Fix delete obsolete files on recovery not rate limited

[jowlyzhang]

This PR fix the issue that deletion of obsolete files during DB::Open are not rate limited.

The root cause is slow deletion is disabled if trash/db size ratio exceeds the configured max_trash_db_ratio

rocksdb/include/rocksdb/sst_file_manager.h

Line 126 in d610e14

double max_trash_db_ratio = 0.25,

however, the current handling in DB::Open starts with tracking nothing but the obsolete files. This will make the ratio always look like it's 1.

In order for the deletion rate limiting logic to work properly, we should only start deleting files after SstFileManager has finished tracking the whole DB, so the main fix is to move these two places that attempts to delete file after the tracking are done: 1) the DeleteScheduler::CleanupDirectory call in SanitizeOptions, 2) the DB::DeleteObsoleteFiles call.

There are some other aesthetic changes like refactoring collecting all the DB paths into a function, rename DBImp::DeleteUnreferencedSstFiles to DBImpl:: MaybeUpdateNextFileNumber as it doesn't actually delete the files.

Test plan:
Added unit test and verified with manual testing

[pdillinger]

First impressions. Thanks for the fix!

[pdillinger]

My sense is that it would be better to use an ordered set here, for predictability of behavior. For example I believe there are some cases where the error returned on a multiply-corrupt DB depends on the iteration order of this set. It's less confusing if that error is not dependent on factors like how RocksDB was compiled. This could also appear as flaky test behavior in the future.

Data structure performance should not really be a concern here, as these data structure ops are generally paired with IO ops.

[jowlyzhang]

Thanks for catching this change that may cause regression.

[pdillinger]

With this functionality factored into a function of a giant class, I would like to see enforcement of preconditions. Specifically, either check that it hasn't been called before, or allow repeated calls with no ill effect.

[jowlyzhang]

I added a set empty before populating check.

[anand1976]

Is this true even if CreateColumnFamily is called?

[jowlyzhang]

That's a great point. This is indeed not true when new column families are added during DB session, so this set needs to be refreshed there too. Thank you for catching this!

[jowlyzhang]

I totally missed how column family operations would affect this set. The whole assumption that this set is fixed once DB initialized and is kept intact through the whole DB session is not true at all. So it's not useful to have a member variable storing them like this. Although I can refresh the member variable when column families are updated, the case for when column families are added are relatively straightforward but the case for when a column family becomes completely dereferenced is more nuanced.

So instead I just make the function a pure util function for collecting these paths on demand, it's just a code dedupe refactor.

[anand1976]

LGTM! Thanks for this fix.

[anand1976]

Nit: Maybe move this to db_impl_open.cc since its only called by DBImpl::Open?

[jowlyzhang]

That's a good call. Thank you for the suggestion!

[facebook-github-bot]

@jowlyzhang has imported this pull request. If you are a Meta employee, you can view this diff on Phabricator.

[jowlyzhang]

Thank you for help review this change!

[facebook-github-bot]

@jowlyzhang merged this pull request in 2412530.