Skip to content

Latest commit

 

History

History
836 lines (593 loc) · 31 KB

CHANGELOG.md

File metadata and controls

836 lines (593 loc) · 31 KB

Changelog

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog and this project adheres to Calendar Versioning with the YY.MINOR.MICRO scheme.

[25.1.0] - Unreleased

Configuration

  • New alter system parameters - sql_vdbe_opcode_max and sql_motion_row_max.

  • Default config name is picodata.yaml.

  • The default names for replicaset and instance are now generated using the following patterns:

    • ReplicaSet Name: {tier_name}_{replicaset_number_in_this_tier}
    • Instance Name: {tier_name}_{replicaset_number_in_tier}_{instance_number_in_replicaset}

  • New parameters for Vinyl configuration: bloom_fpr, max_tuple_size, page_size, range_size, run_count_per_size, run_size_ratio, read_threads, write_threads and timeout.

  • plugin_dir parameter is renamed to share_dir (--plugin-dir -> --share-dir, PICODATA_PLUGIN_DIR -> PICODATA_SHARE_DIR, config: instance.plugin_dir -> instance.share_dir)

  • The following parameters has been moved from configuration file to _pico_db_config system table:

    • checkpoint_interval
    • checkpoint_count
    • max_concurrent_messages

  • max_heartbeat_period removed from _pico_db_config

  • Major renaming of parameters from _pico_db_config:

  • max_concurrent_messages renamed to iproto_net_msg_max

  • password_min_length renamed to auth_password_length_min

  • password_enforce_uppercase renamed to auth_password_enforce_uppercase

  • password_enforce_lowercase renamed to auth_password_enforce_lowercase

  • password_enforce_digits renamed to auth_password_enforce_digits

  • password_enforce_specialchars renamed to auth_password_enforce_specialchars

  • max_login_attempts renamed to auth_login_attempt_max

  • auto_offline_timeout renamed to governor_auto_offline_timeout

  • max_pg_statements renamed to pg_statement_max

  • max_pg_portals renamed to pg_portal_max

  • snapshot_chunk_max_size renamed to raft_snapshot_chunk_size_max

  • snapshot_read_view_close_timeout renamed to raft_snapshot_read_view_close_timeout

  • cluster_wal_max_size renamed to raft_wal_size_max

  • cluster_wal_max_count renamed to raft_wal_count_max

  • listen, advertise parameters are renamed to iproto_listen, iproto_advertise

CLI

  • picodata expel takes instance uuid instead of instance name.

  • String cells are now output without double quotes during SELECT.

  • picodata connect and picodata admin return a non-zero exit code for file inputs with errors.

  • picodata --version now provides verbose output, including the build type (static or dynamic) and the build configuration (release or debug)

  • New command picodata status which prints all current members of the cluster and their status.

Pgproto

  • Support LDAP authentication method

Compatibility

  • Added unique index on column uuid for _pico_instance table. IDs of _pico_instance_raft_id and _pico_instance_replicaset_name now equals to 2 and 3.

  • New special command \set delimiter enter to change the default delimiter to EOL (End Of Line). Introduced a new inner prompt prefix to indicate when input is waiting for a delimiter. EOF is now treated as a delimiter when reading files.

  • Now, for instance to join a cluster, its version must equal to the cluster's version or one minor version greater. For example, if the cluster's version is 24.7, only instances with versions 24.7 or 24.8 can join the cluster.

  • Global rename

    • Config File Changes:

      • data_dir renamed to instance_dir

    • Source Code Changes:

      • data_dir renamed to instance_dir

    • Environment Variable Changes:

      • PICODATA_DATA_DIR renamed to PICODATA_INSTANCE_DIR

  • PgProto is now enabled by default and listens at 127.0.0.1:4327.

  • Prevented non-admin users with the DROP TABLE privilege from dropping system tables.

  • SQL query parameters renamed:

    • vdbe_max_steps to sql_vdbe_opcode_max
    • vtable_max_rows to sql_motion_row_max

  • SCALAR and NUMBER data types are not supported anymore.

RPC API

  • .proc_expel and .proc_expel_redirect takes instance uuid instead of instance name.

