Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 CS 194: Distributed Systems Process resilience, Reliable Group Communication Scott Shenker and Ion Stoica Computer Science Division Department of Electrical.

Published byKailey Doleman Modified over 10 years ago

Similar presentations

Presentation on theme: "1 CS 194: Distributed Systems Process resilience, Reliable Group Communication Scott Shenker and Ion Stoica Computer Science Division Department of Electrical."— Presentation transcript:

1 1 CS 194: Distributed Systems Process resilience, Reliable Group Communication Scott Shenker and Ion Stoica Computer Science Division Department of Electrical Engineering and Computer Sciences University of California, Berkeley Berkeley, CA 94720-1776

2 2 Some definitions…  Availability: probability the system operates correctly at any given moment  Reliability: ability to run correctly for a long interval of time  Safety: failure to operate correctly does not lead to catastrophic failures  Maintainability: ability to “easily” repair a failed system

3 3 … and Some More Definitions (Failure Models)  Crash failure: a server halts, but works correctly until it halts  Omission failure: a server fails to respond to a request  Timing failure: a server response exceeds specified time interval  Response failure: server’s response is incorrect  Arbitrary (Byzantine) failure: server produces arbitrary response at arbitrary times

4 4 Masking Failures: Redundancy  How many failures can this design tolerate?

5 5 Example: Open Shortest Path First (OSPF) over Broadcast Networks 1) Each node sends an route advertisements to multicast group DR-rtrs -Both designated router (DR) and backup designated router (BDR) subscribe to this group 2) DR floods route advertisements back to all routers -Send to all-rtrs multicast group to which all nodes subscribe DRBDR DRBDR

6 6 Agreement in Faulty Systems  Many things can go wrong…  Communication -Message transmission can be unreliable -Time taken to deliver a message is unbounded -Adversary can intercept messages  Processes -Can fail or team up to produce wrong results  Agreement very hard, sometime impossible, to achieve!

7 7 Two-Army Problem  “Two blue armies need to simultaneously attack the white army to win; otherwise they will be defeated. The blue army can communicate only across the area controlled by the white army which can intercept the messengers.”  What is the solution?

8 8 Byzantine Agreement [Lamport et al. (1982)]  Goal: -Each process learn the true values sent by correct processes  Assumptions: -Every message that is sent is delivered correctly -The receiver knows who sent the message -Message delivery time is bounded

9 9 Byzantine Agreement Result  In a system with m faulty processes agreement can be achieved only if there are 2m+1 functioning correctly  Note: This result only guarantees that each process receives the true values sent by correct processors, but it does not identify the correct processes!

10 10 Byzantine General Problem: Example  Phase 1: Generals announce their troop strengths to each other P1P2 P3 P4 1 1 1

11 11 Byzantine General Problem: Example  Phase 1: Generals announce their troop strengths to each other P1P2 P3 P4 2 2 2

12 12 Byzantine General Problem: Example  Phase 1: Generals announce their troop strengths to each other P1P2 P3 P4 4 4 4

13 13 Byzantine General Problem: Example  Phase 2: Each general construct a vector with all troops P1P2P3P4 12x4 P1P2 P3 P4 yx z P1P2P3P4 12y4 P1P2P3P4 12z4

14 14 Byzantine General Problem: Example  Phase 3: Generals send their vectors to each other and compute majority voting P1P2P3P4 12y4 abcd 12z4 P1P2 P3 P4 (e, f, g, h) (a, b, c, d) (h, i, j, k) P1P2P3P4 12x4 efgh 12z4 P1P2P3P4 12x4 12y4 hijk P2 P3 P4 P1 P3 P4 P1 P2 P3 (1, 2, ?, 4)

15 15 Reliable Group Communication  Reliable multicast: all nonfaulty processes which do not join/leave during communication receive the message  Atomic multicast: all messages are delivered in the same order to all processes

16 16 Reliable multicast: (N)ACK Implosion  (Positive) acknowledgements -Ack every n received packets -What happens for multicast?  Negative acknowledgements -Only ack when data is lost -Assume packet 2 is lost S S R1 R2 R3 123

17 17 Reliable multicast: (N)ACK Implosion  When a packet is lost all receivers in the sub-tree originated at the link where the packet is lost send NACKs S S R1 R2 R3 3 3 3 2?

