The document discusses the fundamentals of SQL processing, focusing on performance optimization through techniques like binding user input and pinning/array processing. It highlights common issues like latch contention affecting concurrency and the importance of memory access in SQL execution. The author emphasizes the necessity of reusing SQL statements and effective resource management to achieve fast and secure applications.

1. 1
Connor McDonald
bit.ly/techguysong

2. The fundamentals of SQL processing
Connor McDonald
Database Advocate
Copyright © 2019 Oracle and/or its affiliates.

3. Slower and less secure in 45 minutes
Connor McDonald
Database Advocate
Copyright © 2019 Oracle and/or its affiliates.

4. 4 4

5. 5 5

7. 7
Me
youtube bit.ly/youtube-connor
blog connor-mcdonald.com
twitter @connor_mc_d
400+ posts mainly on database & development
250 technical videos, new uploads every week
rants and raves on tech and the world :-)

8. 8
etc...
facebook bit.ly/facebook-connor
linkedin bit.ly/linkedin-connor
instagram bit.ly/instagram-connor
slideshare bit.ly/slideshare-connor

9. 10
SQL is like any language

10. 11
compile it

11. 12
compile it
on the fly

12. 13
run it

13. 14
get | store results

14. 15
for successful applications...

15. 16
compile it ... fast

16. 17
run it ... fast

17. 18
get | store results ... fast

18. 19
that's it!

19. 20
what everyone talks about

20. 21
compile
execute
store/fetch results

21. 22
this session

22. 23
compile
execute
store/fetch results

23. 24
before we begin ...

24. 25
some controversy to start

25. 26
here's the problem...

26. 27
... it's us

27. 28
a small digression

28. 29
a little bit of history on servers ...

29. 30
(not too) long ago

31. 32
FSB = "front side bus"

32. 33
any access to ... anything

33. 34
CPU capped

35. 36
hypertransport

37. memory access direct from CPU

39. ~2007

40. 41
"why do I care?"

41. 42
you can't blame the server (anymore)

42. 44
... it's us
pkdemo.cmd

45. 50
so what's holding us back ?

46. 52
It all comes down to...

47. 53
too much work or ...

48. 54
... not being able to do work

49. PART #1
COMPILING SQL

50. 58
terminology

51. 59
cursorsdeclare
cursor C(p number) is
select * from DEPT
where DEPTNO = p;
begin
for rec in C loop
…
end loop;
end;
select *
from EMPLOYEE
where EMPNO > 1234;
delete from MY_TABLE;
drop table MY_TABLE;
begin
MY_PROCEDURE(1,2,3);
end;

52. 60
all of them!

53. 62
open
process
close
gimme some memory
do some stuff using that memory,
maybe access other memory
here's your memory back

54. 63
memory access = controlled access

55. 64
a quick primer on (database) memory

56. 65

57. 66
metaphor

58. 67 67

59. 68

62. 71
limited resource
lots of people want it
concurrent access causes problems
it's a complex system

64. 73
same with memory

65. 74
SGA

66. 75
SGA
protected by

67. 76
SGA
protected by
1) get latch

68. 77
SGA
protected by
2) access memory

69. 78
SGA
protected by
3) release latch

70. 79
latch contention

71. 80
someone must wait ...
SGA
protected by

72. 81
active wait

73. 82
spinning
can I have the latch ?
can I have the latch ?
can I have the latch ?
can I have the latch ?
can I have the latch ?
can I have the latch ?
can I have the latch ?
can I have the latch ?
can I have the latch ?
can I have the latch ?
can I have the latch ?
can I have the latch ?
can I have the latch ?
can I have the latch ?
can I have the latch ?
can I have the latch ?
can I have the latch ?
can I have the latch ?
can I have the latch ?
can I have the latch ?
can I have the latch ?
can I have the latch ?
can I have the latch ?
can I have the latch ?
can I have the latch ?
can I have the latch ?
can I have the latch ?
can I have the latch ?

75. 84

76. 85
latch contention....

77. 86
hurts CPU...

78. 87
hurts concurrency

79. YOU

80. GET

81. NOTHING

82. DONE

83. 97
"Errrr.... weren't we talking SQL?"

84. 98
to run a SQL statement

85. 99
Syntax
Validity
Optimization
Rowsourcing
Execution
(Fetch)
SQL> select *
2 frmo emp;
frmo emp
*
ERROR at line 2:
ORA-00923: FROM keyword not found where expected

86. 100
Syntax
Validity
Optimization
Rowsourcing
Execution
(Fetch)
SQL> select empnoo
2 from emp;
select empnoo
*
ERROR at line 1:
ORA-00904: invalid column name

87. 101
PLAN
-------------------------------------
SELECT STATEMENT
TABLE ACCESS BY INDEX ROWID EMP
INDEX RANGE SCAN EMP_PK
Syntax
Validity
Optimization
Rowsourcing
Execution
(Fetch)

88. 102
EMP_PK EMP
Syntax
Validity
Optimization
Rowsourcing
Execution
(Fetch)

89. 103
Syntax
Validity
Optimization
Rowsourcing
Execution
(Fetch)

90. 104
Syntax
Validity
Optimization
Rowsourcing
Execution
(Fetch)

91. 105
lots of preliminaries

92. 106
parsing

93. 107
lots of memory access

94. 108
lots of latching !

95. 109
impossible to avoid ?