Fixes

  • It's no longer possible to execute DML queries for tables that are not operable

  • Fixed panic on user/role creation when max user number was exceeded

  • picodata expel used to finish before the instance got finally expelled. Now it will block until the instance is completely expelled, or the timeout is exceeded.

  • Fixed a bug, where we would allow to create more than 2 versions of the same plugin (and panic when compiled in debug mode).

  • DROP PLUGIN now leaves the plugin's data in the database if WITH DATA wasn't specified. Previously we would return an error instead.

[24.6.1] - 2024-10-28

Configuration

  • New feature tier - a group of instances with own replication factor. Tiers can span multiple failure domains and a single cluster can have multiple tiers. Going forward it will be possible to specify which tier a table belongs to.

  • Default authentication method changed from CHAP-SHA1 to MD5 both for user creation and in connect CLI. This change affects new user creation and all system users (except the pico_service user), as a command-line interface of picodata connect and picodata expel. Also, default schema version at cluster boot is now 1, not 0 as it was previously. Connection via Pgproto no longer requires additional manual step to change the authentication method. However if you use iproto the admin will have to manually change the authentication type.

  • Support human numbers to configure memtx.memory, vinyl.memory and vinyl.cache parameters. Supported suffixes: K, M, G, T, 1K = 1024 (e.g picodata run --memtx-memory 10G)

  • Add cluster_wal_max_size and cluster_wal_max_count alter system parameters which control the new auto-compaction feature. Whenever the total size of tuples in raft log system space exceeds cluster_wal_max_size or the number of tuples exceeds cluster_wal_max_count the log will be automatically compacted.

Plugins

  • New ability to write custom plugins for picodata. Plugins are supposed to be written in Rust using our official SDK crate: picodata-plugin. Plugins are compiled to shared objects which are loaded directly into picodata process. Plugins have in-process access to various picodata API's. Plugins do not use special sandboxing mechanisms for maximum performance. Thus require special care during coding. Make sure you do not install plugins from untrusted sources.
  • Plugins are able to use dedicated RPC subsystem for communication inside the cluster.
  • Plugins are able to provide migrations written in SQL to define objects they need for operation.
  • Plugins are cluster aware, they're deployed on entire cluster. It is possible to specify particular tier for plugins to run on.
  • Plugins are managed with SQL API, i e CREATE PLUGIN and such. For details consult with SQL reference.

CLI

  • New picodata connect and picodata expel argument --timeout for specifying the timeout for address resolving operation.

  • Replace the use of localhost with 127.0.0.1 in picodata run --listen default value and everywhere across documentation and examples to reduce ambiguity.

RPC API

  • New rpc entrypoint: .proc_get_vshard_config which returns the vshard configuration of tier.

  • Unused types of IPROTO requests have been forbidden for the sake of integrity. Here is the list (all start with "IPROTO_" prefix): INSERT, REPLACE, UPDATE, DELETE, CALL_16, UPSERT, NOP, PREPARE, BEGIN, COMMIT, ROLLBACK. In future verisons, SELECT will also be forbidden.

  • New rpc endpoint: .proc_replication_sync which waits until replication on the instance progresses until the provided vclock value.

  • Parameters traceable and id have been removed from .proc_sql_dipstach.

Compatibility

  • The current version is NOT compatible with prior releases. It cannot be started with the old snapshots

  • Order of columns in _pico_service_route table has changed.

  • Global rename

    • Config File Changes:

      • cluster_id renamed to name
      • instance_id renamed to name
      • replicaset_id renamed to replicaset_name

    • Source Code Changes:

      • cluster_id renamed to cluster_name
      • instance_id renamed to instance_name
      • instance.instance_uuid renamed to instance.uuid
      • replicaset.replicaset_uuid renamed to replicaset.uuid
      • replicaset.replicaset_name renamed to replicaset.name
      • replicaset_id renamed to replicaset_name
      • corresponding tables' columns and indexes changed accordingly

    • Environment Variable Changes:

      • PICODATA_CLUSTER_ID renamed to PICODATA_CLUSTER_NAME
      • PICODATA_INSTANCE_ID renamed to PICODATA_INSTANCE_NAME
      • PICODATA_REPLICASET_ID renamed to PICODATA_REPLICASET_NAME

  • Default delimiter in picodata connect and picodata admin cli sessions is now ;

  • Paramters of .proc_sql_dipstach RPC have been changed.

