Presentation is loading. Please wait.

Presentation is loading. Please wait.

© Hortonworks Inc. 2012 Data Availability and Integrity in Apache Hadoop Steve Sanjay

Published byEvelyn Jacobs Modified over 9 years ago

Similar presentations

Presentation on theme: "© Hortonworks Inc. 2012 Data Availability and Integrity in Apache Hadoop Steve Sanjay"— Presentation transcript:

1 © Hortonworks Inc. 2012 Data Availability and Integrity in Apache Hadoop Steve Loughran @steveloughran Sanjay Radia @srr

2 © Hortonworks Inc. 2012 Questions Hadoop users ask Can Hadoop keep my data safe? Can Hadoop keep my data available? What happens when things go wrong? What about applications that use Hadoop? What's next? Page 2

3 © Hortonworks Inc. 2012 Page 3 DataNode ToR Switch DataNode ToR Switch Switch (Job Tracker) ToR Switch 2ary Name Node Name Node file block1 block2 block3 … file block1 block2 block3 … Hadoop HDFS: replication is the key

4 © Hortonworks Inc. 2012 Replication handles data integrity CRC32 checksum per 512 bytes Verified across datanodes on write Verified on all reads Background verification of all blocks (~weekly) Corrupt blocks re-replicated All replicas corrupt  operations team intervention 2009: Yahoo! lost 19 out of 329M blocks on 20K servers –bugs now fixed Page 4

5 © Hortonworks Inc. 2012 Page 5 DataNode ToR Switch DataNode ToR Switch Switch (Job Tracker) ToR Switch 2ary Name Node Name Node file block1 block2 block3 … file block1 block2 block3 … Rack/Switch failure

6 © Hortonworks Inc. 2012 Reducing the impact of a Rack Failure Is this a real threat? –Google: failures are rack-correlated –Microsoft: ToR switches fail the most –Facebook: router mis-configuration  cascade failure Reduce the impact –Dual bonded Ethernet with 2x Top of Rack Switch –10 GbE for more replication bandwidth –Bigger clusters –Facebook: sub-cluster block placement Page 6

7 © Hortonworks Inc. 2012 NameNode failure rare but visible Page 7 ToR Switch 2ary Name Node 2. Bring up new NameNode server -with same IP -or restart DataNodes (Secondary NN receives streamed journal and checkpoints filesystem image) Shared storage for filesystem image and journal ("edit log") 1. Try to reboot/restart Yahoo!: 22 NameNode failures on 25 clusters in 18 months =.99999 availability Name Node NN IP

8 © Hortonworks Inc. 2012 NameNode failure costs Manual intervention Time to bring up service by hand Remote applications receive errors and can fail. MapReduce Job Tracker and Tasks/Jobs can fail. Cost of keeping spare server Cost of keeping ops team available Page 8 contingency planning & ops actions main overhead

9 © Hortonworks Inc. 2012 What to improve Address costs of NameNode failure in Hadoop 1 Add Live NN failover (HDFS 2.0) Eliminate shared storage (HDFS 2.x) Add resilience to the entire stack Page 9

10 © Hortonworks Inc. 2012 Full Stack HA add resilience to planned/unplanned outages of layers underneath 10

11 © Hortonworks Inc. 2012 Server Hadoop Full Stack HA Architecture 11 HA Cluster for Master Daemons Server NN JT Failover Apps Running Outside Task pause/retry Pause/retry JT into Safemode NN task Worker Nodes of Hadoop Cluster Node w/ DN & TT … task Node w/ DN & TT task Node w/ DN & TT task Node w/ DN & TT Job Submitting Clients pause/retry

12 © Hortonworks Inc. 2012 HA in Hadoop 1 (HDP1) Use existing HA clustering technologies to add cold failover of key manager services: VMWare vSphere HA RedHat HA Linux 12

13 © Hortonworks Inc. 2012 vSphere : VMs are managed Page 13

14 © Hortonworks Inc. 2012 “Canary” monitoring IN-VM Monitor daemon for each service –NameNode: process, ports, http, DFS operations –JobTracker: process, ports, http, JT status + special handling of HDFS state on startup. Probe failures reported to vSphere Triggers VM kill and restart Differentiating hung service from GC pause hard Page 14

15 © Hortonworks Inc. 2012 Defining liveness kill -0 `cat ` Port open HTTP GET DFS list DFS out of safe mode (filesystem) JT cluster status JT out of safe mode Page 15

