Background of Ledger for SQL Server

In 2018, Microsoft began to explore whether the worlds of blockchain and relational databases could converge into a digital ledger solution. According to Panagiotis Antonopoulos, Principal Software Engineer at Microsoft

In 2018, together with Microsoft Research, we started the effort to identify an architecture that would bridge the gap between blockchains and relational databases to provide the benefits of both technologies. We evaluated different design options where SQL Server would run in a decentralized configuration, using the advanced consensus algorithms of blockchains, or in a centralized environment, more aligned with the traditional SQL Server setup. We analyzed the technical feasibility of these options but also talked to a large number of blockchain customers to understand the challenges they were facing when adopting the technology. This was a very educational exercise and made it clear for us that decentralization, despite its security benefits, was making blockchains expensive and complex to develop and manage, causing significant friction to their adoption by enterprise customers.

This research effort led to the development of Ledger for SQL Server. The work first started in Azure SQL Database. You can read about the original project at https://aka.ms/sqlledgerpaper.

Ledger for SQL Server uses proven blockchain techniques like cryptographic data structures such as hash-chains and Merkle trees. (The whitepaper goes into the details of what a Merkle tree is for those of you who are interested.) One of the keys to Ledger for SQL Server is to leverage…well, SQL Server. Ledger for SQL Server is built into the product itself requiring no application changes, special provider, or code. Just use T-SQL.

Panagiotis summed up the power of Ledger for SQL Server: “Although the data is stored centrally, individual organizations can use these digests to verify the data integrity. The simplicity and transparency of this solution allows us to commoditize blockchains and enable all SQL users to leverage their benefits at a very low cost and complexity.”

Because of this capability, I like to think of Ledger as a form of data integrity. Let’s learn how it works to see why.

How Does It Work

Figure 6-1 shows how these components work together for an updateable ledger table.

A flowchart of S Q L Server with updateable ledger. The flow starts with bank regulator, goes through trusted storage, and ends at database ledger.

Automatically, SQL Server will create a history table and a ledger view corresponding to the ledger table.

When any modifications are made to the table (INSERT, UPDATE, or DELETE), audits and crypto hashes of each transaction are recorded in the database ledger as well as blocks for the blockchain.

Digests (which are effectively JSON data) can be generated manually or automatically in a separate storage location. This allows someone like a bank regulator to use the digests to verify the integrity of the ledger at any point in time.

Figure 6-2 shows the components for an append-only ledger table.

A flowchart of S Q L Server for append-only ledger. The flow starts with bank regulator, goes through trusted storage, and ends at database ledger.

Append-only ledger tables don’t need a history table since you can only perform INSERT statements. Append-only ledger tables are great for multi-party scenarios because no one party can “update” the ledger table. Only a history of new records is allowed (even a DBA with sysadmin rights can’t make an update to fake the ledger).

To understand in more detail how these components work, let’s try out an example.

Exercise to Use Ledger for SQL Server

Let’s walk through an exercise to see how Ledger works. There are four parts to this exercise: using an updateable ledger table, using an append-only ledger table, protection from dropping a ledger table, and an interesting example when I tried to “hack” the ledger.

Setting Up the Exercise

Exercise 1: Using an Updateable Ledger Table

Exercise 2: Using an Append-Only Ledger

While Ledger for SQL Server is great for auditing which SQL principal makes any transaction change, what about scenarios where an application uses an “application login” to execute all SQL queries? How will you know the original application user that initiated an operation that led to a change of data?

Exercise 3: Protect Ledger Objects

Exercise 4: What Does a Tampered Ledger Look Like?

When I first heard about Ledger, I thought to myself, “I know internals pretty well. Can I beat the system?” So I went on a journey of trying to tamper with the ledger.

I can’t share the details of what I did, but effectively after a basic T-SQL update, I attempted ways that were outside the boundaries of supported SQL to hack the ledger. I attempted to conceal an update to a ledger table by manipulating the database ledger system tables in an extremely undocumented way. I actually found a way to get this working until Panagiotis said to me, “What about the digest?” Got me! I literally could hack my way into SQL Server to make it look like my update never existed, but the digest is on separate storage, so I couldn’t hack that. You can see the results of my early tries at this in the T-SQL notebook ledger.ipynb in the samples directory. You can also see me do this live with Buck Woody at the 2022 SQLBits keynote at https://youtu.be/_R9FE2ZclVk (start at about 12 minutes in).

What Else Should You Know?

Ledger for SQL Server is amazing technology in so many ways. For me, what I’ve realized is that SQL now provides solutions for industry problems like multi-party trust scenarios, which are not traditional solutions for SQL.

In fact, very early on we had customers start to embrace this technology to solve real problems. Lenovo saw an opportunity to build trust into their supply chain. Their supply chain spans multiple parties, but who oversees the data? That is the power of Ledger. You can read Lenovo’s story at https://customers.microsoft.com/story/1497685499820529889-lenovo-manufacturing-azure-SQL-database-ledger.

As a team, we are committed to finding new and innovative ways to bring Ledger into the market where SQL was never thought of as a solution.

One very nice feature added to Ledger for SQL Server is automatic digest storage. In the example, you learned how to manually generate and use a digest. SQL Server 2022 can be configured to automatically save a digest to Azure Blob Storage. You can read all the details at https://docs.microsoft.com/sql/relational-databases/security/ledger/ledger-how-to-enable-automatic-digest-storage.

As with any feature, there are some limits, and Ledger is no different. Keep up to date with all the limits at https://docs.microsoft.com/sql/relational-databases/security/ledger/ledger-limits.

Keep up with all the latest information on Ledger for SQL Server at https://aka.ms/sqlledger.

Always Encrypted Enhancements

In SQL Server 2016 we introduced a new concept for end-to-end encryption called Always Encrypted. The concept is that data is encrypted at the client application and always encrypted in the SQL Server engine (hence the name). Furthermore, the keys to unencrypt the data are owned by the application. As a result, administrators of SQL Server cannot unencrypt the data; only the application can do this. If you are not familiar with Always Encrypted, you can read about how to configure and use it at https://docs.microsoft.com/sql/relational-databases/security/encryption/always-encrypted-database-engine.

Because data can never appear in plaintext inside the SQL Server engine, there were limitations with the original design. For example, queries using operators such as LIKE won’t work because the engine would need to unencrypt the data into plaintext to perform the operation.

In SQL Server 2019 we enhanced Always Encrypted with a concept called secure enclaves. A secure enclave is a secure region of memory inside the SQL Server engine. Even in the database engine, code cannot see data in plaintext in the enclave. Enclave technologies provide a method for SQL Server to pass keys from the application to the enclave to perform any operations required in plaintext such as pattern matching operations. SQL Server 2019 supports a concept called virtualized enclaves or VBS enclaves (Azure supports hardware enclaves through Intel Software Guard Extensions (Intel SGX)). Since decryption happens on the server, I have personally found that using secure enclaves can also boost performance for almost any operation on columns that are encrypted with Always Encrypted.

