KAFKA-15599: Move KafkaMetadataLog to the raft module

[mimaison]

• Rename KafkaMetadataLog to KafkaRaftLog
• Make raft depend on storage
• Remove storage dependency on metadata as this otherwise create a
  cyclic dependency

[dengziming]

There are some concerns regarding this change, though we haven't made kraft a public API, we are trying to keep it dependency-free to be used as a raft-sdk anywhere. For example, if you are implementing a system with metadata changing frequently, you can directly copy kraft code into your project.
This assumption also has some benefits to the whole Kafka architecture, this change reduced dependency complexity but breaked this assumption, we should evaluate which goal is more important.

[mimaison]

we are trying to keep it dependency-free to be used as a raft-sdk anywhere

Where has this been discussed?
The way Kafka implements Raft is via a topic so our implementation of ReplicatedLog needs to depend on storage. Since metadata depends on raft, the other option is to put KafkaMetadataLog into the metadata module and have that depend on storage instead of raft.

[dengziming]

Where has this been discussed?

In KIP-595 we wrote:

We are also trying to pave the way for normal partition replication through Raft as well as eventually supporting metadata sharding with multiple partitions.

We are only trying to pave the way for Kafka normal partition replication instead of making it SDK exportable, I may have thought too much about it, but the idea behind it still deserves consideration, for example, etcd-raft(https://github.com/etcd-io/raft) also follows a similar principle to not include a concrete log implementation.
Moving it to metadata module is better compared putting it in raft module, and we should not rename it to KafkaRaftLog since we can use raft to replicate normal partition.

[mimaison]

I'm not sure I interpret that statement from KIP-595 as an intent to keep the raft module dependency free. As you said the raft module is not public API, and I've not seen any discussions in that direction.

The metadata module mostly consists of the data structures written to the metadata log. To me it seems the logic of maintaining the metadata log as a topic fits better in the raft module, as described in https://issues.apache.org/jira/browse/KAFKA-15599.

[dengziming]

@mimaison That makes sense to me, 👍 if we should make the tradeoff, the modularity outweighs the pluggability of the raft module, @jsancio @ijuma, where do you think is better to put KafkaMetadataLog.

[ijuma]

The description I wrote in the ticket was the conclusion after a discussion with a few people including @jsancio and @cmccabe. @jsancio does that approach still make sense to you?

[ijuma]

The JIRA ticket also talked about renaming ReplicatedLog to RaftLog. Do we want to do that separately or we think it's not a good idea? cc @jsancio

[mimaison]

I think RaftLog is a nicer name. I can do it in this PR.

[mimaison]

Done

[dengziming]

Thank you for this PR, I left some comments, PTAL.

[dengziming]

Why did we move this inside of synchronized block?

[mimaison]

You're right this can be moved outside of the synchronized block

[dengziming]

Maybe it's a newcomer's question, is UncheckedIOException better than IOException?

[ijuma]

UncheckedIOException is unchecked while IOException is checked. However, it's risky to make this change as you have to check that every caller handles the new exception and the compiler will not help you - the way we did it for other classes was not to change exception types during conversion from Scala to Java. And to have a separate JIRA for investigating this.

[mimaison]

The reason I used UncheckedIOException is that none of the method definitions in RaftLog are marked as throwing exceptions. None of the calling logic, mostly in KafkaRaftClient, has logic to handle checked exceptions.

So any exception throw will be passed back up the call stack to KafkaRadftClientDriver.doWork() that has catches Throwable.

[junrao]

Perhaps it's better to wrap this in KafkaException to distinguish it from other UncheckedIOException? Ditto in a few other places.

[dengziming]

ditto

[mimaison]

Updated to match latestSnapshotId()

[dengziming]

How about changing this NoSuchElementException catching code to if snapshots.isEmpty()

[mimaison]

Good idea

[dengziming]

Why should we put it here?

[mimaison]

Good catch, it shouldn't be there. The call to readSnapshot() will have opened the reader and updated snapshots already.

[brandboat]

Just a reminder — we recently introduced some changes in KafkaMetadataLog (see bcda92b#diff-b332f85b04775c821226b6f704e91d51f9647f29ba73dace65b99cf36f6b9cea)

[mimaison]

Thanks for the heads-up!

[dengziming]

All lgtm.

[junrao]

@mimaison : Thanks for the PR. Left a few comments.

[junrao]

Should we change MetadataLog to RaftLog?

[junrao]

It seems that we are missing the following.

props.setProperty(TopicConfig.SEGMENT_MS_CONFIG, config.logSegmentMillis.toString)

[junrao]

Why was the following validation removed?

    if (defaultLogConfig.segmentSize() < config.logSegmentBytes()) {
      metadataLog.error(s"Overriding ${MetadataLogConfig.INTERNAL_METADATA_LOG_SEGMENT_BYTES_CONFIG} is only supported for testing. Setting " +
        s"this value too low may lead to an inability to write batches of metadata records.")
    }

[junrao]

Should we add the partition level indent ?

[junrao]

Should we change it to record? Ditto for RetentionSizeBreach.

[mimaison]

I changed all the SnapshotDeletionReason implementations to record

[junrao]

Should we move KRaftConfigs to the raft module so that we could use the defined config names?

