7d7ec7025e
Fixes #29043 with the following docs changes: - docs/dev/system-keyspaces.md: Added a new file that documents all keyspaces created internally Closes scylladb/scylladb#29044
3.2 KiB
System Keyspaces Overview
This page gives a high-level overview of several internal keyspaces and what they are used for.
Table of Contents
- system_replicated_keys
- system_distributed
- system_distributed_everywhere
- system_auth
- system
- system_schema
- system_traces
- system_audit/audit
system_replicated_keys
Internal keyspace for encryption-at-rest key material used by the replicated key provider. It stores encrypted data keys so nodes can retrieve the correct key IDs when reading encrypted data.
This keyspace is created as an internal system keyspace and uses EverywhereStrategy so key metadata is available on every node. It is not intended for user data.
system_distributed
Internal distributed metadata keyspace used for cluster-wide coordination data that is shared across nodes.
In practice, it is used for metadata such as:
- materialized view build coordination state
- CDC stream/timestamp metadata exposed to clients
- service level definitions used by workload prioritization
This keyspace is managed by Scylla and is not intended for application tables.
It is created as an internal keyspace (historically with SimpleStrategy and RF=3 by default).
system_distributed_everywhere
Legacy keyspace. It is no longer used.
system_auth
Legacy auth keyspace name kept primarily for compatibility.
Auth tables have moved to the system keyspace (roles, role_members, role_permissions, and related auth state). system_auth may still exist for compatibility with legacy tooling/queries, but it is no longer where current auth state is primarily stored.
system
This keyspace is local one, so each node has its own, independent content for tables in this keyspace. For some tables, the content is coordinated at a higher level (RAFT), but not via the traditional replication systems (storage proxy).
See the detailed table-level documentation here: system_keyspace
system_schema
This keyspace is local one, so each node has its own, independent content for tables in this keyspace. All tables in this keyspace are coordinated via the schema replication system.
See the detailed table-level documentation here: system_schema_keyspace
system_traces
Internal tracing keyspace used for query tracing and slow-query logging records (sessions, events, and related index/log tables).
This keyspace is written by Scylla's tracing subsystem for diagnostics and observability. It is operational metadata, not user application data (historically created with SimpleStrategy and RF=2).
system_audit/audit
Internal audit-logging keyspace used to persist audit events when table-backed auditing is enabled.
Scylla's audit table storage is implemented as an internal audit keyspace for audit records (for example, auth/admin/DCL activity depending on audit configuration). In current code this keyspace is named audit, while operational material may refer to it as its historical name (system_audit). It is intended for security/compliance observability, not for application data.