18 18 Scalable Reliable Multicast (SRM) [Floyd et al ’95]  Receivers use timers to send NACKS and retransmissions -Randomized: prevent implosion -Uses latency estimates Short timer  cause duplicates when there is reordering Long timer  causes excess delay  Any node retransmits -Sender can use its bandwidth more efficiently -Overall group throughput is higher  Duplicate NACK/retransmission suppression

19 19 Inter-node Latency Estimation  Every node estimates latency to every other node  Uses session reports -Assume symmetric latency -What happens when group becomes very large? A A B B t1t1 t2t2 d d d A,B = (t 2 – t 1 – d)/2

20 20  Chosen from the uniform distribution on -A – node that lost the packet -S – source -C 1, C 2 – constants -d S,A – latency between source ( S ) and A -i – iteration of repair request tries seen  Algorithm -Detect loss  set timer -Receive request for same data  cancel timer, set new timer -Timer expires  send repair request Repair Request Timer Randomization

21 21 Timer Randomization  Repair timer similar -Every node that receives repair request sets repair timer -Latency estimate is between node and node requesting repair -Use following formula: D 1, D 2 – constants d R,A – latency between node requesting repair ( R ) and A  Timer properties – minimize probability of duplicate packets -Reduce likelihood of implosion (duplicates still possible) -Reduce delay to repair

22 22 Chain Topology  C 1 = D 1 = 1, C 2 = D 2 = 0  All link distances are 1 L2 L1 R1 R2 R3 source data out of order data/repair request repair request TO repair TO request repair

23 23 Star Topology  C 1 = D 1 = 0,  Tradeoff between (1) number of requests and (2) time to receive the repair  C 2 <= 1 -E(# of requests) = g –1  C 2 > 1 -E(# of requests) = 1 + (g-2)/C 2 -E(time until first timer expires) = 2C 2 /g  -E(# of requests) = -E(time until first timer expires) = N1 N2 N3 N4 Ng source

24 24 Bounded Degree Tree  Use both -Deterministic suppression (chain topology) -Probabilistic suppression (star topology)  Large C 2 /C 1  fewer duplicate requests, but larger repair time  Large C 1  fewer duplicate requests  Small C 1  smaller repair time

25 25 Adaptive Timers  C and D parameters depends on topology and congestion  choose adaptively  After sending a request: -Decrease start of request timer interval  Before each new request timer is set: -If requests sent in previous rounds, and any dup requests were from further away: Decrease request timer interval -Else if average dup requests high: Increase request timer interval -Else if average dup requests low and average request delay too high: Decrease request timer interval

26 26 Atomic Multicast  All messages are delivered in the same order to “all” processes  Group view: the set of processes known by the sender when it multicast the message  Virtual synchronous multicast: a message multicast to a group view G is delivered to all nonfaulty processes in G -If sender fails after sending the message, the message may be delivered to no one

27 27 Virtual Synchronous Multicast

28 28 Virtual Synchrony Implementation [Birman et al., 1991]  The logical organization of a distributed system to distinguish between message receipt and message delivery

29 29 Virtual Synchrony Implementation: [Birman et al., 1991]  Only stable messages are delivered  Stable message: a message received by all processes in the message’s group view  Assumptions (can be ensured by using TCP): -Point-to-point communication is reliable -Point-to-point communication ensures FIFO-ordering

30 30 Virtual Synchrony Implementation: Example  G i = {P1, P2, P3, P4, P5}  P5 fails  P1 detects that P5 has failed  P1 send a “view change” message to every process in G i+1 = {P1, P2, P3, P4} P1 P2 P3 P4 P5 change view

31 31 Virtual Synchrony Implementation: Example  Every process -Send each unstable message m from G i to members in G i+1 -Marks m as being stable -Send a flush message to mark that all unstable messages have been sent P1 P2 P3 P4 P5 unstable message flush message

32 32 Virtual Synchrony Implementation: Example  Every process -After receiving a flush message from any process in G i+1 installs G i+1 P1 P2 P3 P4 P5

33 33 Message Ordering  FIFO-order: messages from the same process are delivered in the same order they were sent  Causal-order: potential causality between different messages is preserved  Total-order: all processes receive messages in the same order  Total ordering does not imply causality or FIFO!  Atomicity is orthogonal to ordering

34 34 Message Ordering and Atomicity MulticastBasic Message OrderingTotal-ordered Delivery? Reliable multicastNoneNo FIFO multicastFIFO-ordered deliveryNo Causal multicastCausal-ordered deliveryNo Atomic multicastNoneYes FIFO atomic multicastFIFO-ordered deliveryYes Causal atomic multicastCausal-ordered deliveryYes

Download ppt "1 CS 194: Distributed Systems Process resilience, Reliable Group Communication Scott Shenker and Ion Stoica Computer Science Division Department of Electrical."

Similar presentations

1 Process groups and message ordering If processes belong to groups, certain algorithms can be used that depend on group properties membership create (

1 Process groups and message ordering If processes belong to groups, certain algorithms can be used that depend on group properties membership create (
Dr. Kalpakis CMSC621 Advanced Operating Systems Fault Tolerance.

Dr. Kalpakis CMSC621 Advanced Operating Systems Fault Tolerance.
Fault Tolerance. Basic System Concept Basic Definitions Failure: deviation of a system from behaviour described in its specification. Error: part of.

