[infinispan-dev] Non-blocking state transfer - new ideas meeting

Dan Berindei dan.berindei at gmail.com
Fri Jun 15 08:01:26 EDT 2012 

On Wed, Jun 13, 2012 at 2:12 PM, Manik Surtani <manik at jboss.org> wrote:

>
> On 13 Jun 2012, at 09:05, Dan Berindei wrote:
>
> Sanne and I resumed the meeting later yesterday afternoon, but we
> basically just rehashed the stuff that we've been discussing before
> lunch. Logs here:
>
> (07:10:10 PM) jbott: Meeting ended Tue Jun 12 16:09:55 2012 UTC.
> Information about MeetBot at http://wiki.debian.org/MeetBot . (v
> 0.1.4)
> (07:10:10 PM) jbott: Minutes:
>
> http://transcripts.jboss.org/meeting/irc.freenode.org/infinispan/2012/infinispan.2012-06-12-15.26.html
> (07:10:10 PM) jbott: Minutes (text):
>
> http://transcripts.jboss.org/meeting/irc.freenode.org/infinispan/2012/infinispan.2012-06-12-15.26.txt
> (07:10:10 PM) jbott: Log:
>
> http://transcripts.jboss.org/meeting/irc.freenode.org/infinispan/2012/infinispan.2012-06-12-15.26.log.html
>
>
> The main conclusion was that the number of total virtual nodes/hash
> segments will be fixed per cluster, not per node. Kind of like the old
> AbstractWheelConsistentHash.HASH_SPACE, only configurable. A physical
> node will have a variable number of vnodes/segments over its lifetime.
>
> We also decided to add a pull component to our state transfer. The
> current NBST design requires all the nodes to push state to a joiner
> more or less at the same time, which results in lots of congestion at
> the network layer and sometimes even in the joiner being excluded from
> the cluster. We have decided that a node will not start pushing data
> as soon as it receives the PREPARE_VIEW command from the coordinator,
> but instead it will wait for a START_PUSH command from the receiver.
> The receiver will only ask one previous owner at a time, thus
> eliminating the congestion.
>
>
> We've had a lot of back-and-forth discussions about whether the CH
> should be "non-deterministic". We agreed in the end that (I think)
> that it's fine if the creation of the CH is not based solely on the
> current members list, and it depends on the previous CH as well. This
> is quite important, I think it would be hard to find an algorithm
> based only on member list that doesn't change ownership for a lot of
> nodes in case of a leave (even if we use the previous members list as
> well): see https://issues.jboss.org/browse/ISPN-1275.
>
>
> Would this still be encapsulated by the existing ConsistentHash interface?
>  We should be careful about impl details leaking into the rest of the
> codebase.
>
>
Regular code would not have to deal with the key -> segment or segment ->
physical node mapping, but the query module would need access to this stuff
in order to build a separate index for each vnode/segment. There may be
others who could use this functionality as well...


> I had an idea (that I'm pretty sure I didn't explained properly in the
> chat) that we could avoid state transfer blocking everything while
> receiving the transaction table from a previous owner by splitting the
> state transfer in two:
> * In the first phase, we'd pick the new backup owners for each
> segment, and we'd transfer all the state to them (entries, transaction
> table, etc.)
> * In the second phase, we'd pick a new primary owner for each segment,
> but the primary owner can only be one of the existing backup owners.
> Since the data has already been transferred, we can now also remove
> the extra owners.
>
>
> Who is "we"?  The joiner?  The coordinator?  Everyone (deterministic,
> triggered on an event/message)?
>
>
This is the basic flow I was thinking of:
1. Upon a cache membership change, the coordinator computes a new CH that
removes the dead nodes and doesn't add any new owners unless there is a
segment with 0 owners.
2. The coordinator broadcasts this CH to all the cache members, there is no
state transfer at this point.
3. The coordinator checks the CH and notices that the number of segments
owned by each node is not balanced. This could be immediately or triggered
manually by the administrator.
4. The coordinator computes a new CH that balances the number of owners for
each segment (but without removing any of the old owners, so some segments
will have > numOwners owners). It starts state transfer for this CH.
5. After the state transfer ends, the coordinator checks the CH again. If
the number of "primary owned" segments for each node is not balanced, it
creates a new CH where each node primary owner for about the same number of
segments, and broadcasts this new CH. Again, no state transfer is necessary.

So the coordinator creates the CHs, but everyone can compute it based on
the "base" CH and the new list of members:
1. If a node in the base CH is no longer a member, remove it from all owner
lists. Stop here. Otherwise go to 2.
2. If the number of owned segments per node is not balanced, add owners
(algorithm TBD, but it won't be random). Stop here. Otherwise, go to 3.
3. If the number of primary-owned segments per node is not balanced, pick
different primary owners from the existing owners. Remove extra owners.

During the first phase, a segment could have more than numOwners
> owners, and commands would reach both the new owners and the old
> owners. We will need to handle commit commands for transactions that
> the new owner doesn't have yet in its transaction table, but we would
> not need to block prepare commands (like the current NBST design
> does). During the second phase, the new primary owner already has the
> transaction table, so we don't need a blocking phase either.
>
>
> So the new primary owner would queue up these commit commands? Or just
> ignore them/respond with a +1?
>
>
During the 1st phase there is no new primary owner, just new backup owners.
They would need to queue commit commands or otherwise handle commit
commands for prepares that they haven't received yes via state transfer -
in the current NBST design this is handled by blocking everything until we
have received transaction information from the old owners. I would prefer
marking the transactions as 1PC, like TOB does.