You can read the complete story of Always Encrypted with secure enclaves at https://docs.microsoft.com/sql/relational-databases/security/encryption/always-encrypted-enclaves.

Crypto Enhancements

We want to make sure SQL Server is up to date with the latest standards for cryptography or crypto. SQL Server uses crypto for many different types of capabilities in the engine including certificate and key support. According to Shoham Dasgupta, Senior Program Manager for security for SQL, “We wanted to enhance default cryptography in SQL Server to meet/exceed industry standards and protect customer’s confidential data to meet the evolving threat landscape.”

Another investment to strengthen security to today’s standards is support for personal information exchange (PFX) format. SQL Server supports the ability to create a certificate inside the database engine to secure objects, connections, and data. SQL Server 2022 now supports creating certificates for PFX. PFX or PKCS#12 is a modern format for certificates, and SQL Server now supports using a PFX file to create a certificate in SQL Server with the CREATE CERTIFICATE statement. You can read more about how to create a certificate with a PFX file at https://docs.microsoft.com/sql/t-sql/statements/create-certificate-transact-sql.

The final enhancement for crypto is to support backup and restore for keys to and from Azure Blob Storage. A database master key is often used to secure a credential such as used for external data sources. But you often need to back up this key separate from the database. SQL Server 2022 allows you now to back up or restore one of these keys to or from Azure Blob Storage instead of a local or network file path. You can read how to use the new URL syntax at https://docs.microsoft.com/sql/t-sql/statements/backup-master-key-transact-sql. The same support exists for SYMMETRIC keys, which you can read about at https://docs.microsoft.com/sql/t-sql/statements/backup-symmetric-key-transact-sql.

Strict Connected Encryption

The Tabular Data Stream (TDS) is the data protocol used for applications to connect to and transfer data to and from SQL Server. TDS has been around for as long as SQL Server has been a product. As time has gone by, TDS has been enhanced and changed using a version numbering system. Typically, as new versions of TDS were released, applications would need to use a provider or driver to support it. Microsoft changed the major version of TDS to 7.0 when SQL Server 7.0 was released in 1998. Since then, minor version changes have come with the latest, TDS 7.4, supporting SQL Server 2012 and later. Users, admins, and developers don’t need to know the details of the TDS protocol, just the features it supports with changes or the need to use updated drivers. As a support engineer for many years at Microsoft, I often needed the details of TDS to solve complex customer problems. You can read all the details yourself at https://docs.microsoft.com/openspecs/windows_protocols/ms-tds/b46a581a-39de-4745-b076-ec4dbb7d13ec.

SQL Server 2022 introduces a new major version of TDS, TDS 8.0. Drivers and providers using TDS 7.4 are still fully supported. New drivers understand TDS 8.0 and can use this protocol. The main reason behind this new version is connecting encryption. SQL Server has supported encryption of the communication between an application and SQL Server for years. Like many applications, SQL Server uses Transport Layer Security (TLS) to implement communication encryption. SQL Server has always allowed applications to make decisions on whether they want to encrypt communications with SQL Server using connection string options called Encrypt and TrustServerCertificate. You also have the ability on the server side to force encryption for client connections. The combination of these two connection strings is significant, and you can read more details at https://docs.microsoft.com/dotnet/framework/data/adonet/connection-string-syntax#using-trustservercertificate.

TDS 8.0 introduces the concept of strict connection encryption. If an application uses a value of Encrypt = strict, then the TDS 8.0 protocol is enabled. One of the significant changes here is that if strict connection encryption is used, then the communication between the client and SQL Server must be encrypted (hence the term strict). The other significance is how TDS 8.0 handles connection encryption. Prior to TDS 8.0, SQL Server would perform a handshake or prelogin with the client that was not encrypted. Now with TDS 8.0, that handshake is completely encrypted with TLS. This works with all TLS versions. This is very significant because it aligns with the standards of protocols like HTTPS and allows network appliances to safely pass through SQL communication. The latest providers are required to be able to use TDS 8.0. You can learn more at https://docs.microsoft.com/sql/relational-databases/security/networking/tds-8-and-tls-1-3#strict-connection-encryption.

In addition, but independent of TDS 8.0, SQL Server 2022 now supports the latest version of TLS 1.3. TLS 1.3 is the most secure TLS version. You can read more about differences between TLS 1.2 and 1.3 at https://docs.microsoft.com/sql/relational-databases/security/networking/tds-8-and-tls-1-3?#differences-between-tls-12-and-tls-13.

New Fixed Server-Level Roles

Up until SQL Server 2022, the product came with a certain set of fixed server-level roles. They are fixed because you cannot change the access level or definition of the role. They are server-level because they apply to the entire SQL Server instance, not just a single database.

You are probably familiar with some of these like sysadmin, securityadmin, dbcreator, and public. You can view the complete list of these roles at https://docs.microsoft.com/sql/relational-databases/security/authentication-access/server-level-roles.

One request we have seen from customers for some time is for more granularity of roles we provide with the product – in other words, more fixed roles that have fewer privileges for specific tasks. My colleague at Microsoft, Andreas Wolter, wrote an interesting blog on the topic of least privilege at https://techcommunity.microsoft.com/t5/azure-sql-blog/security-the-principle-of-least-privilege-polp/ba-p/2067390.

SQL Server 2022 now provides built-in new fixed server-level roles that follow this principle. You can see the complete list at https://docs.microsoft.com/sql/relational-databases/security/authentication-access/server-level-roles?#fixed-server-level-roles-introduced-in-sql-server-2022.

Imagine a situation where you want to hire a consultant to come in and view important information about the system and database to provide you with an analysis. You don’t want to give access to any user data for privacy reasons, nor do you want to allow them to make changes. Adding them as members to these two roles could help you achieve this, whereas before you would have to use a fixed server-level role that had more privileges than necessary or set up custom permissions to their account for the instance and in all databases for which you need their consultation.

You will also love that SSMS 19 has been enhanced to support these new fixed server-level roles as you can see in Figure 6-4.

A screenshot of a folder titled server roles. It contains 19 files under it.

I did a quick test to see the difference for membership in the ##MS_ServerPerformanceStateReader## role vs. just the public role. If you have just the public fixed role, you are allowed to see your session only when you query sys.dm_exec_requests. But if you are a member of the ##MS_ServerPerformanceStateReader## role, you can see all sessions from sys.dm_exec_requests. An example of a DMV that would require ##MS_ServerStateReader## or ##MS_ServerSecurityStateReader## membership is the sys.dm_server_audit_status DMV. Anyone in just the ##MS_ServerPerformanceStateReader## would not have access to this DMV. Effectively what we have done here is separate ##MS_ServerStateReader## into two different roles: ##MS_ServerPerformanceStateReader## and ##MS_ServerSecurityStateReader##.