[junrao]

Could this be merged with the previous line?

[junrao]

Should we close snapshot as before? Ditto below.

[junrao]

Why did we skip testSegmentMsConfigIsSetInMetadataLog() in the old test ?

[mimaison]

This test was added after I opened the PR. I must have missed it while rebasing.

[junrao]

Should this be put in metadata.util?

[mimaison]

The reasons I put it here are that:

• it's a single method related to TopicsImage
• the TopicsImageTest class has utility methods that helped simplify the test logic

[jsancio]

Why make this static if the first argument is TopicsImage? This looks a lot like an object method where the this reference is the TopicsImage.

[mimaison]

It was static mostly for historical reasons as I just copied it from LogManager but you're right since the first argument is a TopicsImage the new method I added is now not static.

[junrao]

@mimaison : Thanks for the updated PR. A few more comments. Also, there are compilation errors.

[junrao]

The following path is only for NoSuchFileException. For other IOExceptions, we should propagate to the caller.

[mimaison]

Which method do you see throwing NoSuchFileException?

[junrao]

According to https://stackoverflow.com/questions/63638250/nio-channels-filechannel-open-threw-nosuchfileexception, FileChannel.open() could throw NoSuchFileException.

[mimaison]

Ah right, going down the whole call stack, I see that UnixFileSystemProvider uses UnixException.translateToIOException() and that maps ENOENT to NoSuchFileException.

I wonder if the existing code is broken as FileRawSnapshotReader.open() wrap the IOException into UncheckedIOException so the current catch block should be not entered.

I made the change and added a test case checking NoSuchFileException. However I can't find a way to reliably force another type of IOException to check these are thrown.

[junrao]

I noticed that existing code like Snapshots and FileSnapshotReader convert IOException to UncheckedIOException. It's probably better to follow that convention for now.

[mimaison]

Yes the whole raft module pretty much only uses UncheckedIOException.

[junrao]

It seems that this hasn't been addressed?

[junrao]

This indentation is different from the one in line 628.

[junrao]

Should we close the created snapshot?

[mimaison]

We expect createNewSnapshot() to return Optional.empty(), so there should be nothing to close.

[junrao]

Should we close the created snapshot?

[mimaison]

We expect createNewSnapshot() to return Optional.empty(), so there should be nothing to close.

[junrao]

@mimaison : Thanks for the updated PR. Just a comment based on Jose's feedback. Also, could you resolve the conflicts?

[jsancio]

Thanks for the changes I still need to review the new KafkaRaftLog files but here are some early comments.

[jsancio]

I am thinking that we should make this internal by moving the implementation to o.a.k.r.internals.KafkaRaftLog.java. The same of the accompanying test suite file.

[mimaison]

Moved

[jsancio]

Note that to me this means that the common module is not organized correctly if the raft module needs types in the "internals" namespace. Same comment applies to the change below which also includes o.a.k.s.internals.log.

[ijuma]

internals simply means it should not be used outside the kafka repo. This is more explicit than the uncommon "check the javadoc" to check if the class is public or internal.

[jsancio]

Why make this static if the first argument is TopicsImage? This looks a lot like an object method where the this reference is the TopicsImage.

[jsancio]

How about letting the log manager make this decision? In Kafka 4.0 all topics must have a topic id.

[jsancio]

To me this should be a functionality of the log manager. Maybe the TopicsImage method should just return all of the topic ids that don't exist in the given image and broker.

This would allow you to remove that added static logger.

[jsancio]

Minor but to me stray partition are in the log manager not in the topics image. Meaning the log manager has partition entries that are not in the latest topics image.

In some sense the log manager understand topics image and makes sure that they match. The topics images doesn't know anything about "stray partitions" and the log manager.

If you still want to move the functionality TopicsImage maybe make it a method (not static) with Stream<TopicIdPartition> deletedPartitionsForReplica(int brokerId, Stream<TopicIdPartition>).

[mimaison]

I introduced a more generic method in TopicsImage called partitionReplicas(), and moved the logic specific to stray partitions back to LogManager.

[mimaison]

@jsancio Can you take another look? Thanks

[junrao]

@mimaison : Thanks for the updated PR. A few more minor comments.

[junrao]

We can just return reader here?

[mimaison]

I'm rewrapping it here as the generic type does not match. reader is a Optional<FileRawSnapshotReader> while we need to return Optional<RawSnapshotReader>

[junrao]

Could we keep this part in JLogManager.isStrayReplica()?

[mimaison]

The reason I kept this here is because I wanted to keep the else block here since it's using newImage which we're trying not to use in JLogManager

[junrao]

There is no need to pass in topicId since it comes from log.

[mimaison]

Good call. Fixed

[mimaison]

Rebased on trunk, @jsancio @junrao can you take another look? Thanks

[mimaison]

Rebased on trunk to resolve conflicts

[mimaison]

Rebased once more. @jsancio @junrao can you take another look? Thanks

[mimaison]

@jsancio @junrao I keep rebasing this each week. Quick reminder, can you take another look? Thanks

[mimaison]

@jsancio @junrao Do you want to take another look? Or should I go ahead and merge it?