HttpRemoteTaskRunner enhancements

[jtuglu1]

Description

Draft. Clone of #18729 but merged into current runner per @kfaraz request.

I've seen on the giant lock in HttpRemoteTaskRunner cause severe performance degradation under heavy load(200-500ms per acquisition with 1000s of activeTasks can slow down the startPendingTasks loop in TaskQueue). This leads to scheduling delays, which leads to more lag, which auto-scales more tasks, ..., etc. The runner also has a few (un)documented races abundant in the code. This overhead also slows down query tasks under load (e.g. MSQE and others) which utilize the scheduler for execution.

I'm attempting a rewrite of this class to optimize for throughput and safety.

Apart from the performance improvements/bug fixes, this will also include some new features:

• Simpler code. The old task runner had old, legacy ZK references dangling around as well as a pretty complicated scheduling loop.
• Task priority-based scheduling onto workers (e.g. prioritize realtime tasks for scheduling), follows a simple priority-based fair-queueing policy.

I would ultimately like to make this the default HttpRemoteTaskRunner and have it run in all tests/production clusters, etc. as I think that would help catch more bugs/issues.

Performance Testing

Test results thus far have shown ~100-300ms speed up per task runner operation (add(), etc.). Over 1000s of tasks, this amounts to minutes of delay saved.

Release note

---

Key changed/added classes in this PR

• MyFoo
• OurBar
• TheirBaz

---

This PR has:

• been self-reviewed.
  • using the concurrency checklist (Remove this item if the PR doesn't have any relation to concurrency.)
• added documentation for new or modified features or behaviors.
• a release note entry in the PR description.
• added Javadocs for most classes and all non-trivial methods. Linked related entities via Javadoc links.
• added or updated version, license, or notice information in licenses.yaml
• added comments explaining the "why" and the intent of the code wherever would not be obvious for an unfamiliar reader.
• added unit tests or modified existing tests to cover new code paths, ensuring the threshold for code coverage is met.
• added integration tests.
• been tested in a test Druid cluster.

[kfaraz]

Thanks for creating this PR, @jtuglu1 ! The patch seems much simpler now.
I should be able to complete an initial review today.

[jtuglu1]

A quick note: @kfaraz I was tempted to place this inside the above .compute() to avoid the race, but given it could be holding the lock for a while (and concurrent hashmap locks a range of keys, not necessarily just the key), I opted to unlock (similar to what the existing runner does). Additionally, if something like a removeWorker callback occurs, I'd prefer to update the state right away, rather than wait for an assignment timeout, etc.

[kfaraz]

Thanks! Could you add a 1-line comment on why it is okay to do this.

[kfaraz]

Leaving a partial review, will try to finish going through the rest of the changes today.

[kfaraz]

Suggested change

	* HTTP-based distributed task scheduler that manages assignment of tasks to slots on workers (MiddleManagers).
	* HTTP-based distributed task scheduler that manages assignment of tasks to slots on workers (MiddleManagers or Indexers).

[kfaraz]

Suggested change

	"Worker[%s] wrote status[%s] for task[%s] on [%s]",
	"Worker[%s] wrote status[%s] for task[%s] on location[%s]",

[kfaraz]

Looking at the factory class, we are still passing @Smile annotated mapper here. Let's retain the original name of this field to avoid ambiguity with the other mapper (typically injected without an annotation or with @Json).

[kfaraz]

Please add a javadoc to this method, which clarifies what the return value/excpetion in this method means.

• true: successfully assigned
• false: failed to assign, retry later
• exception: failed to assign, mark task as completed

I wonder if this tri-state should be captured in the return value itself rather than throwing varying exceptions like ISE, IllegalState (using Preconditions). You could return a value which has a success boolean, a retry boolean and a String failureReason, which can be used for alerting/task completion message.

[kfaraz]

This is not needed here and should be moved to the respective enum values.
Just link them here using @see WorkerHolder.State and @see HttpRemoteTaskRunnerWorkItem.State

[kfaraz]

Suggested change

	"The state of the new task complete event is different from its last known state. "
	+ "New state[%s], last known state[%s]",
	"Ignoring update to status[%s] as task[%s] has already completed with status[%s].",

[kfaraz]

Nit: Can be 1-lined, I feel.

