv/apply.go dispatches to percolator.*.
sequenceDiagram
    participant C as raftstore/client
    participant S as kv.Service
    participant R as Raft (leader->followers)
    participant A as kv.Apply
    participant P as percolator
    participant DB as NoKV DB
    C->>S: KvPrewrite/KvCommit...
    S->>R: ProposeCommand(RaftCmdRequest)
    R->>A: Apply committed log
    A->>P: percolator.Prewrite/Commit...
    P->>DB: CFDefault/CFLock/CFWrite reads+writes
    A-->>S: RaftCmdResponse
    S-->>C: NoKV RPC response

Key files:

1.1 RPC to Percolator Function Mapping

NoKV RPCkv.Apply branchPercolator function
KvPrewriteCMD_PREWRITEPrewrite
KvCommitCMD_COMMITCommit
KvBatchRollbackCMD_BATCH_ROLLBACKBatchRollback
KvResolveLockCMD_RESOLVE_LOCKResolveLock
KvCheckTxnStatusCMD_CHECK_TXN_STATUSCheckTxnStatus
KvGetCMD_GETReader.GetLock + Reader.GetValue
KvScanCMD_SCANReader.GetLock + CFWrite iteration + GetInternalEntry

2. MVCC Data Model

NoKV uses three MVCC column families:

  • CFDefault: stores user values at start_ts
  • CFLock: stores lock metadata at fixed lockColumnTs = MaxUint64
  • CFWrite: stores commit records at commit_ts

2.1 Lock Record

percolator.Lock (encoded by EncodeLock):

  • Primary
  • Ts (start timestamp)
  • TTL
  • Kind (Put/Delete/Lock)
  • MinCommitTs

2.2 Write Record

percolator.Write (encoded by EncodeWrite):

  • Kind
  • StartTs
  • ShortValue (codec supports it; current commit path does not populate it)

3. Concurrency Control: Latches

Before mutating keys, percolator acquires striped latches:

  • latch.Manager hashes keys to stripe mutexes.
  • Stripes are deduplicated and acquired in sorted order to avoid deadlocks.
  • Guard releases in reverse order.

In raftstore/kv, latches are passed explicitly:

  • NewEntryApplier creates one latch.NewManager(512) and reuses it.
  • Apply / NewApplier accept an injected manager; nil falls back to latch.NewManager(512).

This serializes conflicting apply operations on overlapping keys in one node.

4. Two-Phase Commit Flow

Client side (raftstore/client.Client.TwoPhaseCommit):

  1. Group mutations by region.
  2. Prewrite primary region.
  3. Prewrite secondary regions.
  4. Commit primary region.
  5. Commit secondary regions.
sequenceDiagram
    participant Cli as Client
    participant R1 as Region(primary)
    participant R2 as Region(secondary)
    Cli->>R1: Prewrite(primary + local muts)
    Cli->>R2: Prewrite(secondary muts)
    Cli->>R1: Commit(keys,startTs,commitTs)
    Cli->>R2: Commit(keys,startTs,commitTs)

5. Write-Side Operations

5.1 Prewrite

Prewrite runs mutation-by-mutation:

  1. Check existing lock on key:
    • if lock exists with different Ts -> KeyError.Locked
  2. Check latest committed write:
    • if commit_ts >= req.start_version -> WriteConflict
  3. Apply data intent:
    • Put: write value into CFDefault at start_ts
    • Delete/Lock: delete default value at start_ts (if exists)
  4. Write lock into CFLock at lockColumnTs

5.2 Commit

For each key:

  1. Read lock
  2. If no lock:
    • if write with same start_ts exists -> idempotent success
    • else -> abort (lock not found)
  3. If lock Ts != start_version -> KeyError.Locked
  4. commitKey:
    • if min_commit_ts > commit_version -> CommitTsExpired
    • if write with same start_ts already exists:
      • rollback write -> abort
      • write with different commit ts -> treat success, clean lock
      • same commit ts -> success
    • else write CFWrite[key@commit_ts] = {kind,start_ts}
    • remove lock from CFLock

5.3 BatchRollback

For each key:

  1. If already has write at start_ts:
    • rollback marker already exists -> success
    • non-rollback write exists -> success (already committed)
  2. Remove lock (if any)
  3. Remove default value at start_ts (if any)
  4. Write rollback marker to CFWrite at start_ts

5.4 ResolveLock

  • commit_version == 0 -> rollback matching locks
  • commit_version > 0 -> commit matching locks
  • Returns number of resolved keys

6. Transaction Status Check

CheckTxnStatus targets the primary key and decides whether txn is alive, committed, or should be rolled back.

Decision order:

  1. Read lock on primary
  2. If lock exists but lock.ts != req.lock_ts -> KeyError.Locked
  3. If lock exists and TTL expired (current_ts >= lock.ts + ttl):
    • rollback primary
    • action = TTLExpireRollback
  4. If lock exists and caller pushes timestamp:
    • min_commit_ts = max(min_commit_ts, caller_start_ts+1)
    • action = MinCommitTsPushed
  5. If no lock, check write by start_ts:
    • committed write -> return commit_version
    • rollback write -> action LockNotExistRollback
  6. If no lock and no write, and rollback_if_not_exist is true:
    • write rollback marker
    • action LockNotExistRollback

7. Read Path Semantics (MVCC Visibility)

KvGet and KvScan read through percolator.Reader:

  1. Check lock first:
    • if lock exists and read_ts >= lock.ts, return locked error
  2. Find visible write in CFWrite:
    • latest commit_ts <= read_ts
  3. Interpret write kind:
    • Delete/Rollback => not found
    • Put => read value from CFDefault at start_ts

Notes:

  • KvScan currently rejects reverse scan.
  • scanWrites uses internal iterator over CFWrite.

8. Error and Idempotency Behavior

OperationIdempotency/Conflict behavior
PrewriteRejects lock conflicts and write conflicts; returns per-key KeyError list.
CommitIdempotent for already committed keys with same start_ts; stale/missing lock may abort.
BatchRollbackSafe to repeat; rollback marker prevents duplicate side effects.
ResolveLockSafe to retry per key set; resolves only matching start_ts locks.
CheckTxnStatusMay push min_commit_ts, rollback expired primary lock, or return committed version.

9. Current Operational Boundaries

  • Percolator execution is tied to NoKV RPC + Raft apply path, with the command shape still following the TinyKV/TiKV MVCC model.
  • Latch scope is process-local when one store shares a single latch.Manager; region correctness still comes from Raft ordering.
  • Write.ShortValue and Write.ExpiresAt are codec fields; current commit path stores primary value bytes in CFDefault and reads from there when short value is not present.

10. Validation and Tests

Primary coverage:

These tests cover 2PC happy path, lock conflicts, status checks, resolve/rollback behavior, and client region-aware retries.