Lua API

  • Update pico.LUA_API_VERSION: 4.0.0 -> 5.0.0
  • The following functions removed in favor of SQL commands and RPC API stored procedures:

SQL

  • SQL supports LIKE operator
  • SQL supports ILIKE operator
  • SQL supports lower and upper string functions
  • Execute option sql_vdbe_max_steps was renamed to vdbe_max_steps
  • SQL supports SELECT statements without scans: select 1
  • CREATE TABLE, CREATE INDEX, CREATE PROCEDURE, CREATE USER and CREATE ROLE support IF NOT EXISTS option
  • DROP TABLE, DROP INDEX, DROP PROCEDURE, DROP USER and DROP ROLE support IF EXISTS option
  • CREATE TABLE, CREATE INDEX, CREATE PROCEDURE, DROP TABLE, DROP INDEX and DROP PROCEDURE support WAIT APPLIED (GLOBALLY | LOCALLY) options, allowing users to wait for operations to be committed across all replicasets or only on the current one
  • EXPLAIN estimates query buckets
  • SQL supports COALESCE function
  • CREATE USER no need to specify PASSWORD for LDAP authentification
  • SQL supports STRING_AGG as an alias for GROUP_CONCAT aggregate function
  • SQL support LOCALTIMESTAMP function

Pgproto

  • "vdbe_max_steps" and "vtable_max_rows" options are supported in connection string. These options allow to override the defalt values of the corresponding execution options used in sql (VDBE_MAX_STEPS and VTABLE_MAX_ROWS).

    For example, the following connection string sets both options to 42: postgres://postgres:Passw0rd@localhost:5432?options=vtable_max_rows%3D42,vdbe_max_steps%3D42

Fixes

  • Fixed bucket rebalancing for sharded tables
  • Fixed panic when applying snapshot with the same index

[24.5.1] - 2024-09-04

SQL

  • SQL now infers sharding key from primary key, when the former is not specified in create table clause
  • SQL normalizes unquoted identifiers to lowercase instead of uppercase
  • SQL supports LIMIT clause
  • SQL supports SUBSTR function
  • SQL supports postgres cast notation: expr::type
  • SQL internally uses new protocol for cacheable requests, which improves perfomance

Pgproto

  • pgproto supports tab-completion for tables names in psql:

    postgres=> select * from _pico_<TAB>
_pico_index             _pico_plugin            _pico_privilege         _pico_routine           _pico_table
_pico_instance          _pico_plugin_config     _pico_property          _pico_service           _pico_tier
_pico_peer_address      _pico_plugin_migration  _pico_replicaset        _pico_service_route     _pico_user

  • pgproto supports explicit parameter type declarations in SQL via casting. This is helpful for drivers that do not specify parameters types, such as pq and pgx drivers for Go. In such drivers, users need to explicitly cast all query parameters.

    If the driver doesn't specify the type and the parameter isn't cast, the query will fail. For instance, running SELECT * FROM t WHERE id = $1 in pgx will return "could not determine data type of parameter $1" error. To resolve this, users must specify the expected type of the parameter: SELECT * FROM t WHERE id = $1::INT.

  • Mutual TLS authentication for Pgproto.

    1. Set instance.pg.ssl configuration parameter to true
    2. Put PEM-encoded ca.crt file into instance's data directory along with server.crt and server.key.

    As a result pgproto server will only accept connection if client has presented a certificate which was signed by ca.crt or it's derivatives.

    If ca.crt is absent in instance's data directory, then client certificates are not requested and not validated.

Configuration

  • Set up password for admin with PICODATA_ADMIN_PASSWORD environment variable

  • Multiline input is available in picodata admin and picodata connect

  • Set delimiter for multiline input with \set delimiter my-shiny-delimiter

  • Ability to change cluster properties via SQL ALTER SYSTEM command

Fixes

  • Fix error "Read access to space '_raft_state' is denied" when executing a DML query on global tables

  • Fix error "Maximum number of login attempts exceeded" in picodata admin

Compatibility

  • The current version is NOT compatible with prior releases. It cannot be started with the old snapshots

  • New index for the system table _pico_replicaset - _pico_replicaset_uuid

  • Changed weight column type to DOUBLE in _pico_replicaset

  • Option picodata run --peer now defaults to --advertise value. The previous was localhost:3301. This leads to the important behavior change. Running picodata run --listen :3302 without implicit --peer specified now bootstraps a new cluster. The old behavior was to join :3301 by default

  • DdlAbort raft log entry now contains the error information.

