You commit a transaction. Two milliseconds later, the power fails. On reboot, is the commit there? If yes, your DB is durable. If no, it's a lie. The trick every durable datastore uses — Postgres, MySQL, Cassandra, SQLite, Kafka — is the write-ahead log: before any change touches the main data files, write the intent to an append-only log on disk and fsync(). Crash? Replay the log, recover the state. This single technique powers the D in ACID.
Every modification follows this sequence:
On crash recovery: read the WAL from the last known-good point. Replay every committed entry. Main data files catch up. System is consistent again.
Random disk writes (updating a B-tree leaf in place) are slow because the disk arm (HDD) or SSD controller has to seek. Sequential writes are fast — just append to the end.
An HDD does ~100 random IOPS but ~100 MB/s sequential. A modern SSD does ~100k random IOPS but ~3 GB/s sequential. Every generation of storage has this gap.
WAL exploits this: writes are always sequential. The expensive random updates to the main data structures happen in big batches, asynchronously, when the system is idle. Commit latency = one fsync + sequential append. Orders of magnitude faster than "update the B-tree in place and fsync."
import json, os, time
class WAL:
def __init__(self, path, sync_every_ms=5):
self.f = open(path, "ab")
self.sync_every_ms = sync_every_ms
self.last_sync = time.monotonic() * 1000
def append(self, record):
line = json.dumps(record) + "\n"
self.f.write(line.encode())
now = time.monotonic() * 1000
if now - self.last_sync >= self.sync_every_ms:
self.f.flush()
os.fsync(self.f.fileno())
self.last_sync = now
# Group commit: batch records between fsyncs. Trade durability window
# (bounded by sync_every_ms) for dramatically higher write throughput.| System | WAL name | Role |
|---|---|---|
| Postgres | WAL | Durability + replication streaming (replicas tail the WAL) |
| MySQL / InnoDB | redo log | Durability + crash recovery |
| SQLite | WAL mode | Enable with PRAGMA journal_mode=WAL. Better concurrency than rollback journal. |
| Cassandra / RocksDB | Commit log | Crash recovery for the memtable before it flushes to SSTable |
| Kafka | The whole topic IS the log | Messages are the log. No separate WAL; the log is the source of truth. |
| etcd / Raft | Log | Every committed operation appended; replicated to quorum; survives any single-node crash. |
Each fsync costs 1–5ms. If you fsync per transaction, max throughput = 200–1000 commits/sec. That's the durable-write ceiling for a single thread.
Group commit trick: batch multiple transactions into one fsync. N concurrent committers each write their WAL entries to the same buffer. One thread fsyncs. All N get their ack at once. Throughput goes from ~500 TPS to 50k+ TPS. Per-commit latency only rises slightly (you wait for the batch to flush).
This is why high-concurrency durable systems handle 10k+ commits/sec: the fsync cost amortizes across many transactions. Postgres (with synchronous_commit=on + concurrent clients), MySQL group commit, and Kafka's batching are all variants.
"Durability via write-ahead log: every commit appends to a sequential log and fsyncs before ACK. Reads serve from memory / B-trees; the log only matters on crash recovery. Group commit amortizes fsync cost across concurrent transactions."
Ship WAL records to replicas; replicas apply them. One log, two purposes: durability + replication.
CDC tools read the WAL directly to emit change events to Kafka. Every DB write becomes an event without app-side instrumentation.
Kafka inverts the model — the log is the database. "Turn your database inside out." Source of event-sourcing / CQRS architectures.
Every consensus-backed store is a replicated WAL. Writes appended; majority confirms; state machine applies.
Payment gateway uses WAL for the ledger (every transaction atomic). E-commerce order placement uses WAL via Postgres. Google Drive uses append-only logs for file-operation history. Distributed logging literally IS a giant WAL.