16 © Hortonworks Inc. 2012 Monitoring Lifecycle Page 16 dependencies booting live halted failed boot timeout failure of live probe probe failure probe timeout all dependencies live all probes live block for upstream services e.g. JT on HDFS wait for probes live; fail fast on live  fail check all probes until halted or probe failure halt unhook from vSphereimmediate process exit 60s after heartbeats stop, vSphere restarts VM

17 © Hortonworks Inc. 2012 Page 17 (Job Tracker) 2ary Name Node Name Node RedHat HA Linux IP1 IP2 NN IP ToR Switch Name Node NN IP IP3 IP4 2NN IP JT IP HA Linux: heartbeats & failover DataNode

18 © Hortonworks Inc. 2012 Linux HA Implementation Replace init.d script with “Resource Agent” script Hook up status probes as for vSphere Detection & handling of hung process hard Test in virtual + physical environments Testing with physical clusters ARP trouble on cross-switch failover -don't Page 18 Thank you RedHat HA team!

19 © Hortonworks Inc. 2012 Yes, but does it work? public void testKillHungNN() { assertRestartsHDFS { nnServer.kill(19, "/var/run/hadoop/hadoop-hadoop-namenode.pid") } Page 19 Groovy JUnit tests “chaos” library to work with remote hosts and infrastructures

20 © Hortonworks Inc. 2012 And how long does it take? 60 Nodes, 60K files, 6 million blocks, 300 TB raw storage – 1-3 minutes –Failure detection and Failover – 0.5 to 2 minutes –Namenode Startup (exit safemode) – 30 sec 180 Nodes, 200K files, 18 million blocks, 900TB raw storage – 2-4 minutes –Failure detection and Failover – 0.5 to 2 minutes –Namenode Startup (exit safemode) – 110 sec vSphere: add 60s for OS bootup. 20 Cold Failover is good enough for small/medium clusters

21 © Hortonworks Inc. 2012 “Full Stack”: IPC client Configurable retry & time to block ipc.client.connect.max.retries dfs.client.retry.policy.enabled 1.Set in core-site.xml for automatic pickup. 2.Failure-aware applications can tune/disable Page 21 Blocking works for most clients

22 © Hortonworks Inc. 2012 Job Tracker Resilience “Safe Mode” –rejects new submissions –does not fail ongoing Jobs, blacklist Task Trackers FS monitoring and automatic safe mode entry: mapreduce.jt.hdfs.monitor.enable Queue rebuild on restart mapreduce.jt.hdfs.monitor.enable Job Submission Client to retry: mapreduce.jobclient.retry.policy.enabled Page 22

23 © Hortonworks Inc. 2012 Testing full stack functionality Page 23 1.Run existing test suites against a cluster being killed repeatedly: MapReduce, HBase, Pig 2.Specific test jobs performing DFS operations from inside MapReduce jobs to stress MR layer Results: NN outages did not cause failures two unrelated bugs in HDFS were found;

24 © Hortonworks Inc. 2012 Putting it all together: Demo Page 24

25 © Hortonworks Inc. 2012 vSphere versus RedHat HA vSphere ideal for small clusters –one VM/service –less physical hosts than service VMs –Obvious choice for sites with vSphere HA RedHat HA great for large clusters –turns a series of master nodes into a pool of servers with floating services & IP Addresses –downgrades “outages” to “transient events” Page 25 Consider RedHat HA for all large clusters

26 © Hortonworks Inc. 2012 HA in Hadoop HDFS 2 Page 26

27 © Hortonworks Inc. 2012 Page 27 DataNode NN Hadoop 2.0 HA IP1 IP2 Active Block reports to both NNs; Failure Controllers & Zookeeper co-ordinate Failure- Controller Zoo- Keeper Standby Active Standby Active

28 © Hortonworks Inc. 2012 When will HDFS 2 be ready? Moving from alpha to beta Page 28

29 © Hortonworks Inc. 2012 Moving forward Retry policies for all remote client protocols/libraries in the stack. Dynamic (zookeeper?) service lookup YARN needs HA of Resource Manager, individual MR clusters “No more Managers” Page 29

30 © Hortonworks Inc. 2012 Single Points of Failure There's always a SPOF Q. How do you find it? A. It finds you Page 30

31 © Hortonworks Inc. 2012 Questions? hortonworks.com we are hiring! Page 31

Download ppt "© Hortonworks Inc. 2012 Data Availability and Integrity in Apache Hadoop Steve Sanjay"

Similar presentations

Introduction to cloud computing Jiaheng Lu Department of Computer Science Renmin University of China www.jiahenglu.net.