Dynamic Data Masking Enhancements

Dynamic data masking is the concept of providing logic within a table schema to mask data when viewed by a user (think of masking an email address with characters like xxxx@xxxx). We introduced this concept in SQL Server 2016, and it was quite popular. Prior to this feature, applications would have to put masking logic in their code. If the masking logic needed to be changed, the application would have to be changed and deployed. Dynamic data masking provides a way to define mask rules when defining columns in a table. If you are new to dynamic data masking, start with our documentation at https://docs.microsoft.com/sql/relational-databases/security/dynamic-data-masking.

would result in any value stored in this column seen by users as [email protected].

You can see a complete list of functions for dynamic data masking at https://docs.microsoft.com/sql/relational-databases/security/dynamic-data-masking?#defining-a-dynamic-data-mask.

In SQL Server 2022 we added a new function for datetime column types. You can mask all or part of the datetime values such as year, month, day, hour, minute, or second.

The original implementation of dynamic data masking by default did not allow “non-admin” users to see unmasked data. However, we provided a T-SQL command option called GRANT UNMASK so that a user could be granted the ability to see data unmasked. The problem with this original design is that the unmasking permission was for any masked rule in the database.

In 2021, we introduced the concept of granular UNMASK to Azure so that this permission could be applied at the schema, table, or column level. You can see the original announcement at https://azure.microsoft.com/updates/general-availability-dynamic-data-masking-granular-permissions-for-azure-sql-and-azure-synapse-analytics/.

SQL Server 2022 simply brings this implementation from the cloud to SQL Server. You can see examples for granular unmasking at https://docs.microsoft.com/sql/relational-databases/security/dynamic-data-masking?#granular.

Ordered Clustered Columnstore Index

Both Azure Synapse Analytics and SQL Server support columnstore indexes. An entire book could be devoted to columnstore indexes and why they can be beneficial to applications. I still find this an underused feature of SQL Server. Almost any customer I encounter who doesn’t know columnstore immediately sees how they can use them once they understand how they work. If you don’t know columnstore, go right to the documentation to get started at https://docs.microsoft.com/sql/relational-databases/indexes/columnstore-indexes-overview.

Azure Synapse Analytics added an option to create a clustered columnstore index as ordered. While building an ordered clustered columnstore index can take longer, the performance benefits to certain queries can be significant. SQL Server 2022 now supports ordered clustered columnstore indexes. Learn more at https://docs.microsoft.com/azure/synapse-analytics/sql-data-warehouse/performance-tuning-ordered-cci.

Columnstore String Improvements

We don’t have specific documentation on this one, but when I chatted with Ryan Stonecipher, the veteran SQL engineer about this, his quote to me was “Simply rebuild your indexes and we will maintain min/max values for deep data (e.g., *char and *binary + guid). Furthermore, we now support LIKE pushdown operations on column stores and a fast string-equal implementation.”

Vector Extension to Improve Batch Mode

In SQL Server 2016 we added code to take advantage of special processor instructions called vector-based hardware capabilities. Vector-based hardware capabilities allow programs to simply process data faster and in more parallel manner due to vector registers in the processor. If you would love to read some very deep content on this topic, here is a nice article: www.techspot.com/article/2166-mmx-sse-avx-explained.

SQL Server 2016 could recognize two different types of vector capabilities, namely, SEE and AVX, and use them to speed up columnstore operations especially when using batch mode. Robert Dorr outlines how we did this in this blog post: https://docs.microsoft.com/archive/blogs/bobsql/sql-2016-it-just-runs-faster-column-store-uses-vector-instructions-sseavx.

The latest vector hardware technology is AVX-512, and SQL Server 2022 can recognize this new hardware capability to gain even more performance specifically for batch-mode operators for columnstore and rowstore. I was curious what led us to looking into AVX-512 and found this interesting quote from Conor Cunningham:

During the pandemic, I found an academic paper that explained how to use AVX-512 instructions to do a fast quicksort. These instructions essentially do N operations at a time instead of one, meaning that it can potentially speed up performance-critical code substantially. I implemented the sort from the paper and started making it better than the paper. Eventually I wanted to start playing with implementing something in SQL’s code. There is logic that we have that uses the prior generation of vector instructions (AVX2) and I looked at that code and figured out how to write an equivalent version that used the newer, wider vectors as a side project. When I had it finished, we got good performance gains on our key analytics benchmark (TPC-H). The fun part is that I did not tell anyone I was doing this until one day I showed up and just gave this present to the team – it wasn’t a formally funded effort that was intended for SQL Server 2022, but we prioritized it once we realized what value it delivered for customers.

At the time of the writing of this book, we were keeping this enhancement under a trace flag, and it is possible we will launch the product with this still requiring a trace flag – mostly because the use of this capability is an advanced concept and not for everyone. Check out the documentation at https://aka.ms/sqlserver2022docs for the latest information.

These monikers are various vector CPU capabilities we have detected in the processor. AVX-512 would appear if you are using a chipset that supports this new vector model.

Columnstore Segment Elimination Enhancements

Columnstore index columns are organized into segments. Columnstore includes a concept called segment elimination so that segments can be eliminated or not ready depending on the query. Prior to SQL Server 2022, only columns with data types of numeric, date, and time and datetimeoffset with scale less than or equal to two were candidates for segment elimination. Now in SQL Server 2022, we have extended segment elimination to new data types including string, binary, and guid data types and the datetimeoffset data type for scale greater than two.

Buffer Pool Parallel Scan

If you look at my site for all my talks (I’m an open source presenter), https://aka.ms/bobwardms, you will find a folder called SQL PASS 2013. At the PASS Community Summit in 2013, I gave a half-day talk on memory. If you look at this deck, you will see that I have some internals on the buffer pool of SQL Server. As part of these slides, I talk about a BUF hash table and BUF structure. BUF structures point to pages, and a BUF hash table is a way to organize all the BUF structures to easily find a page. Therefore, finding a specific page is not all that hard using a lookup of the BUF hash table.

Unfortunately, some operations in SQL Server must scan all the BUF structures. Think of this like scanning a clustered index vs. using an index seek. And like a clustered index scan, if you only need a few rows, it still may take a very long time to get the results if the clustered index is large.

