arangodb
diff --git a/‎3rdParty/fuerte/src/HttpConnection.cpp
Lines changed: 1 addition & 1 deletion b/‎3rdParty/fuerte/src/HttpConnection.cpp
Lines changed: 1 addition & 1 deletion
diff --git a/‎3rdParty/fuerte/src/VstConnection.cpp
Lines changed: 1 addition & 1 deletion b/‎3rdParty/fuerte/src/VstConnection.cpp
Lines changed: 1 addition & 1 deletion
diff --git a/‎3rdParty/rocksdb/v5.16.X/db/compaction_job.cc
Lines changed: 4 additions & 4 deletions b/‎3rdParty/rocksdb/v5.16.X/db/compaction_job.cc
Lines changed: 4 additions & 4 deletions
diff --git a/‎3rdParty/rocksdb/v5.16.X/db/flush_job.cc
Lines changed: 2 additions & 2 deletions b/‎3rdParty/rocksdb/v5.16.X/db/flush_job.cc
Lines changed: 2 additions & 2 deletions
diff --git a/‎3rdParty/rocksdb/v5.16.X/db/range_del_aggregator.cc
Lines changed: 5 additions & 2 deletions b/‎3rdParty/rocksdb/v5.16.X/db/range_del_aggregator.cc
Lines changed: 5 additions & 2 deletions
diff --git a/‎3rdParty/rocksdb/v5.16.X/util/filename.cc
Lines changed: 1 addition & 1 deletion b/‎3rdParty/rocksdb/v5.16.X/util/filename.cc
Lines changed: 1 addition & 1 deletion
diff --git a/‎3rdParty/rocksdb/v5.16.X/utilities/backupable/backupable_db.cc
Lines changed: 9 additions & 9 deletions b/‎3rdParty/rocksdb/v5.16.X/utilities/backupable/backupable_db.cc
Lines changed: 9 additions & 9 deletions
diff --git a/‎3rdParty/rocksdb/v5.16.X/utilities/blob_db/blob_db_impl.cc
Lines changed: 5 additions & 1 deletion b/‎3rdParty/rocksdb/v5.16.X/utilities/blob_db/blob_db_impl.cc
Lines changed: 5 additions & 1 deletion
diff --git a/‎Documentation/Books/Manual/Architecture/DeploymentModes/ActiveFailover/Architecture.md
Lines changed: 22 additions & 2 deletions b/‎Documentation/Books/Manual/Architecture/DeploymentModes/ActiveFailover/Architecture.md
Lines changed: 22 additions & 2 deletions
diff --git a/‎Documentation/Books/Manual/Architecture/DeploymentModes/ActiveFailover/Limitations.md
Lines changed: 7 additions & 4 deletions b/‎Documentation/Books/Manual/Architecture/DeploymentModes/ActiveFailover/Limitations.md
Lines changed: 7 additions & 4 deletions
@@ -213,7 +213,7 @@ void HttpConnection<ST>::tryConnect(unsigned retries) {
       return;
     }
     FUERTE_LOG_DEBUG << "connecting failed: " << ec.message() << "\n";
-    if (retries > 0) {
+    if (retries > 0 && ec != asio_ns::error::operation_aborted) {
       tryConnect(retries - 1);
     } else {
       shutdownConnection(ErrorCondition::CouldNotConnect);
 
@@ -134,7 +134,7 @@ void VstConnection<ST>::tryConnect(unsigned retries) {
       return;
     }
     FUERTE_LOG_DEBUG << "connecting failed: " << ec.message() << "\n";
-    if (retries > 0) {
+    if (retries > 0 && ec != asio_ns::error::operation_aborted) {
       tryConnect(retries - 1);
     } else {
       shutdownConnection(ErrorCondition::CouldNotConnect);
 
@@ -593,10 +593,6 @@ Status CompactionJob::Run() {
     thread.join();
   }
 
-  if (output_directory_) {
-    output_directory_->Fsync();
-  }
-
   compaction_stats_.micros = env_->NowMicros() - start_micros;
   MeasureTime(stats_, COMPACTION_TIME, compaction_stats_.micros);
 
