Skip to content

feat: Router warm restarts via durable KV event consumers and radix snapshotting #2756

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 38 commits into from
Aug 30, 2025
Merged

feat: Router warm restarts via durable KV event consumers and radix snapshotting #2756

merged 38 commits into from
Aug 30, 2025

Conversation

@PeaBrane
Copy link
Contributor

@PeaBrane PeaBrane commented Aug 28, 2025
edited by coderabbitai bot
Loading

Motivation

We need a way for the KV events/block states to persist when the Router goes down, so the Router (replica) can warm restart/revive. Closes #1056

Overview:

Core changes are mostly contained in kv_router/subscriber.rs.

  1. KV events are now published over NATs jetstream for persistence. So each worker is a publisher, and each router/indexer is a durable consumer, all tied to the same stream.
  2. To prevent unbounded growth of the stream, periodically the stream is purged, and the radix tree state is saved to NATs object store, which can be loaded by new Router replicas.

All other changes are boilerplates and tests (unlikely serious reviewing efforts needed).

Small algorithmic notes

Kv events act idempotently on the Indexer, so it is fine for the snapshotted state to be ahead of the purged watermark. Simply put, replaying an event twice to the indexer is fine. This is what happens in our case, where we conservatively choose the purged watermark to be the min ack'ed sequence over all Router replicas.

To prevent multiple replicas from racing to purge, we put a lock key atomically into etcd while purging. The lock is tied to the etcd lease (replica lifetime), in case the process crashes while purging. Importantly, we save the radix tree state before purging the stream, to guarantee that the snapshotted state is always ahead of the stream.

Summary by CodeRabbit

  • New Features
    • Added router CLI options: --snapshot-threshold to enable periodic snapshots, and --reset-states/--persist-states to control startup state.
    • Routers now support background NATS-based event processing with durable consumer IDs and optional snapshotting for faster recovery.
    • Exposed APIs to dump router/indexer events for state inspection.
  • Documentation
    • Updated KV routing architecture with new flags, startup/persistence behavior, replica sync, and event persistence/recovery guidance.
  • Tests
    • Added end-to-end test ensuring router replicas converge on identical state across restarts.

@github-actions github-actions bot added the feat label Aug 28, 2025
@PeaBrane PeaBrane force-pushed the rupei/router-warm-restarts branch from e5e2228 to ba11255 Compare August 28, 2025 00:36
@PeaBrane
impl EventPublisher trait for NatsQueue
35a9c34 
Signed-off-by: PeaBrane <yanrpei@gmail.com>
@PeaBrane
publish kv events over js
cfc1fb3 
Signed-off-by: PeaBrane <yanrpei@gmail.com>
@PeaBrane PeaBrane force-pushed the rupei/router-warm-restarts branch from ba11255 to cfc1fb3 Compare August 28, 2025 00:38
@PeaBrane
clippy
67f2de8 
Signed-off-by: PeaBrane <yanrpei@gmail.com>
@PeaBrane
in KvIndexer binding, subscribe to nats queue also (fixes kv bindings…
7ef9afd 
… tests)