Fault Tolerance. Basic System Concept Basic Definitions Failure: deviation of a system from behaviour described in its specification. Error: part of.
Chapter 8 Fault Tolerance

Chapter 8 Fault Tolerance
DISTRIBUTED SYSTEMS II FAULT-TOLERANT BROADCAST Prof Philippas Tsigas Distributed Computing and Systems Research Group.

DISTRIBUTED SYSTEMS II FAULT-TOLERANT BROADCAST Prof Philippas Tsigas Distributed Computing and Systems Research Group.
Reliable Group Communication Quanzeng You & Haoliang Wang.

Reliable Group Communication Quanzeng You & Haoliang Wang.
L-15 Fault Tolerance 1. Fault Tolerance Terminology & Background Byzantine Fault Tolerance Issues in client/server Reliable group communication 2.

L-15 Fault Tolerance 1. Fault Tolerance Terminology & Background Byzantine Fault Tolerance Issues in client/server Reliable group communication 2.
Router Buffer Sizing and Reliability Challenges in Multicast Aditya Akella 02/28.

Router Buffer Sizing and Reliability Challenges in Multicast Aditya Akella 02/28.
A Reliable Multicast Framework For Light-Weight Sessions and Application Level Framing Sally Floyd, Van Jacobson, Ching-Gung Liu, Steven McCanne, Lixia.

A Reliable Multicast Framework For Light-Weight Sessions and Application Level Framing Sally Floyd, Van Jacobson, Ching-Gung Liu, Steven McCanne, Lixia.
CS 582 / CMPE 481 Distributed Systems Fault Tolerance.

CS 582 / CMPE 481 Distributed Systems Fault Tolerance.
Computer Science Lecture 17, page 1 CS677: Distributed OS Last Class: Fault Tolerance Basic concepts and failure models Failure masking using redundancy.

Computer Science Lecture 17, page 1 CS677: Distributed OS Last Class: Fault Tolerance Basic concepts and failure models Failure masking using redundancy.
1 CS 194: Distributed Systems Review Scott Shenker and Ion Stoica Computer Science Division Department of Electrical Engineering and Computer Sciences.

1 CS 194: Distributed Systems Review Scott Shenker and Ion Stoica Computer Science Division Department of Electrical Engineering and Computer Sciences.
Chapter 7 Fault Tolerance Basic Concepts Failure Models Process Design Issues Flat vs hierarchical group Group Membership Reliable Client.

Chapter 7 Fault Tolerance Basic Concepts Failure Models Process Design Issues Flat vs hierarchical group Group Membership Reliable Client.
Distributed Systems CS 15-440 Fault Tolerance- Part III Lecture 15, Oct 26, 2011 Majd F. Sakr, Mohammad Hammoud andVinay Kolar 1.

Distributed Systems CS Fault Tolerance- Part III Lecture 15, Oct 26, 2011 Majd F. Sakr, Mohammad Hammoud andVinay Kolar 1.
Distributed Systems CS 15-440 Fault Tolerance- Part I Lecture 13, Oct 17, 2011 Majd F. Sakr, Mohammad Hammoud andVinay Kolar 1.

Distributed Systems CS Fault Tolerance- Part I Lecture 13, Oct 17, 2011 Majd F. Sakr, Mohammad Hammoud andVinay Kolar 1.
1 Principles of Reliable Distributed Systems Lecture 5: Failure Models, Fault-Tolerant Broadcasts and State-Machine Replication Spring 2005 Dr. Idit Keidar.

1 Principles of Reliable Distributed Systems Lecture 5: Failure Models, Fault-Tolerant Broadcasts and State-Machine Replication Spring 2005 Dr. Idit Keidar.
Network Multicast Prakash Linga. Last Class COReL: Algorithm for totally-ordered multicast in an asynchronous environment, in face of network partitions.

Network Multicast Prakash Linga. Last Class COReL: Algorithm for totally-ordered multicast in an asynchronous environment, in face of network partitions.
EEC 693/793 Special Topics in Electrical Engineering Secure and Dependable Computing Lecture 13 Wenbing Zhao Department of Electrical and Computer Engineering.

EEC 693/793 Special Topics in Electrical Engineering Secure and Dependable Computing Lecture 13 Wenbing Zhao Department of Electrical and Computer Engineering.
Last Class: Weak Consistency

Last Class: Weak Consistency
1 CS 194: Distributed Systems Distributed Commit, Recovery Scott Shenker and Ion Stoica Computer Science Division Department of Electrical Engineering.

1 CS 194: Distributed Systems Distributed Commit, Recovery Scott Shenker and Ion Stoica Computer Science Division Department of Electrical Engineering.

Similar presentations

Ads by Google