@@ -611,6 +607,10 @@ Status CompactionJob::Run() {
     }
   }
 
+  if (status.ok() && output_directory_) {
+    status = output_directory_->Fsync();
+  }
+
   if (status.ok()) {
     thread_pool.clear();
     std::vector<const FileMetaData*> files_meta;
 
@@ -371,8 +371,8 @@ Status FlushJob::WriteLevel0Table() {
                    s.ToString().c_str(),
                    meta_.marked_for_compaction ? " (needs compaction)" : "");
 
-    if (output_file_directory_ != nullptr) {
-      output_file_directory_->Fsync();
+    if (s.ok() && output_file_directory_ != nullptr) {
+      s = output_file_directory_->Fsync();
     }
     TEST_SYNC_POINT("FlushJob::WriteLevel0Table");
     db_mutex_->Lock();
 
@@ -171,7 +171,9 @@ class CollapsedRangeDelMap : public RangeDelMap {
   const Comparator* ucmp_;
 
  public:
-  CollapsedRangeDelMap(const Comparator* ucmp) : ucmp_(ucmp) {
+  CollapsedRangeDelMap(const Comparator* ucmp) 
+    : rep_(stl_wrappers::LessOfComparator(ucmp)), 
+      ucmp_(ucmp) {
     InvalidatePosition();
   }
 
@@ -493,7 +495,8 @@ Status RangeDelAggregator::AddTombstones(
         tombstone.end_key_ = largest->user_key();
       }
     }
-    GetRangeDelMap(tombstone.seq_).AddTombstone(std::move(tombstone));
+    auto seq = tombstone.seq_;
+    GetRangeDelMap(seq).AddTombstone(std::move(tombstone));
   }
   if (!first_iter) {
 
@@ -370,7 +370,7 @@ Status SetCurrentFile(Env* env, const std::string& dbname,
   }
   if (s.ok()) {
     if (directory_to_fsync != nullptr) {
-      directory_to_fsync->Fsync();
+      s = directory_to_fsync->Fsync();
     }
   } else {
     env->DeleteFile(tmp);
 
@@ -874,19 +874,19 @@ Status BackupEngineImpl::CreateNewBackupWithMetadata(
         GetAbsolutePath(GetPrivateFileRel(new_backup_id, false)),
         &backup_private_directory);
     if (backup_private_directory != nullptr) {
-      backup_private_directory->Fsync();
+      s = backup_private_directory->Fsync();
     }
-    if (private_directory_ != nullptr) {
-      private_directory_->Fsync();
+    if (s.ok() && private_directory_ != nullptr) {
+      s = private_directory_->Fsync();
     }
-    if (meta_directory_ != nullptr) {
-      meta_directory_->Fsync();
+    if (s.ok() && meta_directory_ != nullptr) {
+      s = meta_directory_->Fsync();
     }
-    if (shared_directory_ != nullptr) {
-      shared_directory_->Fsync();
+    if (s.ok() && shared_directory_ != nullptr) {
+      s = shared_directory_->Fsync();
     }
-    if (backup_directory_ != nullptr) {
-      backup_directory_->Fsync();
+    if (s.ok() && backup_directory_ != nullptr) {
+      s = backup_directory_->Fsync();
     }
   }
 
 
@@ -1730,7 +1730,11 @@ std::pair<bool, int64_t> BlobDBImpl::DeleteObsoleteFiles(bool aborted) {
 
   // directory change. Fsync
   if (file_deleted) {
-    dir_ent_->Fsync();
+    Status s = dir_ent_->Fsync();
+    if (!s.ok()) {
+      ROCKS_LOG_ERROR(db_options_.info_log, "Failed to sync dir %s: %s",
+                      blob_dir_.c_str(), s.ToString().c_str());
+    }
   }
 
   // put files back into obsolete if for some reason, delete failed
 
@@ -45,12 +45,20 @@ When the _Leader_ goes down, this is automatically detected by the _Agency_
 instance, which is also started in this mode. This instance will make the
 previous follower stop its replication and make it the new _Leader_.
 
-The _Follower_ will deny all read and write requests from client applications.
+Operative Behaviour
+-------------------
+
+In contrast to the normal behaviour of a single-server instance, the Active-Failover
+mode will change the behaviour of ArangoDB in some situations.
+
+The _Follower_ will _always_ deny write requests from client applications.  Starting from ArangoDB 3.4
+read requests are _only_ permitted if the requests is marked with the `X-Arango-Allow-Dirty-Read` header,
+otherwise they are denied too.
 Only the replication itself is allowed to access the follower's data until the
 follower becomes a new _Leader_ (should a _failover_ happen).
 
