Presentation is loading. Please wait.

Presentation is loading. Please wait.

Consensus: Bridging Theory and Practice

Published byTre Seabourn Modified over 9 years ago

Similar presentations

Presentation on theme: "Consensus: Bridging Theory and Practice"— Presentation transcript:

1 Consensus: Bridging Theory and Practice
Diego Ongaro PhD Defense

2 Consensus: Bridging Theory and Practice
Introduction Consensus: agreement on shared state Store state consistently on several servers Must be available even if some servers fail Needed for consistent, fault-tolerant storage systems Top-level system configuration Sometimes used to replicate entire database state Consensus is widely regarded as difficult Raft: consensus algorithm designed for understandability May 27, 2014 Consensus: Bridging Theory and Practice

3 Replicated State Machines
Clients z6 Log Consensus Module State Machine Log Consensus Module State Machine Consensus Module State Machine x 1 y 2 z 6 x 1 y 2 z 6 x 1 y 2 z 6 Servers Log x3 y2 x1 z6 x3 y2 x1 z6 x3 y2 x1 z6 Replicated log  replicated state machine All servers execute same commands in same order Consensus module ensures proper log replication System makes progress as long as any majority of servers are up Failure model: fail-stop (not Byzantine), delayed/lost messages May 27, 2014 Consensus: Bridging Theory and Practice

4 Consensus: Bridging Theory and Practice
Motivation: Paxos “The dirty little secret of the NSDI community is that at most five people really, truly understand every part of Paxos ;-).” – NSDI reviewer “There are significant gaps between the description of the Paxos algorithm and the needs of a real-world system…. the final system will be based on an unproven protocol.” – Chubby authors May 27, 2014 Consensus: Bridging Theory and Practice

5 Consensus: Bridging Theory and Practice
Motivation: Paxos (2) Leslie Lamport, 1989 Theoretical foundations Hard to understand: Can’t separate phase 1 and 2, no intuitive meanings Bad problem decomposition for building systems Too low-level Implementations must extend published algorithm May 27, 2014 Consensus: Bridging Theory and Practice

6 Consensus: Bridging Theory and Practice
Contributions Understandability Raft algorithm, designed for understandability Strong form of leadership Leader election algorithm using randomized timeouts User study to evaluate understandability Completeness Proof of safety and formal spec for core algorithm Cluster membership change algorithm Other components needed for complete and practical system May 27, 2014 Consensus: Bridging Theory and Practice

7 Design for Understandability
Key considerations How hard is it to explain each alternative? How easy will it be for someone to completely understand the approach and its implications? General techniques Decomposing the problem Reducing state space complexity May 27, 2014 Consensus: Bridging Theory and Practice

8 Consensus: Bridging Theory and Practice
Raft Components Leader election Select one of the servers to act as cluster leader Log replication (normal operation) Leader takes commands from clients, appends them to its log Leader replicates its log to other servers Safety Tie above components together to maintain consistency May 27, 2014 Consensus: Bridging Theory and Practice

9 RaftScope Visualization
May 27, 2014 Consensus: Bridging Theory and Practice

10 Consensus: Bridging Theory and Practice
Core Raft Review Leader election Heartbeats and timeouts to detect crashes Randomized timeouts to avoid split votes Majority voting to guarantee at most one leader per term Log replication (normal operation) Leader takes commands from clients, appends them to its log Leader replicates its log to other servers (overwriting inconsistencies) Built-in consistency check simplifies how logs may differ Safety Only elect leaders with all committed entries in their logs New leader defers committing entries from prior terms May 27, 2014 Consensus: Bridging Theory and Practice

11 Topics for Practical Systems
Cluster membership changes Log compaction Client interaction May 27, 2014 Consensus: Bridging Theory and Practice

12 Cluster Membership Changes
Grow/shrink cluster, replace nodes Agreement on change requires consensus Raft’s approach Switch to joint configuration: requires majorities from both old and new clusters Switch to new cluster Overlapping majorities guarantee safety Continues processing requests during change May 27, 2014 Consensus: Bridging Theory and Practice

13 Other Topics for Complete Systems
Log compaction: snapshotting Client interaction How clients find the leader Optimizing read-only operations May 27, 2014 Consensus: Bridging Theory and Practice

14 Consensus: Bridging Theory and Practice
Evaluation Understandability Is Raft easier to understand? Leader election performance How quickly does the randomized timeout approach elect a leader? Correctness Formal specification in TLA+ Proof of core algorithm’s safety Log replication performance One round of RPC from leader to commit log entry (same as Multi-Paxos, ZooKeeper) May 27, 2014 Consensus: Bridging Theory and Practice