Suggested change

	log.info(
	"Worker[%s] completed task[%s] with status[%s]",
	workerHolder.getWorker().getHost(),
	taskStatus.getId(),
	taskStatus.getStatusCode()
	);
	log.info("Worker[%s] completed task[%s] with status[%s].", workerHost, taskId, taskStatus);

[kfaraz]

Also, should we keep this log line outside the compute? It doesn't need to be inside the compute block.

[jtuglu1]

While I think that would help moderately with performance, since we're using key-based locking it's not likely to help that much. I can do it, but also nice way (in the logs) to validate that nothing else was modifying this simulatenously.

[kfaraz]

Is this really a warning? It is possible that the task finished on the worker and then the worker went away.

[jtuglu1]

I guess it's not unexpected behavior, but it's certainly not normal behavior (these are MMs, not Peons). I can change to info.

[kfaraz]

Thanks! Could you also update the log message to include more info e.g. Could not find worker[%s] while marking task[%s] as complete?

[kfaraz]

Doesn't seem like we need to acquire this lock.

[jtuglu1]

I use the workerStateLock as a global synchronization point for the worker state. This ensures that scheduling loop doesn't accidentally schedule a task on a worker that is being killed, just been scheduled, etc. It also helps notify sleeping scheduling threads that potential slots are ready due to a worker state change. In this case, a worker has completed a task; this frees up a slot so we should notify interested parties.

[kfaraz]

I don't think changing from the regular for loop to a forEach makes much of a difference. It is still possible for new items to get added to the workers map after we started the forEach iteration.

[jtuglu1]

Actually, with this one, we ensure that acquiring a key reference (while iterating through it instead of keySet), we also get a synchronized scope to the value to do what we want. I found this to be a better model that looping through a keySet, and then indexing with those (potentially stale) keys.

[kfaraz]

Oh, I see.

Can that ever cause a deadlock?

Say a worker is yet to be initialized and a thread is waiting on waitForInitialization() while holding the lock for the corresponding key in the map. Will any other thread be able to mark this worker as "initialized" without acquiring that lock?

I found this to be a better model that looping through a keySet, and then indexing with those (potentially stale) keys.

Hmm, I was hoping we use .keySet() followed by .compute() itself and move the .compute() part into a separate method (similar to how TaskQueue does it). We could use that method wherever we add/update the entry for a worker so that we always perform actions using a compute() ensuring thread safety.

What do you think?

[kfaraz]

Also, .forEach() doesn't seem to be mutually exclusive with .compute() on the same key.
Could you please double check this?

[kfaraz]

Finished going through the bulk of the changes.

On the whole, the patch looks good. I have these major suggestions:

• For the time being, it would be cleaner to use workerStateLock consistently whenever accessing the workers map. We can try to improve this later.
• Avoid use of .forEach() and use .compute() instead, preferably encasing it in an addOrUpdate method similar to TaskQueue.
• Do not perform any heavy operation like metadata store access, metric emission, listener notification, etc. inside the .compute() lambda.
• Avoid throwing exceptions inside the lambda, if they are just to be caught back in the same method/loop. Instead, log an error and continue with the loop.
• Remove the priority scheduling changes for now.
• Reduce debug logging.

[kfaraz]

Suggested change

	// That being said, there can be callbacks in taskAddedOrUpdated() where some task suddenly begins running
	// However, there can be callbacks in taskAddedOrUpdated() where some task suddenly begins running

[kfaraz]

Nit:

Suggested change

	worker.getHost(), (key, workerEntry) -> {
	worker.getHost(),
	(key, workerEntry) -> {

[kfaraz]

Iterating through all tasks here seems problematic. The original code was doing this too, but now with the introduction of two separate locks and two separate concurrent hash maps, we need to take extra care that we don't end up in a deadlock.

Maybe build the expected announcements before acquiring the workerStateLock, since the announcements deal with only task state and not worker state.

[kfaraz]

This should probably be @GuardedBy("workerStateLock") since it is always meant to be accessed within that lock.

[kfaraz]

Note that .forEach() since it is not mutually exclusive with .compute() and essentially just provides iteration over a snapshot. But I suppose it is okay here?

[kfaraz]

I suppose we don't need this anymore since we simply add the task item back to the queue, right?

[kfaraz]

The task entry in the tasks map would now have state PENDING_WORKER_ASSIGN. Do we need to revert it back to PENDING (same as old code)?

[kfaraz]

Can we move this entire lambda into a new method?

[kfaraz]

Maybe perform this before the .compute()?

[kfaraz]

Let's do metric emission, listener notification, etc. outside the .compute() block.