 When sending a request to read or write data on a _Follower_, the _Follower_ will
-always respond with `HTTP 503 (Service unavailable)` and provide the address of
+respond with `HTTP 503 (Service unavailable)` and provide the address of
 the current _Leader_. Client applications and drivers can use this information to
 then make a follow-up request to the proper _Leader_:
 
@@ -64,6 +72,18 @@ Client applications can also detect who the current _Leader_ and the _Followers_
 are by calling the `/_api/cluster/endpoints` REST API. This API is accessible
 on _Leader_ and _Followers_ alike.
 
+Reading from Followers
+----------------------
+
+Followers in the active-failover setup are in a read-only mode. It is possible to read from these
+followers by adding a `X-Arango-Allow-Dirty-Read` header on each request. Responses will then automatically
+contain the `X-Arango-Potential-Dirty-Read` header so that clients can reject accidental dirty reads.
+
+Depending on the driver support for your specific programming language, you should be able to enable this option.
+
+Tooling Support
+---------------
+
 The tool _ArangoDB Starter_ supports starting two servers with asynchronous
 replication and failover [out of the box](../../../Deployment/ActiveFailover/UsingTheStarter.md).
 
 
@@ -4,8 +4,11 @@ Active Failover Limitations
 The _Active Failover_ setup in ArangoDB has a few limitations. Some of these limitations 
 may be removed in later versions of ArangoDB:
 
