Presentation is loading. Please wait.

Presentation is loading. Please wait.

CS294, YelickConsensus, p1 CS 294-8 Consensus

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "CS294, YelickConsensus, p1 CS 294-8 Consensus"— Presentation transcript:

1 CS294, YelickConsensus, p1 CS 294-8 Consensus http://www.cs.berkeley.edu/~yelick/294

2 CS294, YelickConsensus, p2 Agenda Overview and Administrivia Specifications and verification Consensus Practical Issues in Consensus Note: due in part to unreliable network and lack of reliability in ppt, most slides are stolen from Lamport.

3 CS294, YelickConsensus, p3 Administrivia So far: readings in distributed and fault tolerant systems Next: specifying and reasoning about these systems Readings for next few weeks will be set by Thursday For Thursday: –SmartBridge (for talk) –Frangiapani (for discussion)

4 CS294, YelickConsensus, p4 Course Overview So far: reading “systems” papers Next few weeks: reading papers on algorithms and proofs Why? –I know my algorithm works, but… –I found a missing case when I was implementing… –My advisor (or the PC) doesn’t believe me…

5 CS294, YelickConsensus, p5 Agenda Overview and Administrivia Specifications and verification Consensus Practical Issues in Consensus

6 CS294, YelickConsensus, p6 Highly Available Computing High availability means either perfection or redundancy. –The system can work even when some parts are broken. The simplest redundancy is replication: –Several copies of each part. –Each non-faulty copy does the same thing. Every computing system works as a state machine. So a replicated state machine can do highly available computing.

7 CS294, YelickConsensus, p7 Replicated State Machines If a state machine is deterministic, then feeding two copies the same inputs will produce the same outputs and states. –We call each copy a process. –So all we need is to agree on the inputs. Examples: –Replicated storage with Read(a) and Write(a, d) steps. –Airplane flight control system with ReadInstrument(i) and RaiseFlaps(d) steps.

8 CS294, YelickConsensus, p8 State Machine Approach A distributed system is: –A finite set of processes A process is: –A set of states, with one initial state –A set of events or actions An execution is a possibly infinite sequence of alternating states/actions s 0 s 1 s 2  0  1  2

9 CS294, YelickConsensus, p9 Properties A stuttering transition has the form s s A property is a set of executions closed under stuttering [Abadi, Lamport 1990] –The clock still ticks after a program temrinates –Stuttering is also a useful in mapping between levels of abstraction 00

10 CS294, YelickConsensus, p10 Safety Properties Informally: A safety properties is one that says something bad doesn’t happen Formally: A property P is a safety property iff: –If  is in P then any finite prefix of  is in P Additionally, –If  is not in P then there is some finite prefix of  that is not in P There is a point at which an illegal transition occurred –Safety properties can be finitely refuted.

11 CS294, YelickConsensus, p11 Liveness Properties Informally: A liveness property says something good eventually happens Formally: A property P is a liveness property iff: –If every finite behavior is a prefix of some behavior in P Additionally, –Can always “complete” a finite behavior into one that is in P –Safety properties cannot be finitely refuted.

12 CS294, YelickConsensus, p12 Safety and Liveness Every property (I.e., every set of behaviors) is the conjunction of: –A safety property and –A liveness property Due to Alpern and Schneider, based on basic results from Topology

13 CS294, YelickConsensus, p13 Visible Behavior A specification identifies a subset of its actions (or its state variables) as externally visible. A state machine defines a set of allowable executions : –state: a set of values, usually divided into named variables. –actions: named changes in the state; internal and external. They may be nondeterministic –In fact, Lampson encourages this in specs to allow flexibility in implementations

14 CS294, YelickConsensus, p14 Implements Y implements X if –every external behavior of Y is an external behavior of X, This expresses the idea that Y implements X if you can’t tell Y apart from X by looking only at the external actions Examples: abstract data types, databases, distributed systems Note: Lampson implicitly deals with finite behaviors, and therefore states the liveness property separately. (Doesn’t treat liveness in the proofs.)

15 CS294, YelickConsensus, p15 Agenda Overview and Administrivia Specifications and verification Consensus Practical Issues in Consensus

16 CS294, YelickConsensus, p16 Use of Consensus Agreeing on some value is called consensus. A replicated state machine needs to agree on a sequence of values: –Input 1Write(x, 3) –Input 2Read(x) –...

