Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Introduce a fast reconnect process for async cluster connections. #184

Merged
merged 3 commits into from
Sep 4, 2024

Conversation

ikolomi
Copy link

@ikolomi ikolomi commented Aug 18, 2024

Introduce a fast reconnect process for async cluster connections.
The process is periodic and can be configured via ClusterParams.
This process ensures that all expected user connections exist and have not been passively closed.
The expected connections are calculated from the current slot map.
Additionally, for the Tokio runtime, an instant disconnect notification is available, allowing the reconnect process to be triggered instantly without waiting for the periodic check.
This process is especially important for pub/sub support, as passive disconnects can render a pub/sub subscriber inoperative. Three integration tests are introduced with this feature: a generic fast reconnect test, pub/sub resilience to passive disconnects, and pub/sub resilience to scale-out.

Note! This PR must be followed by a PR to glide-core. implementing the similar functionality for CMD

Issue #, if available:
valkey-io/valkey-glide#2042

@ikolomi ikolomi requested review from barshaul and eifrah-aws August 18, 2024 12:29
@ikolomi ikolomi force-pushed the fast_reconnect_cand branch from 241039a to 1ae1d15 Compare August 18, 2024 12:36
@ikolomi ikolomi requested a review from asafpamzn August 18, 2024 12:37
@ikolomi ikolomi force-pushed the fast_reconnect_cand branch 3 times, most recently from 4124c7b to 1592f57 Compare August 18, 2024 15:53
redis/src/aio/connection_manager.rs Show resolved Hide resolved
redis/src/aio/mod.rs Outdated Show resolved Hide resolved
redis/src/aio/multiplexed_connection.rs Outdated Show resolved Hide resolved
redis/src/aio/multiplexed_connection.rs Show resolved Hide resolved
redis/src/cluster_async/mod.rs Outdated Show resolved Hide resolved
redis/src/cluster_async/mod.rs Show resolved Hide resolved
redis/src/cluster_async/mod.rs Outdated Show resolved Hide resolved
redis/src/cluster_client.rs Show resolved Hide resolved
redis/src/sentinel.rs Outdated Show resolved Hide resolved
redis/tests/support/mock_cluster.rs Outdated Show resolved Hide resolved
@ikolomi ikolomi force-pushed the fast_reconnect_cand branch from 1592f57 to 56beb8f Compare August 18, 2024 16:51
The process is periodic and can be configured via ClusterParams.
This process ensures that all expected user connections exist and have not been passively closed.
The expected connections are calculated from the current slot map.
Additionally, for the Tokio runtime, an instant disconnect notification is available, allowing the reconnect process to be triggered instantly without waiting for the periodic check.
This process is especially important for pub/sub support, as passive disconnects can render a pub/sub subscriber inoperative.
Three integration tests are introduced with this feature: a generic fast reconnect test, pub/sub resilience to passive disconnects, and pub/sub resilience to scale-out.
@ikolomi ikolomi force-pushed the fast_reconnect_cand branch from 56beb8f to 2c7faec Compare August 19, 2024 05:27
@eifrah-aws eifrah-aws self-requested a review August 19, 2024 07:01
Comment on lines 152 to 153
push_sender: Option<mpsc::UnboundedSender<PushInfo>>,
disconnect_notifier: Option<Box<dyn DisconnectNotifier>>,

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

In the context of redis-rs, this would be a breaking change since it's an exposed user API. However, since we're only using it internally within Glide, and if we're ok with breaking these APIs, I think it's the right time to modify this function to accept a ConnectionOptions struct (or another appropriate name) that internally holds all connection handlers/options. This change would reduce the need to modify the entire chain of internal function calls (like get_multiplexed_async_connection_with_timeouts, etc.) and fixing all tests that use these APIs each time we add a new option.

What do you think about changing it to:

pub struct ConnectionOptions {
    push_sender: Option<mpsc::UnboundedSender<PushInfo>>,
    disconnect_notifier: Option<Box<dyn DisconnectNotifier>>,
}

pub async fn get_multiplexed_async_connection(
        &self,
        connection_options: ConnectionOptions
)

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

done

Comment on lines 405 to 407
disconnect_notifier: Option<Box<dyn DisconnectNotifier>>,
#[cfg(feature = "tokio-comp")]
tokio_notify: Arc<Notify>,

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Instead of passing tokio notify in another parameter, why not to expand the DisconnectNotifier trait to have a notified API?

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yep, that was my original try, but got :

102 |     async fn notified(&mut self);
    |     -----^^^^^^^^^^^^^^^^^^^^^^^^
    |     |
    |     `async` because of this
    |
    = note: `async` trait functions are not currently supported

There might be some crates that do it, but i dont want to go down this rabbit hole.
Do you know how to do it?

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

done

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

#[async_trait::async_trait]

@@ -1145,22 +1217,93 @@ where
}
}

// Validate all existing user connections and try to reconnect if nessesary.
// In addition, as a safety measure, drop nodes that do not have any assigned slots.

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The problem with removing connections that aren’t found in the slot map is that we might inadvertently remove newly added nodes received through a MOVED error before they are added to the slot map. This issue will persist even after fixing MOVED errors to update the slot map for specific slots, because updating the slot map based on a MOVED error is handled inside the refresh_slots task, which is spawned separately. Meanwhile, new connections can be established in the get_connection method after a MOVED error and might execute before the refresh_slots task runs.