15 Consensus: Bridging Theory and Practice
User Study Intro Goal: evaluate Raft’s understandability quantitatively Two classrooms of students Taught them both Raft and Paxos Quizzed them to see which one they learned better Each student: Considered programming assignment: less data Raft lecture and quiz Paxos lecture and quiz Short survey May 27, 2014 Consensus: Bridging Theory and Practice

16 Consensus: Bridging Theory and Practice
Quiz Results 43 participants 33 scored higher on Raft 15 had some prior Paxos experience Paxos mean 20.8 Raft mean 25.7 (+23.6%) May 27, 2014 Consensus: Bridging Theory and Practice

17 Consensus: Bridging Theory and Practice
Survey Results Which would be easier to implement in a correct and efficient system? Which would be easier to explain to a CS grad student? For each question, 33 of 41 said Raft May 27, 2014 Consensus: Bridging Theory and Practice

18 Consensus: Bridging Theory and Practice
Randomized Timeouts How much randomization is needed to avoid split votes? Conservatively, use random range ~10x network latency May 27, 2014 Consensus: Bridging Theory and Practice

19 Consensus: Bridging Theory and Practice
Raft Implementations go-raft Go Ben Johnson (Sky) and Xiang Li (CoreOS) kanaka/raft.js JS Joel Martin hashicorp/raft Armon Dadgar (HashiCorp) rafter Erlang Andrew Stone (Basho) ckite Scala Pablo Medina kontiki Haskell Nicolas Trangez LogCabin C++ Diego Ongaro (Stanford) akka-raft Konrad Malawski floss Ruby Alexander Flatten CRaft C Willem-Hendrik Thiart barge Java Dave Rusek harryw/raft Harry Wilkinson py-raft Python Toby Burress May 27, 2014 Consensus: Bridging Theory and Practice

20 Consensus: Bridging Theory and Practice
Raft Implementations go-raft Go Ben Johnson (Sky) and Xiang Li (CoreOS) kanaka/raft.js JS Joel Martin hashicorp/raft Armon Dadgar (HashiCorp) rafter Erlang Andrew Stone (Basho) ckite Scala Pablo Medina kontiki Haskell Nicolas Trangez LogCabin C++ Diego Ongaro (Stanford) akka-raft Konrad Malawski floss Ruby Alexander Flatten CRaft C Willem-Hendrik Thiart barge Java Dave Rusek harryw/raft Harry Wilkinson py-raft Python Toby Burress go-raft logo by Brandon Philips May 27, 2014 Consensus: Bridging Theory and Practice

21 Consensus: Bridging Theory and Practice
Related Work Paxos Theoretical, difficult to apply “Our Paxos implementation is actually closer to the Raft algorithm than to what you read in the Paxos paper...” – Sebastian Kanthak, Spanner Viewstamped Replication, ZooKeeper Both leader-based Ad hoc in nature: did not fully explore design space More complex state spaces: more mechanism Each uses 10 message types, Raft has 4 ZooKeeper widely deployed but neither widely implemented May 27, 2014 Consensus: Bridging Theory and Practice

22 Summary: Contributions
Understandability Raft algorithm, designed for understandability Strong form of leadership Leader election algorithm using randomized timeouts User study to evaluate understandability Completeness Proof of safety and formal spec for core algorithm Cluster membership change algorithm Other components needed for complete and practical system May 27, 2014 Consensus: Bridging Theory and Practice

23 Consensus: Bridging Theory and Practice
Conclusions Consensus widely regarded as difficult Hope Raft makes consensus more accessible Easier to teach in classrooms Better foundation for building practical systems Burst of Raft-based systems is exciting Renewed interest in building consensus systems More off-the-shelf options becoming available Understandability should be a primary design goal May 27, 2014 Consensus: Bridging Theory and Practice

24 Consensus: Bridging Theory and Practice
Acknowledgements May 27, 2014 Consensus: Bridging Theory and Practice

25 Consensus: Bridging Theory and Practice
Acknowledgements May 27, 2014 Consensus: Bridging Theory and Practice

26 Consensus: Bridging Theory and Practice
Questions raftconsensus.github.io May 27, 2014 Consensus: Bridging Theory and Practice

Download ppt "Consensus: Bridging Theory and Practice"

Similar presentations

Consensus on Transaction Commit

Consensus on Transaction Commit
Paxos and Zookeeper Roy Campbell.

Paxos and Zookeeper Roy Campbell.
CS 542: Topics in Distributed Systems Diganta Goswami.

CS 542: Topics in Distributed Systems Diganta Goswami.
High throughput chain replication for read-mostly workloads

High throughput chain replication for read-mostly workloads
CS 5204 – Operating Systems1 Paxos Student Presentation by Jeremy Trimble.

CS 5204 – Operating Systems1 Paxos Student Presentation by Jeremy Trimble.
The Raft Consensus Algorithm

The Raft Consensus Algorithm
Distributed Systems Overview Ali Ghodsi

Distributed Systems Overview Ali Ghodsi
CSE 486/586, Spring 2013 CSE 486/586 Distributed Systems Byzantine Fault Tolerance --- 2 Steve Ko Computer Sciences and Engineering University at Buffalo.

CSE 486/586, Spring 2013 CSE 486/586 Distributed Systems Byzantine Fault Tolerance Steve Ko Computer Sciences and Engineering University at Buffalo.
The SMART Way to Migrate Replicated Stateful Services Jacob R. Lorch, Atul Adya, Bill Bolosky, Ronnie Chaiken, John Douceur, Jon Howell Microsoft Research.

The SMART Way to Migrate Replicated Stateful Services Jacob R. Lorch, Atul Adya, Bill Bolosky, Ronnie Chaiken, John Douceur, Jon Howell Microsoft Research.
Consensus Algorithms Willem Visser RW334. Why do we need consensus? Distributed Databases – Need to know others committed/aborted a transaction to avoid.

Consensus Algorithms Willem Visser RW334. Why do we need consensus? Distributed Databases – Need to know others committed/aborted a transaction to avoid.
1 Principles of Reliable Distributed Systems Tutorial 12: Frangipani Spring 2009 Alex Shraer.

1 Principles of Reliable Distributed Systems Tutorial 12: Frangipani Spring 2009 Alex Shraer.
Computer Science Lecture 17, page 1 CS677: Distributed OS Last Class: Fault Tolerance Basic concepts and failure models Failure masking using redundancy.

Computer Science Lecture 17, page 1 CS677: Distributed OS Last Class: Fault Tolerance Basic concepts and failure models Failure masking using redundancy.
Distributed Systems CS 15-440 Case Study: Replication in Google Chubby Recitation 5, Oct 06, 2011 Majd F. Sakr, Vinay Kolar, Mohammad Hammoud.

Distributed Systems CS Case Study: Replication in Google Chubby Recitation 5, Oct 06, 2011 Majd F. Sakr, Vinay Kolar, Mohammad Hammoud.
In Search of an Understandable Consensus Algorithm Diego Ongaro John Ousterhout Stanford University.

In Search of an Understandable Consensus Algorithm Diego Ongaro John Ousterhout Stanford University.
CS 425 / ECE 428 Distributed Systems Fall 2014 Indranil Gupta (Indy) Lecture 19: Paxos All slides © IG.

CS 425 / ECE 428 Distributed Systems Fall 2014 Indranil Gupta (Indy) Lecture 19: Paxos All slides © IG.
Byzantine Fault Tolerance CS 425: Distributed Systems Fall 2011 1 Material drived from slides by I. Gupta and N.Vaidya.

Byzantine Fault Tolerance CS 425: Distributed Systems Fall Material drived from slides by I. Gupta and N.Vaidya.
PETAL: DISTRIBUTED VIRTUAL DISKS E. K. Lee C. A. Thekkath DEC SRC.

PETAL: DISTRIBUTED VIRTUAL DISKS E. K. Lee C. A. Thekkath DEC SRC.
Presented by: Alvaro Llanos E.  Motivation and Overview  Frangipani Architecture overview  Similar DFS  PETAL: Distributed virtual disks ◦ Overview.

Presented by: Alvaro Llanos E.  Motivation and Overview  Frangipani Architecture overview  Similar DFS  PETAL: Distributed virtual disks ◦ Overview.
CS492: Special Topics on Distributed Algorithms and Systems Fall 2008 Lab 3: Final Term Project.

CS492: Special Topics on Distributed Algorithms and Systems Fall 2008 Lab 3: Final Term Project.
The DHCP Failover Protocol A Formal Perspective Rui FanMIT Ralph Droms Cisco Systems Nancy GriffethCUNY Nancy LynchMIT.

The DHCP Failover Protocol A Formal Perspective Rui FanMIT Ralph Droms Cisco Systems Nancy GriffethCUNY Nancy LynchMIT.

Similar presentations

Ads by Google