  • Add promotion_vclock column to _pico_replicaset table.

  • Add current_config_version column to _pico_replicaset table.

  • Add target_config_version column to _pico_replicaset table.

  • Replicated is no longer a valid instance state.

RPC API

  • Removed stored procedure .proc_replication_promote.

  • New rpc entrypoint: .proc_get_config which returns the effective picodata configuration

Lua API

  • Update pico.LUA_API_VERSION: 3.1.0 -> 4.0.0
  • The following functions removed in favor of SQL commands and RPC API stored procedures:

[24.4.1] - 2024-06-21

Pgproto

  • Allow connecting to the cluster using PostgreSQL protocol, see Tutorial — Connecting — Pgproto:

    picodata run --pg-listen localhost:5432
psql

CREATE TABLE ...
INSERT ...
SELECT ...

  • The feature is currently in beta. It does NOT automatically imply complete compatibility with PostgreSQL's extensive features, SQL syntax, etc

SQL

  • New commands CREATE INDEX and DROP INDEX
  • Support SELECT ... ORDER BY
  • Support SELECT ... UNION ... SELECT ... UNION
  • Support common table expressions (CTE)
  • Support CASE expression
  • New function TRIM
  • New functions TO_CHAR, TO_DATE
  • Allow PRIMARY KEY next to column declaration
  • Support SET ... and SET TRANSACTION ... but they are ignored
  • Support inferring not null constraint on primary key columns
  • Support INSERT, UPDATE, DELETE in global tables

Configuration

  • Provide a new way of configuring instances via config file in a yaml format, see Reference — Configuration file. It extends the variety of previously available methods — environment variables and command-line arguments

  • New option picodata run --config provides a path to the config file

  • New option picodata run -c overrides single parameter using the same naming

  • New command picodata config default generates contents of the config file with default parameter values

  • New RPC API .proc_get_config returns the effective configuration

Compatibility

  • The current version is NOT compatible with prior releases. It cannot be started with the old snapshots

  • System table _pico_table format changed, the field distribution now is a map, a new field description was added (string)

  • System table _pico_tier format changed, a new field can_vote was added (boolean)

  • Rename all indexes adding a prefix containing the table name, e.g. name -> _pico_table_name

  • System table _pico_index format changed, now parts are stored by field name instead of an index, other fields were rearranged significantly, see Architecture — System tables

  • Rename RPC APIs related to SQL: dispatch_query -> proc_sql_dispatch; execute -> proc_sql_execute

[24.3.3] - 2024-07-03

  • Fix invalid socket path error at startup
  • Fix insufficient privileges for sbroad's temp tables breaks legit sql queries
  • Finalize static analysis patches

[24.3.2] - 2024-06-10

  • New HTTP endpoint /metrics exposes instance metrics in prometheus format

[24.2.4] - 2024-06-03

  • Fix invalid socket path error at startup
  • Fix insufficient privileges for sbroad's temp tables breaks legit sql queries
  • Fix panic in case of reference used in sql query

[24.2.3] - 2024-05-28

  • Fix picodata admin 100% CPU usage when server closes the socket
  • Fix picodata connect error after granting a role to the user
  • Fix ALTER USER alice WITH NOLOGIN

[24.2.2] - 2024-04-03

  • Fix panic after CREATE USER alice; DROP ROLE alice;

  • Fix SQL chain of joins without sub-queries SELECT * FROM ... JOIN ... JOIN ...