For example, consider the following scenario:

  1. A MOVED error is received with a new node address X.
  2. The refresh_slots task is spawned to update the specific slot or perform a full slot refresh.
  3. The request that received the MOVED error calls get_connection and creates a new connection for the moved node X.
  4. validate_all_user_connections is called, finds X in the connections map but not in the slots map, and removes it from the connection map.
  5. Another request encountering the same MOVED error doesn’t find the connection and creates a new one.
  6. This cycle continues until the node X is eventually added to the slots map, which might happen quickly or could take longer if a full slots refresh is required and multiple iterations are needed for it to complete.

Given that during a full refresh_slots operation the connection map is completely replaced with a new one that contains only the nodes from the newly discovered map, the risk of connection leaks accumulating over time is minimal. Therefore, in weighing the tradeoff between prematurely removing connections (which could lead to closing new connections repeatedly causing higher latency and risking connection storms) versus potentially storing non-relevant connections temporarily, it might be safer to leave the cleanup to be handled solely by the refresh_slots process.

However, if we skip the cleanup, we need to ensure that nodes present in the connection map but not in the slot map aren't added to addrs_to_refresh. Otherwise, we risk repeatedly trying to refresh the connection of a stale node.

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes, I am aware of that behavior.

First of all, periodic syncing must include both adding and removing the connections as required by the source of truth (the slots map), there is no way around this symmetry requirement.

Secondly this behavior is due to insufficient step (3) - if we create a connection, than it means we believe it is valid, and so, should update the slot map. Only creating the connection is not sufficient.

I thought to complement the step (3), but we discussed it and agreed that you`ll complement it in a more specific work. Do you want me to do it in this PR?

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Discussed, will be addressed by a specific work

Comment on lines 1233 to 1239
connections_container
.slot_map
.addresses_for_all_nodes()
.iter()
.for_each(|addr| {
all_nodes_with_slots.insert(String::from(*addr));
});

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
connections_container
.slot_map
.addresses_for_all_nodes()
.iter()
.for_each(|addr| {
all_nodes_with_slots.insert(String::from(*addr));
});
all_nodes_with_slots = connections_container
.slot_map
.addresses_for_all_nodes()
.iter()
.map(|addr| String::from(*addr))
.collect();

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

done

let mut addrs_to_refresh = Vec::new();
for (addr, con_fut) in &all_valid_conns {
let con = con_fut.clone().await;
if con.is_closed() {

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think the distinction between connections that are still present in the connection map with is_closed set to true and those that have been removed because the client failed to reestablish their connection isn’t clear. Could you document this difference, when are we expecting to see each?

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

yes, will do

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

done

Comment on lines +1274 to +1280
// dont try existing nodes since we know a. it does not exist. b. exist but its connection is closed
Self::refresh_connections(
inner.clone(),
addrs_to_refresh,
RefreshConnectionType::AllConnections,
false,
)

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
// dont try existing nodes since we know a. it does not exist. b. exist but its connection is closed
Self::refresh_connections(
inner.clone(),
addrs_to_refresh,
RefreshConnectionType::AllConnections,
false,
)
Self::refresh_connections(
inner.clone(),
addrs_to_refresh,
RefreshConnectionType::AllConnections,
// dont check the existing connections since we know a. it does not exist, or b. exist but its connection is closed
false,
)

or

Suggested change
// dont try existing nodes since we know a. it does not exist. b. exist but its connection is closed
Self::refresh_connections(
inner.clone(),
addrs_to_refresh,
RefreshConnectionType::AllConnections,
false,
)
// dont check the existing connections since we know a. it does not exist, or b. exist but its connection is closed
let check_existing_conns = false;
Self::refresh_connections(
inner.clone(),
addrs_to_refresh,
RefreshConnectionType::AllConnections,
check_existing_conns,
)

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

the first option is better

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

done

async fn refresh_connections(
inner: Arc<InnerCore<C>>,
addresses: Vec<String>,
conn_type: RefreshConnectionType,
try_existing_node: bool,

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

this option isn't clear.
maybe rename to check_existing_conn and document what it does

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

yes

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

done

let node_option = if try_existing_node {
connections_container.remove_node(&address)
} else {
Option::None

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
Option::None
None

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

yep

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

done

Comment on lines 1543 to 1549
#[cfg(feature = "tokio-comp")]
let _ = timeout(interval_duration, async {
inner.tokio_notify.notified().await;
})
.await;
#[cfg(not(feature = "tokio-comp"))]
let _ = boxed_sleep(interval_duration).await;

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
#[cfg(feature = "tokio-comp")]
let _ = timeout(interval_duration, async {
inner.tokio_notify.notified().await;
})
.await;
#[cfg(not(feature = "tokio-comp"))]
let _ = boxed_sleep(interval_duration).await;
#[cfg(all(not(feature = "tokio-comp"), feature = "async-std-comp"))]
use async_std::future::timeout;
#[cfg(feature = "tokio-comp")]
use tokio::time::timeout;
if let Some(notifier) = inner.disconnect_notifier {
timeout(interval_duration, inner.disconnect_notifier.notified()).await;
} else {
let _ = boxed_sleep(interval_duration).await;
}
...
}

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

nice, will try

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

done

@ikolomi ikolomi force-pushed the fast_reconnect_cand branch from 18b4925 to 9040c07 Compare September 3, 2024 14:12
@ikolomi ikolomi force-pushed the fast_reconnect_cand branch from 9040c07 to 24c19dd Compare September 3, 2024 14:16
@ikolomi ikolomi merged commit 426bb99 into main Sep 4, 2024
10 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants