Read Committed isolation level
Read Committed is one of the three isolation levels in PostgreSQL, and also its default. A unique property of this isolation level is that clients don't need retry logic for serialization errors (40001) in applications when using this isolation level.
The other two isolation levels (Serializable and Repeatable Read) require apps to have retry logic for serialization errors. Read Committed in PostgreSQL works around conflicts by allowing single statements to work on an inconsistent snapshot (in other words, non-conflicting rows are read as of the statement's snapshot, but conflict resolution is done by reading and attempting re-execution/ locking on the latest version of the row).
YSQL supports the Read Committed isolation level, and its behavior is the same as that of PostgreSQL's Read Committed level (section 13.2.1).
Semantics
YSQL requirement
In addition to the requirements that follow, there is another YSQL specific requirement: ensure that external clients don't facekReadRestart errors.
To support the Read Committed isolation level in YSQL with the same semantics as PostgreSQL, the following requirements apply:
SELECT (without explicit row locking)
- New read point is chosen at statement start that includes anything that committed before the query began.
- Data from updates by previous statements in the same transaction is visible.
UPDATE, DELETE, SELECT FOR UPDATE, FOR SHARE, FOR NO KEY UPDATE, FOR KEY SHARE
(The last two are not mentioned in the PostgreSQL documentation, but the same behavior is seen for these as below.)
- New read point is chosen at statement start that includes anything that committed before the query began.
- If the row of interest:
- is being updated (or deleted) by other transactions in a conflicting way (the statement's read time falls within the read time of other transactions to current time), wait for them to commit or rollback, then perform recheck steps (see below).
- has been updated (or deleted) by other transactions in a conflicting way (a statement's read time falls within the read time to commit time of other transactions), perform recheck steps.
- has been locked by other transactions in a conflicting way, wait for them to commit or rollback, then perform recheck steps.
The recheck steps are as follows:
- If a row is deleted, ignore it.
- Apply update/acquire lock on updated version of row if where clause evaluates to true on the updated version of row. (Note that the updated version of a row could have a different pk as well; this implies that PostgreSQL follows the chain of updates for a row even across primary key changes).
INSERT
- ON CONFLICT DO UPDATE: if a conflict occurs, wait for the conflicting transaction to commit or rollback.
- On rollback, proceed as usual.
- On commit, modify the new version of row.
- ON CONFLICT DO NOTHING: do nothing if a conflict occurs.
Usage
By setting the tserver gflag yb_enable_read_committed_isolation=true, the Read Committed isolation in YSQL will actually map to the Read Committed implementation in DocDB. If set to false, it will have the earlier behavior of mapping Read Committed to REPEATABLE READ.
The following ways can be used to start a Read Committed transaction after setting the gflag:
START TRANSACTION isolation level read committed [read write | read only];BEGIN [TRANSACTION] isolation level read committed [read write | read only];BEGIN [TRANSACTION]; SET TRANSACTION ISOLATION LEVEL READ COMMITTED;BEGIN [TRANSACTION]; SET SESSION CHARACTERISTICS AS TRANSACTION ISOLATION LEVEL READ COMMITTED;
Read Committed on YSQL will have pessimistic locking behavior; in other words, a Read Committed transaction will wait for other Read Committed transactions to commit or rollback in case of a conflict. Two or more transactions could be waiting on each other in a cycle. Hence, to avoid a deadlock, be sure to configure a statement timeout (by setting the statement_timeout parameter in ysql_pg_conf_csv tserver gflag on cluster startup). Statement timeouts will help avoid deadlocks (see the first example).
Examples
Start by setting up the table you'll use in all of the examples in this section.
create table test (k int primary key, v int);
Avoid deadlocks in Read Committed transactions
You can avoid deadlocks in Read Committed transactions by relying on statement timeout.
truncate table test;
insert into test values (1, 5);
insert into test values (2, 5);
| Client 1 | Client 2 |
|---|---|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
SELECT behavior without explicit locking
truncate table test;
insert into test values (1, 5);
| Client 1 | Client 2 |
|---|---|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
UPDATE behavior
truncate table test;
insert into test values (0, 5), (1, 5), (2, 5), (3, 5), (4, 1);
| Client 1 | Client 2 |
|---|---|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
SELECT FOR UPDATE behavior
truncate table test;
insert into test values (0, 5), (1, 5), (2, 5), (3, 5), (4, 1);
| Client 1 | Client 2 |
|---|---|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
INSERT behavior
Insert a new key that is also just changed by another transaction
truncate table test;
insert into test values (1, 1);
| Client 1 | Client 2 |
|---|---|
|
|
|
|
|
|
|
|
|
|
|
|
|
Same as previous, but with ON CONFLICT
truncate table test;
insert into test values (1, 1);
| Client 1 | Client 2 |
|---|---|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
INSERT old key that is removed by other transaction
truncate table test;
insert into test values (1, 1);
| Client 1 | Client 2 |
|---|---|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Same as previous, but with ON CONFLICT
truncate table test;
insert into test values (1, 1);
| Client 1 | Client 2 |
|---|---|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Cross feature interaction
This feature interacts with the following features:
-
Follower reads (integration in progress): When follower reads is turned on, the read point for each statement in a Read Committed transaction will be picked as Now() - yb_follower_read_staleness_ms (if the transaction/statement is known to be explicitly/ implicitly read only).
-
Pessimistic locking: Read Committed has a dependency on pessimistic locking to fully work. To be precise, on facing a conflict, a transaction has to wait for the conflicting transaction to rollback/commit. Pessimistic locking behavior can be seen for Read Committed. An optimized version of pessimistic locking will come in near future, which will give better performance and will also work for REPEATABLE READ and SERIALIZABLE isolation levels. The optimized version will also help detect deadlocks proactively instead of relying on statement timeouts for deadlock avoidance (see example 1).
Limitations
Work is in progress to remove these limitations:
-
Read Committed semantics ensure that the client doesn't face conflict and read restart errors. YSQL maintains these semantics as long as a statement's output doesn't exceed
ysql_output_buffer_size(a gflag with a default of 256KB). If this condition is not met, YSQL will resort to optimistic locking for that statement. -
PostgreSQL requires the following as mentioned in its docs: "STABLE and IMMUTABLE functions use a snapshot established as of the start of the calling query, whereas VOLATILE functions obtain a fresh snapshot at the start of each query they execute." YSQL uses a single snapshot for the whole procedure instead of one for each statement in the procedure.
Noteworthy Considerations
This isolation level allows both phantom and non-repeatable reads (as in this example).
Adding this new isolation level doesn't affect the performance of existing isolation levels.
Performance tuning
If a statement in the Read Committed isolation level faces a conflict, it will be retried with exponential backoff till the statement times out. The following parameters control the backoff:
- retry_max_backoff is the maximum backoff in milliseconds between retries.
- retry_min_backoff is the minimum backoff in milliseconds between retries.
- retry_backoff_multiplier is the multiplier used to calculate the next retry backoff.
You can set these parameters on a per-session basis, or in the ysql_pg_conf_csv tserver gflag on cluster startup.
After the optimized version of pessimistic locking (as described in Cross-feature interaction) is completed, there won't be a need to hand tune these parameters for performance. Statements will restart only when all conflicting transactions have committed or rolled back, instead of retrying with an exponential backoff.