The same problem can occur for certain operations with the buffer pool, and we would see this type of scenario with customers. They would have a server with, say, 1TB of RAM and allow the buffer pool to consume most of this memory. Then they would go perform some maintenance operation, and even against a very small database, it would take an unusually long time. This is because we would scan the entire ~1TB of BUF structures to finish the operation. We even added ERRORLOG messages to warn the user this condition was happening. See the article https://docs.microsoft.com/troubleshoot/sql/performance/buffer-pool-scan-runs-slowly-large-memory-machines for more information. This is a classic problem of an architecture that for years didn’t cause problems, but as hardware technology became vastly bigger, this design needed to be updated.

We took a look at this problem and said something to the effect, “If queries can run in parallel to obtain a faster result, why can’t we do this when scanning the buffer pool?” (This is not an exact quote; it’s my paraphrasing when I read the design documents for this.)

The result of this work is buffer pool parallel scan, which is enabled by default in SQL Server 2022 for systems with large amounts of memory. My colleague David Pless at Microsoft worked on this feature and explains how it works at https://cloudblogs.microsoft.com/sqlserver/2022/07/07/improve-scalability-with-buffer-pool-parallel-scan-in-sql-server-2022.

David shows some great numbers we’ve seen for improvements in SQL Server 2022. In addition, check out his Data Exposed episode where he shows even more details with a nifty demonstration at https://youtu.be/4GvU106Xiag. I have included an example of the results David found in a T-SQL notebook you can view with Azure Data Studio in the example ch06_meatandpotatoesscalabilityBuffer_pool_parallel_scan_BPP_notebook_quick.ipynb.

Purvi’s List

I have encountered so many talented, kind, and wonderful people at Microsoft over the years who work behind the scenes with no fanfare. They just do their job, do it well, and are incredibly nice and friendly. One of those people is Purvi Shah. Purvi is a senior software engineer in the SQL team, but her role is larger than that title. Purvi works in our “performance” team and literally spends her time finding ways to make SQL Server and Azure SQL faster – but faster on a level that most of us don’t understand. Her and the team’s work can be felt in so many ways that you may never see because it is often enhancements into the engine that are not a “feature.”

Purvi and her team do such great work to keep the SQL Server engine tuned and fast. I asked Purvi more about why she likes her job at Microsoft, and she said, “Keeping both SQL Server and Azure SQL running at its peak performance is part of my job. I strive to do it to best of my abilities. Of course, I love my job! Hope I am able to make a positive contribution to continue our mission.”

What Is the Challenge?

All database pages in SQL Server need physical protection using latches. Some database pages are called system pages because they have allocation information; these are known as PFS, GAM, and SGAM pages. Any query or operation that requires allocation or deallocation may need to read or write from or to these pages. Reads and writes from and to these pages require a latch protection scheme. Latch protection is needed because two threads could be trying to modify or read a page at the same time (that is a very basic description of how latches work).

These pages are at fixed locations within database files. In addition, every table has pages to store data and indexes. Any queries or operations that affect these pages will also require latch protection. Because system tables have pages like any other table, specific DDL statements in SQL will eventually lead to the latch protection and contention for pages for system tables.

Now consider tempdb. Workloads for SQL Server that involve tempdb typically require a great deal of allocation and system table page operations. Temporary tables, table variables, and spills are just a few that invoke these operations. All of these typically require fast and frequent page allocations and system table modifications. Therefore, when many users run queries concurrently that result in these operations within tempdb, there is naturally contention or pressure on latches for pages for allocation and system tables. The main symptom of this problem is seeing your request waiting on a PAGELATCH_XX wait type.

Initially, when latches were first introduced in SQL Server 7.0, I would see latch contention for tempdb on PFS, GAM, and SGAM pages because back then the default behavior was a single file for database pages. Typically, what would happen is that an application would use temporary tables across multiple concurrent users, which would result in frequent CREATE and DROP operations, which required allocation and deallocation operations. This naturally put pressure on PFS, GAM, and SGAM pages in a single file.

Solutions Over the Years

When we first started to really see this problem in SQL Server 7.0 and even into SQL Server 2000, many of us in CSS would recommend that customers create multiple files for tempdb data. Why? Because we were naturally partitioning latch concurrency for these allocation pages. This is because SQL Server will allocate pages in a round-robin fashion and leverage a proportional fill algorithm across multiple files for data pages. This solution really helped many of these latch contention problems. But then a new problem surfaced. How many files do you need to create to solve the problem? Unfortunately, many people went overboard and suggested that you would need a number of files to match the number of CPUs for SQL Server. I and others in the community, like Paul Randal, thought differently. For example, we knew that for a 64-CPU machine you would probably not need 64 files. Common sense said that it seemed like it could cause more harm than good. I eventually did some detailed research on this topic, which led me to recommend that using eight files for eight CPUs and then adding by four until you see the performance balance for your workload would be the best approach. You can see more details about this approach in a presentation I did way back in the PASS Summit in 2011 at www.youtube.com/watch?v=SvseGMobe2w.

Another thing we did is introduce trace flag 1118 so that all allocations for tables used uniform extents to ease pressure on the SGAM pages of files. We also discovered that using multiple files to ease system page latch contention only worked if all the files were the exact same size. As a result, we introduced trace flag 1117 so that any autogrow activities would grow all files to keep them the same size.

Any true bottleneck requires peeling back the layers like an onion. Even with this approach of multiple files, a system could have so many users that PFS, GAM, and SGAM latch contention could still happen, but it paled in comparison to the new main problem: system table page latch contention. We struggled at first to recognize this. We were used to running scripts that would recognize specific pages for latch contention: PFS, GAM, and SGAM.

Once we saw the hot spot was system table pages, we honestly had no recourse but to tell customers to reduce their tempdb workload contention. We did create some solutions that would help called tempdb caching. We discovered that we could save metadata about temporary tables, including some pages for patterns that were repeated. You can see more about this concept at https://docs.microsoft.com/sql/relational-databases/databases/tempdb-database?#performance-improvements-in-tempdb-for-sql-server. Even with tempdb caching, it did not eliminate the problem, and not all tempdb scenarios can use caching.

In SQL Server 2016 we helped customers ensure multiple files were created for tempdb by including a default configuration within setup to create the number of files to match the number of CPUs detected up to eight. We also removed the need for trace flags 1117 and 1118 by turning these into ALTER DATABASE options and making them the default for tempdb.

The improvements were huge. With these two enhancements, I saw many workloads no longer experience significant issues due to latch contention. But the core problem could occasionally still be seen with latch contention on SGAM and GAM pages. When I first saw SGAM contention continue to occur, I was puzzled because we changed tempdb to always use uniform extents. However, there is one page that still has to be allocated for temporary tables or indexes that is not with a uniform extent, and that is an IAM page, which tracks allocations for an object.

Why Now “Hands-Free”?

When I saw the initial set of engine improvements for project Dallas, I was very happy to learn that GAM and SGAM concurrencies were enhanced in the same manner that PFS pages had been in SQL Server 2019.