96. 110
two mechanisms

97. 111
1) library cache

98. 112
previously executed statements

99. 113
parse statement
already in library cache ?
reuse optimizer info
reuse row source info
select * from emp where empno = 123
syntactically, semantics OK

100. select surname, firstname from emp where empno = 123
select * from dept where deptno = 4567
select * from customer where locality = 17
select prno from property where reference = 'X123G'
select * from dept where deptno = 23
select surname, firstname from emp where empno = 123
select * from customer where locality = 256
select * from organisation where officer = 'OFF876'
select surname, firstname from emp where empno = 7632
select * from dept where deptno = 4567
select offender from crimes where crno = 247462
Two full parses avoided
library
cache

101. 115
select surname, firstname from emp where empno = 123
select * from dept where dname = 'SALES'
probability of reuse low ?

102. 116
many queries are “nearly the same”
select surname, firstname from emp where empno = 123
select surname, firstname from emp where empno = 456

103. 117
2) binding

104. 118
binding
parse this...
now run it with ? = 123
now run it with ? = 456
select surname, firstname from emp where empno = ?

105. select surname, firstname from emp where empno = ?
select * from dept where deptno = ?
select * from customer where locality = ?
select prno from property where reference = ?
select * from dept where deptno = ?
select surname, firstname from emp where empno = ?
select * from customer where locality = ?
select * from organisation where officer = ?
select surname, firstname from emp where empno = ?
select * from dept where deptno = ?
select offender from crimes where crno = ?
Five full parses avoided
library
cache

106. 120
demo
ParseDemo
ParseDemoBind

107. 121
"performance still looks ok"

108. 122
let's make it real
ParseDemo2 nn
ParseDemo2Bind nn

109. 123
much more serious

110. 124

111. 125
building SQL by concatenation

112. 126
you'll get hacked

113. 127
select ename
from emp
where empno = 6543
select ename
from emp
where empno = 6543
and 1=0
union all
select table_name
from all_tables
where table_name like '%SECURITY%'
select ename
from emp
where empno = 6543
and 1=0
union all
select username
from app_security
where ...

115. 129
#1 hacking app .... Google

118. 132
it takes 5 minutes to hack you

119. 133

120. PART #2
get | store results

122. 136
start with reading data

123. 137
querying data

124. 138
data is stored in blocks | pages

125. 139
to read data, you read blocks...

126. SQL> select *
2 from EMP
3 where ...
/u01/my_data1.dat
memory

127. 141
but (database) memory access is complex

128. SQL> select *
2 from EMP
3 where …
SQL> update EMP
2 set …
3 where …
SQL> select *
2 from EMP
3 where …
SQL> insert into
2 EMP
3 values (…)
SQL> select *
2 from CUSTOMER
3 /
SQL> select max(EMP)
2 from DEPT
SQL> delete
2 from DEPT
3 /

129. 143
we have to latch !

130. • Get latch
• Search along list of blocks in memory
• Read block
• Extract row of interest
• Release latch
• Give row back to client
"fetch a row"

131. 145
lots of rows

132. 146
lots of latching

133. 147
typical program

134. rs = stmt.executeQuery("...");
while(rs.next()) {
v1 = rs.getInt(1);
v2 = rs.getString(2);
...
}

135. rs = stmt.executeQuery("...");
while(rs.next()) {
v1 = rs.getInt(1);
v2 = rs.getString(2);
...
}
• Get latch
• Walk along list
• Get block
• Extract single row
• Release latch
• Give row back to client
• Get latch (again)
• Walk along list (again)
• Get block (again)
• Extract single row
• Release latch (again)
• Give row back to client (again)
Row #1
Row #2
• Get latch (again)
• Walk along list (again)
• Get block (again)
• Extract single row
• Release latch (again)
• Give row back to client (again)
Row #3

136. a better strategy.... “pinning”

137. "fetch a row"
• Get latch
• Walk along list
• Get block
• Pin the block
• Release latch
• Give row 1 back to client
• Give row 2 back to client
• Give row 3 back to client
…
• Give row n to client
• Get latch
• Walk along list
• Remove my pin on the block
• Release latch
“and ... I will need
several rows from
this block”

138. 152
how do you say
“I may want many rows” ?

139. 153
responsibility of the client

144. FetchDemo nn

145. 159
focus on blocks

146. 160
focus on roundtrips

149. 163
all that data goes somewhere

150. 164
SQL> declare
. . .
9 begin
10 open c;
11 loop
12 fetch c
13 into r;
14 exit when c%notfound;
. . .
19 /
Elapsed: 00:01:11.72

151. 165
SQL> declare
. . .
9 begin
10 open c;
11
12 fetch c
13 bulk collect
14 into r;
15
. . .
19 /
Elapsed: 00:00:08.93

152. 166
SQL> select * from v$mystats
2 where name like '%pga%'
3 /
NAME VALUE
------------------------------ ----------
session pga memory 501534672
session pga memory max 501534672

153. 167
500m of memory !

154. 168
law of diminishing returns

155. 169
pin rows on a block (8k)

156. 170
SQL> declare
. . .
9 begin
10 open c;
11 loop
12 fetch c
13 bulk collect
14 into r limit 100;
15 exit when c%notfound;
. . .
19 /
Elapsed: 00:00:08.17
NAME VALUE
------------------------------ ----------
session pga memory 625912
session pga memory max 625912

157. 171
SQL> declare
. . .
9 begin
10 for i in c loop
12 ...
16 end loop;
17 end;
18 /
Elapsed: 00:00:08.21

158. PART #2(a)
storing data

159. 174
the same rules apply

160. 175
think blocks not rows
when appropriate

161. 177
demo
InsertDemo3
InsertDemo4 nn

162. summary

163. 179
for slow and insecure applications...

164. 180
no binding, no SQL reuse, no pinning

165. 181
for fast, secure SQL ...

166. 182
... hence fast, secure applications

167. 183
... always bind user input

168. 184
... use pinning/array processing

169. 186
Thank you
youtube bit.ly/youtube-connor
blog bit.ly/blog-connor
twitter bit.ly/twitter-connor