Introduction to cloud computing Jiaheng Lu Department of Computer Science Renmin University of China
The Case for Drill-Ready Cloud Computing Vision Paper Tanakorn Leesatapornwongsa and Haryadi S. Gunawi 1.

The Case for Drill-Ready Cloud Computing Vision Paper Tanakorn Leesatapornwongsa and Haryadi S. Gunawi 1.
A Hadoop Overview. Outline Progress Report MapReduce Programming Hadoop Cluster Overview HBase Overview Q & A.

A Hadoop Overview. Outline Progress Report MapReduce Programming Hadoop Cluster Overview HBase Overview Q & A.
© 2011 VMware Inc. All rights reserved High Availability Module 7.

© 2011 VMware Inc. All rights reserved High Availability Module 7.
© Hortonworks Inc. 2011 Running Non-MapReduce Applications on Apache Hadoop Hitesh Shah & Siddharth Seth Hortonworks Inc. Page 1.

© Hortonworks Inc Running Non-MapReduce Applications on Apache Hadoop Hitesh Shah & Siddharth Seth Hortonworks Inc. Page 1.
Hadoop YARN in the Cloud Junping Du Staff Engineer, VMware China Hadoop Summit, 2013.

Hadoop YARN in the Cloud Junping Du Staff Engineer, VMware China Hadoop Summit, 2013.
Resource Management with YARN: YARN Past, Present and Future

Resource Management with YARN: YARN Past, Present and Future
Adam Duffy Edina Public Schools.  The heart of virtualization is the “virtual machine” (VM), a tightly isolated software container with an operating.

Adam Duffy Edina Public Schools.  The heart of virtualization is the “virtual machine” (VM), a tightly isolated software container with an operating.
 Need for a new processing platform (BigData)  Origin of Hadoop  What is Hadoop & what it is not ?  Hadoop architecture  Hadoop components (Common/HDFS/MapReduce)

 Need for a new processing platform (BigData)  Origin of Hadoop  What is Hadoop & what it is not ?  Hadoop architecture  Hadoop components (Common/HDFS/MapReduce)
Jian Wang Based on “Meet Hadoop! Open Source Grid Computing” by Devaraj Das Yahoo! Inc. Bangalore & Apache Software Foundation.

Jian Wang Based on “Meet Hadoop! Open Source Grid Computing” by Devaraj Das Yahoo! Inc. Bangalore & Apache Software Foundation.
Implementing Failover Clustering with Hyper-V

Implementing Failover Clustering with Hyper-V
High Availability Module 12.

High Availability Module 12.
ABC Co. Network Implementation High reliability is primary concern – near 100% uptime required –Customer SLA has stiff penalty clauses –Everything is designed.

ABC Co. Network Implementation High reliability is primary concern – near 100% uptime required –Customer SLA has stiff penalty clauses –Everything is designed.
Next Generation of Apache Hadoop MapReduce Arun C. Murthy - Hortonworks Founder and Architect Formerly Architect, MapReduce.

Next Generation of Apache Hadoop MapReduce Arun C. Murthy - Hortonworks Founder and Architect Formerly Architect, MapReduce.
Google Distributed System and Hadoop Lakshmi Thyagarajan.

Google Distributed System and Hadoop Lakshmi Thyagarajan.
Dr. G Sudha Sadhasivam Professor, CSE PSG College of Technology Coimbatore INTRODUCTION TO HADOOP.

Dr. G Sudha Sadhasivam Professor, CSE PSG College of Technology Coimbatore INTRODUCTION TO HADOOP.
Take An Internal Look at Hadoop Hairong Kuang Grid Team, Yahoo! Inc

Take An Internal Look at Hadoop Hairong Kuang Grid Team, Yahoo! Inc
Hadoop Distributed File System by Swathi Vangala.

Hadoop Distributed File System by Swathi Vangala.
Hadoop, Hadoop, Hadoop!!! Jerome Mitchell Indiana University.

Hadoop, Hadoop, Hadoop!!! Jerome Mitchell Indiana University.
© 2009 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice Dynamic Hadoop Clusters Steve Loughran.

© 2009 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice Dynamic Hadoop Clusters Steve Loughran.

Similar presentations

Ads by Google