-- Even though it is already possible to have several _followers_ of the same _leader_,
- currently only one _follower_ is officially supported
 - Should you add more than one _follower_, be aware that during a _failover_ situation
- the failover attempts to pick the most up to date follower as a new leader, 
- but there is **no guarantee** on how much operations may have been lost.
+ the failover attempts to pick the most up to date follower as the new leader on a **best-effort** basis. 
+- In contrast to full ArangoDB Cluster (with synchronous replication), there is **no guarantee** on 
+  how many database operations may have been lost during a failover.
+- Should you be using the [ArangoDB Starter](../../../Programs/Starter/README.md) 
+  or the [Kubernetes Operator](../../../Deployment/Kubernetes/README.md) to manage your Active-Failover
+  deployment, be aware that upgrading might trigger an unintentional failover between machines.
+
Original file line number	Diff line number	Diff line change
`@@ -213,7 +213,7 @@ void HttpConnection<ST>::tryConnect(unsigned retries) {`
`213`	`213`	`return;`
`214`	`214`	`}`
`215`	`215`	`FUERTE_LOG_DEBUG << "connecting failed: " << ec.message() << "\n";`
`216`		`- if (retries > 0) {`
	`216`	`+ if (retries > 0 && ec != asio_ns::error::operation_aborted) {`
`217`	`217`	`tryConnect(retries - 1);`
`218`	`218`	`} else {`
`219`	`219`	`shutdownConnection(ErrorCondition::CouldNotConnect);`
Original file line number	Diff line number	Diff line change
`@@ -134,7 +134,7 @@ void VstConnection<ST>::tryConnect(unsigned retries) {`
`134`	`134`	`return;`
`135`	`135`	`}`
`136`	`136`	`FUERTE_LOG_DEBUG << "connecting failed: " << ec.message() << "\n";`
`137`		`- if (retries > 0) {`
	`137`	`+ if (retries > 0 && ec != asio_ns::error::operation_aborted) {`
`138`	`138`	`tryConnect(retries - 1);`
`139`	`139`	`} else {`
`140`	`140`	`shutdownConnection(ErrorCondition::CouldNotConnect);`
Original file line number	Diff line number	Diff line change
`@@ -593,10 +593,6 @@ Status CompactionJob::Run() {`
`593`	`593`	`thread.join();`
`594`	`594`	`}`
`595`	`595`
`596`		`- if (output_directory_) {`
`597`		`- output_directory_->Fsync();`
`598`		`- }`
`599`		`-`
`600`	`596`	`compaction_stats_.micros = env_->NowMicros() - start_micros;`
`601`	`597`	`MeasureTime(stats_, COMPACTION_TIME, compaction_stats_.micros);`
`602`	`598`
`@@ -611,6 +607,10 @@ Status CompactionJob::Run() {`
`611`	`607`	`}`
`612`	`608`	`}`
`613`	`609`
	`610`	`+ if (status.ok() && output_directory_) {`
	`611`	`+ status = output_directory_->Fsync();`
	`612`	`+ }`
	`613`	`+`
`614`	`614`	`if (status.ok()) {`
`615`	`615`	`thread_pool.clear();`
`616`	`616`	`std::vector<const FileMetaData*> files_meta;`
Original file line number	Diff line number	Diff line change
`@@ -171,7 +171,9 @@ class CollapsedRangeDelMap : public RangeDelMap {`
`171`	`171`	`const Comparator* ucmp_;`
`172`	`172`
`173`	`173`	`public:`
`174`		`- CollapsedRangeDelMap(const Comparator* ucmp) : ucmp_(ucmp) {`
	`174`	`+ CollapsedRangeDelMap(const Comparator* ucmp)`
	`175`	`+ : rep_(stl_wrappers::LessOfComparator(ucmp)),`
	`176`	`+ ucmp_(ucmp) {`
`175`	`177`	`InvalidatePosition();`
`176`	`178`	`}`
`177`	`179`
`@@ -493,7 +495,8 @@ Status RangeDelAggregator::AddTombstones(`
`493`	`495`	`tombstone.end_key_ = largest->user_key();`
`494`	`496`	`}`
`495`	`497`	`}`
`496`		`- GetRangeDelMap(tombstone.seq_).AddTombstone(std::move(tombstone));`
	`498`	`+ auto seq = tombstone.seq_;`
	`499`	`+ GetRangeDelMap(seq).AddTombstone(std::move(tombstone));`
`497`	`500`	`input->Next();`
`498`	`501`	`}`
`499`	`502`	`if (!first_iter) {`
Original file line number	Diff line number	Diff line change
`@@ -370,7 +370,7 @@ Status SetCurrentFile(Env* env, const std::string& dbname,`
`370`	`370`	`}`
`371`	`371`	`if (s.ok()) {`
`372`	`372`	`if (directory_to_fsync != nullptr) {`
`373`		`- directory_to_fsync->Fsync();`
	`373`	`+ s = directory_to_fsync->Fsync();`
`374`	`374`	`}`
`375`	`375`	`} else {`
`376`	`376`	`env->DeleteFile(tmp);`
Original file line number	Diff line number	Diff line change
`@@ -874,19 +874,19 @@ Status BackupEngineImpl::CreateNewBackupWithMetadata(`
`874`	`874`	`GetAbsolutePath(GetPrivateFileRel(new_backup_id, false)),`
`875`	`875`	`&backup_private_directory);`
`876`	`876`	`if (backup_private_directory != nullptr) {`
`877`		`- backup_private_directory->Fsync();`
	`877`	`+ s = backup_private_directory->Fsync();`
`878`	`878`	`}`
`879`		`- if (private_directory_ != nullptr) {`
`880`		`- private_directory_->Fsync();`
	`879`	`+ if (s.ok() && private_directory_ != nullptr) {`
	`880`	`+ s = private_directory_->Fsync();`
`881`	`881`	`}`
`882`		`- if (meta_directory_ != nullptr) {`
`883`		`- meta_directory_->Fsync();`
	`882`	`+ if (s.ok() && meta_directory_ != nullptr) {`
	`883`	`+ s = meta_directory_->Fsync();`
`884`	`884`	`}`
`885`		`- if (shared_directory_ != nullptr) {`
`886`		`- shared_directory_->Fsync();`
	`885`	`+ if (s.ok() && shared_directory_ != nullptr) {`
	`886`	`+ s = shared_directory_->Fsync();`
`887`	`887`	`}`
`888`		`- if (backup_directory_ != nullptr) {`
`889`		`- backup_directory_->Fsync();`
	`888`	`+ if (s.ok() && backup_directory_ != nullptr) {`
	`889`	`+ s = backup_directory_->Fsync();`
`890`	`890`	`}`
`891`	`891`	`}`
`892`	`892`