MDEV-39548 Further cleanup of MDL_request boilerplate

[longjinvan]

Description

This is a follow-up work to PR 5075 ("Cleanup MDL_request boilerplate with ACQUIRE_LOCK macro").

Change thd->backup_commit_lock from MDL_request* to MDL_ticket*

Previously, thd->backup_commit_lock stored a pointer to a stack-allocated MDL_request, creating dangling pointer risks if the function returned early or the code was refactored without clearing the pointer. This patch changes the type to MDL_ticket*, which is managed by the MDL subsystem and does not depend on the caller's stack frame. All related call sites (handler.cc, log.cc, sql_class.cc, xa.cc, sql_reload.cc) are converted to use MDL_ACQUIRE_LOCK directly.

In sql_repl.cc, reset_master() and purge_master_logs() are also converted to MDL_ACQUIRE_LOCK, but the ticket is held in a local MDL_ticket* rather than thd->backup_commit_lock, matching the original semantics where these functions used a local MDL_request.

Convert partition_info.cc to MDL_ACQUIRE_LOCK

Investigation confirmed that tl->mdl_request is not accessed by downstream code after lock acquisition -- only table->mdl_ticket is used. The conversion is safe.

Add MDL_REQUEST_LIST_ADD() helper

For batch lock acquisition via acquire_locks(), callers previously needed 3 steps: allocate an MDL_request on MEM_ROOT, initialize it, and push it into the list. The new MDL_REQUEST_LIST_ADD() macro combines these into a single call with built-in OOM checking. Call sites in sql_base.cc and sp.cc are converted.

sql_show.cc partial conversion

Internal acquire_lock() / try_acquire_lock() calls in try_acquire_high_prio_shared_mdl_lock() are replaced with MDL_ACQUIRE_LOCK() / MDL_TRY_ACQUIRE_LOCK(). However, MDL_request itself cannot be fully eliminated here because tdc_acquire_share() reads from table_list.mdl_request.key for hash lookup in the table definition cache.

Release Notes

N/A

How can this PR be tested?

• All MTR tests pass, confirming no regressions introduced by this refactoring.

Basing the PR against the correct MariaDB version

• This is a refactoring change, and the PR is based against the latest MariaDB development branch.

Copyright

All new code of the whole pull request, including one or several files that are either new files or modified ones, are contributed under the BSD-new license. I am contributing on behalf of my employer Amazon Web Services, Inc.

[gemini-code-assist]

Code Review

This pull request refactors metadata locking (MDL) by replacing local MDL_request stack allocations and manual lock acquisitions with helper macros like MDL_ACQUIRE_LOCK and MDL_REQUEST_LIST_ADD, and changing backup_commit_lock to store an MDL_ticket pointer. The review feedback highlights a code smell in sql_show.cc where a sentinel pointer (MDL_ticket *) 1 is returned to indicate errors; the reviewer suggests returning a boolean instead, populating the ticket directly, and encapsulating key initialization within the helper function.

[gemini-code-assist]

Returning (MDL_ticket *) 1 as a sentinel value to indicate an error is a code smell and can lead to undefined behavior or hard-to-debug issues if the caller ever attempts to dereference it.\n\nInstead of using a sentinel pointer, we should keep the return type as bool (returning true on error, false on success) and populate table->mdl_request.ticket directly. This preserves the original clean semantics, avoids sentinel pointer hacks, and ensures table->mdl_request.ticket is correctly populated for any downstream code.\n\nWe should also initialize table->mdl_request.key inside this function using mdl_key_init to keep the implementation details encapsulated.

static bool\ntry_acquire_high_prio_shared_mdl_lock(THD *thd, TABLE_LIST *table,\n                                      bool can_deadlock)\n{\n  MDL_ticket *ticket;\n  table->mdl_request.key.mdl_key_init(MDL_key::TABLE, table->db.str,\n                                      table->table_name.str);

[longjinvan]

Already addressed in the latest revision — the function now returns bool, populates table->mdl_request.ticket directly, and initializes the key inside.

[gemini-code-assist]

Update the return statements and populate table->mdl_request.ticket directly to avoid using the (MDL_ticket *) 1 sentinel pointer.

    bool error;\n    ticket= thd->mdl_context.MDL_TRY_ACQUIRE_LOCK(\n        MDL_key::TABLE, table->db.str, table->table_name.str,\n        MDL_SHARED_HIGH_PRIO, MDL_TRANSACTION, error);\n    if (error)\n      return true;\n  }\n  else\n  {\n    ticket= thd->mdl_context.MDL_ACQUIRE_LOCK(\n        MDL_key::TABLE, table->db.str, table->table_name.str,\n        MDL_SHARED_HIGH_PRIO, MDL_TRANSACTION,\n        thd->variables.lock_wait_timeout);\n    if (!ticket)\n      return true;\n  }\n\n  table->mdl_request.ticket= ticket;\n  return false;

[longjinvan]

Addressed in the latest revision.

