Narayana doesn't actually call setRollbackOnly as the only scenarios where it elects to use TMFAIL of its own accord are in situations where a transaction is already being aborted and that resource has not been delisted by or on behalf of the client application yet. We do call setRollbackOnly if the xa_end(TMSUCCESS) fails, for example: narayana/TransactionImple.java at master · jbosstm/narayana · GitHub

More generally, in determining whether it was the requirement of the transaction manager to also call setRollbackOnly (or indeed trigger an automatic rollback) as a result of someone calling delistResource(TMFAIL) we have to look at both the JTA and XA specifications. The text you quote does suggest it the responsibility of the TM to call setRO (or abort) if it elects to TMFAIL a branch unilaterally, when read in the context of JTA you can also see a picture where TMFAIL != setRollbackOnly. For example:

* JTA Javadocs: http://docs.oracle.com/javaee/7/api/javax/transaction/xa/XAResource.html#end(javax.transaction.xa.Xid, int) - "If TMFAIL is specified, the portion of work has failed. The resource manager may mark the transaction as rollback-only" - by referring to the resource manager being able to call setRO this indicates that it is not always the case that TMFAIL corresponds to an abort scenario.

* JTA specification delistResource - "TMFAIL - the resource is dissociated because part of the work has failed", i.e. only part of the work has failed, this does not mean that the whole transaction must abort as an XA transaction can have multiple branches actives in the scope of the same transaction and the failure of one of them should not necessarily cause the entire transaction to fail or be rolled back.

I see from your code you are calling setRollbackOnly when you want a transaction to rollback and are setting TMFAIL on the XAR - from what I can understand of your requirement this should be sufficient. The reason you are able to call setRO in your scenario is you are aware of the scenario causing haltCatchFire to be executed and so setRO makes sense for you whereas in some situations users may wish to use TMFAIL without setRO being executed and that is why Narayana can't call the setRO()

As Tom already pointed out, it would be inappropriate to set the transaction to rollback with xar1 in your example above. We have no way of knowing if there are other transaction branches proceeding along quite nicely (in this JVM or elsewhere) and having one RM force the rollback on behalf of all of them makes no sense whatsoever. Remember the structure of the Xid contains a global id and a branch id?

You say "A resource manager - at least in a JCA context - can't call setRO(), since there is no access to the actual transaction in which it is enlisted. Of course resource adapters may use hacks to get around that, but it is out of spec. So, the only way to tell the transaction manager that something is wrong is through the exception states associated with its XAResource implementation."

This is clearly wrong. A Resource Manager can always force a transaction to rollback during prepare! There's this little thing called a status which can be returned from the ... prepare method ... on the XAResource You could even throw an exception if that is preferable. Oh and you could register a Synchronization and have beforeCompletion fail - that'll cause the transaction to roll back too. So there's at least 3 different ways for you

A small clarification, Narayana won't actually allow you to re-enlist a TMFAIL XAResource in the same transaction (narayana/TransactionImple.java at master · jbosstm/narayana · GitHub)

In response to "what and whom" - the person who sets TMFAIL could also want to setRO semantics depending upon applicable specifications. Interpretation of XA and JTA specs does not suggest that when a pass-through of TMFAIL through delistResource happens, the TM would be required to also setRO hence Narayana does not do so. It may be that the JCA specification requires a setRO during the scenario you are expecting and you can then make that invocation.

Jesper, you're reading one part of the specification out of context. I can do that too but it'll be as much help as your quote

So let's look at delistResource TMFAIL, which says for the flag option ...

"TMFAIL - the resource is dissociated because part of the work has failed. This typically can be caused by an error exception encountered on the resource in use."

No mention of rolling back the entire transaction there, right?

Now if you go and look at the implementation of delistResource, as Tom points out we will mark the transaction as rollback-only if certain operations fail (e.g., end) and TMFAIL is returned there. However, we must make a distinction between them returning TMFAIL and someone passing in TMFAIL to delistResource. Same error value of course, but different meanings. TMFAIL on delistResource is not a shorthand for "roll back the global transaction too please". And also recall/realise that delistResource can be called from anywhere, i.e., it doesn't have to be JCA calling it, particularly if we're running embedded outside of JCA.

"It may be that the JCA specification requires a setRO during the scenario you are expecting and you can then make that invocation."

Agreed and I've got to wonder why that isn't the case here. Anything that has a handle on the instance to call delistResource can surely also then call setRollbackOnly ON THE SAME INSTANCE.

If you're calling delistResource with TMFAIL due to an end() throwing TMFAIL then *you* forcing the transaction to rollback is appropriate. But *you* have to do that - the transaction manager doesn't have the information to know what happened prior to the call to delistResource to realise end() failed and it can't make that a default assumption - at least not without violating XA semantics for all of those other users who call delistResource for some other reason, i.e., calling because end() didn't fail.

OK so why did you think we should be setting the transaction into rollback-only mode? Is this really 24 hours I'll never get back ?