Now tempdb could truly be “hands-free” with regard to latch issues.

Try It Yourself

If you want to see how we have hopefully forever removed tempdb latch contention for users, go through the following exercise:

Note: This exercise will require you to restart the instance multiple times.

Set Up the Exercise

Steps for the Exercise

You are now ready to run the exercise, which is comprised of three different tests. In each test you will run the same workload and observe perfmon counters and overall workload duration.

Test 1: Disable tempdb metadata optimization and disable GAM/SGAM enhancements.

Move forward to the next steps but come back after the command is over to look more at the syntax.

Let’s look at the arguments:

-Q is used to run a query. Notice this is a batch to use a table variable. This particular syntax won’t allow for temporary table caching, so we are putting a lot of pressure on allocation and system tables.

-n is number of users. We’ve supplied a value of 25 concurrent users.

-r is the number of iterations of the query each user will run.

Test 2: Enable tempdb metadata optimization and disable GAM/SGAM enhancements.

You should see fewer latch waits started per second, but a lower number of batch requests/sec and a longer duration. This is because the latch waits are held longer, causing a drop of throughput from Test 1. If we had multiple files, we could greatly reduce the GAM contention, and we would get better performance (and feel free to test this yourself). But with SQL Server 2022, there is another way.

Test 3: Enable tempdb metadata optimization and enable GAM/SGAM enhancements (default for SQL Server 2022).

Test 3 should win because we have all optimizations turned on.

Test 1 was second because even though system table page latch contention was heavy, latch wait times were shorter for each latch wait.

Test 2 was the worst because latch wait times for GAM pages were very long.

You may be wondering what the results would look like for Test 3 if you had multiple tempdb files. Just about the same as with one file, which I know may seem amazing after all these years of using multiple files. My advice is to stick with the recommended number of multiple files; just let SQL Server setup configure it for you. It is another reason I’m advocating “hands-free” installation: Run SQL Server setup with the defaults and turn on tempdb metadata optimization. Then just run your workload. Time will tell whether my bold statement will become true for you and the community.

Shrink Database Concurrency

In SQL Server 2014 we added an option for online index builds to take locks at lower priorities called WAIT_AT_LOW_PRIORITY. Even an online index build (see the documentation at https://docs.microsoft.com/sql/relational-databases/indexes/how-online-index-operations-work?#source-structure-activities) has to obtain locks and may have to wait. During this wait period, other operations might be blocked by the online index build that could normally continue. WAIT_AT_LOW_PRIORITY allows users that would normally be blocked to continue.

It turns out that shrink database and shrink file operations have these same issues. Therefore, in SQL Server 2022 we added a new WAIT_AT_LOW_PRIORITY for DBCC SHRINKDATABASE and DBCC SHRINKFILE. You can see how the new syntax works at https://docs.microsoft.com/sql/t-sql/database-console-commands/dbcc-shrinkdatabase-transact-sql. In general, it is recommended to avoid shrinking a database or its files, but sometimes it is a necessity.

Auto-update Stats Concurrency

As we were building out the story for SQL Server 2022 preview launch, one of the developers I know, Parag Paul, reached out to me: “Bob, have you seen the auto-update stats improvement coming in SQL Server 2022?” I told Parag I thought I remembered something in Azure SQL about this, but I didn’t know much about it or that it would be in SQL Server 2022.

We discussed the details, and I then remembered a blog post by my colleague Dimitri Furman, who not only is one of the top SQL experts in our team but is one of my “go-to” people at Microsoft on Azure SQL. You can read his blog post at https://techcommunity.microsoft.com/t5/azure-sql-blog/improving-concurrency-of-asynchronous-statistics-update/ba-p/1441687.

The problem is that while SQL Server and Azure SQL can be configured for auto-update statistics to happen asynchronously, the background processes doing the updates can cause concurrency issues. Dimitri has a very nice, detailed diagram and explanation of the problem in this blog post. Effectively, the issue is concurrency between queries and background processes needing schema locks on system metadata. We introduced a new database-scope configuration option called ASYNC_STATS_UPDATE_WAIT_AT_LOW_PRIORITY. When you turn this on, the background processes to update stats will wait for all running processes to release locks that could cause a concurrency issue, effectively running at a “lower priority.” This option is off by default because it is possible this option could result in statistics not being updated as often as desired (or as often as folks are used to now), which could lead to undesirable query plans. But we added this option because we saw scenarios where the user wanted to favor concurrency over more frequent, timed updates of statistics.

You can read how to configure this database-scoped option at https://docs.microsoft.com/sql/t-sql/statements/alter-database-scoped-configuration-transact-sql.

How Does It Work?

The concept of a Contained Availability Group is to include a version of the master and msdb system databases inside the availability group, along with user databases. If anyone connects to the listener of the availability group or a user database context directly inside the AG, any instance information in master and msdb will be seen from these system databases. Anyone connecting to the instance directly would see the normal master and msdb databases. It is not a copy of the instance master and msdb databases; it is a special version of these databases used in the context of the AG. On creation of a Contained AG, these system databases are empty except any existing admin logins are copied into the contained AG master so that an admin can connect to the AG and start adding instance objects.

Figure 6-5 shows the various components of a Contained AG.

An illustration of various components of a Contained A G. Listener or direct d b context in the center is connected to primary and secondary. The primary and secondary are connected by log changes.

When a user creates an availability group, there is a new syntax keyword for the WITH clause called CONTAINED. When this keyword is used, SQL Server will create two databases called <agname>_master and <agname>_msdb and add these to the availability group. Existing admin logins in the master database of the primary are added to the Contained AG master.

When a user connects to the listener of the AG or a direct database context (i.e., uses the database name in the connection string), this user is considered in the context of the Contained AG. Any operation that would normally apply to master or msdb applies to the Contained AG master and msdb. For example, if you were connected to the listener and created a new SQL Server Agent job, that job would exist in <agname>_msdb and NOT in the msdb of the instance of the primary. Since the <agname>_msdb is part of the AG, any logged operations such as adding a new job are replicated to the <agname>_msdb on the secondary.

If a failover occurs, the replicated Contained AG master and msdb will now be used for new primary listener connections.

When I first saw this design, I was puzzled about SQL Server Agent. How could SQL Server Agent know to look for jobs in the Contained AG msdb? Well, turns out we enhanced SQL Server Agent in 2022 to recognize multiple msdb databases that may be needed to use for Agent jobs. Any job in the Contained AG msdb only gets executed on the primary replica.

You can read more about how Contained AGs work at https://docs.microsoft.com/sql/database-engine/availability-groups/windows/contained-availability-groups-overview.

I think you will understand further how this works by seeing an example.