[gemini-code-assist]

Since table_list.mdl_request.key is now fully initialized inside try_acquire_high_prio_shared_mdl_lock, we can remove this manual initialization from the caller.

  if (schema_table->i_s_requested_object & OPEN_TRIGGER_ONLY)

[longjinvan]

Addressed in the latest revision.

[knielsen]

Sergey Vojtovich ***@***.***> writes:

@svoj commented on this pull request. > @@ -4904,22 +4901,19 @@ int reset_master(THD* thd, rpl_gtid *init_state, uint32 init_state_len, #endif /* WITH_WSREP */ bool ret= 0; - MDL_request mdl_request; - MDL_REQUEST_INIT(&mdl_request, MDL_key::BACKUP, "", "", MDL_BACKUP_START, - MDL_EXPLICIT); @knielsen, what was the intention behind taking `MDL_BACKUP_START` here? It is normally issued by `BACKUP STAGE`.

The intention here is to block RESET MASTER from running concurrently with the stage in mariabackup that backs up the binlog files. Since it's somewhat tricky to handle copying the binlog files if the server is removing them concurrently, and quite unnecessary. BACKUP_START is a minimal lock that doesn't block most server operations. The corresponding code in xtrabackup.cc: bool do_backup_binlogs() { // Copy InnoDB binlog files. // Going to BACKUP STAGE START protects against RESET // MASTER deleting files during the copy, or FLUSH // BINARY LOGS truncating them. if (!opt_no_lock) xb_mysql_query(mysql_connection, "BACKUP STAGE START", false, false); if (!m_common_backup.copy_engine_binlogs(opt_binlog_directory,

Also, does it really have to register itself as a commit lock in `thd->backup_commit_lock`?

I don't see that in the piece of code you quoted? But no, thd->backup_commit_lock doesn't sound like something that would be involved here in reset_master(). - Kristian.

[gkodinov]

This is a preliminary review. Thank you for your contribution!

LGTM. Please stand by for Svoj's final review.

[svoj]

Looks nice, thanks! A few minor comments inline.

[svoj]

Any reason to keep backup_lock_released check here? Looks like it was redundant: I don't see any loops and gotos around it.

[svoj]

You can't just goto error here without calling ha_index_end().

[svoj]

Please don't use thd->backup_commit_lock here, make local MDL_ticket *ticket instead.

[svoj]

backup_commit_lock_acquired == true implies valid thd->backup_commit_lock.

[svoj]

This condition looks redundant, you already check that ticket contains valid value when you acquire the lock.

[svoj]

This is an interesting approach and it is where we should end up eventually: TABLE_LIST should contain only MDL_key and not MDL_request. But let's avoid this change for now, we need to develop some consistent approach for removing MDL_request from TABLE_LIST.

[svoj]

@knielsen

The intention here is to block RESET MASTER from running concurrently with
the stage in mariabackup that backs up the binlog files. Since it's somewhat
tricky to handle copying the binlog files if the server is removing them
concurrently, and quite unnecessary. BACKUP_START is a minimal lock that
doesn't block most server operations.

Sounds like MDL_BACKUP_START may indeed be suitable for this purpose. Though I'd probably add a new lock type specifically for it. Still, I guess we can live with this.

I don't see that in the piece of code you quoted? But no,
thd->backup_commit_lock doesn't sound like something that would be involved
here in reset_master().

All 3 occurrences in FLUSH BINARY LOGS, PURGE BINARY LOGS and RESET MASTER are having this pattern:

  MDL_request mdl_request;
  MDL_REQUEST_INIT(&mdl_request, MDL_key::BACKUP, "", "", MDL_BACKUP_START,
                   MDL_EXPLICIT);
  if (thd->mdl_context.acquire_lock(&mdl_request,
                                    thd->variables.lock_wait_timeout))
    return TRUE;
  thd->backup_commit_lock= &mdl_request;

FWICS it is used exclusively by the "wait for the prior commit" routine, which is irrelevant here, right?

[knielsen]

Sergey Vojtovich ***@***.***> writes:

svoj left a comment (MariaDB/server#5160) Sounds like `MDL_BACKUP_START` may indeed be suitable for this purpose. Though I'd probably add a new lock type specifically for it. Still, I guess we can live with this.

This is still new, so I think it's fine to change it if you want, or leaving it as-is is also fine with me.

All 3 occurrences in `FLUSH BINARY LOGS`, `PURGE BINARY LOGS` and `RESET MASTER` are having this pattern: ``` MDL_request mdl_request; MDL_REQUEST_INIT(&mdl_request, MDL_key::BACKUP, "", "", MDL_BACKUP_START, MDL_EXPLICIT); if (thd->mdl_context.acquire_lock(&mdl_request, thd->variables.lock_wait_timeout)) return TRUE; thd->backup_commit_lock= &mdl_request; ``` FWICS it is used exclusively by the "wait for the prior commit" routine, which is irrelevant here, right?

Agree, I think this must be a copy-paste brainfart by me, there should be no need to mess with backup_commit_lock here. - Kristian.