Improved in max-pending-bytes mechanism for broker #7406
Conversation
merlimat
added
the
type/enhancement
merlimat
requested review from
ivankelly,
sijie,
srkukarni,
rdhabalia,
jerrypeng and
codelipenghui
| private static final FastThreadLocal<Set<ServerCnx>> cnxsPerThread = new FastThreadLocal<Set<ServerCnx>>() { | ||
| @Override | ||
| protected Set<ServerCnx> initialValue() throws Exception { | ||
| return Collections.newSetFromMap(new IdentityHashMap<>()); |
There was a problem hiding this comment.
What's the advantage of this over "new HashSet<>()"?
There was a problem hiding this comment.
Since ServerCnx doesn't have a hashCode() method I thought to be on the safe side to just make sure to use == operator instead of hashing. Honestly, I'm not 100% sure that would make difference in practice.
| @@ -2307,4 +2253,16 @@ private boolean isSystemTopic(String topic) { | |||
| public void setInterceptor(BrokerInterceptor interceptor) { | |||
| this.interceptor = interceptor; | |||
| } | |||
|
|
|||
| public void pausedConnections(int numberOfConnections) { | |||
| pausedConnections.addAndGet(numberOfConnections); | |||
There was a problem hiding this comment.
Is this exported via prometheus? It would be better to have separate event counters for pause and resume so that if pausing happens between prometheus pulls we can see it.
There was a problem hiding this comment.
Good point. I just exposed it here to for validation in the tests, though it makes sense to expose the 2 counters.
There are some users who use few producers to publish messages, in order to have a better batch effect to improve throughput. We cannot assume 1 single connection cannot use the entire memory space. Our purpose is to control memory and make effective use of memory. I think split memory according to io thread may decrease the memory utilization. How about using a LongAdder to record the current pending bytes and remove the check tasks. |
|
@codelipenghui A LongAdder would still cause contention on every entry, as to sum it has to view all cells. To allow a single thread to use the full buffer when there's little traffic on the other threads, we should use a token bucket, as networking folks have been doing for decades. |
I have, of course, tested it and as expected once you have few MBs of runway, there's no throughput advantage in allowing it to grow higher.
We should assume that, because allowing 1 single connection to take over the entire quota of the broker and stalling all other connections is bad.
Effectively and efficiently, in a scalable manner.
If there's no negative impact on throughput, that is a good thing. That memory can be used on dispatch side.
The LongAdder would not allow you to remove the check tasks. The LongAdder only difference, compared to an AtomicLong, is that it's optimized for writes (thread-local counters), but the read path is extra slow and meant to be used infrequently. That doesn't solve the multiple issue I've outlined above, in particular the need for the check task. A single broker, can be very easily be serving 100s of thousands of producers at a given point in time. Some of them active, some of them idle. Frequently looping over all the producers (just to get to the connections) is just burning a lot of CPU. |
I agree with this point. I just want to say the pending buffer is sensitive to write throughput, especially on machines with less memory. If we split it into multiple parts, when there are fewer connections, the channel will enable auto-read, disable auto-read frequently, And it is possible that some parts are available pending more messages.
The io threads count not much, will we add up to a few numbers each time will become a bottleneck? |
How much is less memory? Once you have 10s of MB per thread (or per connection, if you have a single connection), there will be no more improvement in letting it use more memory. It's the same reason for which the OS network stack doesn't let you grow the TCP window indefinitely. There are OS limits that are in place, because: (1) too much doesn't help and (2) it starve other users. The current default settings we have is Also, 4G for a VM with 16 cores is very little memory ratio. Such VM would typically be having 64GB or higher. Reversely, in container environment, mem is usually capped lower, but so is the CPU limit. If you limit the CPUs on the broker container, the default IO threads count will adjust accordingly, balancing the situation.