Let’s Try It Out

Let’s walk through an exercise to see how a Contained Availability Group works. For this exercise I’m going to set up a clusterless availability group. In other words, I’m not going to use a Windows cluster, so my availability group does not have auto-failover capabilities. A clusterless availability group is the simplest method to show a Contained Availability Group. Because I’m using a clusterless availability group, you can also easily set up this exercise on Linux. You can also set up your own type of availability group and still use most of the examples here.

Steps for the Exercise

1. 1.
   Connected directly to the instance using the default sysadmin login from setup, execute the script sqlsysadminlogin.sql on both the primary and secondary instances. This script executes the following T-SQL statements:

   USE master;

   GO

   CREATE LOGIN sqladmin WITH PASSWORD = '$Strongpassw0rd';

   GO

   EXEC sp_addsrvrolemember 'sqladmin', 'sysadmin';

   GO

   You will use this login to connect to each instance for the rest of the exercise.

    
2. 2.

   Start the SQL Server Agent service on both the primary and secondary VMs.

    
3. 3.

   Connect with SSMS on the primary VM to both the primary and secondary using the sqladmin login.

    
4. 4.
   Execute the script dbmcreds.sql on both the primary and secondary instances. This script executes the following T-SQL statements:

   USE master;

   GO

   CREATE LOGIN dbm_login WITH PASSWORD = '$Strongpassw0rd';

   GO

   CREATE USER dbm_user FOR LOGIN dbm_login;

   GO
    
5. 5.
   Execute the script createcert.sql only on the primary instance. This script executes the following T-SQL statements:

   USE master;

   GO

   CREATE MASTER KEY ENCRYPTION BY PASSWORD = '$Strongpassw0rd';

   GO

   DROP CERTIFICATE dbm_certificate;

   GO

   CREATE CERTIFICATE dbm_certificate WITH SUBJECT = 'dbm';

   GO

   BACKUP CERTIFICATE dbm_certificate

   TO FILE = 'C:Program FilesMicrosoft SQL ServerMSSQL16.MSSQLSERVERMSSQLDATAdbm_certificate.cer'

   WITH PRIVATE KEY (

   FILE = 'c:Program FilesMicrosoft SQL ServerMSSQL16.MSSQLSERVERMSSQLDATAdbm_certificate.pvk',

   ENCRYPTION BY PASSWORD = '$Strongpassw0rd');

   GO

   This script assumes the default installation path for SQL Server on Windows. You will have to modify this script if your install path is different. You will also need to modify this script for Linux to match the correct install path.

    
6. 6.

   Copy the files dbm_certificate.cer and dbm_certificate.pvk from the path of the primary VM into the same exact file path on the secondary VM (the default is C:Program FilesMicrosoft SQL ServerMSSQL16.MSSQLSERVERMSSQLDATA).

    
7. 7.
   Execute the script importcert.sql only on the secondary instance. This script executes the following T-SQL statements (you will need to modify the path if it is not the default as in the following):

   USE master;

   GO

   CREATE MASTER KEY ENCRYPTION BY PASSWORD = '$Strongpassw0rd';

   GO

   CREATE CERTIFICATE dbm_certificate

       AUTHORIZATION dbm_user

       FROM FILE = 'C:Program FilesMicrosoft SQL ServerMSSQL16.MSSQLSERVERMSSQLDATAdbm_certificate.cer'

       WITH PRIVATE KEY (

       FILE = 'c:Program FilesMicrosoft SQL ServerMSSQL16.MSSQLSERVERMSSQLDATAdbm_certificate.pvk',

       DECRYPTION BY PASSWORD = '$Strongpassw0rd');

   GO
    
8. 8.
   Execute the script dbm_endpoint.sql on both instances. This script executes the following T-SQL statements:

   USE master;

   GO

   CREATE ENDPOINT [Hadr_endpoint]

       AS TCP (LISTENER_PORT = 5022)

       FOR DATA_MIRRORING (

         ROLE = ALL,

         AUTHENTICATION = CERTIFICATE dbm_certificate,

         ENCRYPTION = REQUIRED ALGORITHM AES

         );

   GO

   ALTER ENDPOINT [Hadr_endpoint] STATE = STARTED;

   GRANT CONNECT ON ENDPOINT::[Hadr_endpoint] TO [dbm_login];

   GO
    
9. 9.
   Edit the script createag.sql. Put in your two VM server names (that you put in the hosts file) for <node1> (primary) and <node2> (secondary). This script executes the following T-SQL statements:

   USE master;

   GO

   CREATE AVAILABILITY GROUP [ag1]

       WITH (CLUSTER_TYPE = NONE, CONTAINED)

       FOR REPLICA ON

           N'<node1>' WITH (

               ENDPOINT_URL = N'tcp://<node1>:5022',

               AVAILABILITY_MODE = ASYNCHRONOUS_COMMIT,

               FAILOVER_MODE = MANUAL,

               SEEDING_MODE = AUTOMATIC,

               SECONDARY_ROLE (ALLOW_CONNECTIONS = ALL)

               ),

           N'<node2>' WITH (

               ENDPOINT_URL = N'tcp://<node2>:5022',

               AVAILABILITY_MODE = ASYNCHRONOUS_COMMIT,

               FAILOVER_MODE = MANUAL,

               SEEDING_MODE = AUTOMATIC,

               SECONDARY_ROLE (ALLOW_CONNECTIONS = ALL)

               );

   GO

   ALTER AVAILABILITY GROUP [ag1] GRANT CREATE ANY DATABASE;

   GO

   Notice the use of the option CLUSTER_TYPE = NONE (clusterless) and CONTAINED. Any type of availability group will support CONTAINED. I’m just using a clusterless type to simplify the exercise.

   For my system, my script looks like this:

   USE master;

   GO

   CREATE AVAILABILITY GROUP [ag1]

       WITH (CLUSTER_TYPE = NONE, CONTAINED)

       FOR REPLICA ON

           N'bwsql2022vm1' WITH (

               ENDPOINT_URL = N'tcp://bwsql2022vm1:5022',

               AVAILABILITY_MODE = ASYNCHRONOUS_COMMIT,

               FAILOVER_MODE = MANUAL,

   SEEDING_MODE = AUTOMATIC,

               SECONDARY_ROLE (ALLOW_CONNECTIONS = ALL)

               ),

           N'bwsql2022vm2' WITH (

               ENDPOINT_URL = N'tcp://bwsql2022vm2:5022',

               AVAILABILITY_MODE = ASYNCHRONOUS_COMMIT,

               FAILOVER_MODE = MANUAL,

               SEEDING_MODE = AUTOMATIC,

               SECONDARY_ROLE (ALLOW_CONNECTIONS = ALL)

               );

   GO
    
10. 10.
    Execute the script joinag.sql on the secondary instance. This script executes the following T-SQL statements:

    USE master;

    GO

    ALTER AVAILABILITY GROUP [ag1] JOIN WITH (CLUSTER_TYPE = NONE);

    GO

    ALTER AVAILABILITY GROUP [ag1] GRANT CREATE ANY DATABASE;

    GO
     
11. 11.