Signed-off-by: PeaBrane <yanrpei@gmail.com>
@PeaBrane PeaBrane mentioned this pull request Aug 27, 2025
Closed
5 tasks
@PeaBrane
radix uploader
b7f5185 
Signed-off-by: PeaBrane <yanrpei@gmail.com>
@PeaBrane
refactor into background.rs
da355f6 
Signed-off-by: PeaBrane <yanrpei@gmail.com>
@PeaBrane
make kv_routers prefix a const
d6386f1 
Signed-off-by: PeaBrane <yanrpei@gmail.com>
@PeaBrane PeaBrane force-pushed the rupei/router-warm-restarts branch from b893aa7 to d6386f1 Compare August 28, 2025 20:44
@PeaBrane
use component.subject() instead
8562035 
Signed-off-by: PeaBrane <yanrpei@gmail.com>
@PeaBrane PeaBrane enabled auto-merge (squash) August 30, 2025 07:44
@PeaBrane PeaBrane disabled auto-merge August 30, 2025 09:15
@PeaBrane
use default snapshot_threshold of 10000
f542d8c 
Signed-off-by: PeaBrane <yanrpei@gmail.com>
@PeaBrane PeaBrane enabled auto-merge (squash) August 30, 2025 09:24
@PeaBrane
clean tests
a5528f5 
Signed-off-by: PeaBrane <yanrpei@gmail.com>
@PeaBrane PeaBrane force-pushed the rupei/router-warm-restarts branch from 60a5fd8 to a5528f5 Compare August 30, 2025 17:16
@PeaBrane
use exponential backoffs for kv bindings test
84e14b5 
Signed-off-by: PeaBrane <yanrpei@gmail.com>
@PeaBrane PeaBrane merged commit 488c870 into main Aug 30, 2025
16 of 17 checks passed
@PeaBrane PeaBrane deleted the rupei/router-warm-restarts branch August 30, 2025 23:42
@coderabbitai coderabbitai bot mentioned this pull request Aug 31, 2025
Merged
KrishnanPrash pushed a commit that referenced this pull request Sep 2, 2025
@PeaBrane @KrishnanPrash
feat: Router warm restarts via durable KV event consumers and radix s…
e016a35 
…napshotting (#2756)

Signed-off-by: PeaBrane <yanrpei@gmail.com>
Signed-off-by: Krishnan Prashanth <kprashanth@nvidia.com>
dillon-cullinan pushed a commit that referenced this pull request Sep 5, 2025
@PeaBrane @dillon-cullinan
feat: Router warm restarts via durable KV event consumers and radix s…
917036a 
…napshotting (#2756)

Signed-off-by: PeaBrane <yanrpei@gmail.com>
@coderabbitai coderabbitai bot mentioned this pull request Sep 8, 2025
Merged
nnshah1 pushed a commit that referenced this pull request Sep 8, 2025
@PeaBrane @nnshah1
feat: Router warm restarts via durable KV event consumers and radix s…
04abe05 
…napshotting (#2756)

Signed-off-by: PeaBrane <yanrpei@gmail.com>
Signed-off-by: nnshah1 <neelays@nvidia.com>
@PeaBrane PeaBrane mentioned this pull request Oct 9, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@grahamking grahamking grahamking left review comments

@coderabbitai coderabbitai[bot] coderabbitai[bot] left review comments

@tedzhouhk tedzhouhk tedzhouhk approved these changes

@nnshah1 nnshah1 Awaiting requested review from nnshah1

@tanmayv25 tanmayv25 Awaiting requested review from tanmayv25

@piotrm-nvidia piotrm-nvidia Awaiting requested review from piotrm-nvidia

@ptarasiewiczNV ptarasiewiczNV Awaiting requested review from ptarasiewiczNV

@ryanolson ryanolson Awaiting requested review from ryanolson

@paulhendricks paulhendricks Awaiting requested review from paulhendricks

@biswapanda biswapanda Awaiting requested review from biswapanda

@tmonty12 tmonty12 Awaiting requested review from tmonty12

@GuanLuo GuanLuo Awaiting requested review from GuanLuo

@rmccorm4 rmccorm4 Awaiting requested review from rmccorm4

@alec-flowers alec-flowers Awaiting requested review from alec-flowers

@kkranen kkranen Awaiting requested review from kkranen

@ishandhanani ishandhanani Awaiting requested review from ishandhanani

@hhzhang16 hhzhang16 Awaiting requested review from hhzhang16

Assignees

@PeaBrane PeaBrane

Labels

feat size/XXL

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Allow warm restarts of Router replicas via RadixTree snapshots

5 participants

@PeaBrane @grahamking @ryanolson @tedzhouhk