  • Fix SQL grammar support for table.*

  • Refine audit log events list: remove 'new_database_created', add 'create_local_db', 'drop_local_db', 'connect_local_db', 'recover_local_db', 'integrity_violation'

  • Revise picodata expel command-line arguments and tutorial

[24.2.1] - 2024-03-20

SQL

  • Introduce stored procedures:

    CREATE PROCEDURE my_proc(int, text)
LANGUAGE SQL
AS $$
  INSERT INTO my_table VALUES($1, $2)
$$;

CALL my_proc(42, 'the answer');

SELECT * FROM my_table;

  • The following new queries are supported:

    CREATE PROCEDURE
DROP PROCEDURE
CALL PROCEDURE
ALTER PROCEDURE ... RENAME TO
GRANT ... ON PROCEDURE
REVOKE ... ON PROCEDURE

ALTER USER ... RENAME TO

Security

  • All inter-instance communications now occur under pico_service builtin user. The user is secured with a password in a file provided in picodata run --service-password-file command-line option

  • New requirements on password complexity — enforce uppercase, lowercase, digits, special symbols

Implementation details

  • Make RPC API the main communication interface, see Architecture — RPC API. Lua API is deprecated and will be removed soon

Compatibility

  • System table _pico_role was deleted

  • System table _pico_user format changed, a new field type was added (string, "user" | "role")

  • The current version is NOT compatible with prior releases. It cannot be started with the old snapshots

[24.1.1] - 2024-02-09

  • Slightly change calendar versioning semantics, it's YY.MINOR now instead of YY.0M.

CLI

  • New picodata admin command connects to an instance via unix socket under the admin account, see Tutorial — Connecting — Admin console.

  • New picodata connect implementation provides a console interface to the distributed SQL, see Tutorial — Connecting — SQL console.

  • New option picodata run --admin-sock replaces --console-sock which is removed. The default value is <data_dir>/admin.sock.

  • New option picodata run --shredding enables secure removing of data files (snap, xlog).

  • New option picodata run --log configures the diagnotic log.

  • New option picodata run --memtx-memory controls the amount of memory allocated for the database engine.

SQL

  • Global tables now can be used in the following queries:

    SELECT
SELECT ... EXCEPT
SELECT ... UNION ALL
SELECT ... WHERE ... IN (SELECT ...)
SELECT ... JOIN
SELECT ... GROUP BY

  • ALTER USER ... WITH LOGIN can now unblock a user, who was blocked due to exceeding login attempts.

Fixes

  • Revoke excess privileges from guest
  • Fix panic after ALTER USER "alice" WITH NOLOGIN
  • Repair picodata connect --auth-type=ldap
  • Picodata instances will no longer ingore raft entries which failed to apply. Instead now the raft loop will keep retrying the operation forever, so that admin has an opportunity to fix the error manually. Raft entries should never fail to apply, so if this happens please report a bug to us.

Compatibility

  • System table _pico_replicaset now has a different format: the field master_name is replaced with 2 fields current_master_name and target_master_name.

  • All .proc_* stored procedures changed their return values. An extra top level array of 1 element is removed.

  • The current version is NOT compatible with prior releases. It cannot be started with the old snapshots.

[23.12.1] - 2023-12-21

Fixes

  • Correct picodata -V
  • Web UI appeared to be broken in 23.12.0
  • And picodata connect --unix too

[23.12.0] - 2023-12-08

Features

  • Clusterwide SQL is available via \set language sql in the interactive console with the support of global and sharded tables, see Reference — SQL Queries. The basic features are:

    # DDL
CREATE TABLE ... USING memtx DISTRIBUTED GLOBALLY
CREATE TABLE ... USING memtx/vinyl DISTRIBUTED BY
DROP TABLE

# ACL
CREATE USER
CREATE ROLE
ALTER USER
DROP USER
DROP ROLE
GRANT ... TO
REVOKE ... FROM

# DQL
SELECT
SELECT ... JOIN
SELECT ... LEFT JOIN
SELECT ... WHERE
SELECT ... WHERE ... IN
SELECT ... UNION ALL
SELECT ... GROUP BY

# DML
INSERT
UPDATE
DELETE

# other
EXPLAIN

  • Implement request authorization based on access control lists (ACL), see Tutorial — Access Control.

  • Implement security audit log, see Tutorial — Audit log.

  • Implement automatic failover of replicaset leaders, see Architecture — Topology management.

  • Introduce Web UI. It includes cluster status panel and replicaset list. Current status of Web UI is still beta.

CLI

  • Interactive console is disabled by default. Enable it implicitly with picodata run -i.