We're already doing that with the per-connection
I'm not sure what you mean here. |
Sorry I didn't make it clear. I mean if we have 32 io thread, for each message we sum 32 numbers, is this will be a bottleneck of the broker? I just want to know the disadvantages of using Longadder. |
@codelipenghui With longadder you'd still need to run a background thread to do the enforcement, because the |
|
@codelipenghui to help review this pr |
|
/pulsarbot run-failure-checks |
|
@merlimat Could you please rebase to the master branch? So that we can onboard this PR in 2.7.0 |
|
Assuming 32 IO threads, 8G direct memory. The buffer of each IO thread is 256MB. Bookie’s write latency is about 10ms. Under stable conditions, 100* 256MB = 25G can be written per second, which is enough to fill bookie. |
|
@merlimat Could you please fix the conflicts so that we can advance this PR. |
|
Great job, it can solve the current broker OOM, would you please rebase master branch and resolve the conflicts? @merlimat |
There was a problem hiding this comment.
Could you finish this PR, this fixes a major issue in the project that should not be neglected. @merlimat
|
@merlimat do you want to rebase this onto current master ? |
|
Yes, I’ll get this ready in the next few days. There are also some improvements I want to do to this PR. |
|
@merlimat thats great thank you |
merlimat
force-pushed
the
max-pending-bytes
branch
from
f706016 to
77acc92
Compare
|
In a subsequent PR, I'll be adding a bucket-token based mechanism to handle different usages across multiple threads. |
| private final long maxMessagePublishBufferBytes; | ||
| private final long resumeProducerReadMessagePublishBufferBytes; | ||
| private volatile boolean reachMessagePublishBufferThreshold; | ||
| private final AtomicInteger pausedConnections = new AtomicInteger(); |
There was a problem hiding this comment.
The reading frequency here should be very low, only used in unit tests or metrics, why not use longAdder
There was a problem hiding this comment.
Good point, changed that.
…native#488) This PR upgrades pulsar dependency to 2.8.0-rc-202105092228, which has two major API changes. apache/pulsar#10391 changed `LoadManager` API so that `MetadataCache` is used instead of `ZookeeperCache` in this PR. apache/pulsar#7406 changed the throttling strategy. However, currently KoP is different from Pulsar that the produce and its callback may be in different threads. KoP calls `PersistentTopic#publishMessages` in a callback of `KafkaTopicManager#getTopic` if the returned future is not completed immediately. Otherwise, it's called just in the I/O thread. Therefore, here we still use a **channel based** publish bytes stats for throttling, while apache/pulsar#7406 uses a **thread based** publish bytes stats. The other refactors are: 1. Change the throttling related fields from `InternalServerCnx` to `KafkaRequestHandler`. 2. Use `BrokerService#getPausedConnections` to check if the channel's auto read is disabled and modify the tests as well.
This PR upgrades pulsar dependency to 2.8.0-rc-202105092228, which has two major API changes. apache/pulsar#10391 changed `LoadManager` API so that `MetadataCache` is used instead of `ZookeeperCache` in this PR. apache/pulsar#7406 changed the throttling strategy. However, currently KoP is different from Pulsar that the produce and its callback may be in different threads. KoP calls `PersistentTopic#publishMessages` in a callback of `KafkaTopicManager#getTopic` if the returned future is not completed immediately. Otherwise, it's called just in the I/O thread. Therefore, here we still use a **channel based** publish bytes stats for throttling, while apache/pulsar#7406 uses a **thread based** publish bytes stats. The other refactors are: 1. Change the throttling related fields from `InternalServerCnx` to `KafkaRequestHandler`. 2. Use `BrokerService#getPausedConnections` to check if the channel's auto read is disabled and modify the tests as well. * Fix LoadManager interface * Refactor publish throttling * Remove ZookeeperCache usage
Motivation
There are few issues with the current implementation of the broker-wide throttling based on max-outstanding bytes in broker that was added in #6178.
The improvement proposed here is using thread-local counters to avoid contention and CPU overhead.
Regarding the lower limit per each IO thread, in which 1 single connection cannot use the entire memory space, I don't think it's an issue at all.
Once there is a "window" of several MB, there is no throughput gain in having a bigger window. Also, In most scenarios, the only time we'd be filling this window is when the downstream BK is either malfunctioning or under-provisioned for the load. Either case, it's not a performance concern.