During the 2nd phase, the new primary owner already has the prepare
commands (either received via state transfer or received as a backup
owner), so it doesn't need to block/queue.


> I didn't explain this properly in the chat because I was certain it
> would only make sense if the coordinator initiated state transfer one
> node at a time, making it non-deterministic. But I think if we allow
> the CH creation algorithm to use the previous CH, we can
> deterministically decide if the backup owners are properly balanced
> (if not, we need to start phase 1) and if the primary owners are
> properly balanced (if not, we need to start phase 2).
>
>
> +1 to a deterministic CH.
>
>
Does that mean -1 to using the previous CH to compute the new CH?


>
>
> There is something else that I've been thinking about since yesterday
> that might improve performance and even simplify the state transfer at
> the cost of determinism. When state transfer fails (usually because a
> node has died, but not necessarily), the coordinator could ask each
> node how far it got with the state transfer in progress (how many
> segments they got, from which owners, etc). The coordinator would then
> create a new "base CH" based on the actually transferred data instead
> of the actual start CH or the "pending CH", or even the whole
> chain/tree of CHs, none of which reflect how data is effectively
> stored in the clustered at that moment. Because this base CH would
> reflect the actual owners of each segment, there would be less data
> moving around in the new state transfer and we wouldn't need to keep a
> chain/tree of previous owner lists either.
>
>
> When you say at the cost of determinism, what are the consequences of
> this?  Some nodes may get "wrong answers" from their CH instances?  And if
> so, then what?  When these nodes contact "wrong nodes" for a specific key,
> would this "wrong node" then proxy to the coordinator (who has the
> definitive CH)?
>
>
At the cost of determinism = only the coordinator gets the "status updates"
from the members after the interruption, so only the coordinator can
compute the new CH. It can then broadcast the new CH, and everyone will use
that new CH.

The individual members will never compute their own CH, they would use the
old CH until they got the new CH from the coordinator. Because we only
remove owners for a key after everyone else has it, there are only two ways
a command can reach the wrong node:
1. The node was an owner a long time ago but is no longer an owner (or may
even be dead). If the node is still alive, it can forward the command to
any/all owners in the new CH. Otherwise, the originator will have to deal
with a SuspectException and retry once it gets the updated CH from the
coordinator.
2. The node is an owner in the latest CH, but hasn't received all the
entries/prepares yet. Again, it can forward to a node that's an owner in
both the latest CH and the base CH (if it's a read), mark the transaction
as 1PC (commit), or perform the command normally (write/prepare).

I'm going to take a stab at implementing a new CH with a fixed number
> of vnodes, that can take an existing CH as input and change owners as
> little as possible. Then I'm going to try and implement the balanced
> backup owners/balanced primary owners check as well, just to see if
> it's really possible. I'm not going to modify the design document just
> yet, I need to see first if it does work and what you guys think about
> it…
>
>
> +1.  It will also give you an idea of the effort involved in implementing
> this, and how to break up the work into subtasks, how to test, etc.
>
> Cheers
> Manik
>
>
>
>
> Cheers
> Dan
>
>
> On Tue, Jun 12, 2012 at 4:02 PM, Manik Surtani <manik at jboss.org> wrote:
>
> Meeting minutes from part 1.  Had to break for lunch.  :)
>
>
>
> Meeting ended Tue Jun 12 13:00:43 2012 UTC.  Information about MeetBot
> athttp://wiki.debian.org/MeetBot . (v 0.1.4)
>
> 14:01
>
> Minutes:
> http://transcripts.jboss.org/meeting/irc.freenode.org/infinispan/2012/infinispan.2012-06-12-09.58.html
>
> 14:01
>
> Minutes (text):
> http://transcripts.jboss.org/meeting/irc.freenode.org/infinispan/2012/infinispan.2012-06-12-09.58.txt
>
> 14:01
>
> Log:
> http://transcripts.jboss.org/meeting/irc.freenode.org/infinispan/2012/infinispan.2012-06-12-09.58.log.html
>
>
>
> --
>
> Manik Surtani
>
> manik at jboss.org
>
> twitter.com/maniksurtani
>
>
> Project Lead, Infinispan
>
> http://www.infinispan.org
>
>
> Platform Architect, JBoss Data Grid
>
> http://www.redhat.com/promo/dg6beta
>
>
>
> _______________________________________________
>
> infinispan-dev mailing list
>
> infinispan-dev at lists.jboss.org
>
> https://lists.jboss.org/mailman/listinfo/infinispan-dev
>
>
> _______________________________________________
> infinispan-dev mailing list
> infinispan-dev at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/infinispan-dev
>
>
>  --
> Manik Surtani
> manik at jboss.org
> twitter.com/maniksurtani
>
> Project Lead, Infinispan
> http://www.infinispan.org
>
> Platform Architect, JBoss Data Grid
> http://www.redhat.com/promo/dg6beta
>
>
> _______________________________________________
> infinispan-dev mailing list
> infinispan-dev at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/infinispan-dev
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/infinispan-dev/attachments/20120615/d713150a/attachment-0001.html

More information about the infinispan-dev mailing list