17 CS294, YelickConsensus, p17 Paxos Assumptions Each legislator has –A ledger (stable storage) –An hourglasses for time Communication –Point-to-point, fully connected network –Unreliable: loss and delay allowed Failures –Legislators may come and go (processor failure) –They are honest – no byzantine failures

18 CS294, YelickConsensus, p18 Agenda Overview and Administrivia Specifications and verification Consensus Practical Issues in Consensus

19 CS294, YelickConsensus, p19 Summary How to build a highly available system using consensus. –Run a replicated deterministic state machine, and get consensus on each input. –Use leases to replace most of the consensus steps with actions by one process. The most fault-tolerant algorithm for consensus without real-time guarantees. –Lamport’s “Paxos” algorithm, based on How to design and understand a concurrent, fault-tolerant system. –Write a simple spec as a state machine. –Define abstract function and show simulation.

Download ppt "CS294, YelickConsensus, p1 CS 294-8 Consensus"

Similar presentations

Global States.

Global States.
Impossibility of Distributed Consensus with One Faulty Process

Impossibility of Distributed Consensus with One Faulty Process
Chapter 8 Fault Tolerance

Chapter 8 Fault Tolerance
CSE 486/586, Spring 2012 CSE 486/586 Distributed Systems Consensus --- 2 Steve Ko Computer Sciences and Engineering University at Buffalo.

CSE 486/586, Spring 2012 CSE 486/586 Distributed Systems Consensus Steve Ko Computer Sciences and Engineering University at Buffalo.
CS 5204 – Operating Systems1 Paxos Student Presentation by Jeremy Trimble.

CS 5204 – Operating Systems1 Paxos Student Presentation by Jeremy Trimble.
Distributed Systems Overview Ali Ghodsi

Distributed Systems Overview Ali Ghodsi
CSE 486/586, Spring 2013 CSE 486/586 Distributed Systems Consensus Steve Ko Computer Sciences and Engineering University at Buffalo.

CSE 486/586, Spring 2013 CSE 486/586 Distributed Systems Consensus Steve Ko Computer Sciences and Engineering University at Buffalo.
Distributed Algorithms – 2g1513 Lecture 10 – by Ali Ghodsi Fault-Tolerance in Asynchronous Networks.

Distributed Algorithms – 2g1513 Lecture 10 – by Ali Ghodsi Fault-Tolerance in Asynchronous Networks.
Consensus Hao Li.

Consensus Hao Li.
Ordering and Consistent Cuts Presented By Biswanath Panda.

Ordering and Consistent Cuts Presented By Biswanath Panda.
CS 582 / CMPE 481 Distributed Systems Fault Tolerance.

CS 582 / CMPE 481 Distributed Systems Fault Tolerance.
Distributed systems Module 2 -Distributed algorithms Teaching unit 1 – Basic techniques Ernesto Damiani University of Bozen Lesson 3 – Distributed Systems.

Distributed systems Module 2 -Distributed algorithms Teaching unit 1 – Basic techniques Ernesto Damiani University of Bozen Lesson 3 – Distributed Systems.
An Introduction to Input/Output Automata Qihua Wang.

An Introduction to Input/Output Automata Qihua Wang.
Asynchronous Consensus (Some Slides borrowed from ppt on Web.(by Ken Birman) )

Asynchronous Consensus (Some Slides borrowed from ppt on Web.(by Ken Birman) )
CPSC 668Set 16: Distributed Shared Memory1 CPSC 668 Distributed Algorithms and Systems Fall 2006 Prof. Jennifer Welch.

CPSC 668Set 16: Distributed Shared Memory1 CPSC 668 Distributed Algorithms and Systems Fall 2006 Prof. Jennifer Welch.
Eddie Bortnikov & Aran Bergman, Principles of Reliable Distributed Systems, Technion EE, Spring 2006 1 Principles of Reliable Distributed Systems Recitation.

Eddie Bortnikov & Aran Bergman, Principles of Reliable Distributed Systems, Technion EE, Spring Principles of Reliable Distributed Systems Recitation.
CS294, YelickSelf Stabilizing, p1 CS 294-8 Self-Stabilizing Systems

CS294, YelickSelf Stabilizing, p1 CS Self-Stabilizing Systems
Temporal Logic of Actions (TLA) Leslie Lamport

Temporal Logic of Actions (TLA) Leslie Lamport
1 Principles of Reliable Distributed Systems Lecture 5: Failure Models, Fault-Tolerant Broadcasts and State-Machine Replication Spring 2005 Dr. Idit Keidar.

1 Principles of Reliable Distributed Systems Lecture 5: Failure Models, Fault-Tolerant Broadcasts and State-Machine Replication Spring 2005 Dr. Idit Keidar.
Impossibility of Distributed Consensus with One Faulty Process Michael J. Fischer Nancy A. Lynch Michael S. Paterson Presented by: Oren D. Rubin.

Impossibility of Distributed Consensus with One Faulty Process Michael J. Fischer Nancy A. Lynch Michael S. Paterson Presented by: Oren D. Rubin.

Similar presentations

Ads by Google