  • Allow connecting interactive console over a unix socket picodata run --console-sock. Use picodata connect --unix to connect. Unlike connecting to a --listen address, console communication occurs in plain text and always operates under the admin account.

  • New option --password-file for `picodata connect' allows supplying password in a plain-text file.

  • Allow specifying picodata connect [user@][host][:port] format. It overrides the --user option.

  • Enable the audit log with picodata run --audit.

  • Allow connecting interactive console over a unix socket picodata run --console-sock. Use picodata connect --unix to connect. Unlike connecting to a --listen address, console communication occurs in plain text and always operates under the admin account.

  • Block a user after 4 failed login attempts.

Lua API

  • Changes in terminology - all appearances of space changed to table
  • Update pico.LUA_API_VERSION: 1.0.0 -> 3.1.0
  • New semantics of pico.create_table(). It's idempotent now.
  • pico.create_table() has new optional parameter: engine. Note: global spaces can only have memtx engine.
  • pico.whoami() and pico.instance_info() returns new field tier
  • Add pico.sql()
  • Add pico.drop_table()
  • Add pico.create_user(), pico.drop_user()
  • Add pico.create_role(), pico.drop_role()
  • Add pico.grant_privilege(), pico.revoke_privilege()
  • Add pico.raft_term()
  • Add pico.change_password()
  • Add pico.wait_ddl_finalize()
  • Make pico.cas follow access control rules
  • pico.cas now verifies dml operations before applying them
  • Change pico.raft_log() arguments
  • Make opts.timeout optional in most functions

Compatibility

  • The current version is NOT compatible with prior releases. It cannot be started with the old snapshots.

[23.06.0] - 2023-06-16

Features

  • Expose the Public Lua API pico.*. It's supplemented with a built-in reference manual, see pico.help().

  • Compare and Swap (CaS) is an algorithm that allows to combine Raft operations with a predicate checking. It makes read-write access to global spaces serializable. See pico.help('cas').

  • Clusterwide schema now allows to create global and sharded spaces. The content of global spaces is replicated to every instance in the cluster. In sharded spaces the chuncs of data (buckets) are distributed across different replicasets. See pico.help('create_space').

  • Raft log compaction allows stripping old raft log entries in order to prevent its infinite growth. See pico.help('raft_compact_log').

  • Remove everything related to "migrations". They're superseeded with "clusterwide schema" mentioned above.

CLI

  • picodata run --script command-line argument sets a path to a Lua script executed at startup.

  • picodata run --http-listen command-line argument sets the HTTP server listening address. If no value is provided, the server won't be initialized.

  • picodata connect CLI command provides interactive Lua console.

Implementation details

  • Picodata automatically demotes Raft voters that go offline and promotes a replacement. See docs/topology.md for more details. Replicaset leadership is switched too.

Compatibility

  • The current version is NOT compatible with prior releases. It cannot be started with the old snapshots.

[22.11.0] - 2022-11-22

Features

  • Brand new algorithm of cluster management based on the "governor" concept — a centralized actor that maintains cluster topology and performs instances configuration.

  • Instance states are now called "grades". This new term more clearly denotes how an instance is currently perceived by other instances (eg. how they are configured in its regard) rather than what it assumes about itself.

  • Built-in sharding configuration based on the vshard library. Once a replicaset is up to the given replication factor, Picodata will automatically re-balance data across replicasets.

  • Clusterwide schema and data migrations are introduced.

  • Instances can now be expelled in order to shrink the cluster.

Compatibility

  • The current version is NOT compatible with 22.07.0. It cannot be started with the old snapshots.

[22.07.0] - 2022-07-08

Basic functionality

  • Command line interface for cluster deployment.
  • Dynamic topology configuration, cluster scaling by launching more instances.
  • Support for setting the replication factor for the whole cluster.
  • Failure domains-aware replicasets composition.
  • Two kinds of storages:
    • based on Raft consensus algorithm (clusterwide),
    • based on Tarantool master-master async replication.
  • Graceful instance shutdown.
  • Automatic Raft group management (voters provision, Raft leader failover).
  • Dead instance rebootstrap without data loss.
  • Automatic peers discovery during initial cluster configuration.