    You should now have a Contained Availability Group up and running. Let’s make sure it is working by using Object Explorer in SSMS. If you expand the folder for Availability Groups, you should see something like Figure 6-6.

     

A screenshot of a folder titled always on high availability. It has various folders and files under it. The cursor points to always on high availability.

You can see the availability group is made up of the Contained AG master and msdb. SSMS 19 has new icons to recognize a Contained AG.

1. 12.

   Since you are directly connected to the instance (not through a listener or direct db context), you can see these databases as user databases. Expand the Databases folder in Object Explorer. You should see something like Figure 6-7.

    

A screenshot of a folder titled databases. It has system databases and database snapshots folders with files under it.

When using the listener or direct db context, you will see that we have a different view.

1. 13.
   Execute the script createdb.sql on the primary instance to create a new database and back it up. This script executes the following T-SQL statements (change the file path for the backup to your system needs):

   CREATE DATABASE letsgomavs;

   GO

   ALTER DATABASE letsgomavs SET RECOVERY FULL;

   GO

   BACKUP DATABASE letsgomavs

   TO DISK = N'c:Program FilesMicrosoft SQL ServerMSSQL16.MSSQLSERVERMSSQLBackupletsgomavs.bak' WITH INIT;

   GO

   At the time I created this demo, my beloved Dallas Mavericks were in the heat of battle for the NBA Western Conference playoffs, so I couldn’t resist using their name here. Sadly, they lost to the eventual champions, Golden State, in the Conference finals.

    
2. 14.
   Execute the script dbjoinag.sql against the primary instance to join the new database to the availability group. This script executes the following T-SQL statements:

   USE master;

   GO

   ALTER AVAILABILITY GROUP [ag1] ADD DATABASE letsgomavs;

   GO

   If you refresh the availability group in SSMS, you will see the database letsgomavs is now part of the AG.

    
3. 15.

   Now it gets interesting. Connect to the primary instance using a direct database context. I find it easiest to launch another copy of SSMS and connect to the primary instance. But this time on the SSMS login screen, select Options and the Connection Properties tab. Put in letsgomavs in the Connect to database field like in Figure 6-8.

    

A screenshot titled S Q L server. The entries for network packet size and connection time-out are 4096 bytes and 30 seconds respectively, with the network protocol set at default.

You can achieve the same concept by using a listener. Since I’m using a clusterless availability group, I’ll just connect using the database context.

1. 16.

   Use SSMS to look at the list of databases. You will only see letsgomavs, and if you expand system tables, you will see master and msdb. These are the Contained AG master and msdb databases.

    
2. 17.

   While you are connected to the primary instance, use SSMS to create a SQL Server Agent job. It doesn’t matter what is in the job. I just used the Object Explorer interface to create a new job called testjob with no steps.

    
3. 18.

   Launch another SSMS that is directly connected to the instance. Use Object Explorer to expand the list of jobs for SQL Server Agent. You will not see the job there because it is in the Contained AG msdb database.

    
4. 19.

   Connect to the secondary instance using the same technique with SSMS to connect with the letsgomavs database. Expand the jobs for SQL Server Agent in Object Explorer, and you will see the job you created previously. This demonstrates that jobs are replicated to secondary instances.

    
5. 20.

   Let’s try a failover. Using SSMS directly connected to the primary instance (not using the database context), right-click the availability group and select Failover like in Figure 6-9.

    

A screenshot of an overlapping menu. The cursor points to failover.

Items to Consider

There are a few limits and considerations for Contained AGs. For example, replication is not supported for databases that are in a Contained AG. But features like CDC, log shipping, and TDE are supported with some special instructions for use. You can learn more about these in our documentation at https://docs.microsoft.com/sql/database-engine/availability-groups/windows/contained-availability-groups-overview#interactions-with-other-features.

AG Reliability and Supportability

You can see that the majority of diagnostic improvements are related to the Alwayson_health Extended Events session. You can read more about the Alwayson_health session and its importance for debugging issues at https://docs.microsoft.com/sql/database-engine/availability-groups/windows/always-on-extended-events#BKMK_alwayson_health.

Distributed Availability Group (DAG) Enhancements

In SQL Server 2016 we introduced the concept of a Distributed Availability Group (DAG). A DAG effectively is two availability groups connected together, typically over a long distance. A common scenario in which you might use a DAG is for disaster recovery. You configure an availability group (AG) in your primary location. You configure a second AG in a remote location. You then use a DAG to tie them together but with async commit. If you want to learn the fundamentals of DAG, you can start at https://docs.microsoft.com/sql/database-engine/availability-groups/windows/distributed-availability-groups.

A DAG also supports sync commit. You should carefully consider this option depending on the connectivity to the secondary AG that is part of the DAG. By default, even a sync replica model for a single AG does not wait for a transaction to be committed on the secondary before allowing a transaction on the primary to continue. It only waits for the log records to be hardened on the secondary. However, in SQL Server 2017 we introduced an option called REQUIRED_SYNCHRONIZED_SECONDARIES_TO_COMMIT. This option allows you to set a minimum number of synchronous secondary replicas required to commit before the primary commits a transaction. The default is 0. Previously this option was only allowed on an availability group. In SQL Server 2022 you can configure this option for a Distributed Availability Group.

Another subtle, yet important, change for DAG is that we can use multiple TCP connections to improve throughput for latency-sensitive connections. We found out we can improve our own Azure geo-replication with this design, so we have brought it to SQL Server. No additional configuration is required. We internally decide how to use this to improve throughput.

Accelerated Database Recovery (ADR) Enhancements

I believe one of the most important new capabilities for SQL Server 2019 was Accelerated Database Recovery (ADR). No longer will you encounter transaction log size growing out of control, long rollbacks causing downtime, or recovery taking forever (I encourage you to read my article from 2019 on the topic at www.linkedin.com/pulse/sql-server-2019-how-saved-world-from-long-recovery-bob-ward). And if you want to dig deeper, check out the whitepaper at https://aka.ms/sqladr.

You can read all about these improvements in SQL Server 2022 in more detail at https://docs.microsoft.com/sql/relational-databases/accelerated-database-recovery-concepts#adr-improvements-in-.

Parallel Redo Enhancements

In SQL Server 2016, my colleague Bob Dorr and I started our own grassroots campaign called “It just runs faster,” calling out enhancements in SQL Server 2016 that were built into the engine and just made your application and queries run faster. One of the features was called parallel redo. The concept is that for redo operations during recovery, we can safely redo committed transactions in parallel with multiple threads.

To see this in action, I went to the video vault and found about a session I did titled SQL Server 2016 It just runs faster on a virtual webinar series originally hosted by Brent Ozar called GroupBy. You can find the video at https://youtu.be/pTEDfmQnpzA. You can watch the entire talk, or for parallel redo fast forward to about 22 minutes into the presentation. You can also get the deck and demos I used for that talk at https://aka.ms/bobwardms. Look for the GroupBy Org Jan 2017 folder.

In the presentation I explained how parallel redo can really boost recovery performance. However, we limited the worker pool for parallel threads to 100, so for systems with a large number of databases running recovery, some would not be able to take advantage of parallel redo threads (and you cannot configure which databases can).

In SQL Server 2022, we no longer limit this thread pool, so all databases can take advantage of parallel redo. We have also introduced a concept of batching with parallel redo to increase concurrency and speed up all operations. None of these improvements require any change or configuration on your part. It just works.

Cross-Platform SNAPSHOT Backup

Let’s say you have a very large database to back up. SQL Server by default streams the backup by reading the database and log files and copying the data to the backup target. A very long time ago (I had to check my records because this goes back to SQL Server 7.0), we introduced the concept of a Virtual Device Interface (VDI) for backup and restore. The concept is that a developer could write code based on published libraries to accept a backup stream (or send a stream for restore) and process this backup stream in whatever way they wanted to (e.g., send the stream to a special storage device). The T-SQL language was extended to support a VIRTUAL_DEVICE target in addition to what we already supported (DISK, TAPE, PIPE; I know TAPE and PIPE. Crazy!). When a VDI target was used, SQL Server would engage in a protocol with the VDI program to back up or restore a database, log, or file. As part of this protocol, data would be streamed to the VDI program for backup or restore.

With the introduction of VDI came the ability to perform a database backup snapshot. If the VDI program was working in coordination with a device that could simply “copy the files,” a snapshot backup could be significantly faster than a streaming backup. This required a new syntax for BACKUP (WITH SNAPSHOT) and a new protocol with VDI programs. The key to making a snapshot work is that the SQL Server engine has to freeze all I/O for the database so that the database backup snapshot is consistent.

We also introduced on Windows the ability to use the Windows Volume Snapshot Service (VSS) to work in coordination with a program called SQL Writer to perform database backup snapshots, and you can read more at https://docs.microsoft.com/sql/relational-databases/backup-restore/sql-server-vss-writer-backup-guide.

In SQL Server 2016 we introduced the ability to store database and log files in Azure Blob Storage, which allowed us to support file-based snapshot backups in Azure Virtual Machines. Read more at https://docs.microsoft.com/sql/relational-databases/backup-restore/file-snapshot-backups-for-database-files-in-azure.

With all this context in mind, we wanted a simpler way to allow snapshot backups both in Azure Virtual Machines and across operating systems without requiring a VDI application or Windows VSS. As Ravinder Vuppula, Principal Software Engineer on the Azure Data team, tells it:

SQL Server has allowed users to perform snapshot backups for some time. However, it required users to either write a custom VDI client (complex) or use SQLWriter (less flexible) to perform snapshot backups. Starting with SQL Server 2016, users could also perform T-SQL based snapshot backups with FILE_SNAPSHOT feature but it was limited to files stored on Azure Blob Storage. Furthermore, users were limited to performing snapshot backup of one database at a time even when there could be multiple databases placed on the same underlying storage The snapshot backups feature in SQL Server 2022 is designed to remove these restrictions. We were in pursuit of a solution that was easy to use, storage agnostic (as long as the underlying storage allowed snapshots), OS agnostic (wherever SQL Server can run), API agnostic (flexibility to use either VDI client or just T-SQL without any dependency on the API calls to the underlying storage). Of course, we wanted the solution to be reliable (prevent any kind of deadlocks) but also offered the ability to perform snapshot backup of either a single database or multiple databases at the same time.

How Does It Work?

This new capability uses a combination of T-SQL commands and the underlying storage layer for your database and log files to capture a snapshot of the files.

Here is the basic sequence for how this works:

There are some interesting options with this new capability, including the ability to perform a backup snapshot of databases into groups and even suspend all databases at the instance level.

Read all about the new T-SQL-based snapshot backups at https://docs.microsoft.com/sql/relational-databases/backup-restore/create-a-transact-sql-snapshot-backup.

Intel QuickAssist (QAT) Backup Compression

When any software performs operations like compression or encryption, the instructions to support these are very CPU intensive. When SQL Server creates a backup with compression or encryption, the threads that perform the backup run code that chews up CPU cycles on the main CPU cores.

Our engineering team at Microsoft is always looking for hardware innovations that can assist in offloading the CPU resources required for operations like these for main CPU cycles. We call this concept hardware offloading.

One of the partners we work closely with is Intel. Most recently, our engineering team worked with Intel to integrate a technology called Intel QuickAssist (QAT) that can perform hardware offloading for compression and encryption needs. You can read more about how Intel QuickAssist works at www.intel.com/content/www/us/en/architecture-and-technology/intel-quick-assist-technology-overview.html. You can see from their documentation that in some cases the technology is built into the main CPU structure and in other cases you can install a separate hardware card (in addition, this technology has what is called software mode, which does use core CPU cycles).

While we have both observed in some cases better backup throughput and better compression using QAT, the big key to this technology is offloading CPU resources from SQL Server so queries and workloads can maximize available CPU resources.

QAT does come with a software mode, in which the drivers are used but hardware is not. This will not help reduce CPU resources since it is all built into the software, but it can be more effective than the default compression used today by SQL Server. By default, SQL Server uses the XPRESS compression library and algorithms. You can read more about XPRESS compression at https://docs.microsoft.com/windows/win32/cmpapi/-compression-portal.

I’ve included a T-SQL notebook created by David Pless that shows you all the different syntax options and configurations for QAT and hardware offloading in the samples at ch06_meatandpotatoesavailability Intel_QuickAssistTech_SQLServer2022.ipynb. You can view this notebook with Azure Data Studio or a web browser.

You can read performance information using QAT for backups that Intel observed at https://community.intel.com/t5/Blogs/Tech-Innovation/Data-Center/Accelerate-your-SQL-Server-2022-database-backups-using-Intel/post/1335102.

Backup Metadata

Have you ever found yourself wondering when you can perform the most recent point-in-time restore (PITR) of a database? We now have a nice addition to the msdb.backupset table, the column named last_valid_restore_time. With this column you can determine exactly the last valid time to which you can perform a PITR. You can find this column now documented for the msdb.backupset table at https://docs.microsoft.com/sql/relational-databases/system-tables/backupset-transact-sql.